@goauthentik/api 2023.8.3-1696847703 → 2023.8.3-1697642041

package/dist/esm/apis/StagesApi.d.ts

@@ -295,6 +295,7 @@ export interface StagesDenyDestroyRequest {
     stageUuid: string;
 }
 export interface StagesDenyListRequest {
+    denyMessage?: string;
     name?: string;
     ordering?: string;
     page?: number;

package/dist/esm/apis/StagesApi.js

@@ -2384,6 +2384,9 @@ export class StagesApi extends runtime.BaseAPI {
     stagesDenyListRaw(requestParameters, initOverrides) {
         return __awaiter(this, void 0, void 0, function* () {
             const queryParameters = {};
+            if (requestParameters.denyMessage !== undefined) {
+                queryParameters['deny_message'] = requestParameters.denyMessage;
+            }
             if (requestParameters.name !== undefined) {
                 queryParameters['name'] = requestParameters.name;
             }

package/dist/esm/apis/index.d.ts

@@ -11,6 +11,7 @@ export * from './OutpostsApi';
 export * from './PoliciesApi';
 export * from './PropertymappingsApi';
 export * from './ProvidersApi';
+export * from './RbacApi';
 export * from './RootApi';
 export * from './SchemaApi';
 export * from './SourcesApi';

package/dist/esm/apis/index.js

@@ -13,6 +13,7 @@ export * from './OutpostsApi';
 export * from './PoliciesApi';
 export * from './PropertymappingsApi';
 export * from './ProvidersApi';
+export * from './RbacApi';
 export * from './RootApi';
 export * from './SchemaApi';
 export * from './SourcesApi';

package/dist/esm/models/AppEnum.d.ts

@@ -29,6 +29,7 @@
  * * `authentik.providers.radius` - authentik Providers.Radius
  * * `authentik.providers.saml` - authentik Providers.SAML
  * * `authentik.providers.scim` - authentik Providers.SCIM
+ * * `authentik.rbac` - authentik RBAC
  * * `authentik.recovery` - authentik Recovery
  * * `authentik.sources.ldap` - authentik Sources.LDAP
  * * `authentik.sources.oauth` - authentik Sources.OAuth
@@ -80,6 +81,7 @@ export declare const AppEnum: {
     readonly ProvidersRadius: "authentik.providers.radius";
     readonly ProvidersSaml: "authentik.providers.saml";
     readonly ProvidersScim: "authentik.providers.scim";
+    readonly Rbac: "authentik.rbac";
     readonly Recovery: "authentik.recovery";
     readonly SourcesLdap: "authentik.sources.ldap";
     readonly SourcesOauth: "authentik.sources.oauth";

package/dist/esm/models/AppEnum.js

@@ -31,6 +31,7 @@
  * * `authentik.providers.radius` - authentik Providers.Radius
  * * `authentik.providers.saml` - authentik Providers.SAML
  * * `authentik.providers.scim` - authentik Providers.SCIM
+ * * `authentik.rbac` - authentik RBAC
  * * `authentik.recovery` - authentik Recovery
  * * `authentik.sources.ldap` - authentik Sources.LDAP
  * * `authentik.sources.oauth` - authentik Sources.OAuth
@@ -82,6 +83,7 @@ export const AppEnum = {
     ProvidersRadius: 'authentik.providers.radius',
     ProvidersSaml: 'authentik.providers.saml',
     ProvidersScim: 'authentik.providers.scim',
+    Rbac: 'authentik.rbac',
     Recovery: 'authentik.recovery',
     SourcesLdap: 'authentik.sources.ldap',
     SourcesOauth: 'authentik.sources.oauth',

package/dist/esm/models/ConsentChallenge.d.ts

@@ -10,9 +10,9 @@
  * Do not edit the class manually.
  */
 import type { ChallengeChoices } from './ChallengeChoices';
+import type { ConsentPermission } from './ConsentPermission';
 import type { ContextualFlowInfo } from './ContextualFlowInfo';
 import type { ErrorDetail } from './ErrorDetail';
-import type { Permission } from './Permission';
 /**
  * Challenge info for consent screens
  * @export
@@ -65,16 +65,16 @@ export interface ConsentChallenge {
     headerText?: string;
     /**
      *
-     * @type {Array<Permission>}
+     * @type {Array<ConsentPermission>}
      * @memberof ConsentChallenge
      */
-    permissions: Array<Permission>;
+    permissions: Array<ConsentPermission>;
     /**
      *
-     * @type {Array<Permission>}
+     * @type {Array<ConsentPermission>}
      * @memberof ConsentChallenge
      */
-    additionalPermissions: Array<Permission>;
+    additionalPermissions: Array<ConsentPermission>;
     /**
      *
      * @type {string}

package/dist/esm/models/ConsentChallenge.js

@@ -13,8 +13,8 @@
  */
 import { exists } from '../runtime';
 import { ChallengeChoicesFromJSON, ChallengeChoicesToJSON, } from './ChallengeChoices';
+import { ConsentPermissionFromJSON, ConsentPermissionToJSON, } from './ConsentPermission';
 import { ContextualFlowInfoFromJSON, ContextualFlowInfoToJSON, } from './ContextualFlowInfo';
-import { PermissionFromJSON, PermissionToJSON, } from './Permission';
 /**
  * Check if a given object implements the ConsentChallenge interface.
  */
@@ -43,8 +43,8 @@ export function ConsentChallengeFromJSONTyped(json, ignoreDiscriminator) {
         'pendingUser': json['pending_user'],
         'pendingUserAvatar': json['pending_user_avatar'],
         'headerText': !exists(json, 'header_text') ? undefined : json['header_text'],
-        'permissions': (json['permissions'].map(PermissionFromJSON)),
-        'additionalPermissions': (json['additional_permissions'].map(PermissionFromJSON)),
+        'permissions': (json['permissions'].map(ConsentPermissionFromJSON)),
+        'additionalPermissions': (json['additional_permissions'].map(ConsentPermissionFromJSON)),
         'token': json['token'],
     };
 }
@@ -63,8 +63,8 @@ export function ConsentChallengeToJSON(value) {
         'pending_user': value.pendingUser,
         'pending_user_avatar': value.pendingUserAvatar,
         'header_text': value.headerText,
-        'permissions': (value.permissions.map(PermissionToJSON)),
-        'additional_permissions': (value.additionalPermissions.map(PermissionToJSON)),
+        'permissions': (value.permissions.map(ConsentPermissionToJSON)),
+        'additional_permissions': (value.additionalPermissions.map(ConsentPermissionToJSON)),
         'token': value.token,
     };
 }

package/dist/esm/models/ConsentPermission.d.ts

@@ -0,0 +1,37 @@
+/**
+ * authentik
+ * Making authentication simple.
+ *
+ * The version of the OpenAPI document: 2023.8.3
+ * Contact: hello@goauthentik.io
+ *
+ * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+ * https://openapi-generator.tech
+ * Do not edit the class manually.
+ */
+/**
+ * Permission used for consent
+ * @export
+ * @interface ConsentPermission
+ */
+export interface ConsentPermission {
+    /**
+     *
+     * @type {string}
+     * @memberof ConsentPermission
+     */
+    name: string;
+    /**
+     *
+     * @type {string}
+     * @memberof ConsentPermission
+     */
+    id: string;
+}
+/**
+ * Check if a given object implements the ConsentPermission interface.
+ */
+export declare function instanceOfConsentPermission(value: object): boolean;
+export declare function ConsentPermissionFromJSON(json: any): ConsentPermission;
+export declare function ConsentPermissionFromJSONTyped(json: any, ignoreDiscriminator: boolean): ConsentPermission;
+export declare function ConsentPermissionToJSON(value?: ConsentPermission | null): any;

package/dist/esm/models/ConsentPermission.js

@@ -0,0 +1,46 @@
+/* tslint:disable */
+/* eslint-disable */
+/**
+ * authentik
+ * Making authentication simple.
+ *
+ * The version of the OpenAPI document: 2023.8.3
+ * Contact: hello@goauthentik.io
+ *
+ * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+ * https://openapi-generator.tech
+ * Do not edit the class manually.
+ */
+/**
+ * Check if a given object implements the ConsentPermission interface.
+ */
+export function instanceOfConsentPermission(value) {
+    let isInstance = true;
+    isInstance = isInstance && "name" in value;
+    isInstance = isInstance && "id" in value;
+    return isInstance;
+}
+export function ConsentPermissionFromJSON(json) {
+    return ConsentPermissionFromJSONTyped(json, false);
+}
+export function ConsentPermissionFromJSONTyped(json, ignoreDiscriminator) {
+    if ((json === undefined) || (json === null)) {
+        return json;
+    }
+    return {
+        'name': json['name'],
+        'id': json['id'],
+    };
+}
+export function ConsentPermissionToJSON(value) {
+    if (value === undefined) {
+        return undefined;
+    }
+    if (value === null) {
+        return null;
+    }
+    return {
+        'name': value.name,
+        'id': value.id,
+    };
+}

package/dist/esm/models/DenyStage.d.ts

@@ -58,6 +58,12 @@ export interface DenyStage {
      * @memberof DenyStage
      */
     flowSet?: Array<FlowSet>;
+    /**
+     *
+     * @type {string}
+     * @memberof DenyStage
+     */
+    denyMessage?: string;
 }
 /**
  * Check if a given object implements the DenyStage interface.

package/dist/esm/models/DenyStage.js

@@ -41,6 +41,7 @@ export function DenyStageFromJSONTyped(json, ignoreDiscriminator) {
         'verboseNamePlural': json['verbose_name_plural'],
         'metaModelName': json['meta_model_name'],
         'flowSet': !exists(json, 'flow_set') ? undefined : (json['flow_set'].map(FlowSetFromJSON)),
+        'denyMessage': !exists(json, 'deny_message') ? undefined : json['deny_message'],
     };
 }
 export function DenyStageToJSON(value) {
@@ -53,5 +54,6 @@ export function DenyStageToJSON(value) {
     return {
         'name': value.name,
         'flow_set': value.flowSet === undefined ? undefined : (value.flowSet.map(FlowSetToJSON)),
+        'deny_message': value.denyMessage,
     };
 }

package/dist/esm/models/DenyStageRequest.d.ts

@@ -28,6 +28,12 @@ export interface DenyStageRequest {
      * @memberof DenyStageRequest
      */
     flowSet?: Array<FlowSetRequest>;
+    /**
+     *
+     * @type {string}
+     * @memberof DenyStageRequest
+     */
+    denyMessage?: string;
 }
 /**
  * Check if a given object implements the DenyStageRequest interface.

package/dist/esm/models/DenyStageRequest.js

@@ -31,6 +31,7 @@ export function DenyStageRequestFromJSONTyped(json, ignoreDiscriminator) {
     return {
         'name': json['name'],
         'flowSet': !exists(json, 'flow_set') ? undefined : (json['flow_set'].map(FlowSetRequestFromJSON)),
+        'denyMessage': !exists(json, 'deny_message') ? undefined : json['deny_message'],
     };
 }
 export function DenyStageRequestToJSON(value) {
@@ -43,5 +44,6 @@ export function DenyStageRequestToJSON(value) {
     return {
         'name': value.name,
         'flow_set': value.flowSet === undefined ? undefined : (value.flowSet.map(FlowSetRequestToJSON)),
+        'deny_message': value.denyMessage,
     };
 }

package/dist/esm/models/ExtraRoleObjectPermission.d.ts

@@ -0,0 +1,81 @@
+/**
+ * authentik
+ * Making authentication simple.
+ *
+ * The version of the OpenAPI document: 2023.8.3
+ * Contact: hello@goauthentik.io
+ *
+ * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+ * https://openapi-generator.tech
+ * Do not edit the class manually.
+ */
+/**
+ * User permission with additional object-related data
+ * @export
+ * @interface ExtraRoleObjectPermission
+ */
+export interface ExtraRoleObjectPermission {
+    /**
+     *
+     * @type {number}
+     * @memberof ExtraRoleObjectPermission
+     */
+    readonly id: number;
+    /**
+     *
+     * @type {string}
+     * @memberof ExtraRoleObjectPermission
+     */
+    readonly codename: string;
+    /**
+     *
+     * @type {string}
+     * @memberof ExtraRoleObjectPermission
+     */
+    readonly model: string;
+    /**
+     *
+     * @type {string}
+     * @memberof ExtraRoleObjectPermission
+     */
+    readonly appLabel: string;
+    /**
+     *
+     * @type {string}
+     * @memberof ExtraRoleObjectPermission
+     */
+    readonly objectPk: string;
+    /**
+     *
+     * @type {string}
+     * @memberof ExtraRoleObjectPermission
+     */
+    readonly name: string;
+    /**
+     * Get app label from permission's model
+     * @type {string}
+     * @memberof ExtraRoleObjectPermission
+     */
+    readonly appLabelVerbose: string;
+    /**
+     * Get model label from permission's model
+     * @type {string}
+     * @memberof ExtraRoleObjectPermission
+     */
+    readonly modelVerbose: string;
+    /**
+     * Get model description from attached model. This operation takes at least
+     * one additional query, and the description is only shown if the user/role has the
+     * view_ permission on the object
+     * @type {string}
+     * @memberof ExtraRoleObjectPermission
+     */
+    readonly objectDescription: string | null;
+}
+/**
+ * Check if a given object implements the ExtraRoleObjectPermission interface.
+ */
+export declare function instanceOfExtraRoleObjectPermission(value: object): boolean;
+export declare function ExtraRoleObjectPermissionFromJSON(json: any): ExtraRoleObjectPermission;
+export declare function ExtraRoleObjectPermissionFromJSONTyped(json: any, ignoreDiscriminator: boolean): ExtraRoleObjectPermission;
+export declare function ExtraRoleObjectPermissionToJSON(value?: ExtraRoleObjectPermission | null): any;

package/dist/esm/models/ExtraRoleObjectPermission.js

@@ -0,0 +1,57 @@
+/* tslint:disable */
+/* eslint-disable */
+/**
+ * authentik
+ * Making authentication simple.
+ *
+ * The version of the OpenAPI document: 2023.8.3
+ * Contact: hello@goauthentik.io
+ *
+ * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+ * https://openapi-generator.tech
+ * Do not edit the class manually.
+ */
+/**
+ * Check if a given object implements the ExtraRoleObjectPermission interface.
+ */
+export function instanceOfExtraRoleObjectPermission(value) {
+    let isInstance = true;
+    isInstance = isInstance && "id" in value;
+    isInstance = isInstance && "codename" in value;
+    isInstance = isInstance && "model" in value;
+    isInstance = isInstance && "appLabel" in value;
+    isInstance = isInstance && "objectPk" in value;
+    isInstance = isInstance && "name" in value;
+    isInstance = isInstance && "appLabelVerbose" in value;
+    isInstance = isInstance && "modelVerbose" in value;
+    isInstance = isInstance && "objectDescription" in value;
+    return isInstance;
+}
+export function ExtraRoleObjectPermissionFromJSON(json) {
+    return ExtraRoleObjectPermissionFromJSONTyped(json, false);
+}
+export function ExtraRoleObjectPermissionFromJSONTyped(json, ignoreDiscriminator) {
+    if ((json === undefined) || (json === null)) {
+        return json;
+    }
+    return {
+        'id': json['id'],
+        'codename': json['codename'],
+        'model': json['model'],
+        'appLabel': json['app_label'],
+        'objectPk': json['object_pk'],
+        'name': json['name'],
+        'appLabelVerbose': json['app_label_verbose'],
+        'modelVerbose': json['model_verbose'],
+        'objectDescription': json['object_description'],
+    };
+}
+export function ExtraRoleObjectPermissionToJSON(value) {
+    if (value === undefined) {
+        return undefined;
+    }
+    if (value === null) {
+        return null;
+    }
+    return {};
+}

package/dist/esm/models/ExtraUserObjectPermission.d.ts

@@ -0,0 +1,81 @@
+/**
+ * authentik
+ * Making authentication simple.
+ *
+ * The version of the OpenAPI document: 2023.8.3
+ * Contact: hello@goauthentik.io
+ *
+ * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+ * https://openapi-generator.tech
+ * Do not edit the class manually.
+ */
+/**
+ * User permission with additional object-related data
+ * @export
+ * @interface ExtraUserObjectPermission
+ */
+export interface ExtraUserObjectPermission {
+    /**
+     *
+     * @type {number}
+     * @memberof ExtraUserObjectPermission
+     */
+    readonly id: number;
+    /**
+     *
+     * @type {string}
+     * @memberof ExtraUserObjectPermission
+     */
+    readonly codename: string;
+    /**
+     *
+     * @type {string}
+     * @memberof ExtraUserObjectPermission
+     */
+    readonly model: string;
+    /**
+     *
+     * @type {string}
+     * @memberof ExtraUserObjectPermission
+     */
+    readonly appLabel: string;
+    /**
+     *
+     * @type {string}
+     * @memberof ExtraUserObjectPermission
+     */
+    readonly objectPk: string;
+    /**
+     *
+     * @type {string}
+     * @memberof ExtraUserObjectPermission
+     */
+    readonly name: string;
+    /**
+     * Get app label from permission's model
+     * @type {string}
+     * @memberof ExtraUserObjectPermission
+     */
+    readonly appLabelVerbose: string;
+    /**
+     * Get model label from permission's model
+     * @type {string}
+     * @memberof ExtraUserObjectPermission
+     */
+    readonly modelVerbose: string;
+    /**
+     * Get model description from attached model. This operation takes at least
+     * one additional query, and the description is only shown if the user/role has the
+     * view_ permission on the object
+     * @type {string}
+     * @memberof ExtraUserObjectPermission
+     */
+    readonly objectDescription: string | null;
+}
+/**
+ * Check if a given object implements the ExtraUserObjectPermission interface.
+ */
+export declare function instanceOfExtraUserObjectPermission(value: object): boolean;
+export declare function ExtraUserObjectPermissionFromJSON(json: any): ExtraUserObjectPermission;
+export declare function ExtraUserObjectPermissionFromJSONTyped(json: any, ignoreDiscriminator: boolean): ExtraUserObjectPermission;
+export declare function ExtraUserObjectPermissionToJSON(value?: ExtraUserObjectPermission | null): any;

package/dist/esm/models/ExtraUserObjectPermission.js

@@ -0,0 +1,57 @@
+/* tslint:disable */
+/* eslint-disable */
+/**
+ * authentik
+ * Making authentication simple.
+ *
+ * The version of the OpenAPI document: 2023.8.3
+ * Contact: hello@goauthentik.io
+ *
+ * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+ * https://openapi-generator.tech
+ * Do not edit the class manually.
+ */
+/**
+ * Check if a given object implements the ExtraUserObjectPermission interface.
+ */
+export function instanceOfExtraUserObjectPermission(value) {
+    let isInstance = true;
+    isInstance = isInstance && "id" in value;
+    isInstance = isInstance && "codename" in value;
+    isInstance = isInstance && "model" in value;
+    isInstance = isInstance && "appLabel" in value;
+    isInstance = isInstance && "objectPk" in value;
+    isInstance = isInstance && "name" in value;
+    isInstance = isInstance && "appLabelVerbose" in value;
+    isInstance = isInstance && "modelVerbose" in value;
+    isInstance = isInstance && "objectDescription" in value;
+    return isInstance;
+}
+export function ExtraUserObjectPermissionFromJSON(json) {
+    return ExtraUserObjectPermissionFromJSONTyped(json, false);
+}
+export function ExtraUserObjectPermissionFromJSONTyped(json, ignoreDiscriminator) {
+    if ((json === undefined) || (json === null)) {
+        return json;
+    }
+    return {
+        'id': json['id'],
+        'codename': json['codename'],
+        'model': json['model'],
+        'appLabel': json['app_label'],
+        'objectPk': json['object_pk'],
+        'name': json['name'],
+        'appLabelVerbose': json['app_label_verbose'],
+        'modelVerbose': json['model_verbose'],
+        'objectDescription': json['object_description'],
+    };
+}
+export function ExtraUserObjectPermissionToJSON(value) {
+    if (value === undefined) {
+        return undefined;
+    }
+    if (value === null) {
+        return null;
+    }
+    return {};
+}

package/dist/esm/models/Group.d.ts

@@ -10,6 +10,7 @@
  * Do not edit the class manually.
  */
 import type { GroupMember } from './GroupMember';
+import type { Role } from './Role';
 /**
  * Group Serializer
  * @export
@@ -58,6 +59,12 @@ export interface Group {
      * @memberof Group
      */
     users?: Array<number>;
+    /**
+     *
+     * @type {Array<GroupMember>}
+     * @memberof Group
+     */
+    readonly usersObj: Array<GroupMember>;
     /**
      *
      * @type {{ [key: string]: any; }}
@@ -68,10 +75,16 @@ export interface Group {
     };
     /**
      *
-     * @type {Array<GroupMember>}
+     * @type {Array<string>}
      * @memberof Group
      */
-    readonly usersObj: Array<GroupMember>;
+    roles?: Array<string>;
+    /**
+     *
+     * @type {Array<Role>}
+     * @memberof Group
+     */
+    readonly rolesObj: Array<Role>;
 }
 /**
  * Check if a given object implements the Group interface.

package/dist/esm/models/Group.js

@@ -13,6 +13,7 @@
  */
 import { exists } from '../runtime';
 import { GroupMemberFromJSON, } from './GroupMember';
+import { RoleFromJSON, } from './Role';
 /**
  * Check if a given object implements the Group interface.
  */
@@ -23,6 +24,7 @@ export function instanceOfGroup(value) {
     isInstance = isInstance && "name" in value;
     isInstance = isInstance && "parentName" in value;
     isInstance = isInstance && "usersObj" in value;
+    isInstance = isInstance && "rolesObj" in value;
     return isInstance;
 }
 export function GroupFromJSON(json) {
@@ -40,8 +42,10 @@ export function GroupFromJSONTyped(json, ignoreDiscriminator) {
         'parent': !exists(json, 'parent') ? undefined : json['parent'],
         'parentName': json['parent_name'],
         'users': !exists(json, 'users') ? undefined : json['users'],
-        'attributes': !exists(json, 'attributes') ? undefined : json['attributes'],
         'usersObj': (json['users_obj'].map(GroupMemberFromJSON)),
+        'attributes': !exists(json, 'attributes') ? undefined : json['attributes'],
+        'roles': !exists(json, 'roles') ? undefined : json['roles'],
+        'rolesObj': (json['roles_obj'].map(RoleFromJSON)),
     };
 }
 export function GroupToJSON(value) {
@@ -57,5 +61,6 @@ export function GroupToJSON(value) {
         'parent': value.parent,
         'users': value.users,
         'attributes': value.attributes,
+        'roles': value.roles,
     };
 }

package/dist/esm/models/GroupRequest.d.ts

@@ -47,6 +47,12 @@ export interface GroupRequest {
     attributes?: {
         [key: string]: any;
     };
+    /**
+     *
+     * @type {Array<string>}
+     * @memberof GroupRequest
+     */
+    roles?: Array<string>;
 }
 /**
  * Check if a given object implements the GroupRequest interface.

package/dist/esm/models/GroupRequest.js

@@ -33,6 +33,7 @@ export function GroupRequestFromJSONTyped(json, ignoreDiscriminator) {
         'parent': !exists(json, 'parent') ? undefined : json['parent'],
         'users': !exists(json, 'users') ? undefined : json['users'],
         'attributes': !exists(json, 'attributes') ? undefined : json['attributes'],
+        'roles': !exists(json, 'roles') ? undefined : json['roles'],
     };
 }
 export function GroupRequestToJSON(value) {
@@ -48,5 +49,6 @@ export function GroupRequestToJSON(value) {
         'parent': value.parent,
         'users': value.users,
         'attributes': value.attributes,
+        'roles': value.roles,
     };
 }