@goauthentik/api 2024.6.3-1723497462 → 2024.6.3-1723921843

package/dist/esm/models/PatchedSAMLProviderRequest.js

@@ -45,6 +45,9 @@ export function PatchedSAMLProviderRequestFromJSONTyped(json, ignoreDiscriminato
         'signatureAlgorithm': !exists(json, 'signature_algorithm') ? undefined : SignatureAlgorithmEnumFromJSON(json['signature_algorithm']),
         'signingKp': !exists(json, 'signing_kp') ? undefined : json['signing_kp'],
         'verificationKp': !exists(json, 'verification_kp') ? undefined : json['verification_kp'],
+        'encryptionKp': !exists(json, 'encryption_kp') ? undefined : json['encryption_kp'],
+        'signAssertion': !exists(json, 'sign_assertion') ? undefined : json['sign_assertion'],
+        'signResponse': !exists(json, 'sign_response') ? undefined : json['sign_response'],
         'spBinding': !exists(json, 'sp_binding') ? undefined : SpBindingEnumFromJSON(json['sp_binding']),
         'defaultRelayState': !exists(json, 'default_relay_state') ? undefined : json['default_relay_state'],
     };
@@ -72,6 +75,9 @@ export function PatchedSAMLProviderRequestToJSON(value) {
         'signature_algorithm': SignatureAlgorithmEnumToJSON(value.signatureAlgorithm),
         'signing_kp': value.signingKp,
         'verification_kp': value.verificationKp,
+        'encryption_kp': value.encryptionKp,
+        'sign_assertion': value.signAssertion,
+        'sign_response': value.signResponse,
         'sp_binding': SpBindingEnumToJSON(value.spBinding),
         'default_relay_state': value.defaultRelayState,
     };

package/dist/esm/models/SAMLProvider.d.ts

@@ -162,6 +162,24 @@ export interface SAMLProvider {
      * @memberof SAMLProvider
      */
     verificationKp?: string | null;
+    /**
+     * When selected, incoming assertions are encrypted by the IdP using the public key of the encryption keypair. The assertion is decrypted by the SP using the the private key.
+     * @type {string}
+     * @memberof SAMLProvider
+     */
+    encryptionKp?: string | null;
+    /**
+     *
+     * @type {boolean}
+     * @memberof SAMLProvider
+     */
+    signAssertion?: boolean;
+    /**
+     *
+     * @type {boolean}
+     * @memberof SAMLProvider
+     */
+    signResponse?: boolean;
     /**
      *
      * @type {SpBindingEnum}

package/dist/esm/models/SAMLProvider.js

@@ -72,6 +72,9 @@ export function SAMLProviderFromJSONTyped(json, ignoreDiscriminator) {
         'signatureAlgorithm': !exists(json, 'signature_algorithm') ? undefined : SignatureAlgorithmEnumFromJSON(json['signature_algorithm']),
         'signingKp': !exists(json, 'signing_kp') ? undefined : json['signing_kp'],
         'verificationKp': !exists(json, 'verification_kp') ? undefined : json['verification_kp'],
+        'encryptionKp': !exists(json, 'encryption_kp') ? undefined : json['encryption_kp'],
+        'signAssertion': !exists(json, 'sign_assertion') ? undefined : json['sign_assertion'],
+        'signResponse': !exists(json, 'sign_response') ? undefined : json['sign_response'],
         'spBinding': !exists(json, 'sp_binding') ? undefined : SpBindingEnumFromJSON(json['sp_binding']),
         'defaultRelayState': !exists(json, 'default_relay_state') ? undefined : json['default_relay_state'],
         'urlDownloadMetadata': json['url_download_metadata'],
@@ -105,6 +108,9 @@ export function SAMLProviderToJSON(value) {
         'signature_algorithm': SignatureAlgorithmEnumToJSON(value.signatureAlgorithm),
         'signing_kp': value.signingKp,
         'verification_kp': value.verificationKp,
+        'encryption_kp': value.encryptionKp,
+        'sign_assertion': value.signAssertion,
+        'sign_response': value.signResponse,
         'sp_binding': SpBindingEnumToJSON(value.spBinding),
         'default_relay_state': value.defaultRelayState,
     };

package/dist/esm/models/SAMLProviderRequest.d.ts

@@ -108,6 +108,24 @@ export interface SAMLProviderRequest {
      * @memberof SAMLProviderRequest
      */
     verificationKp?: string | null;
+    /**
+     * When selected, incoming assertions are encrypted by the IdP using the public key of the encryption keypair. The assertion is decrypted by the SP using the the private key.
+     * @type {string}
+     * @memberof SAMLProviderRequest
+     */
+    encryptionKp?: string | null;
+    /**
+     *
+     * @type {boolean}
+     * @memberof SAMLProviderRequest
+     */
+    signAssertion?: boolean;
+    /**
+     *
+     * @type {boolean}
+     * @memberof SAMLProviderRequest
+     */
+    signResponse?: boolean;
     /**
      *
      * @type {SpBindingEnum}

package/dist/esm/models/SAMLProviderRequest.js

@@ -48,6 +48,9 @@ export function SAMLProviderRequestFromJSONTyped(json, ignoreDiscriminator) {
         'signatureAlgorithm': !exists(json, 'signature_algorithm') ? undefined : SignatureAlgorithmEnumFromJSON(json['signature_algorithm']),
         'signingKp': !exists(json, 'signing_kp') ? undefined : json['signing_kp'],
         'verificationKp': !exists(json, 'verification_kp') ? undefined : json['verification_kp'],
+        'encryptionKp': !exists(json, 'encryption_kp') ? undefined : json['encryption_kp'],
+        'signAssertion': !exists(json, 'sign_assertion') ? undefined : json['sign_assertion'],
+        'signResponse': !exists(json, 'sign_response') ? undefined : json['sign_response'],
         'spBinding': !exists(json, 'sp_binding') ? undefined : SpBindingEnumFromJSON(json['sp_binding']),
         'defaultRelayState': !exists(json, 'default_relay_state') ? undefined : json['default_relay_state'],
     };
@@ -75,6 +78,9 @@ export function SAMLProviderRequestToJSON(value) {
         'signature_algorithm': SignatureAlgorithmEnumToJSON(value.signatureAlgorithm),
         'signing_kp': value.signingKp,
         'verification_kp': value.verificationKp,
+        'encryption_kp': value.encryptionKp,
+        'sign_assertion': value.signAssertion,
+        'sign_response': value.signResponse,
         'sp_binding': SpBindingEnumToJSON(value.spBinding),
         'default_relay_state': value.defaultRelayState,
     };

package/dist/esm/models/index.d.ts

@@ -177,6 +177,7 @@ export * from './IssuerModeEnum';
 export * from './KubernetesServiceConnection';
 export * from './KubernetesServiceConnectionRequest';
 export * from './LDAPAPIAccessMode';
+export * from './LDAPCheckAccess';
 export * from './LDAPDebug';
 export * from './LDAPOutpostConfig';
 export * from './LDAPProvider';

package/dist/esm/models/index.js

@@ -179,6 +179,7 @@ export * from './IssuerModeEnum';
 export * from './KubernetesServiceConnection';
 export * from './KubernetesServiceConnectionRequest';
 export * from './LDAPAPIAccessMode';
+export * from './LDAPCheckAccess';
 export * from './LDAPDebug';
 export * from './LDAPOutpostConfig';
 export * from './LDAPProvider';

package/dist/models/LDAPCheckAccess.d.ts

@@ -0,0 +1,38 @@
+/**
+ * authentik
+ * Making authentication simple.
+ *
+ * The version of the OpenAPI document: 2024.6.3
+ * Contact: hello@goauthentik.io
+ *
+ * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+ * https://openapi-generator.tech
+ * Do not edit the class manually.
+ */
+import type { PolicyTestResult } from './PolicyTestResult';
+/**
+ * Base serializer class which doesn't implement create/update methods
+ * @export
+ * @interface LDAPCheckAccess
+ */
+export interface LDAPCheckAccess {
+    /**
+     *
+     * @type {boolean}
+     * @memberof LDAPCheckAccess
+     */
+    hasSearchPermission?: boolean;
+    /**
+     *
+     * @type {PolicyTestResult}
+     * @memberof LDAPCheckAccess
+     */
+    access: PolicyTestResult;
+}
+/**
+ * Check if a given object implements the LDAPCheckAccess interface.
+ */
+export declare function instanceOfLDAPCheckAccess(value: object): boolean;
+export declare function LDAPCheckAccessFromJSON(json: any): LDAPCheckAccess;
+export declare function LDAPCheckAccessFromJSONTyped(json: any, ignoreDiscriminator: boolean): LDAPCheckAccess;
+export declare function LDAPCheckAccessToJSON(value?: LDAPCheckAccess | null): any;

package/dist/models/LDAPCheckAccess.js

@@ -0,0 +1,54 @@
+"use strict";
+/* tslint:disable */
+/* eslint-disable */
+/**
+ * authentik
+ * Making authentication simple.
+ *
+ * The version of the OpenAPI document: 2024.6.3
+ * Contact: hello@goauthentik.io
+ *
+ * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech).
+ * https://openapi-generator.tech
+ * Do not edit the class manually.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.LDAPCheckAccessToJSON = exports.LDAPCheckAccessFromJSONTyped = exports.LDAPCheckAccessFromJSON = exports.instanceOfLDAPCheckAccess = void 0;
+const runtime_1 = require("../runtime");
+const PolicyTestResult_1 = require("./PolicyTestResult");
+/**
+ * Check if a given object implements the LDAPCheckAccess interface.
+ */
+function instanceOfLDAPCheckAccess(value) {
+    let isInstance = true;
+    isInstance = isInstance && "access" in value;
+    return isInstance;
+}
+exports.instanceOfLDAPCheckAccess = instanceOfLDAPCheckAccess;
+function LDAPCheckAccessFromJSON(json) {
+    return LDAPCheckAccessFromJSONTyped(json, false);
+}
+exports.LDAPCheckAccessFromJSON = LDAPCheckAccessFromJSON;
+function LDAPCheckAccessFromJSONTyped(json, ignoreDiscriminator) {
+    if ((json === undefined) || (json === null)) {
+        return json;
+    }
+    return {
+        'hasSearchPermission': !(0, runtime_1.exists)(json, 'has_search_permission') ? undefined : json['has_search_permission'],
+        'access': (0, PolicyTestResult_1.PolicyTestResultFromJSON)(json['access']),
+    };
+}
+exports.LDAPCheckAccessFromJSONTyped = LDAPCheckAccessFromJSONTyped;
+function LDAPCheckAccessToJSON(value) {
+    if (value === undefined) {
+        return undefined;
+    }
+    if (value === null) {
+        return null;
+    }
+    return {
+        'has_search_permission': value.hasSearchPermission,
+        'access': (0, PolicyTestResult_1.PolicyTestResultToJSON)(value.access),
+    };
+}
+exports.LDAPCheckAccessToJSON = LDAPCheckAccessToJSON;

package/dist/models/LDAPOutpostConfig.d.ts

@@ -46,12 +46,6 @@ export interface LDAPOutpostConfig {
      * @memberof LDAPOutpostConfig
      */
     readonly applicationSlug: string;
-    /**
-     * Users in this group can do search queries. If not set, every user can execute search queries.
-     * @type {string}
-     * @memberof LDAPOutpostConfig
-     */
-    searchGroup?: string | null;
     /**
      *
      * @type {string}

package/dist/models/LDAPOutpostConfig.js

@@ -42,7 +42,6 @@ function LDAPOutpostConfigFromJSONTyped(json, ignoreDiscriminator) {
         'baseDn': !(0, runtime_1.exists)(json, 'base_dn') ? undefined : json['base_dn'],
         'bindFlowSlug': json['bind_flow_slug'],
         'applicationSlug': json['application_slug'],
-        'searchGroup': !(0, runtime_1.exists)(json, 'search_group') ? undefined : json['search_group'],
         'certificate': !(0, runtime_1.exists)(json, 'certificate') ? undefined : json['certificate'],
         'tlsServerName': !(0, runtime_1.exists)(json, 'tls_server_name') ? undefined : json['tls_server_name'],
         'uidStartNumber': !(0, runtime_1.exists)(json, 'uid_start_number') ? undefined : json['uid_start_number'],
@@ -64,7 +63,6 @@ function LDAPOutpostConfigToJSON(value) {
         'name': value.name,
         'base_dn': value.baseDn,
         'bind_flow_slug': value.bindFlowSlug,
-        'search_group': value.searchGroup,
         'certificate': value.certificate,
         'tls_server_name': value.tlsServerName,
         'uid_start_number': value.uidStartNumber,

package/dist/models/LDAPProvider.d.ts

@@ -100,12 +100,6 @@ export interface LDAPProvider {
      * @memberof LDAPProvider
      */
     baseDn?: string;
-    /**
-     * Users in this group can do search queries. If not set, every user can execute search queries.
-     * @type {string}
-     * @memberof LDAPProvider
-     */
-    searchGroup?: string | null;
     /**
      *
      * @type {string}

package/dist/models/LDAPProvider.js

@@ -59,7 +59,6 @@ function LDAPProviderFromJSONTyped(json, ignoreDiscriminator) {
         'verboseNamePlural': json['verbose_name_plural'],
         'metaModelName': json['meta_model_name'],
         'baseDn': !(0, runtime_1.exists)(json, 'base_dn') ? undefined : json['base_dn'],
-        'searchGroup': !(0, runtime_1.exists)(json, 'search_group') ? undefined : json['search_group'],
         'certificate': !(0, runtime_1.exists)(json, 'certificate') ? undefined : json['certificate'],
         'tlsServerName': !(0, runtime_1.exists)(json, 'tls_server_name') ? undefined : json['tls_server_name'],
         'uidStartNumber': !(0, runtime_1.exists)(json, 'uid_start_number') ? undefined : json['uid_start_number'],
@@ -84,7 +83,6 @@ function LDAPProviderToJSON(value) {
         'authorization_flow': value.authorizationFlow,
         'property_mappings': value.propertyMappings,
         'base_dn': value.baseDn,
-        'search_group': value.searchGroup,
         'certificate': value.certificate,
         'tls_server_name': value.tlsServerName,
         'uid_start_number': value.uidStartNumber,

package/dist/models/LDAPProviderRequest.d.ts

@@ -46,12 +46,6 @@ export interface LDAPProviderRequest {
      * @memberof LDAPProviderRequest
      */
     baseDn?: string;
-    /**
-     * Users in this group can do search queries. If not set, every user can execute search queries.
-     * @type {string}
-     * @memberof LDAPProviderRequest
-     */
-    searchGroup?: string | null;
     /**
      *
      * @type {string}

package/dist/models/LDAPProviderRequest.js

@@ -40,7 +40,6 @@ function LDAPProviderRequestFromJSONTyped(json, ignoreDiscriminator) {
         'authorizationFlow': json['authorization_flow'],
         'propertyMappings': !(0, runtime_1.exists)(json, 'property_mappings') ? undefined : json['property_mappings'],
         'baseDn': !(0, runtime_1.exists)(json, 'base_dn') ? undefined : json['base_dn'],
-        'searchGroup': !(0, runtime_1.exists)(json, 'search_group') ? undefined : json['search_group'],
         'certificate': !(0, runtime_1.exists)(json, 'certificate') ? undefined : json['certificate'],
         'tlsServerName': !(0, runtime_1.exists)(json, 'tls_server_name') ? undefined : json['tls_server_name'],
         'uidStartNumber': !(0, runtime_1.exists)(json, 'uid_start_number') ? undefined : json['uid_start_number'],
@@ -64,7 +63,6 @@ function LDAPProviderRequestToJSON(value) {
         'authorization_flow': value.authorizationFlow,
         'property_mappings': value.propertyMappings,
         'base_dn': value.baseDn,
-        'search_group': value.searchGroup,
         'certificate': value.certificate,
         'tls_server_name': value.tlsServerName,
         'uid_start_number': value.uidStartNumber,

package/dist/models/PatchedLDAPProviderRequest.d.ts

@@ -46,12 +46,6 @@ export interface PatchedLDAPProviderRequest {
      * @memberof PatchedLDAPProviderRequest
      */
     baseDn?: string;
-    /**
-     * Users in this group can do search queries. If not set, every user can execute search queries.
-     * @type {string}
-     * @memberof PatchedLDAPProviderRequest
-     */
-    searchGroup?: string | null;
     /**
      *
      * @type {string}

package/dist/models/PatchedLDAPProviderRequest.js

@@ -38,7 +38,6 @@ function PatchedLDAPProviderRequestFromJSONTyped(json, ignoreDiscriminator) {
         'authorizationFlow': !(0, runtime_1.exists)(json, 'authorization_flow') ? undefined : json['authorization_flow'],
         'propertyMappings': !(0, runtime_1.exists)(json, 'property_mappings') ? undefined : json['property_mappings'],
         'baseDn': !(0, runtime_1.exists)(json, 'base_dn') ? undefined : json['base_dn'],
-        'searchGroup': !(0, runtime_1.exists)(json, 'search_group') ? undefined : json['search_group'],
         'certificate': !(0, runtime_1.exists)(json, 'certificate') ? undefined : json['certificate'],
         'tlsServerName': !(0, runtime_1.exists)(json, 'tls_server_name') ? undefined : json['tls_server_name'],
         'uidStartNumber': !(0, runtime_1.exists)(json, 'uid_start_number') ? undefined : json['uid_start_number'],
@@ -62,7 +61,6 @@ function PatchedLDAPProviderRequestToJSON(value) {
         'authorization_flow': value.authorizationFlow,
         'property_mappings': value.propertyMappings,
         'base_dn': value.baseDn,
-        'search_group': value.searchGroup,
         'certificate': value.certificate,
         'tls_server_name': value.tlsServerName,
         'uid_start_number': value.uidStartNumber,

package/dist/models/PatchedSAMLProviderRequest.d.ts

@@ -108,6 +108,24 @@ export interface PatchedSAMLProviderRequest {
      * @memberof PatchedSAMLProviderRequest
      */
     verificationKp?: string | null;
+    /**
+     * When selected, incoming assertions are encrypted by the IdP using the public key of the encryption keypair. The assertion is decrypted by the SP using the the private key.
+     * @type {string}
+     * @memberof PatchedSAMLProviderRequest
+     */
+    encryptionKp?: string | null;
+    /**
+     *
+     * @type {boolean}
+     * @memberof PatchedSAMLProviderRequest
+     */
+    signAssertion?: boolean;
+    /**
+     *
+     * @type {boolean}
+     * @memberof PatchedSAMLProviderRequest
+     */
+    signResponse?: boolean;
     /**
      *
      * @type {SpBindingEnum}

package/dist/models/PatchedSAMLProviderRequest.js

@@ -50,6 +50,9 @@ function PatchedSAMLProviderRequestFromJSONTyped(json, ignoreDiscriminator) {
         'signatureAlgorithm': !(0, runtime_1.exists)(json, 'signature_algorithm') ? undefined : (0, SignatureAlgorithmEnum_1.SignatureAlgorithmEnumFromJSON)(json['signature_algorithm']),
         'signingKp': !(0, runtime_1.exists)(json, 'signing_kp') ? undefined : json['signing_kp'],
         'verificationKp': !(0, runtime_1.exists)(json, 'verification_kp') ? undefined : json['verification_kp'],
+        'encryptionKp': !(0, runtime_1.exists)(json, 'encryption_kp') ? undefined : json['encryption_kp'],
+        'signAssertion': !(0, runtime_1.exists)(json, 'sign_assertion') ? undefined : json['sign_assertion'],
+        'signResponse': !(0, runtime_1.exists)(json, 'sign_response') ? undefined : json['sign_response'],
         'spBinding': !(0, runtime_1.exists)(json, 'sp_binding') ? undefined : (0, SpBindingEnum_1.SpBindingEnumFromJSON)(json['sp_binding']),
         'defaultRelayState': !(0, runtime_1.exists)(json, 'default_relay_state') ? undefined : json['default_relay_state'],
     };
@@ -78,6 +81,9 @@ function PatchedSAMLProviderRequestToJSON(value) {
         'signature_algorithm': (0, SignatureAlgorithmEnum_1.SignatureAlgorithmEnumToJSON)(value.signatureAlgorithm),
         'signing_kp': value.signingKp,
         'verification_kp': value.verificationKp,
+        'encryption_kp': value.encryptionKp,
+        'sign_assertion': value.signAssertion,
+        'sign_response': value.signResponse,
         'sp_binding': (0, SpBindingEnum_1.SpBindingEnumToJSON)(value.spBinding),
         'default_relay_state': value.defaultRelayState,
     };

package/dist/models/SAMLProvider.d.ts

@@ -162,6 +162,24 @@ export interface SAMLProvider {
      * @memberof SAMLProvider
      */
     verificationKp?: string | null;
+    /**
+     * When selected, incoming assertions are encrypted by the IdP using the public key of the encryption keypair. The assertion is decrypted by the SP using the the private key.
+     * @type {string}
+     * @memberof SAMLProvider
+     */
+    encryptionKp?: string | null;
+    /**
+     *
+     * @type {boolean}
+     * @memberof SAMLProvider
+     */
+    signAssertion?: boolean;
+    /**
+     *
+     * @type {boolean}
+     * @memberof SAMLProvider
+     */
+    signResponse?: boolean;
     /**
      *
      * @type {SpBindingEnum}

package/dist/models/SAMLProvider.js

@@ -77,6 +77,9 @@ function SAMLProviderFromJSONTyped(json, ignoreDiscriminator) {
         'signatureAlgorithm': !(0, runtime_1.exists)(json, 'signature_algorithm') ? undefined : (0, SignatureAlgorithmEnum_1.SignatureAlgorithmEnumFromJSON)(json['signature_algorithm']),
         'signingKp': !(0, runtime_1.exists)(json, 'signing_kp') ? undefined : json['signing_kp'],
         'verificationKp': !(0, runtime_1.exists)(json, 'verification_kp') ? undefined : json['verification_kp'],
+        'encryptionKp': !(0, runtime_1.exists)(json, 'encryption_kp') ? undefined : json['encryption_kp'],
+        'signAssertion': !(0, runtime_1.exists)(json, 'sign_assertion') ? undefined : json['sign_assertion'],
+        'signResponse': !(0, runtime_1.exists)(json, 'sign_response') ? undefined : json['sign_response'],
         'spBinding': !(0, runtime_1.exists)(json, 'sp_binding') ? undefined : (0, SpBindingEnum_1.SpBindingEnumFromJSON)(json['sp_binding']),
         'defaultRelayState': !(0, runtime_1.exists)(json, 'default_relay_state') ? undefined : json['default_relay_state'],
         'urlDownloadMetadata': json['url_download_metadata'],
@@ -111,6 +114,9 @@ function SAMLProviderToJSON(value) {
         'signature_algorithm': (0, SignatureAlgorithmEnum_1.SignatureAlgorithmEnumToJSON)(value.signatureAlgorithm),
         'signing_kp': value.signingKp,
         'verification_kp': value.verificationKp,
+        'encryption_kp': value.encryptionKp,
+        'sign_assertion': value.signAssertion,
+        'sign_response': value.signResponse,
         'sp_binding': (0, SpBindingEnum_1.SpBindingEnumToJSON)(value.spBinding),
         'default_relay_state': value.defaultRelayState,
     };

package/dist/models/SAMLProviderRequest.d.ts

@@ -108,6 +108,24 @@ export interface SAMLProviderRequest {
      * @memberof SAMLProviderRequest
      */
     verificationKp?: string | null;
+    /**
+     * When selected, incoming assertions are encrypted by the IdP using the public key of the encryption keypair. The assertion is decrypted by the SP using the the private key.
+     * @type {string}
+     * @memberof SAMLProviderRequest
+     */
+    encryptionKp?: string | null;
+    /**
+     *
+     * @type {boolean}
+     * @memberof SAMLProviderRequest
+     */
+    signAssertion?: boolean;
+    /**
+     *
+     * @type {boolean}
+     * @memberof SAMLProviderRequest
+     */
+    signResponse?: boolean;
     /**
      *
      * @type {SpBindingEnum}

package/dist/models/SAMLProviderRequest.js

@@ -53,6 +53,9 @@ function SAMLProviderRequestFromJSONTyped(json, ignoreDiscriminator) {
         'signatureAlgorithm': !(0, runtime_1.exists)(json, 'signature_algorithm') ? undefined : (0, SignatureAlgorithmEnum_1.SignatureAlgorithmEnumFromJSON)(json['signature_algorithm']),
         'signingKp': !(0, runtime_1.exists)(json, 'signing_kp') ? undefined : json['signing_kp'],
         'verificationKp': !(0, runtime_1.exists)(json, 'verification_kp') ? undefined : json['verification_kp'],
+        'encryptionKp': !(0, runtime_1.exists)(json, 'encryption_kp') ? undefined : json['encryption_kp'],
+        'signAssertion': !(0, runtime_1.exists)(json, 'sign_assertion') ? undefined : json['sign_assertion'],
+        'signResponse': !(0, runtime_1.exists)(json, 'sign_response') ? undefined : json['sign_response'],
         'spBinding': !(0, runtime_1.exists)(json, 'sp_binding') ? undefined : (0, SpBindingEnum_1.SpBindingEnumFromJSON)(json['sp_binding']),
         'defaultRelayState': !(0, runtime_1.exists)(json, 'default_relay_state') ? undefined : json['default_relay_state'],
     };
@@ -81,6 +84,9 @@ function SAMLProviderRequestToJSON(value) {
         'signature_algorithm': (0, SignatureAlgorithmEnum_1.SignatureAlgorithmEnumToJSON)(value.signatureAlgorithm),
         'signing_kp': value.signingKp,
         'verification_kp': value.verificationKp,
+        'encryption_kp': value.encryptionKp,
+        'sign_assertion': value.signAssertion,
+        'sign_response': value.signResponse,
         'sp_binding': (0, SpBindingEnum_1.SpBindingEnumToJSON)(value.spBinding),
         'default_relay_state': value.defaultRelayState,
     };

package/dist/models/index.d.ts

@@ -177,6 +177,7 @@ export * from './IssuerModeEnum';
 export * from './KubernetesServiceConnection';
 export * from './KubernetesServiceConnectionRequest';
 export * from './LDAPAPIAccessMode';
+export * from './LDAPCheckAccess';
 export * from './LDAPDebug';
 export * from './LDAPOutpostConfig';
 export * from './LDAPProvider';

package/dist/models/index.js

@@ -195,6 +195,7 @@ __exportStar(require("./IssuerModeEnum"), exports);
 __exportStar(require("./KubernetesServiceConnection"), exports);
 __exportStar(require("./KubernetesServiceConnectionRequest"), exports);
 __exportStar(require("./LDAPAPIAccessMode"), exports);
+__exportStar(require("./LDAPCheckAccess"), exports);
 __exportStar(require("./LDAPDebug"), exports);
 __exportStar(require("./LDAPOutpostConfig"), exports);
 __exportStar(require("./LDAPProvider"), exports);

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@goauthentik/api",
-  "version": "2024.6.3-1723497462",
+  "version": "2024.6.3-1723921843",
   "description": "OpenAPI client for @goauthentik/api",
   "author": "OpenAPI-Generator",
   "repository": {

package/src/apis/OutpostsApi.ts

@@ -20,6 +20,7 @@ import type {
   GenericError,
   KubernetesServiceConnection,
   KubernetesServiceConnectionRequest,
+  LDAPCheckAccess,
   Outpost,
   OutpostDefaultConfig,
   OutpostHealth,
@@ -52,6 +53,8 @@ import {
     KubernetesServiceConnectionToJSON,
     KubernetesServiceConnectionRequestFromJSON,
     KubernetesServiceConnectionRequestToJSON,
+    LDAPCheckAccessFromJSON,
+    LDAPCheckAccessToJSON,
     OutpostFromJSON,
     OutpostToJSON,
     OutpostDefaultConfigFromJSON,
@@ -149,6 +152,11 @@ export interface OutpostsInstancesUsedByListRequest {
     uuid: string;
 }
 
+export interface OutpostsLdapAccessCheckRequest {
+    id: number;
+    appSlug?: string;
+}
+
 export interface OutpostsLdapListRequest {
     name?: string;
     ordering?: string;
@@ -165,7 +173,7 @@ export interface OutpostsProxyListRequest {
     search?: string;
 }
 
-export interface OutpostsRadiusCheckAccessRetrieveRequest {
+export interface OutpostsRadiusAccessCheckRequest {
     id: number;
     appSlug?: string;
 }
@@ -714,6 +722,48 @@ export class OutpostsApi extends runtime.BaseAPI {
         return await response.value();
     }
 
+    /**
+     * Check access to a single application by slug
+     */
+    async outpostsLdapAccessCheckRaw(requestParameters: OutpostsLdapAccessCheckRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<LDAPCheckAccess>> {
+        if (requestParameters.id === null || requestParameters.id === undefined) {
+            throw new runtime.RequiredError('id','Required parameter requestParameters.id was null or undefined when calling outpostsLdapAccessCheck.');
+        }
+
+        const queryParameters: any = {};
+
+        if (requestParameters.appSlug !== undefined) {
+            queryParameters['app_slug'] = requestParameters.appSlug;
+        }
+
+        const headerParameters: runtime.HTTPHeaders = {};
+
+        if (this.configuration && this.configuration.accessToken) {
+            const token = this.configuration.accessToken;
+            const tokenString = await token("authentik", []);
+
+            if (tokenString) {
+                headerParameters["Authorization"] = `Bearer ${tokenString}`;
+            }
+        }
+        const response = await this.request({
+            path: `/outposts/ldap/{id}/check_access/`.replace(`{${"id"}}`, encodeURIComponent(String(requestParameters.id))),
+            method: 'GET',
+            headers: headerParameters,
+            query: queryParameters,
+        }, initOverrides);
+
+        return new runtime.JSONApiResponse(response, (jsonValue) => LDAPCheckAccessFromJSON(jsonValue));
+    }
+
+    /**
+     * Check access to a single application by slug
+     */
+    async outpostsLdapAccessCheck(requestParameters: OutpostsLdapAccessCheckRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<LDAPCheckAccess> {
+        const response = await this.outpostsLdapAccessCheckRaw(requestParameters, initOverrides);
+        return await response.value();
+    }
+
     /**
      * LDAPProvider Viewset
      */
@@ -825,9 +875,9 @@ export class OutpostsApi extends runtime.BaseAPI {
     /**
      * Check access to a single application by slug
      */
-    async outpostsRadiusCheckAccessRetrieveRaw(requestParameters: OutpostsRadiusCheckAccessRetrieveRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<RadiusCheckAccess>> {
+    async outpostsRadiusAccessCheckRaw(requestParameters: OutpostsRadiusAccessCheckRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<RadiusCheckAccess>> {
         if (requestParameters.id === null || requestParameters.id === undefined) {
-            throw new runtime.RequiredError('id','Required parameter requestParameters.id was null or undefined when calling outpostsRadiusCheckAccessRetrieve.');
+            throw new runtime.RequiredError('id','Required parameter requestParameters.id was null or undefined when calling outpostsRadiusAccessCheck.');
         }
 
         const queryParameters: any = {};
@@ -859,8 +909,8 @@ export class OutpostsApi extends runtime.BaseAPI {
     /**
      * Check access to a single application by slug
      */
-    async outpostsRadiusCheckAccessRetrieve(requestParameters: OutpostsRadiusCheckAccessRetrieveRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<RadiusCheckAccess> {
-        const response = await this.outpostsRadiusCheckAccessRetrieveRaw(requestParameters, initOverrides);
+    async outpostsRadiusAccessCheck(requestParameters: OutpostsRadiusAccessCheckRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<RadiusCheckAccess> {
+        const response = await this.outpostsRadiusAccessCheckRaw(requestParameters, initOverrides);
         return await response.value();
     }