authentik-client 2025.10.3__py3-none-any.whl → 2025.12.0rc1__py3-none-any.whl

authentik_client/models/file_list.py

@@ -0,0 +1,92 @@
+# coding: utf-8
+
+"""
+    authentik
+
+    Making authentication simple.
+
+    The version of the OpenAPI document: 2025.12.0-rc1
+    Contact: hello@goauthentik.io
+    Generated by OpenAPI Generator (https://openapi-generator.tech)
+
+    Do not edit the class manually.
+"""  # noqa: E501
+
+
+from __future__ import annotations
+import pprint
+import re  # noqa: F401
+import json
+
+from pydantic import BaseModel, ConfigDict, StrictStr
+from typing import Any, ClassVar, Dict, List
+from typing import Optional, Set
+from typing_extensions import Self
+
+class FileList(BaseModel):
+    """
+    Base serializer class which doesn't implement create/update methods
+    """ # noqa: E501
+    name: StrictStr
+    mime_type: StrictStr
+    url: StrictStr
+    __properties: ClassVar[List[str]] = ["name", "mime_type", "url"]
+
+    model_config = ConfigDict(
+        populate_by_name=True,
+        validate_assignment=True,
+        protected_namespaces=(),
+    )
+
+
+    def to_str(self) -> str:
+        """Returns the string representation of the model using alias"""
+        return pprint.pformat(self.model_dump(by_alias=True))
+
+    def to_json(self) -> str:
+        """Returns the JSON representation of the model using alias"""
+        # TODO: pydantic v2: use .model_dump_json(by_alias=True, exclude_unset=True) instead
+        return json.dumps(self.to_dict())
+
+    @classmethod
+    def from_json(cls, json_str: str) -> Optional[Self]:
+        """Create an instance of FileList from a JSON string"""
+        return cls.from_dict(json.loads(json_str))
+
+    def to_dict(self) -> Dict[str, Any]:
+        """Return the dictionary representation of the model using alias.
+
+        This has the following differences from calling pydantic's
+        `self.model_dump(by_alias=True)`:
+
+        * `None` is only added to the output dict for nullable fields that
+          were set at model initialization. Other fields with value `None`
+          are ignored.
+        """
+        excluded_fields: Set[str] = set([
+        ])
+
+        _dict = self.model_dump(
+            by_alias=True,
+            exclude=excluded_fields,
+            exclude_none=True,
+        )
+        return _dict
+
+    @classmethod
+    def from_dict(cls, obj: Optional[Dict[str, Any]]) -> Optional[Self]:
+        """Create an instance of FileList from a dict"""
+        if obj is None:
+            return None
+
+        if not isinstance(obj, dict):
+            return cls.model_validate(obj)
+
+        _obj = cls.model_validate({
+            "name": obj.get("name"),
+            "mime_type": obj.get("mime_type"),
+            "url": obj.get("url")
+        })
+        return _obj
+
+

authentik_client/models/flow.py

@@ -5,7 +5,7 @@
 
     Making authentication simple.
 
-    The version of the OpenAPI document: 2025.10.3
+    The version of the OpenAPI document: 2025.12.0-rc1
     Contact: hello@goauthentik.io
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 
@@ -37,10 +37,11 @@ class Flow(BaseModel):
     pk: UUID
     policybindingmodel_ptr_id: UUID
     name: StrictStr
-    slug: Annotated[str, Field(strict=True, max_length=50)] = Field(description="Visible in the URL.")
+    slug: Annotated[str, Field(strict=True)] = Field(description="Visible in the URL.")
     title: StrictStr = Field(description="Shown as the Title in Flow pages.")
     designation: FlowDesignationEnum = Field(description="Decides what this Flow is used for. For example, the Authentication flow is redirect to when an un-authenticated user visits authentik.")
-    background: StrictStr = Field(description="Get the URL to the background image. If the name is /static or starts with http it is returned as-is")
+    background: Optional[StrictStr] = Field(default=None, description="Background shown during execution")
+    background_url: StrictStr = Field(description="Get the URL to the background image")
     stages: List[UUID]
     policies: List[UUID]
     cache_count: StrictInt = Field(description="Get count of cached flows")
@@ -50,7 +51,7 @@ class Flow(BaseModel):
     layout: Optional[FlowLayoutEnum] = None
     denied_action: Optional[DeniedActionEnum] = Field(default=None, description="Configure what should happen when a flow denies access to a user.")
     authentication: Optional[AuthenticationEnum] = Field(default=None, description="Required level of authentication and authorization to access a flow.")
-    __properties: ClassVar[List[str]] = ["pk", "policybindingmodel_ptr_id", "name", "slug", "title", "designation", "background", "stages", "policies", "cache_count", "policy_engine_mode", "compatibility_mode", "export_url", "layout", "denied_action", "authentication"]
+    __properties: ClassVar[List[str]] = ["pk", "policybindingmodel_ptr_id", "name", "slug", "title", "designation", "background", "background_url", "stages", "policies", "cache_count", "policy_engine_mode", "compatibility_mode", "export_url", "layout", "denied_action", "authentication"]
 
     @field_validator('slug')
     def slug_validate_regular_expression(cls, value):
@@ -100,7 +101,7 @@ class Flow(BaseModel):
         excluded_fields: Set[str] = set([
             "pk",
             "policybindingmodel_ptr_id",
-            "background",
+            "background_url",
             "stages",
             "policies",
             "cache_count",
@@ -131,6 +132,7 @@ class Flow(BaseModel):
             "title": obj.get("title"),
             "designation": obj.get("designation"),
             "background": obj.get("background"),
+            "background_url": obj.get("background_url"),
             "stages": obj.get("stages"),
             "policies": obj.get("policies"),
             "cache_count": obj.get("cache_count"),

authentik_client/models/flow_challenge_response_request.py

@@ -5,7 +5,7 @@
 
     Making authentication simple.
 
-    The version of the OpenAPI document: 2025.10.3
+    The version of the OpenAPI document: 2025.12.0-rc1
     Contact: hello@goauthentik.io
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 
@@ -31,6 +31,7 @@ from authentik_client.models.captcha_challenge_response_request import CaptchaCh
 from authentik_client.models.consent_challenge_response_request import ConsentChallengeResponseRequest
 from authentik_client.models.dummy_challenge_response_request import DummyChallengeResponseRequest
 from authentik_client.models.email_challenge_response_request import EmailChallengeResponseRequest
+from authentik_client.models.endpoint_agent_challenge_response_request import EndpointAgentChallengeResponseRequest
 from authentik_client.models.frame_challenge_response_request import FrameChallengeResponseRequest
 from authentik_client.models.identification_challenge_response_request import IdentificationChallengeResponseRequest
 from authentik_client.models.iframe_logout_challenge_response_request import IframeLogoutChallengeResponseRequest
@@ -47,7 +48,7 @@ from pydantic import StrictStr, Field
 from typing import Union, List, Set, Optional, Dict
 from typing_extensions import Literal, Self
 
-FLOWCHALLENGERESPONSEREQUEST_ONE_OF_SCHEMAS = ["AppleChallengeResponseRequest", "AuthenticatorDuoChallengeResponseRequest", "AuthenticatorEmailChallengeResponseRequest", "AuthenticatorSMSChallengeResponseRequest", "AuthenticatorStaticChallengeResponseRequest", "AuthenticatorTOTPChallengeResponseRequest", "AuthenticatorValidationChallengeResponseRequest", "AuthenticatorWebAuthnChallengeResponseRequest", "AutoSubmitChallengeResponseRequest", "CaptchaChallengeResponseRequest", "ConsentChallengeResponseRequest", "DummyChallengeResponseRequest", "EmailChallengeResponseRequest", "FrameChallengeResponseRequest", "IdentificationChallengeResponseRequest", "IframeLogoutChallengeResponseRequest", "NativeLogoutChallengeResponseRequest", "OAuthDeviceCodeChallengeResponseRequest", "OAuthDeviceCodeFinishChallengeResponseRequest", "PasswordChallengeResponseRequest", "PlexAuthenticationChallengeResponseRequest", "PromptChallengeResponseRequest", "RedirectChallengeResponseRequest", "TelegramChallengeResponseRequest", "UserLoginChallengeResponseRequest"]
+FLOWCHALLENGERESPONSEREQUEST_ONE_OF_SCHEMAS = ["AppleChallengeResponseRequest", "AuthenticatorDuoChallengeResponseRequest", "AuthenticatorEmailChallengeResponseRequest", "AuthenticatorSMSChallengeResponseRequest", "AuthenticatorStaticChallengeResponseRequest", "AuthenticatorTOTPChallengeResponseRequest", "AuthenticatorValidationChallengeResponseRequest", "AuthenticatorWebAuthnChallengeResponseRequest", "AutoSubmitChallengeResponseRequest", "CaptchaChallengeResponseRequest", "ConsentChallengeResponseRequest", "DummyChallengeResponseRequest", "EmailChallengeResponseRequest", "EndpointAgentChallengeResponseRequest", "FrameChallengeResponseRequest", "IdentificationChallengeResponseRequest", "IframeLogoutChallengeResponseRequest", "NativeLogoutChallengeResponseRequest", "OAuthDeviceCodeChallengeResponseRequest", "OAuthDeviceCodeFinishChallengeResponseRequest", "PasswordChallengeResponseRequest", "PlexAuthenticationChallengeResponseRequest", "PromptChallengeResponseRequest", "RedirectChallengeResponseRequest", "TelegramChallengeResponseRequest", "UserLoginChallengeResponseRequest"]
 
 class FlowChallengeResponseRequest(BaseModel):
     """
@@ -79,32 +80,34 @@ class FlowChallengeResponseRequest(BaseModel):
     oneof_schema_12_validator: Optional[DummyChallengeResponseRequest] = None
     # data type: EmailChallengeResponseRequest
     oneof_schema_13_validator: Optional[EmailChallengeResponseRequest] = None
+    # data type: EndpointAgentChallengeResponseRequest
+    oneof_schema_14_validator: Optional[EndpointAgentChallengeResponseRequest] = None
     # data type: FrameChallengeResponseRequest
-    oneof_schema_14_validator: Optional[FrameChallengeResponseRequest] = None
+    oneof_schema_15_validator: Optional[FrameChallengeResponseRequest] = None
     # data type: IdentificationChallengeResponseRequest
-    oneof_schema_15_validator: Optional[IdentificationChallengeResponseRequest] = None
+    oneof_schema_16_validator: Optional[IdentificationChallengeResponseRequest] = None
     # data type: IframeLogoutChallengeResponseRequest
-    oneof_schema_16_validator: Optional[IframeLogoutChallengeResponseRequest] = None
+    oneof_schema_17_validator: Optional[IframeLogoutChallengeResponseRequest] = None
     # data type: NativeLogoutChallengeResponseRequest
-    oneof_schema_17_validator: Optional[NativeLogoutChallengeResponseRequest] = None
+    oneof_schema_18_validator: Optional[NativeLogoutChallengeResponseRequest] = None
     # data type: OAuthDeviceCodeChallengeResponseRequest
-    oneof_schema_18_validator: Optional[OAuthDeviceCodeChallengeResponseRequest] = None
+    oneof_schema_19_validator: Optional[OAuthDeviceCodeChallengeResponseRequest] = None
     # data type: OAuthDeviceCodeFinishChallengeResponseRequest
-    oneof_schema_19_validator: Optional[OAuthDeviceCodeFinishChallengeResponseRequest] = None
+    oneof_schema_20_validator: Optional[OAuthDeviceCodeFinishChallengeResponseRequest] = None
     # data type: PasswordChallengeResponseRequest
-    oneof_schema_20_validator: Optional[PasswordChallengeResponseRequest] = None
+    oneof_schema_21_validator: Optional[PasswordChallengeResponseRequest] = None
     # data type: PlexAuthenticationChallengeResponseRequest
-    oneof_schema_21_validator: Optional[PlexAuthenticationChallengeResponseRequest] = None
+    oneof_schema_22_validator: Optional[PlexAuthenticationChallengeResponseRequest] = None
     # data type: PromptChallengeResponseRequest
-    oneof_schema_22_validator: Optional[PromptChallengeResponseRequest] = None
+    oneof_schema_23_validator: Optional[PromptChallengeResponseRequest] = None
     # data type: RedirectChallengeResponseRequest
-    oneof_schema_23_validator: Optional[RedirectChallengeResponseRequest] = None
+    oneof_schema_24_validator: Optional[RedirectChallengeResponseRequest] = None
     # data type: TelegramChallengeResponseRequest
-    oneof_schema_24_validator: Optional[TelegramChallengeResponseRequest] = None
+    oneof_schema_25_validator: Optional[TelegramChallengeResponseRequest] = None
     # data type: UserLoginChallengeResponseRequest
-    oneof_schema_25_validator: Optional[UserLoginChallengeResponseRequest] = None
-    actual_instance: Optional[Union[AppleChallengeResponseRequest, AuthenticatorDuoChallengeResponseRequest, AuthenticatorEmailChallengeResponseRequest, AuthenticatorSMSChallengeResponseRequest, AuthenticatorStaticChallengeResponseRequest, AuthenticatorTOTPChallengeResponseRequest, AuthenticatorValidationChallengeResponseRequest, AuthenticatorWebAuthnChallengeResponseRequest, AutoSubmitChallengeResponseRequest, CaptchaChallengeResponseRequest, ConsentChallengeResponseRequest, DummyChallengeResponseRequest, EmailChallengeResponseRequest, FrameChallengeResponseRequest, IdentificationChallengeResponseRequest, IframeLogoutChallengeResponseRequest, NativeLogoutChallengeResponseRequest, OAuthDeviceCodeChallengeResponseRequest, OAuthDeviceCodeFinishChallengeResponseRequest, PasswordChallengeResponseRequest, PlexAuthenticationChallengeResponseRequest, PromptChallengeResponseRequest, RedirectChallengeResponseRequest, TelegramChallengeResponseRequest, UserLoginChallengeResponseRequest]] = None
-    one_of_schemas: Set[str] = { "AppleChallengeResponseRequest", "AuthenticatorDuoChallengeResponseRequest", "AuthenticatorEmailChallengeResponseRequest", "AuthenticatorSMSChallengeResponseRequest", "AuthenticatorStaticChallengeResponseRequest", "AuthenticatorTOTPChallengeResponseRequest", "AuthenticatorValidationChallengeResponseRequest", "AuthenticatorWebAuthnChallengeResponseRequest", "AutoSubmitChallengeResponseRequest", "CaptchaChallengeResponseRequest", "ConsentChallengeResponseRequest", "DummyChallengeResponseRequest", "EmailChallengeResponseRequest", "FrameChallengeResponseRequest", "IdentificationChallengeResponseRequest", "IframeLogoutChallengeResponseRequest", "NativeLogoutChallengeResponseRequest", "OAuthDeviceCodeChallengeResponseRequest", "OAuthDeviceCodeFinishChallengeResponseRequest", "PasswordChallengeResponseRequest", "PlexAuthenticationChallengeResponseRequest", "PromptChallengeResponseRequest", "RedirectChallengeResponseRequest", "TelegramChallengeResponseRequest", "UserLoginChallengeResponseRequest" }
+    oneof_schema_26_validator: Optional[UserLoginChallengeResponseRequest] = None
+    actual_instance: Optional[Union[AppleChallengeResponseRequest, AuthenticatorDuoChallengeResponseRequest, AuthenticatorEmailChallengeResponseRequest, AuthenticatorSMSChallengeResponseRequest, AuthenticatorStaticChallengeResponseRequest, AuthenticatorTOTPChallengeResponseRequest, AuthenticatorValidationChallengeResponseRequest, AuthenticatorWebAuthnChallengeResponseRequest, AutoSubmitChallengeResponseRequest, CaptchaChallengeResponseRequest, ConsentChallengeResponseRequest, DummyChallengeResponseRequest, EmailChallengeResponseRequest, EndpointAgentChallengeResponseRequest, FrameChallengeResponseRequest, IdentificationChallengeResponseRequest, IframeLogoutChallengeResponseRequest, NativeLogoutChallengeResponseRequest, OAuthDeviceCodeChallengeResponseRequest, OAuthDeviceCodeFinishChallengeResponseRequest, PasswordChallengeResponseRequest, PlexAuthenticationChallengeResponseRequest, PromptChallengeResponseRequest, RedirectChallengeResponseRequest, TelegramChallengeResponseRequest, UserLoginChallengeResponseRequest]] = None
+    one_of_schemas: Set[str] = { "AppleChallengeResponseRequest", "AuthenticatorDuoChallengeResponseRequest", "AuthenticatorEmailChallengeResponseRequest", "AuthenticatorSMSChallengeResponseRequest", "AuthenticatorStaticChallengeResponseRequest", "AuthenticatorTOTPChallengeResponseRequest", "AuthenticatorValidationChallengeResponseRequest", "AuthenticatorWebAuthnChallengeResponseRequest", "AutoSubmitChallengeResponseRequest", "CaptchaChallengeResponseRequest", "ConsentChallengeResponseRequest", "DummyChallengeResponseRequest", "EmailChallengeResponseRequest", "EndpointAgentChallengeResponseRequest", "FrameChallengeResponseRequest", "IdentificationChallengeResponseRequest", "IframeLogoutChallengeResponseRequest", "NativeLogoutChallengeResponseRequest", "OAuthDeviceCodeChallengeResponseRequest", "OAuthDeviceCodeFinishChallengeResponseRequest", "PasswordChallengeResponseRequest", "PlexAuthenticationChallengeResponseRequest", "PromptChallengeResponseRequest", "RedirectChallengeResponseRequest", "TelegramChallengeResponseRequest", "UserLoginChallengeResponseRequest" }
 
     model_config = ConfigDict(
         validate_assignment=True,
@@ -195,6 +198,11 @@ class FlowChallengeResponseRequest(BaseModel):
             error_messages.append(f"Error! Input type `{type(v)}` is not `EmailChallengeResponseRequest`")
         else:
             match += 1
+        # validate data type: EndpointAgentChallengeResponseRequest
+        if not isinstance(v, EndpointAgentChallengeResponseRequest):
+            error_messages.append(f"Error! Input type `{type(v)}` is not `EndpointAgentChallengeResponseRequest`")
+        else:
+            match += 1
         # validate data type: FrameChallengeResponseRequest
         if not isinstance(v, FrameChallengeResponseRequest):
             error_messages.append(f"Error! Input type `{type(v)}` is not `FrameChallengeResponseRequest`")
@@ -257,10 +265,10 @@ class FlowChallengeResponseRequest(BaseModel):
             match += 1
         if match > 1:
             # more than 1 match
-            raise ValueError("Multiple matches found when setting `actual_instance` in FlowChallengeResponseRequest with oneOf schemas: AppleChallengeResponseRequest, AuthenticatorDuoChallengeResponseRequest, AuthenticatorEmailChallengeResponseRequest, AuthenticatorSMSChallengeResponseRequest, AuthenticatorStaticChallengeResponseRequest, AuthenticatorTOTPChallengeResponseRequest, AuthenticatorValidationChallengeResponseRequest, AuthenticatorWebAuthnChallengeResponseRequest, AutoSubmitChallengeResponseRequest, CaptchaChallengeResponseRequest, ConsentChallengeResponseRequest, DummyChallengeResponseRequest, EmailChallengeResponseRequest, FrameChallengeResponseRequest, IdentificationChallengeResponseRequest, IframeLogoutChallengeResponseRequest, NativeLogoutChallengeResponseRequest, OAuthDeviceCodeChallengeResponseRequest, OAuthDeviceCodeFinishChallengeResponseRequest, PasswordChallengeResponseRequest, PlexAuthenticationChallengeResponseRequest, PromptChallengeResponseRequest, RedirectChallengeResponseRequest, TelegramChallengeResponseRequest, UserLoginChallengeResponseRequest. Details: " + ", ".join(error_messages))
+            raise ValueError("Multiple matches found when setting `actual_instance` in FlowChallengeResponseRequest with oneOf schemas: AppleChallengeResponseRequest, AuthenticatorDuoChallengeResponseRequest, AuthenticatorEmailChallengeResponseRequest, AuthenticatorSMSChallengeResponseRequest, AuthenticatorStaticChallengeResponseRequest, AuthenticatorTOTPChallengeResponseRequest, AuthenticatorValidationChallengeResponseRequest, AuthenticatorWebAuthnChallengeResponseRequest, AutoSubmitChallengeResponseRequest, CaptchaChallengeResponseRequest, ConsentChallengeResponseRequest, DummyChallengeResponseRequest, EmailChallengeResponseRequest, EndpointAgentChallengeResponseRequest, FrameChallengeResponseRequest, IdentificationChallengeResponseRequest, IframeLogoutChallengeResponseRequest, NativeLogoutChallengeResponseRequest, OAuthDeviceCodeChallengeResponseRequest, OAuthDeviceCodeFinishChallengeResponseRequest, PasswordChallengeResponseRequest, PlexAuthenticationChallengeResponseRequest, PromptChallengeResponseRequest, RedirectChallengeResponseRequest, TelegramChallengeResponseRequest, UserLoginChallengeResponseRequest. Details: " + ", ".join(error_messages))
         elif match == 0:
             # no match
-            raise ValueError("No match found when setting `actual_instance` in FlowChallengeResponseRequest with oneOf schemas: AppleChallengeResponseRequest, AuthenticatorDuoChallengeResponseRequest, AuthenticatorEmailChallengeResponseRequest, AuthenticatorSMSChallengeResponseRequest, AuthenticatorStaticChallengeResponseRequest, AuthenticatorTOTPChallengeResponseRequest, AuthenticatorValidationChallengeResponseRequest, AuthenticatorWebAuthnChallengeResponseRequest, AutoSubmitChallengeResponseRequest, CaptchaChallengeResponseRequest, ConsentChallengeResponseRequest, DummyChallengeResponseRequest, EmailChallengeResponseRequest, FrameChallengeResponseRequest, IdentificationChallengeResponseRequest, IframeLogoutChallengeResponseRequest, NativeLogoutChallengeResponseRequest, OAuthDeviceCodeChallengeResponseRequest, OAuthDeviceCodeFinishChallengeResponseRequest, PasswordChallengeResponseRequest, PlexAuthenticationChallengeResponseRequest, PromptChallengeResponseRequest, RedirectChallengeResponseRequest, TelegramChallengeResponseRequest, UserLoginChallengeResponseRequest. Details: " + ", ".join(error_messages))
+            raise ValueError("No match found when setting `actual_instance` in FlowChallengeResponseRequest with oneOf schemas: AppleChallengeResponseRequest, AuthenticatorDuoChallengeResponseRequest, AuthenticatorEmailChallengeResponseRequest, AuthenticatorSMSChallengeResponseRequest, AuthenticatorStaticChallengeResponseRequest, AuthenticatorTOTPChallengeResponseRequest, AuthenticatorValidationChallengeResponseRequest, AuthenticatorWebAuthnChallengeResponseRequest, AutoSubmitChallengeResponseRequest, CaptchaChallengeResponseRequest, ConsentChallengeResponseRequest, DummyChallengeResponseRequest, EmailChallengeResponseRequest, EndpointAgentChallengeResponseRequest, FrameChallengeResponseRequest, IdentificationChallengeResponseRequest, IframeLogoutChallengeResponseRequest, NativeLogoutChallengeResponseRequest, OAuthDeviceCodeChallengeResponseRequest, OAuthDeviceCodeFinishChallengeResponseRequest, PasswordChallengeResponseRequest, PlexAuthenticationChallengeResponseRequest, PromptChallengeResponseRequest, RedirectChallengeResponseRequest, TelegramChallengeResponseRequest, UserLoginChallengeResponseRequest. Details: " + ", ".join(error_messages))
         else:
             return v
 
@@ -353,6 +361,12 @@ class FlowChallengeResponseRequest(BaseModel):
             match += 1
         except (ValidationError, ValueError) as e:
             error_messages.append(str(e))
+        # deserialize data into EndpointAgentChallengeResponseRequest
+        try:
+            instance.actual_instance = EndpointAgentChallengeResponseRequest.from_json(json_str)
+            match += 1
+        except (ValidationError, ValueError) as e:
+            error_messages.append(str(e))
         # deserialize data into FrameChallengeResponseRequest
         try:
             instance.actual_instance = FrameChallengeResponseRequest.from_json(json_str)
@@ -428,10 +442,10 @@ class FlowChallengeResponseRequest(BaseModel):
 
         if match > 1:
             # more than 1 match
-            raise ValueError("Multiple matches found when deserializing the JSON string into FlowChallengeResponseRequest with oneOf schemas: AppleChallengeResponseRequest, AuthenticatorDuoChallengeResponseRequest, AuthenticatorEmailChallengeResponseRequest, AuthenticatorSMSChallengeResponseRequest, AuthenticatorStaticChallengeResponseRequest, AuthenticatorTOTPChallengeResponseRequest, AuthenticatorValidationChallengeResponseRequest, AuthenticatorWebAuthnChallengeResponseRequest, AutoSubmitChallengeResponseRequest, CaptchaChallengeResponseRequest, ConsentChallengeResponseRequest, DummyChallengeResponseRequest, EmailChallengeResponseRequest, FrameChallengeResponseRequest, IdentificationChallengeResponseRequest, IframeLogoutChallengeResponseRequest, NativeLogoutChallengeResponseRequest, OAuthDeviceCodeChallengeResponseRequest, OAuthDeviceCodeFinishChallengeResponseRequest, PasswordChallengeResponseRequest, PlexAuthenticationChallengeResponseRequest, PromptChallengeResponseRequest, RedirectChallengeResponseRequest, TelegramChallengeResponseRequest, UserLoginChallengeResponseRequest. Details: " + ", ".join(error_messages))
+            raise ValueError("Multiple matches found when deserializing the JSON string into FlowChallengeResponseRequest with oneOf schemas: AppleChallengeResponseRequest, AuthenticatorDuoChallengeResponseRequest, AuthenticatorEmailChallengeResponseRequest, AuthenticatorSMSChallengeResponseRequest, AuthenticatorStaticChallengeResponseRequest, AuthenticatorTOTPChallengeResponseRequest, AuthenticatorValidationChallengeResponseRequest, AuthenticatorWebAuthnChallengeResponseRequest, AutoSubmitChallengeResponseRequest, CaptchaChallengeResponseRequest, ConsentChallengeResponseRequest, DummyChallengeResponseRequest, EmailChallengeResponseRequest, EndpointAgentChallengeResponseRequest, FrameChallengeResponseRequest, IdentificationChallengeResponseRequest, IframeLogoutChallengeResponseRequest, NativeLogoutChallengeResponseRequest, OAuthDeviceCodeChallengeResponseRequest, OAuthDeviceCodeFinishChallengeResponseRequest, PasswordChallengeResponseRequest, PlexAuthenticationChallengeResponseRequest, PromptChallengeResponseRequest, RedirectChallengeResponseRequest, TelegramChallengeResponseRequest, UserLoginChallengeResponseRequest. Details: " + ", ".join(error_messages))
         elif match == 0:
             # no match
-            raise ValueError("No match found when deserializing the JSON string into FlowChallengeResponseRequest with oneOf schemas: AppleChallengeResponseRequest, AuthenticatorDuoChallengeResponseRequest, AuthenticatorEmailChallengeResponseRequest, AuthenticatorSMSChallengeResponseRequest, AuthenticatorStaticChallengeResponseRequest, AuthenticatorTOTPChallengeResponseRequest, AuthenticatorValidationChallengeResponseRequest, AuthenticatorWebAuthnChallengeResponseRequest, AutoSubmitChallengeResponseRequest, CaptchaChallengeResponseRequest, ConsentChallengeResponseRequest, DummyChallengeResponseRequest, EmailChallengeResponseRequest, FrameChallengeResponseRequest, IdentificationChallengeResponseRequest, IframeLogoutChallengeResponseRequest, NativeLogoutChallengeResponseRequest, OAuthDeviceCodeChallengeResponseRequest, OAuthDeviceCodeFinishChallengeResponseRequest, PasswordChallengeResponseRequest, PlexAuthenticationChallengeResponseRequest, PromptChallengeResponseRequest, RedirectChallengeResponseRequest, TelegramChallengeResponseRequest, UserLoginChallengeResponseRequest. Details: " + ", ".join(error_messages))
+            raise ValueError("No match found when deserializing the JSON string into FlowChallengeResponseRequest with oneOf schemas: AppleChallengeResponseRequest, AuthenticatorDuoChallengeResponseRequest, AuthenticatorEmailChallengeResponseRequest, AuthenticatorSMSChallengeResponseRequest, AuthenticatorStaticChallengeResponseRequest, AuthenticatorTOTPChallengeResponseRequest, AuthenticatorValidationChallengeResponseRequest, AuthenticatorWebAuthnChallengeResponseRequest, AutoSubmitChallengeResponseRequest, CaptchaChallengeResponseRequest, ConsentChallengeResponseRequest, DummyChallengeResponseRequest, EmailChallengeResponseRequest, EndpointAgentChallengeResponseRequest, FrameChallengeResponseRequest, IdentificationChallengeResponseRequest, IframeLogoutChallengeResponseRequest, NativeLogoutChallengeResponseRequest, OAuthDeviceCodeChallengeResponseRequest, OAuthDeviceCodeFinishChallengeResponseRequest, PasswordChallengeResponseRequest, PlexAuthenticationChallengeResponseRequest, PromptChallengeResponseRequest, RedirectChallengeResponseRequest, TelegramChallengeResponseRequest, UserLoginChallengeResponseRequest. Details: " + ", ".join(error_messages))
         else:
             return instance
 
@@ -445,7 +459,7 @@ class FlowChallengeResponseRequest(BaseModel):
         else:
             return json.dumps(self.actual_instance)
 
-    def to_dict(self) -> Optional[Union[Dict[str, Any], AppleChallengeResponseRequest, AuthenticatorDuoChallengeResponseRequest, AuthenticatorEmailChallengeResponseRequest, AuthenticatorSMSChallengeResponseRequest, AuthenticatorStaticChallengeResponseRequest, AuthenticatorTOTPChallengeResponseRequest, AuthenticatorValidationChallengeResponseRequest, AuthenticatorWebAuthnChallengeResponseRequest, AutoSubmitChallengeResponseRequest, CaptchaChallengeResponseRequest, ConsentChallengeResponseRequest, DummyChallengeResponseRequest, EmailChallengeResponseRequest, FrameChallengeResponseRequest, IdentificationChallengeResponseRequest, IframeLogoutChallengeResponseRequest, NativeLogoutChallengeResponseRequest, OAuthDeviceCodeChallengeResponseRequest, OAuthDeviceCodeFinishChallengeResponseRequest, PasswordChallengeResponseRequest, PlexAuthenticationChallengeResponseRequest, PromptChallengeResponseRequest, RedirectChallengeResponseRequest, TelegramChallengeResponseRequest, UserLoginChallengeResponseRequest]]:
+    def to_dict(self) -> Optional[Union[Dict[str, Any], AppleChallengeResponseRequest, AuthenticatorDuoChallengeResponseRequest, AuthenticatorEmailChallengeResponseRequest, AuthenticatorSMSChallengeResponseRequest, AuthenticatorStaticChallengeResponseRequest, AuthenticatorTOTPChallengeResponseRequest, AuthenticatorValidationChallengeResponseRequest, AuthenticatorWebAuthnChallengeResponseRequest, AutoSubmitChallengeResponseRequest, CaptchaChallengeResponseRequest, ConsentChallengeResponseRequest, DummyChallengeResponseRequest, EmailChallengeResponseRequest, EndpointAgentChallengeResponseRequest, FrameChallengeResponseRequest, IdentificationChallengeResponseRequest, IframeLogoutChallengeResponseRequest, NativeLogoutChallengeResponseRequest, OAuthDeviceCodeChallengeResponseRequest, OAuthDeviceCodeFinishChallengeResponseRequest, PasswordChallengeResponseRequest, PlexAuthenticationChallengeResponseRequest, PromptChallengeResponseRequest, RedirectChallengeResponseRequest, TelegramChallengeResponseRequest, UserLoginChallengeResponseRequest]]:
         """Returns the dict representation of the actual instance"""
         if self.actual_instance is None:
             return None

authentik_client/models/flow_designation_enum.py

@@ -5,7 +5,7 @@
 
     Making authentication simple.
 
-    The version of the OpenAPI document: 2025.10.3
+    The version of the OpenAPI document: 2025.12.0-rc1
     Contact: hello@goauthentik.io
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 

authentik_client/models/flow_diagram.py

@@ -5,7 +5,7 @@
 
     Making authentication simple.
 
-    The version of the OpenAPI document: 2025.10.3
+    The version of the OpenAPI document: 2025.12.0-rc1
     Contact: hello@goauthentik.io
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 

authentik_client/models/flow_error_challenge.py

@@ -5,7 +5,7 @@
 
     Making authentication simple.
 
-    The version of the OpenAPI document: 2025.10.3
+    The version of the OpenAPI document: 2025.12.0-rc1
     Contact: hello@goauthentik.io
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 

authentik_client/models/flow_import_result.py

@@ -5,7 +5,7 @@
 
     Making authentication simple.
 
-    The version of the OpenAPI document: 2025.10.3
+    The version of the OpenAPI document: 2025.12.0-rc1
     Contact: hello@goauthentik.io
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 

authentik_client/models/flow_inspection.py

@@ -5,7 +5,7 @@
 
     Making authentication simple.
 
-    The version of the OpenAPI document: 2025.10.3
+    The version of the OpenAPI document: 2025.12.0-rc1
     Contact: hello@goauthentik.io
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 

authentik_client/models/flow_inspector_plan.py

@@ -5,7 +5,7 @@
 
     Making authentication simple.
 
-    The version of the OpenAPI document: 2025.10.3
+    The version of the OpenAPI document: 2025.12.0-rc1
     Contact: hello@goauthentik.io
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 

authentik_client/models/flow_layout_enum.py

@@ -5,7 +5,7 @@
 
     Making authentication simple.
 
-    The version of the OpenAPI document: 2025.10.3
+    The version of the OpenAPI document: 2025.12.0-rc1
     Contact: hello@goauthentik.io
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 

authentik_client/models/flow_request.py

@@ -5,7 +5,7 @@
 
     Making authentication simple.
 
-    The version of the OpenAPI document: 2025.10.3
+    The version of the OpenAPI document: 2025.12.0-rc1
     Contact: hello@goauthentik.io
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 
@@ -18,7 +18,7 @@ import pprint
 import re  # noqa: F401
 import json
 
-from pydantic import BaseModel, ConfigDict, Field, StrictBool, field_validator
+from pydantic import BaseModel, ConfigDict, Field, StrictBool, StrictStr, field_validator
 from typing import Any, ClassVar, Dict, List, Optional
 from typing_extensions import Annotated
 from authentik_client.models.authentication_enum import AuthenticationEnum
@@ -34,15 +34,16 @@ class FlowRequest(BaseModel):
     Flow Serializer
     """ # noqa: E501
     name: Annotated[str, Field(min_length=1, strict=True)]
-    slug: Annotated[str, Field(min_length=1, strict=True, max_length=50)] = Field(description="Visible in the URL.")
+    slug: Annotated[str, Field(min_length=1, strict=True)] = Field(description="Visible in the URL.")
     title: Annotated[str, Field(min_length=1, strict=True)] = Field(description="Shown as the Title in Flow pages.")
     designation: FlowDesignationEnum = Field(description="Decides what this Flow is used for. For example, the Authentication flow is redirect to when an un-authenticated user visits authentik.")
+    background: Optional[StrictStr] = Field(default=None, description="Background shown during execution")
     policy_engine_mode: Optional[PolicyEngineMode] = None
     compatibility_mode: Optional[StrictBool] = Field(default=None, description="Enable compatibility mode, increases compatibility with password managers on mobile devices.")
     layout: Optional[FlowLayoutEnum] = None
     denied_action: Optional[DeniedActionEnum] = Field(default=None, description="Configure what should happen when a flow denies access to a user.")
     authentication: Optional[AuthenticationEnum] = Field(default=None, description="Required level of authentication and authorization to access a flow.")
-    __properties: ClassVar[List[str]] = ["name", "slug", "title", "designation", "policy_engine_mode", "compatibility_mode", "layout", "denied_action", "authentication"]
+    __properties: ClassVar[List[str]] = ["name", "slug", "title", "designation", "background", "policy_engine_mode", "compatibility_mode", "layout", "denied_action", "authentication"]
 
     @field_validator('slug')
     def slug_validate_regular_expression(cls, value):
@@ -106,6 +107,7 @@ class FlowRequest(BaseModel):
             "slug": obj.get("slug"),
             "title": obj.get("title"),
             "designation": obj.get("designation"),
+            "background": obj.get("background"),
             "policy_engine_mode": obj.get("policy_engine_mode"),
             "compatibility_mode": obj.get("compatibility_mode"),
             "layout": obj.get("layout"),

authentik_client/models/flow_set.py

@@ -5,7 +5,7 @@
 
     Making authentication simple.
 
-    The version of the OpenAPI document: 2025.10.3
+    The version of the OpenAPI document: 2025.12.0-rc1
     Contact: hello@goauthentik.io
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 
@@ -36,16 +36,16 @@ class FlowSet(BaseModel):
     pk: UUID
     policybindingmodel_ptr_id: UUID
     name: StrictStr
-    slug: Annotated[str, Field(strict=True, max_length=50)] = Field(description="Visible in the URL.")
+    slug: Annotated[str, Field(strict=True)] = Field(description="Visible in the URL.")
     title: StrictStr = Field(description="Shown as the Title in Flow pages.")
     designation: FlowDesignationEnum = Field(description="Decides what this Flow is used for. For example, the Authentication flow is redirect to when an un-authenticated user visits authentik.")
-    background: StrictStr = Field(description="Get the URL to the background image. If the name is /static or starts with http it is returned as-is")
+    background_url: StrictStr = Field(description="Get the URL to the background image")
     policy_engine_mode: Optional[PolicyEngineMode] = None
     compatibility_mode: Optional[StrictBool] = Field(default=None, description="Enable compatibility mode, increases compatibility with password managers on mobile devices.")
     export_url: StrictStr = Field(description="Get export URL for flow")
     layout: Optional[FlowLayoutEnum] = None
     denied_action: Optional[DeniedActionEnum] = Field(default=None, description="Configure what should happen when a flow denies access to a user.")
-    __properties: ClassVar[List[str]] = ["pk", "policybindingmodel_ptr_id", "name", "slug", "title", "designation", "background", "policy_engine_mode", "compatibility_mode", "export_url", "layout", "denied_action"]
+    __properties: ClassVar[List[str]] = ["pk", "policybindingmodel_ptr_id", "name", "slug", "title", "designation", "background_url", "policy_engine_mode", "compatibility_mode", "export_url", "layout", "denied_action"]
 
     @field_validator('slug')
     def slug_validate_regular_expression(cls, value):
@@ -92,7 +92,7 @@ class FlowSet(BaseModel):
         excluded_fields: Set[str] = set([
             "pk",
             "policybindingmodel_ptr_id",
-            "background",
+            "background_url",
             "export_url",
         ])
 
@@ -119,7 +119,7 @@ class FlowSet(BaseModel):
             "slug": obj.get("slug"),
             "title": obj.get("title"),
             "designation": obj.get("designation"),
-            "background": obj.get("background"),
+            "background_url": obj.get("background_url"),
             "policy_engine_mode": obj.get("policy_engine_mode"),
             "compatibility_mode": obj.get("compatibility_mode"),
             "export_url": obj.get("export_url"),

authentik_client/models/flow_stage_binding.py

@@ -5,7 +5,7 @@
 
     Making authentication simple.
 
-    The version of the OpenAPI document: 2025.10.3
+    The version of the OpenAPI document: 2025.12.0-rc1
     Contact: hello@goauthentik.io
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 

authentik_client/models/flow_stage_binding_request.py

@@ -5,7 +5,7 @@
 
     Making authentication simple.
 
-    The version of the OpenAPI document: 2025.10.3
+    The version of the OpenAPI document: 2025.12.0-rc1
     Contact: hello@goauthentik.io
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 

authentik_client/models/footer_link.py

@@ -5,7 +5,7 @@
 
     Making authentication simple.
 
-    The version of the OpenAPI document: 2025.10.3
+    The version of the OpenAPI document: 2025.12.0-rc1
     Contact: hello@goauthentik.io
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 

authentik_client/models/frame_challenge.py

@@ -5,7 +5,7 @@
 
     Making authentication simple.
 
-    The version of the OpenAPI document: 2025.10.3
+    The version of the OpenAPI document: 2025.12.0-rc1
     Contact: hello@goauthentik.io
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 

authentik_client/models/frame_challenge_response_request.py

@@ -5,7 +5,7 @@
 
     Making authentication simple.
 
-    The version of the OpenAPI document: 2025.10.3
+    The version of the OpenAPI document: 2025.12.0-rc1
     Contact: hello@goauthentik.io
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 

authentik_client/models/generic_error.py

@@ -5,7 +5,7 @@
 
     Making authentication simple.
 
-    The version of the OpenAPI document: 2025.10.3
+    The version of the OpenAPI document: 2025.12.0-rc1
     Contact: hello@goauthentik.io
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 

authentik_client/models/geo_ip_policy.py

@@ -5,7 +5,7 @@
 
     Making authentication simple.
 
-    The version of the OpenAPI document: 2025.10.3
+    The version of the OpenAPI document: 2025.12.0-rc1
     Contact: hello@goauthentik.io
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 

authentik_client/models/geo_ip_policy_request.py

@@ -5,7 +5,7 @@
 
     Making authentication simple.
 
-    The version of the OpenAPI document: 2025.10.3
+    The version of the OpenAPI document: 2025.12.0-rc1
     Contact: hello@goauthentik.io
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 

authentik_client/models/geoip_binding_enum.py

@@ -5,7 +5,7 @@
 
     Making authentication simple.
 
-    The version of the OpenAPI document: 2025.10.3
+    The version of the OpenAPI document: 2025.12.0-rc1
     Contact: hello@goauthentik.io
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 

authentik_client/models/global_task_status.py

@@ -5,7 +5,7 @@
 
     Making authentication simple.
 
-    The version of the OpenAPI document: 2025.10.3
+    The version of the OpenAPI document: 2025.12.0-rc1
     Contact: hello@goauthentik.io
     Generated by OpenAPI Generator (https://openapi-generator.tech)