github goauthentik/authentik version/2021.4.5
Release 2021.4.5

3 years ago

Headline Changes

  • Configurable Policy engine mode

    In the past, all objects, which could have policies attached to them, required all policies to pass to consider an action successful.
    You can now configure if all policies need to pass, or if any policy needs to pass.

    This can now be configured for the following objects:

    • Applications (access restrictions)
    • Sources
    • Flows
    • Flow-stage bindings

    For backwards compatibility, this is set to all, but new objects will default to any.

  • Expiring Events

    Previously, events would stay in the database forever, and had to eventually be cleaned up manually. This version add expiry to events with a default
    timeout of 1 Year. This also applies to existing events, and their expiry will be set during the migration.

  • New UI

    While the UI mostly looks the same, under the hood a lot has changed. The Web UI is now a Single-page application based on rollup and lit-html. This has several consequences and new features, for example:

    • You can now see a user's OAuth Access/Refresh tokens and the consents they've given
    • You can now see a per-object changelog based on the model_create/update/delete events being created.
    • A new API Browser is available under https://authentink.company/api/v2beta/
    • Several new charts, new pages and quality-of-life improvements
    • Credentials of objects are no longer shown while editing them
  • Deprecated Group membership has been removed.

Minor changes

  • You can now specify the amount of processes started in docker-compose using the WORKERS environment variable.

Fixed in 2021.4.5

  • core: fix text on error pages being hard to read
  • outposts: only kill docker container if its running
  • root: add middleware to properly report websocket connection to sentry
  • root: don't use .error of structlog to not send to sentry
  • stages/email: catch ValueError when global email settings are invalid
  • stages/invitation: accept token from prompt_data
  • stages/invitation: fix token not being loaded correctly from query string
  • web: fix text-colour for form help text
  • web: ignore network errors for sentry
  • web/admin: don't show docker certs as required
  • web/flows: fix redirect loop when sentry is enabled on flow views
  • web/flows: include ShadyDOM, always enable ShadyDOM for flow interface, improve compatibility with password
  • web/flows/identification: fix phrasing account recovery

See https://goauthentik.io/docs/releases/2021.4#fixed-in-202145

Don't miss a new authentik release

NewReleases is sending notifications on new releases.