Releases: goauthentik/authentik
Releases Β· goauthentik/authentik
Release 2025.8.5
See https://docs.goauthentik.io/docs/releases/2025.8#fixed-in-202585
What's Changed
- website/docs: developer docs: adjust sentence for writing docs (cherry-pick #17137 to version-2025.8) by @authentik-automation[bot] in #17142
- build(deps): bump django from 5.1.12 to 5.1.13 (cherry-pick #17198 to version-2025.8) by @authentik-automation[bot] in #17199
- packages/django-dramatiq-postgres: broker: fix task expiration (cherry-pick #17178 to version-2025.8) by @authentik-automation[bot] in #17217
- packages/django-dramatiq-postgres: fix error when updating task with no changes (cherry-pick #16728 to version-2025.8) by @authentik-automation[bot] in #17238
- tasks/middlewares/messages: make sure exceptions are always logged (cherry-pick #17237 to version-2025.8) by @authentik-automation[bot] in #17248
- core: fix absolute and relative path file uploads (cherry-pick #17269 to version-2025.8) by @authentik-automation[bot] in #17272
- web: Fix behavior for modals configured with closeAfterSuccessfulSubmit (cherry-pick #17277 to version-2025.8) by @authentik-automation[bot] in #17299
- lib/sync/outgoing: revert reduce number of db queries made (revert #14177) (cherry-pick #17306 to version-2025.8) by @authentik-automation[bot] in #17330
- blueprints: ensure tasks retry on database errors (cherry-pick #17333 to version-2025.8) by @authentik-automation[bot] in #17334
- web/admin: fix incorrect placeholder for scim provider (cherry-pick #17308 to version-2025.8) by @authentik-automation[bot] in #17309
- website/docs: add entra id scim source (cherry-pick #17357 to version-2025.8) by @authentik-automation[bot] in #17362
- website/docs: add email config section (cherry-pick #16727 to version-2025.8) by @authentik-automation[bot] in #17364
- website: add powershell syntax highlighting and bump package (cherry-pick #16683) by @authentik-automation[bot] in #16721
- website/docs: update SAML provider docs (cherry-pick #15887 to version-2025.8) by @authentik-automation[bot] in #17583
- ci: rework internal repo (#17797) by @BeryJu in #17830
- ci: fix migrate-from-stable for old versions by @BeryJu in #18018
- core: bump Django from 5.1.13 to 5.1.14 for 2025.8 by @melizeche in #17968
- internal: Automated internal backport: 1498-oauth2-cc-user-active.sec.patch to authentik-2025.8 by @authentik-automation[bot] in #18262
- internal: Automated internal backport: 1487-invitation-expiry.sec.patch to authentik-2025.8 by @authentik-automation[bot] in #18261
- internal: Automated internal backport: 5000-sidebar.sec.patch to authentik-2025.8 by @authentik-automation[bot] in #18263
- website/docs: add 2025.8.5 and 2025.10.2 release notes (cherry-pick #18268 to version-2025.8) by @authentik-automation[bot] in #18269
Full Changelog: version/2025.8.4...version/2025.8.5
Contributors
melizeche and BeryJu
Assets 14
Release 2025.10.2
See https://docs.goauthentik.io/docs/releases/2025.10#fixed-in-2025102
What's Changed
- brands: add more matching tests (cherry-pick #16185 to version-2025.10) by @authentik-automation[bot] in #17924
- brands: sort matched brand by match length (cherry-pick #17920 to version-2025.10) by @authentik-automation[bot] in #17935
- tasks/schedules: fix rel obj not being associated or updated (cherry-pick #17934 to version-2025.10) by @authentik-automation[bot] in #17936
- website/docs: added Note about email_verified scope mapping is set to false by default (cherry-pick #17942 to version-2025.10) by @authentik-automation[bot] in #17961
- website/docs: remove broken info box and fix sentence (cherry-pick #17963 to version-2025.10) by @authentik-automation[bot] in #17965
- core: bump django from 5.2.7 to 5.2.8 (cherry-pick #17967 to version-2025.10) by @authentik-automation[bot] in #18003
- website/docs: updates img-src csp (cherry-pick #18010 to version-2025.10) by @authentik-automation[bot] in #18012
- ci: fix migrate-from-stable for old versions (#18019) by @BeryJu in #18024
- website/release notes: fix broken urls (cherry-pick #18041 to version-2025.10) by @authentik-automation[bot] in #18044
- website/docs: update discord social login script example (cherry-pick #18026 to version-2025.10) by @authentik-automation[bot] in #18057
- ci: attempt to fix integration tests using dind (cherry-pick #18066 to version-2025.10) by @authentik-automation[bot] in #18069
- ci: revert to upstream GHA for release (#18058) by @BeryJu in #18065
- events: fix timezone not set for log events (cherry-pick #18067 to version-2025.10) by @authentik-automation[bot] in #18071
- providers/scim: allow custom schema data (cherry-pick #18073 to version-2025.10) by @authentik-automation[bot] in #18075
- core: improve app launch URL formatting (cherry-pick #18076 to version-2025.10) by @authentik-automation[bot] in #18087
- cmd/server/healthcheck: remove worker HTTP healthcheck (cherry-pick #18090 to version-2025.10) by @authentik-automation[bot] in #18091
- web: Fix RAC modal visibility. (cherry-pick #17941 to version-2025.10) by @authentik-automation[bot] in #18097
- web: Fix tab activation, blank provider URLs (cherry-pick #18031 to version-2025.10) by @authentik-automation[bot] in #18101
- website/docs: fix wording in stages overview (cherry-pick #18061 to version-2025.10) by @authentik-automation[bot] in #18120
- packages/django-dramatiq-postgres: broker: ensure locking happens with the same connection (cherry-pick #18095 to version-2025.10) by @authentik-automation[bot] in #18119
- web/flows: improvements for hCaptcha (cherry-pick #16882 to version-2025.10) by @authentik-automation[bot] in #18128
- web/admin: link to user on invitation list page (cherry-pick #18132 to version-2025.10) by @authentik-automation[bot] in #18134
- packages/django-channels-postgres/layer: fix query when subscribed to multiple channels (cherry-pick #18152 to version-2025.10) by @authentik-automation[bot] in #18153
- web: Disable library
<datalist>on Firefox. (cherry-pick #18103 to version-2025.10) by @authentik-automation[bot] in #18135 - web/sfe: downgrade bootstrap that was accidentally upgraded (cherry-pick #18157 to version-2025.10) by @authentik-automation[bot] in #18171
- website/docs: Add instructions for installing RC versions (cherry-pick #18099 to version-2025.10) by @authentik-automation[bot] in #18193
- website/docs: update application description (cherry-pick #18125 to version-2025.10) by @authentik-automation[bot] in #18127
- stages/prompt: fix choices with labels causing error on submit (cherry-pick #18183 to version-2025.10) by @authentik-automation[bot] in #18236
- internal: Automated internal backport: 1487-invitation-expiry.sec.patch to authentik-2025.10 by @authentik-automation[bot] in #18258
- internal: Automated internal backport: 1498-oauth2-cc-user-active.sec.patch to authentik-2025.10 by @authentik-automation[bot] in #18259
- internal: Automated internal backport: 5000-sidebar.sec.patch to authentik-2025.10 by @authentik-automation[bot] in #18260
- website/docs: add 2025.8.5 and 2025.10.2 release notes (cherry-pick #18268 to version-2025.10) by @authentik-automation[bot] in #18270
Full Changelog: version/2025.10.1...version/2025.10.2
Contributors
BeryJu
Assets 14
- 21 MB
2025-11-19T15:10:24Z - 20.1 MB
2025-11-19T15:10:23Z - 21.1 MB
2025-11-19T15:10:28Z - 20.1 MB
2025-11-19T15:10:22Z - 72 MB
2025-11-19T15:10:33Z - 70.1 MB
2025-11-19T15:10:28Z - 71.4 MB
2025-11-19T15:10:29Z - 69.1 MB
2025-11-19T15:10:26Z - 20.2 MB
2025-11-19T15:10:26Z - 19.4 MB
2025-11-19T15:10:22Z -
2025-11-19T15:07:06Z -
2025-11-19T15:07:06Z - Loading
Release 2025.10.1
See https://docs.goauthentik.io/docs/releases/2025.10#fixed-in-2025101
What's Changed
- website/docs: fix placeholder leftover (cherry-pick #17737 to version-2025.10) by @authentik-automation[bot] in #17738
- root: Add Dockerfile label org.opencontainers.image.source (cherry-pick #17756 to version-2025.10) by @authentik-automation[bot] in #17757
- providers/proxy: fix missing JWT/claims header (cherry-pick #17759 to version-2025.10) by @authentik-automation[bot] in #17764
- sources/oauth: Make PKCE verifier 128 characters (cherry-pick #17763 to version-2025.10) by @authentik-automation[bot] in #17765
- providers/radius: fix panic when no cert is configured (cherry-pick #17762 to version-2025.10) by @authentik-automation[bot] in #17766
- providers/oauth2: move encryption key field (cherry-pick #17722 to version-2025.10) by @authentik-automation[bot] in #17729
- packages/django-postgres-cache: use upsert instead of select/update in a transaction (cherry-pick #17760 to version-2025.10) by @authentik-automation[bot] in #17767
- tasks: delay startup signals (cherry-pick #17769 to version-2025.10) by @authentik-automation[bot] in #17775
- root: use hashes for dockerfile FROM (cherry-pick #17795 to version-2025.10) by @authentik-automation[bot] in #17798
- internal: fix go deprecation for +build (cherry-pick #17806 to version-2025.10) by @authentik-automation[bot] in #17824
- ci: rework internal repo (#17797) by @BeryJu in #17829
- internal/web/proxy: fix return status code during startup (cherry-pick #17827 to version-2025.10) by @authentik-automation[bot] in #17832
- web/admin: fix scim provider form (cherry-pick #17831 to version-2025.10) by @authentik-automation[bot] in #17834
- core: bump astral-sh/uv from 0.9.5 to 0.9.6 (cherry-pick #17820 to version-2025.10) by @authentik-automation[bot] in #17835
- tasks: sanitize log attributes (cherry-pick #17833 to version-2025.10) by @authentik-automation[bot] in #17842
- outposts: update permissions more eagerly (cherry-pick #17783 to version-2025.10) by @authentik-automation[bot] in #17841
- outpost: revert breaking signals change (cherry-pick #17847 to version-2025.10) by @authentik-automation[bot] in #17848
- internal: full openssl path (cherry-pick #17856 to version-2025.10) by @authentik-automation[bot] in #17860
- web: Consistent Tab Panel URL Parameters (cherry-pick #17804 to version-2025.10) by @authentik-automation[bot] in #17859
- web/a11y: User library -- fix issues surrounding element focus, ARIA labeling. (cherry-pick #17522 to version-2025.10) by @authentik-automation[bot] in #17828
- providers/radius: fix inverted message authenticator validation (cherry-pick #17855 to version-2025.10) by @authentik-automation[bot] in #17888
- providers/radius: revert fix inverted message authenticator validation (#17855) (cherry-pick #17915 to version-2025.10) by @authentik-automation[bot] in #17916
- providers/oauth2: fix kid always required for federation (cherry-pick #17914 to version-2025.10) by @authentik-automation[bot] in #17917
- website/docs: 2025.10.1 release notes (cherry-pick #17918 to version-2025.10) by @authentik-automation[bot] in #17919
Full Changelog: version/2025.10.0...version/2025.10.1
Contributors
BeryJu
Assets 14
Release 2025.10.0
See https://docs.goauthentik.io/docs/releases/2025.10
What's Changed
- enterprise: add prometheus metrics for license usage and expiry (cherry-pick #17606 to version-2025.10) by @authentik-automation[bot] in #17637
- website/docs: rel notes 2025.10: add 3 more integration guides (cherry-pick #17641 to version-2025.10) by @authentik-automation[bot] in #17652
- providers/proxy: drop headers with underscores (cherry-pick #17650 to version-2025.10) by @authentik-automation[bot] in #17651
- website/docs: add note about invite link not bound (cherry-pick #17657 to version-2025.10) by @authentik-automation[bot] in #17672
- website/docs: eap add info about custom validation (cherry-pick #17642 to version-2025.10) by @authentik-automation[bot] in #17699
- website/docs: release notes: Add Zot integration (cherry-pick #17700 to version-2025.10) by @authentik-automation[bot] in #17701
- website/docs: add short-lived certificate recommendation (cherry-pick #17628 to version-2025.10) by @authentik-automation[bot] in #17633
- website/docs: blueprints: add a bit more info (cherry-pick #17704 to version-2025.10) by @authentik-automation[bot] in #17708
- enterprise: handle cached naive timezone (cherry-pick #17695 to version-2025.10) by @authentik-automation[bot] in #17730
- website/docs: update flow context ref (cherry-pick #17723 to version-2025.10) by @authentik-automation[bot] in #17732
- website/docs: finalise 2025.10 release notes (cherry-pick #17728 to version-2025.10) by @authentik-automation[bot] in #17733
Full Changelog: version/2025.10.0-rc3...version/2025.10.0
Release 2025.10.0-rc3
See https://docs.goauthentik.io/docs/releases/2025.10
What's Changed
- admin: system api: fix FIPS status schema by @rissson in #10110
- website/docs: Specify Synology DSM Account type to use by @jannickfahlbusch in #10111
- web: bump API Client version by @authentik-automation[bot] in #10113
- website/docs: update 2024.6 release notes with latest changes by @rissson in #10109
- website/docs: add more info about multiple replicas by @tanberry in #10117
- policies/reputation: fix existing reputation update by @rissson in #10124
- stages/authenticator_webauthn: Update FIDO MDS3 & Passkey aaguid blobs by @authentik-automation[bot] in #10119
- translate: Updates for file web/xliff/en.xlf in zh_CN by @transifex-integration[bot] in #10120
- translate: Updates for file web/xliff/en.xlf in zh-Hans by @transifex-integration[bot] in #10121
- core, web: update translations by @authentik-automation[bot] in #10118
- core: bump goauthentik.io/api/v3 from 3.2024042.11 to 3.2024042.13 by @dependabot[bot] in #10134
- core: bump ruff from 0.4.8 to 0.4.9 by @dependabot[bot] in #10128
- core, web: update translations by @authentik-automation[bot] in #10127
- core: bump github.com/spf13/cobra from 1.8.0 to 1.8.1 by @dependabot[bot] in #10133
- web: bump chromedriver from 126.0.0 to 126.0.1 in /tests/wdio by @dependabot[bot] in #10136
- core: bump github.com/gorilla/sessions from 1.2.2 to 1.3.0 by @dependabot[bot] in #10135
- web: bump @patternfly/elements from 3.0.1 to 3.0.2 in /web by @dependabot[bot] in #10132
- website: bump react-tooltip from 5.26.4 to 5.27.0 in /website by @dependabot[bot] in #10129
- web: fix early modal stack depletion by @kensternberg-authentik in #10068
- website/integations/services: Slack integration docs by @tanberry in #9933
- core: include version in built JS files by @BeryJu in #9558
- web: fix needed because recent upgrade to task breaks spinner button by @kensternberg-authentik in #10142
- web: bump ws from 8.16.0 to 8.17.1 in /web by @dependabot[bot] in #10149
- web: bump the storybook group in /web with 7 updates by @dependabot[bot] in #10147
- ci: bump docker/build-push-action from 5 to 6 by @dependabot[bot] in #10144
- core: bump urllib3 from 2.2.1 to 2.2.2 by @dependabot[bot] in #10143
- root: use custom model serializer that saves m2m without bulk by @BeryJu in #10139
- root: makefile: add codespell to make website by @rissson in #10116
- web: fix docker build for non-release versions by @rissson in #10154
- website/integrations: gitlab: better service description by @dominic-r in #9923
- website/docs: Describe where to apply the auto setup env vars by @m1212e in #9863
- website/integrations: jellyfin: add OIDC configuration by @Redlonghead in #9538
- web: bump the wdio group in /tests/wdio with 4 updates by @dependabot[bot] in #10160
- web: bump chromedriver from 126.0.1 to 126.0.2 in /tests/wdio by @dependabot[bot] in #10161
- core: bump twilio from 9.1.1 to 9.2.0 by @dependabot[bot] in #10162
- website/docs: update 2024.6 release notes with latest changes by @rissson in #10167
- website/docs: 2024.6 release notes: add note about group names by @rissson in #10170
- core: fix error when raising SkipObject in mapping by @BeryJu in #10153
- website/docs: update 2024.6 release notes with latest changes by @rissson in #10174
- website/docs: update template reference by @emmanuel-ferdman in #10166
- web: bump @sentry/browser from 8.9.2 to 8.10.0 in /web in the sentry group by @dependabot[bot] in #10185
- core: bump google-api-python-client from 2.133.0 to 2.134.0 by @dependabot[bot] in #10183
- web: bump glob from 10.4.1 to 10.4.2 in /web by @dependabot[bot] in #10163
- core: rework base for SkipObject exception to better support control flow exceptions by @BeryJu in #10186
- website/docs: Remove hyphen in read replica in Release Notes by @tanberry in #10178
- website/docs: Fix nginx proxy_pass directive documentation by @fotinakis in #10181
- core: bump selenium from 4.21.0 to 4.22.0 by @dependabot[bot] in #10194
- core: bump ruff from 0.4.9 to 0.4.10 by @dependabot[bot] in #10193
- web: bump typescript from 5.4.5 to 5.5.2 in /tests/wdio by @dependabot[bot] in #10192
- web: bump typescript from 5.4.5 to 5.5.2 in /web by @dependabot[bot] in #10191
- website: bump typescript from 5.4.5 to 5.5.2 in /website by @dependabot[bot] in #10190
- web: bump @sentry/browser from 8.10.0 to 8.11.0 in /web in the sentry group by @dependabot[bot] in #10204
- web: bump chromedriver from 126.0.2 to 126.0.3 in /tests/wdio by @dependabot[bot] in #10203
- core: bump twilio from 9.2.0 to 9.2.1 by @dependabot[bot] in #10202
- core: bump coverage from 7.5.3 to 7.5.4 by @dependabot[bot] in #10201
- web/flows: update flow background by @BeryJu in #10206
- website/docs: fix #9552 openssl rand base64 line wrap by @jogerj in #10211
- website/integrations: fix typo in documentation for OIDC setup with Paperless-ngx by @rwh85 in #10218
- security: fix CVE-2024-38371 by @BeryJu in #10229
- security: fix CVE-2024-37905 by @BeryJu in #10230
- core: bump debugpy from 1.8.1 to 1.8.2 by @dependabot[bot] in #10225
- web: bump @sentry/browser from 8.11.0 to 8.12.0 in /web in the sentry group by @dependabot[bot] in #10226
- core: bump webauthn from 2.1.0 to 2.2.0 by @dependabot[bot] in #10224
- web: bump chromedriver from 126.0.3 to 126.0.4 in /tests/wdio by @dependabot[bot] in #10223
- core: bump pdoc from 14.5.0 to 14.5.1 by @dependabot[bot] in #10221
- website/docs: update 2024.6 release notes with latest changes by @rissson in #10228
- website/docs: update 2024.2 release notes with security fixes by @rissson in #10232
- website/docs: update 2024.4 release notes with latest changes by @rissson in #10231
- website/docs: update 2024.6 release notes with latest changes (cherry-pick #10228) by @gcp-cherry-pick-bot[bot] in #10243
- website/docs: remove RC disclaimer from 2024.6 release notes by @rissson in #10245
- website/docs: remove RC disclaimer from 2024.6 release notes (cherry-pick #10245) by @gcp-cherry-pick-bot[bot] in #10246
- security: update supported versions by @rissson in #10247
- security: update supported versions (cherry-pick #10247) by @gcp-cherry-pick-bot[bot] in #10248
- website/docs: update geoip and asn example to use the proper syntax by @rissson in #10249
- website/docs: update the Welcome page by @tanberry in #10222
- website/docs: update geoip and asn example to use the proper syntax (cherry-pick #10249) by @gcp-cherry-pick-bot[bot] in #10250
- web: bump API Client versi...
Contributors
fotinakis, naruyan, and 53 other contributors
Assets 14
Release 2025.8.4
See https://docs.goauthentik.io/docs/releases/2025.8#fixed-in-202584
What's Changed
- webiste/docs: improve user ref doc (cherry-pick #16779) by @authentik-automation[bot] in #16839
- providers/scim: fix string formatting for SCIM user filter (cherry-pick #16465) by @authentik-automation[bot] in #16852
- website/docs: 2025.8: fix worker concurrency setting rename (cherry-pick #16946) by @authentik-automation[bot] in #16950
- website/docs: fix capitalization (cherry-pick #16944) by @authentik-automation[bot] in #16958
- website/docs: random typo fixes (cherry-pick #16956) by @authentik-automation[bot] in #16959
- website/docs: add docs for source switch expression policy (cherry-pick #16878) by @authentik-automation[bot] in #16972
- website/docs: update url to docker-compose.yml (cherry-pick #16901) by @authentik-automation[bot] in #16986
- website/developer docs: What domain for what doc version (cherry-pick #16987) by @authentik-automation[bot] in #16996
- providers/ldap: add include_children parameter to cached search mode (cherry-pick #16918) by @authentik-automation[bot] in #17000
- website/docs: oauth provider: Add device and introspect to reserved slugs (cherry-pick #16994) by @authentik-automation[bot] in #16998
- webiste/docs: add missing oauth endpoints (cherry-pick #16995) by @authentik-automation[bot] in #16999
- website/docs: improve discord policies when also bound to non-oauth sources (cherry-pick #17008) by @authentik-automation[bot] in #17012
- rbac: fix typo (cherry-pick #16476) by @authentik-automation[bot] in #17018
- core: add index on Group.is_superuser (cherry-pick #17011) by @authentik-automation[bot] in #17017
- lib: match exception_to_dict locals behaviour (cherry-pick #17006) by @authentik-automation[bot] in #17016
- website/docs: Update Github expression to handle non-OAuth sources gracefully (cherry-pick #17014) by @authentik-automation[bot] in #17029
- lib/config: fix listen settings (cherry-pick #17005) by @authentik-automation[bot] in #17023
- */bindings: order by pk (cherry-pick #17027) by @authentik-automation[bot] in #17053
- tasks: fix logger name (cherry-pick #17009 to version-2025.8) by @authentik-automation[bot] in #17060
- web/admin: fix federation sources automatically selected (cherry-pick #17069 to version-2025.8) by @authentik-automation[bot] in #17070
- rbac: optimize rbac assigned by users query (cherry-pick #17015 to version-2025.8) by @authentik-automation[bot] in #17092
- web: Fix layout class for row in LibraryPage (cherry-pick #16752 to version-2025.8) by @authentik-automation[bot] in #17091
- cmd/server/healthcheck: info log success instead of debug (cherry-pick #17093 to version-2025.8) by @authentik-automation[bot] in #17097
- outposts/ldap: add pwdChangeTime attribute (cherry-pick #17010 to version-2025.8) by @authentik-automation[bot] in #17101
- stages/identification: fix mismatched error messages (cherry-pick #17090 to version-2025.8) by @authentik-automation[bot] in #17104
- providers/oauth2: fix authentication error with identical app passwords (cherry-pick #17100 to version-2025.8) by @authentik-automation[bot] in #17103
- packages/django-dramatiq-postgres: broker: fix new messages not being picked up when too many messages are waiting (cherry-pick #17106 to version-2025.8) by @authentik-automation[bot] in #17108
- tasks: reduce default number of retries and max backoff (cherry-pick #17107 to version-2025.8) by @authentik-automation[bot] in #17109
- website/docs: 2025.8.4 release notes (cherry-pick #17119 to version-2025.8) by @authentik-automation[bot] in #17120
Full Changelog: version/2025.8.3...version/2025.8.4
Release 2025.8.3
See https://docs.goauthentik.io/docs/releases/2025.8#fixed-in-202583
What's Changed
- website/docs: fix docker tabs not rendering properly (cherry-pick #16799) by @authentik-automation[bot] in #16802
- lifecycle: fix permission error when running worker as root (cherry-pick #16735) by @authentik-automation[bot] in #16784
- website/docs: update create oauth provider page (cherry-pick #16617) by @authentik-automation[bot] in #16806
- stages/email_authenticator: Fix email mfa loop (cherry-pick #16579) by @authentik-automation[bot] in #16807
- website/docs: 2025.8.3 release notes (cherry-pick #16809) by @authentik-automation[bot] in #16810
Full Changelog: version/2025.8.2...version/2025.8.3
Release 2025.8.2
See https://docs.goauthentik.io/docs/releases/2025.8#fixed-in-202582
What's Changed
- website/docs: 2025.8.1 release notes (cherry-pick #16343) by @rissson in #16344
- providers/oauth2: avoid deadlock during session migration (cherry-pick #16361) by @rissson in #16364
- website: cherry-pick 2025.8/client side redirects by @GirlBossRush in #16372
- root: update security.md with github reporting link (cherry-pick #16332) by @authentik-automation[bot] in #16395
- lifecycle: fix PROMETHEUS_MULTIPROC_DIR missing suffix (cherry-pick #16401) by @authentik-automation[bot] in #16407
- tasks/schedules: fix api search fields (cherry-pick #16405) by @authentik-automation[bot] in #16410
- website/docs: adds details to certificates doc (cherry-pick #16335) by @authentik-automation[bot] in #16394
- root: fix security.md (cherry-pick #16345) by @authentik-automation[bot] in #16415
- providers/rac: fix AuthenticatedSession migration (cherry-pick #16400) by @authentik-automation[bot] in #16419
- website/docs: update internal vs external user information (cherry-pick #16359) by @authentik-automation[bot] in #16421
- lib/sync: fix missing f for string (cherry-pick #16423) by @authentik-automation[bot] in #16427
- website/docs: capitalized proper name of stages, removed old version references. (cherry-pick #16414) by @authentik-automation[bot] in #16450
- core: bump h2 from 4.2.0 to 4.3.0 (cherry-pick #16446) by @authentik-automation[bot] in #16449
- lib/sync/outgoing: fix single object sync timeout (cherry-pick #16447) by @authentik-automation[bot] in #16453
- core: fix client-side only validation allowing admin to set blank user password (cherry-pick #16467) by @authentik-automation[bot] in #16469
- website: Unify Netlify redirects with Docusaurus's client-side router. (backport of #16430) by @authentik-automation[bot] in #16472
- website: Page redirect guide, documentation (backport of #16466) by @authentik-automation[bot] in #16475
- policies: remove object pk from authentik_policies_execution_time to reduce cardinality (cherry-pick #16500) by @authentik-automation[bot] in #16501
- website/integrations: bitwarden: fix ent notice (cherry-pick #16502) by @authentik-automation[bot] in #16511
- website/docs: update how to rac and outpost landing page (cherry-pick #16442) by @authentik-automation[bot] in #16498
- website/docs: improve customize your instance page layout (cherry-pick #16367) by @authentik-automation[bot] in #16566
- website/docs: update external user information (cherry-pick #16493) by @authentik-automation[bot] in #16568
- website/docs: changes all -> arrows to > (cherry-pick #16569) by @authentik-automation[bot] in #16571
- website/docs: remove base providers redirect. (cherry-pick #16576) by @authentik-automation[bot] in #16580
- website: Add text copy of license (cherry-pick #16559) by @authentik-automation[bot] in #16574
- root: clean up README (cherry-pick #16286) by @authentik-automation[bot] in #16573
- sources/ldap: fix malformed filter error with special characters in group DN (cherry-pick #16243) by @authentik-automation[bot] in #16585
- core: bump django from 5.1.11 to v5.1.12 (cherry-pick #16584) by @authentik-automation[bot] in #16591
- website: Update license text to use "directory" (cherry-pick #16589) by @authentik-automation[bot] in #16592
- web/flows: only disable login button when interactive captcha is configured and not loaded (cherry-pick #16586) by @authentik-automation[bot] in #16590
- providers/oauth2: add missing exp claim for logout token (cherry-pick #16593) by @authentik-automation[bot] in #16598
- providers/scim: improve error message when object fails to sync (cherry-pick #16625) by @authentik-automation[bot] in #16643
- tasks: fix status and healthcheck breaking with connection issues (cherry-pick #16504) by @authentik-automation[bot] in #16673
- website/docs: fix typo (cherry-pick #16681) by @authentik-automation[bot] in #16682
- website/docs: add rate limiting info to Email stage docs (cherry-pick #16668) by @authentik-automation[bot] in #16691
- website: Redirect Azure to Entra. Add tags for search indexing. (cherry-pick #16474) by @authentik-automation[bot] in #16483
- website/docs: add missing notification rule example doc to sidebar (cherry-pick #16478) by @authentik-automation[bot] in #16479
- website/docs: clarify docker compose install (cherry-pick #16696) by @authentik-automation[bot] in #16699
- website/docs: moves display source notes (cherry-pick #16704) by @authentik-automation[bot] in #16718
- website/docs: fix typos (cherry-pick #16716) by @authentik-automation[bot] in #16719
- website/docs: dev-docs: Minimal landing + landing for dev env (cherry-pick #15246) by @authentik-automation[bot] in #16734
- web: Docker versioning compatibility (cherry-pick #16139) by @authentik-automation[bot] in #16732
- website/docs: re-fix sentence about Go (backport of #16736) by @authentik-automation[bot] in #16737
- website/docs: update ssh rac doc (cherry-pick #16695) by @authentik-automation[bot] in #16720
- lib/logging: only show locals when in debug mode (cherry-pick #16772) by @authentik-automation[bot] in #16774
- sources/oauth/entra_id: do not assume group_id comes from entra (cherry-pick #16456) by @authentik-automation[bot] in #16777
- website/docs: 2025.8.2 release notes (cherry-pick #16773) by @authentik-automation[bot] in #16778
Full Changelog: version/2025.8.1...version/2025.8.2
Contributors
GirlBossRush and rissson
Assets 14
Release 2025.8.1
See https://docs.goauthentik.io/docs/releases/2025.8#fixed-in-202581
What's Changed
- *: Fix dead doc link (cherry-pick #16288) by @rissson in #16297
- web: fix "Explore integrations" link in Quick actions (cherry-pick #16274) by @GirlBossRush in #16285
- web: Fix hidden textarea
requiredattribute. (cherry-pick #16168) by @GirlBossRush in #16275 - providers/oauth2: fix logout token missing sid, fix wrong sub mode used (cherry-pick #16295) by @rissson in #16299
- lifecycle: set PROMETHEUS_MULTIPROC_DIR as early as possible (cherry-pick #16298) by @rissson in #16302
- web: Fix issue where clicking a list item scrolls container (cherry-pick #16174) by @GirlBossRush in #16278
- web: Improvements to ReCaptcha resizing (cherry-pick #16171) by @GirlBossRush in #16281
- web: Fix form group slots (cherry-pick #16276) by @GirlBossRush in #16277
- web: Username truncation, field alignment. (cherry-pick #16283) by @GirlBossRush in #16284
- website/docs: add link in 2025.8 rel notes to back-channel logout doc (cherry pick #16306) by @tanberry in #16318
- core: use email backend for test_email management command (cherry-pick #16311) by @rissson in #16337
- packages/django-dramatiq-postgres: middleware: fix listening on hosts where ipv6 is not supported (cherry-pick #16308) by @rissson in #16305
- outposts: fix service connection update task arguments (cherry-pick #16312) by @rissson in #16313
- outposts: allow ingress path type configuration (cherry-pick #16339) by @rissson in #16341
- website: Hotfix version 2025.8/website versioning by @GirlBossRush in #16336
- packages/django-dramatiq-postgres: broker: fix various timing issues (cherry-pick #16340) by @rissson in #16342
Full Changelog: version/2025.8.0...version/2025.8.1
Contributors
GirlBossRush, tanberry, and rissson
Assets 14
Release 2025.8.0
See https://docs.goauthentik.io/docs/releases/2025.8
What's Changed
- website/docs: update Advanced Queries docs and Rel Notes with new Int Guide (cherry-pick #16191) by @tanberry in #16258
- website/docs: sys-mgmt/s3: Clean up and improve (cherry-pick #16242) by @tanberry in #16266
- security: Bump supported versions (cherry-pick #16261) by @rissson in #16267
- website/docs: update 2025.8 release notes (cherry-pick #16269) by @rissson in #16271
- tasks: add rel_obj to system task exception event (cherry-pick #16270) by @rissson in #16272
Full Changelog: version/2025.8.0-rc7...version/2025.8.0
Contributors
tanberry and rissson