Release 2023.3.0

See https://goauthentik.io/docs/releases/2023.3

What's Changed

• web: bump API Client version by @authentik-bot in #4700
• core: bump kubernetes from 25.3.0 to 26.1.0 by @dependabot in #4706
• core: bump goauthentik.io/api/v3 from 3.2023021.1 to 3.2023022.1 by @dependabot in #4705
• web: bump mermaid from 9.3.0 to 9.4.0 in /web by @dependabot in #4704
• web: bump pyright from 1.1.293 to 1.1.294 in /web by @dependabot in #4703
• ci: bump snok/container-retention-policy from 1 to 2 by @dependabot in #4710
• core: bump duo-client from 4.5.0 to 4.6.1 by @dependabot in #4726
• core: bump selenium from 4.8.0 to 4.8.2 by @dependabot in #4725
• core: bump webauthn from 1.7.0 to 1.7.2 by @dependabot in #4723
• web: bump @sentry/browser from 7.37.2 to 7.38.0 in /web by @dependabot in #4724
• web: bump @codemirror/theme-one-dark from 6.1.0 to 6.1.1 in /web by @dependabot in #4722
• web: bump @formatjs/intl-listformat from 7.1.7 to 7.1.8 in /web by @dependabot in #4720
• web: bump @sentry/tracing from 7.37.2 to 7.38.0 in /web by @dependabot in #4721
• web: bump API Client version by @authentik-bot in #4728
• web: bump @typescript-eslint/eslint-plugin from 5.52.0 to 5.53.0 in /web by @dependabot in #4743
• web: bump @babel/preset-typescript from 7.18.6 to 7.21.0 in /web by @dependabot in #4736
• web: bump @babel/plugin-transform-runtime from 7.19.6 to 7.21.0 in /web by @dependabot in #4737
• core: bump goauthentik.io/api/v3 from 3.2023022.1 to 3.2023022.2 by @dependabot in #4738
• web: bump @formatjs/intl-listformat from 7.1.8 to 7.1.9 in /web by @dependabot in #4741
• web: bump @babel/core from 7.20.12 to 7.21.0 in /web by @dependabot in #4740
• web: bump @typescript-eslint/parser from 5.52.0 to 5.53.0 in /web by @dependabot in #4739
• web: bump @babel/plugin-proposal-decorators from 7.20.13 to 7.21.0 in /web by @dependabot in #4742
• core: Fix bug causing whitespace only names to raise exception when generating avatars by @sdimovv in #4746
• web: bump mermaid from 9.4.0 to 10.0.0 in /web by @dependabot in #4752
• core: Improve service account creation by @sdimovv in #4751
• website/docs: add better explanation for goauthentik.io/user/token-ex… by @BeryJu in #4755
• web: bump API Client version by @authentik-bot in #4756
• stages/user_login: terminate others by @BeryJu in #4754
• web: bump API Client version by @authentik-bot in #4757
• providers/ldap: Improve compatibility with LDAP clients by @sdimovv in #4750
• providers/ldap: making ldap compatible with synology by @roche-quentin in #4694
• website/integrations: fix Vikunja setup instructions by @kolaente in #4730
• website/integrations: Mobilizon instructions by @Tealk in #4747
• website/integrations: Mastodon integration by @Tealk in #4733
• website/integrations: Zammad instructions by @Tealk in #4644
• providers/ldap: fix tests by @BeryJu in #4759
• core: bump golang.org/x/text from 0.3.7 to 0.3.8 by @dependabot in #4765
• core: bump coverage from 7.1.0 to 7.2.0 by @dependabot in #4764
• core: bump twilio from 7.16.3 to 7.16.4 by @dependabot in #4763
• web: bump pyright from 1.1.294 to 1.1.295 in /web by @dependabot in #4760
• core: bump goauthentik.io/api/v3 from 3.2023022.2 to 3.2023022.4 by @dependabot in #4762
• web: bump @goauthentik/api from 2023.2.2-1677071401 to 2023.2.2-1677073316 in /web by @dependabot in #4761
• providers/oauth2: OpenID conformance by @BeryJu in #4758
• web: give node more memory to build by @BeryJu in #4768
• core: bump golang.org/x/oauth2 from 0.0.0-20220223155221-ee480838109b to 0.5.0 by @dependabot in #4775
• core: bump watchdog from 2.2.1 to 2.3.0 by @dependabot in #4772
• web: bump @trivago/prettier-plugin-sort-imports from 4.0.0 to 4.1.0 in /web by @dependabot in #4771
• core: bump goauthentik.io/api/v3 from 3.2023022.4 to 3.2023022.5 by @dependabot in #4773
• core: bump golang.org/x/sync from 0.0.0-20220601150217-0de741cfad7f to 0.1.0 by @dependabot in #4774
• web/user: fix source connections not being filtered by @BeryJu in #4778
• web: bump API Client version by @authentik-bot in #4779
• sources/ldap: improve error handling for password complexity by @BeryJu in #4780
• web: bump @braintree/sanitize-url from 6.0.0 to 6.0.2 in /web by @dependabot in #4781
• web/admin: fix chart display with no sources by @BeryJu in #4782
• core: bootstrap email by @BeryJu in #4788
• core: bump goauthentik.io/api/v3 from 3.2023022.5 to 3.2023022.6 by @dependabot in #4798
• web: bump eslint from 8.34.0 to 8.35.0 in /web by @dependabot in #4795
• web: bump @trivago/prettier-plugin-sort-imports from 4.1.0 to 4.1.1 in /web by @dependabot in #4790
• web: bump @lingui/detect-locale from 3.17.1 to 3.17.2 in /web by @dependabot in #4793
• web: bump core-js from 3.28.0 to 3.29.0 in /web by @dependabot in #4796
• core: bump coverage from 7.2.0 to 7.2.1 by @dependabot in #4794
• core: bump github.com/stretchr/testify from 1.8.1 to 1.8.2 by @dependabot in #4799
• web: bump @lingui/core from 3.17.1 to 3.17.2 in /web by @dependabot in #4791
• web: bump @lingui/macro from 3.17.1 to 3.17.2 in /web by @dependabot in #4797
• web: bump @lingui/cli from 3.17.1 to 3.17.2 in /web by @dependabot in #4792
• website: add X-Frame-Options by @BeryJu in #4800
• flows: change default flow stage binding settings by @BeryJu in #4784
• web: bump API Client version by @authentik-bot in #4801
• providers/oauth2: fix typo by @BeryJu in #4803
• web: fetch custom.css via fetch and add stylesheet by @BeryJu in #4804
• tests/e2e: use example blueprints for testing by @BeryJu in #4805
• web: bump @typescript-eslint/eslint-plugin from 5.53.0 to 5.54.0 in /web by @dependabot in #4808
• core: bump sentry-sdk from 1.15.0 to 1.16.0 by @dependabot in #4809
• core: bump goauthentik.io/api/v3 from 3.2023022.6 to 3.2023022.8 by @dependabot in #4811
• web: bump @typescript-eslint/parser from 5.53.0 to 5.54.0 in /web by @dependabot in #4810
• web: bump @sentry/tracing from 7.38.0 to 7.39.0 in /web by @dependabot in #4806
• web: bump @sentry/browser from 7.38.0 to 7.39.0 in /web by @dependabot in #4807
• flows: planner error handling by @BeryJu in #4812
• core: bump watchdog from 2.3.0 to 2.3.1 by @dependabot in #4819
• web: bump pyright from 1.1.295 to 1.1.296 in /web by @dependabot in #4818
• web/admin: workaround for tenant certificate selection being cut off by @BeryJu in #4820
• web/admin: set valid correctly when opened and radio is already selected by @BeryJu in #4821
• core: Add resolve_dns and reverse_dns functions to evaluator by @sdimovv in #4769
• web: bump @codemirror/lang-python from 6.1.1 to 6.1.2 in /web by @dependabot in #4828
• web: bump @sentry/tracing from 7.39.0 to 7.40.0 in /web by @dependabot in #4827
• web: bump mermaid from 10.0.0 to 10.0.1 in /web by @dependabot in #4825
• web: bump @sentry/browser from 7.39.0 to 7.40.0 in /web by @dependabot in #4826
• stages/authenticator_sms: fix twilio sending, add test by @BeryJu in #4829
• security: fix CVE-2023-26481 by @BeryJu in #4832
• website/docs: update release notes by @BeryJu in #4833
• sources/plex: fix check_token error unusable if token is empty by @BeryJu in #4834
• website: bump dns-packet from 5.3.1 to 5.4.0 in /website by @dependabot in #4836
• web: bump mermaid from 10.0.1 to 10.0.2 in /web by @dependabot in #4837
• core: bump golang.org/x/oauth2 from 0.5.0 to 0.6.0 by @dependabot in #4848
• core: bump drf-spectacular from 0.25.1 to 0.26.0 by @dependabot in #4844
• core: bump pytest from 7.2.1 to 7.2.2 by @dependabot in #4846
• core: bump pylint from 2.16.2 to 2.16.3 by @dependabot in #4845
• core: bump goauthentik.io/api/v3 from 3.2023022.8 to 3.2023022.10 by @dependabot in #4847
• providers: SCIM by @BeryJu in #4835
• web: bump API Client version by @authentik-bot in #4850
• website: add website development setup, update contribution guidelines on PR titles by @BeryJu in #4852
• website/docs: Corrected typo and added Note about port number if using Istio/Kubern… by @tanberry in #4851
• web/elements: fix center text not scrolling with container by @BeryJu in #4853
• core: bump django-otp from 1.1.4 to 1.1.5 by @dependabot in #4861
• core: bump pylint from 2.16.3 to 2.16.4 by @dependabot in #4860
• web: bump @typescript-eslint/parser from 5.54.0 to 5.54.1 in /web by @dependabot in #4854
• web: bump @sentry/tracing from 7.40.0 to 7.41.0 in /web by @dependabot in #4856
• core: bump goauthentik.io/api/v3 from 3.2023022.10 to 3.2023022.11 by @dependabot in #4859
• core: bump github.com/getsentry/sentry-go from 0.18.0 to 0.19.0 by @dependabot in #4858
• web: bump @typescript-eslint/eslint-plugin from 5.54.0 to 5.54.1 in /web by @dependabot in #4857
• web: bump @sentry/browser from 7.40.0 to 7.41.0 in /web by @dependabot in #4855
• internal: fix crash when port 9000 is in use by @BeryJu in #4863
• providers/scim: add option to filter out service accounts, parent group by @BeryJu in #4862
• web: bump API Client version by @authentik-bot in #4864
• website/blog: Becoming OpenID certified - Why standards matter by @BeryJu in #4865
• core: enforce unique on names where it makes sense by @BeryJu in #4866
• website/docs: fix typo by @tanberry in #4867
• providers/SCIM: customizable externalId, document behavior by @BeryJu in #4868
• core: add a list of recommended vs code extensions by @BeryJu in #4869
• core: bump django-otp from 1.1.5 to 1.1.6 by @dependabot in #4873
• core: bump goauthentik.io/api/v3 from 3.2023022.11 to 3.2023022.12 by @dependabot in #4874
• web: bump pyright from 1.1.296 to 1.1.297 in /web by @dependabot in #4872
• core: bump golang from 1.20.1-bullseye to 1.20.2-bullseye by @dependabot in #4871
• web: bump pyright from 1.1.297 to 1.1.298 in /web by @dependabot in #4882
• core: bump codespell from 2.2.2 to 2.2.4 by @dependabot in #4881
• core: bump goauthentik.io/api/v3 from 3.2023022.12 to 3.2023022.14 by @dependabot in #4883
• core: bump pylint from 2.16.4 to 2.17.0 by @dependabot in #4884
• web: toggle dark/light theme manually by @BeryJu in #4876
• web: bump API Client version by @authentik-bot in #4887
• web: fix locale inconsistencies by @BeryJu in #4888
• core: add validator which allows for URLs with formatting by @BeryJu in #4890
• core: bump uvicorn from 0.20.0 to 0.21.0 by @dependabot in #4897
• core: bump twilio from 7.16.4 to 7.16.5 by @dependabot in #4895
• web: bump @sentry/browser from 7.41.0 to 7.42.0 in /web by @dependabot in #4891
• core: bump goauthentik.io/api/v3 from 3.2023022.14 to 3.2023022.15 by @dependabot in #4893
• web: bump @sentry/tracing from 7.41.0 to 7.42.0 in /web by @dependabot in #4894
• web: bump turnstile-types from 1.1.1 to 1.1.2 in /web by @dependabot in #4892
• core: bump bandit from 1.7.4 to 1.7.5 by @dependabot in #4896
• web: fix theming issues when using automatic by @BeryJu in #4898
• website/docs: prepare 2023.3 release notes by @BeryJu in #4889
• website/docs: fix layout for preview annotation by @BeryJu in #4899
• web/elements: fix flipped theme in codemirror by @BeryJu in #4901
• website/docs: improve traefik standalone docs by @support-tt in #4493
• events: set task start time before start not on init by @BeryJu in #4908
• root: fix session middleware for websocket connections by @BeryJu in #4909
• web/flows: fix compatibility mode by @BeryJu in #4910
• core: bump urllib3 from 1.26.14 to 1.26.15 by @dependabot in #4914
• web: bump eslint from 8.35.0 to 8.36.0 in /web by @dependabot in #4912
• core: bump paramiko from 3.0.0 to 3.1.0 by @dependabot in #4913
• providers/scim: handle ServiceProviderConfig 404 by @BeryJu in #4915
• web/admin: fix scim provider layout by @BeryJu in #4919
• web/elements: fix copy on insecure origins by @BeryJu in #4917
• stages/user_login: expiry before login by @BeryJu in #4920
• website/integrations: Update Skyhigh provider instructions by @terratrax in #4921
• website/docs: separate pages for each webserver by @BeryJu in #4911
• website/docs: final 2023.3 release notes by @BeryJu in #4923

New Contributors

• @roche-quentin made their first contribution in #4694
• @kolaente made their first contribution in #4730
• @Tealk made their first contribution in #4747
• @tanberry made their first contribution in #4851
• @support-tt made their first contribution in #4493

Full Changelog: version/2023.2.2...version/2023.3.0