Skip to content

Releases: goauthentik/authentik

Release 2026.2.1

03 Mar 20:13
@authentik-automation authentik-automation
version/2026.2.1
0dccbd4

Choose a tag to compare

View all tags
Release 2026.2.1 Latest
Latest

See https://docs.goauthentik.io/docs/releases/2026.2#fixed-in-202621

What's Changed

  • website/docs: update supported versions (cherry-pick #20534 to version-2026.2) by @authentik-automation[bot] in #20535
  • website/docs: fix upgrade link in 2026.2 release notes (cherry-pick #20539 to version-2026.2) by @authentik-automation[bot] in #20542
  • website/docs: remove bad logs redirect (cherry-pick #20522 to version-2026.2) by @authentik-automation[bot] in #20548
  • website/docs: revamp enterprise section (cherry-pick #20379 to version-2026.2) by @authentik-automation[bot] in #20546
  • docs: fix typos and wording in docs and integrations (cherry-pick #20550 to version-2026.2) by @authentik-automation[bot] in #20563
  • ci: add reason change to versions repo bump (cherry-pick #20562 to version-2026.2) by @gergosimonyi in #20569
  • internal: make http timeouts configurable (cherry-pick #20472 to version-2026.2) by @authentik-automation[bot] in #20567
  • packages/django-dramatiq-postgres: use fork (cherry-pick #20606 to version-2026.2) by @authentik-automation[bot] in #20608
  • web/flows: fix source icons being always inverted (cherry-pick #20419 to version-2026.2) by @authentik-automation[bot] in #20607
  • crypto: fix kid legacy signal (cherry-pick #20627 to version-2026.2) by @authentik-automation[bot] in #20628
  • sources/ldap: add connection logging & downgrade message (cherry-pick #20519 to version-2026.2) by @authentik-automation[bot] in #20636
  • packages/django-dramatiq-postgres: fix worker startup on macos (cherry-pick #20637 to version-2026.2) by @authentik-automation[bot] in #20641
  • enterprise/wsfed: Fix metadata export and signing logic (cherry-pick #20643 to version-2026.2) by @authentik-automation[bot] in #20649
  • website/docs: entra id provider: add custom email domain info (cherry-pick #20444 to version-2026.2) by @authentik-automation[bot] in #20660
  • website/docs: kerberos: add note about caching (cherry-pick #20663 to version-2026.2) by @authentik-automation[bot] in #20664
  • core: fix get_provider returning base Provider instead of subclass (cherry-pick #19064 to version-2026.2) by @authentik-automation[bot] in #20670
  • packages/django-channels-postgres: eagerly delete messages (cherry-pick #20687 to version-2026.2) by @authentik-automation[bot] in #20688
  • outpost/proxyv2: prevent panic in handleSignOut (cherry-pick #20097 to version-2026.2) by @authentik-automation[bot] in #20689
  • website/docs: add 2025 pentest (cherry-pick #20626 to version-2026.2) by @authentik-automation[bot] in #20691
  • web: fix identification stage styling in compatibility mode (cherry-pick #20684 to version-2026.2) by @authentik-automation[bot] in #20694
  • providers/proxy: move search path to query instead of runtime parameter (cherry-pick #20662 to version-2026.2) by @authentik-automation[bot] in #20693
  • website/docs: add release notes for 2026.2.1 (cherry-pick #20659 to version-2026.2) by @authentik-automation[bot] in #20695

Full Changelog: version/2026.2.0...version/2026.2.1

Contributors

gergosimonyi
Assets 14

Release 2026.2.1-rc1

02 Mar 13:28
@authentik-automation authentik-automation
version/2026.2.1-rc1
0ca5a54

Choose a tag to compare

View all tags
Release 2026.2.1-rc1 Pre-release
Pre-release

See https://next.goauthentik.io/docs/releases/2026.2/#fixed-in-202621

What's Changed

  • website/docs: update supported versions (cherry-pick #20534 to version-2026.2) by @authentik-automation[bot] in #20535
  • website/docs: fix upgrade link in 2026.2 release notes (cherry-pick #20539 to version-2026.2) by @authentik-automation[bot] in #20542
  • website/docs: remove bad logs redirect (cherry-pick #20522 to version-2026.2) by @authentik-automation[bot] in #20548
  • website/docs: revamp enterprise section (cherry-pick #20379 to version-2026.2) by @authentik-automation[bot] in #20546
  • docs: fix typos and wording in docs and integrations (cherry-pick #20550 to version-2026.2) by @authentik-automation[bot] in #20563
  • ci: add reason change to versions repo bump (cherry-pick #20562 to version-2026.2) by @gergosimonyi in #20569
  • internal: make http timeouts configurable (cherry-pick #20472 to version-2026.2) by @authentik-automation[bot] in #20567
  • packages/django-dramatiq-postgres: use fork (cherry-pick #20606 to version-2026.2) by @authentik-automation[bot] in #20608
  • web/flows: fix source icons being always inverted (cherry-pick #20419 to version-2026.2) by @authentik-automation[bot] in #20607
  • crypto: fix kid legacy signal (cherry-pick #20627 to version-2026.2) by @authentik-automation[bot] in #20628
  • sources/ldap: add connection logging & downgrade message (cherry-pick #20519 to version-2026.2) by @authentik-automation[bot] in #20636
  • packages/django-dramatiq-postgres: fix worker startup on macos (cherry-pick #20637 to version-2026.2) by @authentik-automation[bot] in #20641
  • enterprise/wsfed: Fix metadata export and signing logic (cherry-pick #20643 to version-2026.2) by @authentik-automation[bot] in #20649

Full Changelog: version/2026.2.0...version/2026.2.1-rc1

Contributors

gergosimonyi
Loading

Release 2026.2.0

24 Feb 20:38
@authentik-automation authentik-automation
version/2026.2.0
8af4916

Choose a tag to compare

View all tags
Release 2026.2.0

See https://docs.goauthentik.io/docs/releases/2026.2

What's Changed

  • root: bump version to 2026.2.0-rc1 by @authentik-automation[bot] in #18794
  • tests/e2e: retry detached shadow roots by @melizeche in #18796
  • website/release notes: Update v2025.12 release notes by @melizeche in #18797
  • web/admin: fix read-only provider selection for application form by @dominic-r in #18768
  • web: bump the react group across 1 directory with 2 updates by @dependabot[bot] in #18775
  • web: bump chromedriver from 143.0.0 to 143.0.1 in /web by @dependabot[bot] in #18776
  • web: bump the storybook group across 1 directory with 5 updates by @dependabot[bot] in #18774
  • internal: don't warn on empty outpost for embedded by @BeryJu in #18786
  • lifecycle/aws: bump aws-cdk from 2.1033.0 to 2.1034.0 in /lifecycle/aws by @dependabot[bot] in #18771
  • core, web: update translations by @authentik-automation[bot] in #18804
  • root: Add macOS support for sed in Makefile by @melizeche in #18795
  • ci: bump astral-sh/setup-uv from 7.1.5 to 7.1.6 in /.github/actions/setup by @dependabot[bot] in #18826
  • ci: bump actions/upload-artifact from 5.0.0 to 6.0.0 by @dependabot[bot] in #18824
  • core: bump goauthentik/fips-debian from 07f41ce to c10cd2c by @dependabot[bot] in #18822
  • ci: bump actions/download-artifact from 6.0.0 to 7.0.0 by @dependabot[bot] in #18825
  • ci: bump actions/cache from 5.0.0 to 5.0.1 by @dependabot[bot] in #18823
  • core: list applications fix by @ryanpesek in #18798
  • website/docs: add icon info to style guide by @dewi-tik in #18832
  • core: remove superuser check from Token list by @gergosimonyi in #18684
  • packages/django-dramatiq-postgres: broker: close django connections on consumer close by @rissson in #18833
  • core: bump goauthentik.io/api/v3 from 3.2025120.26 to 3.2026020.1 by @dependabot[bot] in #18815
  • admin/files: revert add check for /media existence (#18636) by @rissson in #18829
  • website/docs: add jellyseer integration doc by @gabay in #18812
  • crypto: Store details parsed from includeDetails in database instead by @PeshekDotDev in #18013
  • core: skip s3 tests if endpoint isn't available by @melizeche in #18841
  • admin/files: fix get_objects_for_user queryset argument in FileUsedByView by @dominic-r in #18845
  • core: bump goauthentik/fips-debian from c10cd2c to 2f19fc1 by @dependabot[bot] in #18856
  • ci: replace codecov test-results action by @BeryJu in #18862
  • core: add skip s3_test_server_available to TestResolveFileUrlS3Backend by @melizeche in #18858
  • rbac: alter migrated direct permission roles by @gergosimonyi in #18860
  • core: bump library/golang from 5d35fb8 to 8e8f9c8 by @dependabot[bot] in #18855
  • web/admin/rbac: misc object permission fixes by @gergosimonyi in #18859
  • outposts: fix permission errors for related certificates by @BeryJu in #18861
  • website/docs: adjust RBAC-related details in 2025.12 release notes by @gergosimonyi in #18863
  • website/docs: Add docs for passkey autofill (WebauthN Conditional UI) by @melizeche in #18805
  • website/docs: 2025.10.3 release notes by @BeryJu in #18868
  • web: add custom message with links for empty data export list by @atereshkin in #18830
  • web: fix notification counter by @atereshkin in #18781
  • web: bump vite from 7.2.7 to 7.3.0 in /web by @dependabot[bot] in #18854
  • stages/authenticator_*: fix code input field not string by @BeryJu in #18875
  • web: fix file upload form by @dominic-r in #18808
  • web/admin: endpoint: change wording and add helper text by @dewi-tik in #18871
  • core, web: update translations by @authentik-automation[bot] in #18807
  • website/integrations: bookstack: fix redir url by @dominic-r in #18891
  • core: bump astral-sh/uv from 0.9.17 to 0.9.18 by @dependabot[bot] in #18898
  • core: bump goauthentik/fips-debian from 2f19fc1 to 189345a by @dependabot[bot] in #18897
  • web: bump knip from 5.73.3 to 5.74.0 in /web by @dependabot[bot] in #18896
  • web: bump @types/node from 25.0.0 to 25.0.3 in /web by @dependabot[bot] in #18895
  • web: bump the rollup group across 1 directory with 4 updates by @dependabot[bot] in #18852
  • web: bump the bundler group across 1 directory with 7 updates by @dependabot[bot] in #18894
  • web: bump @sentry/browser from 10.30.0 to 10.31.0 in /web in the sentry group across 1 directory by @dependabot[bot] in #18893
  • lifecycle/aws: bump aws-cdk from 2.1034.0 to 2.1100.0 in /lifecycle/aws by @dependabot[bot] in #18850
  • web: bump the goauthentik group across 1 directory with 3 updates by @dependabot[bot] in #18819
  • web: bump the swc group across 1 directory with 11 updates by @dependabot[bot] in #18818
  • web: bump the eslint group across 1 directory with 5 updates by @dependabot[bot] in #18851
  • core: bump goauthentik.io/api/v3 from 3.2026020.1 to 3.2026020.3 by @dependabot[bot] in #18892
  • tasks/middleware: close connections on worker status update database error by @rissson in #18881
  • website/docs: added list of Int Guide contributors (also edited frontmatter) by @tanberry in #18888
  • api: fix page_size with invalid query param by @rissson in #18879
  • ci/release-tag: checkout correct branch for make test-docker by @rissson in #18880
  • api: fix latest version for public schema by @BeryJu in #18902
  • website/docs: 2025.12: remove superfluous changes by @rissson in #18910
  • web/admin: reword some things on the device view page by @BeryJu in #18785
  • core/groups: optimize prefetch queries to fetch only required fields by @joaocfernandes in #18448
  • root: fix docker-compose data mount by @rissson in #18903
  • web/admin: add UI copy to RBAC modal by @tanberry in #18917
  • tests/e2e: handle StaleElementReferenceException in parse_json_content by @melizeche in #18842
  • core: bump goauthentik/fips-debian from 189345a to 10dadf1 by @dependabot[bot] in #18927
  • web: bump chromedriver from 143.0.1 to 143.0.2 in /web by @dependabot[bot] in #18926
  • web: bump knip from 5.74.0 to 5.75.1 in /web by @dependabot[bot] in #18924
  • core, web: update translations by @authentik-automation[bot] in #18920
  • lifecycle/aws: bump aws-cdk from 2.1100.0 to 2.1100.1 in /lifecycle/aws by @dependabot[bot] in #18922
  • web: bump the swc group across 1 directory with 11 updates by @dependabot[bot] in #18923
  • web: bump the storybook group across 1 directory with 5 updates by @dependabot[bot] in #18817
  • stages: remove more global state by @BeryJu in #18641
  • packages/ak-guardian: cast safely by @gergosimonyi in #18929
  • web/flow: Fix spurious double submit on ak-stage-autosubmit by @dminuoso i...
Read more

Contributors

severin, chetan, and 50 other contributors
Loading

Release 2026.2.0-rc5

24 Feb 09:54
@authentik-automation authentik-automation
version/2026.2.0-rc5
de045c6

Choose a tag to compare

View all tags
Release 2026.2.0-rc5 Pre-release
Pre-release

See https://next.goauthentik.io/docs/releases/2026.2

What's Changed

  • rbac: fix object permission request (cherry-pick #20304 to version-2026.2) by @authentik-automation[bot] in #20366
  • web: Flow Executor layout fixes (cherry-pick #20134 to version-2026.2) by @authentik-automation[bot] in #20331
  • enterprise/providers/ws_federation: fix incorrect metadata download URL (cherry-pick #20173 to version-2026.2) by @authentik-automation[bot] in #20365
  • website/docs: Fix broken link to flow executor (cherry-pick #20364 to version-2026.2) by @authentik-automation[bot] in #20370
  • core: add cause to ak_groups deprecation event and logs (cherry-pick #20361 to version-2026.2) by @authentik-automation[bot] in #20368
  • website/docs: correct reference to overriden S3 variable (cherry-pick #20156 to version-2026.2) by @authentik-automation[bot] in #20378
  • web/admin: bug: stage update forms not rendering, several modal form buttons missing (cherry-pick #20373 to version-2026.2) by @authentik-automation[bot] in #20394
  • enterprise/providers/microsoft_entra: fix dangling comma (cherry-pick #20391 to version-2026.2) by @authentik-automation[bot] in #20395
  • ci: pull latest changes before tagging new version (cherry-pick #20413 to version-2026.2) by @rissson in #20414
  • enterprise/providers/microsoft_entra: only check upn when set (cherry-pick #20441 to version-2026.2) by @authentik-automation[bot] in #20442
  • stages/user_login: log correct user when session binding is broken (cherry-pick #20094 to version-2026.2) by @authentik-automation[bot] in #20453
  • enterprise: monkey patch pyjwt to accept mismatching key (cherry-pick #20402 to version-2026.2) by @authentik-automation[bot] in #20474
  • enterprise/lifecycle: use datetime instead of date to track review cycles (cherry-pick #20283 to version-2026.2) by @authentik-automation[bot] in #20473
  • policies: measure policy process from manager (cherry-pick #20477 to version-2026.2) by @authentik-automation[bot] in #20481
  • providers/proxy: preserve URL-encoded path characters in redirect (cherry-pick #20476 to version-2026.2) by @authentik-automation[bot] in #20482
  • web: Center footer links. (cherry-pick #20345 to version-2026.2) by @authentik-automation[bot] in #20425
  • website/docs: add info about make install and recovery key (cherry-pick #20447 to version-2026.2) by @authentik-automation[bot] in #20486
  • providers/oauth2: device code flow client id via auth header (cherry-pick #20457 to version-2026.2) by @authentik-automation[bot] in #20503

Full Changelog: version/2026.2.0-rc4...version/2026.2.0-rc5

Contributors

rissson
Loading

Release 2026.2.0-rc4

17 Feb 13:16
@authentik-automation authentik-automation
version/2026.2.0-rc4
9ea9a86

Choose a tag to compare

View all tags
Release 2026.2.0-rc4 Pre-release
Pre-release

See https://next.goauthentik.io/docs/releases/2026.2

What's Changed

  • website/docs: add okta source doc (cherry-pick #20296 to version-2026.2) by @authentik-automation[bot] in #20335
  • website/docs: rac: update rac provider docs (cherry-pick #20225 to version-2026.2) by @authentik-automation[bot] in #20337
  • website/docs, integrations: fix language (cherry-pick #20338 to version-2026.2) by @authentik-automation[bot] in #20347
  • ci: fix setup altering package-lock (cherry-pick #20348 to version-2026.2) by @rissson in #20356
  • web: revert package-lock.json by tag workflow by @gergosimonyi in #20349

Full Changelog: version/2026.2.0-rc3...version/2026.2.0-rc4

Contributors

rissson and gergosimonyi
Loading

Release 2026.2.0-rc3

16 Feb 11:32
@authentik-automation authentik-automation
version/2026.2.0-rc3
a01c057

Choose a tag to compare

View all tags
Release 2026.2.0-rc3 Pre-release
Pre-release

See https://next.goauthentik.io/docs/releases/2026.2

What's Changed

  • website/docs: 2025.10.4 release notes (cherry-pick #20242 to version-2026.2) by @authentik-automation[bot] in #20251
  • website/docs: 2025.12.4 release notes (cherry-pick #20226 to version-2026.2) by @authentik-automation[bot] in #20253
  • website/docs: 2025.8.6 release notes (cherry-pick #20243 to version-2026.2) by @authentik-automation[bot] in #20257
  • website/docs: draft of new WS-Fed provider docs (cherry-pick #20091 to version-2026.2) by @authentik-automation[bot] in #20262
  • ci: fix binary outpost build on release (cherry-pick #20248 to version-2026.2) by @rissson in #20279
  • enterprise/lifecycle: fix multiple reviews showing up in "Reviews" when the user is a member of multiple reviewer groups (cherry-pick #20266 to version-2026.2) by @authentik-automation[bot] in #20278
  • web: add pretty names for lifecycle review events in event logs (cherry-pick #20264 to version-2026.2) by @authentik-automation[bot] in #20268
  • website/docs: Custom CSS (cherry-pick #19991 to version-2026.2) by @authentik-automation[bot] in #20287
  • stage/identification: recovery: make wording more generic (cherry-pick #20209 to version-2026.2) by @authentik-automation[bot] in #20293
  • web: fix italic formatting in lifecycle rule help text (cherry-pick #20263 to version-2026.2) by @authentik-automation[bot] in #20267
  • website/docs: add affine to release notes (cherry-pick #20299 to version-2026.2) by @authentik-automation[bot] in #20308
  • root: do not rely on npm cli for version bump (cherry-pick #20276 to version-2026.2) by @authentik-automation[bot] in #20321

Full Changelog: version/2026.2.0-rc2...version/2026.2.0-rc3

Contributors

rissson
Loading

Release 2025.8.6

12 Feb 15:29
@authentik-automation authentik-automation
version/2025.8.6
bce6ba2

Choose a tag to compare

View all tags
Release 2025.8.6

See https://docs.goauthentik.io/docs/releases/2025.8#fixed-in-202586

What's Changed

  • website/docs: Remove stale 2024 version directives (cherry-pick #19888 to version-2025.8) by @authentik-automation[bot] in #20021
  • root: update client-go generation (cherry-pick #19762 and #19906 to version-2025.8) by @rissson in #19934
  • website/docs: generate CVE sidebar (cherry-pick #20098 to version-2025.8) by @authentik-automation[bot] in #20099
  • security: CVE-2026-25922 (2025.8) by @authentik-automation[bot] in #20235
  • security: CVE-2026-25748 (2025.8) by @authentik-automation[bot] in #20234
  • security: CVE-2026-25227 (2025.8) by @authentik-automation[bot] in #20233

Full Changelog: version/2025.8.5...version/2025.8.6

Contributors

rissson
Loading

Release 2025.12.4

12 Feb 15:47
@authentik-automation authentik-automation
version/2025.12.4
19ad8d3

Choose a tag to compare

View all tags
Release 2025.12.4

See https://docs.goauthentik.io/docs/releases/2025.12#fixed-in-2025124

What's Changed

  • website/docs: Add changes in 2025.12.2 and 2025.12.3 to the release notes (cherry-pick #19949 to version-2025.12) by @authentik-automation[bot] in #19950
  • web/admin: fix default binding order (cherry-pick #19943 to version-2025.12) by @authentik-automation[bot] in #19945
  • providers/oauth2: use compare_digest for client_secret comparison (cherry-pick #19979 to version-2025.12) by @authentik-automation[bot] in #19987
  • recovery: consume token in transaction (cherry-pick #19967 to version-2025.12) by @authentik-automation[bot] in #19986
  • core: bump django from 5.2.10 to 5.2.11 (cherry-pick #19988 to version-2025.12) by @authentik-automation[bot] in #19992
  • outposts: fix docker_tls created files permission (cherry-pick #19978 to version-2025.12) by @authentik-automation[bot] in #19993
  • website/docs: fix typos (cherry-pick #20000 to version-2025.12) by @authentik-automation[bot] in #20010
  • website/docs: endpoint devices: more updates (cherry-pick #19971 to version-2025.12) by @authentik-automation[bot] in #20014
  • website/docs: endpoint devices: specify name and slug (cherry-pick #20016 to version-2025.12) by @authentik-automation[bot] in #20025
  • website/docs: endpoint devices: fix non debian wording (cherry-pick #20046 to version-2025.12) by @authentik-automation[bot] in #20048
  • docs: add instructions for configuring rp-initiated single logout (cherry-pick #20040 to version-2025.12) by @authentik-automation[bot] in #20055
  • website: QL Search keyboard interactions docs, examples. (cherry-pick #16259 to version-2025.12) by @authentik-automation[bot] in #20056
  • website/docs: automated install: mention no file:// vars (cherry-pick #20043 to version-2025.12) by @authentik-automation[bot] in #20062
  • outpost/proxyv2: revalidate auth if session fails to load (cherry-pick #18063 to version-2025.12) by @authentik-automation[bot] in #20059
  • website/docs: capturing outpost logs (cherry-pick #20045 to version-2025.12) by @authentik-automation[bot] in #20053
  • website/docs: endpoint devices: update device authentication location (cherry-pick #20049 to version-2025.12) by @authentik-automation[bot] in #20051
  • website/docs: generate CVE sidebar (cherry-pick #20098 to version-2025.12) by @authentik-automation[bot] in #20101
  • sources/oauth: Fix InvalidAudienceError in id_token fallback (cherry-pick #20096 to version-2025.12) by @authentik-automation[bot] in #20122
  • website/docs: add email verification scope doc (cherry-pick #20141 to version-2025.12) by @authentik-automation[bot] in #20205
  • website/docs: rac: fixes the property mapping formatting (cherry-pick #20200 to version-2025.12) by @authentik-automation[bot] in #20202
  • website/docs: ssf: update SSF documentation (cherry-pick #20195 to version-2025.12) by @authentik-automation[bot] in #20210
  • security: CVE-2026-25922 (2025.12) by @authentik-automation[bot] in #20232
  • security: CVE-2026-25748 (2025.12) by @authentik-automation[bot] in #20231
  • security: CVE-2026-25227 (2025.12) by @authentik-automation[bot] in #20230
  • web: updated package-lock.json to include missing tree-sitter references (cherry-pick #20244 to version-2025.12) by @rissson in #20245

Full Changelog: version/2025.12.3...version/2025.12.4

Contributors

rissson
Loading

Release 2025.10.4

12 Feb 16:07
@rissson rissson
version/2025.10.4
7b0f194

Choose a tag to compare

View all tags
Release 2025.10.4

See See https://docs.goauthentik.io/docs/releases/2025.10#fixed-in-2025104

What's Changed

  • web/flow: Fix spurious double submit on ak-stage-autosubmit (cherry-pick #18727 to version-2025.10) by @authentik-automation[bot] in #18932
  • website/docs: add note to active directory source doc (cherry-pick #18787 to version-2025.10) by @authentik-automation[bot] in #18965
  • website/docs: Backport version picker updates. (cherry-pick #18964 to version-2025.10) by @authentik-automation[bot] in #18974
  • web/admin: fix dark theme on map (cherry-pick #18985 to version-2025.10) by @authentik-automation[bot] in #18986
  • web/admin: Fix haveibeenpwned link in PasswordPolicyForm (cherry-pick #18984 to version-2025.10) by @authentik-automation[bot] in #18988
  • core: use chunked_queryset for expired message deletion (cherry-pick #19028 to version-2025.10) by @authentik-automation[bot] in #19030
  • internal: update TLS Suite (cherry-pick #19076 to version-2025.10) by @authentik-automation[bot] in #19077
  • website/docs: fix build (cherry-pick #19148 to version-2025.10) by @authentik-automation[bot] in #19150
  • web: fix slug auto-updating when editing existing applications (cherry-pick #19169 to version-2025.10) by @authentik-automation[bot] in #19172
  • core: fix read replica routing during transactions (cherry-pick #19086 to version-2025.10) by @authentik-automation[bot] in #19240
  • web/admin: add banner to flow import form (cherry-pick #19288 to version-2025.10) by @authentik-automation[bot] in #19292
  • website/docs: update entra id provider docs (cherry-pick #18366 to version-2025.10) by @authentik-automation[bot] in #19255
  • website/docs: Fix typo in GitHub OAuth Source instructions (cherry-pick #18936 to version-2025.10) by @authentik-automation[bot] in #19321
  • website/docs: Fix documentation example for app_entitlements_attributes. (cherry-pick #19316 to version-2025.10) by @authentik-automation[bot] in #19325
  • website/docs: update m2m doc (cherry-pick #18963 to version-2025.10) by @authentik-automation[bot] in #19323
  • website/docs: update LDAP provider docs (cherry-pick #18272 to version-2025.10) by @authentik-automation[bot] in #19344
  • web/elements: hidden secrets not propagating (cherry-pick #19029 to version-2025.10) by @authentik-automation[bot] in #19376
  • outpost/proxyv2: fix stale session cookie causing 400 error in createState (cherry-pick #19026 to version-2025.10) by @authentik-automation[bot] in #19374
  • internal: rework liveness probe and proxy (cherry-pick #19312 to version-2025.10) by @authentik-automation[bot] in #19383
  • website/docs: update gws provider docs (cherry-pick #18286 to version-2025.10) by @authentik-automation[bot] in #19399
  • website/docs: add import to discord policy (cherry-pick #19397 to version-2025.10) by @authentik-automation[bot] in #19405
  • website/docs: mention dynamic overrides in redirect stage documentation (cherry-pick #19368 to version-2025.10) by @authentik-automation[bot] in #19401
  • website/docs: limiting permissions of AD service account (cherry-pick #19483 to version-2025.10) by @authentik-automation[bot] in #19488
  • providers/oauth2: add logout+jwt token type for oidc logout token. (cherry-pick #19554 to version-2025.10) by @authentik-automation[bot] in #19674
  • internal: fix incorrect metric calculation (cherry-pick #19701 to version-2025.10) by @authentik-automation[bot] in #19702
  • core: return bad request when user is authenticated and not active (cherry-pick #19706 to version-2025.10) by @authentik-automation[bot] in #19709
  • web/admin: fix impersonation form requesting data without being opened (cherry-pick #19673 to version-2025.10) by @authentik-automation[bot] in #19711
  • web/sfe: downgrade bootstrap, add access denied test (cherry-pick #19763 to version-2025.10) by @authentik-automation[bot] in #19764
  • website/docs: fix Transifex link in translation guide (cherry-pick #19735 to version-2025.10) by @authentik-automation[bot] in #19770
  • root: update client-go generation (cherry-pick #19762 and #19906 to version-2025.10) by @rissson in #19933
  • recovery: consume token in transaction (cherry-pick #19967 to version-2025.10) by @authentik-automation[bot] in #19981
  • providers/oauth2: use compare_digest for client_secret comparison (cherry-pick #19979 to version-2025.10) by @authentik-automation[bot] in #19982
  • website/docs: Remove stale 2024 version directives (cherry-pick #19888 to version-2025.10) by @authentik-automation[bot] in #20022
  • docs: add instructions for configuring rp-initiated single logout (cherry-pick #20040 to version-2025.10) by @authentik-automation[bot] in #20054
  • core: bump django from v5.2.8 to 5.2.11 (version-2025.10) by @melizeche in #20020
  • outpost/proxyv2: revalidate auth if session fails to load (cherry-pick #18063 to version-2025.10) by @authentik-automation[bot] in #20058
  • website/docs: generate CVE sidebar (cherry-pick #20098 to version-2025.10) by @authentik-automation[bot] in #20100
  • outpost/proxyv2: reduce max number of postgres connections (cherry-pick #19211 to version-2025.10) by @authentik-automation[bot] in #20139
  • website/docs: add email verification scope doc (cherry-pick #20141 to version-2025.10) by @authentik-automation[bot] in #20204
  • website/docs: rac: fixes the property mapping formatting (cherry-pick #20200 to version-2025.10) by @authentik-automation[bot] in #20201
  • security: CVE-2026-25922 (2025.10) by @authentik-automation[bot] in #20229
  • security: CVE-2026-25748 (2025.10) by @authentik-automation[bot] in #20228
  • security: CVE-2026-25227 (2025.10) by @authentik-automation[bot] in #20227
  • web: updated package-lock.json to include missing tree-sitter references. by @kensternberg-authentik in #20247

Full Changelog: version/2025.10.3...version/2025.10.4

Contributors

melizeche, rissson, and kensternberg-authentik
Loading

Release 2026.2.0-rc2

12 Feb 15:50
@authentik-automation authentik-automation
version/2026.2.0-rc2
33c0d3d

Choose a tag to compare

View all tags
Release 2026.2.0-rc2 Pre-release
Pre-release

See https://next.goauthentik.io/docs/releases/2026.2

What's Changed

  • website/docs: rac: fixes the property mapping formatting (cherry-pick #20200 to version-2026.2) by @authentik-automation[bot] in #20203
  • website/docs: add email verification scope doc (cherry-pick #20141 to version-2026.2) by @authentik-automation[bot] in #20206
  • website/docs: ssf: update SSF documentation (cherry-pick #20195 to version-2026.2) by @authentik-automation[bot] in #20211
  • ci: fix release testing (cherry-pick #20207 to version-2026.2) by @rissson in #20224
  • security: CVE-2026-25922 (2026.2) by @authentik-automation[bot] in #20238
  • security: CVE-2026-25748 (2026.2) by @authentik-automation[bot] in #20237
  • security: CVE-2026-25227 (2026.2) by @authentik-automation[bot] in #20236
  • web: updated package-lock.json to include missing tree-sitter references (cherry-pick #20244 to version-2026.2) by @rissson in #20246

Full Changelog: version/2026.2.0-rc1...version/2026.2.0-rc2

Contributors

rissson
Loading