authentik

mirror of https://github.com/goauthentik/authentik.git synced 2025-12-05 22:03:54 +01:00

The authentication glue you need.

authentication authentik authorization kubernetes oauth2 oauth2-client oauth2-server oidc oidc-client oidc-provider proxy reverse-proxy saml saml-idp saml-sp security sso

Find a file

Jens L. 6d7249ea56 Some checks are pending CI - API Docs / lint (prettier-check) (push) Waiting to run Details CI - API Docs / build (push) Waiting to run Details CI - API Docs / deploy (push) Blocked by required conditions Details CI - Source code docs / publish-source-docs (push) Waiting to run Details CI - Docs / lint (prettier-check) (push) Waiting to run Details CI - Docs / build-docs (push) Waiting to run Details CI - Docs / build-integrations (push) Waiting to run Details CI - Docs / build-container (push) Waiting to run Details CI - Docs / ci-website-mark (push) Blocked by required conditions Details QA - CodeQL / Analyze (push) Waiting to run Details QA - CodeQL / Analyze-1 (push) Waiting to run Details QA - CodeQL / Analyze-2 (push) Waiting to run Details enterprise/stages/mtls: fix traefik certificate parsing (#18607 ) * enterprise/stages/mtls: fix traefik certificate parsing Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add links for relevant docs Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>		2025-12-05 19:06:20 +01:00
.github	ci: bump actions/setup-node from 6.0.0 to 6.1.0 (#18552 )	2025-12-05 14:37:31 +01:00
.vscode	web/i18n: Locale Context Merge Branch (#18426 )	2025-12-03 06:30:07 +00:00
authentik	enterprise/stages/mtls: fix traefik certificate parsing (#18607 )	2025-12-05 19:06:20 +01:00
blueprints	crypto: separate permissions for certificate and private keydownload (#18588 )	2025-12-04 16:31:52 +01:00
cmd	cmd/server/healthcheck: remove worker HTTP healthcheck (#18090 )	2025-11-12 14:42:30 +00:00
internal	files: rework (#17535 )	2025-12-02 18:01:51 +01:00
lifecycle	lifecycle/aws: bump aws-cdk from 2.1032.0 to 2.1033.0 in /lifecycle/aws (#18278 )	2025-11-25 16:52:01 +00:00
locale	core, web: update translations (#18620 )	2025-12-05 15:18:42 +01:00
packages	web: bump express from 4.21.2 to 4.22.1 in /packages/docusaurus-config (#18520 )	2025-12-02 15:43:19 +01:00
schemas
scripts	files: rework (#17535 )	2025-12-02 18:01:51 +01:00
tests	core: bump axllent/mailpit from v1.27.11 to v1.28.0 in /tests/e2e (#18401 )	2025-11-27 13:42:14 +01:00
web	wed/admin: change s to S in "Stage" (#18632 )	2025-12-05 16:11:52 +00:00
website	website/docs: adds note about ak_create_jwt function (#18614 )	2025-12-05 09:35:53 +00:00
.dockerignore	root: Better version bump (#14905 )	2025-08-12 13:50:12 +00:00
.editorconfig
.gitignore	*: remove Redis leftovers (#17146 )	2025-10-11 01:46:53 +02:00
.prettierignore	web: Update Deprecated NPM Packages (#18335 )	2025-11-24 13:31:42 -05:00
CODE_OF_CONDUCT.md
CODEOWNERS	web: bump base package (#18509 )	2025-12-04 14:30:32 +01:00
CONTRIBUTING.md	root: clean up README (#16286 )	2025-09-02 21:38:53 +00:00
docker-compose.yml	files: rework (#17535 )	2025-12-02 18:01:51 +01:00
Dockerfile	core: bump astral-sh/uv from 0.9.14 to 0.9.15 (#18555 )	2025-12-03 13:59:30 +00:00
go.mod	core: bump github.com/spf13/cobra from 1.10.1 to 1.10.2 (#18592 )	2025-12-04 15:31:18 +00:00
go.sum	core: bump github.com/spf13/cobra from 1.10.1 to 1.10.2 (#18592 )	2025-12-04 15:31:18 +00:00
ldap.Dockerfile	core: bump goauthentik/fips-debian from `cf233be` to `a80dbbd` (#18594 )	2025-12-05 14:37:12 +01:00
LICENSE
Makefile	translate: fix source locale not matching transifex (#18503 )	2025-12-01 19:08:58 +00:00
manage.py	*: replace Celery with Dramatiq (#13492 )	2025-07-28 17:00:09 +02:00
package-lock.json	web: bump base package (#18509 )	2025-12-04 14:30:32 +01:00
package.json	web: bump base package (#18509 )	2025-12-04 14:30:32 +01:00
proxy.Dockerfile	core: bump goauthentik/fips-debian from `cf233be` to `a80dbbd` (#18594 )	2025-12-05 14:37:12 +01:00
pyproject.toml	build(deps): bump django from 5.2.8 to 5.2.9 (#18566 )	2025-12-03 16:31:16 +00:00
rac.Dockerfile	core: bump library/golang from 1.25.4-trixie to 1.25.5-trixie (#18558 )	2025-12-03 14:40:33 +01:00
radius.Dockerfile	core: bump goauthentik/fips-debian from `cf233be` to `a80dbbd` (#18594 )	2025-12-05 14:37:12 +01:00
README.md	root: Fix transifex link (#17696 )	2025-10-24 19:01:42 +02:00
schema.yml	flows: refresh unauthenticated tabs (#18621 )	2025-12-05 16:03:16 +01:00
SECURITY.md	root: update security.md's supported versions (#17736 )	2025-10-27 21:40:19 +01:00
tsconfig.json	web: Update Deprecated NPM Packages (#18335 )	2025-11-24 13:31:42 -05:00
uv.lock	core: bump boto3 from 1.40.75 to v1.42.1 (#18571 )	2025-12-04 15:47:59 +01:00

README.md

authentik logo

What is authentik?

authentik is an open-source Identity Provider (IdP) for modern SSO. It supports SAML, OAuth2/OIDC, LDAP, RADIUS, and more, designed for self-hosting from small labs to large production clusters.

Our enterprise offering is available for organizations to securely replace existing IdPs such as Okta, Auth0, Entra ID, and Ping Identity for robust, large-scale identity management.

Installation

Docker Compose: recommended for small/test setups. See the documentation.
Kubernetes (Helm Chart): recommended for larger setups. See the documentation and the Helm chart repository.
AWS CloudFormation: deploy on AWS using our official templates. See the documentation.
DigitalOcean Marketplace: one-click deployment via the official Marketplace app. See the app listing.