outposts: allow force refresh

[rissson]

Details

REPLACE ME

---

Checklist

• Local tests pass (ak test authentik/)
• The code has been formatted (make lint-fix)

If an API change has been made

• The API schema has been updated (make gen-build)

If changes to the frontend have been made

• The code has been formatted (make web)

If applicable

• The documentation has been updated
• The documentation has been formatted (make website)

[netlify]

✅ Deploy Preview for authentik-storybook canceled.

Name	Link
🔨 Latest commit	bf9ac25
🔍 Latest deploy log	https://app.netlify.com/sites/authentik-storybook/deploys/6686c615ec6d5b0007db70c0

[netlify]

✅ Deploy Preview for authentik-docs ready!

Name	Link
🔨 Latest commit	bf9ac25
🔍 Latest deploy log	https://app.netlify.com/sites/authentik-docs/deploys/6686c61540420c0008ade731
😎 Deploy Preview	https://deploy-preview-10375--authentik-docs.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify site configuration.

[codecov]

Codecov Report

Attention: Patch coverage is 75.00000% with 3 lines in your changes missing coverage. Please review.

Project coverage is 92.60%. Comparing base (fbad6fb) to head (bf9ac25).
Report is 2 commits behind head on main.

Files	Patch %	Lines
authentik/outposts/api/outposts.py	72.72%	3 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main   #10375      +/-   ##
==========================================
- Coverage   92.63%   92.60%   -0.04%     
==========================================
  Files         713      713              
  Lines       34988    35000      +12     
==========================================
  Hits        32411    32411              
- Misses       2577     2589      +12     

Flag	Coverage Δ
e2e	49.57% <75.00%> (+0.01%)	⬆️
integration	25.37% <8.33%> (-0.01%)	⬇️
unit	90.11% <75.00%> (-0.01%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[github-actions]

authentik PR Installation instructions

Instructions for docker-compose

Add the following block to your .env file:

AUTHENTIK_IMAGE=ghcr.io/goauthentik/dev-server
AUTHENTIK_TAG=gh-ghcr.io/goauthentik/dev-server:gh-bf9ac257402d7aacc484a95ecb6d3e04ed9caeae
AUTHENTIK_OUTPOSTS__CONTAINER_IMAGE_BASE=ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s

For arm64, use these values:

AUTHENTIK_IMAGE=ghcr.io/goauthentik/dev-server
AUTHENTIK_TAG=gh-ghcr.io/goauthentik/dev-server:gh-bf9ac257402d7aacc484a95ecb6d3e04ed9caeae-arm64
AUTHENTIK_OUTPOSTS__CONTAINER_IMAGE_BASE=ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s

Afterwards, run the upgrade commands from the latest release notes.

Instructions for Kubernetes

Add the following block to your values.yml file:

authentik:
    outposts:
        container_image_base: ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s
image:
    repository: ghcr.io/goauthentik/dev-server
    tag: gh-ghcr.io/goauthentik/dev-server:gh-bf9ac257402d7aacc484a95ecb6d3e04ed9caeae

For arm64, use these values:

authentik:
    outposts:
        container_image_base: ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s
image:
    repository: ghcr.io/goauthentik/dev-server
    tag: gh-ghcr.io/goauthentik/dev-server:gh-bf9ac257402d7aacc484a95ecb6d3e04ed9caeae-arm64

Afterwards, run the upgrade commands from the latest release notes.

[BeryJu]

since the action is POST, it'll require the permission authentik_outposts.change_outpost by default

[rissson]

Oh yeah I added the permission but forgot to specify it, and to run the migrations 🤡

[rissson]

Added the migration. How do you propose we handle the permissions thing?

[BeryJu]

There was some way to specify that the "implied" permissions from the HTTP verb are not required, but I honestly cannot remember how that was done