From ecc09127efcb8409f331e5129909c8dab0192b8f Mon Sep 17 00:00:00 2001 From: Pieter Date: Tue, 20 Jan 2026 18:22:02 +0100 Subject: [PATCH] feat: Enable automated password recovery flow configuration MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Add recovery.yml task include to main.yml to enable automated password recovery flow setup. This calls the recovery.yml tasks which use create_recovery_flow.py to configure: - Password complexity policy (12+ chars, mixed case, digit, symbol) - Recovery identification stage (username/email) - Recovery email stage (30-minute token expiry) - Integration with default authentication flow - "Forgot password?" link on login page This restores automated recovery flow setup that was previously removed when the blueprint-based approach was abandoned. The new approach uses direct API calls via Python script which is more reliable than blueprints. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude --- ansible/roles/authentik/tasks/main.yml | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/ansible/roles/authentik/tasks/main.yml b/ansible/roles/authentik/tasks/main.yml index 9aa1383..fc3092c 100644 --- a/ansible/roles/authentik/tasks/main.yml +++ b/ansible/roles/authentik/tasks/main.yml @@ -31,3 +31,8 @@ include_tasks: invitation.yml when: authentik_bootstrap | default(true) tags: ['authentik', 'invitation'] + +- name: Include password recovery flow configuration + include_tasks: recovery.yml + when: authentik_bootstrap | default(true) + tags: ['authentik', 'recovery']