Post-X-Society/Post-Tyranny-Tech-Infrastructure
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
Post-Tyranny-Tech-Infrastru.../ansible/roles/authentik/tasks/main.yml
Pieter ecc09127ef feat: Enable automated password recovery flow configuration 
Add recovery.yml task include to main.yml to enable automated
password recovery flow setup. This calls the recovery.yml tasks
which use create_recovery_flow.py to configure:

- Password complexity policy (12+ chars, mixed case, digit, symbol)
- Recovery identification stage (username/email)
- Recovery email stage (30-minute token expiry)
- Integration with default authentication flow
- "Forgot password?" link on login page

This restores automated recovery flow setup that was previously
removed when the blueprint-based approach was abandoned. The new
approach uses direct API calls via Python script which is more
reliable than blueprints.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
2026-01-20 18:22:02 +01:00

38 lines
1.2 KiB
YAML
Raw Blame History

---
# Main tasks file for Authentik role
- name: Include Docker Compose setup
include_tasks: docker.yml
- name: Include bootstrap setup
include_tasks: bootstrap.yml
when: authentik_bootstrap | default(true)
- name: Include OIDC provider configuration
include_tasks: providers.yml
tags: ['authentik', 'oidc']
- name: Include email configuration
include_tasks: email.yml
when: mailgun_smtp_user is defined or (client_secrets.mailgun_smtp_user is defined and client_secrets.mailgun_smtp_user != "" and "PLACEHOLDER" not in client_secrets.mailgun_smtp_user)
tags: ['authentik', 'email']
- name: Include flows configuration (invitation, 2FA)
include_tasks: flows.yml
when: authentik_bootstrap | default(true)
tags: ['authentik', 'flows']
- name: Include MFA/2FA enforcement configuration
include_tasks: mfa.yml
when: authentik_bootstrap | default(true)
tags: ['authentik', 'mfa', '2fa']
- name: Include invitation stage configuration
include_tasks: invitation.yml
when: authentik_bootstrap | default(true)
tags: ['authentik', 'invitation']
- name: Include password recovery flow configuration
include_tasks: recovery.yml
when: authentik_bootstrap | default(true)
tags: ['authentik', 'recovery']
Reference in a new issue View git blame Copy permalink