hackclub/burrow
1
0
Fork 0
Code Pull requests Releases Packages Activity Actions

Grant Tailnet access and harden Zulip bootstrap

Browse source
This commit is contained in:
Conrad Kramer 2026-04-19 00:52:16 -07:00
parent 801e0fb419
commit b8cad4c028
6 changed files with 90 additions and 9 deletions
Download patch file Download diff file Expand all files Collapse all files

4
Scripts/authentik-sync-linear-saml.sh
View file

@ -294,8 +294,8 @@ existing_application="$(
)"
if [[ -n "$existing_application" ]]; then
application_pk="existing"
api PATCH "/api/v3/core/applications/${application_slug}/" "$application_payload" >/dev/null
application_pk="$(printf '%s\n' "$existing_application" | jq -r '.pk')"
api PATCH "/api/v3/core/applications/${application_pk}/" "$application_payload" >/dev/null
else
create_application_result="$(
api_with_status POST "/api/v3/core/applications/" "$application_payload"

7
Scripts/authentik-sync-linear-scim.sh
View file

@ -278,7 +278,12 @@ application_payload="$(
policy_engine_mode: .policy_engine_mode
}'
)"
api PATCH "/api/v3/core/applications/${application_slug}/" "$application_payload" >/dev/null
application_pk="$(printf '%s\n' "$application" | jq -r '.pk // empty')"
if [[ -z "$application_pk" ]]; then
echo "error: could not resolve Authentik application primary key for ${application_slug}" >&2
exit 1
fi
api PATCH "/api/v3/core/applications/${application_pk}/" "$application_payload" >/dev/null
group_pks_json="$(jq -cn --arg owner "$owner_group_pk" --arg admin "$admin_group_pk" --arg guest "$guest_group_pk" '[$owner, $admin, $guest]')"
user_pks_json="$(

2
Scripts/authentik-sync-tailscale-oidc.sh
View file

@ -308,7 +308,7 @@ existing_application="$(
if [[ -n "$existing_application" ]]; then
application_pk="$(printf '%s\n' "$existing_application" | jq -r '.pk')"
api PATCH "/api/v3/core/applications/${application_slug}/" "$application_payload" >/dev/null
api PATCH "/api/v3/core/applications/${application_pk}/" "$application_payload" >/dev/null
else
create_application_result="$(
api_with_status POST "/api/v3/core/applications/" "$application_payload"

4
Scripts/authentik-sync-zulip-saml.sh
View file

@ -344,8 +344,8 @@ existing_application="$(
)"
if [[ -n "$existing_application" ]]; then
application_pk="existing"
api PATCH "/api/v3/core/applications/${application_slug}/" "$application_payload" >/dev/null
application_pk="$(printf '%s\n' "$existing_application" | jq -r '.pk')"
api PATCH "/api/v3/core/applications/${application_pk}/" "$application_payload" >/dev/null
else
create_application_result="$(
api_with_status POST "/api/v3/core/applications/" "$application_payload"