a1cf7ccaf6
All checks were successful
ci/woodpecker/push/default Pipeline was successful
GHA built ghcr.io/viktorbarzin/authentik-server:2026.2.4-patch1 (public, verified anonymously pullable). Point global.image at it (repository + tag pinned explicitly so neither helm's appVersion default nor Keel can downgrade it — the 2026-06-10 boot-storm class) and remove keel.sh/enrolled from the namespace so Keel won't auto-bump the custom tag. authentik is now manual-upgrade: bump the Dockerfile FROM + this tag together on each authentik version bump. Net effect once rolled: the identification-stage query drops ~1.4s -> ~14ms, so the cold login-flow first-load stops being slow. (Does NOT affect old-browser clients — iPadOS<=15/Safari<=15.6 still can't run the SPA; that's unfixable server-side.) Docs: .claude/CLAUDE.md Authentik row. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com> |
||
|---|---|---|
| .. | ||
| main.tf | ||
| pgbouncer.ini | ||
| pgbouncer.tf | ||
| userlist.txt | ||
| values.yaml | ||