fix oidc: add grant_types

abra.sh

@@ -5,18 +5,19 @@ export FLOW_INVALIDATION_VERSION=v2
 export FLOW_RECOVERY_VERSION=v2
 export FLOW_TRANSLATION_VERSION=v3
 export SYSTEM_BRAND_VERSION=v4
-export NEXTCLOUD_CONFIG_VERSION=v3
-export WORDPRESS_CONFIG_VERSION=v7
-export MATRIX_CONFIG_VERSION=v3
-export WEKAN_CONFIG_VERSION=v5
-export VIKUNJA_CONFIG_VERSION=v3
-export OUTLINE_CONFIG_VERSION=v4
+export NEXTCLOUD_CONFIG_VERSION=v4
+export WORDPRESS_CONFIG_VERSION=v8
+export MATRIX_CONFIG_VERSION=v4
+export WEKAN_CONFIG_VERSION=v6
+export VIKUNJA_CONFIG_VERSION=v4
+export OUTLINE_CONFIG_VERSION=v5
 export KIMAI_CONFIG_VERSION=v3
 export ZAMMAD_CONFIG_VERSION=v4
-export RALLLY_CONFIG_VERSION=v4
-export HEDGEDOC_CONFIG_VERSION=v3
-export MONITORING_CONFIG_VERSION=v4
-export MILA_CONFIG_VERSION=v1
+export RALLLY_CONFIG_VERSION=v5
+export HEDGEDOC_CONFIG_VERSION=v4
+export MONITORING_CONFIG_VERSION=v5
+export MILA_CONFIG_VERSION=v2
+export DB_ENTRYPOINT_VERSION=v1
 export PG_BACKUP_VERSION=v2
 export ENTRYPOINT_CSS_VERSION=v1
 

hedgedoc.yaml.tmpl

@@ -27,6 +27,9 @@ entries:
     signing_key: !Find [authentik_crypto.certificatekeypair, [name, authentik Self-signed Certificate]]
     sub_mode: hashed_user_id
     token_validity: days=30
+    grant_types:
+      - authorization_code
+      - refresh_token
   conditions: []
   id: hedgedoc_provider
   identifiers:

matrix.yaml.tmpl

@@ -27,6 +27,9 @@ entries:
     signing_key: !Find [authentik_crypto.certificatekeypair, [name, authentik Self-signed Certificate]]
     sub_mode: user_username
     token_validity: days=30
+    grant_types:
+      - authorization_code
+      - refresh_token
   conditions: []
   id: matrix_provider
   identifiers:

mila.yaml.tmpl

@@ -27,6 +27,9 @@ entries:
     signing_key: !Find [authentik_crypto.certificatekeypair, [name, authentik Self-signed Certificate]]
     sub_mode: hashed_user_id
     token_validity: days=30
+    grant_types:
+      - authorization_code
+      - refresh_token
   conditions: []
   id: mila_provider
   identifiers:

monitoring.yaml.tmpl

@@ -27,6 +27,9 @@ entries:
     signing_key: !Find [authentik_crypto.certificatekeypair, [name, authentik Self-signed Certificate]]
     sub_mode: user_username
     token_validity: days=30
+    grant_types:
+      - authorization_code
+      - refresh_token
   conditions: []
   id: monitoring_provider
   identifiers:

nextcloud.yaml.tmpl

@@ -40,6 +40,9 @@ entries:
     signing_key: !Find [authentik_crypto.certificatekeypair, [name, authentik Self-signed Certificate]]
     sub_mode: user_username
     token_validity: days=30
+    grant_types:
+      - authorization_code
+      - refresh_token
   conditions: []
   id: nextcloud_provider
   identifiers:

outline.yaml.tmpl

@@ -27,6 +27,9 @@ entries:
     signing_key: !Find [authentik_crypto.certificatekeypair, [name, authentik Self-signed Certificate]]
     sub_mode: hashed_user_id
     token_validity: days=30
+    grant_types:
+      - authorization_code
+      - refresh_token
   conditions: []
   id: outline_provider
   identifiers:

rallly.yaml.tmpl

@@ -27,6 +27,9 @@ entries:
     signing_key: !Find [authentik_crypto.certificatekeypair, [name, authentik Self-signed Certificate]]
     sub_mode: hashed_user_id
     token_validity: days=30
+    grant_types:
+      - authorization_code
+      - refresh_token
   conditions: []
   id: rallly_provider
   identifiers:

vikunja.yaml.tmpl

@@ -27,6 +27,9 @@ entries:
     signing_key: !Find [authentik_crypto.certificatekeypair, [name, authentik Self-signed Certificate]]
     sub_mode: hashed_user_id
     token_validity: days=30
+    grant_types:
+      - authorization_code
+      - refresh_token
   conditions: []
   id: vikunja_provider
   identifiers:

wekan.yaml.tmpl

@@ -45,6 +45,9 @@ entries:
     signing_key: !Find [authentik_crypto.certificatekeypair, [name, authentik Self-signed Certificate]]
     sub_mode: hashed_user_id
     token_validity: days=30
+    grant_types:
+      - authorization_code
+      - refresh_token
   conditions: []
   id: wekan_provider
   identifiers:

wordpress.yaml.tmpl

@@ -27,6 +27,9 @@ entries:
     signing_key: !Find [authentik_crypto.certificatekeypair, [name, authentik Self-signed Certificate]]
     sub_mode: user_username
     token_validity: days=30
+    grant_types:
+      - authorization_code
+      - refresh_token
   conditions: []
   id: wordpress_provider
   identifiers: