Update API Client

#### What's Changed
---

##### `GET` /policies/geoip/{policy_uuid}/

###### Return Type:

Changed response : **200 OK**

* Changed content type : `application/json`

    * Changed property `countries` (array)

##### `PUT` /policies/geoip/{policy_uuid}/

###### Request:

Changed content type : `application/json`

* Changed property `countries` (array)

###### Return Type:

Changed response : **200 OK**

* Changed content type : `application/json`

    * Changed property `countries` (array)

##### `PATCH` /policies/geoip/{policy_uuid}/

###### Request:

Changed content type : `application/json`

* Changed property `countries` (array)

###### Return Type:

Changed response : **200 OK**

* Changed content type : `application/json`

    * Changed property `countries` (array)

##### `GET` /providers/saml/{id}/

###### Return Type:

Changed response : **200 OK**

* Changed content type : `application/json`

    * Added property `sls_url` (string)
        > Single Logout Service URL where the logout response should be sent.

    * Added property `sign_logout_request` (boolean)

    * Added property `sls_binding` (object)
        > This determines how authentik sends the logout response back to the Service Provider.

        Enum values:

        * `redirect`
        * `post`
    * Added property `logout_method` (object)
        > Method to use for logout. Front-channel iframe loads all logout URLs simultaneously in hidden iframes. Front-channel native uses your active browser tab to send post requests and redirect to providers. Back-channel sends logout requests directly from the server without user interaction (requires POST SLS binding).

        Enum values:

        * `frontchannel_iframe`
        * `frontchannel_native`
        * `backchannel`
##### `PUT` /providers/saml/{id}/

###### Request:

Changed content type : `application/json`

* Added property `sls_url` (string)
    > Single Logout Service URL where the logout response should be sent.

* Added property `sign_logout_request` (boolean)

* Added property `sls_binding` (object)
    > This determines how authentik sends the logout response back to the Service Provider.

* Added property `logout_method` (object)
    > Method to use for logout. Front-channel iframe loads all logout URLs simultaneously in hidden iframes. Front-channel native uses your active browser tab to send post requests and redirect to providers. Back-channel sends logout requests directly from the server without user interaction (requires POST SLS binding).

###### Return Type:

Changed response : **200 OK**

* Changed content type : `application/json`

    * Added property `sls_url` (string)
        > Single Logout Service URL where the logout response should be sent.

    * Added property `sign_logout_request` (boolean)

    * Added property `sls_binding` (object)
        > This determines how authentik sends the logout response back to the Service Provider.

    * Added property `logout_method` (object)
        > Method to use for logout. Front-channel iframe loads all logout URLs simultaneously in hidden iframes. Front-channel native uses your active browser tab to send post requests and redirect to providers. Back-channel sends logout requests directly from the server without user interaction (requires POST SLS binding).

##### `PATCH` /providers/saml/{id}/

###### Request:

Changed content type : `application/json`

* Added property `sls_url` (string)
    > Single Logout Service URL where the logout response should be sent.

* Added property `sign_logout_request` (boolean)

* Added property `sls_binding` (object)
    > This determines how authentik sends the logout response back to the Service Provider.

* Added property `logout_method` (object)
    > Method to use for logout. Front-channel iframe loads all logout URLs simultaneously in hidden iframes. Front-channel native uses your active browser tab to send post requests and redirect to providers. Back-channel sends logout requests directly from the server without user interaction (requires POST SLS binding).

###### Return Type:

Changed response : **200 OK**

* Changed content type : `application/json`

    * Added property `sls_url` (string)
        > Single Logout Service URL where the logout response should be sent.

    * Added property `sign_logout_request` (boolean)

    * Added property `sls_binding` (object)
        > This determines how authentik sends the logout response back to the Service Provider.

    * Added property `logout_method` (object)
        > Method to use for logout. Front-channel iframe loads all logout URLs simultaneously in hidden iframes. Front-channel native uses your active browser tab to send post requests and redirect to providers. Back-channel sends logout requests directly from the server without user interaction (requires POST SLS binding).

##### `POST` /policies/geoip/

###### Request:

Changed content type : `application/json`

* Changed property `countries` (array)

###### Return Type:

Changed response : **201 Created**

* Changed content type : `application/json`

    * Changed property `countries` (array)

##### `GET` /policies/geoip/

###### Return Type:

Changed response : **200 OK**

* Changed content type : `application/json`

    * Changed property `results` (array)

        Changed items (object):
            > GeoIP Policy Serializer

        * Changed property `countries` (array)

##### `GET` /providers/oauth2/{id}/

###### Return Type:

Changed response : **200 OK**

* Changed content type : `application/json`

    * Added property `logout_uri` (string)

    * Added property `logout_method` (object)
        > Backchannel logs out with server to server calls. Frontchannel uses iframes in your browser

        Enum values:

        * `backchannel`
        * `frontchannel`
    * Deleted property `backchannel_logout_uri` (string)

##### `PUT` /providers/oauth2/{id}/

###### Request:

Changed content type : `application/json`

* Added property `logout_uri` (string)

* Added property `logout_method` (object)
    > Backchannel logs out with server to server calls. Frontchannel uses iframes in your browser

* Deleted property `backchannel_logout_uri` (string)

###### Return Type:

Changed response : **200 OK**

* Changed content type : `application/json`

    * Added property `logout_uri` (string)

    * Added property `logout_method` (object)
        > Backchannel logs out with server to server calls. Frontchannel uses iframes in your browser

    * Deleted property `backchannel_logout_uri` (string)

##### `PATCH` /providers/oauth2/{id}/

###### Request:

Changed content type : `application/json`

* Added property `logout_uri` (string)

* Added property `logout_method` (object)
    > Backchannel logs out with server to server calls. Frontchannel uses iframes in your browser

* Deleted property `backchannel_logout_uri` (string)

###### Return Type:

Changed response : **200 OK**

* Changed content type : `application/json`

    * Added property `logout_uri` (string)

    * Added property `logout_method` (object)
        > Backchannel logs out with server to server calls. Frontchannel uses iframes in your browser

    * Deleted property `backchannel_logout_uri` (string)

##### `POST` /providers/saml/

###### Request:

Changed content type : `application/json`

* Added property `sls_url` (string)
    > Single Logout Service URL where the logout response should be sent.

* Added property `sign_logout_request` (boolean)

* Added property `sls_binding` (object)
    > This determines how authentik sends the logout response back to the Service Provider.

* Added property `logout_method` (object)
    > Method to use for logout. Front-channel iframe loads all logout URLs simultaneously in hidden iframes. Front-channel native uses your active browser tab to send post requests and redirect to providers. Back-channel sends logout requests directly from the server without user interaction (requires POST SLS binding).

###### Return Type:

Changed response : **201 Created**

* Changed content type : `application/json`

    * Added property `sls_url` (string)
        > Single Logout Service URL where the logout response should be sent.

    * Added property `sign_logout_request` (boolean)

    * Added property `sls_binding` (object)
        > This determines how authentik sends the logout response back to the Service Provider.

    * Added property `logout_method` (object)
        > Method to use for logout. Front-channel iframe loads all logout URLs simultaneously in hidden iframes. Front-channel native uses your active browser tab to send post requests and redirect to providers. Back-channel sends logout requests directly from the server without user interaction (requires POST SLS binding).

##### `GET` /providers/saml/

###### Parameters:

Added: `logout_method` in `query`
> Method to use for logout. Front-channel iframe loads all logout URLs simultaneously in hidden iframes. Front-channel native uses your active browser tab to send post requests and redirect to providers. Back-channel sends logout requests directly from the server without user interaction (requires POST SLS binding).

Added: `sign_logout_request` in `query`

Added: `sls_binding` in `query`
> This determines how authentik sends the logout response back to the Service Provider.

Added: `sls_url` in `query`

###### Return Type:

Changed response : **200 OK**

* Changed content type : `application/json`

    * Changed property `results` (array)

        Changed items (object):
            > SAMLProvider Serializer

        * Added property `sls_url` (string)
            > Single Logout Service URL where the logout response should be sent.

        * Added property `sign_logout_request` (boolean)

        * Added property `sls_binding` (object)
            > This determines how authentik sends the logout response back to the Service Provider.

        * Added property `logout_method` (object)
            > Method to use for logout. Front-channel iframe loads all logout URLs simultaneously in hidden iframes. Front-channel native uses your active browser tab to send post requests and redirect to providers. Back-channel sends logout requests directly from the server without user interaction (requires POST SLS binding).

##### `GET` /flows/executor/{flow_slug}/

###### Return Type:

Changed response : **200 OK**

* Changed content type : `application/json`

    Added 'ak-provider-iframe-logout' component:
    * Property `flow_info` (object)
        > Contextual flow information for a challenge

        * Property `title` (string)

        * Property `background` (string)

        * Property `cancel_url` (string)

        * Property `layout` (string)

            Enum values:

            * `stacked`
            * `content_left`
            * `content_right`
            * `sidebar_left`
            * `sidebar_right`
    * Property `component` (string)

    * Property `response_errors` (object)

    * Property `logout_urls` (array)

        Items (object):

    Added 'ak-provider-saml-native-logout' component:
    * Property `flow_info` (object)
        > Contextual flow information for a challenge

    * Property `component` (string)

    * Property `response_errors` (object)

    * Property `post_url` (string)

    * Property `saml_request` (string)

    * Property `relay_state` (string)

    * Property `provider_name` (string)

    * Property `binding` (string)

    * Property `redirect_url` (string)

    * Property `is_complete` (boolean)

##### `POST` /flows/executor/{flow_slug}/

###### Request:

Changed content type : `application/json`

Added 'ak-provider-iframe-logout' component:
* Property `component` (string)

Added 'ak-provider-saml-native-logout' component:
* Property `component` (string)

###### Return Type:

Changed response : **200 OK**

* Changed content type : `application/json`

    Added 'ak-provider-iframe-logout' component:
    Added 'ak-provider-saml-native-logout' component:
##### `GET` /oauth2/access_tokens/{id}/

###### Return Type:

Changed response : **200 OK**

* Changed content type : `application/json`

    * Changed property `provider` (object)
        > OAuth2Provider Serializer

        * Added property `logout_uri` (string)

        * Added property `logout_method` (object)
            > Backchannel logs out with server to server calls. Frontchannel uses iframes in your browser

        * Deleted property `backchannel_logout_uri` (string)

##### `GET` /oauth2/authorization_codes/{id}/

###### Return Type:

Changed response : **200 OK**

* Changed content type : `application/json`

    * Changed property `provider` (object)
        > OAuth2Provider Serializer

        * Added property `logout_uri` (string)

        * Added property `logout_method` (object)
            > Backchannel logs out with server to server calls. Frontchannel uses iframes in your browser

        * Deleted property `backchannel_logout_uri` (string)

##### `GET` /oauth2/refresh_tokens/{id}/

###### Return Type:

Changed response : **200 OK**

* Changed content type : `application/json`

    * Changed property `provider` (object)
        > OAuth2Provider Serializer

        * Added property `logout_uri` (string)

        * Added property `logout_method` (object)
            > Backchannel logs out with server to server calls. Frontchannel uses iframes in your browser

        * Deleted property `backchannel_logout_uri` (string)

##### `POST` /providers/oauth2/

###### Request:

Changed content type : `application/json`

* Added property `logout_uri` (string)

* Added property `logout_method` (object)
    > Backchannel logs out with server to server calls. Frontchannel uses iframes in your browser

* Deleted property `backchannel_logout_uri` (string)

###### Return Type:

Changed response : **201 Created**

* Changed content type : `application/json`

    * Added property `logout_uri` (string)

    * Added property `logout_method` (object)
        > Backchannel logs out with server to server calls. Frontchannel uses iframes in your browser

    * Deleted property `backchannel_logout_uri` (string)

##### `GET` /providers/oauth2/

###### Return Type:

Changed response : **200 OK**

* Changed content type : `application/json`

    * Changed property `results` (array)

        Changed items (object):
            > OAuth2Provider Serializer

        * Added property `logout_uri` (string)

        * Added property `logout_method` (object)
            > Backchannel logs out with server to server calls. Frontchannel uses iframes in your browser

        * Deleted property `backchannel_logout_uri` (string)

##### `PUT` /core/transactional/applications/

###### Request:

Changed content type : `application/json`

* Changed property `provider` (object)

    Updated `authentik_providers_saml.samlprovider` provider_model:
    * Added property `sls_url` (string)
        > Single Logout Service URL where the logout response should be sent.

    * Added property `sign_logout_request` (boolean)

    * Added property `sls_binding` (object)
        > This determines how authentik sends the logout response back to the Service Provider.

    * Added property `logout_method` (object)
        > Method to use for logout. Front-channel iframe loads all logout URLs simultaneously in hidden iframes. Front-channel native uses your active browser tab to send post requests and redirect to providers. Back-channel sends logout requests directly from the server without user interaction (requires POST SLS binding).

    Updated `authentik_providers_oauth2.oauth2provider` provider_model:
    * Added property `logout_uri` (string)

    * Added property `logout_method` (object)
        > Backchannel logs out with server to server calls. Frontchannel uses iframes in your browser

    * Deleted property `backchannel_logout_uri` (string)

##### `GET` /oauth2/access_tokens/

###### Return Type:

Changed response : **200 OK**

* Changed content type : `application/json`

    * Changed property `results` (array)

        Changed items (object):
            > Serializer for BaseGrantModel and RefreshToken

        * Changed property `provider` (object)
            > OAuth2Provider Serializer

            * Added property `logout_uri` (string)

            * Added property `logout_method` (object)
                > Backchannel logs out with server to server calls. Frontchannel uses iframes in your browser

            * Deleted property `backchannel_logout_uri` (string)

##### `GET` /oauth2/authorization_codes/

###### Return Type:

Changed response : **200 OK**

* Changed content type : `application/json`

    * Changed property `results` (array)

        Changed items (object):
            > Serializer for BaseGrantModel and ExpiringBaseGrant

        * Changed property `provider` (object)
            > OAuth2Provider Serializer

            * Added property `logout_uri` (string)

            * Added property `logout_method` (object)
                > Backchannel logs out with server to server calls. Frontchannel uses iframes in your browser

            * Deleted property `backchannel_logout_uri` (string)

##### `GET` /oauth2/refresh_tokens/

###### Return Type:

Changed response : **200 OK**

* Changed content type : `application/json`

    * Changed property `results` (array)

        Changed items (object):
            > Serializer for BaseGrantModel and RefreshToken

        * Changed property `provider` (object)
            > OAuth2Provider Serializer

            * Added property `logout_uri` (string)

            * Added property `logout_method` (object)
                > Backchannel logs out with server to server calls. Frontchannel uses iframes in your browser

            * Deleted property `backchannel_logout_uri` (string)

Author: authentik-automation[bot]

.openapi-generator/FILES

@@ -235,6 +235,8 @@ Sources/authentikClient/Models/IdentificationChallenge.swift
 Sources/authentikClient/Models/IdentificationChallengeResponseRequest.swift
 Sources/authentikClient/Models/IdentificationStage.swift
 Sources/authentikClient/Models/IdentificationStageRequest.swift
+Sources/authentikClient/Models/IframeLogoutChallenge.swift
+Sources/authentikClient/Models/IframeLogoutChallengeResponseRequest.swift
 Sources/authentikClient/Models/ImpersonationRequest.swift
 Sources/authentikClient/Models/InitialPermissions.swift
 Sources/authentikClient/Models/InitialPermissionsModeEnum.swift
@@ -291,6 +293,8 @@ Sources/authentikClient/Models/ModelRequest.swift
 Sources/authentikClient/Models/MutualTLSStage.swift
 Sources/authentikClient/Models/MutualTLSStageModeEnum.swift
 Sources/authentikClient/Models/MutualTLSStageRequest.swift
+Sources/authentikClient/Models/NativeLogoutChallenge.swift
+Sources/authentikClient/Models/NativeLogoutChallengeResponseRequest.swift
 Sources/authentikClient/Models/NetworkBindingEnum.swift
 Sources/authentikClient/Models/NotConfiguredActionEnum.swift
 Sources/authentikClient/Models/Notification.swift
@@ -304,6 +308,7 @@ Sources/authentikClient/Models/NotificationTransportTest.swift
 Sources/authentikClient/Models/NotificationWebhookMapping.swift
 Sources/authentikClient/Models/NotificationWebhookMappingRequest.swift
 Sources/authentikClient/Models/OAuth2Provider.swift
+Sources/authentikClient/Models/OAuth2ProviderLogoutMethodEnum.swift
 Sources/authentikClient/Models/OAuth2ProviderRequest.swift
 Sources/authentikClient/Models/OAuth2ProviderSetupURLs.swift
 Sources/authentikClient/Models/OAuthDeviceCodeChallenge.swift
@@ -656,11 +661,13 @@ Sources/authentikClient/Models/Role.swift
 Sources/authentikClient/Models/RoleAssignedObjectPermission.swift
 Sources/authentikClient/Models/RoleObjectPermission.swift
 Sources/authentikClient/Models/RoleRequest.swift
+Sources/authentikClient/Models/SAMLBindingsEnum.swift
 Sources/authentikClient/Models/SAMLMetadata.swift
 Sources/authentikClient/Models/SAMLNameIDPolicyEnum.swift
 Sources/authentikClient/Models/SAMLPropertyMapping.swift
 Sources/authentikClient/Models/SAMLPropertyMappingRequest.swift
 Sources/authentikClient/Models/SAMLProvider.swift
+Sources/authentikClient/Models/SAMLProviderLogoutMethodEnum.swift
 Sources/authentikClient/Models/SAMLProviderRequest.swift
 Sources/authentikClient/Models/SAMLSource.swift
 Sources/authentikClient/Models/SAMLSourcePropertyMapping.swift
@@ -706,7 +713,6 @@ Sources/authentikClient/Models/Source.swift
 Sources/authentikClient/Models/SourceStage.swift
 Sources/authentikClient/Models/SourceStageRequest.swift
 Sources/authentikClient/Models/SourceType.swift
-Sources/authentikClient/Models/SpBindingEnum.swift
 Sources/authentikClient/Models/Stage.swift
 Sources/authentikClient/Models/StagePrompt.swift
 Sources/authentikClient/Models/StateEnum.swift
@@ -1005,6 +1011,8 @@ docs/IdentificationChallenge.md
 docs/IdentificationChallengeResponseRequest.md
 docs/IdentificationStage.md
 docs/IdentificationStageRequest.md
+docs/IframeLogoutChallenge.md
+docs/IframeLogoutChallengeResponseRequest.md
 docs/ImpersonationRequest.md
 docs/InitialPermissions.md
 docs/InitialPermissionsModeEnum.md
@@ -1062,6 +1070,8 @@ docs/ModelRequest.md
 docs/MutualTLSStage.md
 docs/MutualTLSStageModeEnum.md
 docs/MutualTLSStageRequest.md
+docs/NativeLogoutChallenge.md
+docs/NativeLogoutChallengeResponseRequest.md
 docs/NetworkBindingEnum.md
 docs/NotConfiguredActionEnum.md
 docs/Notification.md
@@ -1075,6 +1085,7 @@ docs/NotificationTransportTest.md
 docs/NotificationWebhookMapping.md
 docs/NotificationWebhookMappingRequest.md
 docs/OAuth2Provider.md
+docs/OAuth2ProviderLogoutMethodEnum.md
 docs/OAuth2ProviderRequest.md
 docs/OAuth2ProviderSetupURLs.md
 docs/OAuthDeviceCodeChallenge.md
@@ -1435,11 +1446,13 @@ docs/RoleAssignedObjectPermission.md
 docs/RoleObjectPermission.md
 docs/RoleRequest.md
 docs/RootAPI.md
+docs/SAMLBindingsEnum.md
 docs/SAMLMetadata.md
 docs/SAMLNameIDPolicyEnum.md
 docs/SAMLPropertyMapping.md
 docs/SAMLPropertyMappingRequest.md
 docs/SAMLProvider.md
+docs/SAMLProviderLogoutMethodEnum.md
 docs/SAMLProviderRequest.md
 docs/SAMLSource.md
 docs/SAMLSourcePropertyMapping.md
@@ -1487,7 +1500,6 @@ docs/SourceStage.md
 docs/SourceStageRequest.md
 docs/SourceType.md
 docs/SourcesAPI.md
-docs/SpBindingEnum.md
 docs/SsfAPI.md
 docs/Stage.md
 docs/StagePrompt.md

README.md

@@ -1261,6 +1261,8 @@ Class | Method | HTTP request | Description
  - [IdentificationChallengeResponseRequest](docs/IdentificationChallengeResponseRequest.md)
  - [IdentificationStage](docs/IdentificationStage.md)
  - [IdentificationStageRequest](docs/IdentificationStageRequest.md)
+ - [IframeLogoutChallenge](docs/IframeLogoutChallenge.md)
+ - [IframeLogoutChallengeResponseRequest](docs/IframeLogoutChallengeResponseRequest.md)
  - [ImpersonationRequest](docs/ImpersonationRequest.md)
  - [InitialPermissions](docs/InitialPermissions.md)
  - [InitialPermissionsModeEnum](docs/InitialPermissionsModeEnum.md)
@@ -1317,6 +1319,8 @@ Class | Method | HTTP request | Description
  - [MutualTLSStage](docs/MutualTLSStage.md)
  - [MutualTLSStageModeEnum](docs/MutualTLSStageModeEnum.md)
  - [MutualTLSStageRequest](docs/MutualTLSStageRequest.md)
+ - [NativeLogoutChallenge](docs/NativeLogoutChallenge.md)
+ - [NativeLogoutChallengeResponseRequest](docs/NativeLogoutChallengeResponseRequest.md)
  - [NetworkBindingEnum](docs/NetworkBindingEnum.md)
  - [NotConfiguredActionEnum](docs/NotConfiguredActionEnum.md)
  - [Notification](docs/Notification.md)
@@ -1330,6 +1334,7 @@ Class | Method | HTTP request | Description
  - [NotificationWebhookMapping](docs/NotificationWebhookMapping.md)
  - [NotificationWebhookMappingRequest](docs/NotificationWebhookMappingRequest.md)
  - [OAuth2Provider](docs/OAuth2Provider.md)
+ - [OAuth2ProviderLogoutMethodEnum](docs/OAuth2ProviderLogoutMethodEnum.md)
  - [OAuth2ProviderRequest](docs/OAuth2ProviderRequest.md)
  - [OAuth2ProviderSetupURLs](docs/OAuth2ProviderSetupURLs.md)
  - [OAuthDeviceCodeChallenge](docs/OAuthDeviceCodeChallenge.md)
@@ -1682,11 +1687,13 @@ Class | Method | HTTP request | Description
  - [RoleAssignedObjectPermission](docs/RoleAssignedObjectPermission.md)
  - [RoleObjectPermission](docs/RoleObjectPermission.md)
  - [RoleRequest](docs/RoleRequest.md)
+ - [SAMLBindingsEnum](docs/SAMLBindingsEnum.md)
  - [SAMLMetadata](docs/SAMLMetadata.md)
  - [SAMLNameIDPolicyEnum](docs/SAMLNameIDPolicyEnum.md)
  - [SAMLPropertyMapping](docs/SAMLPropertyMapping.md)
  - [SAMLPropertyMappingRequest](docs/SAMLPropertyMappingRequest.md)
  - [SAMLProvider](docs/SAMLProvider.md)
+ - [SAMLProviderLogoutMethodEnum](docs/SAMLProviderLogoutMethodEnum.md)
  - [SAMLProviderRequest](docs/SAMLProviderRequest.md)
  - [SAMLSource](docs/SAMLSource.md)
  - [SAMLSourcePropertyMapping](docs/SAMLSourcePropertyMapping.md)
@@ -1732,7 +1739,6 @@ Class | Method | HTTP request | Description
  - [SourceStage](docs/SourceStage.md)
  - [SourceStageRequest](docs/SourceStageRequest.md)
  - [SourceType](docs/SourceType.md)
- - [SpBindingEnum](docs/SpBindingEnum.md)
  - [Stage](docs/Stage.md)
  - [StagePrompt](docs/StagePrompt.md)
  - [StateEnum](docs/StateEnum.md)