authentik version/2026.5.4 released on 08-07-2026

authentik version/2026.5.4 is out now. It brings expanded documentation (notably SCIM and AKQL), provider and discovery robustness, and a range of stability and UI fixes that benefit operators, integrators and admins.
See the updated release notes on the project documentation and the full changelog on GitHub for installation, upgrade and migration details: docs.goauthentik.io and GitHub compare.
What’s in this release
- Expanded SCIM provider documentation and a clarified SCIM source trust/security model in the docs.
- Provider, discovery and authentication fixes: SCIM discovery tolerates failures and accounts for users without email; outgoing sync providers now declare can_discover; LDAP optimisations and improved OAuth error handling.
- Core and package reliability updates: broker fixes for dramatiq-postgres, django-postgres-cache fixes, dependency bumps (pyo3, pydantic, crossbeam-epoch) and FIPS image updates, plus several web UI and admin UX fixes.
Upgrade notes
- No explicit breaking changes are listed in the notes; review the release documentation for migration steps such as the setup migration handling a missing tenant and the TasksModel pre_delete addition to avoid OOMs. See the full changelog on GitHub for details.
- If you need to roll back, revert to version/2026.5.3 and consult the compare link above to identify relevant changes before redeploying.
Tell the project your experience with this release — feedback and reports from deploys and tests help catch edge cases and improve the next update.

