Authentik is vulnerable to Authentication Bypass. The vulnerability is due to improper validation of the code_challenge
parameter from the PKCE authorization request. This issue can be exploited by an attacker by removing the code_challenge
parameter resulting in authentication downgrade.