zitadel/internal/v2/command/key_pair.go

package command

import (
	"context"
	"github.com/caos/zitadel/internal/api/authz"
	"github.com/caos/zitadel/internal/crypto"
	"github.com/caos/zitadel/internal/v2/domain"
	keypair "github.com/caos/zitadel/internal/v2/repository/keypair"
	"time"
)

const (
	oidcUser = "OIDC"
)

func (r *CommandSide) GenerateSigningKeyPair(ctx context.Context, algorithm string) error {
	ctx = setOIDCCtx(ctx)
	privateCrypto, publicCrypto, err := crypto.GenerateEncryptedKeyPair(r.keySize, r.keyAlgorithm)
	if err != nil {
		return err
	}
	keyID, err := r.idGenerator.Next()
	if err != nil {
		return err
	}

	privateKeyExp := time.Now().UTC().Add(r.privateKeyLifetime)
	publicKeyExp := time.Now().UTC().Add(r.publicKeyLifetime)

	keyPairWriteModel := NewKeyPairWriteModel(keyID, domain.IAMID)
	keyAgg := KeyPairAggregateFromWriteModel(&keyPairWriteModel.WriteModel)
	keyAgg.PushEvents(
		keypair.NewAddedEvent(
			ctx,
			domain.KeyUsageSigning,
			algorithm,
			privateCrypto, publicCrypto,
			privateKeyExp, publicKeyExp),
	)
	return r.eventstore.PushAggregate(ctx, keyPairWriteModel, keyAgg)
}

func setOIDCCtx(ctx context.Context) context.Context {
	return authz.SetCtxData(ctx, authz.CtxData{UserID: oidcUser, OrgID: domain.IAMID})
}
fix: add register org and key pairs (#1275) 2021-02-12 16:51:12 +01:00			`package command`

			`import (`
			`"context"`
			`"github.com/caos/zitadel/internal/api/authz"`
			`"github.com/caos/zitadel/internal/crypto"`
			`"github.com/caos/zitadel/internal/v2/domain"`
			`keypair "github.com/caos/zitadel/internal/v2/repository/keypair"`
			`"time"`
			`)`

			`const (`
			`oidcUser = "OIDC"`
			`)`

			`func (r *CommandSide) GenerateSigningKeyPair(ctx context.Context, algorithm string) error {`
			`ctx = setOIDCCtx(ctx)`
			`privateCrypto, publicCrypto, err := crypto.GenerateEncryptedKeyPair(r.keySize, r.keyAlgorithm)`
			`if err != nil {`
			`return err`
			`}`
			`keyID, err := r.idGenerator.Next()`
			`if err != nil {`
			`return err`
			`}`

			`privateKeyExp := time.Now().UTC().Add(r.privateKeyLifetime)`
			`publicKeyExp := time.Now().UTC().Add(r.publicKeyLifetime)`

			`keyPairWriteModel := NewKeyPairWriteModel(keyID, domain.IAMID)`
			`keyAgg := KeyPairAggregateFromWriteModel(&keyPairWriteModel.WriteModel)`
			`keyAgg.PushEvents(`
			`keypair.NewAddedEvent(`
			`ctx,`
			`domain.KeyUsageSigning,`
			`algorithm,`
			`privateCrypto, publicCrypto,`
			`privateKeyExp, publicKeyExp),`
			`)`
			`return r.eventstore.PushAggregate(ctx, keyPairWriteModel, keyAgg)`
			`}`

			`func setOIDCCtx(ctx context.Context) context.Context {`
			`return authz.SetCtxData(ctx, authz.CtxData{UserID: oidcUser, OrgID: domain.IAMID})`
			`}`