zitadel/internal/idp/providers/gitlab/gitlab.go

package gitlab

import (
	openid "github.com/zitadel/oidc/v3/pkg/oidc"

	"github.com/zitadel/zitadel/internal/idp"
	"github.com/zitadel/zitadel/internal/idp/providers/oidc"
)

const (
	issuer = "https://gitlab.com"
	name   = "GitLab"
)

var _ idp.Provider = (*Provider)(nil)

// Provider is the [idp.Provider] implementation for Gitlab
type Provider struct {
	*oidc.Provider
}

// New creates a GitLab.com provider using the [oidc.Provider] (OIDC generic provider)
func New(clientID, clientSecret, redirectURI string, scopes []string, options ...oidc.ProviderOpts) (*Provider, error) {
	return NewCustomIssuer(name, issuer, clientID, clientSecret, redirectURI, scopes, options...)
}

// NewCustomIssuer creates a GitLab provider using the [oidc.Provider] (OIDC generic provider)
// with a custom issuer for self-managed instances
func NewCustomIssuer(name, issuer, clientID, clientSecret, redirectURI string, scopes []string, options ...oidc.ProviderOpts) (*Provider, error) {
	if len(scopes) == 0 {
		// the OIDC provider would set `openid profile email phone` as default scope,
		// but since gitlab does not handle unknown scopes correctly (phone) and returns an error,
		// we will just set a separate default list
		scopes = []string{openid.ScopeOpenID, openid.ScopeProfile, openid.ScopeEmail}
	}
	// gitlab is currently not able to handle the prompt `select_account`:
	// https://gitlab.com/gitlab-org/gitlab/-/issues/377368
	rp, err := oidc.New(name, issuer, clientID, clientSecret, redirectURI, scopes, oidc.DefaultMapper, options...)
	if err != nil {
		return nil, err
	}
	return &Provider{
		Provider: rp,
	}, nil
}
feat: add basic structure of idp templates (#5053) add basic structure and implement first providers for IDP templates to be able to manage and use them in the future 2023-01-23 07:11:40 +00:00			`package gitlab`

			`import (`
chore(deps): upgrade to oidc v3 (#6737) This pr upgrades oidc to v3 . Function signature changes have been migrated as well. Specifically there are more client calls that take a context now. Where feasable a context is added to those calls. Where a context is not (easily) available context.TODO() is used as a reminder for when it does. Related to #6619 2023-10-17 15:19:51 +00:00			`openid "github.com/zitadel/oidc/v3/pkg/oidc"`
feat: add gitlab provider templates (#5405) * feat(api): add google provider template * refactor reduce functions * handle removed event * linting * fix projection * feat(api): add generic oauth provider template * feat(api): add github provider templates * feat(api): add github provider templates * fixes * proto comment * fix filtering * requested changes * feat(api): add generic oauth provider template * remove wrongly committed message * increase budget for angular build * fix linting * fixes * fix merge * fix merge * fix projection * fix merge * updates from previous PRs * enable github providers in login * fix merge * fix test and add github styling in login * cleanup * feat(api): add gitlab provider templates * fix: merge * fix display of providers in login * implement gitlab in login and make prompt `select_account` optional since gitlab can't handle it * fix merge * fix merge and add tests for command side * requested changes * requested changes * Update internal/query/idp_template.go Co-authored-by: Silvan <silvan.reusser@gmail.com> * fix merge * requested changes --------- Co-authored-by: Silvan <silvan.reusser@gmail.com> 2023-03-13 16:34:29 +00:00
feat: add basic structure of idp templates (#5053) add basic structure and implement first providers for IDP templates to be able to manage and use them in the future 2023-01-23 07:11:40 +00:00			`"github.com/zitadel/zitadel/internal/idp"`
			`"github.com/zitadel/zitadel/internal/idp/providers/oidc"`
			`)`

			`const (`
			`issuer = "https://gitlab.com"`
			`name = "GitLab"`
			`)`

			`var _ idp.Provider = (*Provider)(nil)`

			`// Provider is the [idp.Provider] implementation for Gitlab`
			`type Provider struct {`
			`*oidc.Provider`
			`}`

			`// New creates a GitLab.com provider using the [oidc.Provider] (OIDC generic provider)`
feat(login): use new IDP templates (#5315) The login uses the new template based IDPs with backwards compatibility for old IDPs 2023-02-28 20:20:58 +00:00			`func New(clientID, clientSecret, redirectURI string, scopes []string, options ...oidc.ProviderOpts) (*Provider, error) {`
			`return NewCustomIssuer(name, issuer, clientID, clientSecret, redirectURI, scopes, options...)`
feat: add basic structure of idp templates (#5053) add basic structure and implement first providers for IDP templates to be able to manage and use them in the future 2023-01-23 07:11:40 +00:00			`}`

			`// NewCustomIssuer creates a GitLab provider using the [oidc.Provider] (OIDC generic provider)`
			`// with a custom issuer for self-managed instances`
feat(login): use new IDP templates (#5315) The login uses the new template based IDPs with backwards compatibility for old IDPs 2023-02-28 20:20:58 +00:00			`func NewCustomIssuer(name, issuer, clientID, clientSecret, redirectURI string, scopes []string, options ...oidc.ProviderOpts) (*Provider, error) {`
feat: add gitlab provider templates (#5405) * feat(api): add google provider template * refactor reduce functions * handle removed event * linting * fix projection * feat(api): add generic oauth provider template * feat(api): add github provider templates * feat(api): add github provider templates * fixes * proto comment * fix filtering * requested changes * feat(api): add generic oauth provider template * remove wrongly committed message * increase budget for angular build * fix linting * fixes * fix merge * fix merge * fix projection * fix merge * updates from previous PRs * enable github providers in login * fix merge * fix test and add github styling in login * cleanup * feat(api): add gitlab provider templates * fix: merge * fix display of providers in login * implement gitlab in login and make prompt `select_account` optional since gitlab can't handle it * fix merge * fix merge and add tests for command side * requested changes * requested changes * Update internal/query/idp_template.go Co-authored-by: Silvan <silvan.reusser@gmail.com> * fix merge * requested changes --------- Co-authored-by: Silvan <silvan.reusser@gmail.com> 2023-03-13 16:34:29 +00:00			`if len(scopes) == 0 {`
			// the OIDC provider would set `openid profile email phone` as default scope,
			`// but since gitlab does not handle unknown scopes correctly (phone) and returns an error,`
			`// we will just set a separate default list`
			`scopes = []string{openid.ScopeOpenID, openid.ScopeProfile, openid.ScopeEmail}`
			`}`
			// gitlab is currently not able to handle the prompt `select_account`:
			`// https://gitlab.com/gitlab-org/gitlab/-/issues/377368`
feat(login): use new IDP templates (#5315) The login uses the new template based IDPs with backwards compatibility for old IDPs 2023-02-28 20:20:58 +00:00			`rp, err := oidc.New(name, issuer, clientID, clientSecret, redirectURI, scopes, oidc.DefaultMapper, options...)`
feat: add basic structure of idp templates (#5053) add basic structure and implement first providers for IDP templates to be able to manage and use them in the future 2023-01-23 07:11:40 +00:00			`if err != nil {`
			`return nil, err`
			`}`
			`return &Provider{`
			`Provider: rp,`
			`}, nil`
			`}`