zitadel/internal/domain/application_api.go

package domain

import (
	"github.com/zitadel/zitadel/internal/crypto"
	"github.com/zitadel/zitadel/internal/eventstore/v1/models"
)

type APIApp struct {
	models.ObjectRoot

	AppID              string
	AppName            string
	ClientID           string
	EncodedHash        string
	ClientSecretString string
	AuthMethodType     APIAuthMethodType

	State AppState
}

func (a *APIApp) GetApplicationName() string {
	return a.AppName
}

func (a *APIApp) GetState() AppState {
	return a.State
}

type APIAuthMethodType int32

const (
	APIAuthMethodTypeBasic APIAuthMethodType = iota
	APIAuthMethodTypePrivateKeyJWT
)

func (a *APIApp) IsValid() bool {
	return a.AppName != ""
}

func (a *APIApp) setClientID(clientID string) {
	a.ClientID = clientID
}

func (a *APIApp) setClientSecret(encodedHash string) {
	a.EncodedHash = encodedHash
}

func (a *APIApp) requiresClientSecret() bool {
	return a.AuthMethodType == APIAuthMethodTypeBasic
}

func (a *APIApp) GenerateClientSecretIfNeeded(generator *crypto.HashGenerator) (plain string, err error) {
	if a.AuthMethodType == APIAuthMethodTypePrivateKeyJWT {
		return "", nil
	}
	a.EncodedHash, plain, err = generator.NewCode()
	if err != nil {
		return "", err
	}
	return plain, nil
}
feat: add apis and application keys (#1327) * feat: add apis and application keys * VerifyOIDCClientSecret * Update internal/v2/repository/project/api_config.go Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> * Update internal/v2/repository/project/key.go Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> * fix append ApplicationKeyWriteModel Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> 2021-02-22 11:27:47 +00:00			`package domain`

			`import (`
chore(v2): move to new org (#3499) * chore: move to new org * logging * fix: org rename caos -> zitadel Co-authored-by: adlerhurst <silvan.reusser@gmail.com> 2022-04-26 23:01:45 +00:00			`"github.com/zitadel/zitadel/internal/crypto"`
			`"github.com/zitadel/zitadel/internal/eventstore/v1/models"`
feat: add apis and application keys (#1327) * feat: add apis and application keys * VerifyOIDCClientSecret * Update internal/v2/repository/project/api_config.go Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> * Update internal/v2/repository/project/key.go Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> * fix append ApplicationKeyWriteModel Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> 2021-02-22 11:27:47 +00:00			`)`

			`type APIApp struct {`
			`models.ObjectRoot`

			`AppID string`
			`AppName string`
			`ClientID string`
feat(crypto): use passwap for machine and app secrets (#7657) * feat(crypto): use passwap for machine and app secrets * fix command package tests * add hash generator command test * naming convention, fix query tests * rename PasswordHasher and cleanup start commands * add reducer tests * fix intergration tests, cleanup old config * add app secret unit tests * solve setup panics * fix push of updated events * add missing event translations * update documentation * solve linter errors * remove nolint:SA1019 as it doesn't seem to help anyway * add nolint to deprecated filter usage * update users migration version * remove unused ClientSecret from APIConfigChangedEvent --------- Co-authored-by: Livio Spring <livio.a@gmail.com> 2024-04-05 09:35:49 +00:00			`EncodedHash string`
feat: add apis and application keys (#1327) * feat: add apis and application keys * VerifyOIDCClientSecret * Update internal/v2/repository/project/api_config.go Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> * Update internal/v2/repository/project/key.go Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> * fix append ApplicationKeyWriteModel Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> 2021-02-22 11:27:47 +00:00			`ClientSecretString string`
			`AuthMethodType APIAuthMethodType`

			`State AppState`
			`}`

			`func (a *APIApp) GetApplicationName() string {`
			`return a.AppName`
			`}`

			`func (a *APIApp) GetState() AppState {`
			`return a.State`
			`}`

			`type APIAuthMethodType int32`

			`const (`
			`APIAuthMethodTypeBasic APIAuthMethodType = iota`
			`APIAuthMethodTypePrivateKeyJWT`
			`)`

			`func (a *APIApp) IsValid() bool {`
fix: new es testing (#1411) * fix: org tests * fix: org tests * fix: user grant test * fix: user grant test * fix: project and project role test * fix: project grant test * fix: project grant test * fix: project member, grant member, app changed tests * fix: application tests * fix: application tests * fix: add oidc app test * fix: add oidc app test * fix: add api keys test * fix: iam policies * fix: iam and org member tests * fix: clock skew validation * revert crypto changes * fix: tests * fix project grant member commands Co-authored-by: Livio Amstutz <livio.a@gmail.com> 2021-03-15 11:51:15 +00:00			`return a.AppName != ""`
feat: add apis and application keys (#1327) * feat: add apis and application keys * VerifyOIDCClientSecret * Update internal/v2/repository/project/api_config.go Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> * Update internal/v2/repository/project/key.go Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> * fix append ApplicationKeyWriteModel Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> 2021-02-22 11:27:47 +00:00			`}`

			`func (a *APIApp) setClientID(clientID string) {`
			`a.ClientID = clientID`
			`}`

feat(crypto): use passwap for machine and app secrets (#7657) * feat(crypto): use passwap for machine and app secrets * fix command package tests * add hash generator command test * naming convention, fix query tests * rename PasswordHasher and cleanup start commands * add reducer tests * fix intergration tests, cleanup old config * add app secret unit tests * solve setup panics * fix push of updated events * add missing event translations * update documentation * solve linter errors * remove nolint:SA1019 as it doesn't seem to help anyway * add nolint to deprecated filter usage * update users migration version * remove unused ClientSecret from APIConfigChangedEvent --------- Co-authored-by: Livio Spring <livio.a@gmail.com> 2024-04-05 09:35:49 +00:00			`func (a *APIApp) setClientSecret(encodedHash string) {`
			`a.EncodedHash = encodedHash`
feat: add apis and application keys (#1327) * feat: add apis and application keys * VerifyOIDCClientSecret * Update internal/v2/repository/project/api_config.go Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> * Update internal/v2/repository/project/key.go Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> * fix append ApplicationKeyWriteModel Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> 2021-02-22 11:27:47 +00:00			`}`

			`func (a *APIApp) requiresClientSecret() bool {`
			`return a.AuthMethodType == APIAuthMethodTypeBasic`
			`}`

feat(crypto): use passwap for machine and app secrets (#7657) * feat(crypto): use passwap for machine and app secrets * fix command package tests * add hash generator command test * naming convention, fix query tests * rename PasswordHasher and cleanup start commands * add reducer tests * fix intergration tests, cleanup old config * add app secret unit tests * solve setup panics * fix push of updated events * add missing event translations * update documentation * solve linter errors * remove nolint:SA1019 as it doesn't seem to help anyway * add nolint to deprecated filter usage * update users migration version * remove unused ClientSecret from APIConfigChangedEvent --------- Co-authored-by: Livio Spring <livio.a@gmail.com> 2024-04-05 09:35:49 +00:00			`func (a APIApp) GenerateClientSecretIfNeeded(generator crypto.HashGenerator) (plain string, err error) {`
feat: add apis and application keys (#1327) * feat: add apis and application keys * VerifyOIDCClientSecret * Update internal/v2/repository/project/api_config.go Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> * Update internal/v2/repository/project/key.go Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> * fix append ApplicationKeyWriteModel Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> 2021-02-22 11:27:47 +00:00			`if a.AuthMethodType == APIAuthMethodTypePrivateKeyJWT {`
			`return "", nil`
			`}`
feat(crypto): use passwap for machine and app secrets (#7657) * feat(crypto): use passwap for machine and app secrets * fix command package tests * add hash generator command test * naming convention, fix query tests * rename PasswordHasher and cleanup start commands * add reducer tests * fix intergration tests, cleanup old config * add app secret unit tests * solve setup panics * fix push of updated events * add missing event translations * update documentation * solve linter errors * remove nolint:SA1019 as it doesn't seem to help anyway * add nolint to deprecated filter usage * update users migration version * remove unused ClientSecret from APIConfigChangedEvent --------- Co-authored-by: Livio Spring <livio.a@gmail.com> 2024-04-05 09:35:49 +00:00			`a.EncodedHash, plain, err = generator.NewCode()`
feat: add apis and application keys (#1327) * feat: add apis and application keys * VerifyOIDCClientSecret * Update internal/v2/repository/project/api_config.go Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> * Update internal/v2/repository/project/key.go Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> * fix append ApplicationKeyWriteModel Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> 2021-02-22 11:27:47 +00:00			`if err != nil {`
			`return "", err`
			`}`
feat(crypto): use passwap for machine and app secrets (#7657) * feat(crypto): use passwap for machine and app secrets * fix command package tests * add hash generator command test * naming convention, fix query tests * rename PasswordHasher and cleanup start commands * add reducer tests * fix intergration tests, cleanup old config * add app secret unit tests * solve setup panics * fix push of updated events * add missing event translations * update documentation * solve linter errors * remove nolint:SA1019 as it doesn't seem to help anyway * add nolint to deprecated filter usage * update users migration version * remove unused ClientSecret from APIConfigChangedEvent --------- Co-authored-by: Livio Spring <livio.a@gmail.com> 2024-04-05 09:35:49 +00:00			`return plain, nil`
feat: add apis and application keys (#1327) * feat: add apis and application keys * VerifyOIDCClientSecret * Update internal/v2/repository/project/api_config.go Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> * Update internal/v2/repository/project/key.go Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> * fix append ApplicationKeyWriteModel Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> 2021-02-22 11:27:47 +00:00			`}`