feat: allow usernames without @ when UserMustBeDomain false (#4852)

* feat: allow usernames without @ when UserMustBeDomain false * e2e * test(e2e): table driven tests for humans and machines * cleanup * fix(e2e): ensure there are no username conflicts * e2e: make awaitDesired async * rm settings mapping * e2e: make awaitDesired async * e2e: parse sequence as int * e2e: ensure test fails if awaitDesired fails Co-authored-by: Max Peintner <max@caos.ch>
2025-08-11 21:17:32 +00:00 · 2022-12-22 12:16:17 +01:00
parent 7d9fc2c6e7
commit 0530f19d94
10 changed files with 498 additions and 106 deletions
--- a/internal/auth/repository/eventsourcing/eventstore/auth_request.go
+++ b/internal/auth/repository/eventsourcing/eventstore/auth_request.go
@@ -700,12 +700,12 @@ func (repo *AuthRequestRepo) checkLoginName(ctx context.Context, request *domain

 func (repo *AuthRequestRepo) checkDomainDiscovery(ctx context.Context, request *domain.AuthRequest, loginName string) bool {
 	// check if there's a suffix in the loginname
-	split := strings.Split(loginName, "@")
-	if len(split) < 2 {
+	index := strings.LastIndex(loginName, "@")
+	if index < 0 {
 		return false
 	}
 	// check if the suffix matches a verified domain
-	org, err := repo.Query.OrgByVerifiedDomain(ctx, split[len(split)-1])
+	org, err := repo.Query.OrgByVerifiedDomain(ctx, loginName[index+1:])
 	if err != nil {
 		return false
 	}