feat(api): add OIDC session service (#6157)

This PR starts the OIDC implementation for the API V2 including the Implicit and Code Flow.


Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
Co-authored-by: Stefan Benz <46600784+stebenz@users.noreply.github.com>

internal/domain/auth_request.go

@@ -116,6 +116,17 @@ const (
 	MFALevelMultiFactorCertified
 )
 
+type AuthRequestState int
+
+const (
+	AuthRequestStateUnspecified AuthRequestState = iota
+	AuthRequestStateAdded
+	AuthRequestStateCodeAdded
+	AuthRequestStateCodeExchanged
+	AuthRequestStateFailed
+	AuthRequestStateSucceeded
+)
+
 func NewAuthRequestFromType(requestType AuthRequestType) (*AuthRequest, error) {
 	switch requestType {
 	case AuthRequestTypeOIDC:

internal/domain/oidc_error_reason.go

@@ -0,0 +1,23 @@
+package domain
+
+type OIDCErrorReason int32
+
+const (
+	OIDCErrorReasonUnspecified OIDCErrorReason = iota
+	OIDCErrorReasonInvalidRequest
+	OIDCErrorReasonUnauthorizedClient
+	OIDCErrorReasonAccessDenied
+	OIDCErrorReasonUnsupportedResponseType
+	OIDCErrorReasonInvalidScope
+	OIDCErrorReasonServerError
+	OIDCErrorReasonTemporaryUnavailable
+	OIDCErrorReasonInteractionRequired
+	OIDCErrorReasonLoginRequired
+	OIDCErrorReasonAccountSelectionRequired
+	OIDCErrorReasonConsentRequired
+	OIDCErrorReasonInvalidRequestURI
+	OIDCErrorReasonInvalidRequestObject
+	OIDCErrorReasonRequestNotSupported
+	OIDCErrorReasonRequestURINotSupported
+	OIDCErrorReasonRegistrationNotSupported
+)

internal/domain/oidc_session.go

@@ -0,0 +1,9 @@
+package domain
+
+type OIDCSessionState int32
+
+const (
+	OIDCSessionStateUnspecified OIDCSessionState = iota
+	OIDCSessionStateActive
+	OIDCSessionStateTerminated
+)