feat(api): feature flags (#7356)

* feat(api): feature API proto definitions

* update proto based on discussion with @livio-a

* cleanup old feature flag stuff

* authz instance queries

* align defaults

* projection definitions

* define commands and event reducers

* implement system and instance setter APIs

* api getter implementation

* unit test repository package

* command unit tests

* unit test Get queries

* grpc converter unit tests

* migrate the V1 features

* migrate oidc to dynamic features

* projection unit test

* fix instance by host

* fix instance by id data type in sql

* fix linting errors

* add system projection test

* fix behavior inversion

* resolve proto file comments

* rename SystemDefaultLoginInstanceEventType to SystemLoginDefaultOrgEventType so it's consistent with the instance level event

* use write models and conditional set events

* system features integration tests

* instance features integration tests

* error on empty request

* documentation entry

* typo in feature.proto

* fix start unit tests

* solve linting error on key case switch

* remove system defaults after discussion with @eliobischof

* fix system feature projection

* resolve comments in defaults.yaml

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>

cmd/defaults.yaml

@@ -334,11 +334,6 @@ OIDC:
       Path: /oauth/v2/device_authorization # ZITADEL_OIDC_CUSTOMENDPOINTS_DEVICEAUTH_PATH
   DefaultLoginURLV2: "/login?authRequest=" # ZITADEL_OIDC_DEFAULTLOGINURLV2
   DefaultLogoutURLV2: "/logout?post_logout_redirect=" # ZITADEL_OIDC_DEFAULTLOGOUTURLV2
-  Features:
-    # Wheter projection triggers are used in the new Introspection implementation.
-    TriggerIntrospectionProjections: false
-    # Allows fallback to the Legacy Introspection implementation
-    LegacyIntrospection: false
   PublicKeyCacheMaxAge: 24h # ZITADEL_OIDC_PUBLICKEYCACHEMAXAGE
 
 SAML:
@@ -431,7 +426,6 @@ SystemAPIUsers:
 # Configure the SystemAPIUsers by environment variable using JSON notation:
 # ZITADEL_SYSTEMAPIUSERS='{"systemuser":{"Path":"/path/to/superuser/key.pem"},"systemuser2":{"KeyData":"<base64 encoded key>"}}'
 
-#TODO: remove as soon as possible
 SystemDefaults:
   SecretGenerators:
     PasswordSaltCost: 14 # ZITADEL_SYSTEMDEFAULTS_SECRETGENERATORS_PASSWORDSALTCOST
@@ -833,8 +827,13 @@ DefaultInstance:
       Greeting: Hello {{.DisplayName}},
       Text: The password of your user has changed. If this change was not done by you, please be advised to immediately reset your password.
       ButtonText: Login
+  
+  # Once a feature is set on the instance (true or false), system level feature settings
+  # will be ignored until instance level features are reset.
   Features:
-    - FeatureLoginDefaultOrg: true
+    LoginDefaultOrg: true # ZITADEL_DEFAULTINSTANCE_FEATURES_LOGINDEFAULTORG
+    # TriggerIntrospectionProjections: false # ZITADEL_DEFAULTINSTANCE_FEATURES_TRIGGERINTROSPECTIONPROJECTIONS
+    # LegacyIntrospection: false # ZITADEL_DEFAULTINSTANCE_FEATURES_LEGACYINTROSPECTION
   Limits:
     # AuditLogRetention limits the number of events that can be queried via the events API by their age.
     # A value of "0s" means that all events are available.
@@ -910,7 +909,9 @@ InternalAuthZ:
         - "system.debug.read"
         - "system.debug.write"
         - "system.debug.delete"
+        - "system.feature.read"
         - "system.feature.write"
+        - "system.feature.delete"
         - "system.limits.write"
         - "system.limits.delete"
         - "system.quota.write"
@@ -921,6 +922,7 @@ InternalAuthZ:
         - "system.instance.read"
         - "system.domain.read"
         - "system.debug.read"
+        - "system.feature.read"
         - "system.iam.member.read"
     - Role: "IAM_OWNER"
       Permissions:
@@ -941,7 +943,9 @@ InternalAuthZ:
         - "iam.flow.read"
         - "iam.flow.write"
         - "iam.flow.delete"
+        - "iam.feature.read"
         - "iam.feature.write"
+        - "iam.feature.delete"
         - "iam.restrictions.read"
         - "iam.restrictions.write"
         - "org.read"
@@ -961,6 +965,9 @@ InternalAuthZ:
         - "org.flow.read"
         - "org.flow.write"
         - "org.flow.delete"
+        - "org.feature.read"
+        - "org.feature.write"
+        - "org.feature.delete"
         - "user.read"
         - "user.global.read"
         - "user.write"
@@ -971,6 +978,9 @@ InternalAuthZ:
         - "user.membership.read"
         - "user.credential.write"
         - "user.passkey.write"
+        - "user.feature.read"
+        - "user.feature.write"
+        - "user.feature.delete"
         - "policy.read"
         - "policy.write"
         - "policy.delete"
@@ -1010,15 +1020,18 @@ InternalAuthZ:
         - "iam.action.read"
         - "iam.flow.read"
         - "iam.restrictions.read"
+        - "iam.feature.read"
         - "org.read"
         - "org.member.read"
         - "org.idp.read"
         - "org.action.read"
         - "org.flow.read"
+        - "org.feature.read"
         - "user.read"
         - "user.global.read"
         - "user.grant.read"
         - "user.membership.read"
+        - "user.feature.read"
         - "policy.read"
         - "project.read"
         - "project.member.read"
@@ -1047,6 +1060,9 @@ InternalAuthZ:
         - "org.flow.read"
         - "org.flow.write"
         - "org.flow.delete"
+        - "org.feature.read"
+        - "org.feature.write"
+        - "org.feature.delete"
         - "user.read"
         - "user.global.read"
         - "user.write"
@@ -1057,6 +1073,9 @@ InternalAuthZ:
         - "user.membership.read"
         - "user.credential.write"
         - "user.passkey.write"
+        - "user.feature.read"
+        - "user.feature.write"
+        - "user.feature.delete"
         - "policy.read"
         - "policy.write"
         - "policy.delete"
@@ -1095,6 +1114,9 @@ InternalAuthZ:
         - "user.grant.delete"
         - "user.membership.read"
         - "user.passkey.write"
+        - "user.feature.read"
+        - "user.feature.write"
+        - "user.feature.delete"
         - "project.read"
         - "project.member.read"
         - "project.role.read"
@@ -1122,6 +1144,9 @@ InternalAuthZ:
         - "org.flow.read"
         - "org.flow.write"
         - "org.flow.delete"
+        - "org.feature.read"
+        - "org.feature.write"
+        - "org.feature.delete"
         - "user.read"
         - "user.global.read"
         - "user.write"
@@ -1132,6 +1157,9 @@ InternalAuthZ:
         - "user.membership.read"
         - "user.credential.write"
         - "user.passkey.write"
+        - "user.feature.read"
+        - "user.feature.write"
+        - "user.feature.delete"
         - "policy.read"
         - "policy.write"
         - "policy.delete"
@@ -1165,6 +1193,9 @@ InternalAuthZ:
         - "user.grant.write"
         - "user.grant.delete"
         - "user.membership.read"
+        - "user.feature.read"
+        - "user.feature.write"
+        - "user.feature.delete"
         - "policy.read"
         - "project.read"
         - "project.role.read"
@@ -1176,10 +1207,12 @@ InternalAuthZ:
         - "org.idp.read"
         - "org.action.read"
         - "org.flow.read"
+        - "org.feature.read"
         - "user.read"
         - "user.global.read"
         - "user.grant.read"
         - "user.membership.read"
+        - "user.feature.read"
         - "policy.read"
         - "project.read"
         - "project.member.read"
@@ -1196,6 +1229,9 @@ InternalAuthZ:
         - "org.idp.read"
         - "org.idp.write"
         - "org.idp.delete"
+        - "org.feature.read"
+        - "org.feature.write"
+        - "org.feature.delete"
         - "policy.read"
         - "policy.write"
         - "policy.delete"