fix: correct oidcsettings management (#4413)

* fix(oidcsettings): corrected projection, unittests and added the add endpoint * fix(oidcsettings): corrected default handling and instance setup * fix: set oidc settings correctly in console * cleanup * e2e test * improve e2e test * lint e2e Co-authored-by: Livio Spring <livio.a@gmail.com> Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
2025-08-11 19:17:32 +00:00 · 2022-09-27 11:53:49 +01:00
parent b32c02a39b
commit 2957407b5b
21 changed files with 654 additions and 93 deletions
--- a/proto/zitadel/admin.proto
+++ b/proto/zitadel/admin.proto
@@ -402,6 +402,18 @@ service AdminService {
        };
    }

+    // Add oidc settings (e.g token lifetimes, etc)
+    rpc AddOIDCSettings(AddOIDCSettingsRequest) returns (AddOIDCSettingsResponse) {
+        option (google.api.http) = {
+            post: "/settings/oidc";
+            body: "*"
+        };
+
+        option (zitadel.v1.auth_option) = {
+            permission: "iam.write";
+        };
+    }
+
    // Update oidc settings (e.g token lifetimes, etc)
    rpc UpdateOIDCSettings(UpdateOIDCSettingsRequest) returns (UpdateOIDCSettingsResponse) {
        option (google.api.http) = {
@@ -2895,6 +2907,17 @@ message GetOIDCSettingsResponse {
    zitadel.settings.v1.OIDCSettings settings = 1;
 }

+message AddOIDCSettingsRequest {
+    google.protobuf.Duration  access_token_lifetime   = 1;
+    google.protobuf.Duration  id_token_lifetime   = 2;
+    google.protobuf.Duration  refresh_token_idle_expiration   = 3;
+    google.protobuf.Duration  refresh_token_expiration   = 4;
+}
+
+message AddOIDCSettingsResponse {
+    zitadel.v1.ObjectDetails details = 1;
+}
+
 message UpdateOIDCSettingsRequest {
    google.protobuf.Duration  access_token_lifetime   = 1;
    google.protobuf.Duration  id_token_lifetime   = 2;