feat: system api requires authenticated requests (#3570)

* begin auth * feat: system api requires authenticated requests * fix tests
2025-08-12 03:47:33 +00:00 · 2022-05-30 13:38:30 +02:00
parent 41d78ef523
commit 2fc39c0da0
15 changed files with 179 additions and 50 deletions
--- a/internal/api/authz/context.go
+++ b/internal/api/authz/context.go
@@ -2,6 +2,7 @@ package authz

 import (
 	"context"
+	"strings"

 	"github.com/zitadel/zitadel/internal/api/grpc"
 	http_util "github.com/zitadel/zitadel/internal/api/http"
@@ -67,6 +68,9 @@ func VerifyTokenAndCreateCtxData(ctx context.Context, token, orgID string, t *To
 	if err != nil {
 		return CtxData{}, err
 	}
+	if strings.HasPrefix(method, "/zitadel.system.v1.SystemService") {
+		return CtxData{UserID: userID}, nil
+	}
 	var projectID string
 	var origins []string
 	if clientID != "" {