feat: add domain verification notification (#649)

* fix: dont (re)generate client secret with auth type none * fix(cors): allow Origin from request * feat: add origin allow list and fix some core issues * rename migration * fix UserIDsByDomain * feat: send email to users after domain claim * username * check origin on userinfo * update oidc pkg * fix: add migration 1.6 * change username * change username * remove unique email aggregate * change username in mgmt * search global user by login name * fix test * change user search in angular * fix tests * merge * userview in angular * fix merge * Update pkg/grpc/management/proto/management.proto Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> * Update internal/notification/static/i18n/de.yaml Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> * fix Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
2025-12-07 07:16:54 +00:00 · 2020-08-27 17:18:23 +02:00
parent 3f714679d1
commit 34ec2508d3
73 changed files with 19105 additions and 17845 deletions
--- a/internal/ui/login/static/i18n/de.yaml
+++ b/internal/ui/login/static/i18n/de.yaml
@@ -21,6 +21,15 @@ UserSelection:
  SessionState0: aktiv
  SessionState1: inaktiv

+UsernameChange:
+  Title: Usernamen ändern
+  Description: Wähle deinen neuen Benutzernamen
+  Username: Benutzernamen
+
+UsernameChangeDone:
+  Title: Username geändert
+  Description: Der Username wurde erfolgreich geändert.
+
 MfaVerify:
  Title: Multifaktor verifizieren
  Description: Verifiziere deinen Multifaktor
@@ -153,6 +162,7 @@ Errors:
    NotMatchingUserID: User stimm nicht mit User in Auth Request überein
    UserIDMissing: UserID ist leer
    Invalid: Userdaten sind ungültig
+    DomainNotAllowedAsUsername: Domäne ist bereits reserviert und kann nicht verwendet werden
    Password:
      ConfirmationWrong: Passwort Bestätigung stimmt nicht überein
      Empty: Passwort ist leer
--- a/internal/ui/login/static/i18n/en.yaml
+++ b/internal/ui/login/static/i18n/en.yaml
@@ -21,6 +21,15 @@ Password:
  HasNumber: Number
  HasSymbol: Symbol

+UsernameChange:
+  Title: Change Username
+  Description: Set your new username
+  Username: Username
+
+UsernameChangeDone:
+  Title: Username changed
+  Description: Your username was changed successfully.
+
 MfaVerify:
  Title: Verify Multificator
  Description: Verify your multifactor
@@ -155,6 +164,7 @@ Errors:
    NotMatchingUserID: User and user in authrequest don't match
    UserIDMissing: UserID is empty
    Invalid: Invalid userdata
+    DomainNotAllowedAsUsername: Domain is already reserved and cannot be used
    Password:
      ConfirmationWrong: Passwordconfirmation is wrong
      Empty: Password is empty
--- a/internal/ui/login/static/resources/scripts/form_submit.js
+++ b/internal/ui/login/static/resources/scripts/form_submit.js
@@ -2,6 +2,7 @@ function disableSubmit(checks, button) {
    let form = document.getElementsByTagName('form')[0];
    let inputs = form.getElementsByTagName('input');
    for (i = 0; i < inputs.length; i++) {
+        button.disabled = true;
        inputs[i].addEventListener('input', function () {
            if (checks != undefined) {
                if (checks() === false) {
--- a/internal/ui/login/static/templates/change_password.html
+++ b/internal/ui/login/static/templates/change_password.html
@@ -41,7 +41,7 @@
    {{ template "error-message" .}}

    <div class="actions">
-        <button type="submit" id="change-password-button" name="resend" value="false" class="primary right" disabled>{{t "Actions.Next"}}</buttontype="submit">
+        <button type="submit" id="change-password-button" name="resend" value="false" class="primary right">{{t "Actions.Next"}}</button>
        <a href="{{ loginUrl }}">
            <button class="secondary" type="button">{{t "Actions.Cancel"}}</button>
        </a>
--- a/internal/ui/login/static/templates/change_username.html
+++ b/internal/ui/login/static/templates/change_username.html
@@ -0,0 +1,35 @@
+{{template "main-top" .}}
+
+{{ template "user-profile" . }}
+
+<p>{{t "UsernameChange.Description"}}</p>
+
+<form action="{{ changeUsernameUrl }}" method="POST">
+
+    {{ .CSRF }}
+
+    <input type="hidden" name="authRequestID" value="{{ .AuthReqID }}" />
+
+    <div class="fields">
+        <div class="field">
+            <label class="label" for="username">{{t "UsernameChange.Username"}}</label>
+            <input class="input" type="text" id="username" name="username" autocomplete="username" autofocus required>
+        </div>
+    </div>
+
+    {{ template "error-message" .}}
+
+    <div class="actions">
+        <button type="submit" id="submit-button" value="false" class="primary right">{{t "Actions.Next"}}</button>
+        <a href="{{ loginUrl }}">
+            <button class="secondary" type="button">{{t "Actions.Cancel"}}</button>
+        </a>
+    </div>
+</form>
+
+<script src="{{ resourceUrl "scripts/form_submit.js" }}"></script>
+<script src="{{ resourceUrl "scripts/default_form_validation.js" }}"></script>
+
+
+{{template "main-bottom" .}}
+ 
--- a/internal/ui/login/static/templates/change_username_done.html
+++ b/internal/ui/login/static/templates/change_username_done.html
@@ -0,0 +1,21 @@
+{{template "main-top" .}}
+
+{{ template "user-profile" . }}
+
+<p>{{t "UsernameChangeDone.Description"}}</p>
+
+<form action="{{ loginUrl }}" method="POST">
+
+    {{ .CSRF }}
+
+    <input type="hidden" name="authRequestID" value="{{ .AuthReqID }}" />
+
+
+    <div class="actions">
+        <button class="primary right" type="submit">{{t "Actions.Next"}}</button>
+    </div>
+</form>
+
+
+{{template "main-bottom" .}}
+ 
--- a/internal/ui/login/static/templates/init_user.html
+++ b/internal/ui/login/static/templates/init_user.html
@@ -47,8 +47,7 @@
                id="init-button"
                name="resend"
                value="false"
-                class="primary right"
-                {{ if not .PasswordSet }} disabled {{ end }}>{{t "Actions.Next"}}</button>
+                class="primary right">{{t "Actions.Next"}}</button>
        <button type="submit" name="resend" value="true" class="secondary right" formnovalidate>{{t "Actions.Resend" }}</button>
        <a href="{{ loginUrl }}">
            <button class="secondary" type="button">{{t "Actions.Cancel"}}</button>
--- a/internal/ui/login/static/templates/login.html
+++ b/internal/ui/login/static/templates/login.html
@@ -20,7 +20,7 @@
    {{template "error-message" .}}

    <div class="actions">
-        <button class="primary right" id="submit-button" type="submit" disabled>{{t "Actions.Next"}}</button>
+        <button class="primary right" id="submit-button" type="submit">{{t "Actions.Next"}}</button>
        <button class="secondary right" name="register" value="true" formnovalidate>{{t "Actions.Register"}}</button>
    </div>
 </form>
--- a/internal/ui/login/static/templates/mail_verification.html
+++ b/internal/ui/login/static/templates/mail_verification.html
@@ -21,7 +21,7 @@
    {{ template "error-message" .}}

    <div class="actions">
-        <button type="submit" id="submit-button" name="resend" value="false" class="primary right" disabled>{{t "Actions.Next"}}</button>
+        <button type="submit" id="submit-button" name="resend" value="false" class="primary right">{{t "Actions.Next"}}</button>
        {{ if .UserID }}
        <button type="submit" name="resend" value="true" class="secondary right" formnovalidate>{{t "Actions.Resend"}}</button>
        {{ end }}
--- a/internal/ui/login/static/templates/mfa_init_verify.html
+++ b/internal/ui/login/static/templates/mfa_init_verify.html
@@ -34,7 +34,7 @@
    {{end}}

    <div class="actions">
-        <button class="primary right" id="submit-button" type="submit" disabled>{{t "Actions.Next"}}</button>
+        <button class="primary right" id="submit-button" type="submit">{{t "Actions.Next"}}</button>
        <a href="{{ mfaPromptChangeUrl .AuthReqID .MfaType }}">
            <button class="secondary" type="button">{{t "Actions.Back"}}</button>
        </a>
--- a/internal/ui/login/static/templates/mfa_verify.html
+++ b/internal/ui/login/static/templates/mfa_verify.html
@@ -21,7 +21,7 @@
    {{ template "error-message" .}}

    <div class="actions">
-        <button class="primary right" id="submit-button" type="submit" disabled>{{t "Actions.Next"}}</button>
+        <button class="primary right" id="submit-button" type="submit">{{t "Actions.Next"}}</button>
        <a href="{{ loginUrl }}">
            <button class="secondary" type="button">{{t "Actions.Cancel"}}</button>
        </a>
--- a/internal/ui/login/static/templates/password.html
+++ b/internal/ui/login/static/templates/password.html
@@ -21,7 +21,7 @@
    {{template "error-message" .}}

    <div class="actions">
-        <button id="submit-button" class="primary right" type="submit" disabled>{{t "Actions.Next"}}</button>
+        <button id="submit-button" class="primary right" type="submit">{{t "Actions.Next"}}</button>
        <a href="{{ loginNameChangeUrl .AuthReqID }}">
            <button class="secondary" type="button">{{t "Actions.Back"}}</button>
        </a>
--- a/internal/ui/login/static/templates/register.html
+++ b/internal/ui/login/static/templates/register.html
@@ -61,7 +61,7 @@
    {{template "error-message" .}}

    <div class="actions">
-        <button class="primary right" id="register-button" type="submit" disabled>{{t "Actions.Next"}}</button>
+        <button class="primary right" id="register-button" type="submit">{{t "Actions.Next"}}</button>
        <a href="{{ loginNameChangeUrl .AuthReqID }}">
            <button class="secondary" type="button">{{t "Actions.Back"}}</button>
        </a>
--- a/internal/ui/login/static/templates/register_org.html
+++ b/internal/ui/login/static/templates/register_org.html
@@ -59,7 +59,7 @@
    {{template "error-message" .}}

    <div class="actions">
-        <button class="primary right" id="register-button" type="submit" disabled>{{t "Actions.Save"}}</button>
+        <button class="primary right" id="register-button" type="submit">{{t "Actions.Save"}}</button>
    </div>
 </form>