feat: port reduction (#323)

* move mgmt pkg * begin package restructure * rename auth package to authz * begin start api * move auth * move admin * fix merge * configs and interceptors * interceptor * revert generate-grpc.sh * some cleanups * console * move console * fix tests and merging * js linting * merge * merging and configs * change k8s base to current ports * fixes * cleanup * regenerate proto * remove unnecessary whitespace * missing param * go mod tidy * fix merging * move login pkg * cleanup * move api pkgs again * fix pkg naming * fix generate-static.sh for login * update workflow * fixes * logging * remove duplicate * comment for optional gateway interfaces * regenerate protos * fix proto imports for grpc web * protos * grpc web generate * grpc web generate * fix changes * add translation interceptor * fix merging * regenerate mgmt proto
2025-08-12 00:57:33 +00:00 · 2020-07-08 13:56:37 +02:00
parent 708652a655
commit 3549a8b64e
330 changed files with 30495 additions and 30809 deletions
--- a/internal/api/oidc/client_converter.go
+++ b/internal/api/oidc/client_converter.go
@@ -0,0 +1,73 @@
+package oidc
+
+import (
+	"time"
+
+	"github.com/caos/oidc/pkg/op"
+
+	"github.com/caos/zitadel/internal/errors"
+	"github.com/caos/zitadel/internal/project/model"
+)
+
+type Client struct {
+	*model.ApplicationView
+	defaultLoginURL            string
+	defaultAccessTokenLifetime time.Duration
+	defaultIdTokenLifetime     time.Duration
+}
+
+func ClientFromBusiness(app *model.ApplicationView, defaultLoginURL string, defaultAccessTokenLifetime, defaultIdTokenLifetime time.Duration) (op.Client, error) {
+	if !app.IsOIDC {
+		return nil, errors.ThrowInvalidArgument(nil, "OIDC-d5bhD", "client is not a proper oidc application")
+	}
+	return &Client{ApplicationView: app, defaultLoginURL: defaultLoginURL, defaultAccessTokenLifetime: defaultAccessTokenLifetime, defaultIdTokenLifetime: defaultIdTokenLifetime}, nil
+}
+
+func (c *Client) ApplicationType() op.ApplicationType {
+	return op.ApplicationType(c.OIDCApplicationType)
+}
+
+func (c *Client) GetAuthMethod() op.AuthMethod {
+	return authMethodToOIDC(c.OIDCAuthMethodType)
+}
+
+func (c *Client) GetID() string {
+	return c.OIDCClientID
+}
+
+func (c *Client) LoginURL(id string) string {
+	return c.defaultLoginURL + id
+}
+
+func (c *Client) RedirectURIs() []string {
+	return c.OIDCRedirectUris
+}
+
+func (c *Client) PostLogoutRedirectURIs() []string {
+	return c.OIDCPostLogoutRedirectUris
+}
+
+func (c *Client) AccessTokenLifetime() time.Duration {
+	return c.defaultAccessTokenLifetime //PLANNED: impl from real client
+}
+
+func (c *Client) IDTokenLifetime() time.Duration {
+	return c.defaultIdTokenLifetime //PLANNED: impl from real client
+}
+
+func (c *Client) AccessTokenType() op.AccessTokenType {
+	return op.AccessTokenTypeBearer //PLANNED: impl from real client
+}
+
+func authMethodToOIDC(authType model.OIDCAuthMethodType) op.AuthMethod {
+	switch authType {
+	case model.OIDCAuthMethodTypeBasic:
+		return op.AuthMethodBasic
+	case model.OIDCAuthMethodTypePost:
+		return op.AuthMethodPost
+	case model.OIDCAuthMethodTypeNone:
+		return op.AuthMethodNone
+	default:
+		return op.AuthMethodBasic
+	}
+}