feat(api): allow specifying access_token type (opaque/JWT) for service users (#5150)

Add functionality to configure the access token type on the service accounts to provide the oidc library with the necessary information to create the right type of access token.
2025-08-12 03:57:32 +00:00 · 2023-02-08 09:06:34 +01:00
parent da130c2ed9
commit 3616b6b028
31 changed files with 504 additions and 331 deletions
--- a/docs/docs/apis/proto/management.md
+++ b/docs/docs/apis/proto/management.md
@@ -3586,6 +3586,7 @@ This is an empty request
 | user_name |  string | - | string.min_len: 1<br /> string.max_len: 200<br />  |
 | name |  string | - | string.min_len: 1<br /> string.max_len: 200<br />  |
 | description |  string | - | string.max_len: 500<br />  |
+| access_token_type |  zitadel.user.v1.AccessTokenType | - | enum.defined_only: true<br />  |



@@ -8768,6 +8769,7 @@ This is an empty request
 | user_id |  string | - | string.min_len: 1<br /> string.max_len: 200<br />  |
 | description |  string | - | string.max_len: 500<br />  |
 | name |  string | - | string.min_len: 1<br /> string.max_len: 200<br />  |
+| access_token_type |  zitadel.user.v1.AccessTokenType | - | enum.defined_only: true<br />  |



--- a/docs/docs/apis/proto/user.md
+++ b/docs/docs/apis/proto/user.md
@@ -134,6 +134,7 @@ title: zitadel/user.proto
 | name |  string | - |  |
 | description |  string | - |  |
 | has_secret |  bool | - |  |
+| access_token_typ |  AccessTokenType | - |  |



@@ -633,6 +634,17 @@ UserTypeQuery is always equals
 ## Enums


+### AccessTokenType {#accesstokentype}
+
+
+| Name | Number | Description |
+| ---- | ------ | ----------- |
+| ACCESS_TOKEN_TYPE_BEARER | 0 | - |
+| ACCESS_TOKEN_TYPE_JWT | 1 | - |
+
+
+
+
 ### AuthFactorState {#authfactorstate}