Merge branch 'main' into next

# Conflicts: # cmd/setup/11.go # console/src/app/utils/language.ts
2025-08-12 01:37:31 +00:00 · 2023-06-27 21:31:28 +02:00
parent 9020c9d94f bd5defa96a
commit 5060c7463a
156 changed files with 12104 additions and 3509 deletions
--- a/cmd/setup/11.go
+++ b/cmd/setup/11.go
@@ -53,23 +53,21 @@ func (mig *AddEventCreatedAt) Execute(ctx context.Context) error {
 	}

 	for i := 0; ; i++ {
-		var count int64
-		err := crdb.ExecuteTx(ctx, mig.dbClient.DB, nil, func(tx *sql.Tx) error {
+		var affected int64
+		err = crdb.ExecuteTx(ctx, mig.dbClient.DB, nil, func(tx *sql.Tx) error {
 			res, err := tx.Exec(setCreatedAt, mig.BulkAmount)
 			if err != nil {
 				return err
 			}

-			count, _ = res.RowsAffected()
-			logging.WithFields("affected", count).Info("created_at updated")
-
+			affected, _ = res.RowsAffected()
 			return nil
 		})
 		if err != nil {
 			return err
 		}
-		logging.WithFields("step", "11", "iteration", i, "count", count).Info("set created_at iteration done")
-		if count < int64(mig.BulkAmount) {
+		logging.WithFields("step", "11", "iteration", i, "affected", affected).Info("set created_at iteration done")
+		if affected < int64(mig.BulkAmount) {
 			break
 		}
 	}
--- a/cmd/start/start.go
+++ b/cmd/start/start.go
@@ -47,6 +47,7 @@ import (
 	auth_es "github.com/zitadel/zitadel/internal/auth/repository/eventsourcing"
 	"github.com/zitadel/zitadel/internal/authz"
 	authz_repo "github.com/zitadel/zitadel/internal/authz/repository"
+	authz_es "github.com/zitadel/zitadel/internal/authz/repository/eventsourcing/eventstore"
 	"github.com/zitadel/zitadel/internal/command"
 	"github.com/zitadel/zitadel/internal/crypto"
 	cryptoDB "github.com/zitadel/zitadel/internal/crypto/database"
@@ -145,6 +146,11 @@ func startZitadel(config *Config, masterKey string, server chan<- *Server) error
 		keys.SAML,
 		config.InternalAuthZ.RolePermissionMappings,
 		sessionTokenVerifier,
+		func(q *query.Queries) domain.PermissionCheck {
+			return func(ctx context.Context, permission, orgID, resourceID string) (err error) {
+				return internal_authz.CheckPermission(ctx, &authz_es.UserMembershipRepo{Queries: q}, config.InternalAuthZ.RolePermissionMappings, permission, orgID, resourceID)
+			}
+		},
 	)
 	if err != nil {
 		return fmt.Errorf("cannot start queries: %w", err)