diff --git a/build/dockerfile b/build/dockerfile index 13cf000d33..3c6cacc758 100644 --- a/build/dockerfile +++ b/build/dockerfile @@ -134,9 +134,13 @@ COPY --from=base /usr/local/bin /usr/local/bin/. COPY build/zitadel/generate-grpc.sh build/zitadel/generate-grpc.sh COPY internal/protoc internal/protoc COPY openapi/statik openapi/statik +COPY internal/api/assets/generator internal/api/assets/generator +COPY internal/config internal/config +COPY internal/errors internal/errors RUN build/zitadel/generate-grpc.sh \ - && go generate openapi/statik/generate.go + && go generate openapi/statik/generate.go \ + && go run internal/api/assets/generator/asset_generator.go -directory=internal/api/assets/generator/ ####################### @@ -163,6 +167,9 @@ COPY --from=go-stub /go/src/github.com/caos/zitadel/internal/protoc/protoc-gen-a COPY --from=go-stub /go/src/github.com/caos/zitadel/internal/protoc/protoc-gen-authoption/authoption/options.pb.go internal/protoc/protoc-gen-authoption/authoption/options.pb.go COPY --from=go-stub /go/src/github.com/caos/zitadel/docs/apis/proto docs/docs/apis/proto +COPY --from=go-stub /go/src/github.com/caos/zitadel/internal/api/assets/authz.go ./internal/api/assets/authz.go +COPY --from=go-stub /go/src/github.com/caos/zitadel/internal/api/assets/router.go ./internal/api/assets/router.go + ####################### ## Go test diff --git a/build/local/local.env b/build/local/local.env index bac24d06a9..6507134ed9 100644 --- a/build/local/local.env +++ b/build/local/local.env @@ -45,6 +45,7 @@ ZITADEL_AUTHORIZE=http://localhost:50002/oauth/v2 ZITADEL_OAUTH=http://localhost:50002/oauth/v2 ZITADEL_CONSOLE=http://localhost:4200 ZITADEL_COOKIE_DOMAIN=localhost +ZITADEL_API_DOMAIN=http://localhost:50002 #caching is used in UI's and API's ZITADEL_CACHE_MAXAGE=12h diff --git a/cmd/zitadel/main.go b/cmd/zitadel/main.go index 15d6425116..5cc8e03c96 100644 --- a/cmd/zitadel/main.go +++ b/cmd/zitadel/main.go @@ -5,8 +5,10 @@ import ( "flag" "github.com/caos/logging" + admin_es "github.com/caos/zitadel/internal/admin/repository/eventsourcing" "github.com/caos/zitadel/internal/api" + "github.com/caos/zitadel/internal/api/assets" internal_authz "github.com/caos/zitadel/internal/api/authz" "github.com/caos/zitadel/internal/api/grpc/admin" "github.com/caos/zitadel/internal/api/grpc/auth" @@ -20,11 +22,13 @@ import ( sd "github.com/caos/zitadel/internal/config/systemdefaults" "github.com/caos/zitadel/internal/config/types" "github.com/caos/zitadel/internal/eventstore" + "github.com/caos/zitadel/internal/id" mgmt_es "github.com/caos/zitadel/internal/management/repository/eventsourcing" "github.com/caos/zitadel/internal/notification" "github.com/caos/zitadel/internal/query" "github.com/caos/zitadel/internal/setup" - "github.com/caos/zitadel/internal/static/s3" + "github.com/caos/zitadel/internal/static" + static_config "github.com/caos/zitadel/internal/static/config" metrics "github.com/caos/zitadel/internal/telemetry/metrics/config" tracing "github.com/caos/zitadel/internal/telemetry/tracing/config" "github.com/caos/zitadel/internal/ui" @@ -37,7 +41,7 @@ type Config struct { Log logging.Config Tracing tracing.TracingConfig Metrics metrics.MetricsConfig - AssetStorage s3.AssetStorage + AssetStorage static_config.AssetStorageConfig InternalAuthZ internal_authz.Config SystemDefaults sd.SystemDefaults @@ -72,6 +76,7 @@ var ( managementEnabled = flag.Bool("management", true, "enable management api") authEnabled = flag.Bool("auth", true, "enable auth api") oidcEnabled = flag.Bool("oidc", true, "enable oidc api") + assetsEnabled = flag.Bool("assets", true, "enable assets api") loginEnabled = flag.Bool("login", true, "enable login ui") consoleEnabled = flag.Bool("console", true, "enable console ui") notificationEnabled = flag.Bool("notification", true, "enable notification handler") @@ -114,11 +119,15 @@ func startZitadel(configPaths []string) { } authZRepo, err := authz.Start(ctx, conf.AuthZ, conf.InternalAuthZ, conf.SystemDefaults, queries) logging.Log("MAIN-s9KOw").OnError(err).Fatal("error starting authz repo") + verifier := internal_authz.Start(authZRepo) esCommands, err := eventstore.StartWithUser(conf.EventstoreBase, conf.Commands.Eventstore) if err != nil { logging.Log("ZITAD-iRCMm").OnError(err).Fatal("cannot start eventstore for commands") } - commands, err := command.StartCommands(esCommands, conf.SystemDefaults, conf.InternalAuthZ, authZRepo) + store, err := conf.AssetStorage.Config.NewStorage() + logging.Log("ZITAD-Bfhe2").OnError(err).Fatal("Unable to start asset storage") + + commands, err := command.StartCommands(esCommands, conf.SystemDefaults, conf.InternalAuthZ, store, authZRepo) if err != nil { logging.Log("ZITAD-bmNiJ").OnError(err).Fatal("cannot start commands") } @@ -128,21 +137,21 @@ func startZitadel(configPaths []string) { logging.Log("MAIN-9oRw6").OnError(err).Fatal("error starting auth repo") } - startAPI(ctx, conf, authZRepo, authRepo, commands, queries) - startUI(ctx, conf, authRepo, commands, queries) + startAPI(ctx, conf, verifier, authZRepo, authRepo, commands, queries, store) + startUI(ctx, conf, authRepo, commands, queries, store) if *notificationEnabled { - notification.Start(ctx, conf.Notification, conf.SystemDefaults, commands) + notification.Start(ctx, conf.Notification, conf.SystemDefaults, commands, store != nil) } <-ctx.Done() logging.Log("MAIN-s8d2h").Info("stopping zitadel") } -func startUI(ctx context.Context, conf *Config, authRepo *auth_es.EsRepository, command *command.Commands, query *query.Queries) { +func startUI(ctx context.Context, conf *Config, authRepo *auth_es.EsRepository, command *command.Commands, query *query.Queries, staticStorage static.Storage) { uis := ui.Create(conf.UI) if *loginEnabled { - login, prefix := login.Start(conf.UI.Login, command, query, authRepo, conf.SystemDefaults, *localDevMode) + login, prefix := login.Start(conf.UI.Login, command, query, authRepo, staticStorage, conf.SystemDefaults, *localDevMode) uis.RegisterHandler(prefix, login.Handler()) } if *consoleEnabled { @@ -153,12 +162,12 @@ func startUI(ctx context.Context, conf *Config, authRepo *auth_es.EsRepository, uis.Start(ctx) } -func startAPI(ctx context.Context, conf *Config, authZRepo *authz_repo.EsRepository, authRepo *auth_es.EsRepository, command *command.Commands, query *query.Queries) { +func startAPI(ctx context.Context, conf *Config, verifier *internal_authz.TokenVerifier, authZRepo *authz_repo.EsRepository, authRepo *auth_es.EsRepository, command *command.Commands, query *query.Queries, static static.Storage) { roles := make([]string, len(conf.InternalAuthZ.RolePermissionMappings)) for i, role := range conf.InternalAuthZ.RolePermissionMappings { roles[i] = role.Role } - repo, err := admin_es.Start(ctx, conf.Admin, conf.SystemDefaults, roles) + repo, err := admin_es.Start(ctx, conf.Admin, conf.SystemDefaults, static, roles, *localDevMode) logging.Log("API-D42tq").OnError(err).Fatal("error starting auth repo") apis := api.Create(conf.API, conf.InternalAuthZ, authZRepo, authRepo, repo, conf.SystemDefaults) @@ -166,9 +175,9 @@ func startAPI(ctx context.Context, conf *Config, authZRepo *authz_repo.EsReposit if *adminEnabled { apis.RegisterServer(ctx, admin.CreateServer(command, query, repo, conf.SystemDefaults.Domain)) } + managementRepo, err := mgmt_es.Start(conf.Mgmt, conf.SystemDefaults, roles, query, static) + logging.Log("API-Gd2qq").OnError(err).Fatal("error starting management repo") if *managementEnabled { - managementRepo, err := mgmt_es.Start(conf.Mgmt, conf.SystemDefaults, roles, query) - logging.Log("API-Gd2qq").OnError(err).Fatal("error starting management repo") apis.RegisterServer(ctx, management.CreateServer(command, query, managementRepo, conf.SystemDefaults)) } if *authEnabled { @@ -178,6 +187,10 @@ func startAPI(ctx context.Context, conf *Config, authZRepo *authz_repo.EsReposit op := oidc.NewProvider(ctx, conf.API.OIDC, command, query, authRepo, conf.SystemDefaults.KeyConfig.EncryptionConfig, *localDevMode) apis.RegisterHandler("/oauth/v2", op.HttpHandler()) } + if *assetsEnabled { + assetsHandler := assets.NewHandler(command, verifier, conf.InternalAuthZ, id.SonyFlakeGenerator, static, managementRepo) + apis.RegisterHandler("/assets/v1", assetsHandler) + } openAPIHandler, err := openapi.Start() logging.Log("ZITAD-8pRk1").OnError(err).Fatal("Unable to start openapi handler") @@ -196,7 +209,7 @@ func startSetup(configPaths []string) { es, err := eventstore.Start(conf.Eventstore) logging.Log("MAIN-Ddt3").OnError(err).Fatal("cannot start eventstore") - commands, err := command.StartCommands(es, conf.SystemDefaults, conf.InternalAuthZ, nil) + commands, err := command.StartCommands(es, conf.SystemDefaults, conf.InternalAuthZ, nil, nil) logging.Log("MAIN-dsjrr").OnError(err).Fatal("cannot start command side") err = setup.Execute(ctx, conf.SetUp, conf.SystemDefaults.IamID, commands) diff --git a/cmd/zitadel/setup.yaml b/cmd/zitadel/setup.yaml index fdd26326e1..e93f23420d 100644 --- a/cmd/zitadel/setup.yaml +++ b/cmd/zitadel/setup.yaml @@ -81,8 +81,10 @@ SetUp: UserLoginMustBeDomain: true Step6: DefaultLabelPolicy: - PrimaryColor: '#222324' - SecondaryColor: '#ffffff' + PrimaryColor: '#5282c1' + BackgroundColor: '#141735' + WarnColor: '#f44336' + FontColor: '#ffffff' Step7: OTP: true Step8: @@ -181,3 +183,8 @@ SetUp: Step13: DefaultMailTemplate: Template: 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 + Step14: + ActivateExistingLabelPolicies: true + Step15: + DefaultMailTemplate: + Template: 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 diff --git a/cmd/zitadel/startup.yaml b/cmd/zitadel/startup.yaml index 01072dffb0..08fc6907bd 100644 --- a/cmd/zitadel/startup.yaml +++ b/cmd/zitadel/startup.yaml @@ -19,6 +19,7 @@ AssetStorage: SecretAccessKey: $ZITADEL_ASSET_STORAGE_SECRET_ACCESS_KEY SSL: $ZITADEL_ASSET_STORAGE_SSL Location: $ZITADEL_ASSET_STORAGE_LOCATION + BucketPrefix: $ZITADEL_ASSET_STORAGE_BUCKET_PREFIX Metrics: Type: 'otel' @@ -279,6 +280,10 @@ UI: Cache: MaxAge: $ZITADEL_CACHE_MAXAGE SharedMaxAge: $ZITADEL_CACHE_SHARED_MAXAGE + StaticCache: + Type: bigcache + Config: + MaxCacheSizeInByte: 52428800 #50MB Console: EnvOverwriteDir: $ZITADEL_CONSOLE_ENV_DIR ShortCache: @@ -290,6 +295,7 @@ UI: CSPDomain: $ZITADEL_DEFAULT_DOMAIN Notification: + APIDomain: $ZITADEL_API_DOMAIN Repository: DefaultLanguage: 'de' Domain: $ZITADEL_DEFAULT_DOMAIN diff --git a/console/src/app/app.module.ts b/console/src/app/app.module.ts index 324e122577..f7b46955ca 100644 --- a/console/src/app/app.module.ts +++ b/console/src/app/app.module.ts @@ -26,6 +26,7 @@ import { from, Observable } from 'rxjs'; import { OnboardingModule } from 'src/app/modules/onboarding/onboarding.module'; import { RegExpPipeModule } from 'src/app/pipes/regexp-pipe/regexp-pipe.module'; import { SubscriptionService } from 'src/app/services/subscription.service'; +import { UploadService } from 'src/app/services/upload.service'; import { environment } from '../environments/environment'; import { AppRoutingModule } from './app-routing.module'; @@ -180,6 +181,7 @@ const authConfig: AuthConfig = { AuthenticationService, GrpcAuthService, SubscriptionService, + UploadService, { provide: 'windowObject', useValue: window }, ], bootstrap: [AppComponent], diff --git a/console/src/app/directives/dropzone/dropzone.directive.ts b/console/src/app/directives/dropzone/dropzone.directive.ts new file mode 100644 index 0000000000..a2da2a442c --- /dev/null +++ b/console/src/app/directives/dropzone/dropzone.directive.ts @@ -0,0 +1,28 @@ +import { Directive, EventEmitter, HostListener, Output } from '@angular/core'; + +@Directive({ + selector: '[cnslDropzone]', +}) +export class DropzoneDirective { + @Output() dropped: EventEmitter = new EventEmitter(); + @Output() hovered: EventEmitter = new EventEmitter(); + + @HostListener('drop', ['$event']) + onDrop($event: DragEvent): void { + $event.preventDefault(); + this.dropped.emit($event.dataTransfer?.files); + this.hovered.emit(false); + } + + @HostListener('dragover', ['$event']) + onDragOver($event: any): void { + $event.preventDefault(); + this.hovered.emit(true); + } + + @HostListener('dragleave', ['$event']) + onDragLeave($event: any): void { + $event.preventDefault(); + this.hovered.emit(false); + } +} diff --git a/console/src/app/directives/dropzone/dropzone.module.ts b/console/src/app/directives/dropzone/dropzone.module.ts new file mode 100644 index 0000000000..b80ace810b --- /dev/null +++ b/console/src/app/directives/dropzone/dropzone.module.ts @@ -0,0 +1,19 @@ +import { CommonModule } from '@angular/common'; +import { NgModule } from '@angular/core'; + +import { DropzoneDirective } from './dropzone.directive'; + + + +@NgModule({ + declarations: [ + DropzoneDirective, + ], + imports: [ + CommonModule, + ], + exports: [ + DropzoneDirective, + ], +}) +export class DropzoneModule { } diff --git a/console/src/app/modules/features/features.component.html b/console/src/app/modules/features/features.component.html index dfa764d507..20d24297a3 100644 --- a/console/src/app/modules/features/features.component.html +++ b/console/src/app/modules/features/features.component.html @@ -120,9 +120,17 @@
- {{'FEATURES.DATA.LABELPOLICY' | translate}} + {{'FEATURES.DATA.LABELPOLICYPRIVATELABEL' | translate}} - + +
+ +
+ {{'FEATURES.DATA.LABELPOLICYWATERMARK' | translate}} + +
diff --git a/console/src/app/modules/features/features.component.ts b/console/src/app/modules/features/features.component.ts index 5429adbbea..7f6d03c2e2 100644 --- a/console/src/app/modules/features/features.component.ts +++ b/console/src/app/modules/features/features.component.ts @@ -158,7 +158,8 @@ export class FeaturesComponent implements OnDestroy { req.setLoginPolicyFactors(this.features.loginPolicyFactors); req.setLoginPolicyPasswordless(this.features.loginPolicyPasswordless); req.setPasswordComplexityPolicy(this.features.passwordComplexityPolicy); - req.setLabelPolicy(this.features.labelPolicy); + req.setLabelPolicyPrivateLabel(this.features.labelPolicyPrivateLabel); + req.setLabelPolicyWatermark(this.features.labelPolicyWatermark); req.setCustomDomain(this.features.customDomain); this.adminService.setOrgFeatures(req).then(() => { @@ -177,7 +178,8 @@ export class FeaturesComponent implements OnDestroy { dreq.setLoginPolicyFactors(this.features.loginPolicyFactors); dreq.setLoginPolicyPasswordless(this.features.loginPolicyPasswordless); dreq.setPasswordComplexityPolicy(this.features.passwordComplexityPolicy); - dreq.setLabelPolicy(this.features.labelPolicy); + dreq.setLabelPolicyPrivateLabel(this.features.labelPolicyPrivateLabel); + dreq.setLabelPolicyWatermark(this.features.labelPolicyWatermark); dreq.setCustomDomain(this.features.customDomain); this.adminService.setDefaultFeatures(dreq).then(() => { diff --git a/console/src/app/modules/form-field/form-field.component.scss b/console/src/app/modules/form-field/form-field.component.scss index fb2f814bc6..be2eec5e72 100644 --- a/console/src/app/modules/form-field/form-field.component.scss +++ b/console/src/app/modules/form-field/form-field.component.scss @@ -4,6 +4,7 @@ $primary: map-get($theme, primary); $primary-color: mat.get-color-from-palette($primary, 500); $is-dark-theme: map-get($theme, is-dark); + $foreground: map-get($theme, foreground); .ng-untouched { .cnsl-error { @@ -29,6 +30,10 @@ vertical-align: middle; } + input { + color: mat.get-color-from-palette($foreground, text); + } + // Wrapper for the hints and error messages. .cnsl-form-field-subscript-wrapper { position: absolute; diff --git a/console/src/app/modules/links/links.component.scss b/console/src/app/modules/links/links.component.scss index fc6b6eb399..cf96272ca9 100644 --- a/console/src/app/modules/links/links.component.scss +++ b/console/src/app/modules/links/links.component.scss @@ -8,17 +8,18 @@ } .row { - width: 100%; display: flex; overflow-x: auto; + flex-wrap: wrap; padding-bottom: .5rem; + margin: 0 -.5rem; + margin-bottom: 2rem; .step { min-width: 220px; - max-width: 280px; padding: 1rem; - margin: 0 .5rem; - border: 1px solid var(--grey); + margin: 1rem .5rem; + border: 1px solid #8795a150; border-radius: .5rem; display: flex; flex-direction: column; @@ -26,6 +27,10 @@ box-sizing: border-box; flex: 1; + @media only screen and (min-width: 899px) { + max-width: 280px; + } + h6 { font-size: 1rem; text-align: center; @@ -46,14 +51,6 @@ display: block; margin: auto; } - - &:first-child { - margin-left: 0; - } - - &:last-child { - margin-right: 0; - } } } } diff --git a/console/src/app/modules/policies/label-policy/label-policy-routing.module.ts b/console/src/app/modules/policies/label-policy/label-policy-routing.module.ts deleted file mode 100644 index 457099b895..0000000000 --- a/console/src/app/modules/policies/label-policy/label-policy-routing.module.ts +++ /dev/null @@ -1,20 +0,0 @@ -import { NgModule } from '@angular/core'; -import { RouterModule, Routes } from '@angular/router'; - -import { LabelPolicyComponent } from './label-policy.component'; - -const routes: Routes = [ - { - path: '', - component: LabelPolicyComponent, - data: { - animation: 'DetailPage', - }, - }, -]; - -@NgModule({ - imports: [RouterModule.forChild(routes)], - exports: [RouterModule], -}) -export class LabelPolicyRoutingModule { } diff --git a/console/src/app/modules/policies/label-policy/label-policy.component.html b/console/src/app/modules/policies/label-policy/label-policy.component.html deleted file mode 100644 index 457530803c..0000000000 --- a/console/src/app/modules/policies/label-policy/label-policy.component.html +++ /dev/null @@ -1,19 +0,0 @@ - - -

{{'POLICY.DEFAULTLABEL' | translate}}

- -
- - {{'POLICY.DATA.HIDELOGINNAMESUFFIX' | translate}} - -
- -
- -
- - - \ No newline at end of file diff --git a/console/src/app/modules/policies/label-policy/label-policy.component.scss b/console/src/app/modules/policies/label-policy/label-policy.component.scss deleted file mode 100644 index b7be222844..0000000000 --- a/console/src/app/modules/policies/label-policy/label-policy.component.scss +++ /dev/null @@ -1,23 +0,0 @@ -.content { - padding-top: 1rem; - display: flex; - flex-direction: row; - flex-wrap: wrap; -} - -.default { - color: var(--color-main); - margin-top: 0; -} - -.btn-container { - display: flex; - justify-content: flex-end; - width: 100%; - - button { - margin-top: 3rem; - display: block; - padding: .5rem 4rem; - } -} diff --git a/console/src/app/modules/policies/label-policy/label-policy.component.spec.ts b/console/src/app/modules/policies/label-policy/label-policy.component.spec.ts deleted file mode 100644 index e084e1db91..0000000000 --- a/console/src/app/modules/policies/label-policy/label-policy.component.spec.ts +++ /dev/null @@ -1,25 +0,0 @@ -import { ComponentFixture, TestBed, waitForAsync } from '@angular/core/testing'; - -import { LabelPolicyComponent } from './label-policy.component'; - -describe('LabelPolicyComponent', () => { - let component: LabelPolicyComponent; - let fixture: ComponentFixture; - - beforeEach(waitForAsync(() => { - TestBed.configureTestingModule({ - declarations: [LabelPolicyComponent], - }) - .compileComponents(); - })); - - beforeEach(() => { - fixture = TestBed.createComponent(LabelPolicyComponent); - component = fixture.componentInstance; - fixture.detectChanges(); - }); - - it('should create', () => { - expect(component).toBeTruthy(); - }); -}); diff --git a/console/src/app/modules/policies/label-policy/label-policy.component.ts b/console/src/app/modules/policies/label-policy/label-policy.component.ts deleted file mode 100644 index ba8f3a307b..0000000000 --- a/console/src/app/modules/policies/label-policy/label-policy.component.ts +++ /dev/null @@ -1,71 +0,0 @@ -import { Component, OnDestroy } from '@angular/core'; -import { ActivatedRoute } from '@angular/router'; -import { Subscription } from 'rxjs'; -import { GetLabelPolicyResponse, UpdateLabelPolicyRequest } from 'src/app/proto/generated/zitadel/admin_pb'; -import { LabelPolicy } from 'src/app/proto/generated/zitadel/policy_pb'; -import { AdminService } from 'src/app/services/admin.service'; -import { ToastService } from 'src/app/services/toast.service'; - -import { CnslLinks } from '../../links/links.component'; -import { IAM_COMPLEXITY_LINK, IAM_LOGIN_POLICY_LINK, IAM_POLICY_LINK } from '../../policy-grid/policy-links'; -import { PolicyComponentServiceType } from '../policy-component-types.enum'; - - -@Component({ - selector: 'app-label-policy', - templateUrl: './label-policy.component.html', - styleUrls: ['./label-policy.component.scss'], -}) -export class LabelPolicyComponent implements OnDestroy { - public labelData!: LabelPolicy.AsObject; - - private sub: Subscription = new Subscription(); - - public PolicyComponentServiceType: any = PolicyComponentServiceType; - public nextLinks: CnslLinks[] = [ - IAM_COMPLEXITY_LINK, - IAM_POLICY_LINK, - IAM_LOGIN_POLICY_LINK, - ]; - constructor( - private route: ActivatedRoute, - private toast: ToastService, - private adminService: AdminService, - ) { - this.route.params.subscribe(() => { - this.getData().then(data => { - if (data?.policy) { - this.labelData = data.policy; - } - }); - }); - } - - public ngOnDestroy(): void { - this.sub.unsubscribe(); - } - - private async getData(): Promise { - return this.adminService.getLabelPolicy(); - } - - public savePolicy(): void { - const req = new UpdateLabelPolicyRequest(); - req.setPrimaryColor(this.labelData.primaryColor); - req.setSecondaryColor(this.labelData.secondaryColor); - req.setHideLoginNameSuffix(this.labelData.hideLoginNameSuffix); - this.adminService.updateLabelPolicy(req).then(() => { - this.toast.showInfo('POLICY.TOAST.SET', true); - }).catch(error => { - this.toast.showError(error); - }); - } - - public get isDefault(): boolean { - if (this.labelData) { - return (this.labelData as LabelPolicy.AsObject).isDefault; - } else { - return false; - } - } -} diff --git a/console/src/app/modules/policies/label-policy/label-policy.module.ts b/console/src/app/modules/policies/label-policy/label-policy.module.ts deleted file mode 100644 index b32c66df09..0000000000 --- a/console/src/app/modules/policies/label-policy/label-policy.module.ts +++ /dev/null @@ -1,36 +0,0 @@ -import { CommonModule } from '@angular/common'; -import { NgModule } from '@angular/core'; -import { FormsModule } from '@angular/forms'; -import { MatButtonModule } from '@angular/material/button'; -import { MatIconModule } from '@angular/material/icon'; -import { MatSlideToggleModule } from '@angular/material/slide-toggle'; -import { MatTooltipModule } from '@angular/material/tooltip'; -import { TranslateModule } from '@ngx-translate/core'; -import { HasRoleModule } from 'src/app/directives/has-role/has-role.module'; -import { DetailLayoutModule } from 'src/app/modules/detail-layout/detail-layout.module'; -import { InputModule } from 'src/app/modules/input/input.module'; - -import { InfoSectionModule } from '../../info-section/info-section.module'; -import { LinksModule } from '../../links/links.module'; -import { LabelPolicyRoutingModule } from './label-policy-routing.module'; -import { LabelPolicyComponent } from './label-policy.component'; - -@NgModule({ - declarations: [LabelPolicyComponent], - imports: [ - LabelPolicyRoutingModule, - CommonModule, - FormsModule, - InputModule, - MatButtonModule, - MatSlideToggleModule, - MatIconModule, - HasRoleModule, - MatTooltipModule, - TranslateModule, - DetailLayoutModule, - LinksModule, - InfoSectionModule, - ], -}) -export class LabelPolicyModule { } diff --git a/console/src/app/modules/policies/login-policy/login-policy.component.ts b/console/src/app/modules/policies/login-policy/login-policy.component.ts index cc95cc6979..df4a10647c 100644 --- a/console/src/app/modules/policies/login-policy/login-policy.component.ts +++ b/console/src/app/modules/policies/login-policy/login-policy.component.ts @@ -22,10 +22,11 @@ import { ToastService } from 'src/app/services/toast.service'; import { CnslLinks } from '../../links/links.component'; import { IAM_COMPLEXITY_LINK, - IAM_LABEL_LINK, IAM_POLICY_LINK, + IAM_PRIVATELABEL_LINK, ORG_COMPLEXITY_LINK, ORG_IAM_POLICY_LINK, + ORG_PRIVATELABEL_LINK, } from '../../policy-grid/policy-links'; import { PolicyComponentServiceType } from '../policy-component-types.enum'; import { AddIdpDialogComponent } from './add-idp-dialog/add-idp-dialog.component'; @@ -69,6 +70,7 @@ export class LoginPolicyComponent implements OnDestroy { this.nextLinks = [ ORG_COMPLEXITY_LINK, ORG_IAM_POLICY_LINK, + ORG_PRIVATELABEL_LINK, ]; break; case PolicyComponentServiceType.ADMIN: @@ -80,7 +82,7 @@ export class LoginPolicyComponent implements OnDestroy { this.nextLinks = [ IAM_COMPLEXITY_LINK, IAM_POLICY_LINK, - IAM_LABEL_LINK, + IAM_PRIVATELABEL_LINK, ]; break; } @@ -96,7 +98,7 @@ export class LoginPolicyComponent implements OnDestroy { if (resp.policy) { this.loginData = resp.policy; this.loading = false; - this.disabled = this.isDefault ?? false; + this.disabled = ((this.loginData as LoginPolicy.AsObject)?.isDefault) ?? false; } }); this.getIdps().then(resp => { diff --git a/console/src/app/modules/policies/org-iam-policy/org-iam-policy.component.ts b/console/src/app/modules/policies/org-iam-policy/org-iam-policy.component.ts index a9b11d5a4f..3bfe6565d0 100644 --- a/console/src/app/modules/policies/org-iam-policy/org-iam-policy.component.ts +++ b/console/src/app/modules/policies/org-iam-policy/org-iam-policy.component.ts @@ -13,141 +13,143 @@ import { ToastService } from 'src/app/services/toast.service'; import { CnslLinks } from '../../links/links.component'; import { - IAM_COMPLEXITY_LINK, - IAM_LABEL_LINK, - IAM_LOGIN_POLICY_LINK, - ORG_COMPLEXITY_LINK, - ORG_LOGIN_POLICY_LINK, + IAM_COMPLEXITY_LINK, + IAM_LOGIN_POLICY_LINK, + IAM_PRIVATELABEL_LINK, + ORG_COMPLEXITY_LINK, + ORG_LOGIN_POLICY_LINK, + ORG_PRIVATELABEL_LINK, } from '../../policy-grid/policy-links'; import { PolicyComponentServiceType } from '../policy-component-types.enum'; @Component({ - selector: 'app-org-iam-policy', - templateUrl: './org-iam-policy.component.html', - styleUrls: ['./org-iam-policy.component.scss'], + selector: 'app-org-iam-policy', + templateUrl: './org-iam-policy.component.html', + styleUrls: ['./org-iam-policy.component.scss'], }) export class OrgIamPolicyComponent implements OnDestroy { - private managementService!: ManagementService; - public serviceType!: PolicyComponentServiceType; + private managementService!: ManagementService; + public serviceType!: PolicyComponentServiceType; - public iamData!: OrgIAMPolicy.AsObject; + public iamData!: OrgIAMPolicy.AsObject; - private sub: Subscription = new Subscription(); - private org!: Org.AsObject; + private sub: Subscription = new Subscription(); + private org!: Org.AsObject; - public PolicyComponentServiceType: any = PolicyComponentServiceType; - public nextLinks: Array = []; - constructor( - private route: ActivatedRoute, - private toast: ToastService, - private sessionStorage: StorageService, - private injector: Injector, - private adminService: AdminService, - ) { - const temporg = this.sessionStorage.getItem('organization') as Org.AsObject; - if (temporg) { - this.org = temporg; + public PolicyComponentServiceType: any = PolicyComponentServiceType; + public nextLinks: Array = []; + constructor( + private route: ActivatedRoute, + private toast: ToastService, + private sessionStorage: StorageService, + private injector: Injector, + private adminService: AdminService, + ) { + const temporg = this.sessionStorage.getItem('organization') as Org.AsObject; + if (temporg) { + this.org = temporg; + } + this.sub = this.route.data.pipe(switchMap(data => { + this.serviceType = data.serviceType; + if (this.serviceType === PolicyComponentServiceType.MGMT) { + this.managementService = this.injector.get(ManagementService as Type); + this.nextLinks = [ + ORG_COMPLEXITY_LINK, + ORG_LOGIN_POLICY_LINK, + ORG_PRIVATELABEL_LINK, + ]; + } else { + this.nextLinks = [ + IAM_COMPLEXITY_LINK, + IAM_LOGIN_POLICY_LINK, + IAM_PRIVATELABEL_LINK, + ]; + } + return this.route.params; + })).subscribe(_ => { + this.fetchData(); + }); + } + + public ngOnDestroy(): void { + this.sub.unsubscribe(); + } + + public fetchData(): void { + this.getData().then(resp => { + if (resp?.policy) { + this.iamData = resp.policy; + } + }); + } + + private async getData(): Promise { + switch (this.serviceType) { + case PolicyComponentServiceType.MGMT: + return this.managementService.getOrgIAMPolicy(); + case PolicyComponentServiceType.ADMIN: + if (this.org?.id) { + return this.adminService.getCustomOrgIAMPolicy(this.org.id); } - this.sub = this.route.data.pipe(switchMap(data => { - this.serviceType = data.serviceType; - if (this.serviceType === PolicyComponentServiceType.MGMT) { - this.managementService = this.injector.get(ManagementService as Type); - this.nextLinks = [ - ORG_COMPLEXITY_LINK, - ORG_LOGIN_POLICY_LINK, - ]; - } else { - this.nextLinks = [ - IAM_COMPLEXITY_LINK, - IAM_LOGIN_POLICY_LINK, - IAM_LABEL_LINK, - ]; - } - return this.route.params; - })).subscribe(_ => { - this.fetchData(); - }); + break; } + } - public ngOnDestroy(): void { - this.sub.unsubscribe(); - } - - public fetchData(): void { - this.getData().then(resp => { - if (resp?.policy) { - this.iamData = resp.policy; - } - }); - } - - private async getData(): Promise { - switch (this.serviceType) { - case PolicyComponentServiceType.MGMT: - return this.managementService.getOrgIAMPolicy(); - case PolicyComponentServiceType.ADMIN: - if (this.org?.id) { - return this.adminService.getCustomOrgIAMPolicy(this.org.id); - } - break; - } - } - - public savePolicy(): void { - switch (this.serviceType) { - case PolicyComponentServiceType.MGMT: - if ((this.iamData as OrgIAMPolicy.AsObject).isDefault) { - this.adminService.addCustomOrgIAMPolicy( - this.org.id, - this.iamData.userLoginMustBeDomain, - ).then(() => { - this.toast.showInfo('POLICY.TOAST.SET', true); - }).catch(error => { - this.toast.showError(error); - }); - break; - } else { - this.adminService.updateCustomOrgIAMPolicy( - this.org.id, - this.iamData.userLoginMustBeDomain, - ).then(() => { - this.toast.showInfo('POLICY.TOAST.SET', true); - }).catch(error => { - this.toast.showError(error); - }); - break; - } - case PolicyComponentServiceType.ADMIN: - // update Default org iam policy? - this.adminService.updateOrgIAMPolicy( - this.iamData.userLoginMustBeDomain, - ).then(() => { - this.toast.showInfo('POLICY.TOAST.SET', true); - }).catch(error => { - this.toast.showError(error); - }); - break; - } - } - - public removePolicy(): void { - if (this.serviceType === PolicyComponentServiceType.MGMT) { - this.adminService.resetCustomOrgIAMPolicyToDefault(this.org.id).then(() => { - this.toast.showInfo('POLICY.TOAST.RESETSUCCESS', true); - setTimeout(() => { - this.fetchData(); - }, 1000); - }).catch(error => { - this.toast.showError(error); - }); - } - } - - public get isDefault(): boolean { - if (this.iamData && this.serviceType === PolicyComponentServiceType.MGMT) { - return (this.iamData as OrgIAMPolicy.AsObject).isDefault; + public savePolicy(): void { + switch (this.serviceType) { + case PolicyComponentServiceType.MGMT: + if ((this.iamData as OrgIAMPolicy.AsObject).isDefault) { + this.adminService.addCustomOrgIAMPolicy( + this.org.id, + this.iamData.userLoginMustBeDomain, + ).then(() => { + this.toast.showInfo('POLICY.TOAST.SET', true); + }).catch(error => { + this.toast.showError(error); + }); + break; } else { - return false; + this.adminService.updateCustomOrgIAMPolicy( + this.org.id, + this.iamData.userLoginMustBeDomain, + ).then(() => { + this.toast.showInfo('POLICY.TOAST.SET', true); + }).catch(error => { + this.toast.showError(error); + }); + break; } + case PolicyComponentServiceType.ADMIN: + // update Default org iam policy? + this.adminService.updateOrgIAMPolicy( + this.iamData.userLoginMustBeDomain, + ).then(() => { + this.toast.showInfo('POLICY.TOAST.SET', true); + }).catch(error => { + this.toast.showError(error); + }); + break; } + } + + public removePolicy(): void { + if (this.serviceType === PolicyComponentServiceType.MGMT) { + this.adminService.resetCustomOrgIAMPolicyToDefault(this.org.id).then(() => { + this.toast.showInfo('POLICY.TOAST.RESETSUCCESS', true); + setTimeout(() => { + this.fetchData(); + }, 1000); + }).catch(error => { + this.toast.showError(error); + }); + } + } + + public get isDefault(): boolean { + if (this.iamData && this.serviceType === PolicyComponentServiceType.MGMT) { + return (this.iamData as OrgIAMPolicy.AsObject).isDefault; + } else { + return false; + } + } } diff --git a/console/src/app/modules/policies/password-complexity-policy/password-complexity-policy.component.ts b/console/src/app/modules/policies/password-complexity-policy/password-complexity-policy.component.ts index 0fedeb4890..b33c32c2b5 100644 --- a/console/src/app/modules/policies/password-complexity-policy/password-complexity-policy.component.ts +++ b/console/src/app/modules/policies/password-complexity-policy/password-complexity-policy.component.ts @@ -3,10 +3,10 @@ import { ActivatedRoute } from '@angular/router'; import { Subscription } from 'rxjs'; import { switchMap } from 'rxjs/operators'; import { - GetPasswordComplexityPolicyResponse as AdminGetPasswordComplexityPolicyResponse, + GetPasswordComplexityPolicyResponse as AdminGetPasswordComplexityPolicyResponse, } from 'src/app/proto/generated/zitadel/admin_pb'; import { - GetPasswordComplexityPolicyResponse as MgmtGetPasswordComplexityPolicyResponse, + GetPasswordComplexityPolicyResponse as MgmtGetPasswordComplexityPolicyResponse, } from 'src/app/proto/generated/zitadel/management_pb'; import { PasswordComplexityPolicy } from 'src/app/proto/generated/zitadel/policy_pb'; import { AdminService } from 'src/app/services/admin.service'; @@ -15,163 +15,165 @@ import { ToastService } from 'src/app/services/toast.service'; import { CnslLinks } from '../../links/links.component'; import { - IAM_LABEL_LINK, - IAM_LOGIN_POLICY_LINK, - IAM_POLICY_LINK, - ORG_IAM_POLICY_LINK, - ORG_LOGIN_POLICY_LINK, + IAM_LOGIN_POLICY_LINK, + IAM_POLICY_LINK, + IAM_PRIVATELABEL_LINK, + ORG_IAM_POLICY_LINK, + ORG_LOGIN_POLICY_LINK, + ORG_PRIVATELABEL_LINK, } from '../../policy-grid/policy-links'; import { PolicyComponentServiceType } from '../policy-component-types.enum'; @Component({ - selector: 'app-password-policy', - templateUrl: './password-complexity-policy.component.html', - styleUrls: ['./password-complexity-policy.component.scss'], + selector: 'app-password-policy', + templateUrl: './password-complexity-policy.component.html', + styleUrls: ['./password-complexity-policy.component.scss'], }) export class PasswordComplexityPolicyComponent implements OnDestroy { - public serviceType: PolicyComponentServiceType = PolicyComponentServiceType.MGMT; - public service!: ManagementService | AdminService; + public serviceType: PolicyComponentServiceType = PolicyComponentServiceType.MGMT; + public service!: ManagementService | AdminService; - public complexityData!: PasswordComplexityPolicy.AsObject; + public complexityData!: PasswordComplexityPolicy.AsObject; - private sub: Subscription = new Subscription(); - public PolicyComponentServiceType: any = PolicyComponentServiceType; + private sub: Subscription = new Subscription(); + public PolicyComponentServiceType: any = PolicyComponentServiceType; - public loading: boolean = false; - public nextLinks: CnslLinks[] = []; - constructor( - private route: ActivatedRoute, - private toast: ToastService, - private injector: Injector, - ) { - this.sub = this.route.data.pipe(switchMap(data => { - this.serviceType = data.serviceType; + public loading: boolean = false; + public nextLinks: CnslLinks[] = []; + constructor( + private route: ActivatedRoute, + private toast: ToastService, + private injector: Injector, + ) { + this.sub = this.route.data.pipe(switchMap(data => { + this.serviceType = data.serviceType; - switch (this.serviceType) { - case PolicyComponentServiceType.MGMT: - this.service = this.injector.get(ManagementService as Type); - this.nextLinks = [ - ORG_IAM_POLICY_LINK, - ORG_LOGIN_POLICY_LINK, - ]; - break; - case PolicyComponentServiceType.ADMIN: - this.service = this.injector.get(AdminService as Type); - this.nextLinks = [ - IAM_POLICY_LINK, - IAM_LOGIN_POLICY_LINK, - IAM_LABEL_LINK, - ]; - break; - } + switch (this.serviceType) { + case PolicyComponentServiceType.MGMT: + this.service = this.injector.get(ManagementService as Type); + this.nextLinks = [ + ORG_IAM_POLICY_LINK, + ORG_LOGIN_POLICY_LINK, + ORG_PRIVATELABEL_LINK, + ]; + break; + case PolicyComponentServiceType.ADMIN: + this.service = this.injector.get(AdminService as Type); + this.nextLinks = [ + IAM_POLICY_LINK, + IAM_LOGIN_POLICY_LINK, + IAM_PRIVATELABEL_LINK, + ]; + break; + } - return this.route.params; - })).subscribe(() => { - this.fetchData(); - }); + return this.route.params; + })).subscribe(() => { + this.fetchData(); + }); + } + + public fetchData(): void { + this.loading = true; + + this.getData().then(data => { + if (data.policy) { + this.complexityData = data.policy; + this.loading = false; + } + }); + } + + public ngOnDestroy(): void { + this.sub.unsubscribe(); + } + + private async getData(): + Promise { + switch (this.serviceType) { + case PolicyComponentServiceType.MGMT: + return (this.service as ManagementService).getPasswordComplexityPolicy(); + case PolicyComponentServiceType.ADMIN: + return (this.service as AdminService).getPasswordComplexityPolicy(); } + } - public fetchData(): void { - this.loading = true; - - this.getData().then(data => { - if (data.policy) { - this.complexityData = data.policy; - this.loading = false; - } - }); + public removePolicy(): void { + if (this.service instanceof ManagementService) { + this.service.resetPasswordComplexityPolicyToDefault().then(() => { + this.toast.showInfo('POLICY.TOAST.RESETSUCCESS', true); + setTimeout(() => { + this.fetchData(); + }, 1000); + }).catch(error => { + this.toast.showError(error); + }); } + } - public ngOnDestroy(): void { - this.sub.unsubscribe(); + public incrementLength(): void { + if (this.complexityData?.minLength !== undefined && this.complexityData?.minLength <= 72) { + this.complexityData.minLength++; } + } - private async getData(): - Promise { - switch (this.serviceType) { - case PolicyComponentServiceType.MGMT: - return (this.service as ManagementService).getPasswordComplexityPolicy(); - case PolicyComponentServiceType.ADMIN: - return (this.service as AdminService).getPasswordComplexityPolicy(); - } + public decrementLength(): void { + if (this.complexityData?.minLength && this.complexityData?.minLength > 1) { + this.complexityData.minLength--; } + } - public removePolicy(): void { - if (this.service instanceof ManagementService) { - this.service.resetPasswordComplexityPolicyToDefault().then(() => { - this.toast.showInfo('POLICY.TOAST.RESETSUCCESS', true); - setTimeout(() => { - this.fetchData(); - }, 1000); - }).catch(error => { - this.toast.showError(error); - }); - } - } + public savePolicy(): void { + switch (this.serviceType) { + case PolicyComponentServiceType.MGMT: + if ((this.complexityData as PasswordComplexityPolicy.AsObject).isDefault) { + (this.service as ManagementService).addCustomPasswordComplexityPolicy( - public incrementLength(): void { - if (this.complexityData?.minLength !== undefined && this.complexityData?.minLength <= 72) { - this.complexityData.minLength++; - } - } - - public decrementLength(): void { - if (this.complexityData?.minLength && this.complexityData?.minLength > 1) { - this.complexityData.minLength--; - } - } - - public savePolicy(): void { - switch (this.serviceType) { - case PolicyComponentServiceType.MGMT: - if ((this.complexityData as PasswordComplexityPolicy.AsObject).isDefault) { - (this.service as ManagementService).addCustomPasswordComplexityPolicy( - - this.complexityData.hasLowercase, - this.complexityData.hasUppercase, - this.complexityData.hasNumber, - this.complexityData.hasSymbol, - this.complexityData.minLength, - ).then(() => { - this.toast.showInfo('POLICY.TOAST.SET', true); - }).catch(error => { - this.toast.showError(error); - }); - } else { - (this.service as ManagementService).updateCustomPasswordComplexityPolicy( - this.complexityData.hasLowercase, - this.complexityData.hasUppercase, - this.complexityData.hasNumber, - this.complexityData.hasSymbol, - this.complexityData.minLength, - ).then(() => { - this.toast.showInfo('POLICY.TOAST.SET', true); - }).catch(error => { - this.toast.showError(error); - }); - } - break; - case PolicyComponentServiceType.ADMIN: - (this.service as AdminService).updatePasswordComplexityPolicy( - this.complexityData.hasLowercase, - this.complexityData.hasUppercase, - this.complexityData.hasNumber, - this.complexityData.hasSymbol, - this.complexityData.minLength, - ).then(() => { - this.toast.showInfo('POLICY.TOAST.SET', true); - }).catch(error => { - this.toast.showError(error); - }); - break; - } - } - - public get isDefault(): boolean { - if (this.complexityData && this.serviceType === PolicyComponentServiceType.MGMT) { - return (this.complexityData as PasswordComplexityPolicy.AsObject).isDefault; + this.complexityData.hasLowercase, + this.complexityData.hasUppercase, + this.complexityData.hasNumber, + this.complexityData.hasSymbol, + this.complexityData.minLength, + ).then(() => { + this.toast.showInfo('POLICY.TOAST.SET', true); + }).catch(error => { + this.toast.showError(error); + }); } else { - return false; + (this.service as ManagementService).updateCustomPasswordComplexityPolicy( + this.complexityData.hasLowercase, + this.complexityData.hasUppercase, + this.complexityData.hasNumber, + this.complexityData.hasSymbol, + this.complexityData.minLength, + ).then(() => { + this.toast.showInfo('POLICY.TOAST.SET', true); + }).catch(error => { + this.toast.showError(error); + }); } + break; + case PolicyComponentServiceType.ADMIN: + (this.service as AdminService).updatePasswordComplexityPolicy( + this.complexityData.hasLowercase, + this.complexityData.hasUppercase, + this.complexityData.hasNumber, + this.complexityData.hasSymbol, + this.complexityData.minLength, + ).then(() => { + this.toast.showInfo('POLICY.TOAST.SET', true); + }).catch(error => { + this.toast.showError(error); + }); + break; } + } + + public get isDefault(): boolean { + if (this.complexityData && this.serviceType === PolicyComponentServiceType.MGMT) { + return (this.complexityData as PasswordComplexityPolicy.AsObject).isDefault; + } else { + return false; + } + } } diff --git a/console/src/app/modules/policies/policy-component-types.enum.ts b/console/src/app/modules/policies/policy-component-types.enum.ts index c976011e60..95e3359043 100644 --- a/console/src/app/modules/policies/policy-component-types.enum.ts +++ b/console/src/app/modules/policies/policy-component-types.enum.ts @@ -1,12 +1,12 @@ export enum PolicyComponentType { - LOCKOUT = 'lockout', - AGE = 'age', - COMPLEXITY = 'complexity', - IAM = 'iam', - LOGIN = 'login', - LABEL = 'label', + LOCKOUT = 'lockout', + AGE = 'age', + COMPLEXITY = 'complexity', + IAM = 'iam', + LOGIN = 'login', + PRIVATELABEL = 'privatelabel', } export enum PolicyComponentServiceType { - MGMT = 'mgmt', - ADMIN = 'admin', + MGMT = 'mgmt', + ADMIN = 'admin', } diff --git a/console/src/app/modules/policies/private-labeling-policy/color/color.component.html b/console/src/app/modules/policies/private-labeling-policy/color/color.component.html new file mode 100644 index 0000000000..0515ec725a --- /dev/null +++ b/console/src/app/modules/policies/private-labeling-policy/color/color.component.html @@ -0,0 +1,15 @@ +
+ + {{name}} (current {{color}}) + + + +
+
+
+ P + C +
+
\ No newline at end of file diff --git a/console/src/app/modules/policies/private-labeling-policy/color/color.component.scss b/console/src/app/modules/policies/private-labeling-policy/color/color.component.scss new file mode 100644 index 0000000000..c2f7a49aac --- /dev/null +++ b/console/src/app/modules/policies/private-labeling-policy/color/color.component.scss @@ -0,0 +1,52 @@ +.title { + // font-size: 1rem; + display: block; + font-size: 18px; + + &.border { + border-top: 1px solid var(--grey); + padding-top: 1.5rem; + } +} + +.form-row { + display: flex; + align-items: flex-end; + + .formfield { + flex: 1; + } + + button { + margin-bottom: .9rem; + } +} + +.color-selector { + display: flex; + align-items: center; + flex-wrap: wrap; + margin: 0 -.25rem; + width: 100%; + padding-bottom: 1rem; + + .circle { + height: 30px; + width: 30px; + background-color: #cd5c5c; + border-radius: 50%; + margin: .25rem; + box-sizing: border-box; + display: flex; + align-items: center; + justify-content: center; + + span { + font-size: 18px; + } + + &.active { + border: 3px solid #ffffff90; + } + } +} diff --git a/console/src/app/modules/policies/private-labeling-policy/color/color.component.spec.ts b/console/src/app/modules/policies/private-labeling-policy/color/color.component.spec.ts new file mode 100644 index 0000000000..25259bf51e --- /dev/null +++ b/console/src/app/modules/policies/private-labeling-policy/color/color.component.spec.ts @@ -0,0 +1,25 @@ +import { ComponentFixture, TestBed } from '@angular/core/testing'; + +import { ColorComponent } from './color.component'; + +describe('ColorComponent', () => { + let component: ColorComponent; + let fixture: ComponentFixture; + + beforeEach(async () => { + await TestBed.configureTestingModule({ + declarations: [ColorComponent], + }) + .compileComponents(); + }); + + beforeEach(() => { + fixture = TestBed.createComponent(ColorComponent); + component = fixture.componentInstance; + fixture.detectChanges(); + }); + + it('should create', () => { + expect(component).toBeTruthy(); + }); +}); diff --git a/console/src/app/modules/policies/private-labeling-policy/color/color.component.ts b/console/src/app/modules/policies/private-labeling-policy/color/color.component.ts new file mode 100644 index 0000000000..d40c2bb738 --- /dev/null +++ b/console/src/app/modules/policies/private-labeling-policy/color/color.component.ts @@ -0,0 +1,118 @@ +import { Component, EventEmitter, Input, OnInit, Output } from '@angular/core'; + +import { ColorType } from '../private-labeling-policy.component'; + +@Component({ + selector: 'cnsl-color', + templateUrl: './color.component.html', + styleUrls: ['./color.component.scss'], +}) +export class ColorComponent implements OnInit { + public PRIMARY: Array<{ name: string; color: string; }> = [ + { name: 'red', color: '#f44336' }, + { name: 'pink', color: '#e91e63' }, + { name: 'purple', color: '#9c27b0' }, + { name: 'deeppurple', color: '#673ab7' }, + { name: 'indigo', color: '#3f51b5' }, + { name: 'blue', color: '#2196f3' }, + { name: 'lightblue', color: '#03a9f4' }, + { name: 'cyan', color: '#00bcd4' }, + { name: 'teal', color: '#009688' }, + { name: 'green', color: '#4caf50' }, + { name: 'lightgreen', color: '#8bc34a' }, + { name: 'lime', color: '#cddc39' }, + { name: 'yellow', color: '#ffeb3b' }, + { name: 'amber', color: '#ffc107' }, + { name: 'orange', color: '#fb8c00' }, + { name: 'deeporange', color: '#ff5722' }, + { name: 'brown', color: '#795548' }, + { name: 'grey', color: '#9e9e9e' }, + { name: 'bluegrey', color: '#607d8b' }, + { name: 'white', color: '#ffffff' }, + ]; + + public WARN: Array<{ name: string; color: string; }> = [ + { name: 'red', color: '#f44336' }, + { name: 'pink', color: '#e91e63' }, + { name: 'purple', color: '#9c27b0' }, + { name: 'deeppurple', color: '#673ab7' }, + ]; + + public FONTLIGHT: Array<{ name: string; color: string; }> = [ + { name: 'gray-500', color: '#6b7280' }, + { name: 'gray-600', color: '#4b5563' }, + { name: 'gray-700', color: '#374151' }, + { name: 'gray-800', color: '#1f2937' }, + { name: 'gray-900', color: '#111827' }, + { name: 'black', color: '#000000' }, + ]; + + public FONTDARK: Array<{ name: string; color: string; }> = [ + { name: 'white', color: '#ffffff' }, + { name: 'gray-50', color: '#f9fafb' }, + { name: 'gray-100', color: '#f3f4f6' }, + { name: 'gray-200', color: '#e5e7eb' }, + { name: 'gray-300', color: '#d1d5db' }, + { name: 'gray-400', color: '#9ca3af' }, + { name: 'gray-500', color: '#6b7280' }, + ]; + + public BACKGROUNDLIGHT: Array<{ name: string; color: string; }> = [ + { name: 'white', color: '#ffffff' }, + { name: 'gray-50', color: '#f9fafb' }, + { name: 'gray-100', color: '#f3f4f6' }, + { name: 'gray-200', color: '#e5e7eb' }, + { name: 'gray-300', color: '#d1d5db' }, + { name: 'gray-400', color: '#9ca3af' }, + { name: 'gray-500', color: '#6b7280' }, + ]; + + public BACKGROUNDDARK: Array<{ name: string; color: string; }> = [ + { name: 'gray-500', color: '#6b7280' }, + { name: 'gray-600', color: '#4b5563' }, + { name: 'gray-700', color: '#374151' }, + { name: 'gray-800', color: '#1f2937' }, + { name: 'gray-900', color: '#111827' }, + { name: 'black', color: '#000000' }, + ]; + + public colors: Array<{ name: string; color: string; }> = this.PRIMARY; + + @Input() colorType: ColorType = ColorType.PRIMARY; + @Input() color: string = ''; + @Input() previewColor: string = ''; + @Input() name: string = ''; + @Output() previewChanged: EventEmitter = new EventEmitter(); + + public emitPreview(color: string): void { + this.previewColor = color; + this.previewChanged.emit(this.previewColor); + } + + ngOnInit(): void { + + switch (this.colorType) { + case ColorType.PRIMARY: + this.colors = this.PRIMARY; + break; + case ColorType.WARN: + this.colors = this.WARN; + break; + case ColorType.FONTDARK: + this.colors = this.FONTDARK; + break; + case ColorType.FONTLIGHT: + this.colors = this.FONTLIGHT; + break; + case ColorType.BACKGROUNDDARK: + this.colors = this.BACKGROUNDDARK; + break; + case ColorType.BACKGROUNDLIGHT: + this.colors = this.BACKGROUNDLIGHT; + break; + default: + this.colors = this.PRIMARY; + break; + } + } +} diff --git a/console/src/app/modules/policies/private-labeling-policy/preview/preview.component.html b/console/src/app/modules/policies/private-labeling-policy/preview/preview.component.html new file mode 100644 index 0000000000..30ae51a4c1 --- /dev/null +++ b/console/src/app/modules/policies/private-labeling-policy/preview/preview.component.html @@ -0,0 +1,30 @@ +
+ {{label}} +
+ +
+
\ No newline at end of file diff --git a/console/src/app/modules/policies/private-labeling-policy/preview/preview.component.scss b/console/src/app/modules/policies/private-labeling-policy/preview/preview.component.scss new file mode 100644 index 0000000000..7e62a99413 --- /dev/null +++ b/console/src/app/modules/policies/private-labeling-policy/preview/preview.component.scss @@ -0,0 +1,92 @@ +.preview { + position: absolute; + left: 0; + width: 100%; + pointer-events: none; + margin-bottom: 2rem; + + * { + pointer-events: none; + } + + .label { + color: var(--grey); + font-size: 12px; + position: absolute; + right: 1rem; + top: 1rem; + } + + .dashed { + border: 2px dashed rgba(#697386, .5); + border-radius: 1rem; + padding: 100px 20px; + + .login-wrapper { + display: flex; + flex-direction: column; + align-items: center; + width: 100%; + max-width: 360px; + margin: auto; + + @media only screen and (min-width: 1000px) { + width: 360px; + } + + img { + max-width: 160px; + max-height: 150px; + margin-bottom: 1rem; + } + + h1 { + font-size: 20px; + } + + .formfield { + width: 100%; + } + + .btn-wrapper { + display: flex; + width: 100%; + justify-content: space-between; + } + + .error-msg { + align-self: flex-start; + display: flex; + flex-direction: row; + align-items: center; + outline: none; + justify-content: flex-start; + + i { + margin-right: .5rem; + } + + span { + font-size: 14px; + margin: 1rem 0; + } + } + } + + &.light { + background: #fff; + + .login-wrapper *:not(.cnsl-label):not(.mat-button-wrapper) { + color: #000; + } + } + + &.dark { + background: #212224; + + .login-wrapper *:not(.cnsl-label):not(.mat-button-wrapper) { + color: #fff; + } + } + } +} diff --git a/console/src/app/modules/policies/private-labeling-policy/preview/preview.component.spec.ts b/console/src/app/modules/policies/private-labeling-policy/preview/preview.component.spec.ts new file mode 100644 index 0000000000..cef168a369 --- /dev/null +++ b/console/src/app/modules/policies/private-labeling-policy/preview/preview.component.spec.ts @@ -0,0 +1,25 @@ +import { ComponentFixture, TestBed } from '@angular/core/testing'; + +import { PreviewComponent } from './preview.component'; + +describe('PreviewComponent', () => { + let component: PreviewComponent; + let fixture: ComponentFixture; + + beforeEach(async () => { + await TestBed.configureTestingModule({ + declarations: [PreviewComponent], + }) + .compileComponents(); + }); + + beforeEach(() => { + fixture = TestBed.createComponent(PreviewComponent); + component = fixture.componentInstance; + fixture.detectChanges(); + }); + + it('should create', () => { + expect(component).toBeTruthy(); + }); +}); diff --git a/console/src/app/modules/policies/private-labeling-policy/preview/preview.component.ts b/console/src/app/modules/policies/private-labeling-policy/preview/preview.component.ts new file mode 100644 index 0000000000..95f12dbb40 --- /dev/null +++ b/console/src/app/modules/policies/private-labeling-policy/preview/preview.component.ts @@ -0,0 +1,35 @@ +import { ChangeDetectorRef, Component, Input, OnDestroy, OnInit } from '@angular/core'; +import { Observable, of, Subject } from 'rxjs'; +import { takeUntil } from 'rxjs/operators'; +import { LabelPolicy } from 'src/app/proto/generated/zitadel/policy_pb'; + +import { Preview, Theme } from '../private-labeling-policy.component'; + +@Component({ + selector: 'cnsl-preview', + templateUrl: './preview.component.html', + styleUrls: ['./preview.component.scss'], +}) +export class PreviewComponent implements OnInit, OnDestroy { + @Input() preview: Preview = Preview.PREVIEW; + @Input() policy!: LabelPolicy.AsObject; + @Input() label: string = 'PREVIEW'; + @Input() images: { [imagekey: string]: any; } = {}; + @Input() theme: Theme = Theme.DARK; + @Input() refresh: Observable = of(); + private destroyed$: Subject = new Subject(); + public Theme: any = Theme; + public Preview: any = Preview; + constructor(private chd: ChangeDetectorRef) { } + + public ngOnInit(): void { + this.refresh.pipe(takeUntil(this.destroyed$)).subscribe(() => { + this.chd.detectChanges(); + }); + } + + public ngOnDestroy(): void { + this.destroyed$.next(); + this.destroyed$.complete(); + } +} diff --git a/console/src/app/modules/policies/private-labeling-policy/private-labeling-policy-routing.module.ts b/console/src/app/modules/policies/private-labeling-policy/private-labeling-policy-routing.module.ts new file mode 100644 index 0000000000..5cbc30bbe1 --- /dev/null +++ b/console/src/app/modules/policies/private-labeling-policy/private-labeling-policy-routing.module.ts @@ -0,0 +1,20 @@ +import { NgModule } from '@angular/core'; +import { RouterModule, Routes } from '@angular/router'; + +import { PrivateLabelingPolicyComponent } from './private-labeling-policy.component'; + +const routes: Routes = [ + { + path: '', + component: PrivateLabelingPolicyComponent, + data: { + animation: 'DetailPage', + }, + }, +]; + +@NgModule({ + imports: [RouterModule.forChild(routes)], + exports: [RouterModule], +}) +export class PrivateLabelingPolicyRoutingModule { } diff --git a/console/src/app/modules/policies/private-labeling-policy/private-labeling-policy.component.html b/console/src/app/modules/policies/private-labeling-policy/private-labeling-policy.component.html new file mode 100644 index 0000000000..e2bd300232 --- /dev/null +++ b/console/src/app/modules/policies/private-labeling-policy/private-labeling-policy.component.html @@ -0,0 +1,254 @@ +
+
+ + arrow_back + +
+

{{'POLICY.PRIVATELABELING.TITLE' | translate}}

+

{{'POLICY.PRIVATELABELING.DESCRIPTION' | translate}}

+
+
+

{{'POLICY.PRIVATELABELING.PREVIEW_DESCRIPTION' | translate}}

+

{{'POLICY.DEFAULTLABEL' | translate}}

+ + + + + + + +
+
+

{{'POLICY.PRIVATELABELING.THEME' | translate}}

+
+ + +
+
+ + +
+ +
+ + + + + +
+ + Logo
+ + + + + + +

Your Logo will be used in the Login itself, while the icon is used for smaller UI elements like in the organisation switcher in console

+ + +
+
+ Logo + + +
+ dark logo preview + + dark logo +
+
+ logo preview + + logo +
+ +
+ +
+
+ +
+ Icon + + +
+ dark icon preview + + dark icon +
+
+ icon preview + + icon +
+ +
+ +
+
+
+ + + + + + +
+ + {{'POLICY.PRIVATELABELING.COLORS' | translate}}
+ + + + + + +
+
+ +
+ +
+ +
+ +
+ +
+ +
+ +
+
+ + + +
+
+ +
+ +
+ +
+ +
+ +
+ +
+ +
+
+ + + + + + +
+ + {{'POLICY.PRIVATELABELING.FONT' | translate}}
+ + +
+
+ text_fields + ABC • abc • 123 + _ + Upload your favorite font for the UI +
+ +
+ +
+
+ + + + + +
+ + {{'POLICY.PRIVATELABELING.ADVANCEDBEHAVIOR' | translate}} +
+ + +
+ + + {{'FEATURES.NOTAVAILABLE' | translate: ({value: + 'label_policy.private_label'})}} + + + + + {{'POLICY.DATA.HIDELOGINNAMESUFFIX' | translate}} + + + + {{'FEATURES.NOTAVAILABLE' | translate: ({value: + 'label_policy.watermark'})}} + + + + {{'POLICY.DATA.DISABLEWATERMARK' | translate}} + +
+ + + +
+ +
+ + + + +
+
+
+ + +
\ No newline at end of file diff --git a/console/src/app/modules/policies/private-labeling-policy/private-labeling-policy.component.scss b/console/src/app/modules/policies/private-labeling-policy/private-labeling-policy.component.scss new file mode 100644 index 0000000000..c28c6c1e78 --- /dev/null +++ b/console/src/app/modules/policies/private-labeling-policy/private-labeling-policy.component.scss @@ -0,0 +1,398 @@ +@use '~@angular/material' as mat; + +@import './preview/preview.component.scss'; + +@mixin private-label-theme($theme) { + $primary: map-get($theme, primary); + $primary-color: mat.get-color-from-palette($primary, 500); + $is-dark-theme: map-get($theme, is-dark); + + .policy { + .header { + display: flex; + + a { + margin: 0 1rem; + } + + .col { + display: flex; + flex-direction: column; + margin-left: 1rem; + + h1 { + margin: 0; + } + } + } + + .default { + color: var(--color-main); + margin-top: 0; + } + + .desc { + font-size: 14px; + color: var(--grey); + max-width: 800px; + margin-bottom: 2rem; + } + + .spinner-wr { + margin: .5rem 0; + } + + .theme-changer { + display: flex; + margin: 1rem -.5rem; + + button { + height: 40px; + width: 40px; + border-radius: 50%; + border: 1px solid #81868a50; + margin: 0 .5rem; + + .icon { + visibility: hidden; + } + } + + .dark { + background-color: black; + + &.active { + .icon { + visibility: visible; + color: white; + } + } + } + + .light { + background-color: white; + + &.active { + .icon { + visibility: visible; + color: black; + } + } + } + } + + .top-row { + display: flex; + justify-content: space-between; + + .activate-button { + border-radius: 50%; + align-self: flex-end; + } + + .theme-changer { + display: flex; + margin: 0 -.25rem; + + button { + height: 40px; + width: 40px; + border-radius: 50%; + border: 1px solid #81868a50; + margin: 0 .25rem; + display: flex; + align-items: center; + justify-content: center; + + .icon { + visibility: hidden; + } + } + + .dark { + background-color: black; + + &.active { + transform: scale(1.1); + + .icon { + visibility: visible; + color: white; + } + } + } + + .light { + background-color: white; + + &.active { + transform: scale(1.1); + + .icon { + visibility: visible; + color: black; + } + } + } + } + } + + .lab-policy-content { + padding-top: 1rem; + display: flex; + flex-direction: column; + margin: 0 -1rem; + + .settings { + flex: 1; + margin: 0 1rem; + margin-bottom: 2rem; + + .expansion { + background: if($is-dark-theme, #2d2e30, #fff) !important; + + .header { + justify-content: flex-start; + } + + .panel-title { + display: flex; + align-items: center; + + .icon { + margin-right: .5rem; + } + } + } + + .description { + width: 100%; + } + + .title { + margin-top: 2rem; + margin-bottom: .5rem; + display: block; + font-size: 18px; + } + + .dropzone { + outline: none; + height: 150px; + width: 100%; + border-radius: 16px; + background: if($is-dark-theme, #2d2e30, #fff); + border: 1px solid if($is-dark-theme, #4a4b4b, #ddd); + display: flex; + justify-content: center; + align-items: center; + flex-direction: column; + transition: all .2s ease-in-out; + + .file-label { + display: flex; + flex-direction: column; + align-items: center; + + .btn { + cursor: pointer; + border-radius: 6px; + padding: .5rem 1rem; + background-color: inherit; + border: 1px solid if($is-dark-theme, #ffffff20, #000); + color: if($is-dark-theme, white, #000); + margin-bottom: .5rem; + } + } + + .icon { + font-size: 1.5rem; + color: var(--grey); + } + + .desc { + font-size: 14px; + color: var(--grey); + } + + &.hovering { + border-radius: 16px; + box-shadow: + if( + $is-dark-theme, + (inset 26px 26px 52px #252628, inset -26px -26px 52px #353638), + (inset 26px 26px 52px #d4d4d4, inset -26px -26px 52px #fff) + ); + + .desc { + color: if($is-dark-theme, white, black); + } + + .icon { + color: if($is-dark-theme, white, black); + } + } + } + + .logo-setup-wrapper { + display: flex; + flex-direction: column; + + .part { + padding-bottom: 1rem; + + .spinner { + margin-bottom: 1rem; + } + + .label { + font-size: 14px; + color: var(--grey); + margin-bottom: 1rem; + display: block; + } + + .logo-view { + width: 100%; + display: flex; + margin-bottom: 1rem; + + .prev, + .curr { + height: 50px; + object-fit: contain; + border-radius: .5rem; + } + + .fill-space { + flex: 1; + } + } + } + } + + .colors { + display: flex; + flex-direction: column; + + .color { + padding-bottom: 1rem; + } + } + + .fonts { + .title { + display: block; + font-size: 14px; + } + + .font-preview { + display: flex; + flex-direction: column; + align-items: center; + padding: 30px 50px; + text-align: center; + } + + .font-selector { + display: flex; + align-items: center; + flex-wrap: wrap; + margin: 0 -.25rem; + width: 100%; + padding-bottom: 1rem; + + .font { + height: 50px; + width: 50px; + display: flex; + justify-content: center; + align-items: center; + border-radius: .5rem; + margin: .25rem; + box-sizing: border-box; + border: 2px solid if($is-dark-theme, #ffffff30, #00000030); + font-size: 1.5rem; + background-color: inherit; + color: inherit; + cursor: pointer; + + &.active { + border: 2px solid if($is-dark-theme, #fff, #000); + } + } + } + } + + .adv-container { + display: flex; + flex-direction: column; + padding-bottom: 50px; + + .info { + margin-bottom: .5rem; + } + + .toggle { + margin-bottom: 1rem; + } + } + } + + .preview-wrapper { + margin: 0 1rem; + flex: 1; + + .col { + display: flex; + flex-direction: column; + align-items: center; + padding-bottom: 2rem; + position: relative; + min-height: 600px; + + .preview-changer { + position: absolute; + top: .5rem; + left: .5rem; + border-radius: 10px !important; + z-index: 1; + + span { + color: if($is-dark-theme, #ffffff50, #00000050); + } + + .strong { + color: if($is-dark-theme, #fff, #000); + font-weight: bold; + font-size: 18px; + } + } + } + } + + @media only screen and (min-width: 1000px) { + flex-direction: row; + justify-content: space-between; + flex-wrap: wrap; + + .preview-wrapper { + .col { + min-width: 400px; + } + } + } + } + + .btn-container { + display: flex; + justify-content: flex-end; + width: 100%; + + button { + margin-top: 3rem; + display: block; + } + } + } +} diff --git a/console/src/app/modules/policies/private-labeling-policy/private-labeling-policy.component.spec.ts b/console/src/app/modules/policies/private-labeling-policy/private-labeling-policy.component.spec.ts new file mode 100644 index 0000000000..32158de8c6 --- /dev/null +++ b/console/src/app/modules/policies/private-labeling-policy/private-labeling-policy.component.spec.ts @@ -0,0 +1,25 @@ +import { ComponentFixture, TestBed, waitForAsync } from '@angular/core/testing'; + +import { PrivateLabelingPolicyComponent } from './private-labeling-policy.component'; + +describe('PrivateLabelingPolicyComponent', () => { + let component: PrivateLabelingPolicyComponent; + let fixture: ComponentFixture; + + beforeEach(waitForAsync(() => { + TestBed.configureTestingModule({ + declarations: [PrivateLabelingPolicyComponent], + }) + .compileComponents(); + })); + + beforeEach(() => { + fixture = TestBed.createComponent(PrivateLabelingPolicyComponent); + component = fixture.componentInstance; + fixture.detectChanges(); + }); + + it('should create', () => { + expect(component).toBeTruthy(); + }); +}); diff --git a/console/src/app/modules/policies/private-labeling-policy/private-labeling-policy.component.ts b/console/src/app/modules/policies/private-labeling-policy/private-labeling-policy.component.ts new file mode 100644 index 0000000000..44f4afbd54 --- /dev/null +++ b/console/src/app/modules/policies/private-labeling-policy/private-labeling-policy.component.ts @@ -0,0 +1,511 @@ +import { HttpErrorResponse } from '@angular/common/http'; +import { Component, EventEmitter, Injector, OnDestroy, Type } from '@angular/core'; +import { DomSanitizer } from '@angular/platform-browser'; +import { ActivatedRoute } from '@angular/router'; +import { Subscription } from 'rxjs'; +import { switchMap } from 'rxjs/operators'; +import { + GetLabelPolicyResponse as AdminGetLabelPolicyResponse, + GetPreviewLabelPolicyResponse as AdminGetPreviewLabelPolicyResponse, + UpdateLabelPolicyRequest, +} from 'src/app/proto/generated/zitadel/admin_pb'; +import { + AddCustomLabelPolicyRequest, + GetLabelPolicyResponse as MgmtGetLabelPolicyResponse, + GetPreviewLabelPolicyResponse as MgmtGetPreviewLabelPolicyResponse, + UpdateCustomLabelPolicyRequest, +} from 'src/app/proto/generated/zitadel/management_pb'; +import { LabelPolicy } from 'src/app/proto/generated/zitadel/policy_pb'; +import { AdminService } from 'src/app/services/admin.service'; +import { ManagementService } from 'src/app/services/mgmt.service'; +import { ToastService } from 'src/app/services/toast.service'; +import { DownloadEndpoint, UploadEndpoint, UploadService } from 'src/app/services/upload.service'; + +import { CnslLinks } from '../../links/links.component'; +import { IAM_COMPLEXITY_LINK, IAM_LOGIN_POLICY_LINK, IAM_POLICY_LINK } from '../../policy-grid/policy-links'; +import { PolicyComponentServiceType } from '../policy-component-types.enum'; + +export enum Theme { + DARK, + LIGHT, +} + +export enum Preview { + CURRENT, + PREVIEW, +} + +export enum ColorType { + BACKGROUND, + PRIMARY, + WARN, + FONTDARK, + FONTLIGHT, + BACKGROUNDDARK, + BACKGROUNDLIGHT, +} + +@Component({ + selector: 'app-private-labeling-policy', + templateUrl: './private-labeling-policy.component.html', + styleUrls: ['./private-labeling-policy.component.scss'], +}) +export class PrivateLabelingPolicyComponent implements OnDestroy { + public theme: Theme = Theme.LIGHT; + public preview: Preview = Preview.PREVIEW; + + public serviceType: PolicyComponentServiceType = PolicyComponentServiceType.MGMT; + public service!: ManagementService | AdminService; + + public previewData!: LabelPolicy.AsObject; + public data!: LabelPolicy.AsObject; + + public images: { [key: string]: any; } = {}; + + public panelOpenState: boolean = false; + public isHoveringOverDarkLogo: boolean = false; + public isHoveringOverDarkIcon: boolean = false; + public isHoveringOverLightLogo: boolean = false; + public isHoveringOverLightIcon: boolean = false; + public isHoveringOverFont: boolean = false; + + private sub: Subscription = new Subscription(); + public PolicyComponentServiceType: any = PolicyComponentServiceType; + + public loading: boolean = false; + public nextLinks: CnslLinks[] = [ + IAM_COMPLEXITY_LINK, + IAM_POLICY_LINK, + IAM_LOGIN_POLICY_LINK, + ]; + + public Theme: any = Theme; + public Preview: any = Preview; + public ColorType: any = ColorType; + + public refreshPreview: EventEmitter = new EventEmitter(); + public loadingImages: boolean = false; + + constructor( + private route: ActivatedRoute, + private toast: ToastService, + private injector: Injector, + private uploadService: UploadService, + private sanitizer: DomSanitizer, + ) { + this.sub = this.route.data.pipe(switchMap(data => { + this.serviceType = data.serviceType; + + switch (this.serviceType) { + case PolicyComponentServiceType.MGMT: + this.service = this.injector.get(ManagementService as Type); + break; + case PolicyComponentServiceType.ADMIN: + this.service = this.injector.get(AdminService as Type); + break; + } + + return this.route.params; + })).subscribe(() => { + this.fetchData(); + }); + } + + public toggleHoverLogo(theme: Theme, isHovering: boolean): void { + if (theme === Theme.DARK) { + this.isHoveringOverDarkLogo = isHovering; + } + if (theme === Theme.LIGHT) { + this.isHoveringOverLightLogo = isHovering; + } + } + + public toggleHoverFont(isHovering: boolean): void { + this.isHoveringOverFont = isHovering; + } + + public onDropLogo(theme: Theme, filelist: FileList): Promise | void { + const file = filelist.item(0); + if (file) { + + const formData = new FormData(); + formData.append('file', file); + if (theme === Theme.DARK) { + switch (this.serviceType) { + case PolicyComponentServiceType.MGMT: + return this.handleUploadPromise(this.uploadService.upload(UploadEndpoint.MGMTDARKLOGO, formData)); + case PolicyComponentServiceType.ADMIN: + return this.handleUploadPromise(this.uploadService.upload(UploadEndpoint.IAMDARKLOGO, formData)); + } + } + if (theme === Theme.LIGHT) { + switch (this.serviceType) { + case PolicyComponentServiceType.MGMT: + return this.handleUploadPromise(this.uploadService.upload(UploadEndpoint.MGMTLIGHTLOGO, formData)); + case PolicyComponentServiceType.ADMIN: + return this.handleUploadPromise(this.uploadService.upload(UploadEndpoint.IAMLIGHTLOGO, formData)); + } + } + + } + } + + public onDropFont(filelist: FileList): Promise | void { + const file = filelist.item(0); + if (file) { + const formData = new FormData(); + formData.append('file', file); + switch (this.serviceType) { + case PolicyComponentServiceType.MGMT: + return this.uploadService.upload(UploadEndpoint.MGMTFONT, formData); + case PolicyComponentServiceType.ADMIN: + return this.uploadService.upload(UploadEndpoint.IAMFONT, formData); + } + } + } + + public toggleHoverIcon(theme: Theme, isHovering: boolean): void { + if (theme === Theme.DARK) { + this.isHoveringOverDarkIcon = isHovering; + } + if (theme === Theme.LIGHT) { + this.isHoveringOverLightIcon = isHovering; + } + } + + public onDropIcon(theme: Theme, filelist: FileList): void { + const file = filelist.item(0); + if (file) { + + const formData = new FormData(); + formData.append('file', file); + if (theme === Theme.DARK) { + switch (this.serviceType) { + case PolicyComponentServiceType.MGMT: + this.handleUploadPromise(this.uploadService.upload(UploadEndpoint.MGMTDARKICON, formData)); + break; + case PolicyComponentServiceType.ADMIN: + this.handleUploadPromise(this.uploadService.upload(UploadEndpoint.IAMDARKICON, formData)); + break; + } + } + if (theme === Theme.LIGHT) { + switch (this.serviceType) { + case PolicyComponentServiceType.MGMT: + this.handleUploadPromise(this.uploadService.upload(UploadEndpoint.MGMTLIGHTICON, formData)); + break; + case PolicyComponentServiceType.ADMIN: + this.handleUploadPromise(this.uploadService.upload(UploadEndpoint.IAMLIGHTICON, formData)); + break; + } + } + } + } + + private handleUploadPromise(task: Promise): Promise { + return task.then(() => { + this.toast.showInfo('POLICY.TOAST.UPLOADSUCCESS', true); + setTimeout(() => { + this.loadingImages = true; + this.getPreviewData().then(data => { + + if (data.policy) { + this.previewData = data.policy; + this.loadPreviewImages(); + } + }); + }, 1000); + }).catch(error => this.toast.showError(error)); + } + + public fetchData(): void { + this.loading = true; + + this.getPreviewData().then(data => { + console.log('preview', data); + this.loadingImages = true; + + if (data.policy) { + this.previewData = data.policy; + this.loading = false; + + this.loadPreviewImages(); + } + }).catch(error => { + this.toast.showError(error); + }); + + this.getData().then(data => { + console.log('data', data); + + if (data.policy) { + this.data = data.policy; + this.loading = false; + + this.loadImages(); + } + }).catch(error => { + this.toast.showError(error); + }); + } + + private loadImages(): void { + if (this.serviceType === PolicyComponentServiceType.ADMIN) { + if (this.data.logoUrlDark) { + this.loadAsset('darkLogo', DownloadEndpoint.IAMDARKLOGOPREVIEW); + } + if (this.data.iconUrlDark) { + this.loadAsset('darkIcon', DownloadEndpoint.IAMDARKICONPREVIEW); + } + if (this.data.logoUrl) { + this.loadAsset('logo', DownloadEndpoint.IAMLOGOPREVIEW); + } + if (this.data.iconUrl) { + this.loadAsset('icon', DownloadEndpoint.IAMICONPREVIEW); + } + } else if (this.serviceType === PolicyComponentServiceType.MGMT) { + if (this.data.logoUrlDark) { + this.loadAsset('darkLogo', DownloadEndpoint.MGMTDARKLOGOPREVIEW); + } + if (this.data.iconUrlDark) { + this.loadAsset('darkIcon', DownloadEndpoint.MGMTDARKICONPREVIEW); + } + if (this.data.logoUrl) { + this.loadAsset('logo', DownloadEndpoint.MGMTLOGOPREVIEW); + } + if (this.data.iconUrl) { + this.loadAsset('icon', DownloadEndpoint.MGMTICONPREVIEW); + } + } + } + + private loadPreviewImages(): void { + if (this.serviceType === PolicyComponentServiceType.ADMIN) { + if (this.previewData.logoUrlDark) { + this.loadAsset('previewDarkLogo', DownloadEndpoint.IAMDARKLOGOPREVIEW); + } + if (this.previewData.iconUrlDark) { + this.loadAsset('previewDarkIcon', DownloadEndpoint.IAMDARKICONPREVIEW); + } + if (this.previewData.logoUrl) { + this.loadAsset('previewLogo', DownloadEndpoint.IAMLOGOPREVIEW); + } + if (this.previewData.iconUrl) { + this.loadAsset('previewIcon', DownloadEndpoint.IAMICONPREVIEW); + } + } else if (this.serviceType === PolicyComponentServiceType.MGMT) { + if (this.previewData.logoUrlDark) { + this.loadAsset('previewDarkLogo', DownloadEndpoint.MGMTDARKLOGOPREVIEW); + } + if (this.previewData.iconUrlDark) { + this.loadAsset('previewDarkIcon', DownloadEndpoint.MGMTDARKICONPREVIEW); + } + if (this.previewData.logoUrl) { + this.loadAsset('previewLogo', DownloadEndpoint.MGMTLOGOPREVIEW); + } + if (this.previewData.iconUrl) { + this.loadAsset('previewIcon', DownloadEndpoint.MGMTICONPREVIEW); + } + } + } + + public ngOnDestroy(): void { + this.sub.unsubscribe(); + } + + private async getPreviewData(): + Promise { + switch (this.serviceType) { + case PolicyComponentServiceType.MGMT: + return (this.service as ManagementService).getPreviewLabelPolicy(); + case PolicyComponentServiceType.ADMIN: + return (this.service as AdminService).getPreviewLabelPolicy(); + } + } + + private async getData(): + Promise { + switch (this.serviceType) { + case PolicyComponentServiceType.MGMT: + return (this.service as ManagementService).getLabelPolicy(); + case PolicyComponentServiceType.ADMIN: + return (this.service as AdminService).getLabelPolicy(); + } + } + + private loadAsset(imagekey: string, url: string): Promise { + return this.uploadService.load(`${url}`).then(data => { + const objectURL = URL.createObjectURL(data); + this.images[imagekey] = this.sanitizer.bypassSecurityTrustUrl(objectURL); + this.refreshPreview.emit(); + this.loadingImages = false; + }).catch(error => { + this.toast.showError(error); + this.loadingImages = false; + }); + } + + public removePolicy(): void { + if (this.service instanceof ManagementService) { + this.service.resetPasswordComplexityPolicyToDefault().then(() => { + this.toast.showInfo('POLICY.TOAST.RESETSUCCESS', true); + setTimeout(() => { + this.fetchData(); + }, 1000); + }).catch(error => { + this.toast.showError(error); + }); + } + } + + public savePolicy(): void { + switch (this.serviceType) { + case PolicyComponentServiceType.MGMT: + if ((this.previewData as LabelPolicy.AsObject).isDefault) { + const req0 = new AddCustomLabelPolicyRequest(); + this.overwriteValues(req0); + + (this.service as ManagementService).addCustomLabelPolicy(req0).then(() => { + this.toast.showInfo('POLICY.TOAST.SET', true); + }).catch((error: HttpErrorResponse) => { + this.toast.showError(error); + }); + } else { + const req1 = new UpdateCustomLabelPolicyRequest(); + this.overwriteValues(req1); + + (this.service as ManagementService).updateCustomLabelPolicy(req1).then(() => { + this.toast.showInfo('POLICY.TOAST.SET', true); + }).catch(error => { + this.toast.showError(error); + }); + } + break; + case PolicyComponentServiceType.ADMIN: + const req = new UpdateLabelPolicyRequest(); + this.overwriteValues(req); + (this.service as AdminService).updateLabelPolicy(req).then(() => { + this.toast.showInfo('POLICY.TOAST.SET', true); + }).catch(error => { + this.toast.showError(error); + }); + break; + } + } + + public saveWatermark(): void { + switch (this.serviceType) { + case PolicyComponentServiceType.MGMT: + if ((this.previewData as LabelPolicy.AsObject).isDefault) { + const req0 = new AddCustomLabelPolicyRequest(); + req0.setDisableWatermark(this.previewData.disableWatermark); + + (this.service as ManagementService).addCustomLabelPolicy(req0).then(() => { + this.toast.showInfo('POLICY.TOAST.SET', true); + }).catch((error: HttpErrorResponse) => { + this.toast.showError(error); + }); + } else { + const req1 = new UpdateCustomLabelPolicyRequest(); + req1.setDisableWatermark(this.previewData.disableWatermark); + + (this.service as ManagementService).updateCustomLabelPolicy(req1).then(() => { + this.toast.showInfo('POLICY.TOAST.SET', true); + }).catch(error => { + this.toast.showError(error); + }); + } + break; + case PolicyComponentServiceType.ADMIN: + const req = new UpdateLabelPolicyRequest(); + req.setDisableWatermark(this.data.disableWatermark); + + (this.service as AdminService).updateLabelPolicy(req).then(() => { + this.toast.showInfo('POLICY.TOAST.SET', true); + }).catch(error => { + this.toast.showError(error); + }); + break; + } + } + + public get isDefault(): boolean { + if (this.previewData && this.serviceType === PolicyComponentServiceType.MGMT) { + return (this.previewData as LabelPolicy.AsObject).isDefault; + } else { + return false; + } + } + + public overwriteValues(req: AddCustomLabelPolicyRequest | UpdateCustomLabelPolicyRequest): void { + req.setBackgroundColorDark(this.previewData.backgroundColorDark); + req.setBackgroundColor(this.previewData.backgroundColor); + + req.setFontColorDark(this.previewData.fontColorDark); + req.setFontColor(this.previewData.fontColor); + + req.setPrimaryColorDark(this.previewData.primaryColorDark); + req.setPrimaryColor(this.previewData.primaryColor); + + req.setWarnColorDark(this.previewData.warnColorDark); + req.setWarnColor(this.previewData.warnColor); + + req.setDisableWatermark(this.previewData.disableWatermark); + req.setHideLoginNameSuffix(this.previewData.hideLoginNameSuffix); + } + + public activatePolicy(): Promise { + // dialog warning + switch (this.serviceType) { + case PolicyComponentServiceType.MGMT: + return (this.service as ManagementService).activateCustomLabelPolicy().then(() => { + this.toast.showInfo('POLICY.PRIVATELABELING.ACTIVATED', true); + setTimeout(() => { + this.loadingImages = true; + this.getData().then(data => { + + if (data.policy) { + this.data = data.policy; + this.loadImages(); + } + }); + }, 1000); + }).catch(error => { + this.toast.showError(error); + }); + case PolicyComponentServiceType.ADMIN: + return (this.service as AdminService).activateLabelPolicy().then(() => { + this.toast.showInfo('POLICY.PRIVATELABELING.ACTIVATED', true); + setTimeout(() => { + this.loadingImages = true; + this.getData().then(data => { + + if (data.policy) { + this.data = data.policy; + this.loadImages(); + } + }); + }, 1000); + }).catch(error => { + this.toast.showError(error); + }); + } + } + + public resetPolicy(): Promise { + return (this.service as ManagementService).resetLabelPolicyToDefault().then(() => { + this.toast.showInfo('POLICY.PRIVATELABELING.RESET', true); + setTimeout(() => { + this.fetchData(); + }); + }).catch(error => { + this.toast.showError(error); + }); + } +} diff --git a/console/src/app/modules/policies/private-labeling-policy/private-labeling-policy.module.ts b/console/src/app/modules/policies/private-labeling-policy/private-labeling-policy.module.ts new file mode 100644 index 0000000000..864c8d0594 --- /dev/null +++ b/console/src/app/modules/policies/private-labeling-policy/private-labeling-policy.module.ts @@ -0,0 +1,50 @@ +import { CommonModule } from '@angular/common'; +import { NgModule } from '@angular/core'; +import { FormsModule } from '@angular/forms'; +import { MatButtonModule } from '@angular/material/button'; +import { MatExpansionModule } from '@angular/material/expansion'; +import { MatIconModule } from '@angular/material/icon'; +import { MatProgressSpinnerModule } from '@angular/material/progress-spinner'; +import { MatSlideToggleModule } from '@angular/material/slide-toggle'; +import { MatTooltipModule } from '@angular/material/tooltip'; +import { TranslateModule } from '@ngx-translate/core'; +import { HasRoleModule } from 'src/app/directives/has-role/has-role.module'; +import { HasFeaturePipeModule } from 'src/app/pipes/has-feature-pipe/has-feature-pipe.module'; + +import { DropzoneModule } from '../../../directives/dropzone/dropzone.module'; +import { DetailLayoutModule } from '../../detail-layout/detail-layout.module'; +import { InfoSectionModule } from '../../info-section/info-section.module'; +import { InputModule } from '../../input/input.module'; +import { LinksModule } from '../../links/links.module'; +import { ColorComponent } from './color/color.component'; +import { PreviewComponent } from './preview/preview.component'; +import { PrivateLabelingPolicyRoutingModule } from './private-labeling-policy-routing.module'; +import { PrivateLabelingPolicyComponent } from './private-labeling-policy.component'; + +@NgModule({ + declarations: [ + PrivateLabelingPolicyComponent, + PreviewComponent, + ColorComponent, + ], + imports: [ + PrivateLabelingPolicyRoutingModule, + CommonModule, + FormsModule, + InputModule, + MatButtonModule, + MatSlideToggleModule, + MatIconModule, + HasRoleModule, + MatTooltipModule, + TranslateModule, + DetailLayoutModule, + DropzoneModule, + MatProgressSpinnerModule, + LinksModule, + MatExpansionModule, + InfoSectionModule, + HasFeaturePipeModule, + ], +}) +export class PrivateLabelingPolicyModule { } diff --git a/console/src/app/modules/policy-grid/policy-grid.component.html b/console/src/app/modules/policy-grid/policy-grid.component.html index fe19598ea8..49bf5b799d 100644 --- a/console/src/app/modules/policy-grid/policy-grid.component.html +++ b/console/src/app/modules/policy-grid/policy-grid.component.html @@ -75,6 +75,38 @@ + +
+
+ +
+
+ {{'POLICY.PRIVATELABELING_POLICY.TITLE' | translate}} + +
+ +

+ {{'POLICY.PRIVATELABELING_POLICY.DESCRIPTION' | translate}}

+ + + +
+ + + +
+
+ +
@@ -101,40 +133,4 @@
- - - -
-
- -
-
- {{'POLICY.LABEL.TITLE' | translate}} - -
- -

- {{'POLICY.LABEL.DESCRIPTION' | translate}}

- - - {{'FEATURES.NOTAVAILABLE' | translate: ({value: - 'label_policy'})}} - - - -
- - - -
-
- - \ No newline at end of file diff --git a/console/src/app/modules/policy-grid/policy-links.ts b/console/src/app/modules/policy-grid/policy-links.ts index d466795fd3..e4dc736554 100644 --- a/console/src/app/modules/policy-grid/policy-links.ts +++ b/console/src/app/modules/policy-grid/policy-links.ts @@ -1,51 +1,58 @@ import { PolicyComponentType } from '../policies/policy-component-types.enum'; export const IAM_COMPLEXITY_LINK = { - i18nTitle: 'POLICY.PWD_COMPLEXITY.TITLE', - i18nDesc: 'POLICY.PWD_COMPLEXITY.DESCRIPTION', - routerLink: ['/iam', 'policy', PolicyComponentType.COMPLEXITY], - withRole: ['iam.policy.read'], + i18nTitle: 'POLICY.PWD_COMPLEXITY.TITLE', + i18nDesc: 'POLICY.PWD_COMPLEXITY.DESCRIPTION', + routerLink: ['/iam', 'policy', PolicyComponentType.COMPLEXITY], + withRole: ['iam.policy.read'], }; export const IAM_POLICY_LINK = { - i18nTitle: 'POLICY.IAM_POLICY.TITLE', - i18nDesc: 'POLICY.IAM_POLICY.DESCRIPTION', - routerLink: ['/iam', 'policy', PolicyComponentType.IAM], - withRole: ['iam.policy.read'], + i18nTitle: 'POLICY.IAM_POLICY.TITLE', + i18nDesc: 'POLICY.IAM_POLICY.DESCRIPTION', + routerLink: ['/iam', 'policy', PolicyComponentType.IAM], + withRole: ['iam.policy.read'], }; export const IAM_LOGIN_POLICY_LINK = { - i18nTitle: 'POLICY.LOGIN_POLICY.TITLE', - i18nDesc: 'POLICY.LOGIN_POLICY.DESCRIPTION', - routerLink: ['/iam', 'policy', PolicyComponentType.LOGIN], - withRole: ['iam.policy.read'], + i18nTitle: 'POLICY.LOGIN_POLICY.TITLE', + i18nDesc: 'POLICY.LOGIN_POLICY.DESCRIPTION', + routerLink: ['/iam', 'policy', PolicyComponentType.LOGIN], + withRole: ['iam.policy.read'], }; -export const IAM_LABEL_LINK = { - i18nTitle: 'POLICY.LABEL.TITLE', - i18nDesc: 'POLICY.LABEL.DESCRIPTION', - routerLink: ['/iam', 'policy', PolicyComponentType.LABEL], - withRole: ['iam.policy.read'], +export const IAM_PRIVATELABEL_LINK = { + i18nTitle: 'POLICY.LABEL.TITLE', + i18nDesc: 'POLICY.LABEL.DESCRIPTION', + routerLink: ['/iam', 'policy', PolicyComponentType.PRIVATELABEL], + withRole: ['iam.policy.read'], }; - export const ORG_COMPLEXITY_LINK = { - i18nTitle: 'POLICY.PWD_COMPLEXITY.TITLE', - i18nDesc: 'POLICY.PWD_COMPLEXITY.DESCRIPTION', - routerLink: ['/org', 'policy', PolicyComponentType.COMPLEXITY], - withRole: ['policy.read'], + i18nTitle: 'POLICY.PWD_COMPLEXITY.TITLE', + i18nDesc: 'POLICY.PWD_COMPLEXITY.DESCRIPTION', + routerLink: ['/org', 'policy', PolicyComponentType.COMPLEXITY], + withRole: ['policy.read'], }; export const ORG_IAM_POLICY_LINK = { - i18nTitle: 'POLICY.IAM_POLICY.TITLE', - i18nDesc: 'POLICY.IAM_POLICY.DESCRIPTION', - routerLink: ['/org', 'policy', PolicyComponentType.IAM], - withRole: ['iam.policy.read'], + i18nTitle: 'POLICY.IAM_POLICY.TITLE', + i18nDesc: 'POLICY.IAM_POLICY.DESCRIPTION', + routerLink: ['/org', 'policy', PolicyComponentType.IAM], + withRole: ['iam.policy.read'], }; export const ORG_LOGIN_POLICY_LINK = { - i18nTitle: 'POLICY.LOGIN_POLICY.TITLE', - i18nDesc: 'POLICY.LOGIN_POLICY.DESCRIPTION', - routerLink: ['/org', 'policy', PolicyComponentType.LOGIN], - withRole: ['policy.read'], + i18nTitle: 'POLICY.LOGIN_POLICY.TITLE', + i18nDesc: 'POLICY.LOGIN_POLICY.DESCRIPTION', + routerLink: ['/org', 'policy', PolicyComponentType.LOGIN], + withRole: ['policy.read'], +}; + + +export const ORG_PRIVATELABEL_LINK = { + i18nTitle: 'POLICY.LABEL.TITLE', + i18nDesc: 'POLICY.LABEL.DESCRIPTION', + routerLink: ['/org', 'policy', PolicyComponentType.PRIVATELABEL], + withRole: ['policy.read'], }; diff --git a/console/src/app/pages/iam/iam-routing.module.ts b/console/src/app/pages/iam/iam-routing.module.ts index 14a66c6045..6a067367d9 100644 --- a/console/src/app/pages/iam/iam-routing.module.ts +++ b/console/src/app/pages/iam/iam-routing.module.ts @@ -9,119 +9,119 @@ import { EventstoreComponent } from './eventstore/eventstore.component'; import { IamComponent } from './iam.component'; const routes: Routes = [ - { - path: 'policies', - component: IamComponent, + { + path: 'policies', + component: IamComponent, + canActivate: [AuthGuard, RoleGuard], + data: { + roles: ['iam.read'], + }, + }, + { + path: 'eventstore', + component: EventstoreComponent, + canActivate: [AuthGuard, RoleGuard], + data: { + roles: ['iam.read'], + }, + }, + { + path: 'members', + loadChildren: () => import('./iam-members/iam-members.module').then(m => m.IamMembersModule), + canActivate: [AuthGuard, RoleGuard], + data: { + roles: ['iam.member.read'], + }, + }, + { + path: 'features', + loadChildren: () => import('src/app/modules/features/features.module').then(m => m.FeaturesModule), + // canActivate: [RoleGuard], + data: { + roles: ['iam.features.read'], + serviceType: FeatureServiceType.ADMIN, + }, + }, + { + path: 'idp', + children: [ + { + path: 'create', + loadChildren: () => import('src/app/modules/idp-create/idp-create.module').then(m => m.IdpCreateModule), canActivate: [AuthGuard, RoleGuard], data: { - roles: ['iam.read'], + roles: ['iam.idp.write'], + serviceType: PolicyComponentServiceType.ADMIN, }, - }, - { - path: 'eventstore', - component: EventstoreComponent, + }, + { + path: ':id', + loadChildren: () => import('src/app/modules/idp/idp.module').then(m => m.IdpModule), canActivate: [AuthGuard, RoleGuard], data: { - roles: ['iam.read'], + roles: ['iam.idp.read'], + serviceType: PolicyComponentServiceType.ADMIN, }, - }, - { - path: 'members', - loadChildren: () => import('./iam-members/iam-members.module').then(m => m.IamMembersModule), - canActivate: [AuthGuard, RoleGuard], + }, + ], + }, + { + path: 'policy', + children: [ + { + path: PolicyComponentType.AGE, data: { - roles: ['iam.member.read'], + serviceType: PolicyComponentServiceType.ADMIN, }, - }, - { - path: 'features', - loadChildren: () => import('src/app/modules/features/features.module').then(m => m.FeaturesModule), - // canActivate: [RoleGuard], + loadChildren: () => import('src/app/modules/policies/password-age-policy/password-age-policy.module') + .then(m => m.PasswordAgePolicyModule), + }, + { + path: PolicyComponentType.LOCKOUT, data: { - roles: ['iam.features.read'], - serviceType: FeatureServiceType.ADMIN, + serviceType: PolicyComponentServiceType.ADMIN, }, - }, - { - path: 'idp', - children: [ - { - path: 'create', - loadChildren: () => import('src/app/modules/idp-create/idp-create.module').then(m => m.IdpCreateModule), - canActivate: [AuthGuard, RoleGuard], - data: { - roles: ['iam.idp.write'], - serviceType: PolicyComponentServiceType.ADMIN, - }, - }, - { - path: ':id', - loadChildren: () => import('src/app/modules/idp/idp.module').then(m => m.IdpModule), - canActivate: [AuthGuard, RoleGuard], - data: { - roles: ['iam.idp.read'], - serviceType: PolicyComponentServiceType.ADMIN, - }, - }, - ], - }, - { - path: 'policy', - children: [ - { - path: PolicyComponentType.AGE, - data: { - serviceType: PolicyComponentServiceType.ADMIN, - }, - loadChildren: () => import('src/app/modules/policies/password-age-policy/password-age-policy.module') - .then(m => m.PasswordAgePolicyModule), - }, - { - path: PolicyComponentType.LOCKOUT, - data: { - serviceType: PolicyComponentServiceType.ADMIN, - }, - loadChildren: () => import('src/app/modules/policies/password-lockout-policy/password-lockout-policy.module') - .then(m => m.PasswordLockoutPolicyModule), - }, - { - path: PolicyComponentType.COMPLEXITY, - data: { - serviceType: PolicyComponentServiceType.ADMIN, - }, - loadChildren: () => import('src/app/modules/policies/password-complexity-policy/password-complexity-policy.module') - .then(m => m.PasswordComplexityPolicyModule), - }, - { - path: PolicyComponentType.IAM, - data: { - serviceType: PolicyComponentServiceType.ADMIN, - }, - loadChildren: () => import('src/app/modules/policies/org-iam-policy/org-iam-policy.module') - .then(m => m.OrgIamPolicyModule), - }, - { - path: PolicyComponentType.LOGIN, - data: { - serviceType: PolicyComponentServiceType.ADMIN, - }, - loadChildren: () => import('src/app/modules/policies/login-policy/login-policy.module') - .then(m => m.LoginPolicyModule), - }, - { - path: PolicyComponentType.LABEL, - data: { - serviceType: PolicyComponentServiceType.ADMIN, - }, - loadChildren: () => import('src/app/modules/policies/label-policy/label-policy.module') - .then(m => m.LabelPolicyModule), - }, - ], - }, + loadChildren: () => import('src/app/modules/policies/password-lockout-policy/password-lockout-policy.module') + .then(m => m.PasswordLockoutPolicyModule), + }, + { + path: PolicyComponentType.PRIVATELABEL, + data: { + serviceType: PolicyComponentServiceType.ADMIN, + }, + loadChildren: () => import('src/app/modules/policies/private-labeling-policy/private-labeling-policy.module') + .then(m => m.PrivateLabelingPolicyModule), + }, + { + path: PolicyComponentType.COMPLEXITY, + data: { + serviceType: PolicyComponentServiceType.ADMIN, + }, + loadChildren: () => import('src/app/modules/policies/password-complexity-policy/password-complexity-policy.module') + .then(m => m.PasswordComplexityPolicyModule), + }, + { + path: PolicyComponentType.IAM, + data: { + serviceType: PolicyComponentServiceType.ADMIN, + }, + loadChildren: () => import('src/app/modules/policies/org-iam-policy/org-iam-policy.module') + .then(m => m.OrgIamPolicyModule), + }, + { + path: PolicyComponentType.LOGIN, + data: { + serviceType: PolicyComponentServiceType.ADMIN, + }, + loadChildren: () => import('src/app/modules/policies/login-policy/login-policy.module') + .then(m => m.LoginPolicyModule), + }, + ], + }, ]; @NgModule({ - imports: [RouterModule.forChild(routes)], - exports: [RouterModule], + imports: [RouterModule.forChild(routes)], + exports: [RouterModule], }) export class IamRoutingModule { } diff --git a/console/src/app/pages/orgs/org-detail/org-detail.component.scss b/console/src/app/pages/orgs/org-detail/org-detail.component.scss index da6de4408c..ea1d6cff11 100644 --- a/console/src/app/pages/orgs/org-detail/org-detail.component.scss +++ b/console/src/app/pages/orgs/org-detail/org-detail.component.scss @@ -73,7 +73,7 @@ h2 { .new-desc { font-size: 14px; - color: #818a8a; + color: var(--grey); } .custom-domain-deactivated { diff --git a/console/src/app/pages/orgs/orgs-routing.module.ts b/console/src/app/pages/orgs/orgs-routing.module.ts index 9c150ab31c..8a25d68b6e 100644 --- a/console/src/app/pages/orgs/orgs-routing.module.ts +++ b/console/src/app/pages/orgs/orgs-routing.module.ts @@ -8,108 +8,116 @@ import { OrgCreateComponent } from './org-create/org-create.component'; import { OrgDetailComponent } from './org-detail/org-detail.component'; const routes: Routes = [ - { + { + path: 'create', + component: OrgCreateComponent, + canActivate: [RoleGuard], + data: { + roles: ['(org.create)?(iam.write)?'], + }, + loadChildren: () => import('./org-create/org-create.module').then(m => m.OrgCreateModule), + }, + { + path: 'idp', + children: [ + { path: 'create', - component: OrgCreateComponent, + loadChildren: () => import('src/app/modules/idp-create/idp-create.module').then(m => m.IdpCreateModule), canActivate: [RoleGuard], data: { - roles: ['(org.create)?(iam.write)?'], + roles: ['org.idp.write'], + serviceType: PolicyComponentServiceType.MGMT, }, - loadChildren: () => import('./org-create/org-create.module').then(m => m.OrgCreateModule), - }, - { - path: 'idp', - children: [ - { - path: 'create', - loadChildren: () => import('src/app/modules/idp-create/idp-create.module').then(m => m.IdpCreateModule), - canActivate: [RoleGuard], - data: { - roles: ['org.idp.write'], - serviceType: PolicyComponentServiceType.MGMT, - }, - }, - { - path: ':id', - loadChildren: () => import('src/app/modules/idp/idp.module').then(m => m.IdpModule), - canActivate: [RoleGuard], - data: { - roles: ['iam.idp.read'], - serviceType: PolicyComponentServiceType.MGMT, - }, - }, - ], - }, - { - path: 'features', - loadChildren: () => import('src/app/modules/features/features.module').then(m => m.FeaturesModule), + }, + { + path: ':id', + loadChildren: () => import('src/app/modules/idp/idp.module').then(m => m.IdpModule), canActivate: [RoleGuard], data: { - roles: ['features.read'], - serviceType: FeatureServiceType.MGMT, + roles: ['iam.idp.read'], + serviceType: PolicyComponentServiceType.MGMT, }, + }, + ], + }, + { + path: 'features', + loadChildren: () => import('src/app/modules/features/features.module').then(m => m.FeaturesModule), + canActivate: [RoleGuard], + data: { + roles: ['features.read'], + serviceType: FeatureServiceType.MGMT, }, - { - path: 'policy', - children: [ - { - path: PolicyComponentType.AGE, - data: { - serviceType: PolicyComponentServiceType.MGMT, - }, - loadChildren: () => import('src/app/modules/policies/password-age-policy/password-age-policy.module') - .then(m => m.PasswordAgePolicyModule), - }, - { - path: PolicyComponentType.LOCKOUT, - data: { - serviceType: PolicyComponentServiceType.MGMT, - }, - loadChildren: () => import('src/app/modules/policies/password-lockout-policy/password-lockout-policy.module') - .then(m => m.PasswordLockoutPolicyModule), - }, - { - path: PolicyComponentType.COMPLEXITY, - data: { - serviceType: PolicyComponentServiceType.MGMT, - }, - loadChildren: () => import('src/app/modules/policies/password-complexity-policy/password-complexity-policy.module') - .then(m => m.PasswordComplexityPolicyModule), - }, - { - path: PolicyComponentType.IAM, - data: { - serviceType: PolicyComponentServiceType.MGMT, - }, - loadChildren: () => import('src/app/modules/policies/org-iam-policy/org-iam-policy.module') - .then(m => m.OrgIamPolicyModule), - }, - { - path: PolicyComponentType.LOGIN, - data: { - serviceType: PolicyComponentServiceType.MGMT, - }, - loadChildren: () => import('src/app/modules/policies/login-policy/login-policy.module') - .then(m => m.LoginPolicyModule), - }, - ], - }, - { - path: 'members', - loadChildren: () => import('./org-members/org-members.module').then(m => m.OrgMembersModule), - }, - { - path: '', - component: OrgDetailComponent, - }, - { - path: 'overview', - loadChildren: () => import('./org-list/org-list.module').then(m => m.OrgListModule), - }, + }, + { + path: 'policy', + children: [ + { + path: PolicyComponentType.AGE, + data: { + serviceType: PolicyComponentServiceType.MGMT, + }, + loadChildren: () => import('src/app/modules/policies/password-age-policy/password-age-policy.module') + .then(m => m.PasswordAgePolicyModule), + }, + { + path: PolicyComponentType.LOCKOUT, + data: { + serviceType: PolicyComponentServiceType.MGMT, + }, + loadChildren: () => import('src/app/modules/policies/password-lockout-policy/password-lockout-policy.module') + .then(m => m.PasswordLockoutPolicyModule), + }, + { + path: PolicyComponentType.PRIVATELABEL, + data: { + serviceType: PolicyComponentServiceType.MGMT, + }, + loadChildren: () => import('src/app/modules/policies/private-labeling-policy/private-labeling-policy.module') + .then(m => m.PrivateLabelingPolicyModule), + }, + { + path: PolicyComponentType.COMPLEXITY, + data: { + serviceType: PolicyComponentServiceType.MGMT, + }, + loadChildren: () => import('src/app/modules/policies/password-complexity-policy/password-complexity-policy.module') + .then(m => m.PasswordComplexityPolicyModule), + }, + { + path: PolicyComponentType.IAM, + data: { + serviceType: PolicyComponentServiceType.MGMT, + }, + loadChildren: () => import('src/app/modules/policies/org-iam-policy/org-iam-policy.module') + .then(m => m.OrgIamPolicyModule), + }, + { + path: PolicyComponentType.LOGIN, + data: { + serviceType: PolicyComponentServiceType.MGMT, + }, + loadChildren: () => import('src/app/modules/policies/login-policy/login-policy.module') + .then(m => m.LoginPolicyModule), + }, + ], + }, + { + path: 'members', + loadChildren: () => import('./org-members/org-members.module').then(m => m.OrgMembersModule), + }, + { + path: '', + component: OrgDetailComponent, + }, + { + path: 'overview', + loadChildren: () => import('./org-list/org-list.module').then(m => m.OrgListModule), + }, ]; @NgModule({ - imports: [RouterModule.forChild(routes)], - exports: [RouterModule], + imports: [RouterModule.forChild(routes)], + exports: [RouterModule], }) export class OrgsRoutingModule { } diff --git a/console/src/app/services/admin.service.ts b/console/src/app/services/admin.service.ts index beaf8b93a4..61155a54b1 100644 --- a/console/src/app/services/admin.service.ts +++ b/console/src/app/services/admin.service.ts @@ -1,492 +1,547 @@ import { Injectable } from '@angular/core'; import { - AddCustomOrgIAMPolicyRequest, - AddCustomOrgIAMPolicyResponse, - AddIAMMemberRequest, - AddIAMMemberResponse, - AddIDPToLoginPolicyRequest, - AddIDPToLoginPolicyResponse, - AddMultiFactorToLoginPolicyRequest, - AddMultiFactorToLoginPolicyResponse, - AddOIDCIDPRequest, - AddOIDCIDPResponse, - AddSecondFactorToLoginPolicyRequest, - AddSecondFactorToLoginPolicyResponse, - ClearViewRequest, - ClearViewResponse, - DeactivateIDPRequest, - DeactivateIDPResponse, - GetCustomOrgIAMPolicyRequest, - GetCustomOrgIAMPolicyResponse, - GetDefaultFeaturesRequest, - GetDefaultFeaturesResponse, - GetIDPByIDRequest, - GetIDPByIDResponse, - GetLabelPolicyRequest, - GetLabelPolicyResponse, - GetLoginPolicyRequest, - GetLoginPolicyResponse, - GetOrgFeaturesRequest, - GetOrgFeaturesResponse, - GetOrgIAMPolicyRequest, - GetOrgIAMPolicyResponse, - GetPasswordAgePolicyRequest, - GetPasswordAgePolicyResponse, - GetPasswordComplexityPolicyRequest, - GetPasswordComplexityPolicyResponse, - GetPasswordLockoutPolicyRequest, - GetPasswordLockoutPolicyResponse, - IDPQuery, - ListFailedEventsRequest, - ListFailedEventsResponse, - ListIAMMemberRolesRequest, - ListIAMMemberRolesResponse, - ListIAMMembersRequest, - ListIAMMembersResponse, - ListIDPsRequest, - ListIDPsResponse, - ListLoginPolicyIDPsRequest, - ListLoginPolicyIDPsResponse, - ListLoginPolicyMultiFactorsRequest, - ListLoginPolicyMultiFactorsResponse, - ListLoginPolicySecondFactorsRequest, - ListLoginPolicySecondFactorsResponse, - ListViewsRequest, - ListViewsResponse, - ReactivateIDPRequest, - ReactivateIDPResponse, - RemoveFailedEventRequest, - RemoveFailedEventResponse, - RemoveIAMMemberRequest, - RemoveIAMMemberResponse, - RemoveIDPFromLoginPolicyRequest, - RemoveIDPFromLoginPolicyResponse, - RemoveIDPRequest, - RemoveIDPResponse, - RemoveMultiFactorFromLoginPolicyRequest, - RemoveMultiFactorFromLoginPolicyResponse, - RemoveSecondFactorFromLoginPolicyRequest, - RemoveSecondFactorFromLoginPolicyResponse, - ResetCustomOrgIAMPolicyToDefaultRequest, - ResetCustomOrgIAMPolicyToDefaultResponse, - ResetOrgFeaturesRequest, - ResetOrgFeaturesResponse, - SetDefaultFeaturesRequest, - SetDefaultFeaturesResponse, - SetOrgFeaturesRequest, - SetOrgFeaturesResponse, - SetUpOrgRequest, - SetUpOrgResponse, - UpdateCustomOrgIAMPolicyRequest, - UpdateCustomOrgIAMPolicyResponse, - UpdateIAMMemberRequest, - UpdateIAMMemberResponse, - UpdateIDPOIDCConfigRequest, - UpdateIDPOIDCConfigResponse, - UpdateIDPRequest, - UpdateIDPResponse, - UpdateLabelPolicyRequest, - UpdateLabelPolicyResponse, - UpdateLoginPolicyRequest, - UpdateLoginPolicyResponse, - UpdateOrgIAMPolicyRequest, - UpdateOrgIAMPolicyResponse, - UpdatePasswordAgePolicyRequest, - UpdatePasswordAgePolicyResponse, - UpdatePasswordComplexityPolicyRequest, - UpdatePasswordComplexityPolicyResponse, - UpdatePasswordLockoutPolicyRequest, - UpdatePasswordLockoutPolicyResponse, + ActivateLabelPolicyRequest, + ActivateLabelPolicyResponse, + AddCustomOrgIAMPolicyRequest, + AddCustomOrgIAMPolicyResponse, + AddIAMMemberRequest, + AddIAMMemberResponse, + AddIDPToLoginPolicyRequest, + AddIDPToLoginPolicyResponse, + AddMultiFactorToLoginPolicyRequest, + AddMultiFactorToLoginPolicyResponse, + AddOIDCIDPRequest, + AddOIDCIDPResponse, + AddSecondFactorToLoginPolicyRequest, + AddSecondFactorToLoginPolicyResponse, + ClearViewRequest, + ClearViewResponse, + DeactivateIDPRequest, + DeactivateIDPResponse, + GetCustomOrgIAMPolicyRequest, + GetCustomOrgIAMPolicyResponse, + GetDefaultFeaturesRequest, + GetDefaultFeaturesResponse, + GetIDPByIDRequest, + GetIDPByIDResponse, + GetLabelPolicyRequest, + GetLabelPolicyResponse, + GetLoginPolicyRequest, + GetLoginPolicyResponse, + GetOrgFeaturesRequest, + GetOrgFeaturesResponse, + GetOrgIAMPolicyRequest, + GetOrgIAMPolicyResponse, + GetPasswordAgePolicyRequest, + GetPasswordAgePolicyResponse, + GetPasswordComplexityPolicyRequest, + GetPasswordComplexityPolicyResponse, + GetPasswordLockoutPolicyRequest, + GetPasswordLockoutPolicyResponse, + GetPreviewLabelPolicyRequest, + GetPreviewLabelPolicyResponse, + IDPQuery, + ListFailedEventsRequest, + ListFailedEventsResponse, + ListIAMMemberRolesRequest, + ListIAMMemberRolesResponse, + ListIAMMembersRequest, + ListIAMMembersResponse, + ListIDPsRequest, + ListIDPsResponse, + ListLoginPolicyIDPsRequest, + ListLoginPolicyIDPsResponse, + ListLoginPolicyMultiFactorsRequest, + ListLoginPolicyMultiFactorsResponse, + ListLoginPolicySecondFactorsRequest, + ListLoginPolicySecondFactorsResponse, + ListViewsRequest, + ListViewsResponse, + ReactivateIDPRequest, + ReactivateIDPResponse, + RemoveFailedEventRequest, + RemoveFailedEventResponse, + RemoveIAMMemberRequest, + RemoveIAMMemberResponse, + RemoveIDPFromLoginPolicyRequest, + RemoveIDPFromLoginPolicyResponse, + RemoveIDPRequest, + RemoveIDPResponse, + RemoveLabelPolicyFontRequest, + RemoveLabelPolicyFontResponse, + RemoveLabelPolicyIconDarkRequest, + RemoveLabelPolicyIconDarkResponse, + RemoveLabelPolicyIconRequest, + RemoveLabelPolicyIconResponse, + RemoveLabelPolicyLogoDarkRequest, + RemoveLabelPolicyLogoDarkResponse, + RemoveLabelPolicyLogoRequest, + RemoveLabelPolicyLogoResponse, + RemoveMultiFactorFromLoginPolicyRequest, + RemoveMultiFactorFromLoginPolicyResponse, + RemoveSecondFactorFromLoginPolicyRequest, + RemoveSecondFactorFromLoginPolicyResponse, + ResetCustomOrgIAMPolicyToDefaultRequest, + ResetCustomOrgIAMPolicyToDefaultResponse, + ResetOrgFeaturesRequest, + ResetOrgFeaturesResponse, + SetDefaultFeaturesRequest, + SetDefaultFeaturesResponse, + SetOrgFeaturesRequest, + SetOrgFeaturesResponse, + SetUpOrgRequest, + SetUpOrgResponse, + UpdateCustomOrgIAMPolicyRequest, + UpdateCustomOrgIAMPolicyResponse, + UpdateIAMMemberRequest, + UpdateIAMMemberResponse, + UpdateIDPOIDCConfigRequest, + UpdateIDPOIDCConfigResponse, + UpdateIDPRequest, + UpdateIDPResponse, + UpdateLabelPolicyRequest, + UpdateLabelPolicyResponse, + UpdateLoginPolicyRequest, + UpdateLoginPolicyResponse, + UpdateOrgIAMPolicyRequest, + UpdateOrgIAMPolicyResponse, + UpdatePasswordAgePolicyRequest, + UpdatePasswordAgePolicyResponse, + UpdatePasswordComplexityPolicyRequest, + UpdatePasswordComplexityPolicyResponse, + UpdatePasswordLockoutPolicyRequest, + UpdatePasswordLockoutPolicyResponse, } from '../proto/generated/zitadel/admin_pb'; import { SearchQuery } from '../proto/generated/zitadel/member_pb'; import { ListQuery } from '../proto/generated/zitadel/object_pb'; import { GrpcService } from './grpc.service'; @Injectable({ - providedIn: 'root', + providedIn: 'root', }) export class AdminService { - constructor(private readonly grpcService: GrpcService) { } + constructor(private readonly grpcService: GrpcService) { } - public SetUpOrg( - org: SetUpOrgRequest.Org, - human: SetUpOrgRequest.Human, - ): Promise { - const req = new SetUpOrgRequest(); + public SetUpOrg( + org: SetUpOrgRequest.Org, + human: SetUpOrgRequest.Human, + ): Promise { + const req = new SetUpOrgRequest(); - req.setOrg(org); - req.setHuman(human); + req.setOrg(org); + req.setHuman(human); - return this.grpcService.admin.setUpOrg(req, null).then(resp => resp.toObject()); + return this.grpcService.admin.setUpOrg(req, null).then(resp => resp.toObject()); + } + + public listLoginPolicyMultiFactors(): Promise { + const req = new ListLoginPolicyMultiFactorsRequest(); + return this.grpcService.admin.listLoginPolicyMultiFactors(req, null).then(resp => resp.toObject()); + } + + public addMultiFactorToLoginPolicy(req: AddMultiFactorToLoginPolicyRequest): + Promise { + return this.grpcService.admin.addMultiFactorToLoginPolicy(req, null).then(resp => resp.toObject()); + } + + public removeMultiFactorFromLoginPolicy(req: RemoveMultiFactorFromLoginPolicyRequest): + Promise { + return this.grpcService.admin.removeMultiFactorFromLoginPolicy(req, null).then(resp => resp.toObject()); + } + + public listLoginPolicySecondFactors(): Promise { + const req = new ListLoginPolicySecondFactorsRequest(); + return this.grpcService.admin.listLoginPolicySecondFactors(req, null).then(resp => resp.toObject()); + } + + public addSecondFactorToLoginPolicy(req: AddSecondFactorToLoginPolicyRequest): + Promise { + return this.grpcService.admin.addSecondFactorToLoginPolicy(req, null).then(resp => resp.toObject()); + } + + public removeSecondFactorFromLoginPolicy(req: RemoveSecondFactorFromLoginPolicyRequest): + Promise { + return this.grpcService.admin.removeSecondFactorFromLoginPolicy(req, null).then(resp => resp.toObject()); + } + + public listIAMMemberRoles(): Promise { + const req = new ListIAMMemberRolesRequest(); + return this.grpcService.admin.listIAMMemberRoles(req, null).then(resp => resp.toObject()); + } + + public listViews(): Promise { + const req = new ListViewsRequest(); + return this.grpcService.admin.listViews(req, null).then(resp => resp.toObject()); + } + + public listFailedEvents(): Promise { + const req = new ListFailedEventsRequest(); + return this.grpcService.admin.listFailedEvents(req, null).then(resp => resp.toObject()); + } + + public clearView(viewname: string, db: string): Promise { + const req = new ClearViewRequest(); + req.setDatabase(db); + req.setViewName(viewname); + return this.grpcService.admin.clearView(req, null).then(resp => resp.toObject()); + } + + public removeFailedEvent(viewname: string, db: string, sequence: number): Promise { + const req = new RemoveFailedEventRequest(); + req.setDatabase(db); + req.setViewName(viewname); + req.setFailedSequence(sequence); + return this.grpcService.admin.removeFailedEvent(req, null).then(resp => resp.toObject()); + } + + // Features + + public getOrgFeatures(orgId: string): Promise { + const req = new GetOrgFeaturesRequest(); + req.setOrgId(orgId); + return this.grpcService.admin.getOrgFeatures(req, null).then(resp => resp.toObject()); + } + + public setOrgFeatures(req: SetOrgFeaturesRequest): Promise { + return this.grpcService.admin.setOrgFeatures(req, null).then(resp => resp.toObject()); + } + + public resetOrgFeatures(orgId: string): Promise { + const req = new ResetOrgFeaturesRequest(); + req.setOrgId(orgId); + return this.grpcService.admin.resetOrgFeatures(req, null).then(resp => resp.toObject()); + } + + public getDefaultFeatures(): Promise { + const req = new GetDefaultFeaturesRequest(); + return this.grpcService.admin.getDefaultFeatures(req, null).then(resp => resp.toObject()); + } + + public setDefaultFeatures(req: SetDefaultFeaturesRequest): Promise { + return this.grpcService.admin.setDefaultFeatures(req, null).then(resp => resp.toObject()); + } + + /* Policies */ + + /* complexity */ + + public getPasswordComplexityPolicy(): Promise { + const req = new GetPasswordComplexityPolicyRequest(); + return this.grpcService.admin.getPasswordComplexityPolicy(req, null).then(resp => resp.toObject()); + } + + public updatePasswordComplexityPolicy( + hasLowerCase: boolean, + hasUpperCase: boolean, + hasNumber: boolean, + hasSymbol: boolean, + minLength: number, + ): Promise { + const req = new UpdatePasswordComplexityPolicyRequest(); + req.setHasLowercase(hasLowerCase); + req.setHasUppercase(hasUpperCase); + req.setHasNumber(hasNumber); + req.setHasSymbol(hasSymbol); + req.setMinLength(minLength); + return this.grpcService.admin.updatePasswordComplexityPolicy(req, null).then(resp => resp.toObject()); + } + + /* age */ + + public getPasswordAgePolicy(): Promise { + const req = new GetPasswordAgePolicyRequest(); + + return this.grpcService.admin.getPasswordAgePolicy(req, null).then(resp => resp.toObject()); + } + + public updatePasswordAgePolicy( + maxAgeDays: number, + expireWarnDays: number, + ): Promise { + const req = new UpdatePasswordAgePolicyRequest(); + req.setMaxAgeDays(maxAgeDays); + req.setExpireWarnDays(expireWarnDays); + + return this.grpcService.admin.updatePasswordAgePolicy(req, null).then(resp => resp.toObject()); + } + + /* lockout */ + + public getPasswordLockoutPolicy(): Promise { + const req = new GetPasswordLockoutPolicyRequest(); + return this.grpcService.admin.getPasswordLockoutPolicy(req, null).then(resp => resp.toObject()); + } + + public updatePasswordLockoutPolicy( + maxAttempts: number, + showLockoutFailures: boolean, + ): Promise { + const req = new UpdatePasswordLockoutPolicyRequest(); + req.setMaxAttempts(maxAttempts); + req.setShowLockoutFailure(showLockoutFailures); + + return this.grpcService.admin.updatePasswordLockoutPolicy(req, null).then(resp => resp.toObject()); + } + + /* label */ + + public getLabelPolicy(): Promise { + const req = new GetLabelPolicyRequest(); + return this.grpcService.admin.getLabelPolicy(req, null).then(resp => resp.toObject()); + } + + public updateLabelPolicy(req: UpdateLabelPolicyRequest): Promise { + return this.grpcService.admin.updateLabelPolicy(req, null).then(resp => resp.toObject()); + } + + public getPreviewLabelPolicy(): Promise { + const req = new GetPreviewLabelPolicyRequest(); + return this.grpcService.admin.getPreviewLabelPolicy(req, null).then(resp => resp.toObject()); + } + + public activateLabelPolicy(): + Promise { + const req = new ActivateLabelPolicyRequest(); + return this.grpcService.admin.activateLabelPolicy(req, null).then(resp => resp.toObject()); + } + + public removeLabelPolicyFont(): + Promise { + const req = new RemoveLabelPolicyFontRequest(); + return this.grpcService.admin.removeLabelPolicyFont(req, null).then(resp => resp.toObject()); + } + + public removeLabelPolicyIcon(): + Promise { + const req = new RemoveLabelPolicyIconRequest(); + return this.grpcService.admin.removeLabelPolicyIcon(req, null).then(resp => resp.toObject()); + } + + public removeLabelPolicyIconDark(): + Promise { + const req = new RemoveLabelPolicyIconDarkRequest(); + return this.grpcService.admin.removeLabelPolicyIconDark(req, null).then(resp => resp.toObject()); + } + + public removeLabelPolicyLogo(): + Promise { + const req = new RemoveLabelPolicyLogoRequest(); + return this.grpcService.admin.removeLabelPolicyLogo(req, null).then(resp => resp.toObject()); + } + + public removeLabelPolicyLogoDark(): + Promise { + const req = new RemoveLabelPolicyLogoDarkRequest(); + return this.grpcService.admin.removeLabelPolicyLogoDark(req, null).then(resp => resp.toObject()); + } + + /* login */ + + public getLoginPolicy( + ): Promise { + const req = new GetLoginPolicyRequest(); + return this.grpcService.admin.getLoginPolicy(req, null).then(resp => resp.toObject()); + } + + public updateLoginPolicy(req: UpdateLoginPolicyRequest): Promise { + return this.grpcService.admin.updateLoginPolicy(req, null).then(resp => resp.toObject()); + } + + /* org iam */ + + public getCustomOrgIAMPolicy(orgId: string): Promise { + const req = new GetCustomOrgIAMPolicyRequest(); + req.setOrgId(orgId); + return this.grpcService.admin.getCustomOrgIAMPolicy(req, null).then(resp => resp.toObject()); + } + + public addCustomOrgIAMPolicy( + orgId: string, + userLoginMustBeDomain: boolean): Promise { + const req = new AddCustomOrgIAMPolicyRequest(); + req.setOrgId(orgId); + req.setUserLoginMustBeDomain(userLoginMustBeDomain); + + return this.grpcService.admin.addCustomOrgIAMPolicy(req, null).then(resp => resp.toObject()); + } + + public updateCustomOrgIAMPolicy( + orgId: string, + userLoginMustBeDomain: boolean): Promise { + const req = new UpdateCustomOrgIAMPolicyRequest(); + req.setOrgId(orgId); + req.setUserLoginMustBeDomain(userLoginMustBeDomain); + return this.grpcService.admin.updateCustomOrgIAMPolicy(req, null).then(resp => resp.toObject()); + } + + public resetCustomOrgIAMPolicyToDefault( + orgId: string, + ): Promise { + const req = new ResetCustomOrgIAMPolicyToDefaultRequest(); + req.setOrgId(orgId); + return this.grpcService.admin.resetCustomOrgIAMPolicyToDefault(req, null).then(resp => resp.toObject()); + } + + /* admin iam */ + + public getOrgIAMPolicy(): Promise { + const req = new GetOrgIAMPolicyRequest(); + return this.grpcService.admin.getOrgIAMPolicy(req, null).then(resp => resp.toObject()); + } + + public updateOrgIAMPolicy(userLoginMustBeDomain: boolean): Promise { + const req = new UpdateOrgIAMPolicyRequest(); + req.setUserLoginMustBeDomain(userLoginMustBeDomain); + return this.grpcService.admin.updateOrgIAMPolicy(req, null).then(resp => resp.toObject()); + } + + /* policies end */ + + public addIDPToLoginPolicy(idpId: string): Promise { + const req = new AddIDPToLoginPolicyRequest(); + req.setIdpId(idpId); + return this.grpcService.admin.addIDPToLoginPolicy(req, null).then(resp => resp.toObject()); + } + + public removeIDPFromLoginPolicy(idpId: string): Promise { + const req = new RemoveIDPFromLoginPolicyRequest(); + req.setIdpId(idpId); + return this.grpcService.admin.removeIDPFromLoginPolicy(req, null).then(resp => resp.toObject()); + } + + public listLoginPolicyIDPs(limit?: number, offset?: number): Promise { + const req = new ListLoginPolicyIDPsRequest(); + const query = new ListQuery(); + if (limit) { + query.setLimit(limit); } - - public listLoginPolicyMultiFactors(): Promise { - const req = new ListLoginPolicyMultiFactorsRequest(); - return this.grpcService.admin.listLoginPolicyMultiFactors(req, null).then(resp => resp.toObject()); + if (offset) { + query.setOffset(offset); } + req.setQuery(query); + return this.grpcService.admin.listLoginPolicyIDPs(req, null).then(resp => resp.toObject()); + } - public addMultiFactorToLoginPolicy(req: AddMultiFactorToLoginPolicyRequest): - Promise { - return this.grpcService.admin.addMultiFactorToLoginPolicy(req, null).then(resp => resp.toObject()); + public listIDPs( + limit?: number, + offset?: number, + queriesList?: IDPQuery[], + ): Promise { + const req = new ListIDPsRequest(); + const query = new ListQuery(); + + if (limit) { + query.setLimit(limit); } - - public removeMultiFactorFromLoginPolicy(req: RemoveMultiFactorFromLoginPolicyRequest): - Promise { - return this.grpcService.admin.removeMultiFactorFromLoginPolicy(req, null).then(resp => resp.toObject()); + if (offset) { + query.setOffset(offset); } - - public listLoginPolicySecondFactors(): Promise { - const req = new ListLoginPolicySecondFactorsRequest(); - return this.grpcService.admin.listLoginPolicySecondFactors(req, null).then(resp => resp.toObject()); + if (queriesList) { + req.setQueriesList(queriesList); } + req.setQuery(query); + return this.grpcService.admin.listIDPs(req, null).then(resp => resp.toObject()); + } - public addSecondFactorToLoginPolicy(req: AddSecondFactorToLoginPolicyRequest): - Promise { - return this.grpcService.admin.addSecondFactorToLoginPolicy(req, null).then(resp => resp.toObject()); + public getIDPByID( + id: string, + ): Promise { + const req = new GetIDPByIDRequest(); + req.setId(id); + return this.grpcService.admin.getIDPByID(req, null).then(resp => resp.toObject()); + } + + public updateIDP( + req: UpdateIDPRequest, + ): Promise { + return this.grpcService.admin.updateIDP(req, null).then(resp => resp.toObject()); + } + + public addOIDCIDP( + req: AddOIDCIDPRequest, + ): Promise { + return this.grpcService.admin.addOIDCIDP(req, null).then(resp => resp.toObject()); + } + + public updateIDPOIDCConfig( + req: UpdateIDPOIDCConfigRequest, + ): Promise { + return this.grpcService.admin.updateIDPOIDCConfig(req, null).then(resp => resp.toObject()); + } + + public removeIDP( + id: string, + ): Promise { + const req = new RemoveIDPRequest; + req.setIdpId(id); + return this.grpcService.admin.removeIDP(req, null).then(resp => resp.toObject()); + } + + public deactivateIDP( + id: string, + ): Promise { + const req = new DeactivateIDPRequest; + req.setIdpId(id); + return this.grpcService.admin.deactivateIDP(req, null).then(resp => resp.toObject()); + } + + public reactivateIDP( + id: string, + ): Promise { + const req = new ReactivateIDPRequest; + req.setIdpId(id); + return this.grpcService.admin.reactivateIDP(req, null).then(resp => resp.toObject()); + } + + public listIAMMembers( + limit: number, + offset: number, + queriesList?: SearchQuery[], + ): Promise { + const req = new ListIAMMembersRequest(); + const metadata = new ListQuery(); + if (limit) { + metadata.setLimit(limit); } - - public removeSecondFactorFromLoginPolicy(req: RemoveSecondFactorFromLoginPolicyRequest): - Promise { - return this.grpcService.admin.removeSecondFactorFromLoginPolicy(req, null).then(resp => resp.toObject()); + if (offset) { + metadata.setOffset(offset); } - - public listIAMMemberRoles(): Promise { - const req = new ListIAMMemberRolesRequest(); - return this.grpcService.admin.listIAMMemberRoles(req, null).then(resp => resp.toObject()); + if (queriesList) { + req.setQueriesList(queriesList); } + req.setQuery(metadata); - public listViews(): Promise { - const req = new ListViewsRequest(); - return this.grpcService.admin.listViews(req, null).then(resp => resp.toObject()); - } + return this.grpcService.admin.listIAMMembers(req, null).then(resp => resp.toObject()); + } - public listFailedEvents(): Promise { - const req = new ListFailedEventsRequest(); - return this.grpcService.admin.listFailedEvents(req, null).then(resp => resp.toObject()); - } + public removeIAMMember( + userId: string, + ): Promise { + const req = new RemoveIAMMemberRequest(); + req.setUserId(userId); + return this.grpcService.admin.removeIAMMember(req, null).then(resp => resp.toObject()); + } - public clearView(viewname: string, db: string): Promise { - const req = new ClearViewRequest(); - req.setDatabase(db); - req.setViewName(viewname); - return this.grpcService.admin.clearView(req, null).then(resp => resp.toObject()); - } + public addIAMMember( + userId: string, + rolesList: string[], + ): Promise { + const req = new AddIAMMemberRequest(); + req.setUserId(userId); + req.setRolesList(rolesList); - public removeFailedEvent(viewname: string, db: string, sequence: number): Promise { - const req = new RemoveFailedEventRequest(); - req.setDatabase(db); - req.setViewName(viewname); - req.setFailedSequence(sequence); - return this.grpcService.admin.removeFailedEvent(req, null).then(resp => resp.toObject()); - } + return this.grpcService.admin.addIAMMember(req, null).then(resp => resp.toObject()); + } - // Features + public updateIAMMember( + userId: string, + rolesList: string[], + ): Promise { + const req = new UpdateIAMMemberRequest(); + req.setUserId(userId); + req.setRolesList(rolesList); - public getOrgFeatures(orgId: string): Promise { - const req = new GetOrgFeaturesRequest(); - req.setOrgId(orgId); - return this.grpcService.admin.getOrgFeatures(req, null).then(resp => resp.toObject()); - } - - public setOrgFeatures(req: SetOrgFeaturesRequest): Promise { - return this.grpcService.admin.setOrgFeatures(req, null).then(resp => resp.toObject()); - } - - public resetOrgFeatures(orgId: string): Promise { - const req = new ResetOrgFeaturesRequest(); - req.setOrgId(orgId); - return this.grpcService.admin.resetOrgFeatures(req, null).then(resp => resp.toObject()); - } - - public getDefaultFeatures(): Promise { - const req = new GetDefaultFeaturesRequest(); - return this.grpcService.admin.getDefaultFeatures(req, null).then(resp => resp.toObject()); - } - - public setDefaultFeatures(req: SetDefaultFeaturesRequest): Promise { - return this.grpcService.admin.setDefaultFeatures(req, null).then(resp => resp.toObject()); - } - - /* Policies */ - - /* complexity */ - - public getPasswordComplexityPolicy(): Promise { - const req = new GetPasswordComplexityPolicyRequest(); - return this.grpcService.admin.getPasswordComplexityPolicy(req, null).then(resp => resp.toObject()); - } - - public updatePasswordComplexityPolicy( - hasLowerCase: boolean, - hasUpperCase: boolean, - hasNumber: boolean, - hasSymbol: boolean, - minLength: number, - ): Promise { - const req = new UpdatePasswordComplexityPolicyRequest(); - req.setHasLowercase(hasLowerCase); - req.setHasUppercase(hasUpperCase); - req.setHasNumber(hasNumber); - req.setHasSymbol(hasSymbol); - req.setMinLength(minLength); - return this.grpcService.admin.updatePasswordComplexityPolicy(req, null).then(resp => resp.toObject()); - } - - /* age */ - - public getPasswordAgePolicy(): Promise { - const req = new GetPasswordAgePolicyRequest(); - - return this.grpcService.admin.getPasswordAgePolicy(req, null).then(resp => resp.toObject()); - } - - public updatePasswordAgePolicy( - maxAgeDays: number, - expireWarnDays: number, - ): Promise { - const req = new UpdatePasswordAgePolicyRequest(); - req.setMaxAgeDays(maxAgeDays); - req.setExpireWarnDays(expireWarnDays); - - return this.grpcService.admin.updatePasswordAgePolicy(req, null).then(resp => resp.toObject()); - } - - /* lockout */ - - public getPasswordLockoutPolicy(): Promise { - const req = new GetPasswordLockoutPolicyRequest(); - return this.grpcService.admin.getPasswordLockoutPolicy(req, null).then(resp => resp.toObject()); - } - - public updatePasswordLockoutPolicy( - maxAttempts: number, - showLockoutFailures: boolean, - ): Promise { - const req = new UpdatePasswordLockoutPolicyRequest(); - req.setMaxAttempts(maxAttempts); - req.setShowLockoutFailure(showLockoutFailures); - - return this.grpcService.admin.updatePasswordLockoutPolicy(req, null).then(resp => resp.toObject()); - } - - /* label */ - - public getLabelPolicy(): Promise { - const req = new GetLabelPolicyRequest(); - return this.grpcService.admin.getLabelPolicy(req, null).then(resp => resp.toObject()); - } - - public updateLabelPolicy(req: UpdateLabelPolicyRequest): Promise { - return this.grpcService.admin.updateLabelPolicy(req, null).then(resp => resp.toObject()); - } - - /* login */ - - public getLoginPolicy( - ): Promise { - const req = new GetLoginPolicyRequest(); - return this.grpcService.admin.getLoginPolicy(req, null).then(resp => resp.toObject()); - } - - public updateLoginPolicy(req: UpdateLoginPolicyRequest): Promise { - return this.grpcService.admin.updateLoginPolicy(req, null).then(resp => resp.toObject()); - } - - /* org iam */ - - public getCustomOrgIAMPolicy(orgId: string): Promise { - const req = new GetCustomOrgIAMPolicyRequest(); - req.setOrgId(orgId); - return this.grpcService.admin.getCustomOrgIAMPolicy(req, null).then(resp => resp.toObject()); - } - - public addCustomOrgIAMPolicy( - orgId: string, - userLoginMustBeDomain: boolean): Promise { - const req = new AddCustomOrgIAMPolicyRequest(); - req.setOrgId(orgId); - req.setUserLoginMustBeDomain(userLoginMustBeDomain); - - return this.grpcService.admin.addCustomOrgIAMPolicy(req, null).then(resp => resp.toObject()); - } - - public updateCustomOrgIAMPolicy( - orgId: string, - userLoginMustBeDomain: boolean): Promise { - const req = new UpdateCustomOrgIAMPolicyRequest(); - req.setOrgId(orgId); - req.setUserLoginMustBeDomain(userLoginMustBeDomain); - return this.grpcService.admin.updateCustomOrgIAMPolicy(req, null).then(resp => resp.toObject()); - } - - public resetCustomOrgIAMPolicyToDefault( - orgId: string, - ): Promise { - const req = new ResetCustomOrgIAMPolicyToDefaultRequest(); - req.setOrgId(orgId); - return this.grpcService.admin.resetCustomOrgIAMPolicyToDefault(req, null).then(resp => resp.toObject()); - } - - /* admin iam */ - - public getOrgIAMPolicy(): Promise { - const req = new GetOrgIAMPolicyRequest(); - return this.grpcService.admin.getOrgIAMPolicy(req, null).then(resp => resp.toObject()); - } - - public updateOrgIAMPolicy(userLoginMustBeDomain: boolean): Promise { - const req = new UpdateOrgIAMPolicyRequest(); - req.setUserLoginMustBeDomain(userLoginMustBeDomain); - return this.grpcService.admin.updateOrgIAMPolicy(req, null).then(resp => resp.toObject()); - } - - /* policies end */ - - public addIDPToLoginPolicy(idpId: string): Promise { - const req = new AddIDPToLoginPolicyRequest(); - req.setIdpId(idpId); - return this.grpcService.admin.addIDPToLoginPolicy(req, null).then(resp => resp.toObject()); - } - - public removeIDPFromLoginPolicy(idpId: string): Promise { - const req = new RemoveIDPFromLoginPolicyRequest(); - req.setIdpId(idpId); - return this.grpcService.admin.removeIDPFromLoginPolicy(req, null).then(resp => resp.toObject()); - } - - public listLoginPolicyIDPs(limit?: number, offset?: number): Promise { - const req = new ListLoginPolicyIDPsRequest(); - const query = new ListQuery(); - if (limit) { - query.setLimit(limit); - } - if (offset) { - query.setOffset(offset); - } - req.setQuery(query); - return this.grpcService.admin.listLoginPolicyIDPs(req, null).then(resp => resp.toObject()); - } - - public listIDPs( - limit?: number, - offset?: number, - queriesList?: IDPQuery[], - ): Promise { - const req = new ListIDPsRequest(); - const query = new ListQuery(); - - if (limit) { - query.setLimit(limit); - } - if (offset) { - query.setOffset(offset); - } - if (queriesList) { - req.setQueriesList(queriesList); - } - req.setQuery(query); - return this.grpcService.admin.listIDPs(req, null).then(resp => resp.toObject()); - } - - public getIDPByID( - id: string, - ): Promise { - const req = new GetIDPByIDRequest(); - req.setId(id); - return this.grpcService.admin.getIDPByID(req, null).then(resp => resp.toObject()); - } - - public updateIDP( - req: UpdateIDPRequest, - ): Promise { - return this.grpcService.admin.updateIDP(req, null).then(resp => resp.toObject()); - } - - public addOIDCIDP( - req: AddOIDCIDPRequest, - ): Promise { - return this.grpcService.admin.addOIDCIDP(req, null).then(resp => resp.toObject()); - } - - public updateIDPOIDCConfig( - req: UpdateIDPOIDCConfigRequest, - ): Promise { - return this.grpcService.admin.updateIDPOIDCConfig(req, null).then(resp => resp.toObject()); - } - - public removeIDP( - id: string, - ): Promise { - const req = new RemoveIDPRequest; - req.setIdpId(id); - return this.grpcService.admin.removeIDP(req, null).then(resp => resp.toObject()); - } - - public deactivateIDP( - id: string, - ): Promise { - const req = new DeactivateIDPRequest; - req.setIdpId(id); - return this.grpcService.admin.deactivateIDP(req, null).then(resp => resp.toObject()); - } - - public reactivateIDP( - id: string, - ): Promise { - const req = new ReactivateIDPRequest; - req.setIdpId(id); - return this.grpcService.admin.reactivateIDP(req, null).then(resp => resp.toObject()); - } - - public listIAMMembers( - limit: number, - offset: number, - queriesList?: SearchQuery[], - ): Promise { - const req = new ListIAMMembersRequest(); - const metadata = new ListQuery(); - if (limit) { - metadata.setLimit(limit); - } - if (offset) { - metadata.setOffset(offset); - } - if (queriesList) { - req.setQueriesList(queriesList); - } - req.setQuery(metadata); - - return this.grpcService.admin.listIAMMembers(req, null).then(resp => resp.toObject()); - } - - public removeIAMMember( - userId: string, - ): Promise { - const req = new RemoveIAMMemberRequest(); - req.setUserId(userId); - return this.grpcService.admin.removeIAMMember(req, null).then(resp => resp.toObject()); - } - - public addIAMMember( - userId: string, - rolesList: string[], - ): Promise { - const req = new AddIAMMemberRequest(); - req.setUserId(userId); - req.setRolesList(rolesList); - - return this.grpcService.admin.addIAMMember(req, null).then(resp => resp.toObject()); - } - - public updateIAMMember( - userId: string, - rolesList: string[], - ): Promise { - const req = new UpdateIAMMemberRequest(); - req.setUserId(userId); - req.setRolesList(rolesList); - - return this.grpcService.admin.updateIAMMember(req, null).then(resp => resp.toObject()); - } + return this.grpcService.admin.updateIAMMember(req, null).then(resp => resp.toObject()); + } } diff --git a/console/src/app/services/mgmt.service.ts b/console/src/app/services/mgmt.service.ts index 4e46b71018..7b9800580d 100644 --- a/console/src/app/services/mgmt.service.ts +++ b/console/src/app/services/mgmt.service.ts @@ -3,291 +3,317 @@ import { Empty } from 'google-protobuf/google/protobuf/empty_pb'; import { Timestamp } from 'google-protobuf/google/protobuf/timestamp_pb'; import { BehaviorSubject } from 'rxjs'; +import { + RemoveLabelPolicyFontRequest, + RemoveLabelPolicyFontResponse, + RemoveLabelPolicyIconDarkRequest, + RemoveLabelPolicyIconDarkResponse, + RemoveLabelPolicyIconRequest, + RemoveLabelPolicyIconResponse, + RemoveLabelPolicyLogoDarkRequest, + RemoveLabelPolicyLogoDarkResponse, +} from '../proto/generated/zitadel/admin_pb'; import { AppQuery } from '../proto/generated/zitadel/app_pb'; import { KeyType } from '../proto/generated/zitadel/auth_n_key_pb'; import { ChangeQuery } from '../proto/generated/zitadel/change_pb'; import { IDPOwnerType } from '../proto/generated/zitadel/idp_pb'; import { - AddAPIAppRequest, - AddAPIAppResponse, - AddAppKeyRequest, - AddAppKeyResponse, - AddCustomLoginPolicyRequest, - AddCustomLoginPolicyResponse, - AddCustomPasswordAgePolicyRequest, - AddCustomPasswordAgePolicyResponse, - AddCustomPasswordComplexityPolicyRequest, - AddCustomPasswordComplexityPolicyResponse, - AddCustomPasswordLockoutPolicyRequest, - AddCustomPasswordLockoutPolicyResponse, - AddHumanUserRequest, - AddHumanUserResponse, - AddIDPToLoginPolicyRequest, - AddIDPToLoginPolicyResponse, - AddMachineKeyRequest, - AddMachineKeyResponse, - AddMachineUserRequest, - AddMachineUserResponse, - AddMultiFactorToLoginPolicyRequest, - AddMultiFactorToLoginPolicyResponse, - AddOIDCAppRequest, - AddOIDCAppResponse, - AddOrgDomainRequest, - AddOrgDomainResponse, - AddOrgMemberRequest, - AddOrgMemberResponse, - AddOrgOIDCIDPRequest, - AddOrgOIDCIDPResponse, - AddOrgRequest, - AddOrgResponse, - AddProjectGrantMemberRequest, - AddProjectGrantMemberResponse, - AddProjectGrantRequest, - AddProjectGrantResponse, - AddProjectMemberRequest, - AddProjectMemberResponse, - AddProjectRequest, - AddProjectResponse, - AddProjectRoleRequest, - AddProjectRoleResponse, - AddSecondFactorToLoginPolicyRequest, - AddSecondFactorToLoginPolicyResponse, - AddUserGrantRequest, - AddUserGrantResponse, - BulkAddProjectRolesRequest, - BulkAddProjectRolesResponse, - BulkRemoveUserGrantRequest, - BulkRemoveUserGrantResponse, - DeactivateAppRequest, - DeactivateAppResponse, - DeactivateOrgIDPRequest, - DeactivateOrgIDPResponse, - DeactivateOrgRequest, - DeactivateOrgResponse, - DeactivateProjectGrantRequest, - DeactivateProjectGrantResponse, - DeactivateProjectRequest, - DeactivateProjectResponse, - DeactivateUserRequest, - DeactivateUserResponse, - GenerateOrgDomainValidationRequest, - GenerateOrgDomainValidationResponse, - GetAppByIDRequest, - GetAppByIDResponse, - GetDefaultPasswordComplexityPolicyRequest, - GetDefaultPasswordComplexityPolicyResponse, - GetFeaturesRequest, - GetFeaturesResponse, - GetGrantedProjectByIDRequest, - GetGrantedProjectByIDResponse, - GetHumanEmailRequest, - GetHumanEmailResponse, - GetHumanPhoneRequest, - GetHumanPhoneResponse, - GetHumanProfileRequest, - GetHumanProfileResponse, - GetIAMRequest, - GetIAMResponse, - GetLoginPolicyRequest, - GetLoginPolicyResponse, - GetMyOrgRequest, - GetMyOrgResponse, - GetOIDCInformationRequest, - GetOIDCInformationResponse, - GetOrgByDomainGlobalRequest, - GetOrgByDomainGlobalResponse, - GetOrgIAMPolicyRequest, - GetOrgIAMPolicyResponse, - GetOrgIDPByIDRequest, - GetOrgIDPByIDResponse, - GetPasswordAgePolicyRequest, - GetPasswordAgePolicyResponse, - GetPasswordComplexityPolicyRequest, - GetPasswordComplexityPolicyResponse, - GetPasswordLockoutPolicyRequest, - GetPasswordLockoutPolicyResponse, - GetProjectByIDRequest, - GetProjectByIDResponse, - GetProjectGrantByIDRequest, - GetProjectGrantByIDResponse, - GetUserByIDRequest, - GetUserByIDResponse, - GetUserByLoginNameGlobalRequest, - GetUserByLoginNameGlobalResponse, - GetUserGrantByIDRequest, - GetUserGrantByIDResponse, - IDPQuery, - ListAppChangesRequest, - ListAppChangesResponse, - ListAppKeysRequest, - ListAppKeysResponse, - ListAppsRequest, - ListAppsResponse, - ListGrantedProjectsRequest, - ListGrantedProjectsResponse, - ListHumanAuthFactorsRequest, - ListHumanAuthFactorsResponse, - ListHumanLinkedIDPsRequest, - ListHumanLinkedIDPsResponse, - ListHumanPasswordlessRequest, - ListHumanPasswordlessResponse, - ListLoginPolicyIDPsRequest, - ListLoginPolicyIDPsResponse, - ListLoginPolicyMultiFactorsRequest, - ListLoginPolicyMultiFactorsResponse, - ListLoginPolicySecondFactorsResponse, - ListMachineKeysRequest, - ListMachineKeysResponse, - ListOrgChangesRequest, - ListOrgChangesResponse, - ListOrgDomainsRequest, - ListOrgDomainsResponse, - ListOrgIDPsRequest, - ListOrgIDPsResponse, - ListOrgMemberRolesRequest, - ListOrgMemberRolesResponse, - ListOrgMembersRequest, - ListOrgMembersResponse, - ListProjectChangesRequest, - ListProjectChangesResponse, - ListProjectGrantMemberRolesRequest, - ListProjectGrantMemberRolesResponse, - ListProjectGrantMembersRequest, - ListProjectGrantMembersResponse, - ListProjectGrantsRequest, - ListProjectGrantsResponse, - ListProjectMemberRolesRequest, - ListProjectMemberRolesResponse, - ListProjectMembersRequest, - ListProjectMembersResponse, - ListProjectRolesRequest, - ListProjectRolesResponse, - ListProjectsRequest, - ListProjectsResponse, - ListUserChangesRequest, - ListUserChangesResponse, - ListUserGrantRequest, - ListUserGrantResponse, - ListUserMembershipsRequest, - ListUserMembershipsResponse, - ListUsersRequest, - ListUsersResponse, - ReactivateAppRequest, - ReactivateAppResponse, - ReactivateOrgIDPRequest, - ReactivateOrgIDPResponse, - ReactivateOrgRequest, - ReactivateOrgResponse, - ReactivateProjectGrantRequest, - ReactivateProjectGrantResponse, - ReactivateProjectRequest, - ReactivateProjectResponse, - ReactivateUserRequest, - ReactivateUserResponse, - RegenerateAPIClientSecretRequest, - RegenerateAPIClientSecretResponse, - RegenerateOIDCClientSecretRequest, - RegenerateOIDCClientSecretResponse, - RemoveAppKeyRequest, - RemoveAppKeyResponse, - RemoveAppRequest, - RemoveAppResponse, - RemoveHumanAuthFactorOTPRequest, - RemoveHumanAuthFactorOTPResponse, - RemoveHumanAuthFactorU2FRequest, - RemoveHumanAuthFactorU2FResponse, - RemoveHumanLinkedIDPRequest, - RemoveHumanLinkedIDPResponse, - RemoveHumanPasswordlessRequest, - RemoveHumanPasswordlessResponse, - RemoveHumanPhoneRequest, - RemoveHumanPhoneResponse, - RemoveIDPFromLoginPolicyRequest, - RemoveIDPFromLoginPolicyResponse, - RemoveMachineKeyRequest, - RemoveMachineKeyResponse, - RemoveMultiFactorFromLoginPolicyRequest, - RemoveMultiFactorFromLoginPolicyResponse, - RemoveOrgDomainRequest, - RemoveOrgDomainResponse, - RemoveOrgIDPRequest, - RemoveOrgIDPResponse, - RemoveOrgMemberRequest, - RemoveOrgMemberResponse, - RemoveProjectGrantMemberRequest, - RemoveProjectGrantMemberResponse, - RemoveProjectGrantRequest, - RemoveProjectGrantResponse, - RemoveProjectMemberRequest, - RemoveProjectMemberResponse, - RemoveProjectRequest, - RemoveProjectResponse, - RemoveProjectRoleRequest, - RemoveProjectRoleResponse, - RemoveSecondFactorFromLoginPolicyRequest, - RemoveSecondFactorFromLoginPolicyResponse, - RemoveUserGrantRequest, - RemoveUserGrantResponse, - RemoveUserRequest, - RemoveUserResponse, - ResendHumanEmailVerificationRequest, - ResendHumanInitializationRequest, - ResendHumanInitializationResponse, - ResendHumanPhoneVerificationRequest, - ResetLoginPolicyToDefaultRequest, - ResetLoginPolicyToDefaultResponse, - ResetPasswordAgePolicyToDefaultRequest, - ResetPasswordAgePolicyToDefaultResponse, - ResetPasswordComplexityPolicyToDefaultRequest, - ResetPasswordComplexityPolicyToDefaultResponse, - ResetPasswordLockoutPolicyToDefaultRequest, - ResetPasswordLockoutPolicyToDefaultResponse, - SendHumanResetPasswordNotificationRequest, - SetHumanInitialPasswordRequest, - SetPrimaryOrgDomainRequest, - SetPrimaryOrgDomainResponse, - UpdateAPIAppConfigRequest, - UpdateAPIAppConfigResponse, - UpdateAppRequest, - UpdateAppResponse, - UpdateCustomLoginPolicyRequest, - UpdateCustomLoginPolicyResponse, - UpdateCustomPasswordAgePolicyRequest, - UpdateCustomPasswordAgePolicyResponse, - UpdateCustomPasswordComplexityPolicyRequest, - UpdateCustomPasswordComplexityPolicyResponse, - UpdateCustomPasswordLockoutPolicyRequest, - UpdateCustomPasswordLockoutPolicyResponse, - UpdateHumanEmailRequest, - UpdateHumanEmailResponse, - UpdateHumanPhoneRequest, - UpdateHumanPhoneResponse, - UpdateHumanProfileRequest, - UpdateHumanProfileResponse, - UpdateMachineRequest, - UpdateMachineResponse, - UpdateOIDCAppConfigRequest, - UpdateOIDCAppConfigResponse, - UpdateOrgIDPOIDCConfigRequest, - UpdateOrgIDPOIDCConfigResponse, - UpdateOrgIDPRequest, - UpdateOrgIDPResponse, - UpdateOrgMemberRequest, - UpdateOrgMemberResponse, - UpdateProjectGrantMemberRequest, - UpdateProjectGrantMemberResponse, - UpdateProjectGrantRequest, - UpdateProjectGrantResponse, - UpdateProjectMemberRequest, - UpdateProjectMemberResponse, - UpdateProjectRequest, - UpdateProjectResponse, - UpdateProjectRoleRequest, - UpdateProjectRoleResponse, - UpdateUserGrantRequest, - UpdateUserGrantResponse, - ValidateOrgDomainRequest, - ValidateOrgDomainResponse, + ActivateCustomLabelPolicyRequest, + ActivateCustomLabelPolicyResponse, + AddAPIAppRequest, + AddAPIAppResponse, + AddAppKeyRequest, + AddAppKeyResponse, + AddCustomLabelPolicyRequest, + AddCustomLabelPolicyResponse, + AddCustomLoginPolicyRequest, + AddCustomLoginPolicyResponse, + AddCustomPasswordAgePolicyRequest, + AddCustomPasswordAgePolicyResponse, + AddCustomPasswordComplexityPolicyRequest, + AddCustomPasswordComplexityPolicyResponse, + AddCustomPasswordLockoutPolicyRequest, + AddCustomPasswordLockoutPolicyResponse, + AddHumanUserRequest, + AddHumanUserResponse, + AddIDPToLoginPolicyRequest, + AddIDPToLoginPolicyResponse, + AddMachineKeyRequest, + AddMachineKeyResponse, + AddMachineUserRequest, + AddMachineUserResponse, + AddMultiFactorToLoginPolicyRequest, + AddMultiFactorToLoginPolicyResponse, + AddOIDCAppRequest, + AddOIDCAppResponse, + AddOrgDomainRequest, + AddOrgDomainResponse, + AddOrgMemberRequest, + AddOrgMemberResponse, + AddOrgOIDCIDPRequest, + AddOrgOIDCIDPResponse, + AddOrgRequest, + AddOrgResponse, + AddProjectGrantMemberRequest, + AddProjectGrantMemberResponse, + AddProjectGrantRequest, + AddProjectGrantResponse, + AddProjectMemberRequest, + AddProjectMemberResponse, + AddProjectRequest, + AddProjectResponse, + AddProjectRoleRequest, + AddProjectRoleResponse, + AddSecondFactorToLoginPolicyRequest, + AddSecondFactorToLoginPolicyResponse, + AddUserGrantRequest, + AddUserGrantResponse, + BulkAddProjectRolesRequest, + BulkAddProjectRolesResponse, + BulkRemoveUserGrantRequest, + BulkRemoveUserGrantResponse, + DeactivateAppRequest, + DeactivateAppResponse, + DeactivateOrgIDPRequest, + DeactivateOrgIDPResponse, + DeactivateOrgRequest, + DeactivateOrgResponse, + DeactivateProjectGrantRequest, + DeactivateProjectGrantResponse, + DeactivateProjectRequest, + DeactivateProjectResponse, + DeactivateUserRequest, + DeactivateUserResponse, + GenerateOrgDomainValidationRequest, + GenerateOrgDomainValidationResponse, + GetAppByIDRequest, + GetAppByIDResponse, + GetDefaultLabelPolicyRequest, + GetDefaultLabelPolicyResponse, + GetDefaultPasswordComplexityPolicyRequest, + GetDefaultPasswordComplexityPolicyResponse, + GetFeaturesRequest, + GetFeaturesResponse, + GetGrantedProjectByIDRequest, + GetGrantedProjectByIDResponse, + GetHumanEmailRequest, + GetHumanEmailResponse, + GetHumanPhoneRequest, + GetHumanPhoneResponse, + GetHumanProfileRequest, + GetHumanProfileResponse, + GetIAMRequest, + GetIAMResponse, + GetLabelPolicyRequest, + GetLabelPolicyResponse, + GetLoginPolicyRequest, + GetLoginPolicyResponse, + GetMyOrgRequest, + GetMyOrgResponse, + GetOIDCInformationRequest, + GetOIDCInformationResponse, + GetOrgByDomainGlobalRequest, + GetOrgByDomainGlobalResponse, + GetOrgIAMPolicyRequest, + GetOrgIAMPolicyResponse, + GetOrgIDPByIDRequest, + GetOrgIDPByIDResponse, + GetPasswordAgePolicyRequest, + GetPasswordAgePolicyResponse, + GetPasswordComplexityPolicyRequest, + GetPasswordComplexityPolicyResponse, + GetPasswordLockoutPolicyRequest, + GetPasswordLockoutPolicyResponse, + GetPreviewLabelPolicyRequest, + GetPreviewLabelPolicyResponse, + GetProjectByIDRequest, + GetProjectByIDResponse, + GetProjectGrantByIDRequest, + GetProjectGrantByIDResponse, + GetUserByIDRequest, + GetUserByIDResponse, + GetUserByLoginNameGlobalRequest, + GetUserByLoginNameGlobalResponse, + GetUserGrantByIDRequest, + GetUserGrantByIDResponse, + IDPQuery, + ListAppChangesRequest, + ListAppChangesResponse, + ListAppKeysRequest, + ListAppKeysResponse, + ListAppsRequest, + ListAppsResponse, + ListGrantedProjectsRequest, + ListGrantedProjectsResponse, + ListHumanAuthFactorsRequest, + ListHumanAuthFactorsResponse, + ListHumanLinkedIDPsRequest, + ListHumanLinkedIDPsResponse, + ListHumanPasswordlessRequest, + ListHumanPasswordlessResponse, + ListLoginPolicyIDPsRequest, + ListLoginPolicyIDPsResponse, + ListLoginPolicyMultiFactorsRequest, + ListLoginPolicyMultiFactorsResponse, + ListLoginPolicySecondFactorsResponse, + ListMachineKeysRequest, + ListMachineKeysResponse, + ListOrgChangesRequest, + ListOrgChangesResponse, + ListOrgDomainsRequest, + ListOrgDomainsResponse, + ListOrgIDPsRequest, + ListOrgIDPsResponse, + ListOrgMemberRolesRequest, + ListOrgMemberRolesResponse, + ListOrgMembersRequest, + ListOrgMembersResponse, + ListProjectChangesRequest, + ListProjectChangesResponse, + ListProjectGrantMemberRolesRequest, + ListProjectGrantMemberRolesResponse, + ListProjectGrantMembersRequest, + ListProjectGrantMembersResponse, + ListProjectGrantsRequest, + ListProjectGrantsResponse, + ListProjectMemberRolesRequest, + ListProjectMemberRolesResponse, + ListProjectMembersRequest, + ListProjectMembersResponse, + ListProjectRolesRequest, + ListProjectRolesResponse, + ListProjectsRequest, + ListProjectsResponse, + ListUserChangesRequest, + ListUserChangesResponse, + ListUserGrantRequest, + ListUserGrantResponse, + ListUserMembershipsRequest, + ListUserMembershipsResponse, + ListUsersRequest, + ListUsersResponse, + ReactivateAppRequest, + ReactivateAppResponse, + ReactivateOrgIDPRequest, + ReactivateOrgIDPResponse, + ReactivateOrgRequest, + ReactivateOrgResponse, + ReactivateProjectGrantRequest, + ReactivateProjectGrantResponse, + ReactivateProjectRequest, + ReactivateProjectResponse, + ReactivateUserRequest, + ReactivateUserResponse, + RegenerateAPIClientSecretRequest, + RegenerateAPIClientSecretResponse, + RegenerateOIDCClientSecretRequest, + RegenerateOIDCClientSecretResponse, + RemoveAppKeyRequest, + RemoveAppKeyResponse, + RemoveAppRequest, + RemoveAppResponse, + RemoveCustomLabelPolicyLogoRequest, + RemoveCustomLabelPolicyLogoResponse, + RemoveHumanAuthFactorOTPRequest, + RemoveHumanAuthFactorOTPResponse, + RemoveHumanAuthFactorU2FRequest, + RemoveHumanAuthFactorU2FResponse, + RemoveHumanLinkedIDPRequest, + RemoveHumanLinkedIDPResponse, + RemoveHumanPasswordlessRequest, + RemoveHumanPasswordlessResponse, + RemoveHumanPhoneRequest, + RemoveHumanPhoneResponse, + RemoveIDPFromLoginPolicyRequest, + RemoveIDPFromLoginPolicyResponse, + RemoveMachineKeyRequest, + RemoveMachineKeyResponse, + RemoveMultiFactorFromLoginPolicyRequest, + RemoveMultiFactorFromLoginPolicyResponse, + RemoveOrgDomainRequest, + RemoveOrgDomainResponse, + RemoveOrgIDPRequest, + RemoveOrgIDPResponse, + RemoveOrgMemberRequest, + RemoveOrgMemberResponse, + RemoveProjectGrantMemberRequest, + RemoveProjectGrantMemberResponse, + RemoveProjectGrantRequest, + RemoveProjectGrantResponse, + RemoveProjectMemberRequest, + RemoveProjectMemberResponse, + RemoveProjectRequest, + RemoveProjectResponse, + RemoveProjectRoleRequest, + RemoveProjectRoleResponse, + RemoveSecondFactorFromLoginPolicyRequest, + RemoveSecondFactorFromLoginPolicyResponse, + RemoveUserGrantRequest, + RemoveUserGrantResponse, + RemoveUserRequest, + RemoveUserResponse, + ResendHumanEmailVerificationRequest, + ResendHumanInitializationRequest, + ResendHumanInitializationResponse, + ResendHumanPhoneVerificationRequest, + ResetLabelPolicyToDefaultRequest, + ResetLabelPolicyToDefaultResponse, + ResetLoginPolicyToDefaultRequest, + ResetLoginPolicyToDefaultResponse, + ResetPasswordAgePolicyToDefaultRequest, + ResetPasswordAgePolicyToDefaultResponse, + ResetPasswordComplexityPolicyToDefaultRequest, + ResetPasswordComplexityPolicyToDefaultResponse, + ResetPasswordLockoutPolicyToDefaultRequest, + ResetPasswordLockoutPolicyToDefaultResponse, + SendHumanResetPasswordNotificationRequest, + SetHumanInitialPasswordRequest, + SetPrimaryOrgDomainRequest, + SetPrimaryOrgDomainResponse, + UpdateAPIAppConfigRequest, + UpdateAPIAppConfigResponse, + UpdateAppRequest, + UpdateAppResponse, + UpdateCustomLabelPolicyRequest, + UpdateCustomLabelPolicyResponse, + UpdateCustomLoginPolicyRequest, + UpdateCustomLoginPolicyResponse, + UpdateCustomPasswordAgePolicyRequest, + UpdateCustomPasswordAgePolicyResponse, + UpdateCustomPasswordComplexityPolicyRequest, + UpdateCustomPasswordComplexityPolicyResponse, + UpdateCustomPasswordLockoutPolicyRequest, + UpdateCustomPasswordLockoutPolicyResponse, + UpdateHumanEmailRequest, + UpdateHumanEmailResponse, + UpdateHumanPhoneRequest, + UpdateHumanPhoneResponse, + UpdateHumanProfileRequest, + UpdateHumanProfileResponse, + UpdateMachineRequest, + UpdateMachineResponse, + UpdateOIDCAppConfigRequest, + UpdateOIDCAppConfigResponse, + UpdateOrgIDPOIDCConfigRequest, + UpdateOrgIDPOIDCConfigResponse, + UpdateOrgIDPRequest, + UpdateOrgIDPResponse, + UpdateOrgMemberRequest, + UpdateOrgMemberResponse, + UpdateProjectGrantMemberRequest, + UpdateProjectGrantMemberResponse, + UpdateProjectGrantRequest, + UpdateProjectGrantResponse, + UpdateProjectMemberRequest, + UpdateProjectMemberResponse, + UpdateProjectRequest, + UpdateProjectResponse, + UpdateProjectRoleRequest, + UpdateProjectRoleResponse, + UpdateUserGrantRequest, + UpdateUserGrantResponse, + ValidateOrgDomainRequest, + ValidateOrgDomainResponse, } from '../proto/generated/zitadel/management_pb'; import { SearchQuery } from '../proto/generated/zitadel/member_pb'; import { ListQuery } from '../proto/generated/zitadel/object_pb'; @@ -295,1400 +321,1466 @@ import { DomainSearchQuery, DomainValidationType } from '../proto/generated/zita import { PasswordComplexityPolicy } from '../proto/generated/zitadel/policy_pb'; import { ProjectQuery, RoleQuery } from '../proto/generated/zitadel/project_pb'; import { - Gender, - MembershipQuery, - SearchQuery as UserSearchQuery, - UserFieldName, - UserGrantQuery, + Gender, + MembershipQuery, + SearchQuery as UserSearchQuery, + UserFieldName, + UserGrantQuery, } from '../proto/generated/zitadel/user_pb'; import { GrpcService } from './grpc.service'; export type ResponseMapper = (resp: TResp) => TMappedResp; @Injectable({ - providedIn: 'root', + providedIn: 'root', }) export class ManagementService { - public ownedProjectsCount: BehaviorSubject = new BehaviorSubject(0); - public grantedProjectsCount: BehaviorSubject = new BehaviorSubject(0); + public ownedProjectsCount: BehaviorSubject = new BehaviorSubject(0); + public grantedProjectsCount: BehaviorSubject = new BehaviorSubject(0); + + constructor(private readonly grpcService: GrpcService) { } + + public listOrgIDPs( + limit?: number, + offset?: number, + queryList?: IDPQuery[], + ): Promise { + const req = new ListOrgIDPsRequest(); + const metadata = new ListQuery(); + + if (limit) { + metadata.setLimit(limit); + } + if (offset) { + metadata.setOffset(offset); + } + if (queryList) { + req.setQueriesList(queryList); + } + return this.grpcService.mgmt.listOrgIDPs(req, null).then(resp => resp.toObject()); + } + + public listHumanPasswordless(userId: string): Promise { + const req = new ListHumanPasswordlessRequest(); + req.setUserId(userId); + return this.grpcService.mgmt.listHumanPasswordless(req, null).then(resp => resp.toObject()); + } + + public removeHumanPasswordless(tokenId: string, userId: string): Promise { + const req = new RemoveHumanPasswordlessRequest(); + req.setTokenId(tokenId); + req.setUserId(userId); + return this.grpcService.mgmt.removeHumanPasswordless(req, null).then(resp => resp.toObject()); + } + + public listLoginPolicyMultiFactors(): Promise { + const req = new ListLoginPolicyMultiFactorsRequest(); + return this.grpcService.mgmt.listLoginPolicyMultiFactors(req, null).then(resp => resp.toObject()); + } + + public addMultiFactorToLoginPolicy(req: AddMultiFactorToLoginPolicyRequest): + Promise { + return this.grpcService.mgmt.addMultiFactorToLoginPolicy(req, null).then(resp => resp.toObject()); + } + + public removeMultiFactorFromLoginPolicy(req: RemoveMultiFactorFromLoginPolicyRequest): + Promise { + return this.grpcService.mgmt.removeMultiFactorFromLoginPolicy(req, null).then(resp => resp.toObject()); + } + + public listLoginPolicySecondFactors(): Promise { + const req = new Empty(); + return this.grpcService.mgmt.listLoginPolicySecondFactors(req, null).then(resp => resp.toObject()); + } + + public addSecondFactorToLoginPolicy(req: AddSecondFactorToLoginPolicyRequest): + Promise { + return this.grpcService.mgmt.addSecondFactorToLoginPolicy(req, null).then(resp => resp.toObject()); + } + + public removeSecondFactorFromLoginPolicy(req: RemoveSecondFactorFromLoginPolicyRequest): + Promise { + return this.grpcService.mgmt.removeSecondFactorFromLoginPolicy(req, null).then(resp => resp.toObject()); + } + + public getLoginPolicy(): Promise { + const req = new GetLoginPolicyRequest(); + return this.grpcService.mgmt.getLoginPolicy(req, null).then(resp => resp.toObject()); + } + + public updateCustomLoginPolicy(req: UpdateCustomLoginPolicyRequest): + Promise { + return this.grpcService.mgmt.updateCustomLoginPolicy(req, null).then(resp => resp.toObject()); + } + + public addCustomLoginPolicy(req: AddCustomLoginPolicyRequest): Promise { + return this.grpcService.mgmt.addCustomLoginPolicy(req, null).then(resp => resp.toObject()); + } + + public resetLoginPolicyToDefault(): Promise { + const req = new ResetLoginPolicyToDefaultRequest(); + return this.grpcService.mgmt.resetLoginPolicyToDefault(req, null).then(resp => resp.toObject()); + } + + public addIDPToLoginPolicy(idpId: string, ownerType: IDPOwnerType): Promise { + const req = new AddIDPToLoginPolicyRequest(); + req.setIdpId(idpId); + req.setOwnertype(ownerType); + return this.grpcService.mgmt.addIDPToLoginPolicy(req, null).then(resp => resp.toObject()); + } + + public removeIDPFromLoginPolicy(idpId: string): Promise { + const req = new RemoveIDPFromLoginPolicyRequest(); + req.setIdpId(idpId); + return this.grpcService.mgmt.removeIDPFromLoginPolicy(req, null).then(resp => resp.toObject()); + } + + public listLoginPolicyIDPs(limit?: number, offset?: number): Promise { + const req = new ListLoginPolicyIDPsRequest(); + const metadata = new ListQuery(); + if (limit) { + metadata.setLimit(limit); + } + if (offset) { + metadata.setOffset(offset); + } + return this.grpcService.mgmt.listLoginPolicyIDPs(req, null).then(resp => resp.toObject()); + } + + public getOrgIDPByID( + id: string, + ): Promise { + const req = new GetOrgIDPByIDRequest(); + req.setId(id); + return this.grpcService.mgmt.getOrgIDPByID(req, null).then(resp => resp.toObject()); + } + + public updateOrgIDP( + req: UpdateOrgIDPRequest, + ): Promise { + return this.grpcService.mgmt.updateOrgIDP(req, null).then(resp => resp.toObject()); + } + + public addOrgOIDCIDP( + req: AddOrgOIDCIDPRequest, + ): Promise { + return this.grpcService.mgmt.addOrgOIDCIDP(req, null).then(resp => resp.toObject()); + } + + public updateOrgIDPOIDCConfig( + req: UpdateOrgIDPOIDCConfigRequest, + ): Promise { + return this.grpcService.mgmt.updateOrgIDPOIDCConfig(req, null).then(resp => resp.toObject()); + } + + public removeOrgIDP( + idpId: string, + ): Promise { + const req = new RemoveOrgIDPRequest(); + req.setIdpId(idpId); + return this.grpcService.mgmt.removeOrgIDP(req, null).then(resp => resp.toObject()); + } + + public deactivateOrgIDP( + idpId: string, + ): Promise { + const req = new DeactivateOrgIDPRequest(); + req.setIdpId(idpId); + return this.grpcService.mgmt.deactivateOrgIDP(req, null).then(resp => resp.toObject()); + } + + public reactivateOrgIDP( + idpId: string, + ): Promise { + const req = new ReactivateOrgIDPRequest(); + req.setIdpId(idpId); + return this.grpcService.mgmt.reactivateOrgIDP(req, null).then(resp => resp.toObject()); + } + + public addHumanUser(req: AddHumanUserRequest): Promise { + return this.grpcService.mgmt.addHumanUser(req, null).then(resp => resp.toObject()); + } + + public addMachineUser(req: AddMachineUserRequest): Promise { + return this.grpcService.mgmt.addMachineUser(req, null).then(resp => resp.toObject()); + } + + public updateMachine( + userId: string, + name?: string, + description?: string, + ): Promise { + const req = new UpdateMachineRequest(); + req.setUserId(userId); + if (name) { + req.setName(name); + } + if (description) { + req.setDescription(description); + } + return this.grpcService.mgmt.updateMachine(req, null).then(resp => resp.toObject()); + } + + public addMachineKey( + userId: string, + type: KeyType, + date?: Timestamp, + ): Promise { + const req = new AddMachineKeyRequest(); + req.setType(type); + req.setUserId(userId); + if (date) { + req.setExpirationDate(date); + } + return this.grpcService.mgmt.addMachineKey(req, null).then(resp => resp.toObject()); + } + + public removeMachineKey( + keyId: string, + userId: string, + ): Promise { + const req = new RemoveMachineKeyRequest(); + req.setKeyId(keyId); + req.setUserId(userId); + + return this.grpcService.mgmt.removeMachineKey(req, null).then(resp => resp.toObject()); + } + + public listMachineKeys( + userId: string, + limit?: number, + offset?: number, + asc?: boolean, + ): Promise { + const req = new ListMachineKeysRequest(); + const metadata = new ListQuery(); + req.setUserId(userId); + if (limit) { + metadata.setLimit(limit); + } + if (offset) { + metadata.setOffset(offset); + } + if (asc) { + metadata.setAsc(asc); + } + req.setQuery(metadata); + return this.grpcService.mgmt.listMachineKeys(req, null).then(resp => resp.toObject()); + } + + public removeHumanLinkedIDP( + idpId: string, + userId: string, + linkedUserId: string, + ): Promise { + const req = new RemoveHumanLinkedIDPRequest(); + req.setUserId(userId); + req.setIdpId(idpId); + req.setUserId(userId); + req.setLinkedUserId(linkedUserId); + return this.grpcService.mgmt.removeHumanLinkedIDP(req, null).then(resp => resp.toObject()); + } + + public listHumanLinkedIDPs( + userId: string, + limit?: number, + offset?: number, + ): Promise { + const req = new ListHumanLinkedIDPsRequest(); + const metadata = new ListQuery(); + req.setUserId(userId); + if (limit) { + metadata.setLimit(limit); + } + if (offset) { + metadata.setOffset(offset); + } + req.setQuery(metadata); + return this.grpcService.mgmt.listHumanLinkedIDPs(req, null).then(resp => resp.toObject()); + } + + public getIAM(): Promise { + const req = new GetIAMRequest(); + return this.grpcService.mgmt.getIAM(req, null).then(resp => resp.toObject()); + } + + public getDefaultPasswordComplexityPolicy(): Promise { + const req = new GetDefaultPasswordComplexityPolicyRequest(); + return this.grpcService.mgmt.getDefaultPasswordComplexityPolicy(req, null).then(resp => resp.toObject()); + } + + public getMyOrg(): Promise { + const req = new GetMyOrgRequest(); + return this.grpcService.mgmt.getMyOrg(req, null).then(resp => resp.toObject()); + } + + public addOrgDomain(domain: string): Promise { + const req = new AddOrgDomainRequest(); + req.setDomain(domain); + return this.grpcService.mgmt.addOrgDomain(req, null).then(resp => resp.toObject()); + } + + public removeOrgDomain(domain: string): Promise { + const req = new RemoveOrgDomainRequest(); + req.setDomain(domain); + return this.grpcService.mgmt.removeOrgDomain(req, null).then(resp => resp.toObject()); + } + + public listOrgDomains(queryList?: DomainSearchQuery[]): + Promise { + const req: ListOrgDomainsRequest = new ListOrgDomainsRequest(); + // const metadata= new ListQuery(); + if (queryList) { + req.setQueriesList(queryList); + } + return this.grpcService.mgmt.listOrgDomains(req, null).then(resp => resp.toObject()); + } + + public setPrimaryOrgDomain(domain: string): Promise { + const req = new SetPrimaryOrgDomainRequest(); + req.setDomain(domain); + return this.grpcService.mgmt.setPrimaryOrgDomain(req, null).then(resp => resp.toObject()); + } + + public generateOrgDomainValidation(domain: string, type: DomainValidationType): + Promise { + const req: GenerateOrgDomainValidationRequest = new GenerateOrgDomainValidationRequest(); + req.setDomain(domain); + req.setType(type); + + return this.grpcService.mgmt.generateOrgDomainValidation(req, null).then(resp => resp.toObject()); + } + + public validateOrgDomain(domain: string): + Promise { + const req = new ValidateOrgDomainRequest(); + req.setDomain(domain); + + return this.grpcService.mgmt.validateOrgDomain(req, null).then(resp => resp.toObject()); + } + + public listOrgMembers(limit: number, offset: number): Promise { + const req = new ListOrgMembersRequest(); + const query = new ListQuery(); + if (limit) { + query.setLimit(limit); + } + if (offset) { + query.setOffset(offset); + } + req.setQuery(query); + + return this.grpcService.mgmt.listOrgMembers(req, null).then(resp => resp.toObject()); + } + + public getOrgByDomainGlobal(domain: string): Promise { + const req = new GetOrgByDomainGlobalRequest(); + req.setDomain(domain); + return this.grpcService.mgmt.getOrgByDomainGlobal(req, null).then(resp => resp.toObject()); + } + + public addOrg(name: string): Promise { + const req = new AddOrgRequest(); + req.setName(name); + return this.grpcService.mgmt.addOrg(req, null).then(resp => resp.toObject()); + } + + public addOrgMember(userId: string, rolesList: string[]): Promise { + const req = new AddOrgMemberRequest(); + req.setUserId(userId); + if (rolesList) { + req.setRolesList(rolesList); + } + return this.grpcService.mgmt.addOrgMember(req, null).then(resp => resp.toObject()); + } + + public updateOrgMember(userId: string, rolesList: string[]): Promise { + const req = new UpdateOrgMemberRequest(); + req.setUserId(userId); + req.setRolesList(rolesList); + return this.grpcService.mgmt.updateOrgMember(req, null).then(resp => resp.toObject()); + } + + + public removeOrgMember(userId: string): Promise { + const req = new RemoveOrgMemberRequest(); + req.setUserId(userId); + return this.grpcService.mgmt.removeOrgMember(req, null).then(resp => resp.toObject()); + } + + public deactivateOrg(): Promise { + const req = new DeactivateOrgRequest(); + return this.grpcService.mgmt.deactivateOrg(req, null).then(resp => resp.toObject()); + } + + public reactivateOrg(): Promise { + const req = new ReactivateOrgRequest(); + return this.grpcService.mgmt.reactivateOrg(req, null).then(resp => resp.toObject()); + } + + public addProjectGrant( + orgId: string, + projectId: string, + roleKeysList: string[], + ): Promise { + const req = new AddProjectGrantRequest(); + req.setProjectId(projectId); + req.setGrantedOrgId(orgId); + req.setRoleKeysList(roleKeysList); + return this.grpcService.mgmt.addProjectGrant(req, null).then(resp => resp.toObject()); + } + + public listOrgMemberRoles(): Promise { + const req = new ListOrgMemberRolesRequest(); + return this.grpcService.mgmt.listOrgMemberRoles(req, null).then(resp => resp.toObject()); + } + + // Features + + public getFeatures(): Promise { + const req = new GetFeaturesRequest(); + return this.grpcService.mgmt.getFeatures(req, null).then(resp => resp.toObject()); + } + + // Policy + + public getLabelPolicy(): Promise { + const req = new GetLabelPolicyRequest(); + return this.grpcService.mgmt.getLabelPolicy(req, null).then(resp => resp.toObject()); + } + + public updateCustomLabelPolicy(req: UpdateCustomLabelPolicyRequest): + Promise { + return this.grpcService.mgmt.updateCustomLabelPolicy(req, null).then(resp => resp.toObject()); + } + + public resetLabelPolicyToDefault(): + Promise { + const req = new ResetLabelPolicyToDefaultRequest(); + return this.grpcService.mgmt.resetLabelPolicyToDefault(req, null).then(resp => resp.toObject()); + } + + public addCustomLabelPolicy(req: AddCustomLabelPolicyRequest): + Promise { + return this.grpcService.mgmt.addCustomLabelPolicy(req, null).then(resp => resp.toObject()); + } + + public getDefaultLabelPolicy(req: GetDefaultLabelPolicyRequest): Promise { + return this.grpcService.mgmt.getDefaultLabelPolicy(req, null).then(resp => resp.toObject()); + } + + public getPreviewLabelPolicy(): Promise { + const req = new GetPreviewLabelPolicyRequest(); + return this.grpcService.mgmt.getPreviewLabelPolicy(req, null).then(resp => resp.toObject()); + } + + public activateCustomLabelPolicy(): + Promise { + const req = new ActivateCustomLabelPolicyRequest(); + return this.grpcService.mgmt.activateCustomLabelPolicy(req, null).then(resp => resp.toObject()); + } + + public removeLabelPolicyFont(): + Promise { + const req = new RemoveLabelPolicyFontRequest(); + return this.grpcService.admin.removeLabelPolicyFont(req, null).then(resp => resp.toObject()); + } + + public removeLabelPolicyIcon(): + Promise { + const req = new RemoveLabelPolicyIconRequest(); + return this.grpcService.admin.removeLabelPolicyIcon(req, null).then(resp => resp.toObject()); + } + + public removeLabelPolicyIconDark(): + Promise { + const req = new RemoveLabelPolicyIconDarkRequest(); + return this.grpcService.admin.removeLabelPolicyIconDark(req, null).then(resp => resp.toObject()); + } + + public removeCustomLabelPolicyLogo(): + Promise { + const req = new RemoveCustomLabelPolicyLogoRequest(); + return this.grpcService.mgmt.removeCustomLabelPolicyLogo(req, null).then(resp => resp.toObject()); + } + + public removeLabelPolicyLogoDark(): + Promise { + const req = new RemoveLabelPolicyLogoDarkRequest(); + return this.grpcService.admin.removeLabelPolicyLogoDark(req, null).then(resp => resp.toObject()); + } + + public getOrgIAMPolicy(): Promise { + const req = new GetOrgIAMPolicyRequest(); + return this.grpcService.mgmt.getOrgIAMPolicy(req, null).then(resp => resp.toObject()); + } + + public getPasswordAgePolicy(): Promise { + const req = new GetPasswordAgePolicyRequest(); + return this.grpcService.mgmt.getPasswordAgePolicy(req, null).then(resp => resp.toObject()); + } + + public addCustomPasswordAgePolicy( + maxAgeDays: number, + expireWarnDays: number, + ): Promise { + const req = new AddCustomPasswordAgePolicyRequest(); + req.setMaxAgeDays(maxAgeDays); + req.setExpireWarnDays(expireWarnDays); + + return this.grpcService.mgmt.addCustomPasswordAgePolicy(req, null).then(resp => resp.toObject()); + } + + public resetPasswordAgePolicyToDefault(): Promise { + const req = new ResetPasswordAgePolicyToDefaultRequest(); + return this.grpcService.mgmt.resetPasswordAgePolicyToDefault(req, null).then(resp => resp.toObject()); + } + + public updateCustomPasswordAgePolicy( + maxAgeDays: number, + expireWarnDays: number, + ): Promise { + const req = new UpdateCustomPasswordAgePolicyRequest(); + req.setMaxAgeDays(maxAgeDays); + req.setExpireWarnDays(expireWarnDays); + return this.grpcService.mgmt.updateCustomPasswordAgePolicy(req, null).then(resp => resp.toObject()); + } + + public getPasswordComplexityPolicy(): Promise { + const req = new GetPasswordComplexityPolicyRequest(); + return this.grpcService.mgmt.getPasswordComplexityPolicy(req, null).then(resp => resp.toObject()); + } + + public addCustomPasswordComplexityPolicy( + hasLowerCase: boolean, + hasUpperCase: boolean, + hasNumber: boolean, + hasSymbol: boolean, + minLength: number, + ): Promise { + const req = new AddCustomPasswordComplexityPolicyRequest(); + req.setHasLowercase(hasLowerCase); + req.setHasUppercase(hasUpperCase); + req.setHasNumber(hasNumber); + req.setHasSymbol(hasSymbol); + req.setMinLength(minLength); + return this.grpcService.mgmt.addCustomPasswordComplexityPolicy(req, null).then(resp => resp.toObject()); + } + + public resetPasswordComplexityPolicyToDefault(): Promise { + const req = new ResetPasswordComplexityPolicyToDefaultRequest(); + return this.grpcService.mgmt.resetPasswordComplexityPolicyToDefault(req, null).then(resp => resp.toObject()); + } + + public updateCustomPasswordComplexityPolicy( + hasLowerCase: boolean, + hasUpperCase: boolean, + hasNumber: boolean, + hasSymbol: boolean, + minLength: number, + ): Promise { + const req = new UpdateCustomPasswordComplexityPolicyRequest(); + req.setHasLowercase(hasLowerCase); + req.setHasUppercase(hasUpperCase); + req.setHasNumber(hasNumber); + req.setHasSymbol(hasSymbol); + req.setMinLength(minLength); + return this.grpcService.mgmt.updateCustomPasswordComplexityPolicy(req, null).then(resp => resp.toObject()); + } + + public getPasswordLockoutPolicy(): Promise { + const req = new GetPasswordLockoutPolicyRequest(); + + return this.grpcService.mgmt.getPasswordLockoutPolicy(req, null).then(resp => resp.toObject()); + } + + public addCustomPasswordLockoutPolicy( + maxAttempts: number, + showLockoutFailures: boolean, + ): Promise { + const req = new AddCustomPasswordLockoutPolicyRequest(); + req.setMaxAttempts(maxAttempts); + req.setShowLockoutFailure(showLockoutFailures); + + return this.grpcService.mgmt.addCustomPasswordLockoutPolicy(req, null).then(resp => resp.toObject()); + } + + public resetPasswordLockoutPolicyToDefault(): Promise { + const req = new ResetPasswordLockoutPolicyToDefaultRequest(); + return this.grpcService.mgmt.resetPasswordLockoutPolicyToDefault(req, null).then(resp => resp.toObject()); + } + + public updateCustomPasswordLockoutPolicy( + maxAttempts: number, + showLockoutFailures: boolean, + ): Promise { + const req = new UpdateCustomPasswordLockoutPolicyRequest(); + req.setMaxAttempts(maxAttempts); + req.setShowLockoutFailure(showLockoutFailures); + return this.grpcService.mgmt.updateCustomPasswordLockoutPolicy(req, null).then(resp => resp.toObject()); + } + + public getLocalizedComplexityPolicyPatternErrorString(policy: PasswordComplexityPolicy.AsObject): string { + if (policy.hasNumber && policy.hasSymbol) { + return 'POLICY.PWD_COMPLEXITY.SYMBOLANDNUMBERERROR'; + } else if (policy.hasNumber) { + return 'POLICY.PWD_COMPLEXITY.NUMBERERROR'; + } else if (policy.hasSymbol) { + return 'POLICY.PWD_COMPLEXITY.SYMBOLERROR'; + } else { + return 'POLICY.PWD_COMPLEXITY.PATTERNERROR'; + } + } + + public getUserByID(id: string): Promise { + const req = new GetUserByIDRequest(); + req.setId(id); + return this.grpcService.mgmt.getUserByID(req, null).then(resp => resp.toObject()); + } + + public removeUser(id: string): Promise { + const req = new RemoveUserRequest(); + req.setId(id); + return this.grpcService.mgmt.removeUser(req, null).then(resp => resp.toObject()); + } + + public listProjectMembers( + projectId: string, + limit: number, + offset: number, + queryList?: SearchQuery[], + ): Promise { + const req = new ListProjectMembersRequest(); + const query = new ListQuery(); + req.setQuery(query); + req.setProjectId(projectId); + if (limit) { + query.setLimit(limit); + } + if (offset) { + query.setOffset(offset); + } + if (queryList) { + req.setQueriesList(queryList); + } + req.setQuery(query); + return this.grpcService.mgmt.listProjectMembers(req, null).then(resp => resp.toObject()); + } + + public listUserMemberships(userId: string, + limit: number, offset: number, + queryList?: MembershipQuery[], + ): Promise { + const req = new ListUserMembershipsRequest(); + req.setUserId(userId); + const metadata = new ListQuery(); + if (limit) { + metadata.setLimit(limit); + } + if (offset) { + metadata.setOffset(offset); + } + if (queryList) { + req.setQueriesList(queryList); + } + req.setQuery(metadata); + return this.grpcService.mgmt.listUserMemberships(req, null).then(resp => resp.toObject()); + } + + public getHumanProfile(userId: string): Promise { + const req = new GetHumanProfileRequest(); + req.setUserId(userId); + return this.grpcService.mgmt.getHumanProfile(req, null).then(resp => resp.toObject()); + } + + public listHumanMultiFactors(userId: string): Promise { + const req = new ListHumanAuthFactorsRequest(); + req.setUserId(userId); + return this.grpcService.mgmt.listHumanAuthFactors(req, null).then(resp => resp.toObject()); + } + + public removeHumanMultiFactorOTP(userId: string): Promise { + const req = new RemoveHumanAuthFactorOTPRequest(); + req.setUserId(userId); + return this.grpcService.mgmt.removeHumanAuthFactorOTP(req, null).then(resp => resp.toObject()); + } + + public removeHumanAuthFactorU2F(userId: string, tokenId: string): Promise { + const req = new RemoveHumanAuthFactorU2FRequest(); + req.setUserId(userId); + req.setTokenId(tokenId); + return this.grpcService.mgmt.removeHumanAuthFactorU2F(req, null).then(resp => resp.toObject()); + } + + public updateHumanProfile( + userId: string, + firstName?: string, + lastName?: string, + nickName?: string, + displayName?: string, + preferredLanguage?: string, + gender?: Gender, + ): Promise { + const req = new UpdateHumanProfileRequest(); + req.setUserId(userId); + if (firstName) { + req.setFirstName(firstName); + } + if (lastName) { + req.setLastName(lastName); + } + if (nickName) { + req.setNickName(nickName); + } + if (displayName) { + req.setDisplayName(displayName); + } + if (gender) { + req.setGender(gender); + } + if (preferredLanguage) { + req.setPreferredLanguage(preferredLanguage); + } + return this.grpcService.mgmt.updateHumanProfile(req, null).then(resp => resp.toObject()); + } + + public getHumanEmail(id: string): Promise { + const req = new GetHumanEmailRequest(); + req.setUserId(id); + return this.grpcService.mgmt.getHumanEmail(req, null).then(resp => resp.toObject()); + } + + public updateHumanEmail(userId: string, email: string): Promise { + const req = new UpdateHumanEmailRequest(); + req.setUserId(userId); + req.setEmail(email); + return this.grpcService.mgmt.updateHumanEmail(req, null).then(resp => resp.toObject()); + } + + public getHumanPhone(userId: string): Promise { + const req = new GetHumanPhoneRequest(); + req.setUserId(userId); + return this.grpcService.mgmt.getHumanPhone(req, null).then(resp => resp.toObject()); + } + + public updateHumanPhone(userId: string, phone: string): Promise { + const req = new UpdateHumanPhoneRequest(); + req.setUserId(userId); + req.setPhone(phone); + return this.grpcService.mgmt.updateHumanPhone(req, null).then(resp => resp.toObject()); + } + + public removeHumanPhone(userId: string): Promise { + const req = new RemoveHumanPhoneRequest(); + req.setUserId(userId); + return this.grpcService.mgmt.removeHumanPhone(req, null).then(resp => resp.toObject()); + } + + public deactivateUser(id: string): Promise { + const req = new DeactivateUserRequest(); + req.setId(id); + return this.grpcService.mgmt.deactivateUser(req, null).then(resp => resp.toObject()); + } + + public addUserGrant( + userId: string, + roleNamesList: string[], + projectId?: string, + projectGrantId?: string, + ): Promise { + const req = new AddUserGrantRequest(); + if (projectId) { + req.setProjectId(projectId); + } + if (projectGrantId) { + req.setProjectGrantId(projectGrantId); + } + req.setUserId(userId); + req.setRoleKeysList(roleNamesList); + + return this.grpcService.mgmt.addUserGrant(req, null).then(resp => resp.toObject()); + } + + public reactivateUser(id: string): Promise { + const req = new ReactivateUserRequest(); + req.setId(id); + return this.grpcService.mgmt.reactivateUser(req, null).then(resp => resp.toObject()); + } + + public addProjectRole(projectId: string, roleKey: string, displayName: string, group: string): + Promise { + const req = new AddProjectRoleRequest(); + req.setProjectId(projectId); + req.setRoleKey(roleKey); + if (displayName) { + req.setDisplayName(displayName); + } + req.setGroup(group); + return this.grpcService.mgmt.addProjectRole(req, null).then(resp => resp.toObject()); + } + + public resendHumanEmailVerification(userId: string): Promise { + const req = new ResendHumanEmailVerificationRequest(); + req.setUserId(userId); + return this.grpcService.mgmt.resendHumanEmailVerification(req, null).then(resp => resp.toObject()); + } + + public resendHumanInitialization(userId: string, newemail: string): + Promise { + const req = new ResendHumanInitializationRequest(); + if (newemail) { + req.setEmail(newemail); + } + req.setUserId(userId); + + return this.grpcService.mgmt.resendHumanInitialization(req, null).then(resp => resp.toObject()); + } + + public resendHumanPhoneVerification(userId: string): Promise { + const req = new ResendHumanPhoneVerificationRequest(); + req.setUserId(userId); + return this.grpcService.mgmt.resendHumanPhoneVerification(req, null).then(resp => resp.toObject()); + } + + public setHumanInitialPassword(id: string, password: string): Promise { + const req = new SetHumanInitialPasswordRequest(); + req.setUserId(id); + req.setPassword(password); + return this.grpcService.mgmt.setHumanInitialPassword(req, null).then(resp => resp.toObject()); + } + + public sendHumanResetPasswordNotification(id: string, type: SendHumanResetPasswordNotificationRequest.Type): + Promise { + const req = new SendHumanResetPasswordNotificationRequest(); + req.setUserId(id); + req.setType(type); + return this.grpcService.mgmt.sendHumanResetPasswordNotification(req, null).then(resp => resp.toObject()); + } + + public listUsers(limit: number, offset: number, queriesList?: UserSearchQuery[], sortingColumn?: UserFieldName): + Promise { + const req = new ListUsersRequest(); + const query = new ListQuery(); + if (limit) { + query.setLimit(limit); + } + if (offset) { + query.setOffset(offset); + } + req.setQuery(query); + if (sortingColumn) { + req.setSortingColumn(sortingColumn); + } + if (queriesList) { + req.setQueriesList(queriesList); + } + return this.grpcService.mgmt.listUsers(req, null).then(resp => resp.toObject()); + } + + public getUserByLoginNameGlobal(loginname: string): Promise { + const req = new GetUserByLoginNameGlobalRequest(); + req.setLoginName(loginname); + return this.grpcService.mgmt.getUserByLoginNameGlobal(req, null).then(resp => resp.toObject()); + } + + // USER GRANTS + + public listUserGrants( + limit?: number, + offset?: number, + queryList?: UserGrantQuery[], + ): Promise { + const req = new ListUserGrantRequest(); + const query = new ListQuery(); + if (limit) { + query.setLimit(limit); + } + if (offset) { + query.setOffset(offset); + } + req.setQuery(query); + + if (queryList) { + req.setQueriesList(queryList); + } + return this.grpcService.mgmt.listUserGrants(req, null).then(resp => resp.toObject()); + } + + + public getUserGrantByID( + grantId: string, + userId: string, + ): Promise { + const req = new GetUserGrantByIDRequest(); + req.setGrantId(grantId); + req.setUserId(userId); + + return this.grpcService.mgmt.getUserGrantByID(req, null).then(resp => resp.toObject()); + } + + public updateUserGrant( + grantId: string, + userId: string, + roleKeysList: string[], + ): Promise { + const req = new UpdateUserGrantRequest(); + req.setGrantId(grantId); + req.setRoleKeysList(roleKeysList); + req.setUserId(userId); + + return this.grpcService.mgmt.updateUserGrant(req, null).then(resp => resp.toObject()); + } - constructor(private readonly grpcService: GrpcService) { } + public removeUserGrant( + grantId: string, + userId: string, + ): Promise { + const req = new RemoveUserGrantRequest(); + req.setGrantId(grantId); + req.setUserId(userId); - public listOrgIDPs( - limit?: number, - offset?: number, - queryList?: IDPQuery[], - ): Promise { - const req = new ListOrgIDPsRequest(); - const metadata = new ListQuery(); + return this.grpcService.mgmt.removeUserGrant(req, null).then(resp => resp.toObject()); + } - if (limit) { - metadata.setLimit(limit); - } - if (offset) { - metadata.setOffset(offset); - } - if (queryList) { - req.setQueriesList(queryList); - } - return this.grpcService.mgmt.listOrgIDPs(req, null).then(resp => resp.toObject()); - } - - public listHumanPasswordless(userId: string): Promise { - const req = new ListHumanPasswordlessRequest(); - req.setUserId(userId); - return this.grpcService.mgmt.listHumanPasswordless(req, null).then(resp => resp.toObject()); - } - - public removeHumanPasswordless(tokenId: string, userId: string): Promise { - const req = new RemoveHumanPasswordlessRequest(); - req.setTokenId(tokenId); - req.setUserId(userId); - return this.grpcService.mgmt.removeHumanPasswordless(req, null).then(resp => resp.toObject()); - } - - public listLoginPolicyMultiFactors(): Promise { - const req = new ListLoginPolicyMultiFactorsRequest(); - return this.grpcService.mgmt.listLoginPolicyMultiFactors(req, null).then(resp => resp.toObject()); - } - - public addMultiFactorToLoginPolicy(req: AddMultiFactorToLoginPolicyRequest): - Promise { - return this.grpcService.mgmt.addMultiFactorToLoginPolicy(req, null).then(resp => resp.toObject()); - } - - public removeMultiFactorFromLoginPolicy(req: RemoveMultiFactorFromLoginPolicyRequest): - Promise { - return this.grpcService.mgmt.removeMultiFactorFromLoginPolicy(req, null).then(resp => resp.toObject()); - } - - public listLoginPolicySecondFactors(): Promise { - const req = new Empty(); - return this.grpcService.mgmt.listLoginPolicySecondFactors(req, null).then(resp => resp.toObject()); - } - - public addSecondFactorToLoginPolicy(req: AddSecondFactorToLoginPolicyRequest): - Promise { - return this.grpcService.mgmt.addSecondFactorToLoginPolicy(req, null).then(resp => resp.toObject()); - } - - public removeSecondFactorFromLoginPolicy(req: RemoveSecondFactorFromLoginPolicyRequest): - Promise { - return this.grpcService.mgmt.removeSecondFactorFromLoginPolicy(req, null).then(resp => resp.toObject()); - } - - public getLoginPolicy(): Promise { - const req = new GetLoginPolicyRequest(); - return this.grpcService.mgmt.getLoginPolicy(req, null).then(resp => resp.toObject()); - } - - public updateCustomLoginPolicy(req: UpdateCustomLoginPolicyRequest): - Promise { - return this.grpcService.mgmt.updateCustomLoginPolicy(req, null).then(resp => resp.toObject()); - } - - public addCustomLoginPolicy(req: AddCustomLoginPolicyRequest): Promise { - return this.grpcService.mgmt.addCustomLoginPolicy(req, null).then(resp => resp.toObject()); - } - - public resetLoginPolicyToDefault(): Promise { - const req = new ResetLoginPolicyToDefaultRequest(); - return this.grpcService.mgmt.resetLoginPolicyToDefault(req, null).then(resp => resp.toObject()); - } - - public addIDPToLoginPolicy(idpId: string, ownerType: IDPOwnerType): Promise { - const req = new AddIDPToLoginPolicyRequest(); - req.setIdpId(idpId); - req.setOwnertype(ownerType); - return this.grpcService.mgmt.addIDPToLoginPolicy(req, null).then(resp => resp.toObject()); - } - - public removeIDPFromLoginPolicy(idpId: string): Promise { - const req = new RemoveIDPFromLoginPolicyRequest(); - req.setIdpId(idpId); - return this.grpcService.mgmt.removeIDPFromLoginPolicy(req, null).then(resp => resp.toObject()); - } - - public listLoginPolicyIDPs(limit?: number, offset?: number): Promise { - const req = new ListLoginPolicyIDPsRequest(); - const metadata = new ListQuery(); - if (limit) { - metadata.setLimit(limit); - } - if (offset) { - metadata.setOffset(offset); - } - return this.grpcService.mgmt.listLoginPolicyIDPs(req, null).then(resp => resp.toObject()); - } - - public getOrgIDPByID( - id: string, - ): Promise { - const req = new GetOrgIDPByIDRequest(); - req.setId(id); - return this.grpcService.mgmt.getOrgIDPByID(req, null).then(resp => resp.toObject()); - } - - public updateOrgIDP( - req: UpdateOrgIDPRequest, - ): Promise { - return this.grpcService.mgmt.updateOrgIDP(req, null).then(resp => resp.toObject()); - } - - public addOrgOIDCIDP( - req: AddOrgOIDCIDPRequest, - ): Promise { - return this.grpcService.mgmt.addOrgOIDCIDP(req, null).then(resp => resp.toObject()); - } - - public updateOrgIDPOIDCConfig( - req: UpdateOrgIDPOIDCConfigRequest, - ): Promise { - return this.grpcService.mgmt.updateOrgIDPOIDCConfig(req, null).then(resp => resp.toObject()); - } - - public removeOrgIDP( - idpId: string, - ): Promise { - const req = new RemoveOrgIDPRequest(); - req.setIdpId(idpId); - return this.grpcService.mgmt.removeOrgIDP(req, null).then(resp => resp.toObject()); - } - - public deactivateOrgIDP( - idpId: string, - ): Promise { - const req = new DeactivateOrgIDPRequest(); - req.setIdpId(idpId); - return this.grpcService.mgmt.deactivateOrgIDP(req, null).then(resp => resp.toObject()); - } - - public reactivateOrgIDP( - idpId: string, - ): Promise { - const req = new ReactivateOrgIDPRequest(); - req.setIdpId(idpId); - return this.grpcService.mgmt.reactivateOrgIDP(req, null).then(resp => resp.toObject()); - } - - public addHumanUser(req: AddHumanUserRequest): Promise { - return this.grpcService.mgmt.addHumanUser(req, null).then(resp => resp.toObject()); - } - - public addMachineUser(req: AddMachineUserRequest): Promise { - return this.grpcService.mgmt.addMachineUser(req, null).then(resp => resp.toObject()); - } - - public updateMachine( - userId: string, - name?: string, - description?: string, - ): Promise { - const req = new UpdateMachineRequest(); - req.setUserId(userId); - if (name) { - req.setName(name); - } - if (description) { - req.setDescription(description); - } - return this.grpcService.mgmt.updateMachine(req, null).then(resp => resp.toObject()); - } - - public addMachineKey( - userId: string, - type: KeyType, - date?: Timestamp, - ): Promise { - const req = new AddMachineKeyRequest(); - req.setType(type); - req.setUserId(userId); - if (date) { - req.setExpirationDate(date); - } - return this.grpcService.mgmt.addMachineKey(req, null).then(resp => resp.toObject()); - } - - public removeMachineKey( - keyId: string, - userId: string, - ): Promise { - const req = new RemoveMachineKeyRequest(); - req.setKeyId(keyId); - req.setUserId(userId); - - return this.grpcService.mgmt.removeMachineKey(req, null).then(resp => resp.toObject()); - } - - public listMachineKeys( - userId: string, - limit?: number, - offset?: number, - asc?: boolean, - ): Promise { - const req = new ListMachineKeysRequest(); - const metadata = new ListQuery(); - req.setUserId(userId); - if (limit) { - metadata.setLimit(limit); - } - if (offset) { - metadata.setOffset(offset); - } - if (asc) { - metadata.setAsc(asc); - } - req.setQuery(metadata); - return this.grpcService.mgmt.listMachineKeys(req, null).then(resp => resp.toObject()); - } - - public removeHumanLinkedIDP( - idpId: string, - userId: string, - linkedUserId: string, - ): Promise { - const req = new RemoveHumanLinkedIDPRequest(); - req.setUserId(userId); - req.setIdpId(idpId); - req.setUserId(userId); - req.setLinkedUserId(linkedUserId); - return this.grpcService.mgmt.removeHumanLinkedIDP(req, null).then(resp => resp.toObject()); - } - - public listHumanLinkedIDPs( - userId: string, - limit?: number, - offset?: number, - ): Promise { - const req = new ListHumanLinkedIDPsRequest(); - const metadata = new ListQuery(); - req.setUserId(userId); - if (limit) { - metadata.setLimit(limit); - } - if (offset) { - metadata.setOffset(offset); - } - req.setQuery(metadata); - return this.grpcService.mgmt.listHumanLinkedIDPs(req, null).then(resp => resp.toObject()); - } - - public getIAM(): Promise { - const req = new GetIAMRequest(); - return this.grpcService.mgmt.getIAM(req, null).then(resp => resp.toObject()); - } - - public getDefaultPasswordComplexityPolicy(): Promise { - const req = new GetDefaultPasswordComplexityPolicyRequest(); - return this.grpcService.mgmt.getDefaultPasswordComplexityPolicy(req, null).then(resp => resp.toObject()); - } - - public getMyOrg(): Promise { - const req = new GetMyOrgRequest(); - return this.grpcService.mgmt.getMyOrg(req, null).then(resp => resp.toObject()); - } - - public addOrgDomain(domain: string): Promise { - const req = new AddOrgDomainRequest(); - req.setDomain(domain); - return this.grpcService.mgmt.addOrgDomain(req, null).then(resp => resp.toObject()); - } - - public removeOrgDomain(domain: string): Promise { - const req = new RemoveOrgDomainRequest(); - req.setDomain(domain); - return this.grpcService.mgmt.removeOrgDomain(req, null).then(resp => resp.toObject()); - } - - public listOrgDomains(queryList?: DomainSearchQuery[]): - Promise { - const req: ListOrgDomainsRequest = new ListOrgDomainsRequest(); - // const metadata= new ListQuery(); - if (queryList) { - req.setQueriesList(queryList); - } - return this.grpcService.mgmt.listOrgDomains(req, null).then(resp => resp.toObject()); - } - - public setPrimaryOrgDomain(domain: string): Promise { - const req = new SetPrimaryOrgDomainRequest(); - req.setDomain(domain); - return this.grpcService.mgmt.setPrimaryOrgDomain(req, null).then(resp => resp.toObject()); - } - - public generateOrgDomainValidation(domain: string, type: DomainValidationType): - Promise { - const req: GenerateOrgDomainValidationRequest = new GenerateOrgDomainValidationRequest(); - req.setDomain(domain); - req.setType(type); - - return this.grpcService.mgmt.generateOrgDomainValidation(req, null).then(resp => resp.toObject()); - } - - public validateOrgDomain(domain: string): - Promise { - const req = new ValidateOrgDomainRequest(); - req.setDomain(domain); - - return this.grpcService.mgmt.validateOrgDomain(req, null).then(resp => resp.toObject()); - } - - public listOrgMembers(limit: number, offset: number): Promise { - const req = new ListOrgMembersRequest(); - const query = new ListQuery(); - if (limit) { - query.setLimit(limit); - } - if (offset) { - query.setOffset(offset); - } - req.setQuery(query); - - return this.grpcService.mgmt.listOrgMembers(req, null).then(resp => resp.toObject()); - } + public bulkRemoveUserGrant( + grantIdsList: string[], + ): Promise { + const req = new BulkRemoveUserGrantRequest(); + req.setGrantIdList(grantIdsList); - public getOrgByDomainGlobal(domain: string): Promise { - const req = new GetOrgByDomainGlobalRequest(); - req.setDomain(domain); - return this.grpcService.mgmt.getOrgByDomainGlobal(req, null).then(resp => resp.toObject()); - } + return this.grpcService.mgmt.bulkRemoveUserGrant(req, null).then(resp => resp.toObject()); + } - public addOrg(name: string): Promise { - const req = new AddOrgRequest(); - req.setName(name); - return this.grpcService.mgmt.addOrg(req, null).then(resp => resp.toObject()); - } + public listAppChanges(appId: string, projectId: string, limit: number, sequence: number): + Promise { + const req = new ListAppChangesRequest(); + const query = new ChangeQuery(); + req.setAppId(appId); + req.setProjectId(projectId); - public addOrgMember(userId: string, rolesList: string[]): Promise { - const req = new AddOrgMemberRequest(); - req.setUserId(userId); - if (rolesList) { - req.setRolesList(rolesList); - } - return this.grpcService.mgmt.addOrgMember(req, null).then(resp => resp.toObject()); + if (limit) { + query.setLimit(limit); } - - public updateOrgMember(userId: string, rolesList: string[]): Promise { - const req = new UpdateOrgMemberRequest(); - req.setUserId(userId); - req.setRolesList(rolesList); - return this.grpcService.mgmt.updateOrgMember(req, null).then(resp => resp.toObject()); + if (sequence) { + query.setSequence(sequence); } + req.setQuery(query); + return this.grpcService.mgmt.listAppChanges(req, null).then(resp => resp.toObject()); + } + public listOrgChanges(limit: number, sequence: number): Promise { + const req = new ListOrgChangesRequest(); + const query = new ChangeQuery(); - public removeOrgMember(userId: string): Promise { - const req = new RemoveOrgMemberRequest(); - req.setUserId(userId); - return this.grpcService.mgmt.removeOrgMember(req, null).then(resp => resp.toObject()); + if (limit) { + query.setLimit(limit); } - - public deactivateOrg(): Promise { - const req = new DeactivateOrgRequest(); - return this.grpcService.mgmt.deactivateOrg(req, null).then(resp => resp.toObject()); + if (sequence) { + query.setSequence(sequence); } - public reactivateOrg(): Promise { - const req = new ReactivateOrgRequest(); - return this.grpcService.mgmt.reactivateOrg(req, null).then(resp => resp.toObject()); - } + req.setQuery(query); + return this.grpcService.mgmt.listOrgChanges(req, null).then(resp => resp.toObject()); + } - public addProjectGrant( - orgId: string, - projectId: string, - roleKeysList: string[], - ): Promise { - const req = new AddProjectGrantRequest(); - req.setProjectId(projectId); - req.setGrantedOrgId(orgId); - req.setRoleKeysList(roleKeysList); - return this.grpcService.mgmt.addProjectGrant(req, null).then(resp => resp.toObject()); - } + public listProjectChanges(projectId: string, limit: number, sequence: number): + Promise { + const req = new ListProjectChangesRequest(); + req.setProjectId(projectId); + const query = new ChangeQuery(); - public listOrgMemberRoles(): Promise { - const req = new ListOrgMemberRolesRequest(); - return this.grpcService.mgmt.listOrgMemberRoles(req, null).then(resp => resp.toObject()); + if (limit) { + query.setLimit(limit); } - - // Features - - public getFeatures(): Promise { - const req = new GetFeaturesRequest(); - return this.grpcService.mgmt.getFeatures(req, null).then(resp => resp.toObject()); - } - - // Policy - - public getOrgIAMPolicy(): Promise { - const req = new GetOrgIAMPolicyRequest(); - return this.grpcService.mgmt.getOrgIAMPolicy(req, null).then(resp => resp.toObject()); - } - - public getPasswordAgePolicy(): Promise { - const req = new GetPasswordAgePolicyRequest(); - return this.grpcService.mgmt.getPasswordAgePolicy(req, null).then(resp => resp.toObject()); - } - - public addCustomPasswordAgePolicy( - maxAgeDays: number, - expireWarnDays: number, - ): Promise { - const req = new AddCustomPasswordAgePolicyRequest(); - req.setMaxAgeDays(maxAgeDays); - req.setExpireWarnDays(expireWarnDays); - - return this.grpcService.mgmt.addCustomPasswordAgePolicy(req, null).then(resp => resp.toObject()); - } - - public resetPasswordAgePolicyToDefault(): Promise { - const req = new ResetPasswordAgePolicyToDefaultRequest(); - return this.grpcService.mgmt.resetPasswordAgePolicyToDefault(req, null).then(resp => resp.toObject()); - } - - public updateCustomPasswordAgePolicy( - maxAgeDays: number, - expireWarnDays: number, - ): Promise { - const req = new UpdateCustomPasswordAgePolicyRequest(); - req.setMaxAgeDays(maxAgeDays); - req.setExpireWarnDays(expireWarnDays); - return this.grpcService.mgmt.updateCustomPasswordAgePolicy(req, null).then(resp => resp.toObject()); - } - - public getPasswordComplexityPolicy(): Promise { - const req = new GetPasswordComplexityPolicyRequest(); - return this.grpcService.mgmt.getPasswordComplexityPolicy(req, null).then(resp => resp.toObject()); - } - - public addCustomPasswordComplexityPolicy( - hasLowerCase: boolean, - hasUpperCase: boolean, - hasNumber: boolean, - hasSymbol: boolean, - minLength: number, - ): Promise { - const req = new AddCustomPasswordComplexityPolicyRequest(); - req.setHasLowercase(hasLowerCase); - req.setHasUppercase(hasUpperCase); - req.setHasNumber(hasNumber); - req.setHasSymbol(hasSymbol); - req.setMinLength(minLength); - return this.grpcService.mgmt.addCustomPasswordComplexityPolicy(req, null).then(resp => resp.toObject()); - } - - public resetPasswordComplexityPolicyToDefault(): Promise { - const req = new ResetPasswordComplexityPolicyToDefaultRequest(); - return this.grpcService.mgmt.resetPasswordComplexityPolicyToDefault(req, null).then(resp => resp.toObject()); - } - - public updateCustomPasswordComplexityPolicy( - hasLowerCase: boolean, - hasUpperCase: boolean, - hasNumber: boolean, - hasSymbol: boolean, - minLength: number, - ): Promise { - const req = new UpdateCustomPasswordComplexityPolicyRequest(); - req.setHasLowercase(hasLowerCase); - req.setHasUppercase(hasUpperCase); - req.setHasNumber(hasNumber); - req.setHasSymbol(hasSymbol); - req.setMinLength(minLength); - return this.grpcService.mgmt.updateCustomPasswordComplexityPolicy(req, null).then(resp => resp.toObject()); - } - - public getPasswordLockoutPolicy(): Promise { - const req = new GetPasswordLockoutPolicyRequest(); - - return this.grpcService.mgmt.getPasswordLockoutPolicy(req, null).then(resp => resp.toObject()); - } - - public addCustomPasswordLockoutPolicy( - maxAttempts: number, - showLockoutFailures: boolean, - ): Promise { - const req = new AddCustomPasswordLockoutPolicyRequest(); - req.setMaxAttempts(maxAttempts); - req.setShowLockoutFailure(showLockoutFailures); - - return this.grpcService.mgmt.addCustomPasswordLockoutPolicy(req, null).then(resp => resp.toObject()); - } - - public resetPasswordLockoutPolicyToDefault(): Promise { - const req = new ResetPasswordLockoutPolicyToDefaultRequest(); - return this.grpcService.mgmt.resetPasswordLockoutPolicyToDefault(req, null).then(resp => resp.toObject()); - } - - public updateCustomPasswordLockoutPolicy( - maxAttempts: number, - showLockoutFailures: boolean, - ): Promise { - const req = new UpdateCustomPasswordLockoutPolicyRequest(); - req.setMaxAttempts(maxAttempts); - req.setShowLockoutFailure(showLockoutFailures); - return this.grpcService.mgmt.updateCustomPasswordLockoutPolicy(req, null).then(resp => resp.toObject()); - } - - public getLocalizedComplexityPolicyPatternErrorString(policy: PasswordComplexityPolicy.AsObject): string { - if (policy.hasNumber && policy.hasSymbol) { - return 'POLICY.PWD_COMPLEXITY.SYMBOLANDNUMBERERROR'; - } else if (policy.hasNumber) { - return 'POLICY.PWD_COMPLEXITY.NUMBERERROR'; - } else if (policy.hasSymbol) { - return 'POLICY.PWD_COMPLEXITY.SYMBOLERROR'; - } else { - return 'POLICY.PWD_COMPLEXITY.PATTERNERROR'; - } - } - - public getUserByID(id: string): Promise { - const req = new GetUserByIDRequest(); - req.setId(id); - return this.grpcService.mgmt.getUserByID(req, null).then(resp => resp.toObject()); - } - - public removeUser(id: string): Promise { - const req = new RemoveUserRequest(); - req.setId(id); - return this.grpcService.mgmt.removeUser(req, null).then(resp => resp.toObject()); - } - - public listProjectMembers( - projectId: string, - limit: number, - offset: number, - queryList?: SearchQuery[], - ): Promise { - const req = new ListProjectMembersRequest(); - const query = new ListQuery(); - req.setQuery(query); - req.setProjectId(projectId); - if (limit) { - query.setLimit(limit); - } - if (offset) { - query.setOffset(offset); - } - if (queryList) { - req.setQueriesList(queryList); - } - req.setQuery(query); - return this.grpcService.mgmt.listProjectMembers(req, null).then(resp => resp.toObject()); - } - - public listUserMemberships(userId: string, - limit: number, offset: number, - queryList?: MembershipQuery[], - ): Promise { - const req = new ListUserMembershipsRequest(); - req.setUserId(userId); - const metadata = new ListQuery(); - if (limit) { - metadata.setLimit(limit); - } - if (offset) { - metadata.setOffset(offset); - } - if (queryList) { - req.setQueriesList(queryList); - } - req.setQuery(metadata); - return this.grpcService.mgmt.listUserMemberships(req, null).then(resp => resp.toObject()); - } - - public getHumanProfile(userId: string): Promise { - const req = new GetHumanProfileRequest(); - req.setUserId(userId); - return this.grpcService.mgmt.getHumanProfile(req, null).then(resp => resp.toObject()); - } - - public listHumanMultiFactors(userId: string): Promise { - const req = new ListHumanAuthFactorsRequest(); - req.setUserId(userId); - return this.grpcService.mgmt.listHumanAuthFactors(req, null).then(resp => resp.toObject()); - } - - public removeHumanMultiFactorOTP(userId: string): Promise { - const req = new RemoveHumanAuthFactorOTPRequest(); - req.setUserId(userId); - return this.grpcService.mgmt.removeHumanAuthFactorOTP(req, null).then(resp => resp.toObject()); - } - - public removeHumanAuthFactorU2F(userId: string, tokenId: string): Promise { - const req = new RemoveHumanAuthFactorU2FRequest(); - req.setUserId(userId); - req.setTokenId(tokenId); - return this.grpcService.mgmt.removeHumanAuthFactorU2F(req, null).then(resp => resp.toObject()); - } - - public updateHumanProfile( - userId: string, - firstName?: string, - lastName?: string, - nickName?: string, - displayName?: string, - preferredLanguage?: string, - gender?: Gender, - ): Promise { - const req = new UpdateHumanProfileRequest(); - req.setUserId(userId); - if (firstName) { - req.setFirstName(firstName); - } - if (lastName) { - req.setLastName(lastName); - } - if (nickName) { - req.setNickName(nickName); - } - if (displayName) { - req.setDisplayName(displayName); - } - if (gender) { - req.setGender(gender); - } - if (preferredLanguage) { - req.setPreferredLanguage(preferredLanguage); - } - return this.grpcService.mgmt.updateHumanProfile(req, null).then(resp => resp.toObject()); - } - - public getHumanEmail(id: string): Promise { - const req = new GetHumanEmailRequest(); - req.setUserId(id); - return this.grpcService.mgmt.getHumanEmail(req, null).then(resp => resp.toObject()); - } - - public updateHumanEmail(userId: string, email: string): Promise { - const req = new UpdateHumanEmailRequest(); - req.setUserId(userId); - req.setEmail(email); - return this.grpcService.mgmt.updateHumanEmail(req, null).then(resp => resp.toObject()); - } - - public getHumanPhone(userId: string): Promise { - const req = new GetHumanPhoneRequest(); - req.setUserId(userId); - return this.grpcService.mgmt.getHumanPhone(req, null).then(resp => resp.toObject()); - } - - public updateHumanPhone(userId: string, phone: string): Promise { - const req = new UpdateHumanPhoneRequest(); - req.setUserId(userId); - req.setPhone(phone); - return this.grpcService.mgmt.updateHumanPhone(req, null).then(resp => resp.toObject()); - } - - public removeHumanPhone(userId: string): Promise { - const req = new RemoveHumanPhoneRequest(); - req.setUserId(userId); - return this.grpcService.mgmt.removeHumanPhone(req, null).then(resp => resp.toObject()); - } - - public deactivateUser(id: string): Promise { - const req = new DeactivateUserRequest(); - req.setId(id); - return this.grpcService.mgmt.deactivateUser(req, null).then(resp => resp.toObject()); - } - - public addUserGrant( - userId: string, - roleNamesList: string[], - projectId?: string, - projectGrantId?: string, - ): Promise { - const req = new AddUserGrantRequest(); - if (projectId) { - req.setProjectId(projectId); - } - if (projectGrantId) { - req.setProjectGrantId(projectGrantId); - } - req.setUserId(userId); - req.setRoleKeysList(roleNamesList); - - return this.grpcService.mgmt.addUserGrant(req, null).then(resp => resp.toObject()); - } - - public reactivateUser(id: string): Promise { - const req = new ReactivateUserRequest(); - req.setId(id); - return this.grpcService.mgmt.reactivateUser(req, null).then(resp => resp.toObject()); - } - - public addProjectRole(projectId: string, roleKey: string, displayName: string, group: string): - Promise { - const req = new AddProjectRoleRequest(); - req.setProjectId(projectId); - req.setRoleKey(roleKey); - if (displayName) { - req.setDisplayName(displayName); - } - req.setGroup(group); - return this.grpcService.mgmt.addProjectRole(req, null).then(resp => resp.toObject()); - } - - public resendHumanEmailVerification(userId: string): Promise { - const req = new ResendHumanEmailVerificationRequest(); - req.setUserId(userId); - return this.grpcService.mgmt.resendHumanEmailVerification(req, null).then(resp => resp.toObject()); - } - - public resendHumanInitialization(userId: string, newemail: string): - Promise { - const req = new ResendHumanInitializationRequest(); - if (newemail) { - req.setEmail(newemail); - } - req.setUserId(userId); - - return this.grpcService.mgmt.resendHumanInitialization(req, null).then(resp => resp.toObject()); - } - - public resendHumanPhoneVerification(userId: string): Promise { - const req = new ResendHumanPhoneVerificationRequest(); - req.setUserId(userId); - return this.grpcService.mgmt.resendHumanPhoneVerification(req, null).then(resp => resp.toObject()); - } - - public setHumanInitialPassword(id: string, password: string): Promise { - const req = new SetHumanInitialPasswordRequest(); - req.setUserId(id); - req.setPassword(password); - return this.grpcService.mgmt.setHumanInitialPassword(req, null).then(resp => resp.toObject()); - } - - public sendHumanResetPasswordNotification(id: string, type: SendHumanResetPasswordNotificationRequest.Type): - Promise { - const req = new SendHumanResetPasswordNotificationRequest(); - req.setUserId(id); - req.setType(type); - return this.grpcService.mgmt.sendHumanResetPasswordNotification(req, null).then(resp => resp.toObject()); - } - - public listUsers(limit: number, offset: number, queriesList?: UserSearchQuery[], sortingColumn?: UserFieldName): - Promise { - const req = new ListUsersRequest(); - const query = new ListQuery(); - if (limit) { - query.setLimit(limit); - } - if (offset) { - query.setOffset(offset); - } - req.setQuery(query); - if (sortingColumn) { - req.setSortingColumn(sortingColumn); - } - if (queriesList) { - req.setQueriesList(queriesList); - } - return this.grpcService.mgmt.listUsers(req, null).then(resp => resp.toObject()); - } - - public getUserByLoginNameGlobal(loginname: string): Promise { - const req = new GetUserByLoginNameGlobalRequest(); - req.setLoginName(loginname); - return this.grpcService.mgmt.getUserByLoginNameGlobal(req, null).then(resp => resp.toObject()); - } - - // USER GRANTS - - public listUserGrants( - limit?: number, - offset?: number, - queryList?: UserGrantQuery[], - ): Promise { - const req = new ListUserGrantRequest(); - const query = new ListQuery(); - if (limit) { - query.setLimit(limit); - } - if (offset) { - query.setOffset(offset); - } - req.setQuery(query); - - if (queryList) { - req.setQueriesList(queryList); - } - return this.grpcService.mgmt.listUserGrants(req, null).then(resp => resp.toObject()); - } - - - public getUserGrantByID( - grantId: string, - userId: string, - ): Promise { - const req = new GetUserGrantByIDRequest(); - req.setGrantId(grantId); - req.setUserId(userId); - - return this.grpcService.mgmt.getUserGrantByID(req, null).then(resp => resp.toObject()); - } - - public updateUserGrant( - grantId: string, - userId: string, - roleKeysList: string[], - ): Promise { - const req = new UpdateUserGrantRequest(); - req.setGrantId(grantId); - req.setRoleKeysList(roleKeysList); - req.setUserId(userId); - - return this.grpcService.mgmt.updateUserGrant(req, null).then(resp => resp.toObject()); - } - - public removeUserGrant( - grantId: string, - userId: string, - ): Promise { - const req = new RemoveUserGrantRequest(); - req.setGrantId(grantId); - req.setUserId(userId); - - return this.grpcService.mgmt.removeUserGrant(req, null).then(resp => resp.toObject()); - } - - public bulkRemoveUserGrant( - grantIdsList: string[], - ): Promise { - const req = new BulkRemoveUserGrantRequest(); - req.setGrantIdList(grantIdsList); - - return this.grpcService.mgmt.bulkRemoveUserGrant(req, null).then(resp => resp.toObject()); - } - - public listAppChanges(appId: string, projectId: string, limit: number, sequence: number): - Promise { - const req = new ListAppChangesRequest(); - const query = new ChangeQuery(); - req.setAppId(appId); - req.setProjectId(projectId); - - if (limit) { - query.setLimit(limit); - } - if (sequence) { - query.setSequence(sequence); - } - req.setQuery(query); - return this.grpcService.mgmt.listAppChanges(req, null).then(resp => resp.toObject()); - } - - public listOrgChanges(limit: number, sequence: number): Promise { - const req = new ListOrgChangesRequest(); - const query = new ChangeQuery(); - - if (limit) { - query.setLimit(limit); - } - if (sequence) { - query.setSequence(sequence); - } - - req.setQuery(query); - return this.grpcService.mgmt.listOrgChanges(req, null).then(resp => resp.toObject()); - } - - public listProjectChanges(projectId: string, limit: number, sequence: number): - Promise { - const req = new ListProjectChangesRequest(); - req.setProjectId(projectId); - const query = new ChangeQuery(); - - if (limit) { - query.setLimit(limit); - } - if (sequence) { - query.setSequence(sequence); - } - - req.setQuery(query); - return this.grpcService.mgmt.listProjectChanges(req, null).then(resp => resp.toObject()); + if (sequence) { + query.setSequence(sequence); } - public listUserChanges(userId: string, limit: number, sequence: number): - Promise { - const req = new ListUserChangesRequest(); - req.setUserId(userId); - const query = new ChangeQuery(); + req.setQuery(query); + return this.grpcService.mgmt.listProjectChanges(req, null).then(resp => resp.toObject()); + } - if (limit) { - query.setLimit(limit); - } - if (sequence) { - query.setSequence(sequence); - } + public listUserChanges(userId: string, limit: number, sequence: number): + Promise { + const req = new ListUserChangesRequest(); + req.setUserId(userId); + const query = new ChangeQuery(); + + if (limit) { + query.setLimit(limit); + } + if (sequence) { + query.setSequence(sequence); + } + + req.setQuery(query); + return this.grpcService.mgmt.listUserChanges(req, null).then(resp => resp.toObject()); + } + + // project + + public listProjects( + limit?: number, offset?: number, queryList?: ProjectQuery[]): Promise { + const req = new ListProjectsRequest(); + const query = new ListQuery(); + + if (limit) { + query.setLimit(limit); + } + if (offset) { + query.setOffset(offset); + } + + req.setQuery(query); + + if (queryList) { + req.setQueriesList(queryList); + } + return this.grpcService.mgmt.listProjects(req, null).then(value => { + const obj = value.toObject(); + const count = obj.resultList.length; + if (count >= 0) { + this.ownedProjectsCount.next(count); + } + + return obj; + }); + } - req.setQuery(query); - return this.grpcService.mgmt.listUserChanges(req, null).then(resp => resp.toObject()); - } - - // project - - public listProjects( - limit?: number, offset?: number, queryList?: ProjectQuery[]): Promise { - const req = new ListProjectsRequest(); - const query = new ListQuery(); - - if (limit) { - query.setLimit(limit); - } - if (offset) { - query.setOffset(offset); - } - - req.setQuery(query); - - if (queryList) { - req.setQueriesList(queryList); - } - return this.grpcService.mgmt.listProjects(req, null).then(value => { - const obj = value.toObject(); - const count = obj.resultList.length; - if (count >= 0) { - this.ownedProjectsCount.next(count); - } - - return obj; - }); - } - - public listGrantedProjects( - limit: number, offset: number, queryList?: ProjectQuery[]): Promise { - const req = new ListGrantedProjectsRequest(); - const query = new ListQuery(); - - if (limit) { - query.setLimit(limit); - } - if (offset) { - query.setOffset(offset); - } - - req.setQuery(query); - if (queryList) { - req.setQueriesList(queryList); - } - return this.grpcService.mgmt.listGrantedProjects(req, null).then(value => { - const obj = value.toObject(); - this.grantedProjectsCount.next(obj.resultList.length); - return obj; - }); - } - - public getOIDCInformation(): Promise { - const req = new GetOIDCInformationRequest(); - return this.grpcService.mgmt.getOIDCInformation(req, null).then(resp => resp.toObject()); - } - - public getProjectByID(projectId: string): Promise { - const req = new GetProjectByIDRequest(); - req.setId(projectId); - return this.grpcService.mgmt.getProjectByID(req, null).then(resp => resp.toObject()); - } - - public getGrantedProjectByID(projectId: string, grantId: string): Promise { - const req = new GetGrantedProjectByIDRequest(); - req.setGrantId(grantId); - req.setProjectId(projectId); - return this.grpcService.mgmt.getGrantedProjectByID(req, null).then(resp => resp.toObject()); - } - - public addProject(project: AddProjectRequest.AsObject): Promise { - const req = new AddProjectRequest(); - req.setName(project.name); - return this.grpcService.mgmt.addProject(req, null).then(value => { - const current = this.ownedProjectsCount.getValue(); - this.ownedProjectsCount.next(current + 1); - return value.toObject(); - }); - } - - public updateProject(req: UpdateProjectRequest): Promise { - return this.grpcService.mgmt.updateProject(req, null).then(resp => resp.toObject()); - } - - public updateProjectGrant(grantId: string, projectId: string, rolesList: string[]): - Promise { - const req = new UpdateProjectGrantRequest(); - req.setRoleKeysList(rolesList); - req.setGrantId(grantId); - req.setProjectId(projectId); - return this.grpcService.mgmt.updateProjectGrant(req, null).then(resp => resp.toObject()); - } - - public removeProjectGrant(grantId: string, projectId: string): Promise { - const req = new RemoveProjectGrantRequest(); - req.setGrantId(grantId); - req.setProjectId(projectId); - return this.grpcService.mgmt.removeProjectGrant(req, null).then(resp => resp.toObject()); - } - - public deactivateProject(projectId: string): Promise { - const req = new DeactivateProjectRequest(); - req.setId(projectId); - return this.grpcService.mgmt.deactivateProject(req, null).then(resp => resp.toObject()); - } - - public reactivateProject(projectId: string): Promise { - const req = new ReactivateProjectRequest(); - req.setId(projectId); - return this.grpcService.mgmt.reactivateProject(req, null).then(resp => resp.toObject()); - } - - public listProjectGrants(projectId: string, limit: number, offset: number): - Promise { - const req = new ListProjectGrantsRequest(); - req.setProjectId(projectId); - const query = new ListQuery(); - - if (limit) { - query.setLimit(limit); - } - if (offset) { - query.setOffset(offset); - } - - req.setQuery(query); - return this.grpcService.mgmt.listProjectGrants(req, null).then(resp => resp.toObject()); - } - - public listProjectGrantMemberRoles(): Promise { - const req = new ListProjectGrantMemberRolesRequest(); - return this.grpcService.mgmt.listProjectGrantMemberRoles(req, null).then(resp => resp.toObject()); - } - - public addProjectMember(projectId: string, userId: string, rolesList: string[]): - Promise { - const req = new AddProjectMemberRequest(); - req.setProjectId(projectId); - req.setUserId(userId); - req.setRolesList(rolesList); - return this.grpcService.mgmt.addProjectMember(req, null).then(resp => resp.toObject()); - } - - public updateProjectMember(projectId: string, userId: string, rolesList: string[]): - Promise { - const req = new UpdateProjectMemberRequest(); - req.setProjectId(projectId); - req.setUserId(userId); - req.setRolesList(rolesList); - return this.grpcService.mgmt.updateProjectMember(req, null).then(resp => resp.toObject()); - } - - public addProjectGrantMember( - projectId: string, - grantId: string, - userId: string, - rolesList: string[], - ): Promise { - const req = new AddProjectGrantMemberRequest(); - req.setProjectId(projectId); - req.setGrantId(grantId); - req.setUserId(userId); - req.setRolesList(rolesList); - return this.grpcService.mgmt.addProjectGrantMember(req, null).then(resp => resp.toObject()); - } - - public updateProjectGrantMember( - projectId: string, - grantId: string, - userId: string, - rolesList: string[], - ): Promise { - const req = new UpdateProjectGrantMemberRequest(); - req.setProjectId(projectId); - req.setGrantId(grantId); - req.setUserId(userId); - req.setRolesList(rolesList); - return this.grpcService.mgmt.updateProjectGrantMember(req, null).then(resp => resp.toObject()); - } - - public listProjectGrantMembers( - projectId: string, - grantId: string, - limit: number, - offset: number, - queryList?: SearchQuery[], - ): Promise { - const req = new ListProjectGrantMembersRequest(); - req.setProjectId(projectId); - req.setGrantId(grantId); - - const query = new ListQuery(); - if (limit) { - query.setLimit(limit); - } - if (offset) { - query.setOffset(offset); - } - - req.setQuery(query); - if (queryList) { - req.setQueriesList(queryList); - } - - return this.grpcService.mgmt.listProjectGrantMembers(req, null).then(resp => resp.toObject()); - } - - public removeProjectGrantMember( - projectId: string, - grantId: string, - userId: string, - ): Promise { - const req = new RemoveProjectGrantMemberRequest(); - req.setGrantId(grantId); - req.setUserId(userId); - req.setProjectId(projectId); - return this.grpcService.mgmt.removeProjectGrantMember(req, null).then(resp => resp.toObject()); - } - - public reactivateApp(projectId: string, appId: string): Promise { - const req = new ReactivateAppRequest(); - req.setAppId(appId); - req.setProjectId(projectId); - - return this.grpcService.mgmt.reactivateApp(req, null).then(resp => resp.toObject()); - } - - public deactivateApp(projectId: string, appId: string): Promise { - const req = new DeactivateAppRequest(); - req.setAppId(appId); - req.setProjectId(projectId); - - return this.grpcService.mgmt.deactivateApp(req, null).then(resp => resp.toObject()); - } - - public regenerateOIDCClientSecret(appId: string, projectId: string): - Promise { - const req = new RegenerateOIDCClientSecretRequest(); - req.setAppId(appId); - req.setProjectId(projectId); - return this.grpcService.mgmt.regenerateOIDCClientSecret(req, null).then(resp => resp.toObject()); - } - - public listAppKeys( - projectId: string, - appId: string, - limit: number, - offset: number, - ): Promise { - const req = new ListAppKeysRequest(); - req.setProjectId(projectId); - req.setAppId(appId); - const metaData = new ListQuery(); - if (limit) { - metaData.setLimit(limit); - } - if (offset) { - metaData.setOffset(offset); - } - req.setQuery(metaData); - return this.grpcService.mgmt.listAppKeys(req, null).then(resp => resp.toObject()); - } - - public addAppKey( - projectId: string, - appId: string, - type: KeyType, - expirationDate?: Timestamp, - ): Promise { - const req = new AddAppKeyRequest(); - req.setProjectId(projectId); - req.setAppId(appId); - req.setType(type); - if (expirationDate) { - req.setExpirationDate(expirationDate); - } - return this.grpcService.mgmt.addAppKey(req, null).then(resp => resp.toObject()); - } - - public removeAppKey( - projectId: string, - appId: string, - keyId: string, - ): Promise { - const req = new RemoveAppKeyRequest(); - req.setAppId(appId); - req.setKeyId(keyId); - req.setProjectId(projectId); - return this.grpcService.mgmt.removeAppKey(req, null).then(resp => resp.toObject()); - } - - public listProjectRoles( - projectId: string, - limit: number, - offset: number, - queryList?: RoleQuery[], - ): Promise { - const req = new ListProjectRolesRequest(); - req.setProjectId(projectId); - - const query = new ListQuery(); - if (limit) { - query.setLimit(limit); - } - if (offset) { - query.setOffset(offset); - } - - req.setQuery(query); - if (queryList) { - req.setQueriesList(queryList); - } - return this.grpcService.mgmt.listProjectRoles(req, null).then(resp => resp.toObject()); - } - - public bulkAddProjectRoles( - projectId: string, - rolesList: BulkAddProjectRolesRequest.Role[], - ): Promise { - const req = new BulkAddProjectRolesRequest(); - req.setProjectId(projectId); - req.setRolesList(rolesList); - return this.grpcService.mgmt.bulkAddProjectRoles(req, null).then(resp => resp.toObject()); - } - - public removeProjectRole(projectId: string, roleKey: string): Promise { - const req = new RemoveProjectRoleRequest(); - req.setProjectId(projectId); - req.setRoleKey(roleKey); - return this.grpcService.mgmt.removeProjectRole(req, null).then(resp => resp.toObject()); - } - - - public updateProjectRole(projectId: string, roleKey: string, displayName: string, group: string): - Promise { - const req = new UpdateProjectRoleRequest(); - req.setProjectId(projectId); - req.setRoleKey(roleKey); - req.setGroup(group); - req.setDisplayName(displayName); - return this.grpcService.mgmt.updateProjectRole(req, null).then(resp => resp.toObject()); - } - - - public removeProjectMember(projectId: string, userId: string): Promise { - const req = new RemoveProjectMemberRequest(); - req.setProjectId(projectId); - req.setUserId(userId); - return this.grpcService.mgmt.removeProjectMember(req, null).then(resp => resp.toObject()); - } - - public listApps( - projectId: string, - limit: number, - offset: number, - queryList?: AppQuery[]): Promise { - const req = new ListAppsRequest(); - req.setProjectId(projectId); - const query = new ListQuery(); - if (limit) { - query.setLimit(limit); - } - if (offset) { - query.setOffset(offset); - } - req.setQuery(query); - if (queryList) { - req.setQueriesList(queryList); - } - return this.grpcService.mgmt.listApps(req, null).then(resp => resp.toObject()); - } - - public getAppByID(projectId: string, appId: string): Promise { - const req = new GetAppByIDRequest(); - req.setProjectId(projectId); - req.setAppId(appId); - return this.grpcService.mgmt.getAppByID(req, null).then(resp => resp.toObject()); - } - - public listProjectMemberRoles(): Promise { - const req = new ListProjectMemberRolesRequest(); - return this.grpcService.mgmt.listProjectMemberRoles(req, null).then(resp => resp.toObject()); - } - - public getProjectGrantByID(grantId: string, projectId: string): Promise { - const req = new GetProjectGrantByIDRequest(); - req.setGrantId(grantId); - req.setProjectId(projectId); - return this.grpcService.mgmt.getProjectGrantByID(req, null).then(resp => resp.toObject()); - } - - public removeProject(id: string): Promise { - const req = new RemoveProjectRequest(); - req.setId(id); - return this.grpcService.mgmt.removeProject(req, null).then(value => { - const current = this.ownedProjectsCount.getValue(); - this.ownedProjectsCount.next(current > 0 ? current - 1 : 0); - return value.toObject(); - }); - } - - public deactivateProjectGrant(grantId: string, projectId: string): Promise { - const req = new DeactivateProjectGrantRequest(); - req.setGrantId(grantId); - req.setProjectId(projectId); - return this.grpcService.mgmt.deactivateProjectGrant(req, null).then(resp => resp.toObject()); - } - - public reactivateProjectGrant(grantId: string, projectId: string): Promise { - const req = new ReactivateProjectGrantRequest(); - req.setGrantId(grantId); - req.setProjectId(projectId); - return this.grpcService.mgmt.reactivateProjectGrant(req, null).then(resp => resp.toObject()); - } - - public addOIDCApp(app: AddOIDCAppRequest.AsObject): Promise { - const req: AddOIDCAppRequest = new AddOIDCAppRequest(); - req.setAuthMethodType(app.authMethodType); - req.setName(app.name); - req.setProjectId(app.projectId); - req.setResponseTypesList(app.responseTypesList); - req.setGrantTypesList(app.grantTypesList); - req.setAppType(app.appType); - req.setPostLogoutRedirectUrisList(app.postLogoutRedirectUrisList); - req.setRedirectUrisList(app.redirectUrisList); - return this.grpcService.mgmt.addOIDCApp(req, null).then(resp => resp.toObject()); - } - - public addAPIApp(app: AddAPIAppRequest.AsObject): Promise { - const req: AddAPIAppRequest = new AddAPIAppRequest(); - req.setAuthMethodType(app.authMethodType); - req.setName(app.name); - req.setProjectId(app.projectId); - return this.grpcService.mgmt.addAPIApp(req, null).then(resp => resp.toObject()); - } - - public regenerateAPIClientSecret(appId: string, projectId: string): Promise { - const req = new RegenerateAPIClientSecretRequest(); - req.setAppId(appId); - req.setProjectId(projectId); - return this.grpcService.mgmt.regenerateAPIClientSecret(req, null).then(resp => resp.toObject()); - } - - public updateApp(projectId: string, appId: string, name: string): Promise { - const req = new UpdateAppRequest(); - req.setAppId(appId); - req.setName(name); - req.setProjectId(projectId); - return this.grpcService.mgmt.updateApp(req, null).then(resp => resp.toObject()); - } - - public updateOIDCAppConfig(req: UpdateOIDCAppConfigRequest): Promise { - return this.grpcService.mgmt.updateOIDCAppConfig(req, null).then(resp => resp.toObject()); - } - - public updateAPIAppConfig(req: UpdateAPIAppConfigRequest): Promise { - return this.grpcService.mgmt.updateAPIAppConfig(req, null).then(resp => resp.toObject()); - } - - public removeApp(projectId: string, appId: string): Promise { - const req = new RemoveAppRequest(); - req.setAppId(appId); - req.setProjectId(projectId); - return this.grpcService.mgmt.removeApp(req, null).then(resp => resp.toObject()); - } + public listGrantedProjects( + limit: number, offset: number, queryList?: ProjectQuery[]): Promise { + const req = new ListGrantedProjectsRequest(); + const query = new ListQuery(); + + if (limit) { + query.setLimit(limit); + } + if (offset) { + query.setOffset(offset); + } + + req.setQuery(query); + if (queryList) { + req.setQueriesList(queryList); + } + return this.grpcService.mgmt.listGrantedProjects(req, null).then(value => { + const obj = value.toObject(); + this.grantedProjectsCount.next(obj.resultList.length); + return obj; + }); + } + + public getOIDCInformation(): Promise { + const req = new GetOIDCInformationRequest(); + return this.grpcService.mgmt.getOIDCInformation(req, null).then(resp => resp.toObject()); + } + + public getProjectByID(projectId: string): Promise { + const req = new GetProjectByIDRequest(); + req.setId(projectId); + return this.grpcService.mgmt.getProjectByID(req, null).then(resp => resp.toObject()); + } + + public getGrantedProjectByID(projectId: string, grantId: string): Promise { + const req = new GetGrantedProjectByIDRequest(); + req.setGrantId(grantId); + req.setProjectId(projectId); + return this.grpcService.mgmt.getGrantedProjectByID(req, null).then(resp => resp.toObject()); + } + + public addProject(project: AddProjectRequest.AsObject): Promise { + const req = new AddProjectRequest(); + req.setName(project.name); + return this.grpcService.mgmt.addProject(req, null).then(value => { + const current = this.ownedProjectsCount.getValue(); + this.ownedProjectsCount.next(current + 1); + return value.toObject(); + }); + } + + public updateProject(req: UpdateProjectRequest): Promise { + return this.grpcService.mgmt.updateProject(req, null).then(resp => resp.toObject()); + } + + public updateProjectGrant(grantId: string, projectId: string, rolesList: string[]): + Promise { + const req = new UpdateProjectGrantRequest(); + req.setRoleKeysList(rolesList); + req.setGrantId(grantId); + req.setProjectId(projectId); + return this.grpcService.mgmt.updateProjectGrant(req, null).then(resp => resp.toObject()); + } + + public removeProjectGrant(grantId: string, projectId: string): Promise { + const req = new RemoveProjectGrantRequest(); + req.setGrantId(grantId); + req.setProjectId(projectId); + return this.grpcService.mgmt.removeProjectGrant(req, null).then(resp => resp.toObject()); + } + + public deactivateProject(projectId: string): Promise { + const req = new DeactivateProjectRequest(); + req.setId(projectId); + return this.grpcService.mgmt.deactivateProject(req, null).then(resp => resp.toObject()); + } + + public reactivateProject(projectId: string): Promise { + const req = new ReactivateProjectRequest(); + req.setId(projectId); + return this.grpcService.mgmt.reactivateProject(req, null).then(resp => resp.toObject()); + } + + public listProjectGrants(projectId: string, limit: number, offset: number): + Promise { + const req = new ListProjectGrantsRequest(); + req.setProjectId(projectId); + const query = new ListQuery(); + + if (limit) { + query.setLimit(limit); + } + if (offset) { + query.setOffset(offset); + } + + req.setQuery(query); + return this.grpcService.mgmt.listProjectGrants(req, null).then(resp => resp.toObject()); + } + + public listProjectGrantMemberRoles(): Promise { + const req = new ListProjectGrantMemberRolesRequest(); + return this.grpcService.mgmt.listProjectGrantMemberRoles(req, null).then(resp => resp.toObject()); + } + + public addProjectMember(projectId: string, userId: string, rolesList: string[]): + Promise { + const req = new AddProjectMemberRequest(); + req.setProjectId(projectId); + req.setUserId(userId); + req.setRolesList(rolesList); + return this.grpcService.mgmt.addProjectMember(req, null).then(resp => resp.toObject()); + } + + public updateProjectMember(projectId: string, userId: string, rolesList: string[]): + Promise { + const req = new UpdateProjectMemberRequest(); + req.setProjectId(projectId); + req.setUserId(userId); + req.setRolesList(rolesList); + return this.grpcService.mgmt.updateProjectMember(req, null).then(resp => resp.toObject()); + } + + public addProjectGrantMember( + projectId: string, + grantId: string, + userId: string, + rolesList: string[], + ): Promise { + const req = new AddProjectGrantMemberRequest(); + req.setProjectId(projectId); + req.setGrantId(grantId); + req.setUserId(userId); + req.setRolesList(rolesList); + return this.grpcService.mgmt.addProjectGrantMember(req, null).then(resp => resp.toObject()); + } + + public updateProjectGrantMember( + projectId: string, + grantId: string, + userId: string, + rolesList: string[], + ): Promise { + const req = new UpdateProjectGrantMemberRequest(); + req.setProjectId(projectId); + req.setGrantId(grantId); + req.setUserId(userId); + req.setRolesList(rolesList); + return this.grpcService.mgmt.updateProjectGrantMember(req, null).then(resp => resp.toObject()); + } + + public listProjectGrantMembers( + projectId: string, + grantId: string, + limit: number, + offset: number, + queryList?: SearchQuery[], + ): Promise { + const req = new ListProjectGrantMembersRequest(); + req.setProjectId(projectId); + req.setGrantId(grantId); + + const query = new ListQuery(); + if (limit) { + query.setLimit(limit); + } + if (offset) { + query.setOffset(offset); + } + + req.setQuery(query); + if (queryList) { + req.setQueriesList(queryList); + } + + return this.grpcService.mgmt.listProjectGrantMembers(req, null).then(resp => resp.toObject()); + } + + public removeProjectGrantMember( + projectId: string, + grantId: string, + userId: string, + ): Promise { + const req = new RemoveProjectGrantMemberRequest(); + req.setGrantId(grantId); + req.setUserId(userId); + req.setProjectId(projectId); + return this.grpcService.mgmt.removeProjectGrantMember(req, null).then(resp => resp.toObject()); + } + + public reactivateApp(projectId: string, appId: string): Promise { + const req = new ReactivateAppRequest(); + req.setAppId(appId); + req.setProjectId(projectId); + + return this.grpcService.mgmt.reactivateApp(req, null).then(resp => resp.toObject()); + } + + public deactivateApp(projectId: string, appId: string): Promise { + const req = new DeactivateAppRequest(); + req.setAppId(appId); + req.setProjectId(projectId); + + return this.grpcService.mgmt.deactivateApp(req, null).then(resp => resp.toObject()); + } + + public regenerateOIDCClientSecret(appId: string, projectId: string): + Promise { + const req = new RegenerateOIDCClientSecretRequest(); + req.setAppId(appId); + req.setProjectId(projectId); + return this.grpcService.mgmt.regenerateOIDCClientSecret(req, null).then(resp => resp.toObject()); + } + + public listAppKeys( + projectId: string, + appId: string, + limit: number, + offset: number, + ): Promise { + const req = new ListAppKeysRequest(); + req.setProjectId(projectId); + req.setAppId(appId); + const metaData = new ListQuery(); + if (limit) { + metaData.setLimit(limit); + } + if (offset) { + metaData.setOffset(offset); + } + req.setQuery(metaData); + return this.grpcService.mgmt.listAppKeys(req, null).then(resp => resp.toObject()); + } + + public addAppKey( + projectId: string, + appId: string, + type: KeyType, + expirationDate?: Timestamp, + ): Promise { + const req = new AddAppKeyRequest(); + req.setProjectId(projectId); + req.setAppId(appId); + req.setType(type); + if (expirationDate) { + req.setExpirationDate(expirationDate); + } + return this.grpcService.mgmt.addAppKey(req, null).then(resp => resp.toObject()); + } + + public removeAppKey( + projectId: string, + appId: string, + keyId: string, + ): Promise { + const req = new RemoveAppKeyRequest(); + req.setAppId(appId); + req.setKeyId(keyId); + req.setProjectId(projectId); + return this.grpcService.mgmt.removeAppKey(req, null).then(resp => resp.toObject()); + } + + public listProjectRoles( + projectId: string, + limit: number, + offset: number, + queryList?: RoleQuery[], + ): Promise { + const req = new ListProjectRolesRequest(); + req.setProjectId(projectId); + + const query = new ListQuery(); + if (limit) { + query.setLimit(limit); + } + if (offset) { + query.setOffset(offset); + } + + req.setQuery(query); + if (queryList) { + req.setQueriesList(queryList); + } + return this.grpcService.mgmt.listProjectRoles(req, null).then(resp => resp.toObject()); + } + + public bulkAddProjectRoles( + projectId: string, + rolesList: BulkAddProjectRolesRequest.Role[], + ): Promise { + const req = new BulkAddProjectRolesRequest(); + req.setProjectId(projectId); + req.setRolesList(rolesList); + return this.grpcService.mgmt.bulkAddProjectRoles(req, null).then(resp => resp.toObject()); + } + + public removeProjectRole(projectId: string, roleKey: string): Promise { + const req = new RemoveProjectRoleRequest(); + req.setProjectId(projectId); + req.setRoleKey(roleKey); + return this.grpcService.mgmt.removeProjectRole(req, null).then(resp => resp.toObject()); + } + + + public updateProjectRole(projectId: string, roleKey: string, displayName: string, group: string): + Promise { + const req = new UpdateProjectRoleRequest(); + req.setProjectId(projectId); + req.setRoleKey(roleKey); + req.setGroup(group); + req.setDisplayName(displayName); + return this.grpcService.mgmt.updateProjectRole(req, null).then(resp => resp.toObject()); + } + + + public removeProjectMember(projectId: string, userId: string): Promise { + const req = new RemoveProjectMemberRequest(); + req.setProjectId(projectId); + req.setUserId(userId); + return this.grpcService.mgmt.removeProjectMember(req, null).then(resp => resp.toObject()); + } + + public listApps( + projectId: string, + limit: number, + offset: number, + queryList?: AppQuery[]): Promise { + const req = new ListAppsRequest(); + req.setProjectId(projectId); + const query = new ListQuery(); + if (limit) { + query.setLimit(limit); + } + if (offset) { + query.setOffset(offset); + } + req.setQuery(query); + if (queryList) { + req.setQueriesList(queryList); + } + return this.grpcService.mgmt.listApps(req, null).then(resp => resp.toObject()); + } + + public getAppByID(projectId: string, appId: string): Promise { + const req = new GetAppByIDRequest(); + req.setProjectId(projectId); + req.setAppId(appId); + return this.grpcService.mgmt.getAppByID(req, null).then(resp => resp.toObject()); + } + + public listProjectMemberRoles(): Promise { + const req = new ListProjectMemberRolesRequest(); + return this.grpcService.mgmt.listProjectMemberRoles(req, null).then(resp => resp.toObject()); + } + + public getProjectGrantByID(grantId: string, projectId: string): Promise { + const req = new GetProjectGrantByIDRequest(); + req.setGrantId(grantId); + req.setProjectId(projectId); + return this.grpcService.mgmt.getProjectGrantByID(req, null).then(resp => resp.toObject()); + } + + public removeProject(id: string): Promise { + const req = new RemoveProjectRequest(); + req.setId(id); + return this.grpcService.mgmt.removeProject(req, null).then(value => { + const current = this.ownedProjectsCount.getValue(); + this.ownedProjectsCount.next(current > 0 ? current - 1 : 0); + return value.toObject(); + }); + } + + public deactivateProjectGrant(grantId: string, projectId: string): Promise { + const req = new DeactivateProjectGrantRequest(); + req.setGrantId(grantId); + req.setProjectId(projectId); + return this.grpcService.mgmt.deactivateProjectGrant(req, null).then(resp => resp.toObject()); + } + + public reactivateProjectGrant(grantId: string, projectId: string): Promise { + const req = new ReactivateProjectGrantRequest(); + req.setGrantId(grantId); + req.setProjectId(projectId); + return this.grpcService.mgmt.reactivateProjectGrant(req, null).then(resp => resp.toObject()); + } + + public addOIDCApp(app: AddOIDCAppRequest.AsObject): Promise { + const req: AddOIDCAppRequest = new AddOIDCAppRequest(); + req.setAuthMethodType(app.authMethodType); + req.setName(app.name); + req.setProjectId(app.projectId); + req.setResponseTypesList(app.responseTypesList); + req.setGrantTypesList(app.grantTypesList); + req.setAppType(app.appType); + req.setPostLogoutRedirectUrisList(app.postLogoutRedirectUrisList); + req.setRedirectUrisList(app.redirectUrisList); + return this.grpcService.mgmt.addOIDCApp(req, null).then(resp => resp.toObject()); + } + + public addAPIApp(app: AddAPIAppRequest.AsObject): Promise { + const req: AddAPIAppRequest = new AddAPIAppRequest(); + req.setAuthMethodType(app.authMethodType); + req.setName(app.name); + req.setProjectId(app.projectId); + return this.grpcService.mgmt.addAPIApp(req, null).then(resp => resp.toObject()); + } + + public regenerateAPIClientSecret(appId: string, projectId: string): Promise { + const req = new RegenerateAPIClientSecretRequest(); + req.setAppId(appId); + req.setProjectId(projectId); + return this.grpcService.mgmt.regenerateAPIClientSecret(req, null).then(resp => resp.toObject()); + } + + public updateApp(projectId: string, appId: string, name: string): Promise { + const req = new UpdateAppRequest(); + req.setAppId(appId); + req.setName(name); + req.setProjectId(projectId); + return this.grpcService.mgmt.updateApp(req, null).then(resp => resp.toObject()); + } + + public updateOIDCAppConfig(req: UpdateOIDCAppConfigRequest): Promise { + return this.grpcService.mgmt.updateOIDCAppConfig(req, null).then(resp => resp.toObject()); + } + + public updateAPIAppConfig(req: UpdateAPIAppConfigRequest): Promise { + return this.grpcService.mgmt.updateAPIAppConfig(req, null).then(resp => resp.toObject()); + } + + public removeApp(projectId: string, appId: string): Promise { + const req = new RemoveAppRequest(); + req.setAppId(appId); + req.setProjectId(projectId); + return this.grpcService.mgmt.removeApp(req, null).then(resp => resp.toObject()); + } } diff --git a/console/src/app/services/upload.service.ts b/console/src/app/services/upload.service.ts new file mode 100644 index 0000000000..67fbc41d5d --- /dev/null +++ b/console/src/app/services/upload.service.ts @@ -0,0 +1,106 @@ +import { HttpClient } from '@angular/common/http'; +import { Injectable } from '@angular/core'; + +import { Org } from '../proto/generated/zitadel/org_pb'; +import { StorageService } from './storage.service'; + +const ORG_STORAGE_KEY = 'organization'; +const authorizationKey = 'Authorization'; +const orgKey = 'x-zitadel-orgid'; + +const bearerPrefix = 'Bearer'; +const accessTokenStorageKey = 'access_token'; + +export enum UploadEndpoint { + IAMFONT = 'iam/policy/label/font', + MGMTFONT = 'org/policy/label/font', + + IAMDARKLOGO = 'iam/policy/label/logo/dark', + IAMLIGHTLOGO = 'iam/policy/label/logo', + IAMDARKICON = 'iam/policy/label/icon/dark', + IAMLIGHTICON = 'iam/policy/label/icon', + + MGMTDARKLOGO = 'org/policy/label/logo/dark', + MGMTLIGHTLOGO = 'org/policy/label/logo', + MGMTDARKICON = 'org/policy/label/icon/dark', + MGMTLIGHTICON = 'org/policy/label/icon', +} + +export enum DownloadEndpoint { + IAMFONT = 'iam/policy/label/font', + MGMTFONT = 'org/policy/label/font', + + IAMDARKLOGO = 'iam/policy/label/logo/dark', + IAMLOGO = 'iam/policy/label/logo', + IAMDARKICON = 'iam/policy/label/icon/dark', + IAMICON = 'iam/policy/label/icon', + + MGMTDARKLOGO = 'org/policy/label/logo/dark', + MGMTLOGO = 'org/policy/label/logo', + MGMTDARKICON = 'org/policy/label/icon/dark', + MGMTICON = 'org/policy/label/icon', + + IAMDARKLOGOPREVIEW = 'iam/policy/label/logo/dark/_preview', + IAMLOGOPREVIEW = 'iam/policy/label/logo/_preview', + IAMDARKICONPREVIEW = 'iam/policy/label/icon/dark/_preview', + IAMICONPREVIEW = 'iam/policy/label/icon/_preview', + + MGMTDARKLOGOPREVIEW = 'org/policy/label/logo/dark/_preview', + MGMTLOGOPREVIEW = 'org/policy/label/logo/_preview', + MGMTDARKICONPREVIEW = 'org/policy/label/icon/dark/_preview', + MGMTICONPREVIEW = 'org/policy/label/icon/_preview', +} + +@Injectable({ + providedIn: 'root', +}) +export class UploadService { + private serviceUrl: string = ''; + private accessToken: string = ''; + private org!: Org.AsObject; + constructor(private http: HttpClient, private storageService: StorageService) { + + http.get('./assets/environment.json') + .toPromise().then((data: any) => { + if (data && data.uploadServiceUrl) { + this.serviceUrl = data.uploadServiceUrl; + const aT = this.storageService.getItem(accessTokenStorageKey); + + if (aT) { + this.accessToken = aT; + } + + const org: Org.AsObject | null = (this.storageService.getItem(ORG_STORAGE_KEY)); + + if (org) { + this.org = org; + } + } + }).catch(error => { + console.error(error); + }); + } + + public upload(endpoint: UploadEndpoint, body: any): Promise { + return this.http.post(`${this.serviceUrl}/assets/v1/${endpoint}`, + body, + { + headers: { + [authorizationKey]: `${bearerPrefix} ${this.accessToken}`, + [orgKey]: `${this.org.id}`, + }, + }).toPromise(); + } + + public load(endpoint: string): Promise { + return this.http.get(`${this.serviceUrl}/assets/v1/${endpoint}`, + + { + responseType: 'blob', + headers: { + [authorizationKey]: `${bearerPrefix} ${this.accessToken}`, + [orgKey]: `${this.org.id}`, + }, + }).toPromise(); + } +} diff --git a/console/src/assets/environment.json b/console/src/assets/environment.json index 6be181ff8d..1648861c16 100644 --- a/console/src/assets/environment.json +++ b/console/src/assets/environment.json @@ -1,8 +1,9 @@ { - "authServiceUrl": "https://api.zitadel.dev", - "mgmtServiceUrl": "https://api.zitadel.dev", - "adminServiceUrl":"https://api.zitadel.dev", - "subscriptionServiceUrl":"https://sub.zitadel.dev", - "issuer": "https://issuer.zitadel.dev", - "clientid": "70669160379706195@zitadel" + "authServiceUrl": "https://api.zitadel.io", + "mgmtServiceUrl": "https://api.zitadel.io", + "adminServiceUrl":"https://api.zitadel.io", + "subscriptionServiceUrl":"https://sub.zitadel.io", + "uploadServiceUrl":"https://api.zitadel.io", + "issuer": "https://issuer.zitadel.io", + "clientid": "69234247558357051@zitadel" } diff --git a/console/src/assets/i18n/de.json b/console/src/assets/i18n/de.json index 0f66f1b3e9..0a0f7ac29b 100644 --- a/console/src/assets/i18n/de.json +++ b/console/src/assets/i18n/de.json @@ -104,8 +104,9 @@ } }, "ACTIONS": { - "SHOW":"Aufklappen", - "HIDE":"Zuklappen", + "SET":"Übernehmen", + "SHOW":"Aufklappen", + "HIDE":"Zuklappen", "SAVE": "Speichern", "SAVENOW": "Speichern", "NEW": "Neu", @@ -613,7 +614,8 @@ "LOGINPOLICYFACTORS": "Login Richtlinie: Mltifaktoren - benutzerdefiniert", "LOGINPOLICYPASSWORDLESS": "Login Richtlinie: Passwortlose Authentifizierung - benutzerdefiniert", "LOGINPOLICYCOMPLEXITYPOLICY": "Passwortkomplexitäts Richtlinie - benutzerdefiniert", - "LABELPOLICY": "Label Richtlinie - benutzerdefiniert", + "LABELPOLICYPRIVATELABEL": "Label Richtlinie - benutzerdefiniert", + "LABELPOLICYWATERMARK": "Label Richtlinie - Wasserzeichen", "CUSTOMDOMAIN": "Domänen Verifikation - verfügbar" }, "TIERSTATES": { @@ -636,6 +638,28 @@ "NUMBERERROR": "Das Password muss eine Ziffer beinhalten.", "PATTERNERROR": "Das Passwort erfüllt nicht die vorgeschriebene Richtlinie." }, + "PRIVATELABELING": { + "TITLE":"Private Labeling", + "DESCRIPTION":"Verleihe dem Login deinen benutzerdefinierten Style und passe das Verhalten an.", + "PREVIEW_DESCRIPTION":"Änderungen dieser Richtlinie werden automatisch in der Preview Umgebung verfügbar. Um die Preview zu Testen muss dem login flow der scope 'x-preview' mitgegeben werden.", + "BTN":"Datei auswählen", + "ACTIVATEPREVIEW":"Konfiguration übernehmen", + "DARK":"Dunkler Modus", + "LIGHT":"Heller Modus", + "CHANGEVIEW":"Ansicht wechseln", + "ACTIVATED":"Richtlinie wurde LIVE geschaltet", + "THEME":"Modus", + "COLORS":"Farben", + "FONT":"Schrift", + "ADVANCEDBEHAVIOR":"Erweitertes Verhalten", + "PREVIEW": { + "TITLE":"Anmeldung", + "SECOND":"mit ZITADEL-Konto anmelden.", + "ERROR":"Benutzer konnte nicht gefunden werden!", + "PRIMARYBUTTON":"weiter", + "SECONDARYBUTTON":"registrieren" + } + }, "PWD_AGE": { "TITLE": "Gültigkeitsdauer für Passwörter", "DESCRIPTION": "Du kannst eine Richtlinie für die maximale Gültigkeitsdauer von Passwörtern festlegen. Diese Richtlinie löst eine Warnung nach Ablauf einer festgelegten Gültigkeitsdauer aus." @@ -648,6 +672,10 @@ "TITLE": "Zugangseinstellungen IAM", "DESCRIPTION": "Definiere die Zugangseistellungen für Benutzer." }, + "PRIVATELABELING_POLICY": { + "TITLE": "Private Labeling", + "DESCRIPTION": "Definiere das Erscheinungsbild des Logins." + }, "LOGIN_POLICY": { "TITLE": "Login Richtlinien", "DESCRIPTION": "Definiere die Loginmethoden für Benutzer", @@ -655,13 +683,6 @@ "DESCRIPTIONCREATEMGMT": "Nutzer können sich mit den verfügbaren Idps authentifizieren. Achtung: Es kann zwischen System- und organisationsspezifischen Providern gewählt werden.", "SAVED": "Erfolgreich gespeichert." }, - "LABEL": { - "TITLE": "Email Labelling Einstellungen", - "DESCRIPTION": "Definieren Sie das Erscheinungsbild Ihrer Benachrichtigungs-Mails", - "PRIMARYCOLOR": "Hintergrundfarbe", - "SECONDARYCOLOR": "Schriftfarbe", - "SAVED": "Erfolgreich gespeichert." - }, "DEFAULTLABEL": "Die aktuelle Richtlinie entspricht der IAM-Standard Einstellung.", "BTN_INSTALL": "Installieren", "BTN_EDIT": "Modifizieren", @@ -685,14 +706,19 @@ "ALLOWREGISTER_DESC": "Ist die Option gewählt, erscheint im Login ein zusätzlicher Schritt zum Registrieren eines Benutzers.", "FORCEMFA": "Mfa erzwingen", "FORCEMFA_DESC": "Ist die Option gewählt, müssen Benutzer einen zweiten Faktor für den Login verwenden.", - "HIDEPASSWORDRESET": "Passwort vergessen, nicht anzeigen", - "FORCEMFA_DESC": "Ist die Option gewählt, ist es nicht möglich im Login das Passwort zurück zusetzen via Passwort vergessen Link." + "HIDEPASSWORDRESET": "Passwort vergessen ausblenden", + "HIDEPASSWORDRESET_DESC": "Ist die Option gewählt, ist es nicht möglich im Login das Passwort zurück zusetzen via Passwort vergessen Link.", + "HIDELOGINNAMESUFFIX":"Loginname Suffix ausblenden", + "ERRORMSGPOPUP":"Fehler als Dialog Fenster", + "DISABLEWATERMARK":"Wasserzeichen ausblenden" }, "RESET": "Richtlinie zurücksetzen", "CREATECUSTOM": "Benutzerdefinierte Richtlinie erstellen", "TOAST": { "SET": "Richtline erfolgreich gesetzt!", - "RESETSUCCESS": "Richtline zurückgesetzt!" + "RESETSUCCESS": "Richtline zurückgesetzt!", + "UPLOADSUCCESS": "Upload erfolgreich", + "UPLOADFAILED":"Upload fehlgeschlagen!" } }, "ORG_DETAIL": { diff --git a/console/src/assets/i18n/en.json b/console/src/assets/i18n/en.json index 84bf81802d..fc41c43858 100644 --- a/console/src/assets/i18n/en.json +++ b/console/src/assets/i18n/en.json @@ -104,6 +104,7 @@ } }, "ACTIONS": { + "SET":"Set", "SHOW":"Show", "HIDE":"Hide", "SAVE": "Save", @@ -613,7 +614,8 @@ "LOGINPOLICYFACTORS": "Login Policy: Multifactors - custom", "LOGINPOLICYPASSWORDLESS": "Login Policy: Passwordless Authentication - custom", "LOGINPOLICYCOMPLEXITYPOLICY": "Password Complexity Policy - custom", - "LABELPOLICY": "Labeling Policy - custom", + "LABELPOLICYPRIVATELABEL": "Label Richtlinie - benutzerdefiniert", + "LABELPOLICYWATERMARK": "Label Richtlinie - Wasserzeichen", "CUSTOMDOMAIN": "Domain Verification - available" }, "TIERSTATES": { @@ -636,6 +638,28 @@ "NUMBERERROR": "The password must include a digit.", "PATTERNERROR": "The password does not meet the required pattern." }, + "PRIVATELABELING": { + "TITLE":"Private Labeling", + "DESCRIPTION":"Give the login your personalized style and modify its behavior.", + "PREVIEW_DESCRIPTION":"Changes of the policy will automatically deployed to preview environment. To view those changes, a 'x-preview' scope will have to be added to your login scopes.", + "BTN":"Select File", + "ACTIVATEPREVIEW":"Set preview as current configuration", + "DARK":"Dark Mode", + "LIGHT":"Lighg Mode", + "CHANGEVIEW":"Change View", + "ACTIVATED":"Policy changes are now LIVE", + "THEME":"Theme", + "COLORS":"Colors", + "FONT":"Font", + "ADVANCEDBEHAVIOR":"Advanced Behavior", + "PREVIEW": { + "TITLE":"Login", + "SECOND":"login with your ZITADEL-Account.", + "ERROR":"User could not be found!", + "PRIMARYBUTTON":"next", + "SECONDARYBUTTON":"register" + } + }, "PWD_AGE": { "TITLE": "Password Aging", "DESCRIPTION": "You can set a policy for the aging of passwords. This policy emits a warning after the specific aging time has elapsed." @@ -648,6 +672,12 @@ "TITLE": "IAM Access Preferences", "DESCRIPTION": "Define access properties of your users." }, + "PRIVATELABELING_POLICY": { + "TITLE": "Private Labeling", + "BTN":"Select File", + "DESCRIPTION": "Customize the appearance of the Login", + "ACTIVATEPREVIEW":"Activate Configuration" + }, "LOGIN_POLICY": { "TITLE": "Login Policy", "DESCRIPTION": "Define how Users can be authenticated and configure Identity Providers", @@ -655,13 +685,6 @@ "DESCRIPTIONCREATEMGMT": "Users can choose from the available identity providers below. Note: You can use System-set providers as well as providers set for your organisation only.", "SAVED": "Saved successfully!" }, - "LABEL": { - "TITLE": "Email Labelling Settings", - "DESCRIPTION": "Change the look of your emails.", - "PRIMARYCOLOR": "Background color", - "SECONDARYCOLOR": "Font color", - "SAVED": "Saved successfully" - }, "DEFAULTLABEL": "The currently set guideline corresponds to the standard setting set by the IAM Administrator.", "BTN_INSTALL": "Setup", "BTN_EDIT": "Modify", @@ -686,13 +709,18 @@ "FORCEMFA": "Force MFA", "FORCEMFA_DESC": "If the option is selected, users have to configure a second factor for login.", "HIDEPASSWORDRESET": "Hide Password reset", - "FORCEMFA_DESC": "If the option is selected, the user can't reset his password in the login process." + "HIDEPASSWORDRESET_DESC": "If the option is selected, the user can't reset his password in the login process.", + "HIDELOGINNAMESUFFIX":"Hide Loginname suffix", + "ERRORMSGPOPUP":"Show Error in Dialog", + "DISABLEWATERMARK":"Disable Watermark" }, "RESET": "Reset Policy", "CREATECUSTOM": "Create Custom Policy", "TOAST": { "SET": "Policy set successfully!", - "RESETSUCCESS": "Policy reset successfully!" + "RESETSUCCESS": "Policy reset successfully!", + "UPLOADSUCCESS": "Uploaded successfully!", + "UPLOADFAILED":"Upload failed!" } }, "ORG_DETAIL": { diff --git a/console/src/component-themes.scss b/console/src/component-themes.scss index 9a2e05825c..e6659fbc53 100644 --- a/console/src/component-themes.scss +++ b/console/src/component-themes.scss @@ -19,6 +19,7 @@ @import 'src/app/modules/meta-layout/meta.scss'; @import 'src/app/modules/zitadel-tier/zitadel-tier.component.scss'; @import 'src/app/modules/onboarding/onboarding.component.scss'; +@import 'src/app/modules/policies/private-labeling-policy/private-labeling-policy.component.scss'; @mixin component-themes($theme) { @include avatar-theme($theme); @@ -42,4 +43,5 @@ @include info-section-theme($theme); @include onboarding-theme($theme); @include tier-theme($theme); + @include private-label-theme($theme); } diff --git a/console/src/styles.scss b/console/src/styles.scss index 5ca0b66baf..a6392b8a6c 100644 --- a/console/src/styles.scss +++ b/console/src/styles.scss @@ -146,7 +146,6 @@ $dark-accent: mat.define-palette(mat.$pink-palette); $dark-warn: mat.define-palette(mat.$red-palette); $light-theme: mat.define-light-theme($light-primary, $light-accent, $light-warn); - $dark-theme: mat.define-dark-theme($dark-primary, $dark-accent, $dark-warn); $custom-typography: mat.define-typography-config($font-family: 'Lato'); diff --git a/docs/docs/apis/proto/admin.md b/docs/docs/apis/proto/admin.md index 4258869e95..a9d252a8a6 100644 --- a/docs/docs/apis/proto/admin.md +++ b/docs/docs/apis/proto/admin.md @@ -266,6 +266,16 @@ Returns the label policy defined by the administrators of ZITADEL +### GetPreviewLabelPolicy + +> **rpc** GetPreviewLabelPolicy([GetPreviewLabelPolicyRequest](#getpreviewlabelpolicyrequest)) +[GetPreviewLabelPolicyResponse](#getpreviewlabelpolicyresponse) + +Returns the preview label policy defined by the administrators of ZITADEL + + + + ### UpdateLabelPolicy > **rpc** UpdateLabelPolicy([UpdateLabelPolicyRequest](#updatelabelpolicyrequest)) @@ -277,6 +287,66 @@ it impacts all organisations without a customised policy +### ActivateLabelPolicy + +> **rpc** ActivateLabelPolicy([ActivateLabelPolicyRequest](#activatelabelpolicyrequest)) +[ActivateLabelPolicyResponse](#activatelabelpolicyresponse) + +Activates all changes of the label policy + + + + +### RemoveLabelPolicyLogo + +> **rpc** RemoveLabelPolicyLogo([RemoveLabelPolicyLogoRequest](#removelabelpolicylogorequest)) +[RemoveLabelPolicyLogoResponse](#removelabelpolicylogoresponse) + +Removes the logo of the label policy + + + + +### RemoveLabelPolicyLogoDark + +> **rpc** RemoveLabelPolicyLogoDark([RemoveLabelPolicyLogoDarkRequest](#removelabelpolicylogodarkrequest)) +[RemoveLabelPolicyLogoDarkResponse](#removelabelpolicylogodarkresponse) + +Removes the logo dark of the label policy + + + + +### RemoveLabelPolicyIcon + +> **rpc** RemoveLabelPolicyIcon([RemoveLabelPolicyIconRequest](#removelabelpolicyiconrequest)) +[RemoveLabelPolicyIconResponse](#removelabelpolicyiconresponse) + +Removes the icon of the label policy + + + + +### RemoveLabelPolicyIconDark + +> **rpc** RemoveLabelPolicyIconDark([RemoveLabelPolicyIconDarkRequest](#removelabelpolicyicondarkrequest)) +[RemoveLabelPolicyIconDarkResponse](#removelabelpolicyicondarkresponse) + +Removes the logo dark of the label policy + + + + +### RemoveLabelPolicyFont + +> **rpc** RemoveLabelPolicyFont([RemoveLabelPolicyFontRequest](#removelabelpolicyfontrequest)) +[RemoveLabelPolicyFontResponse](#removelabelpolicyfontresponse) + +Removes the font of the label policy + + + + ### GetLoginPolicy > **rpc** GetLoginPolicy([GetLoginPolicyRequest](#getloginpolicyrequest)) @@ -570,6 +640,23 @@ failed event. You can find out if it worked on the `failure_count` ## Messages +### ActivateLabelPolicyRequest +This is an empty request + + + + +### ActivateLabelPolicyResponse + + + +| Field | Type | Description | Validation | +| ----- | ---- | ----------- | ----------- | +| details | zitadel.v1.ObjectDetails | - | | + + + + ### AddCustomOrgIAMPolicyRequest @@ -975,6 +1062,23 @@ This is an empty request +### GetPreviewLabelPolicyRequest +This is an empty request + + + + +### GetPreviewLabelPolicyResponse + + + +| Field | Type | Description | Validation | +| ----- | ---- | ----------- | ----------- | +| policy | zitadel.policy.v1.LabelPolicy | - | | + + + + ### HealthzRequest This is an empty request @@ -1316,6 +1420,91 @@ This is an empty response +### RemoveLabelPolicyFontRequest +This is an empty request + + + + +### RemoveLabelPolicyFontResponse + + + +| Field | Type | Description | Validation | +| ----- | ---- | ----------- | ----------- | +| details | zitadel.v1.ObjectDetails | - | | + + + + +### RemoveLabelPolicyIconDarkRequest +This is an empty request + + + + +### RemoveLabelPolicyIconDarkResponse + + + +| Field | Type | Description | Validation | +| ----- | ---- | ----------- | ----------- | +| details | zitadel.v1.ObjectDetails | - | | + + + + +### RemoveLabelPolicyIconRequest +This is an empty request + + + + +### RemoveLabelPolicyIconResponse + + + +| Field | Type | Description | Validation | +| ----- | ---- | ----------- | ----------- | +| details | zitadel.v1.ObjectDetails | - | | + + + + +### RemoveLabelPolicyLogoDarkRequest +This is an empty request + + + + +### RemoveLabelPolicyLogoDarkResponse + + + +| Field | Type | Description | Validation | +| ----- | ---- | ----------- | ----------- | +| details | zitadel.v1.ObjectDetails | - | | + + + + +### RemoveLabelPolicyLogoRequest +This is an empty request + + + + +### RemoveLabelPolicyLogoResponse + + + +| Field | Type | Description | Validation | +| ----- | ---- | ----------- | ----------- | +| details | zitadel.v1.ObjectDetails | - | | + + + + ### RemoveMultiFactorFromLoginPolicyRequest @@ -1422,6 +1611,8 @@ This is an empty response | label_policy | bool | - | | | custom_domain | bool | - | | | login_policy_password_reset | bool | - | | +| label_policy_private_label | bool | - | | +| label_policy_watermark | bool | - | | @@ -1458,6 +1649,8 @@ This is an empty response | label_policy | bool | - | | | custom_domain | bool | - | | | login_policy_password_reset | bool | - | | +| label_policy_private_label | bool | - | | +| label_policy_watermark | bool | - | | @@ -1669,9 +1862,16 @@ This is an empty response | Field | Type | Description | Validation | | ----- | ---- | ----------- | ----------- | -| primary_color | string | - | string.min_len: 1
string.max_len: 50
| -| secondary_color | string | - | string.min_len: 1
string.max_len: 50
| +| primary_color | string | - | string.max_len: 50
| | hide_login_name_suffix | bool | - | | +| warn_color | string | - | string.max_len: 50
| +| background_color | string | - | string.max_len: 50
| +| font_color | string | - | string.max_len: 50
| +| primary_color_dark | string | - | string.max_len: 50
| +| background_color_dark | string | - | string.max_len: 50
| +| warn_color_dark | string | - | string.max_len: 50
| +| font_color_dark | string | - | string.max_len: 50
| +| disable_watermark | bool | - | | diff --git a/docs/docs/apis/proto/auth.md b/docs/docs/apis/proto/auth.md index 8780902757..259d0a4f91 100644 --- a/docs/docs/apis/proto/auth.md +++ b/docs/docs/apis/proto/auth.md @@ -220,6 +220,16 @@ Removed the phone number of the authorized user +### RemoveMyAvatar + +> **rpc** RemoveMyAvatar([RemoveMyAvatarRequest](#removemyavatarrequest)) +[RemoveMyAvatarResponse](#removemyavatarresponse) + +Remove my avatar + + + + ### ListMyLinkedIDPs > **rpc** ListMyLinkedIDPs([ListMyLinkedIDPsRequest](#listmylinkedidpsrequest)) @@ -820,6 +830,23 @@ This is an empty request +### RemoveMyAvatarRequest +This is an empty request + + + + +### RemoveMyAvatarResponse + + + +| Field | Type | Description | Validation | +| ----- | ---- | ----------- | ----------- | +| details | zitadel.v1.ObjectDetails | - | | + + + + ### RemoveMyLinkedIDPRequest diff --git a/docs/docs/apis/proto/management.md b/docs/docs/apis/proto/management.md index 545d4ff02d..492e4bd0b6 100644 --- a/docs/docs/apis/proto/management.md +++ b/docs/docs/apis/proto/management.md @@ -293,6 +293,16 @@ An sms will be sent to the given phone number to finish the phone verification p +### RemoveMyAvatar + +> **rpc** RemoveMyAvatar([RemoveHumanAvatarRequest](#removehumanavatarrequest)) +[RemoveHumanAvatarResponse](#removehumanavatarresponse) + +Removes the avatar number of the human + + + + ### SetHumanInitialPassword > **rpc** SetHumanInitialPassword([SetHumanInitialPasswordRequest](#sethumaninitialpasswordrequest)) @@ -1581,7 +1591,18 @@ The password lockout policy is not used at the moment > **rpc** GetLabelPolicy([GetLabelPolicyRequest](#getlabelpolicyrequest)) [GetLabelPolicyResponse](#getlabelpolicyresponse) -Returns the label policy of the organisation +Returns the active label policy of the organisation +With this policy the private labeling can be configured (colors, etc.) + + + + +### GetPreviewLabelPolicy + +> **rpc** GetPreviewLabelPolicy([GetPreviewLabelPolicyRequest](#getpreviewlabelpolicyrequest)) +[GetPreviewLabelPolicyResponse](#getpreviewlabelpolicyresponse) + +Returns the preview label policy of the organisation With this policy the private labeling can be configured (colors, etc.) @@ -1620,6 +1641,66 @@ With this policy the private labeling can be configured (colors, etc.) +### ActivateCustomLabelPolicy + +> **rpc** ActivateCustomLabelPolicy([ActivateCustomLabelPolicyRequest](#activatecustomlabelpolicyrequest)) +[ActivateCustomLabelPolicyResponse](#activatecustomlabelpolicyresponse) + +Activates all changes of the label policy + + + + +### RemoveCustomLabelPolicyLogo + +> **rpc** RemoveCustomLabelPolicyLogo([RemoveCustomLabelPolicyLogoRequest](#removecustomlabelpolicylogorequest)) +[RemoveCustomLabelPolicyLogoResponse](#removecustomlabelpolicylogoresponse) + +Removes the logo of the label policy + + + + +### RemoveCustomLabelPolicyLogoDark + +> **rpc** RemoveCustomLabelPolicyLogoDark([RemoveCustomLabelPolicyLogoDarkRequest](#removecustomlabelpolicylogodarkrequest)) +[RemoveCustomLabelPolicyLogoDarkResponse](#removecustomlabelpolicylogodarkresponse) + +Removes the logo dark of the label policy + + + + +### RemoveCustomLabelPolicyIcon + +> **rpc** RemoveCustomLabelPolicyIcon([RemoveCustomLabelPolicyIconRequest](#removecustomlabelpolicyiconrequest)) +[RemoveCustomLabelPolicyIconResponse](#removecustomlabelpolicyiconresponse) + +Removes the icon of the label policy + + + + +### RemoveCustomLabelPolicyIconDark + +> **rpc** RemoveCustomLabelPolicyIconDark([RemoveCustomLabelPolicyIconDarkRequest](#removecustomlabelpolicyicondarkrequest)) +[RemoveCustomLabelPolicyIconDarkResponse](#removecustomlabelpolicyicondarkresponse) + +Removes the logo dark of the label policy + + + + +### RemoveCustomLabelPolicyFont + +> **rpc** RemoveCustomLabelPolicyFont([RemoveCustomLabelPolicyFontRequest](#removecustomlabelpolicyfontrequest)) +[RemoveCustomLabelPolicyFontResponse](#removecustomlabelpolicyfontresponse) + +Removes the font of the label policy + + + + ### ResetLabelPolicyToDefault > **rpc** ResetLabelPolicyToDefault([ResetLabelPolicyToDefaultRequest](#resetlabelpolicytodefaultrequest)) @@ -1725,6 +1806,23 @@ Change OIDC identity provider configuration of the organisation ## Messages +### ActivateCustomLabelPolicyRequest +This is an empty request + + + + +### ActivateCustomLabelPolicyResponse + + + +| Field | Type | Description | Validation | +| ----- | ---- | ----------- | ----------- | +| details | zitadel.v1.ObjectDetails | - | | + + + + ### AddAPIAppRequest @@ -1785,9 +1883,16 @@ Change OIDC identity provider configuration of the organisation | Field | Type | Description | Validation | | ----- | ---- | ----------- | ----------- | -| primary_color | string | - | string.min_len: 1
string.max_len: 50
| -| secondary_color | string | - | string.min_len: 1
string.max_len: 50
| -| hide_login_name_suffix | bool | - | | +| primary_color | string | - | string.max_len: 50
| +| hide_login_name_suffix | bool | hides the org suffix on the login form if the scope \"urn:zitadel:iam:org:domain:primary:{domainname}\" is set. Details about this scope in https://docs.zitadel.ch/concepts#Reserved_Scopes | | +| warn_color | string | - | string.max_len: 50
| +| background_color | string | - | string.max_len: 50
| +| font_color | string | - | string.max_len: 50
| +| primary_color_dark | string | - | string.max_len: 50
| +| background_color_dark | string | - | string.max_len: 50
| +| warn_color_dark | string | - | string.max_len: 50
| +| font_color_dark | string | - | string.max_len: 50
| +| disable_watermark | bool | - | | @@ -3074,6 +3179,24 @@ This is an empty request +### GetPreviewLabelPolicyRequest +This is an empty request + + + + +### GetPreviewLabelPolicyResponse + + + +| Field | Type | Description | Validation | +| ----- | ---- | ----------- | ----------- | +| policy | zitadel.policy.v1.LabelPolicy | - | | +| is_default | bool | - | | + + + + ### GetProjectByIDRequest @@ -4251,6 +4374,91 @@ This is an empty request +### RemoveCustomLabelPolicyFontRequest +This is an empty request + + + + +### RemoveCustomLabelPolicyFontResponse + + + +| Field | Type | Description | Validation | +| ----- | ---- | ----------- | ----------- | +| details | zitadel.v1.ObjectDetails | - | | + + + + +### RemoveCustomLabelPolicyIconDarkRequest +This is an empty request + + + + +### RemoveCustomLabelPolicyIconDarkResponse + + + +| Field | Type | Description | Validation | +| ----- | ---- | ----------- | ----------- | +| details | zitadel.v1.ObjectDetails | - | | + + + + +### RemoveCustomLabelPolicyIconRequest +This is an empty request + + + + +### RemoveCustomLabelPolicyIconResponse + + + +| Field | Type | Description | Validation | +| ----- | ---- | ----------- | ----------- | +| details | zitadel.v1.ObjectDetails | - | | + + + + +### RemoveCustomLabelPolicyLogoDarkRequest +This is an empty request + + + + +### RemoveCustomLabelPolicyLogoDarkResponse + + + +| Field | Type | Description | Validation | +| ----- | ---- | ----------- | ----------- | +| details | zitadel.v1.ObjectDetails | - | | + + + + +### RemoveCustomLabelPolicyLogoRequest +This is an empty request + + + + +### RemoveCustomLabelPolicyLogoResponse + + + +| Field | Type | Description | Validation | +| ----- | ---- | ----------- | ----------- | +| details | zitadel.v1.ObjectDetails | - | | + + + + ### RemoveHumanAuthFactorOTPRequest @@ -4296,6 +4504,28 @@ This is an empty request +### RemoveHumanAvatarRequest + + + +| Field | Type | Description | Validation | +| ----- | ---- | ----------- | ----------- | +| user_id | string | - | string.min_len: 1
string.max_len: 200
| + + + + +### RemoveHumanAvatarResponse + + + +| Field | Type | Description | Validation | +| ----- | ---- | ----------- | ----------- | +| details | zitadel.v1.ObjectDetails | - | | + + + + ### RemoveHumanLinkedIDPRequest @@ -4995,9 +5225,16 @@ This is an empty request | Field | Type | Description | Validation | | ----- | ---- | ----------- | ----------- | -| primary_color | string | - | string.min_len: 1
string.max_len: 50
| -| secondary_color | string | - | string.min_len: 1
string.max_len: 50
| +| primary_color | string | - | string.max_len: 50
| | hide_login_name_suffix | bool | - | | +| warn_color | string | - | string.max_len: 50
| +| background_color | string | - | string.max_len: 50
| +| font_color | string | - | string.max_len: 50
| +| primary_color_dark | string | - | string.max_len: 50
| +| background_color_dark | string | - | string.max_len: 50
| +| warn_color_dark | string | - | string.max_len: 50
| +| font_color_dark | string | - | string.max_len: 50
| +| disable_watermark | bool | - | | diff --git a/docs/docs/apis/proto/policy.md b/docs/docs/apis/proto/policy.md index 25ae3a7769..e2cef0fd26 100644 --- a/docs/docs/apis/proto/policy.md +++ b/docs/docs/apis/proto/policy.md @@ -16,10 +16,22 @@ title: zitadel/policy.proto | Field | Type | Description | Validation | | ----- | ---- | ----------- | ----------- | | details | zitadel.v1.ObjectDetails | - | | -| primary_color | string | - | | -| secondary_color | string | - | | -| is_default | bool | - | | -| hide_login_name_suffix | bool | - | | +| primary_color | string | hex value for primary color | | +| is_default | bool | defines if the organisation's admin changed the policy | | +| hide_login_name_suffix | bool | hides the org suffix on the login form if the scope \"urn:zitadel:iam:org:domain:primary:{domainname}\" is set. Details about this scope in https://docs.zitadel.ch/concepts#Reserved_Scopes | | +| warn_color | string | hex value for secondary color | | +| background_color | string | hex value for background color | | +| font_color | string | hex value for font color | | +| primary_color_dark | string | hex value for primary color dark theme | | +| background_color_dark | string | hex value for background color dark theme | | +| warn_color_dark | string | hex value for warn color dark theme | | +| font_color_dark | string | hex value for font color dark theme | | +| disable_watermark | bool | - | | +| logo_url | string | - | | +| icon_url | string | - | | +| logo_url_dark | string | - | | +| icon_url_dark | string | - | | +| font_url | string | - | | diff --git a/go.mod b/go.mod index 42f735acc4..6a70eae11e 100644 --- a/go.mod +++ b/go.mod @@ -43,10 +43,12 @@ require ( github.com/kevinburke/rest v0.0.0-20200429221318-0d2892b400f8 // indirect github.com/kevinburke/twilio-go v0.0.0-20200810163702-320748330fac github.com/lib/pq v1.9.0 + github.com/lucasb-eyer/go-colorful v1.2.0 github.com/manifoldco/promptui v0.7.0 github.com/mattn/go-colorable v0.1.8 // indirect; indirect github.com/mitchellh/copystructure v1.0.0 // indirect github.com/minio/minio-go/v7 v7.0.10 github.com/mitchellh/copystructure v1.1.2 // indirect + github.com/muesli/gamut v0.2.0 github.com/nicksnyder/go-i18n/v2 v2.1.2 github.com/pkg/errors v0.9.1 github.com/pquerna/otp v1.2.0 diff --git a/go.sum b/go.sum index 5cd2be8035..a0b8b2c3e9 100644 --- a/go.sum +++ b/go.sum @@ -60,6 +60,7 @@ github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU= github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo= github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo= +github.com/DATA-DOG/go-sqlmock v1.3.3/go.mod h1:f/Ixk793poVmq4qj/V1dPUg2JEAKC73Q5eFN3EC/SaM= github.com/DATA-DOG/go-sqlmock v1.5.0 h1:Shsta01QNfFxHCfpW6YH2STWB0MudeXXEWMr20OEh60= github.com/DATA-DOG/go-sqlmock v1.5.0/go.mod h1:f/Ixk793poVmq4qj/V1dPUg2JEAKC73Q5eFN3EC/SaM= github.com/DataDog/sketches-go v0.0.1 h1:RtG+76WKgZuz6FIaGsjoPePmadDBkuD/KC6+ZWu78b8= @@ -342,6 +343,8 @@ github.com/gogo/protobuf v1.3.2 h1:Ov1cvc58UF3b5XjBnZv7+opcTcQFZebYjWzi34vdm4Q= github.com/gogo/protobuf v1.3.2/go.mod h1:P1XiOD3dCwIKUDQYPy72D8LYyHL2YPYrpS2s69NZV8Q= github.com/golang-sql/civil v0.0.0-20190719163853-cb61b32ac6fe h1:lXe2qZdvpiX5WZkZR4hgp4KJVfY3nMkvmwbVkpv1rVY= github.com/golang-sql/civil v0.0.0-20190719163853-cb61b32ac6fe/go.mod h1:8vg3r2VgvsThLBIFL93Qb5yWzgyZWhEmBwUJWevAkK0= +github.com/golang/freetype v0.0.0-20170609003504-e2365dfdc4a0 h1:DACJavvAHhabrF08vX0COfcOBJRhZ8lUbR+ZWIs0Y5g= +github.com/golang/freetype v0.0.0-20170609003504-e2365dfdc4a0/go.mod h1:E/TSTwGwJL78qG/PmXZO1EjYhfJinVAhrmmHX6Z8B9k= github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b h1:VKtxabqXZkF25pY9ekfRL6a582T4P37/31XEstQ5p58= github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b/go.mod h1:SBH7ygxi8pfUlaOkMMuAQtPIUF8ecWP5IEl/CR7VP2Q= github.com/golang/groupcache v0.0.0-20160516000752-02826c3e7903/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc= @@ -632,6 +635,10 @@ github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de/go.mod h1:zAbeS9 github.com/lightstep/lightstep-tracer-common/golang/gogo v0.0.0-20190605223551-bc2310a04743/go.mod h1:qklhhLq1aX+mtWk9cPHPzaBjWImj5ULL6C7HFJtXQMM= github.com/lightstep/lightstep-tracer-go v0.18.1/go.mod h1:jlF1pusYV4pidLvZ+XD0UBX0ZE6WURAspgAczcDHrL4= github.com/lithammer/dedent v1.1.0/go.mod h1:jrXYCQtgg0nJiN+StA2KgR7w6CiQNv9Fd/Z9BP0jIOc= +github.com/lucasb-eyer/go-colorful v1.0.2/go.mod h1:0MS4r+7BZKSJ5mw4/S5MPN+qHFF1fYclkSPilDOKW0s= +github.com/lucasb-eyer/go-colorful v1.0.3/go.mod h1:R4dSotOR9KMtayYi1e77YzuveK+i7ruzyGqttikkLy0= +github.com/lucasb-eyer/go-colorful v1.2.0 h1:1nnpGOrhyZZuNyfu1QjKiUICQ74+3FNCN69Aj6K7nkY= +github.com/lucasb-eyer/go-colorful v1.2.0/go.mod h1:R4dSotOR9KMtayYi1e77YzuveK+i7ruzyGqttikkLy0= github.com/lunixbochs/vtclean v0.0.0-20180621232353-2d01aacdc34a h1:weJVJJRzAJBFRlAiJQROKQs8oC9vOxvm4rZmBBk0ONw= github.com/lunixbochs/vtclean v0.0.0-20180621232353-2d01aacdc34a/go.mod h1:pHhQNgMf3btfWnGBVipUOjRYhoOsdGqdm/+2c2E2WMI= github.com/lyft/protoc-gen-star v0.5.1/go.mod h1:9toiA3cC7z5uVbODF7kEQ91Xn7XNFkVUl+SrEe+ZORU= @@ -704,6 +711,13 @@ github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd/go.mod h1:6dJ github.com/modern-go/reflect2 v0.0.0-20180701023420-4b7aa43c6742/go.mod h1:bx2lNnkwVCuqBIxFjflWJWanXIb3RllmbCylyMrvgv0= github.com/modern-go/reflect2 v1.0.1 h1:9f412s+6RmYXLWZSEzVVgPGK7C2PphHj5RJrvfx9AWI= github.com/modern-go/reflect2 v1.0.1/go.mod h1:bx2lNnkwVCuqBIxFjflWJWanXIb3RllmbCylyMrvgv0= +github.com/muesli/clusters v0.0.0-20180605185049-a07a36e67d36/go.mod h1:mw5KDqUj0eLj/6DUNINLVJNoPTFkEuGMHtJsXLviLkY= +github.com/muesli/clusters v0.0.0-20200529215643-2700303c1762 h1:p4A2Jx7Lm3NV98VRMKlyWd3nqf8obft8NfXlAUmqd3I= +github.com/muesli/clusters v0.0.0-20200529215643-2700303c1762/go.mod h1:mw5KDqUj0eLj/6DUNINLVJNoPTFkEuGMHtJsXLviLkY= +github.com/muesli/gamut v0.2.0 h1:IZbl/hQzChTXtqDSXL8CDtjdRt58LivY03bGCm1yDyU= +github.com/muesli/gamut v0.2.0/go.mod h1:kz1+UJqI1thNtocJlowyqG2o0FNsN0W534VoMVsR9/Y= +github.com/muesli/kmeans v0.2.1 h1:ja5AnwfyDCVBCANrAfXr2pOh292FQnSeu1lySACDJU0= +github.com/muesli/kmeans v0.2.1/go.mod h1:eNyybq0tX9/iBEP6EMU4Y7dpmGK0uEhODdZpnG1a/iQ= github.com/munnerz/goautoneg v0.0.0-20120707110453-a547fc61f48d/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ= github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ= github.com/mwitkow/go-conntrack v0.0.0-20161129095857-cc309e4a2223/go.mod h1:qRWi+5nqEBWmkhHvq77mSJWrCKwh8bxhgT7d/eI7P4U= @@ -901,6 +915,8 @@ github.com/urfave/cli v1.22.1/go.mod h1:Gos4lmkARVdJ6EkW0WaNv/tZAAMe9V7XWyB60NtX github.com/urfave/cli v1.22.4/go.mod h1:Gos4lmkARVdJ6EkW0WaNv/tZAAMe9V7XWyB60NtXRu0= github.com/urfave/cli/v2 v2.1.1/go.mod h1:SE9GqnLQmjVa0iPEY0f1w3ygNIYcIJ0OKPMoW2caLfQ= github.com/vektah/gqlparser v1.1.2/go.mod h1:1ycwN7Ij5njmMkPPAOaRFY4rET2Enx7IkVv3vaXspKw= +github.com/wcharczuk/go-chart/v2 v2.1.0 h1:tY2slqVQ6bN+yHSnDYwZebLQFkphK4WNrVwnt7CJZ2I= +github.com/wcharczuk/go-chart/v2 v2.1.0/go.mod h1:yx7MvAVNcP/kN9lKXM/NTce4au4DFN99j6i1OwDclNA= github.com/x448/float16 v0.8.4 h1:qLwI1I70+NjRFUR3zs1JPUCgaCXSh3SW62uAKT1mSBM= github.com/x448/float16 v0.8.4/go.mod h1:14CWIYCyZA/cWjXOioeEpHeN/83MdbZDRQHoFcYsOfg= github.com/xanzy/ssh-agent v0.2.1 h1:TCbipTQL2JiiCprBWx9frJ2eJlCYT00NmctrHxVAr70= @@ -908,6 +924,8 @@ github.com/xanzy/ssh-agent v0.2.1/go.mod h1:mLlQY/MoOhWBj+gOGMQkOeiEvkx+8pJSI+0B github.com/xiang90/probing v0.0.0-20190116061207-43a291ad63a2/go.mod h1:UETIi67q53MR2AWcXfiuqkDkRtnGDLqkBTpCHuJHxtU= github.com/xlab/handysort v0.0.0-20150421192137-fb3537ed64a1/go.mod h1:QcJo0QPSfTONNIgpN5RA8prR7fF8nkF6cTWTcNerRO8= github.com/xordataexchange/crypt v0.0.3-0.20170626215501-b2862e3d0a77/go.mod h1:aYKd//L2LvnjZzWKhF00oedf4jCCReLcmhLdhm1A27Q= +github.com/xrash/smetrics v0.0.0-20200730060457-89a2a8a1fb0b h1:tnWgqoOBmInkt5pbLjagwNVjjT4RdJhFHzL1ebCSRh8= +github.com/xrash/smetrics v0.0.0-20200730060457-89a2a8a1fb0b/go.mod h1:N3UwUGtsrSj3ccvlPHLoLsHnpR27oXr4ZE984MbSER8= github.com/yuin/goldmark v1.1.25/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74= github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74= github.com/yuin/goldmark v1.1.32/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74= @@ -1007,6 +1025,8 @@ golang.org/x/exp v0.0.0-20200224162631-6cc2880d07d6/go.mod h1:3jZMyOhIsHpP37uCMk golang.org/x/exp v0.0.0-20200331195152-e8c3332aa8e5/go.mod h1:4M0jN8W1tt0AVLNr8HDosyJCDCDuyL9N9+3m7wDWgKw= golang.org/x/image v0.0.0-20190227222117-0694c2d4d067/go.mod h1:kZ7UVZpmo3dzQBMxlp+ypCbDeSB+sBbTgSJuh5dn5js= golang.org/x/image v0.0.0-20190802002840-cff245a6509b/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0= +golang.org/x/image v0.0.0-20200927104501-e162460cd6b5 h1:QelT11PB4FXiDEXucrfNckHoFxwt8USGY1ajP1ZF5lM= +golang.org/x/image v0.0.0-20200927104501-e162460cd6b5/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0= golang.org/x/lint v0.0.0-20181026193005-c67002cb31c3/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE= golang.org/x/lint v0.0.0-20190227174305-5b3e6a55c961/go.mod h1:wehouNa3lNwaWXcvxsM5YxQ5yQlVC4a0KAMCusXpPoU= golang.org/x/lint v0.0.0-20190301231843-5614ed5bae6f/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE= diff --git a/internal/admin/repository/eventsourcing/eventstore/iam.go b/internal/admin/repository/eventsourcing/eventstore/iam.go index dbee879fc0..be2902f790 100644 --- a/internal/admin/repository/eventsourcing/eventstore/iam.go +++ b/internal/admin/repository/eventsourcing/eventstore/iam.go @@ -300,7 +300,15 @@ func (repo *IAMRepository) GetOrgIAMPolicy(ctx context.Context) (*iam_model.OrgI } func (repo *IAMRepository) GetDefaultLabelPolicy(ctx context.Context) (*iam_model.LabelPolicyView, error) { - policy, err := repo.View.LabelPolicyByAggregateID(repo.SystemDefaults.IamID) + policy, err := repo.View.LabelPolicyByAggregateIDAndState(repo.SystemDefaults.IamID, int32(domain.LabelPolicyStateActive)) + if err != nil { + return nil, err + } + return iam_es_model.LabelPolicyViewToModel(policy), err +} + +func (repo *IAMRepository) GetDefaultPreviewLabelPolicy(ctx context.Context) (*iam_model.LabelPolicyView, error) { + policy, err := repo.View.LabelPolicyByAggregateIDAndState(repo.SystemDefaults.IamID, int32(domain.LabelPolicyStatePreview)) if err != nil { return nil, err } diff --git a/internal/admin/repository/eventsourcing/handler/handler.go b/internal/admin/repository/eventsourcing/handler/handler.go index 0b92718041..b8db6cd996 100644 --- a/internal/admin/repository/eventsourcing/handler/handler.go +++ b/internal/admin/repository/eventsourcing/handler/handler.go @@ -4,6 +4,7 @@ import ( "time" "github.com/caos/zitadel/internal/eventstore/v1" + "github.com/caos/zitadel/internal/static" "github.com/caos/zitadel/internal/admin/repository/eventsourcing/view" "github.com/caos/zitadel/internal/config/systemdefaults" @@ -30,8 +31,8 @@ func (h *handler) Eventstore() v1.Eventstore { return h.es } -func Register(configs Configs, bulkLimit, errorCount uint64, view *view.View, es v1.Eventstore, defaults systemdefaults.SystemDefaults) []query.Handler { - return []query.Handler{ +func Register(configs Configs, bulkLimit, errorCount uint64, view *view.View, es v1.Eventstore, defaults systemdefaults.SystemDefaults, static static.Storage, localDevMode bool) []query.Handler { + handlers := []query.Handler{ newOrg( handler{view, bulkLimit, configs.cycleDuration("Org"), errorCount, es}), newIAMMember( @@ -66,6 +67,13 @@ func Register(configs Configs, bulkLimit, errorCount uint64, view *view.View, es newFeatures( handler{view, bulkLimit, configs.cycleDuration("Features"), errorCount, es}), } + if static != nil { + handlers = append(handlers, newStyling( + handler{view, bulkLimit, configs.cycleDuration("Styling"), errorCount, es}, + static, + localDevMode)) + } + return handlers } func (configs Configs) cycleDuration(viewModel string) time.Duration { diff --git a/internal/admin/repository/eventsourcing/handler/label_policy.go b/internal/admin/repository/eventsourcing/handler/label_policy.go index ddcb632d35..b5c6a4abae 100644 --- a/internal/admin/repository/eventsourcing/handler/label_policy.go +++ b/internal/admin/repository/eventsourcing/handler/label_policy.go @@ -2,6 +2,8 @@ package handler import ( "github.com/caos/logging" + + "github.com/caos/zitadel/internal/domain" "github.com/caos/zitadel/internal/eventstore/v1" es_models "github.com/caos/zitadel/internal/eventstore/v1/models" "github.com/caos/zitadel/internal/eventstore/v1/query" @@ -77,8 +79,25 @@ func (p *LabelPolicy) processLabelPolicy(event *es_models.Event) (err error) { switch event.Type { case model.LabelPolicyAdded: err = policy.AppendEvent(event) - case model.LabelPolicyChanged: - policy, err = p.view.LabelPolicyByAggregateID(event.AggregateID) + case model.LabelPolicyChanged, + model.LabelPolicyLogoAdded, + model.LabelPolicyLogoRemoved, + model.LabelPolicyIconAdded, + model.LabelPolicyIconRemoved, + model.LabelPolicyLogoDarkAdded, + model.LabelPolicyLogoDarkRemoved, + model.LabelPolicyIconDarkAdded, + model.LabelPolicyIconDarkRemoved, + model.LabelPolicyFontAdded, + model.LabelPolicyFontRemoved, + model.LabelPolicyAssetsRemoved: + policy, err = p.view.LabelPolicyByAggregateIDAndState(event.AggregateID, int32(domain.LabelPolicyStatePreview)) + if err != nil { + return err + } + err = policy.AppendEvent(event) + case model.LabelPolicyActivated: + policy, err = p.view.LabelPolicyByAggregateIDAndState(event.AggregateID, int32(domain.LabelPolicyStatePreview)) if err != nil { return err } diff --git a/internal/admin/repository/eventsourcing/handler/styling.go b/internal/admin/repository/eventsourcing/handler/styling.go new file mode 100644 index 0000000000..4ff0a3eae9 --- /dev/null +++ b/internal/admin/repository/eventsourcing/handler/styling.go @@ -0,0 +1,298 @@ +package handler + +import ( + "bytes" + "context" + "fmt" + "io" + "strings" + + "github.com/caos/logging" + "github.com/lucasb-eyer/go-colorful" + "github.com/muesli/gamut" + + "github.com/caos/zitadel/internal/domain" + "github.com/caos/zitadel/internal/eventstore/v1" + es_models "github.com/caos/zitadel/internal/eventstore/v1/models" + "github.com/caos/zitadel/internal/eventstore/v1/query" + "github.com/caos/zitadel/internal/eventstore/v1/spooler" + iam_es_model "github.com/caos/zitadel/internal/iam/repository/eventsourcing/model" + iam_model "github.com/caos/zitadel/internal/iam/repository/view/model" + "github.com/caos/zitadel/internal/org/repository/eventsourcing/model" + "github.com/caos/zitadel/internal/static" +) + +const ( + stylingTable = "adminapi.styling" +) + +type Styling struct { + handler + static static.Storage + subscription *v1.Subscription + devMode bool + resourceUrl string +} + +func newStyling(handler handler, static static.Storage, localDevMode bool) *Styling { + h := &Styling{ + handler: handler, + static: static, + } + prefix := "" + if localDevMode { + prefix = "/login" + } + h.resourceUrl = prefix + "/resources/dynamic" //TODO: ? + + h.subscribe() + + return h +} + +func (m *Styling) subscribe() { + m.subscription = m.es.Subscribe(m.AggregateTypes()...) + go func() { + for event := range m.subscription.Events { + query.ReduceEvent(m, event) + } + }() +} + +func (m *Styling) ViewModel() string { + return stylingTable +} + +func (_ *Styling) AggregateTypes() []es_models.AggregateType { + return []es_models.AggregateType{model.OrgAggregate, iam_es_model.IAMAggregate} +} + +func (m *Styling) CurrentSequence() (uint64, error) { + sequence, err := m.view.GetLatestStylingSequence() + if err != nil { + return 0, err + } + return sequence.CurrentSequence, nil +} + +func (m *Styling) EventQuery() (*es_models.SearchQuery, error) { + sequence, err := m.view.GetLatestStylingSequence() + if err != nil { + return nil, err + } + return es_models.NewSearchQuery(). + AggregateTypeFilter(m.AggregateTypes()...). + LatestSequenceFilter(sequence.CurrentSequence), nil +} + +func (m *Styling) Reduce(event *es_models.Event) (err error) { + switch event.AggregateType { + case model.OrgAggregate, iam_es_model.IAMAggregate: + err = m.processLabelPolicy(event) + } + return err +} + +func (m *Styling) processLabelPolicy(event *es_models.Event) (err error) { + policy := new(iam_model.LabelPolicyView) + switch event.Type { + case iam_es_model.LabelPolicyAdded, model.LabelPolicyAdded: + err = policy.AppendEvent(event) + case iam_es_model.LabelPolicyChanged, model.LabelPolicyChanged, + iam_es_model.LabelPolicyLogoAdded, model.LabelPolicyLogoAdded, + iam_es_model.LabelPolicyLogoRemoved, model.LabelPolicyLogoRemoved, + iam_es_model.LabelPolicyIconAdded, model.LabelPolicyIconAdded, + iam_es_model.LabelPolicyIconRemoved, model.LabelPolicyIconRemoved, + iam_es_model.LabelPolicyLogoDarkAdded, model.LabelPolicyLogoDarkAdded, + iam_es_model.LabelPolicyLogoDarkRemoved, model.LabelPolicyLogoDarkRemoved, + iam_es_model.LabelPolicyIconDarkAdded, model.LabelPolicyIconDarkAdded, + iam_es_model.LabelPolicyIconDarkRemoved, model.LabelPolicyIconDarkRemoved, + iam_es_model.LabelPolicyFontAdded, model.LabelPolicyFontAdded, + iam_es_model.LabelPolicyFontRemoved, model.LabelPolicyFontRemoved, + iam_es_model.LabelPolicyAssetsRemoved, model.LabelPolicyAssetsRemoved: + policy, err = m.view.StylingByAggregateIDAndState(event.AggregateID, int32(domain.LabelPolicyStatePreview)) + if err != nil { + return err + } + err = policy.AppendEvent(event) + + case iam_es_model.LabelPolicyActivated, model.LabelPolicyActivated: + policy, err = m.view.StylingByAggregateIDAndState(event.AggregateID, int32(domain.LabelPolicyStatePreview)) + if err != nil { + return err + } + err = policy.AppendEvent(event) + if err != nil { + return err + } + err = m.generateStylingFile(policy) + default: + return m.view.ProcessedStylingSequence(event) + } + if err != nil { + return err + } + return m.view.PutStyling(policy, event) +} + +func (m *Styling) OnError(event *es_models.Event, err error) error { + logging.LogWithFields("SPOOL-2m9fs", "id", event.AggregateID).WithError(err).Warn("something went wrong in label policy handler") + return spooler.HandleError(event, err, m.view.GetLatestLabelPolicyFailedEvent, m.view.ProcessedLabelPolicyFailedEvent, m.view.ProcessedLabelPolicySequence, m.errorCountUntilSkip) +} + +func (m *Styling) OnSuccess() error { + return spooler.HandleSuccess(m.view.UpdateLabelPolicySpoolerRunTimestamp) +} + +func (m *Styling) generateStylingFile(policy *iam_model.LabelPolicyView) error { + reader, size, err := m.writeFile(policy) + if err != nil { + return err + } + return m.uploadFilesToBucket(policy.AggregateID, "text/css", reader, size) +} + +func (m *Styling) writeFile(policy *iam_model.LabelPolicyView) (io.Reader, int64, error) { + cssContent := "" + cssContent += fmt.Sprint(":root {") + if policy.PrimaryColor != "" { + palette := m.generateColorPaletteRGBA255(policy.PrimaryColor) + for i, color := range palette { + cssContent += fmt.Sprintf("--zitadel-color-primary-%v: %s;", i, color) + } + } + + if policy.BackgroundColor != "" { + palette := m.generateColorPaletteRGBA255(policy.BackgroundColor) + for i, color := range palette { + cssContent += fmt.Sprintf("--zitadel-color-background-%v: %s;", i, color) + } + } + if policy.WarnColor != "" { + palette := m.generateColorPaletteRGBA255(policy.WarnColor) + for i, color := range palette { + cssContent += fmt.Sprintf("--zitadel-color-warn-%v: %s;", i, color) + } + } + var fontname string + if policy.FontURL != "" { + split := strings.Split(policy.FontURL, "/") + fontname = split[len(split)-1] + cssContent += fmt.Sprintf("--zitadel-font-family: %s;", fontname) + } + cssContent += fmt.Sprint("}") + if policy.FontURL != "" { + cssContent += fmt.Sprintf(fontFaceTemplate, fontname, m.resourceUrl, policy.AggregateID, policy.FontURL) + } + cssContent += fmt.Sprint(".lgn-dark-theme {") + if policy.PrimaryColorDark != "" { + palette := m.generateColorPaletteRGBA255(policy.PrimaryColorDark) + for i, color := range palette { + cssContent += fmt.Sprintf("--zitadel-color-primary-%v: %s;", i, color) + } + } + if policy.BackgroundColorDark != "" { + palette := m.generateColorPaletteRGBA255(policy.BackgroundColorDark) + for i, color := range palette { + cssContent += fmt.Sprintf("--zitadel-color-background-%v: %s;", i, color) + } + } + if policy.WarnColorDark != "" { + palette := m.generateColorPaletteRGBA255(policy.WarnColorDark) + for i, color := range palette { + cssContent += fmt.Sprintf("--zitadel-color-warn-%v: %s;", i, color) + } + } + if policy.FontColorDark != "" { + palette := m.generateColorPaletteRGBA255(policy.FontColorDark) + for i, color := range palette { + cssContent += fmt.Sprintf("--zitadel-color-font-%v: %s;", i, color) + } + } + cssContent += fmt.Sprint("}") + + data := []byte(cssContent) + buffer := bytes.NewBuffer(data) + return buffer, int64(buffer.Len()), nil +} + +const fontFaceTemplate = ` +@font-face { + font-family: '%s'; + font-style: normal; + font-display: swap; + src: url(%s?orgId=%s&filename=%s); +} +` + +func (m *Styling) uploadFilesToBucket(aggregateID, contentType string, reader io.Reader, size int64) error { + fileName := domain.CssPath + "/" + domain.CssVariablesFileName + _, err := m.static.PutObject(context.Background(), aggregateID, fileName, contentType, reader, size, true) + return err +} + +func (m *Styling) generateColorPaletteRGBA255(hex string) map[string]string { + palette := make(map[string]string) + defaultColor := gamut.Hex(hex) + + color50, ok := colorful.MakeColor(gamut.Lighter(defaultColor, 1.0)) + if ok { + palette["50"] = cssRGB(color50.RGB255()) + } + + color100, ok := colorful.MakeColor(gamut.Lighter(defaultColor, 0.8)) + if ok { + palette["100"] = cssRGB(color100.RGB255()) + } + + color200, ok := colorful.MakeColor(gamut.Lighter(defaultColor, 0.6)) + if ok { + palette["200"] = cssRGB(color200.RGB255()) + } + + color300, ok := colorful.MakeColor(gamut.Lighter(defaultColor, 0.4)) + if ok { + palette["300"] = cssRGB(color300.RGB255()) + } + + color400, ok := colorful.MakeColor(gamut.Lighter(defaultColor, 0.1)) + if ok { + palette["400"] = cssRGB(color400.RGB255()) + } + + color500, ok := colorful.MakeColor(defaultColor) + if ok { + palette["500"] = cssRGB(color500.RGB255()) + } + + color600, ok := colorful.MakeColor(gamut.Darker(defaultColor, 0.1)) + if ok { + palette["600"] = cssRGB(color600.RGB255()) + } + + color700, ok := colorful.MakeColor(gamut.Darker(defaultColor, 0.2)) + if ok { + palette["700"] = cssRGB(color700.RGB255()) + } + + color800, ok := colorful.MakeColor(gamut.Darker(defaultColor, 0.3)) + if ok { + palette["800"] = cssRGB(color800.RGB255()) + } + + color900, ok := colorful.MakeColor(gamut.Darker(defaultColor, 0.4)) + if ok { + palette["900"] = cssRGB(color900.RGB255()) + } + + colorContrast, ok := colorful.MakeColor(gamut.Contrast(defaultColor)) + if ok { + palette["contrast"] = cssRGB(colorContrast.RGB255()) + } + + return palette +} + +func cssRGB(r, g, b uint8) string { + return fmt.Sprintf("rgb(%v, %v, %v)", r, g, b) +} diff --git a/internal/admin/repository/eventsourcing/repository.go b/internal/admin/repository/eventsourcing/repository.go index 2718bd7442..b3806f35c6 100644 --- a/internal/admin/repository/eventsourcing/repository.go +++ b/internal/admin/repository/eventsourcing/repository.go @@ -9,6 +9,7 @@ import ( "github.com/caos/zitadel/internal/config/types" "github.com/caos/zitadel/internal/eventstore/v1" es_spol "github.com/caos/zitadel/internal/eventstore/v1/spooler" + "github.com/caos/zitadel/internal/static" ) type Config struct { @@ -28,7 +29,7 @@ type EsRepository struct { eventstore.UserRepo } -func Start(ctx context.Context, conf Config, systemDefaults sd.SystemDefaults, roles []string) (*EsRepository, error) { +func Start(ctx context.Context, conf Config, systemDefaults sd.SystemDefaults, static static.Storage, roles []string, localDevMode bool) (*EsRepository, error) { es, err := v1.Start(conf.Eventstore) if err != nil { return nil, err @@ -42,7 +43,7 @@ func Start(ctx context.Context, conf Config, systemDefaults sd.SystemDefaults, r return nil, err } - spool := spooler.StartSpooler(conf.Spooler, es, view, sqlClient, systemDefaults) + spool := spooler.StartSpooler(conf.Spooler, es, view, sqlClient, systemDefaults, static, localDevMode) return &EsRepository{ spooler: spool, diff --git a/internal/admin/repository/eventsourcing/spooler/spooler.go b/internal/admin/repository/eventsourcing/spooler/spooler.go index 7679b5e078..33c7ffb928 100644 --- a/internal/admin/repository/eventsourcing/spooler/spooler.go +++ b/internal/admin/repository/eventsourcing/spooler/spooler.go @@ -4,6 +4,7 @@ import ( "database/sql" "github.com/caos/zitadel/internal/config/systemdefaults" "github.com/caos/zitadel/internal/eventstore/v1" + "github.com/caos/zitadel/internal/static" "github.com/caos/zitadel/internal/admin/repository/eventsourcing/handler" "github.com/caos/zitadel/internal/admin/repository/eventsourcing/view" @@ -17,12 +18,12 @@ type SpoolerConfig struct { Handlers handler.Configs } -func StartSpooler(c SpoolerConfig, es v1.Eventstore, view *view.View, sql *sql.DB, defaults systemdefaults.SystemDefaults) *spooler.Spooler { +func StartSpooler(c SpoolerConfig, es v1.Eventstore, view *view.View, sql *sql.DB, defaults systemdefaults.SystemDefaults, static static.Storage, localDevMode bool) *spooler.Spooler { spoolerConfig := spooler.Config{ Eventstore: es, Locker: &locker{dbClient: sql}, ConcurrentWorkers: c.ConcurrentWorkers, - ViewHandlers: handler.Register(c.Handlers, c.BulkLimit, c.FailureCountUntilSkip, view, es, defaults), + ViewHandlers: handler.Register(c.Handlers, c.BulkLimit, c.FailureCountUntilSkip, view, es, defaults, static, localDevMode), } spool := spoolerConfig.New() spool.Start() diff --git a/internal/admin/repository/eventsourcing/view/label_policies.go b/internal/admin/repository/eventsourcing/view/label_policies.go index aafb8f9d84..6ad222159c 100644 --- a/internal/admin/repository/eventsourcing/view/label_policies.go +++ b/internal/admin/repository/eventsourcing/view/label_policies.go @@ -11,8 +11,8 @@ const ( labelPolicyTable = "adminapi.label_policies" ) -func (v *View) LabelPolicyByAggregateID(aggregateID string) (*model.LabelPolicyView, error) { - return view.GetLabelPolicyByAggregateID(v.Db, labelPolicyTable, aggregateID) +func (v *View) LabelPolicyByAggregateIDAndState(aggregateID string, state int32) (*model.LabelPolicyView, error) { + return view.GetLabelPolicyByAggregateIDAndState(v.Db, labelPolicyTable, aggregateID, state) } func (v *View) PutLabelPolicy(policy *model.LabelPolicyView, event *models.Event) error { diff --git a/internal/admin/repository/eventsourcing/view/styling.go b/internal/admin/repository/eventsourcing/view/styling.go new file mode 100644 index 0000000000..66e22f44a1 --- /dev/null +++ b/internal/admin/repository/eventsourcing/view/styling.go @@ -0,0 +1,44 @@ +package view + +import ( + "github.com/caos/zitadel/internal/eventstore/v1/models" + "github.com/caos/zitadel/internal/iam/repository/view" + "github.com/caos/zitadel/internal/iam/repository/view/model" + global_view "github.com/caos/zitadel/internal/view/repository" +) + +const ( + stylingTyble = "adminapi.styling" +) + +func (v *View) StylingByAggregateIDAndState(aggregateID string, state int32) (*model.LabelPolicyView, error) { + return view.GetLabelPolicyByAggregateIDAndState(v.Db, stylingTyble, aggregateID, state) +} + +func (v *View) PutStyling(policy *model.LabelPolicyView, event *models.Event) error { + err := view.PutLabelPolicy(v.Db, stylingTyble, policy) + if err != nil { + return err + } + return v.ProcessedStylingSequence(event) +} + +func (v *View) GetLatestStylingSequence() (*global_view.CurrentSequence, error) { + return v.latestSequence(stylingTyble) +} + +func (v *View) ProcessedStylingSequence(event *models.Event) error { + return v.saveCurrentSequence(stylingTyble, event) +} + +func (v *View) UpdateStylingSpoolerRunTimestamp() error { + return v.updateSpoolerRunSequence(stylingTyble) +} + +func (v *View) GetLatestStylingFailedEvent(sequence uint64) (*global_view.FailedEvent, error) { + return v.latestFailedEvent(stylingTyble, sequence) +} + +func (v *View) ProcessedStylingFailedEvent(failedEvent *global_view.FailedEvent) error { + return v.saveFailedEvent(failedEvent) +} diff --git a/internal/admin/repository/iam.go b/internal/admin/repository/iam.go index 576b0420a7..a025d472eb 100644 --- a/internal/admin/repository/iam.go +++ b/internal/admin/repository/iam.go @@ -24,6 +24,7 @@ type IAMRepository interface { ExternalIDPsByIDPConfigIDFromDefaultPolicy(ctx context.Context, idpConfigID string) ([]*usr_model.ExternalIDPView, error) GetDefaultLabelPolicy(ctx context.Context) (*iam_model.LabelPolicyView, error) + GetDefaultPreviewLabelPolicy(ctx context.Context) (*iam_model.LabelPolicyView, error) GetDefaultMailTemplate(ctx context.Context) (*iam_model.MailTemplateView, error) diff --git a/internal/api/assets/asset.go b/internal/api/assets/asset.go new file mode 100644 index 0000000000..5fc062c782 --- /dev/null +++ b/internal/api/assets/asset.go @@ -0,0 +1,194 @@ +package assets + +import ( + "context" + "io/ioutil" + "net/http" + "strconv" + "strings" + + "github.com/caos/logging" + "github.com/gorilla/mux" + + "github.com/caos/zitadel/internal/api/authz" + http_mw "github.com/caos/zitadel/internal/api/http/middleware" + "github.com/caos/zitadel/internal/command" + "github.com/caos/zitadel/internal/domain" + caos_errs "github.com/caos/zitadel/internal/errors" + "github.com/caos/zitadel/internal/id" + "github.com/caos/zitadel/internal/management/repository" + "github.com/caos/zitadel/internal/static" +) + +type Handler struct { + errorHandler ErrorHandler + storage static.Storage + commands *command.Commands + authInterceptor *http_mw.AuthInterceptor + idGenerator id.Generator + orgRepo repository.OrgRepository +} + +func (h *Handler) AuthInterceptor() *http_mw.AuthInterceptor { + return h.authInterceptor +} + +func (h *Handler) Commands() *command.Commands { + return h.commands +} + +func (h *Handler) ErrorHandler() ErrorHandler { + return DefaultErrorHandler +} + +func (h *Handler) Storage() static.Storage { + return h.storage +} + +type Uploader interface { + Callback(ctx context.Context, info *domain.AssetInfo, orgID string, commands *command.Commands) error + ObjectName(data authz.CtxData) (string, error) + BucketName(data authz.CtxData) string + ContentTypeAllowed(contentType string) bool + MaxFileSize() int64 +} + +type Downloader interface { + ObjectName(ctx context.Context, path string) (string, error) + BucketName(ctx context.Context, id string) string +} + +type ErrorHandler func(http.ResponseWriter, *http.Request, error) + +func DefaultErrorHandler(w http.ResponseWriter, r *http.Request, err error) { + logging.Log("ASSET-g5ef1").WithError(err).WithField("uri", r.RequestURI).Error("error occurred on asset api") + http.Error(w, err.Error(), http.StatusInternalServerError) +} + +func NewHandler( + commands *command.Commands, + verifier *authz.TokenVerifier, + authConfig authz.Config, + idGenerator id.Generator, + storage static.Storage, + orgRepo repository.OrgRepository, +) http.Handler { + h := &Handler{ + commands: commands, + errorHandler: DefaultErrorHandler, + authInterceptor: http_mw.AuthorizationInterceptor(verifier, authConfig), + idGenerator: idGenerator, + storage: storage, + orgRepo: orgRepo, + } + + verifier.RegisterServer("Management-API", "assets", AssetsService_AuthMethods) //TODO: separate api? + router := mux.NewRouter() + RegisterRoutes(router, h) + router.PathPrefix("/{id}").Methods("GET").HandlerFunc(DownloadHandleFunc(h, h.GetFile())) + return router +} + +func (h *Handler) GetFile() Downloader { + return &publicFileDownloader{} +} + +type publicFileDownloader struct{} + +func (l *publicFileDownloader) ObjectName(_ context.Context, path string) (string, error) { + return path, nil +} + +func (l *publicFileDownloader) BucketName(_ context.Context, id string) string { + return id +} + +const maxMemory = 2 << 20 +const paramFile = "file" + +func UploadHandleFunc(s AssetsService, uploader Uploader) func(http.ResponseWriter, *http.Request) { + return func(w http.ResponseWriter, r *http.Request) { + ctx := r.Context() + ctxData := authz.GetCtxData(ctx) + err := r.ParseMultipartForm(maxMemory) + file, handler, err := r.FormFile(paramFile) + if err != nil { + s.ErrorHandler()(w, r, err) + return + } + defer func() { + err = file.Close() + logging.Log("UPLOAD-GDg34").OnError(err).Warn("could not close file") + }() + contentType := handler.Header.Get("content-type") + size := handler.Size + if !uploader.ContentTypeAllowed(contentType) { + s.ErrorHandler()(w, r, caos_errs.ThrowInvalidArgument(nil, "UPLOAD-Dbvfs", "invalid content-type")) + return + } + if size > uploader.MaxFileSize() { + s.ErrorHandler()(w, r, caos_errs.ThrowInvalidArgumentf(nil, "UPLOAD-Bfb32", "file to big, max file size is %v", uploader.MaxFileSize())) + return + } + + bucketName := uploader.BucketName(ctxData) + objectName, err := uploader.ObjectName(ctxData) + if err != nil { + s.ErrorHandler()(w, r, err) + return + } + info, err := s.Commands().UploadAsset(ctx, bucketName, objectName, contentType, file, size) + if err != nil { + s.ErrorHandler()(w, r, err) + return + } + err = uploader.Callback(ctx, info, ctxData.OrgID, s.Commands()) + if err != nil { + s.ErrorHandler()(w, r, err) + return + } + } +} + +func DownloadHandleFunc(s AssetsService, downloader Downloader) func(http.ResponseWriter, *http.Request) { + return func(w http.ResponseWriter, r *http.Request) { + if s.Storage() == nil { + return + } + ctx := r.Context() + id := mux.Vars(r)["id"] + bucketName := downloader.BucketName(ctx, id) + path := "" + if id != "" { + path = strings.Split(r.RequestURI, id+"/")[1] + } + objectName, err := downloader.ObjectName(ctx, path) + if err != nil { + s.ErrorHandler()(w, r, err) + return + } + if objectName == "" { + s.ErrorHandler()(w, r, caos_errs.ThrowNotFound(nil, "UPLOAD-adf4f", "file not found")) + return + } + reader, getInfo, err := s.Storage().GetObject(ctx, bucketName, objectName) + if err != nil { + s.ErrorHandler()(w, r, err) + return + } + data, err := ioutil.ReadAll(reader) + if err != nil { + s.ErrorHandler()(w, r, err) + return + } + info, err := getInfo() + if err != nil { + s.ErrorHandler()(w, r, err) + return + } + w.Header().Set("content-length", strconv.FormatInt(info.Size, 10)) + w.Header().Set("content-type", info.ContentType) + w.Header().Set("ETag", info.ETag) + w.Write(data) + } +} diff --git a/internal/api/assets/generator/asset.yaml b/internal/api/assets/generator/asset.yaml new file mode 100644 index 0000000000..ee1d4595ba --- /dev/null +++ b/internal/api/assets/generator/asset.yaml @@ -0,0 +1,119 @@ +Services: + IAM: + Prefix: "/iam" + Methods: + DefaultLabelPolicyLogo: + Path: "/policy/label/logo" + HasDarkMode: true + Handlers: + - Name: Upload + Comment: + Type: upload + Permission: iam.policy.write + - Name: Get + Comment: + Type: download + Permission: iam.policy.read + - Name: GetPreview + Comment: + Type: preview + Permission: iam.policy.read + DefaultLabelPolicyIcon: + Path: "/policy/label/icon" + HasDarkMode: true + Handlers: + - Name: Upload + Comment: + Type: upload + Permission: iam.policy.write + - Name: Get + Comment: + Type: download + Permission: iam.policy.read + - Name: GetPreview + Comment: + Type: preview + Permission: iam.policy.read + DefaultLabelPolicyFont: + Path: "/policy/label/font" + Handlers: + - Name: Upload + Comment: + Type: upload + Permission: iam.policy.write + - Name: Get + Comment: + Type: download + Permission: iam.policy.read + - Name: GetPreview + Comment: + Type: preview + Permission: iam.policy.read + Org: + Prefix: "/org" + Methods: + OrgLabelPolicyLogo: + Path: "/policy/label/logo" + Feature: "label_policy.private_label" + HasDarkMode: true + Handlers: + - Name: Upload + Comment: + Type: upload + Permission: policy.write + - Name: Get + Comment: + Type: download + Permission: policy.read + - Name: GetPreview + Comment: + Type: preview + Permission: policy.read + OrgLabelPolicyIcon: + Path: "/policy/label/icon" + Feature: "label_policy.private_label" + HasDarkMode: true + Handlers: + - Name: Upload + Comment: + Type: upload + Permission: policy.write + - Name: Get + Comment: + Type: download + Permission: policy.read + - Name: GetPreview + Comment: + Type: preview + Permission: policy.read + OrgLabelPolicyFont: + Path: "/policy/label/font" + Feature: "label_policy.private_label" + Handlers: + - Name: Upload + Comment: + Type: upload + Permission: policy.write + - Name: Get + Comment: + Type: download + Permission: policy.read + - Name: GetPreview + Comment: + Type: preview + Permission: policy.read + Users: + Prefix: "/users" + Methods: + MyUserAvatar: + Path: "/me/avatar" + Features: "label_policy.private_label" + Handlers: + - Name: Upload + Comment: + Type: upload + Permission: authenticated + - Name: Get + Comment: + Type: download + Permission: authenticated \ No newline at end of file diff --git a/internal/api/assets/generator/asset_generator.go b/internal/api/assets/generator/asset_generator.go new file mode 100644 index 0000000000..c4bc1b75a1 --- /dev/null +++ b/internal/api/assets/generator/asset_generator.go @@ -0,0 +1,200 @@ +package main + +import ( + "flag" + "io" + "os" + "text/template" + + "github.com/caos/logging" + + "github.com/caos/zitadel/internal/config" +) + +var ( + directory = flag.String("directory", "./", "working directory: asset.yaml must be in this directory, files will be generated into parent directory") +) + +func main() { + flag.Parse() + configFile := *directory + "asset.yaml" + authz, err := os.OpenFile(*directory+"../authz.go", os.O_TRUNC|os.O_WRONLY|os.O_CREATE, 0755) + logging.Log("ASSETS-Gn31f").OnError(err).Fatal("cannot open authz file") + router, err := os.OpenFile(*directory+"../router.go", os.O_TRUNC|os.O_WRONLY|os.O_CREATE, 0755) + logging.Log("ASSETS-ABen3").OnError(err).Fatal("cannot open router file") + GenerateAssetHandler(configFile, authz, router) +} + +type Method struct { + Path string + Feature string + HasDarkMode bool + Handlers []Handler +} + +type Handler struct { + Name string + Comment string + Type HandlerType + Permission string +} + +func (a Handler) Method() string { + if a.Type == MethodTypeUpload { + return "POST" + } + return "GET" +} + +func (a Handler) PathSuffix() string { + if a.Type == MethodTypePreview { + return "/_preview" + } + return "" +} + +func (a Handler) MethodReturn() string { + if a.Type == MethodTypeUpload { + return "Uploader" + } + if a.Type == MethodTypeDownload { + return "Downloader" + } + if a.Type == MethodTypePreview { + return "Downloader" + } + return "" +} + +func (a Handler) HandlerType() string { + if a.Type == MethodTypeUpload { + return "UploadHandleFunc" + } + if a.Type == MethodTypeDownload { + return "DownloadHandleFunc" + } + if a.Type == MethodTypePreview { + return "DownloadHandleFunc" + } + return "" +} + +type HandlerType string + +const ( + MethodTypeUpload = "upload" + MethodTypeDownload = "download" + MethodTypePreview = "preview" +) + +type Services map[string]Service + +type Service struct { + Prefix string + Methods map[string]Method +} + +func GenerateAssetHandler(configFilePath string, output io.Writer, output2 io.Writer) { + conf := new(struct { + Services Services + }) + err := config.Read(conf, configFilePath) + logging.Log("ASSETS-Dgbn4").OnError(err).Fatal("cannot read config") + tmplAuthz, err := template.New("").Parse(authzTmpl) + logging.Log("ASSETS-BGbbg").OnError(err).Fatal("cannot parse authz template") + tmplRouter, err := template.New("").Parse(routerTmpl) + logging.Log("ASSETS-gh4rq").OnError(err).Fatal("cannot parse router template") + data := &struct { + GoPkgName string + Name string + Prefix string + Services Services + }{ + GoPkgName: "assets", + Name: "AssetsService", + Prefix: "/assets/v1", + Services: conf.Services, + } + err = tmplAuthz.Execute(output, data) + logging.Log("ASSETS-BHngj").OnError(err).Fatal("cannot generate authz") + err = tmplRouter.Execute(output2, data) + logging.Log("ASSETS-Bfd41").OnError(err).Fatal("cannot generate router") +} + +const authzTmpl = `package {{.GoPkgName}} + +import ( + "github.com/caos/zitadel/internal/api/authz" +) + +/** + * {{.Name}} + */ + +{{ $prefix := .Prefix }} +var {{.Name}}_AuthMethods = authz.MethodMapping { + {{ range $service := .Services}} + {{ range $method := .Methods}} + {{ range $handler := .Handlers}} + {{ if (or $method.Feature $handler.Permission) }} + "{{$handler.Method}}:{{$prefix}}{{$service.Prefix}}{{$method.Path}}{{$handler.PathSuffix}}": authz.Option{ + Permission: "{{$handler.Permission}}", + Feature: "{{$method.Feature}}", + }, + {{ if $method.HasDarkMode }} + "{{$handler.Method}}:{{$prefix}}{{$service.Prefix}}{{$method.Path}}/dark{{$handler.PathSuffix}}": authz.Option{ + Permission: "{{$handler.Permission}}", + Feature: "{{$method.Feature}}", + }, + {{end}} + {{end}} + {{end}} + {{end}} + {{end}} +} +` + +const routerTmpl = `package {{.GoPkgName}} + +import ( + "github.com/gorilla/mux" + + http_mw "github.com/caos/zitadel/internal/api/http/middleware" + "github.com/caos/zitadel/internal/command" + "github.com/caos/zitadel/internal/static" +) + +type {{.Name}} interface { + AuthInterceptor() *http_mw.AuthInterceptor + Commands() *command.Commands + ErrorHandler() ErrorHandler + Storage() static.Storage + + {{ range $service := .Services}} + {{ range $methodName, $method := .Methods}} + {{ range $handler := .Handlers}} + {{$handler.Name}}{{$methodName}}() {{if $handler.MethodReturn}}{{$handler.MethodReturn}}{{end}} + {{ if $method.HasDarkMode }} + {{$handler.Name}}{{$methodName}}Dark() {{if $handler.MethodReturn}}{{$handler.MethodReturn}}{{end}} + {{ end }} + {{ end }} + {{ end }} + {{ end }} +} + +func RegisterRoutes(router *mux.Router, s {{.Name}}) { + + router.Use(s.AuthInterceptor().Handler) + + {{ range $service := .Services}} + {{ range $methodName, $method := .Methods}} + {{ range $handler := .Handlers}} + router.Path("{{$service.Prefix}}{{$method.Path}}{{$handler.PathSuffix}}").Methods("{{$handler.Method}}").HandlerFunc({{if $handler.HandlerType}}{{$handler.HandlerType}}(s, {{end}}s.{{$handler.Name}}{{$methodName}}(){{if $handler.HandlerType}}){{end}}) + {{ if $method.HasDarkMode }} + router.Path("{{$service.Prefix}}{{$method.Path}}/dark{{$handler.PathSuffix}}").Methods("{{$handler.Method}}").HandlerFunc({{if $handler.HandlerType}}{{$handler.HandlerType}}(s, {{end}}s.{{$handler.Name}}{{$methodName}}Dark(){{if $handler.HandlerType}}){{end}}) + {{ end }} + {{ end }} + {{ end }} + {{ end }} +} +` diff --git a/internal/api/assets/login_policy.go b/internal/api/assets/login_policy.go new file mode 100644 index 0000000000..254e7a2dfb --- /dev/null +++ b/internal/api/assets/login_policy.go @@ -0,0 +1,377 @@ +package assets + +import ( + "context" + "strings" + + "github.com/caos/zitadel/internal/api/authz" + "github.com/caos/zitadel/internal/command" + "github.com/caos/zitadel/internal/domain" + "github.com/caos/zitadel/internal/iam/model" + "github.com/caos/zitadel/internal/id" + "github.com/caos/zitadel/internal/management/repository" +) + +func (h *Handler) UploadDefaultLabelPolicyLogo() Uploader { + return &labelPolicyLogoUploader{h.idGenerator, false, true, []string{"image/"}, 1 << 19} +} + +func (h *Handler) UploadDefaultLabelPolicyLogoDark() Uploader { + return &labelPolicyLogoUploader{h.idGenerator, true, true, []string{"image/"}, 1 << 19} +} + +func (h *Handler) UploadOrgLabelPolicyLogo() Uploader { + return &labelPolicyLogoUploader{h.idGenerator, false, false, []string{"image/"}, 1 << 19} +} + +func (h *Handler) UploadOrgLabelPolicyLogoDark() Uploader { + return &labelPolicyLogoUploader{h.idGenerator, true, false, []string{"image/"}, 1 << 19} +} + +type labelPolicyLogoUploader struct { + idGenerator id.Generator + darkMode bool + defaultPolicy bool + contentTypes []string + maxSize int64 +} + +func (l *labelPolicyLogoUploader) ContentTypeAllowed(contentType string) bool { + for _, ct := range l.contentTypes { + if strings.HasPrefix(contentType, ct) { + return true + } + } + return false +} + +func (l *labelPolicyLogoUploader) MaxFileSize() int64 { + return l.maxSize +} + +func (l *labelPolicyLogoUploader) ObjectName(_ authz.CtxData) (string, error) { + suffixID, err := l.idGenerator.Next() + if err != nil { + return "", err + } + prefix := domain.LabelPolicyLogoPath + if l.darkMode { + return prefix + "-" + domain.Dark + "-" + suffixID, nil + } + return prefix + "-" + suffixID, nil +} + +func (l *labelPolicyLogoUploader) BucketName(ctxData authz.CtxData) string { + if l.defaultPolicy { + return domain.IAMID + } + return ctxData.OrgID +} + +func (l *labelPolicyLogoUploader) Callback(ctx context.Context, info *domain.AssetInfo, orgID string, commands *command.Commands) error { + if l.defaultPolicy { + if l.darkMode { + _, err := commands.AddLogoDarkDefaultLabelPolicy(ctx, info.Key) + return err + } + _, err := commands.AddLogoDefaultLabelPolicy(ctx, info.Key) + return err + } + if l.darkMode { + _, err := commands.AddLogoDarkLabelPolicy(ctx, orgID, info.Key) + return err + } + _, err := commands.AddLogoLabelPolicy(ctx, orgID, info.Key) + return err +} + +func (h *Handler) GetDefaultLabelPolicyLogo() Downloader { + return &labelPolicyLogoDownloader{org: h.orgRepo, darkMode: false, defaultPolicy: true, preview: false} +} + +func (h *Handler) GetDefaultLabelPolicyLogoDark() Downloader { + return &labelPolicyLogoDownloader{org: h.orgRepo, darkMode: true, defaultPolicy: true, preview: false} +} + +func (h *Handler) GetPreviewDefaultLabelPolicyLogo() Downloader { + return &labelPolicyLogoDownloader{org: h.orgRepo, darkMode: false, defaultPolicy: true, preview: true} +} + +func (h *Handler) GetPreviewDefaultLabelPolicyLogoDark() Downloader { + return &labelPolicyLogoDownloader{org: h.orgRepo, darkMode: true, defaultPolicy: true, preview: true} +} + +func (h *Handler) GetOrgLabelPolicyLogo() Downloader { + return &labelPolicyLogoDownloader{org: h.orgRepo, darkMode: false, defaultPolicy: false, preview: false} +} + +func (h *Handler) GetOrgLabelPolicyLogoDark() Downloader { + return &labelPolicyLogoDownloader{org: h.orgRepo, darkMode: true, defaultPolicy: false, preview: false} +} + +func (h *Handler) GetPreviewOrgLabelPolicyLogo() Downloader { + return &labelPolicyLogoDownloader{org: h.orgRepo, darkMode: false, defaultPolicy: false, preview: true} +} + +func (h *Handler) GetPreviewOrgLabelPolicyLogoDark() Downloader { + return &labelPolicyLogoDownloader{org: h.orgRepo, darkMode: true, defaultPolicy: false, preview: true} +} + +type labelPolicyLogoDownloader struct { + org repository.OrgRepository + darkMode bool + defaultPolicy bool + preview bool +} + +func (l *labelPolicyLogoDownloader) ObjectName(ctx context.Context, path string) (string, error) { + policy, err := getLabelPolicy(ctx, l.defaultPolicy, l.preview, l.org) + if err != nil { + return "", nil + } + if l.darkMode { + return policy.LogoDarkURL, nil + } + return policy.LogoURL, nil +} + +func (l *labelPolicyLogoDownloader) BucketName(ctx context.Context, id string) string { + if l.defaultPolicy { + return domain.IAMID + } + return authz.GetCtxData(ctx).OrgID +} + +func (h *Handler) UploadDefaultLabelPolicyIcon() Uploader { + return &labelPolicyIconUploader{h.idGenerator, false, true, []string{"image/"}, 1 << 19} +} + +func (h *Handler) UploadDefaultLabelPolicyIconDark() Uploader { + return &labelPolicyIconUploader{h.idGenerator, true, true, []string{"image/"}, 1 << 19} +} + +func (h *Handler) UploadOrgLabelPolicyIcon() Uploader { + return &labelPolicyIconUploader{h.idGenerator, false, false, []string{"image/"}, 1 << 19} +} + +func (h *Handler) UploadOrgLabelPolicyIconDark() Uploader { + return &labelPolicyIconUploader{h.idGenerator, true, false, []string{"image/"}, 1 << 19} +} + +type labelPolicyIconUploader struct { + idGenerator id.Generator + darkMode bool + defaultPolicy bool + contentTypes []string + maxSize int64 +} + +func (l *labelPolicyIconUploader) ContentTypeAllowed(contentType string) bool { + for _, ct := range l.contentTypes { + if strings.HasPrefix(contentType, ct) { + return true + } + } + return false +} + +func (l *labelPolicyIconUploader) MaxFileSize() int64 { + return l.maxSize +} + +func (l *labelPolicyIconUploader) ObjectName(_ authz.CtxData) (string, error) { + suffixID, err := l.idGenerator.Next() + if err != nil { + return "", err + } + prefix := domain.LabelPolicyIconPath + if l.darkMode { + return prefix + "-" + domain.Dark + "-" + suffixID, nil + } + return prefix + "-" + suffixID, nil +} + +func (l *labelPolicyIconUploader) BucketName(ctxData authz.CtxData) string { + if l.defaultPolicy { + return domain.IAMID + } + return ctxData.OrgID +} + +func (l *labelPolicyIconUploader) Callback(ctx context.Context, info *domain.AssetInfo, orgID string, commands *command.Commands) error { + if l.defaultPolicy { + if l.darkMode { + _, err := commands.AddIconDarkDefaultLabelPolicy(ctx, info.Key) + return err + } + _, err := commands.AddIconDefaultLabelPolicy(ctx, info.Key) + return err + } + + if l.darkMode { + _, err := commands.AddIconDarkLabelPolicy(ctx, orgID, info.Key) + return err + } + _, err := commands.AddIconLabelPolicy(ctx, orgID, info.Key) + return err +} + +func (h *Handler) GetDefaultLabelPolicyIcon() Downloader { + return &labelPolicyIconDownloader{org: h.orgRepo, darkMode: false, defaultPolicy: true, preview: false} +} + +func (h *Handler) GetDefaultLabelPolicyIconDark() Downloader { + return &labelPolicyIconDownloader{org: h.orgRepo, darkMode: true, defaultPolicy: true, preview: false} +} + +func (h *Handler) GetPreviewDefaultLabelPolicyIcon() Downloader { + return &labelPolicyIconDownloader{org: h.orgRepo, darkMode: false, defaultPolicy: true, preview: true} +} + +func (h *Handler) GetPreviewDefaultLabelPolicyIconDark() Downloader { + return &labelPolicyIconDownloader{org: h.orgRepo, darkMode: true, defaultPolicy: true, preview: true} +} + +func (h *Handler) GetOrgLabelPolicyIcon() Downloader { + return &labelPolicyIconDownloader{org: h.orgRepo, darkMode: false, defaultPolicy: false, preview: false} +} + +func (h *Handler) GetOrgLabelPolicyIconDark() Downloader { + return &labelPolicyIconDownloader{org: h.orgRepo, darkMode: true, defaultPolicy: false, preview: false} +} + +func (h *Handler) GetPreviewOrgLabelPolicyIcon() Downloader { + return &labelPolicyIconDownloader{org: h.orgRepo, darkMode: false, defaultPolicy: false, preview: true} +} + +func (h *Handler) GetPreviewOrgLabelPolicyIconDark() Downloader { + return &labelPolicyIconDownloader{org: h.orgRepo, darkMode: true, defaultPolicy: false, preview: true} +} + +type labelPolicyIconDownloader struct { + org repository.OrgRepository + darkMode bool + defaultPolicy bool + preview bool +} + +func (l *labelPolicyIconDownloader) ObjectName(ctx context.Context, path string) (string, error) { + policy, err := getLabelPolicy(ctx, l.defaultPolicy, l.preview, l.org) + if err != nil { + return "", nil + } + if l.darkMode { + return policy.IconDarkURL, nil + } + return policy.IconURL, nil +} + +func (l *labelPolicyIconDownloader) BucketName(ctx context.Context, id string) string { + if l.defaultPolicy { + return domain.IAMID + } + return authz.GetCtxData(ctx).OrgID +} + +func (h *Handler) UploadDefaultLabelPolicyFont() Uploader { + return &labelPolicyFontUploader{h.idGenerator, true, []string{"font/"}, 1 << 19} +} + +func (h *Handler) UploadOrgLabelPolicyFont() Uploader { + return &labelPolicyFontUploader{h.idGenerator, false, []string{"font/"}, 1 << 19} +} + +type labelPolicyFontUploader struct { + idGenerator id.Generator + defaultPolicy bool + contentTypes []string + maxSize int64 +} + +func (l *labelPolicyFontUploader) ContentTypeAllowed(contentType string) bool { + for _, ct := range l.contentTypes { + if strings.HasPrefix(contentType, ct) { + return true + } + } + return false +} + +func (l *labelPolicyFontUploader) MaxFileSize() int64 { + return l.maxSize +} + +func (l *labelPolicyFontUploader) ObjectName(_ authz.CtxData) (string, error) { + suffixID, err := l.idGenerator.Next() + if err != nil { + return "", err + } + prefix := domain.LabelPolicyFontPath + return prefix + "-" + suffixID, nil +} + +func (l *labelPolicyFontUploader) BucketName(ctxData authz.CtxData) string { + if l.defaultPolicy { + return domain.IAMID + } + return ctxData.OrgID +} + +func (l *labelPolicyFontUploader) Callback(ctx context.Context, info *domain.AssetInfo, orgID string, commands *command.Commands) error { + if l.defaultPolicy { + _, err := commands.AddFontDefaultLabelPolicy(ctx, info.Key) + return err + } + _, err := commands.AddFontLabelPolicy(ctx, orgID, info.Key) + return err +} + +func (h *Handler) GetDefaultLabelPolicyFont() Downloader { + return &labelPolicyFontDownloader{org: h.orgRepo, defaultPolicy: true, preview: false} +} + +func (h *Handler) GetPreviewDefaultLabelPolicyFont() Downloader { + return &labelPolicyFontDownloader{org: h.orgRepo, defaultPolicy: true, preview: true} +} + +func (h *Handler) GetOrgLabelPolicyFont() Downloader { + return &labelPolicyFontDownloader{org: h.orgRepo, defaultPolicy: false, preview: false} +} + +func (h *Handler) GetPreviewOrgLabelPolicyFont() Downloader { + return &labelPolicyFontDownloader{org: h.orgRepo, defaultPolicy: true, preview: true} +} + +type labelPolicyFontDownloader struct { + org repository.OrgRepository + defaultPolicy bool + preview bool +} + +func (l *labelPolicyFontDownloader) ObjectName(ctx context.Context, path string) (string, error) { + policy, err := getLabelPolicy(ctx, l.defaultPolicy, l.preview, l.org) + if err != nil { + return "", nil + } + return policy.FontURL, nil +} + +func (l *labelPolicyFontDownloader) BucketName(ctx context.Context, id string) string { + if l.defaultPolicy { + return domain.IAMID + } + return authz.GetCtxData(ctx).OrgID +} + +func getLabelPolicy(ctx context.Context, defaultPolicy, preview bool, orgRepo repository.OrgRepository) (*model.LabelPolicyView, error) { + if defaultPolicy { + if preview { + return orgRepo.GetPreviewDefaultLabelPolicy(ctx) + } + return orgRepo.GetDefaultLabelPolicy(ctx) + } + if preview { + return orgRepo.GetPreviewLabelPolicy(ctx) + } + return orgRepo.GetLabelPolicy(ctx) +} diff --git a/internal/api/assets/user_avatar.go b/internal/api/assets/user_avatar.go new file mode 100644 index 0000000000..687f0578e8 --- /dev/null +++ b/internal/api/assets/user_avatar.go @@ -0,0 +1,59 @@ +package assets + +import ( + "context" + "strings" + + "github.com/caos/zitadel/internal/api/authz" + "github.com/caos/zitadel/internal/command" + "github.com/caos/zitadel/internal/domain" +) + +func (h *Handler) UploadMyUserAvatar() Uploader { + return &myHumanAvatarUploader{[]string{"image/"}, 1 << 19} +} + +type myHumanAvatarUploader struct { + contentTypes []string + maxSize int64 +} + +func (l *myHumanAvatarUploader) ContentTypeAllowed(contentType string) bool { + for _, ct := range l.contentTypes { + if strings.HasPrefix(contentType, ct) { + return true + } + } + return false +} + +func (l *myHumanAvatarUploader) MaxFileSize() int64 { + return l.maxSize +} + +func (l *myHumanAvatarUploader) ObjectName(ctxData authz.CtxData) (string, error) { + return domain.GetHumanAvatarAssetPath(ctxData.UserID), nil +} + +func (l *myHumanAvatarUploader) BucketName(ctxData authz.CtxData) string { + return ctxData.OrgID +} + +func (l *myHumanAvatarUploader) Callback(ctx context.Context, info *domain.AssetInfo, orgID string, commands *command.Commands) error { + _, err := commands.AddHumanAvatar(ctx, orgID, authz.GetCtxData(ctx).UserID, info.Key) + return err +} + +func (h *Handler) GetMyUserAvatar() Downloader { + return &myHumanAvatarDownloader{} +} + +type myHumanAvatarDownloader struct{} + +func (l *myHumanAvatarDownloader) ObjectName(ctx context.Context, path string) (string, error) { + return domain.GetHumanAvatarAssetPath(authz.GetCtxData(ctx).UserID), nil +} + +func (l *myHumanAvatarDownloader) BucketName(ctx context.Context, id string) string { + return authz.GetCtxData(ctx).OrgID +} diff --git a/internal/api/grpc/admin/features.go b/internal/api/grpc/admin/features.go index bd7950235f..3847857cef 100644 --- a/internal/api/grpc/admin/features.go +++ b/internal/api/grpc/admin/features.go @@ -71,7 +71,8 @@ func setDefaultFeaturesRequestToDomain(req *admin_pb.SetDefaultFeaturesRequest) LoginPolicyUsernameLogin: req.LoginPolicyUsernameLogin, LoginPolicyPasswordReset: req.LoginPolicyPasswordReset, PasswordComplexityPolicy: req.PasswordComplexityPolicy, - LabelPolicy: req.LabelPolicy, + LabelPolicyPrivateLabel: req.LabelPolicy || req.LabelPolicyPrivateLabel, + LabelPolicyWatermark: req.LabelPolicyWatermark, CustomDomain: req.CustomDomain, } } @@ -90,7 +91,8 @@ func setOrgFeaturesRequestToDomain(req *admin_pb.SetOrgFeaturesRequest) *domain. LoginPolicyUsernameLogin: req.LoginPolicyUsernameLogin, LoginPolicyPasswordReset: req.LoginPolicyPasswordReset, PasswordComplexityPolicy: req.PasswordComplexityPolicy, - LabelPolicy: req.LabelPolicy, + LabelPolicyPrivateLabel: req.LabelPolicy || req.LabelPolicyPrivateLabel, + LabelPolicyWatermark: req.LabelPolicyWatermark, CustomDomain: req.CustomDomain, } } diff --git a/internal/api/grpc/admin/label_policy.go b/internal/api/grpc/admin/label_policy.go index 920b6e4d3a..ebd56bf269 100644 --- a/internal/api/grpc/admin/label_policy.go +++ b/internal/api/grpc/admin/label_policy.go @@ -16,6 +16,14 @@ func (s *Server) GetLabelPolicy(ctx context.Context, req *admin_pb.GetLabelPolic return &admin_pb.GetLabelPolicyResponse{Policy: policy_grpc.ModelLabelPolicyToPb(policy)}, nil } +func (s *Server) GetPreviewLabelPolicy(ctx context.Context, req *admin_pb.GetPreviewLabelPolicyRequest) (*admin_pb.GetPreviewLabelPolicyResponse, error) { + policy, err := s.iam.GetDefaultPreviewLabelPolicy(ctx) + if err != nil { + return nil, err + } + return &admin_pb.GetPreviewLabelPolicyResponse{Policy: policy_grpc.ModelLabelPolicyToPb(policy)}, nil +} + func (s *Server) UpdateLabelPolicy(ctx context.Context, req *admin_pb.UpdateLabelPolicyRequest) (*admin_pb.UpdateLabelPolicyResponse, error) { policy, err := s.command.ChangeDefaultLabelPolicy(ctx, updateLabelPolicyToDomain(req)) if err != nil { @@ -29,3 +37,87 @@ func (s *Server) UpdateLabelPolicy(ctx context.Context, req *admin_pb.UpdateLabe ), }, nil } + +func (s *Server) ActivateLabelPolicy(ctx context.Context, req *admin_pb.ActivateLabelPolicyRequest) (*admin_pb.ActivateLabelPolicyResponse, error) { + policy, err := s.command.ActivateDefaultLabelPolicy(ctx) + if err != nil { + return nil, err + } + return &admin_pb.ActivateLabelPolicyResponse{ + Details: object.ChangeToDetailsPb( + policy.Sequence, + policy.EventDate, + policy.ResourceOwner, + ), + }, nil +} + +func (s *Server) RemoveLabelPolicyLogo(ctx context.Context, req *admin_pb.RemoveLabelPolicyLogoRequest) (*admin_pb.RemoveLabelPolicyLogoResponse, error) { + policy, err := s.command.RemoveLogoDefaultLabelPolicy(ctx) + if err != nil { + return nil, err + } + return &admin_pb.RemoveLabelPolicyLogoResponse{ + Details: object.ChangeToDetailsPb( + policy.Sequence, + policy.EventDate, + policy.ResourceOwner, + ), + }, nil +} + +func (s *Server) RemoveLabelPolicyLogoDark(ctx context.Context, req *admin_pb.RemoveLabelPolicyLogoDarkRequest) (*admin_pb.RemoveLabelPolicyLogoDarkResponse, error) { + policy, err := s.command.RemoveLogoDarkDefaultLabelPolicy(ctx) + if err != nil { + return nil, err + } + return &admin_pb.RemoveLabelPolicyLogoDarkResponse{ + Details: object.ChangeToDetailsPb( + policy.Sequence, + policy.EventDate, + policy.ResourceOwner, + ), + }, nil +} + +func (s *Server) RemoveLabelPolicyIcon(ctx context.Context, req *admin_pb.RemoveLabelPolicyIconRequest) (*admin_pb.RemoveLabelPolicyIconResponse, error) { + policy, err := s.command.RemoveIconDefaultLabelPolicy(ctx) + if err != nil { + return nil, err + } + return &admin_pb.RemoveLabelPolicyIconResponse{ + Details: object.ChangeToDetailsPb( + policy.Sequence, + policy.EventDate, + policy.ResourceOwner, + ), + }, nil +} + +func (s *Server) RemoveLabelPolicyIconDark(ctx context.Context, req *admin_pb.RemoveLabelPolicyIconDarkRequest) (*admin_pb.RemoveLabelPolicyIconDarkResponse, error) { + policy, err := s.command.RemoveIconDarkDefaultLabelPolicy(ctx) + if err != nil { + return nil, err + } + return &admin_pb.RemoveLabelPolicyIconDarkResponse{ + Details: object.ChangeToDetailsPb( + policy.Sequence, + policy.EventDate, + policy.ResourceOwner, + ), + }, nil +} + +func (s *Server) RemoveLabelPolicyFont(ctx context.Context, req *admin_pb.RemoveLabelPolicyFontRequest) (*admin_pb.RemoveLabelPolicyFontResponse, error) { + policy, err := s.command.RemoveFontDefaultLabelPolicy(ctx) + if err != nil { + return nil, err + } + return &admin_pb.RemoveLabelPolicyFontResponse{ + Details: object.ChangeToDetailsPb( + policy.Sequence, + policy.EventDate, + policy.ResourceOwner, + ), + }, nil +} diff --git a/internal/api/grpc/admin/label_policy_converter.go b/internal/api/grpc/admin/label_policy_converter.go index 681ed543ae..6d5eae59dd 100644 --- a/internal/api/grpc/admin/label_policy_converter.go +++ b/internal/api/grpc/admin/label_policy_converter.go @@ -8,7 +8,14 @@ import ( func updateLabelPolicyToDomain(policy *admin_pb.UpdateLabelPolicyRequest) *domain.LabelPolicy { return &domain.LabelPolicy{ PrimaryColor: policy.PrimaryColor, - SecondaryColor: policy.SecondaryColor, + BackgroundColor: policy.BackgroundColor, + WarnColor: policy.WarnColor, + FontColor: policy.FontColor, + PrimaryColorDark: policy.PrimaryColorDark, + BackgroundColorDark: policy.BackgroundColorDark, + WarnColorDark: policy.WarnColorDark, + FontColorDark: policy.FontColorDark, HideLoginNameSuffix: policy.HideLoginNameSuffix, + DisableWatermark: policy.DisableWatermark, } } diff --git a/internal/api/grpc/auth/avatar.go b/internal/api/grpc/auth/avatar.go new file mode 100644 index 0000000000..d49d20fe70 --- /dev/null +++ b/internal/api/grpc/auth/avatar.go @@ -0,0 +1,20 @@ +package auth + +import ( + "context" + + "github.com/caos/zitadel/internal/api/authz" + "github.com/caos/zitadel/internal/api/grpc/object" + auth_pb "github.com/caos/zitadel/pkg/grpc/auth" +) + +func (s *Server) RemoveMyAvatar(ctx context.Context, req *auth_pb.RemoveMyAvatarRequest) (*auth_pb.RemoveMyAvatarResponse, error) { + ctxData := authz.GetCtxData(ctx) + objectDetails, err := s.command.RemoveHumanAvatar(ctx, ctxData.ResourceOwner, ctxData.UserID) + if err != nil { + return nil, err + } + return &auth_pb.RemoveMyAvatarResponse{ + Details: object.DomainToChangeDetailsPb(objectDetails), + }, nil +} diff --git a/internal/api/grpc/auth/server.go b/internal/api/grpc/auth/server.go index 50c0b3b8d3..183b7b3dc0 100644 --- a/internal/api/grpc/auth/server.go +++ b/internal/api/grpc/auth/server.go @@ -1,6 +1,8 @@ package auth import ( + "google.golang.org/grpc" + "github.com/caos/zitadel/internal/api/authz" "github.com/caos/zitadel/internal/api/grpc/server" "github.com/caos/zitadel/internal/auth/repository" @@ -8,7 +10,6 @@ import ( "github.com/caos/zitadel/internal/command" "github.com/caos/zitadel/internal/query" "github.com/caos/zitadel/pkg/grpc/auth" - "google.golang.org/grpc" ) var _ auth.AuthServiceServer = (*Server)(nil) diff --git a/internal/api/grpc/features/features.go b/internal/api/grpc/features/features.go index 17055cc662..51d1102385 100644 --- a/internal/api/grpc/features/features.go +++ b/internal/api/grpc/features/features.go @@ -23,8 +23,10 @@ func FeaturesFromModel(features *features_model.FeaturesView) *features_pb.Featu LoginPolicyUsernameLogin: features.LoginPolicyUsernameLogin, LoginPolicyPasswordReset: features.LoginPolicyPasswordReset, PasswordComplexityPolicy: features.PasswordComplexityPolicy, - LabelPolicy: features.LabelPolicy, + LabelPolicy: features.LabelPolicyPrivateLabel, CustomDomain: features.CustomDomain, + LabelPolicyPrivateLabel: features.LabelPolicyPrivateLabel, + LabelPolicyWatermark: features.LabelPolicyWatermark, } } diff --git a/internal/api/grpc/management/policy_label.go b/internal/api/grpc/management/policy_label.go index 0dacfd9adf..8c4f880ab0 100644 --- a/internal/api/grpc/management/policy_label.go +++ b/internal/api/grpc/management/policy_label.go @@ -14,7 +14,15 @@ func (s *Server) GetLabelPolicy(ctx context.Context, req *mgmt_pb.GetLabelPolicy if err != nil { return nil, err } - return &mgmt_pb.GetLabelPolicyResponse{Policy: policy_grpc.ModelLabelPolicyToPb(policy)}, nil + return &mgmt_pb.GetLabelPolicyResponse{Policy: policy_grpc.ModelLabelPolicyToPb(policy), IsDefault: policy.Default}, nil +} + +func (s *Server) GetPreviewLabelPolicy(ctx context.Context, req *mgmt_pb.GetPreviewLabelPolicyRequest) (*mgmt_pb.GetPreviewLabelPolicyResponse, error) { + policy, err := s.org.GetPreviewLabelPolicy(ctx) + if err != nil { + return nil, err + } + return &mgmt_pb.GetPreviewLabelPolicyResponse{Policy: policy_grpc.ModelLabelPolicyToPb(policy)}, nil } func (s *Server) GetDefaultLabelPolicy(ctx context.Context, req *mgmt_pb.GetDefaultLabelPolicyRequest) (*mgmt_pb.GetDefaultLabelPolicyResponse, error) { @@ -53,6 +61,20 @@ func (s *Server) UpdateCustomLabelPolicy(ctx context.Context, req *mgmt_pb.Updat }, nil } +func (s *Server) ActivateCustomLabelPolicy(ctx context.Context, req *mgmt_pb.ActivateCustomLabelPolicyRequest) (*mgmt_pb.ActivateCustomLabelPolicyResponse, error) { + policy, err := s.command.ActivateLabelPolicy(ctx, authz.GetCtxData(ctx).OrgID) + if err != nil { + return nil, err + } + return &mgmt_pb.ActivateCustomLabelPolicyResponse{ + Details: object.ChangeToDetailsPb( + policy.Sequence, + policy.EventDate, + policy.ResourceOwner, + ), + }, nil +} + func (s *Server) ResetLabelPolicyToDefault(ctx context.Context, req *mgmt_pb.ResetLabelPolicyToDefaultRequest) (*mgmt_pb.ResetLabelPolicyToDefaultResponse, error) { objectDetails, err := s.command.RemoveLabelPolicy(ctx, authz.GetCtxData(ctx).OrgID) if err != nil { @@ -62,3 +84,73 @@ func (s *Server) ResetLabelPolicyToDefault(ctx context.Context, req *mgmt_pb.Res Details: object.DomainToChangeDetailsPb(objectDetails), }, nil } + +func (s *Server) RemoveCustomLabelPolicyLogo(ctx context.Context, req *mgmt_pb.RemoveCustomLabelPolicyLogoRequest) (*mgmt_pb.RemoveCustomLabelPolicyLogoResponse, error) { + policy, err := s.command.RemoveLogoDefaultLabelPolicy(ctx) + if err != nil { + return nil, err + } + return &mgmt_pb.RemoveCustomLabelPolicyLogoResponse{ + Details: object.ChangeToDetailsPb( + policy.Sequence, + policy.EventDate, + policy.ResourceOwner, + ), + }, nil +} + +func (s *Server) RemoveCustomLabelPolicyLogoDark(ctx context.Context, req *mgmt_pb.RemoveCustomLabelPolicyLogoDarkRequest) (*mgmt_pb.RemoveCustomLabelPolicyLogoDarkResponse, error) { + policy, err := s.command.RemoveLogoDarkDefaultLabelPolicy(ctx) + if err != nil { + return nil, err + } + return &mgmt_pb.RemoveCustomLabelPolicyLogoDarkResponse{ + Details: object.ChangeToDetailsPb( + policy.Sequence, + policy.EventDate, + policy.ResourceOwner, + ), + }, nil +} + +func (s *Server) RemoveCustomLabelPolicyIcon(ctx context.Context, req *mgmt_pb.RemoveCustomLabelPolicyIconRequest) (*mgmt_pb.RemoveCustomLabelPolicyIconResponse, error) { + policy, err := s.command.RemoveIconDefaultLabelPolicy(ctx) + if err != nil { + return nil, err + } + return &mgmt_pb.RemoveCustomLabelPolicyIconResponse{ + Details: object.ChangeToDetailsPb( + policy.Sequence, + policy.EventDate, + policy.ResourceOwner, + ), + }, nil +} + +func (s *Server) RemoveCustomLabelPolicyIconDark(ctx context.Context, req *mgmt_pb.RemoveCustomLabelPolicyIconDarkRequest) (*mgmt_pb.RemoveCustomLabelPolicyIconDarkResponse, error) { + policy, err := s.command.RemoveIconDarkDefaultLabelPolicy(ctx) + if err != nil { + return nil, err + } + return &mgmt_pb.RemoveCustomLabelPolicyIconDarkResponse{ + Details: object.ChangeToDetailsPb( + policy.Sequence, + policy.EventDate, + policy.ResourceOwner, + ), + }, nil +} + +func (s *Server) RemoveCustomLabelPolicyFont(ctx context.Context, req *mgmt_pb.RemoveCustomLabelPolicyFontRequest) (*mgmt_pb.RemoveCustomLabelPolicyFontResponse, error) { + policy, err := s.command.RemoveFontDefaultLabelPolicy(ctx) + if err != nil { + return nil, err + } + return &mgmt_pb.RemoveCustomLabelPolicyFontResponse{ + Details: object.ChangeToDetailsPb( + policy.Sequence, + policy.EventDate, + policy.ResourceOwner, + ), + }, nil +} diff --git a/internal/api/grpc/management/policy_label_converter.go b/internal/api/grpc/management/policy_label_converter.go index ba6decf406..4c33565a33 100644 --- a/internal/api/grpc/management/policy_label_converter.go +++ b/internal/api/grpc/management/policy_label_converter.go @@ -8,15 +8,27 @@ import ( func addLabelPolicyToDomain(p *mgmt_pb.AddCustomLabelPolicyRequest) *domain.LabelPolicy { return &domain.LabelPolicy{ PrimaryColor: p.PrimaryColor, - SecondaryColor: p.SecondaryColor, + BackgroundColor: p.BackgroundColor, + WarnColor: p.WarnColor, + PrimaryColorDark: p.PrimaryColorDark, + BackgroundColorDark: p.BackgroundColorDark, + WarnColorDark: p.WarnColorDark, HideLoginNameSuffix: p.HideLoginNameSuffix, + DisableWatermark: p.DisableWatermark, } } func updateLabelPolicyToDomain(p *mgmt_pb.UpdateCustomLabelPolicyRequest) *domain.LabelPolicy { return &domain.LabelPolicy{ PrimaryColor: p.PrimaryColor, - SecondaryColor: p.SecondaryColor, + BackgroundColor: p.BackgroundColor, + WarnColor: p.WarnColor, + FontColor: p.FontColor, + PrimaryColorDark: p.PrimaryColorDark, + BackgroundColorDark: p.BackgroundColorDark, + WarnColorDark: p.WarnColorDark, + FontColorDark: p.FontColorDark, HideLoginNameSuffix: p.HideLoginNameSuffix, + DisableWatermark: p.DisableWatermark, } } diff --git a/internal/api/grpc/management/policy_login.go b/internal/api/grpc/management/policy_login.go index 54beef9463..7d0fa766f8 100644 --- a/internal/api/grpc/management/policy_login.go +++ b/internal/api/grpc/management/policy_login.go @@ -18,7 +18,7 @@ func (s *Server) GetLoginPolicy(ctx context.Context, req *mgmt_pb.GetLoginPolicy if err != nil { return nil, err } - return &mgmt_pb.GetLoginPolicyResponse{Policy: policy_grpc.ModelLoginPolicyToPb(policy)}, nil + return &mgmt_pb.GetLoginPolicyResponse{Policy: policy_grpc.ModelLoginPolicyToPb(policy), IsDefault: policy.Default}, nil } func (s *Server) GetDefaultLoginPolicy(ctx context.Context, req *mgmt_pb.GetDefaultLoginPolicyRequest) (*mgmt_pb.GetDefaultLoginPolicyResponse, error) { diff --git a/internal/api/grpc/management/policy_password_age.go b/internal/api/grpc/management/policy_password_age.go index eabc1de8bf..ad154f0954 100644 --- a/internal/api/grpc/management/policy_password_age.go +++ b/internal/api/grpc/management/policy_password_age.go @@ -14,7 +14,8 @@ func (s *Server) GetPasswordAgePolicy(ctx context.Context, req *mgmt_pb.GetPassw return nil, err } return &mgmt_pb.GetPasswordAgePolicyResponse{ - Policy: policy_grpc.ModelPasswordAgePolicyToPb(policy), + Policy: policy_grpc.ModelPasswordAgePolicyToPb(policy), + IsDefault: policy.Default, }, nil } diff --git a/internal/api/grpc/management/policy_password_complexity.go b/internal/api/grpc/management/policy_password_complexity.go index 258b5a6ff2..142f856f86 100644 --- a/internal/api/grpc/management/policy_password_complexity.go +++ b/internal/api/grpc/management/policy_password_complexity.go @@ -13,7 +13,7 @@ func (s *Server) GetPasswordComplexityPolicy(ctx context.Context, req *mgmt_pb.G if err != nil { return nil, err } - return &mgmt_pb.GetPasswordComplexityPolicyResponse{Policy: policy_grpc.ModelPasswordComplexityPolicyToPb(policy)}, nil + return &mgmt_pb.GetPasswordComplexityPolicyResponse{Policy: policy_grpc.ModelPasswordComplexityPolicyToPb(policy), IsDefault: policy.Default}, nil } func (s *Server) GetDefaultPasswordComplexityPolicy(ctx context.Context, req *mgmt_pb.GetDefaultPasswordComplexityPolicyRequest) (*mgmt_pb.GetDefaultPasswordComplexityPolicyResponse, error) { diff --git a/internal/api/grpc/management/policy_password_lockout.go b/internal/api/grpc/management/policy_password_lockout.go index 1f74597595..4f52d4dda8 100644 --- a/internal/api/grpc/management/policy_password_lockout.go +++ b/internal/api/grpc/management/policy_password_lockout.go @@ -13,7 +13,7 @@ func (s *Server) GetPasswordLockoutPolicy(ctx context.Context, req *mgmt_pb.GetP if err != nil { return nil, err } - return &mgmt_pb.GetPasswordLockoutPolicyResponse{Policy: policy_grpc.ModelPasswordLockoutPolicyToPb(policy)}, nil + return &mgmt_pb.GetPasswordLockoutPolicyResponse{Policy: policy_grpc.ModelPasswordLockoutPolicyToPb(policy), IsDefault: policy.Default}, nil } func (s *Server) GetDefaultPasswordLockoutPolicy(ctx context.Context, req *mgmt_pb.GetDefaultPasswordLockoutPolicyRequest) (*mgmt_pb.GetDefaultPasswordLockoutPolicyResponse, error) { diff --git a/internal/api/grpc/management/user.go b/internal/api/grpc/management/user.go index 7189e32912..e77fcee4b0 100644 --- a/internal/api/grpc/management/user.go +++ b/internal/api/grpc/management/user.go @@ -323,6 +323,17 @@ func (s *Server) ResendHumanPhoneVerification(ctx context.Context, req *mgmt_pb. }, nil } +func (s *Server) RemoveHumanAvatar(ctx context.Context, req *mgmt_pb.RemoveHumanAvatarRequest) (*mgmt_pb.RemoveHumanAvatarResponse, error) { + ctxData := authz.GetCtxData(ctx) + objectDetails, err := s.command.RemoveHumanAvatar(ctx, ctxData.OrgID, req.UserId) + if err != nil { + return nil, err + } + return &mgmt_pb.RemoveHumanAvatarResponse{ + Details: object.DomainToChangeDetailsPb(objectDetails), + }, nil +} + func (s *Server) SetHumanInitialPassword(ctx context.Context, req *mgmt_pb.SetHumanInitialPasswordRequest) (*mgmt_pb.SetHumanInitialPasswordResponse, error) { objectDetails, err := s.command.SetPassword(ctx, authz.GetCtxData(ctx).OrgID, req.UserId, req.Password, true) if err != nil { diff --git a/internal/api/grpc/policy/label_policy.go b/internal/api/grpc/policy/label_policy.go index 4018b06671..9f795717fc 100644 --- a/internal/api/grpc/policy/label_policy.go +++ b/internal/api/grpc/policy/label_policy.go @@ -10,7 +10,20 @@ func ModelLabelPolicyToPb(policy *model.LabelPolicyView) *policy_pb.LabelPolicy return &policy_pb.LabelPolicy{ IsDefault: policy.Default, PrimaryColor: policy.PrimaryColor, - SecondaryColor: policy.SecondaryColor, + BackgroundColor: policy.BackgroundColor, + FontColor: policy.FontColor, + WarnColor: policy.WarnColor, + PrimaryColorDark: policy.PrimaryColorDark, + BackgroundColorDark: policy.BackgroundColorDark, + WarnColorDark: policy.WarnColorDark, + FontColorDark: policy.FontColorDark, + FontUrl: policy.FontURL, + LogoUrl: policy.LogoURL, + LogoUrlDark: policy.LogoDarkURL, + IconUrl: policy.IconURL, + IconUrlDark: policy.IconDarkURL, + + DisableWatermark: policy.DisableWatermark, HideLoginNameSuffix: policy.HideLoginNameSuffix, Details: object.ToViewDetailsPb( policy.Sequence, diff --git a/internal/api/http/header.go b/internal/api/http/header.go index 0263afb94e..858312789a 100644 --- a/internal/api/http/header.go +++ b/internal/api/http/header.go @@ -80,6 +80,14 @@ func RemoteIPStringFromRequest(r *http.Request) string { return r.RemoteAddr } +func GetAuthorization(r *http.Request) string { + return r.Header.Get(Authorization) +} + +func GetOrgID(r *http.Request) string { + return r.Header.Get(ZitadelOrgID) +} + func GetForwardedFor(headers http.Header) (string, bool) { forwarded, ok := headers[ForwardedFor] if ok { diff --git a/internal/api/http/middleware/auth_interceptor.go b/internal/api/http/middleware/auth_interceptor.go new file mode 100644 index 0000000000..fed104066d --- /dev/null +++ b/internal/api/http/middleware/auth_interceptor.go @@ -0,0 +1,71 @@ +package middleware + +import ( + "context" + "errors" + "net/http" + + "github.com/caos/zitadel/internal/api/authz" + http_util "github.com/caos/zitadel/internal/api/http" + "github.com/caos/zitadel/internal/telemetry/tracing" +) + +type AuthInterceptor struct { + verifier *authz.TokenVerifier + authConfig authz.Config +} + +func AuthorizationInterceptor(verifier *authz.TokenVerifier, authConfig authz.Config) *AuthInterceptor { + return &AuthInterceptor{ + verifier: verifier, + authConfig: authConfig, + } +} + +func (a *AuthInterceptor) Handler(next http.Handler) http.Handler { + return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) { + ctx, err := authorize(r, a.verifier, a.authConfig) + if err != nil { + http.Error(w, err.Error(), http.StatusUnauthorized) + return + } + r = r.WithContext(ctx) + next.ServeHTTP(w, r) + }) +} + +func (a *AuthInterceptor) HandlerFunc(next http.HandlerFunc) http.HandlerFunc { + return func(w http.ResponseWriter, r *http.Request) { + ctx, err := authorize(r, a.verifier, a.authConfig) + if err != nil { + http.Error(w, err.Error(), http.StatusUnauthorized) + return + } + r = r.WithContext(ctx) + next.ServeHTTP(w, r) + } +} + +type httpReq struct{} + +func authorize(r *http.Request, verifier *authz.TokenVerifier, authConfig authz.Config) (_ context.Context, err error) { + ctx := r.Context() + authOpt, needsToken := verifier.CheckAuthMethod(r.Method + ":" + r.RequestURI) + if !needsToken { + return ctx, nil + } + authCtx, span := tracing.NewServerInterceptorSpan(ctx) + defer func() { span.EndWithError(err) }() + + authToken := http_util.GetAuthorization(r) + if authToken == "" { + return nil, errors.New("auth header missing") + } + + ctxSetter, err := authz.CheckUserAuthorization(authCtx, &httpReq{}, authToken, http_util.GetOrgID(r), verifier, authConfig, authOpt, r.RequestURI) //TODO: permission + if err != nil { + return nil, err + } + span.End() + return ctxSetter(ctx), nil +} diff --git a/internal/auth/repository/eventsourcing/eventstore/auth_request.go b/internal/auth/repository/eventsourcing/eventstore/auth_request.go index da3c3221a9..c64a9a6aa7 100644 --- a/internal/auth/repository/eventsourcing/eventstore/auth_request.go +++ b/internal/auth/repository/eventsourcing/eventstore/auth_request.go @@ -248,7 +248,7 @@ func (repo *AuthRequestRepo) SelectUser(ctx context.Context, id, userID, userAge if request.RequestedOrgID == "" { username = user.PreferredLoginName } - request.SetUserInfo(user.ID, username, user.PreferredLoginName, user.DisplayName, user.ResourceOwner) + request.SetUserInfo(user.ID, username, user.PreferredLoginName, user.DisplayName, user.AvatarKey, user.ResourceOwner) return repo.AuthRequests.UpdateAuthRequest(ctx, request) } @@ -466,7 +466,7 @@ func (repo *AuthRequestRepo) checkLoginName(ctx context.Context, request *domain return err } - request.SetUserInfo(user.ID, loginName, user.PreferredLoginName, "", user.ResourceOwner) + request.SetUserInfo(user.ID, loginName, user.PreferredLoginName, "", "", user.ResourceOwner) return nil } @@ -509,7 +509,7 @@ func (repo *AuthRequestRepo) checkExternalUserLogin(request *domain.AuthRequest, if err != nil { return err } - request.SetUserInfo(externalIDP.UserID, "", "", "", externalIDP.ResourceOwner) + request.SetUserInfo(externalIDP.UserID, "", "", "", "", externalIDP.ResourceOwner) return nil } @@ -614,6 +614,7 @@ func (repo *AuthRequestRepo) usersForUserSelection(request *domain.AuthRequest) DisplayName: session.DisplayName, UserName: session.UserName, LoginName: session.LoginName, + AvatarKey: session.AvatarKey, UserSessionState: auth_req_model.UserSessionStateToDomain(session.State), SelectionPossible: request.RequestedOrgID == "" || request.RequestedOrgID == session.ResourceOwner, } @@ -710,9 +711,9 @@ func (repo *AuthRequestRepo) getLoginPolicy(ctx context.Context, orgID string) ( } func (repo *AuthRequestRepo) getLabelPolicy(ctx context.Context, orgID string) (*domain.LabelPolicy, error) { - policy, err := repo.View.LabelPolicyByAggregateID(orgID) + policy, err := repo.View.LabelPolicyByAggregateIDAndState(orgID, int32(domain.LabelPolicyStateActive)) if errors.IsNotFound(err) { - policy, err = repo.View.LabelPolicyByAggregateID(repo.IAMID) + policy, err = repo.View.LabelPolicyByAggregateIDAndState(repo.IAMID, int32(domain.LabelPolicyStateActive)) if err != nil { return nil, err } diff --git a/internal/auth/repository/eventsourcing/eventstore/org.go b/internal/auth/repository/eventsourcing/eventstore/org.go index a36c417b69..f0c85eb9fc 100644 --- a/internal/auth/repository/eventsourcing/eventstore/org.go +++ b/internal/auth/repository/eventsourcing/eventstore/org.go @@ -7,6 +7,7 @@ import ( "github.com/caos/zitadel/internal/api/authz" "github.com/caos/zitadel/internal/config/systemdefaults" + "github.com/caos/zitadel/internal/domain" "github.com/caos/zitadel/internal/errors" iam_model "github.com/caos/zitadel/internal/iam/model" iam_view_model "github.com/caos/zitadel/internal/iam/repository/view/model" @@ -103,3 +104,14 @@ func (repo *OrgRepository) GetMyPasswordComplexityPolicy(ctx context.Context) (* } return iam_view_model.PasswordComplexityViewToModel(policy), err } + +func (repo *OrgRepository) GetLabelPolicy(ctx context.Context, orgID string) (*iam_model.LabelPolicyView, error) { + orgPolicy, err := repo.View.LabelPolicyByAggregateIDAndState(orgID, int32(domain.LabelPolicyStateActive)) + if errors.IsNotFound(err) { + orgPolicy, err = repo.View.LabelPolicyByAggregateIDAndState(repo.SystemDefaults.IamID, int32(domain.LabelPolicyStateActive)) + } + if err != nil { + return nil, err + } + return iam_view_model.LabelPolicyViewToModel(orgPolicy), nil +} diff --git a/internal/auth/repository/eventsourcing/handler/label_policy.go b/internal/auth/repository/eventsourcing/handler/label_policy.go index 0a9a6b46a4..a80e6e2417 100644 --- a/internal/auth/repository/eventsourcing/handler/label_policy.go +++ b/internal/auth/repository/eventsourcing/handler/label_policy.go @@ -2,6 +2,8 @@ package handler import ( "github.com/caos/logging" + + "github.com/caos/zitadel/internal/domain" v1 "github.com/caos/zitadel/internal/eventstore/v1" "github.com/caos/zitadel/internal/eventstore/v1/models" es_models "github.com/caos/zitadel/internal/eventstore/v1/models" @@ -79,8 +81,19 @@ func (m *LabelPolicy) processLabelPolicy(event *models.Event) (err error) { switch event.Type { case iam_es_model.LabelPolicyAdded, model.LabelPolicyAdded: err = policy.AppendEvent(event) - case iam_es_model.LabelPolicyChanged, model.LabelPolicyChanged: - policy, err = m.view.LabelPolicyByAggregateID(event.AggregateID) + case iam_es_model.LabelPolicyChanged, model.LabelPolicyChanged, + iam_es_model.LabelPolicyActivated, model.LabelPolicyActivated, + iam_es_model.LabelPolicyLogoAdded, model.LabelPolicyLogoAdded, + iam_es_model.LabelPolicyLogoRemoved, model.LabelPolicyLogoRemoved, + iam_es_model.LabelPolicyIconAdded, model.LabelPolicyIconAdded, + iam_es_model.LabelPolicyIconRemoved, model.LabelPolicyIconRemoved, + iam_es_model.LabelPolicyLogoDarkAdded, model.LabelPolicyLogoDarkAdded, + iam_es_model.LabelPolicyLogoDarkRemoved, model.LabelPolicyLogoDarkRemoved, + iam_es_model.LabelPolicyIconDarkAdded, model.LabelPolicyIconDarkAdded, + iam_es_model.LabelPolicyIconDarkRemoved, model.LabelPolicyIconDarkRemoved, + iam_es_model.LabelPolicyFontAdded, model.LabelPolicyFontAdded, + iam_es_model.LabelPolicyFontRemoved, model.LabelPolicyFontRemoved: + policy, err = m.view.LabelPolicyByAggregateIDAndState(event.AggregateID, int32(domain.LabelPolicyStatePreview)) if err != nil { return err } diff --git a/internal/auth/repository/eventsourcing/handler/user.go b/internal/auth/repository/eventsourcing/handler/user.go index 12c9582eab..212c660783 100644 --- a/internal/auth/repository/eventsourcing/handler/user.go +++ b/internal/auth/repository/eventsourcing/handler/user.go @@ -122,6 +122,8 @@ func (u *User) ProcessUser(event *es_models.Event) (err error) { es_model.HumanProfileChanged, es_model.HumanEmailChanged, es_model.HumanEmailVerified, + es_model.HumanAvatarAdded, + es_model.HumanAvatarRemoved, es_model.HumanPhoneChanged, es_model.HumanPhoneVerified, es_model.HumanPhoneRemoved, diff --git a/internal/auth/repository/eventsourcing/handler/user_session.go b/internal/auth/repository/eventsourcing/handler/user_session.go index c98bd1b26d..63f83133b6 100644 --- a/internal/auth/repository/eventsourcing/handler/user_session.go +++ b/internal/auth/repository/eventsourcing/handler/user_session.go @@ -111,6 +111,8 @@ func (u *UserSession) Reduce(event *models.Event) (err error) { es_model.HumanPasswordChanged, es_model.HumanMFAOTPRemoved, es_model.HumanProfileChanged, + es_model.HumanAvatarAdded, + es_model.HumanAvatarRemoved, es_model.DomainClaimed, es_model.UserUserNameChanged, es_model.HumanExternalIDPRemoved, @@ -167,5 +169,6 @@ func (u *UserSession) fillUserInfo(session *view_model.UserSessionView, id strin session.UserName = user.UserName session.LoginName = user.PreferredLoginName session.DisplayName = user.DisplayName + session.AvatarKey = user.AvatarKey return nil } diff --git a/internal/auth/repository/eventsourcing/view/label_policies.go b/internal/auth/repository/eventsourcing/view/label_policies.go index e86c64d180..40839c303a 100644 --- a/internal/auth/repository/eventsourcing/view/label_policies.go +++ b/internal/auth/repository/eventsourcing/view/label_policies.go @@ -12,8 +12,8 @@ const ( labelPolicyTable = "auth.label_policies" ) -func (v *View) LabelPolicyByAggregateID(aggregateID string) (*model.LabelPolicyView, error) { - return view.GetLabelPolicyByAggregateID(v.Db, labelPolicyTable, aggregateID) +func (v *View) LabelPolicyByAggregateIDAndState(aggregateID string, state int32) (*model.LabelPolicyView, error) { + return view.GetLabelPolicyByAggregateIDAndState(v.Db, labelPolicyTable, aggregateID, state) } func (v *View) PutLabelPolicy(policy *model.LabelPolicyView, event *models.Event) error { diff --git a/internal/auth/repository/org.go b/internal/auth/repository/org.go index 878d4756a6..c3e2d21393 100644 --- a/internal/auth/repository/org.go +++ b/internal/auth/repository/org.go @@ -12,4 +12,5 @@ type OrgRepository interface { GetDefaultOrgIAMPolicy(ctx context.Context) (*iam_model.OrgIAMPolicyView, error) GetIDPConfigByID(ctx context.Context, idpConfigID string) (*iam_model.IDPConfigView, error) GetMyPasswordComplexityPolicy(ctx context.Context) (*iam_model.PasswordComplexityPolicyView, error) + GetLabelPolicy(ctx context.Context, orgID string) (*iam_model.LabelPolicyView, error) } diff --git a/internal/authz/repository/eventsourcing/eventstore/token_verifier.go b/internal/authz/repository/eventsourcing/eventstore/token_verifier.go index a937553a3f..c0ebde5d95 100644 --- a/internal/authz/repository/eventsourcing/eventstore/token_verifier.go +++ b/internal/authz/repository/eventsourcing/eventstore/token_verifier.go @@ -7,6 +7,7 @@ import ( "time" "github.com/caos/logging" + "github.com/caos/zitadel/internal/authz/repository/eventsourcing/view" "github.com/caos/zitadel/internal/crypto" "github.com/caos/zitadel/internal/domain" @@ -130,13 +131,21 @@ func checkFeatures(features *features_view_model.FeaturesView, requiredFeatures if err := checkLoginPolicyFeatures(features, requiredFeature); err != nil { return err } + continue } - if requiredFeature == domain.FeaturePasswordComplexityPolicy && !features.PasswordComplexityPolicy { - return MissingFeatureErr(requiredFeature) + if requiredFeature == domain.FeaturePasswordComplexityPolicy { + if !features.PasswordComplexityPolicy { + return MissingFeatureErr(requiredFeature) + } + continue } - if requiredFeature == domain.FeatureLabelPolicy && !features.PasswordComplexityPolicy { - return MissingFeatureErr(requiredFeature) + if strings.HasPrefix(requiredFeature, domain.FeatureLabelPolicy) { + if err := checkLabelPolicyFeatures(features, requiredFeature); err != nil { + return err + } + continue } + return MissingFeatureErr(requiredFeature) } return nil } @@ -175,6 +184,20 @@ func checkLoginPolicyFeatures(features *features_view_model.FeaturesView, requir return nil } +func checkLabelPolicyFeatures(features *features_view_model.FeaturesView, requiredFeature string) error { + switch requiredFeature { + case domain.FeatureLabelPolicyPrivateLabel: + if !features.LabelPolicyPrivateLabel { + return MissingFeatureErr(requiredFeature) + } + case domain.FeatureLabelPolicyWatermark: + if !features.LabelPolicyWatermark { + return MissingFeatureErr(requiredFeature) + } + } + return nil +} + func MissingFeatureErr(feature string) error { return caos_errs.ThrowPermissionDeniedf(nil, "AUTH-Dvgsf", "missing feature %v", feature) } diff --git a/internal/command/command.go b/internal/command/command.go index 9261fae5f9..3e0ef4011a 100644 --- a/internal/command/command.go +++ b/internal/command/command.go @@ -20,12 +20,14 @@ import ( proj_repo "github.com/caos/zitadel/internal/repository/project" usr_repo "github.com/caos/zitadel/internal/repository/user" usr_grant_repo "github.com/caos/zitadel/internal/repository/usergrant" + "github.com/caos/zitadel/internal/static" "github.com/caos/zitadel/internal/telemetry/tracing" webauthn_helper "github.com/caos/zitadel/internal/webauthn" ) type Commands struct { eventstore *eventstore.Eventstore + static static.Storage idGenerator id.Generator iamDomain string zitadelRoles []authz.RoleMapping @@ -58,9 +60,10 @@ type Config struct { Eventstore types.SQLUser } -func StartCommands(eventstore *eventstore.Eventstore, defaults sd.SystemDefaults, authZConfig authz.Config, authZRepo *authz_repo.EsRepository) (repo *Commands, err error) { +func StartCommands(eventstore *eventstore.Eventstore, defaults sd.SystemDefaults, authZConfig authz.Config, staticStore static.Storage, authZRepo *authz_repo.EsRepository) (repo *Commands, err error) { repo = &Commands{ eventstore: eventstore, + static: staticStore, idGenerator: id.SonyFlakeGenerator, iamDomain: defaults.Domain, zitadelRoles: authZConfig.RolePermissionMappings, diff --git a/internal/command/existing_label_policies_model.go b/internal/command/existing_label_policies_model.go new file mode 100644 index 0000000000..c490a0fedf --- /dev/null +++ b/internal/command/existing_label_policies_model.go @@ -0,0 +1,54 @@ +package command + +import ( + "context" + + "github.com/caos/zitadel/internal/eventstore" + "github.com/caos/zitadel/internal/repository/iam" + "github.com/caos/zitadel/internal/repository/org" +) + +type ExistingLabelPoliciesReadModel struct { + eventstore.WriteModel + + aggregateIDs []string +} + +func NewExistingLabelPoliciesReadModel(ctx context.Context) *ExistingLabelPoliciesReadModel { + return &ExistingLabelPoliciesReadModel{} +} + +func (rm *ExistingLabelPoliciesReadModel) AppendEvents(events ...eventstore.EventReader) { + rm.WriteModel.AppendEvents(events...) +} + +func (rm *ExistingLabelPoliciesReadModel) Reduce() error { + for _, event := range rm.Events { + switch e := event.(type) { + case *iam.LabelPolicyAddedEvent, + *org.LabelPolicyAddedEvent: + rm.aggregateIDs = append(rm.aggregateIDs, e.Aggregate().ID) + case *org.LabelPolicyRemovedEvent: + for i := len(rm.aggregateIDs) - 1; i >= 0; i-- { + if rm.aggregateIDs[i] == e.Aggregate().ID { + copy(rm.aggregateIDs[i:], rm.aggregateIDs[i+1:]) + rm.aggregateIDs[len(rm.aggregateIDs)-1] = "" + rm.aggregateIDs = rm.aggregateIDs[:len(rm.aggregateIDs)-1] + } + } + } + } + return nil +} + +func (rm *ExistingLabelPoliciesReadModel) Query() *eventstore.SearchQueryBuilder { + return eventstore.NewSearchQueryBuilder( + eventstore.ColumnsEvent, + iam.AggregateType, + org.AggregateType). + EventTypes( + iam.LabelPolicyAddedEventType, + org.LabelPolicyAddedEventType, + org.LabelPolicyRemovedEventType, + ) +} diff --git a/internal/command/features_model.go b/internal/command/features_model.go index 679c64db82..ba4276ad31 100644 --- a/internal/command/features_model.go +++ b/internal/command/features_model.go @@ -23,7 +23,8 @@ type FeaturesWriteModel struct { LoginPolicyUsernameLogin bool LoginPolicyPasswordReset bool PasswordComplexityPolicy bool - LabelPolicy bool + LabelPolicyPrivateLabel bool + LabelPolicyWatermark bool CustomDomain bool } @@ -69,7 +70,13 @@ func (wm *FeaturesWriteModel) Reduce() error { wm.PasswordComplexityPolicy = *e.PasswordComplexityPolicy } if e.LabelPolicy != nil { - wm.LabelPolicy = *e.LabelPolicy + wm.LabelPolicyPrivateLabel = *e.LabelPolicy + } + if e.LabelPolicyPrivateLabel != nil { + wm.LabelPolicyPrivateLabel = *e.LabelPolicyPrivateLabel + } + if e.LabelPolicyWatermark != nil { + wm.LabelPolicyWatermark = *e.LabelPolicyWatermark } if e.CustomDomain != nil { wm.CustomDomain = *e.CustomDomain diff --git a/internal/command/iam_converter.go b/internal/command/iam_converter.go index 9fb5f82d1a..e290260772 100644 --- a/internal/command/iam_converter.go +++ b/internal/command/iam_converter.go @@ -49,8 +49,16 @@ func writeModelToLabelPolicy(wm *LabelPolicyWriteModel) *domain.LabelPolicy { return &domain.LabelPolicy{ ObjectRoot: writeModelToObjectRoot(wm.WriteModel), PrimaryColor: wm.PrimaryColor, - SecondaryColor: wm.SecondaryColor, + BackgroundColor: wm.BackgroundColor, + WarnColor: wm.WarnColor, + FontColor: wm.FontColor, + PrimaryColorDark: wm.PrimaryColorDark, + BackgroundColorDark: wm.BackgroundColorDark, + WarnColorDark: wm.WarnColorDark, + FontColorDark: wm.FontColorDark, HideLoginNameSuffix: wm.HideLoginNameSuffix, + ErrorMsgPopup: wm.ErrorMsgPopup, + DisableWatermark: wm.DisableWatermark, } } @@ -176,6 +184,8 @@ func writeModelToFeatures(wm *FeaturesWriteModel) *domain.Features { LoginPolicyRegistration: wm.LoginPolicyRegistration, LoginPolicyUsernameLogin: wm.LoginPolicyUsernameLogin, PasswordComplexityPolicy: wm.PasswordComplexityPolicy, - LabelPolicy: wm.LabelPolicy, + LabelPolicyPrivateLabel: wm.LabelPolicyPrivateLabel, + LabelPolicyWatermark: wm.LabelPolicyWatermark, + CustomDomain: wm.CustomDomain, } } diff --git a/internal/command/iam_features.go b/internal/command/iam_features.go index 298522dc48..a63ce39883 100644 --- a/internal/command/iam_features.go +++ b/internal/command/iam_features.go @@ -46,7 +46,8 @@ func (c *Commands) setDefaultFeatures(ctx context.Context, existingFeatures *IAM features.LoginPolicyRegistration, features.LoginPolicyUsernameLogin, features.PasswordComplexityPolicy, - features.LabelPolicy, + features.LabelPolicyPrivateLabel, + features.LabelPolicyWatermark, features.CustomDomain, ) if !hasChanged { @@ -61,5 +62,7 @@ func (c *Commands) getDefaultFeatures(ctx context.Context) (*domain.Features, er if err != nil { return nil, err } - return writeModelToFeatures(&existingFeatures.FeaturesWriteModel), nil + features := writeModelToFeatures(&existingFeatures.FeaturesWriteModel) + features.IsDefault = true + return features, nil } diff --git a/internal/command/iam_features_model.go b/internal/command/iam_features_model.go index 99fecba611..8d47bab357 100644 --- a/internal/command/iam_features_model.go +++ b/internal/command/iam_features_model.go @@ -62,7 +62,8 @@ func (wm *IAMFeaturesWriteModel) NewSetEvent( loginPolicyRegistration, loginPolicyUsernameLogin, passwordComplexityPolicy, - labelPolicy, + labelPolicyPrivateLabel, + labelPolicyWatermark, customDomain bool, ) (*iam.FeaturesSetEvent, bool) { @@ -101,8 +102,11 @@ func (wm *IAMFeaturesWriteModel) NewSetEvent( if wm.PasswordComplexityPolicy != passwordComplexityPolicy { changes = append(changes, features.ChangePasswordComplexityPolicy(passwordComplexityPolicy)) } - if wm.LabelPolicy != labelPolicy { - changes = append(changes, features.ChangeLabelPolicy(labelPolicy)) + if wm.LabelPolicyPrivateLabel != labelPolicyPrivateLabel { + changes = append(changes, features.ChangeLabelPolicyPrivateLabel(labelPolicyPrivateLabel)) + } + if wm.LabelPolicyWatermark != labelPolicyWatermark { + changes = append(changes, features.ChangeLabelPolicyWatermark(labelPolicyWatermark)) } if wm.CustomDomain != customDomain { changes = append(changes, features.ChangeCustomDomain(customDomain)) diff --git a/internal/command/iam_policy_label.go b/internal/command/iam_policy_label.go index 160413378a..6056e39c52 100644 --- a/internal/command/iam_policy_label.go +++ b/internal/command/iam_policy_label.go @@ -29,8 +29,8 @@ func (c *Commands) AddDefaultLabelPolicy(ctx context.Context, policy *domain.Lab } func (c *Commands) addDefaultLabelPolicy(ctx context.Context, iamAgg *eventstore.Aggregate, addedPolicy *IAMLabelPolicyWriteModel, policy *domain.LabelPolicy) (eventstore.EventPusher, error) { - if !policy.IsValid() { - return nil, caos_errs.ThrowInvalidArgument(nil, "IAM-3m9fo", "Errors.IAM.LabelPolicy.Invalid") + if err := policy.IsValid(); err != nil { + return nil, err } err := c.eventstore.FilterToQueryReducer(ctx, addedPolicy) if err != nil { @@ -40,13 +40,26 @@ func (c *Commands) addDefaultLabelPolicy(ctx context.Context, iamAgg *eventstore return nil, caos_errs.ThrowAlreadyExists(nil, "IAM-2B0ps", "Errors.IAM.LabelPolicy.AlreadyExists") } - return iam_repo.NewLabelPolicyAddedEvent(ctx, iamAgg, policy.PrimaryColor, policy.SecondaryColor, policy.HideLoginNameSuffix), nil + return iam_repo.NewLabelPolicyAddedEvent( + ctx, + iamAgg, + policy.PrimaryColor, + policy.BackgroundColor, + policy.WarnColor, + policy.FontColor, + policy.PrimaryColorDark, + policy.BackgroundColorDark, + policy.WarnColorDark, + policy.FontColorDark, + policy.HideLoginNameSuffix, + policy.ErrorMsgPopup, + policy.DisableWatermark), nil } func (c *Commands) ChangeDefaultLabelPolicy(ctx context.Context, policy *domain.LabelPolicy) (*domain.LabelPolicy, error) { - if !policy.IsValid() { - return nil, caos_errs.ThrowInvalidArgument(nil, "IAM-33m8f", "Errors.IAM.LabelPolicy.Invalid") + if err := policy.IsValid(); err != nil { + return nil, err } existingPolicy, err := c.defaultLabelPolicyWriteModelByID(ctx) if err != nil { @@ -57,7 +70,20 @@ func (c *Commands) ChangeDefaultLabelPolicy(ctx context.Context, policy *domain. return nil, caos_errs.ThrowNotFound(nil, "IAM-0K9dq", "Errors.IAM.LabelPolicy.NotFound") } iamAgg := IAMAggregateFromWriteModel(&existingPolicy.LabelPolicyWriteModel.WriteModel) - changedEvent, hasChanged := existingPolicy.NewChangedEvent(ctx, iamAgg, policy.PrimaryColor, policy.SecondaryColor, policy.HideLoginNameSuffix) + changedEvent, hasChanged := existingPolicy.NewChangedEvent( + ctx, + iamAgg, + policy.PrimaryColor, + policy.BackgroundColor, + policy.WarnColor, + policy.FontColor, + policy.PrimaryColorDark, + policy.BackgroundColorDark, + policy.WarnColorDark, + policy.FontColorDark, + policy.HideLoginNameSuffix, + policy.ErrorMsgPopup, + policy.DisableWatermark) if !hasChanged { return nil, caos_errs.ThrowPreconditionFailed(nil, "IAM-4M9vs", "Errors.IAM.LabelPolicy.NotChanged") } @@ -73,6 +99,275 @@ func (c *Commands) ChangeDefaultLabelPolicy(ctx context.Context, policy *domain. return writeModelToLabelPolicy(&existingPolicy.LabelPolicyWriteModel), nil } +func (c *Commands) ActivateDefaultLabelPolicy(ctx context.Context) (*domain.ObjectDetails, error) { + existingPolicy, err := c.defaultLabelPolicyWriteModelByID(ctx) + if err != nil { + return nil, err + } + + if existingPolicy.State == domain.PolicyStateUnspecified || existingPolicy.State == domain.PolicyStateRemoved { + return nil, caos_errs.ThrowNotFound(nil, "IAM-6M23e", "Errors.IAM.LabelPolicy.NotFound") + } + + iamAgg := IAMAggregateFromWriteModel(&existingPolicy.LabelPolicyWriteModel.WriteModel) + pushedEvents, err := c.eventstore.PushEvents(ctx, iam_repo.NewLabelPolicyActivatedEvent(ctx, iamAgg)) + if err != nil { + return nil, err + } + err = AppendAndReduce(existingPolicy, pushedEvents...) + if err != nil { + return nil, err + } + + return writeModelToObjectDetails(&existingPolicy.LabelPolicyWriteModel.WriteModel), nil +} + +func (c *Commands) AddLogoDefaultLabelPolicy(ctx context.Context, storageKey string) (*domain.ObjectDetails, error) { + if storageKey == "" { + return nil, caos_errs.ThrowInvalidArgument(nil, "IAM-3m20c", "Errors.Assets.EmptyKey") + } + existingPolicy, err := c.defaultLabelPolicyWriteModelByID(ctx) + if err != nil { + return nil, err + } + + if existingPolicy.State == domain.PolicyStateUnspecified || existingPolicy.State == domain.PolicyStateRemoved { + return nil, caos_errs.ThrowNotFound(nil, "IAM-Qw0pd", "Errors.IAM.LabelPolicy.NotFound") + } + iamAgg := IAMAggregateFromWriteModel(&existingPolicy.LabelPolicyWriteModel.WriteModel) + pushedEvents, err := c.eventstore.PushEvents(ctx, iam_repo.NewLabelPolicyLogoAddedEvent(ctx, iamAgg, storageKey)) + if err != nil { + return nil, err + } + err = AppendAndReduce(existingPolicy, pushedEvents...) + if err != nil { + return nil, err + } + return writeModelToObjectDetails(&existingPolicy.LabelPolicyWriteModel.WriteModel), nil +} + +func (c *Commands) RemoveLogoDefaultLabelPolicy(ctx context.Context) (*domain.ObjectDetails, error) { + existingPolicy, err := c.defaultLabelPolicyWriteModelByID(ctx) + if err != nil { + return nil, err + } + + if existingPolicy.State == domain.PolicyStateUnspecified || existingPolicy.State == domain.PolicyStateRemoved { + return nil, caos_errs.ThrowNotFound(nil, "IAM-Xc8Kf", "Errors.IAM.LabelPolicy.NotFound") + } + + err = c.RemoveAsset(ctx, domain.IAMID, existingPolicy.LogoKey) + if err != nil { + return nil, err + } + iamAgg := IAMAggregateFromWriteModel(&existingPolicy.LabelPolicyWriteModel.WriteModel) + pushedEvents, err := c.eventstore.PushEvents(ctx, iam_repo.NewLabelPolicyLogoRemovedEvent(ctx, iamAgg, existingPolicy.LogoKey)) + if err != nil { + return nil, err + } + err = AppendAndReduce(existingPolicy, pushedEvents...) + if err != nil { + return nil, err + } + return writeModelToObjectDetails(&existingPolicy.LabelPolicyWriteModel.WriteModel), nil +} + +func (c *Commands) AddIconDefaultLabelPolicy(ctx context.Context, storageKey string) (*domain.ObjectDetails, error) { + if storageKey == "" { + return nil, caos_errs.ThrowInvalidArgument(nil, "IAM-yxE4f", "Errors.Assets.EmptyKey") + } + existingPolicy, err := c.defaultLabelPolicyWriteModelByID(ctx) + if err != nil { + return nil, err + } + + if existingPolicy.State == domain.PolicyStateUnspecified || existingPolicy.State == domain.PolicyStateRemoved { + return nil, caos_errs.ThrowNotFound(nil, "IAM-1yMx0", "Errors.IAM.LabelPolicy.NotFound") + } + iamAgg := IAMAggregateFromWriteModel(&existingPolicy.LabelPolicyWriteModel.WriteModel) + pushedEvents, err := c.eventstore.PushEvents(ctx, iam_repo.NewLabelPolicyIconAddedEvent(ctx, iamAgg, storageKey)) + if err != nil { + return nil, err + } + err = AppendAndReduce(existingPolicy, pushedEvents...) + if err != nil { + return nil, err + } + return writeModelToObjectDetails(&existingPolicy.LabelPolicyWriteModel.WriteModel), nil +} + +func (c *Commands) RemoveIconDefaultLabelPolicy(ctx context.Context) (*domain.ObjectDetails, error) { + existingPolicy, err := c.defaultLabelPolicyWriteModelByID(ctx) + if err != nil { + return nil, err + } + + if existingPolicy.State == domain.PolicyStateUnspecified || existingPolicy.State == domain.PolicyStateRemoved { + return nil, caos_errs.ThrowNotFound(nil, "IAM-4M0qw", "Errors.IAM.LabelPolicy.NotFound") + } + err = c.RemoveAsset(ctx, domain.IAMID, existingPolicy.IconKey) + if err != nil { + return nil, err + } + iamAgg := IAMAggregateFromWriteModel(&existingPolicy.LabelPolicyWriteModel.WriteModel) + pushedEvents, err := c.eventstore.PushEvents(ctx, iam_repo.NewLabelPolicyIconRemovedEvent(ctx, iamAgg, existingPolicy.IconKey)) + if err != nil { + return nil, err + } + err = AppendAndReduce(existingPolicy, pushedEvents...) + if err != nil { + return nil, err + } + return writeModelToObjectDetails(&existingPolicy.LabelPolicyWriteModel.WriteModel), nil +} + +func (c *Commands) AddLogoDarkDefaultLabelPolicy(ctx context.Context, storageKey string) (*domain.ObjectDetails, error) { + if storageKey == "" { + return nil, caos_errs.ThrowInvalidArgument(nil, "IAM-4fMs9", "Errors.Assets.EmptyKey") + } + existingPolicy, err := c.defaultLabelPolicyWriteModelByID(ctx) + if err != nil { + return nil, err + } + + if existingPolicy.State == domain.PolicyStateUnspecified || existingPolicy.State == domain.PolicyStateRemoved { + return nil, caos_errs.ThrowNotFound(nil, "IAM-ZR9fs", "Errors.IAM.LabelPolicy.NotFound") + } + iamAgg := IAMAggregateFromWriteModel(&existingPolicy.LabelPolicyWriteModel.WriteModel) + pushedEvents, err := c.eventstore.PushEvents(ctx, iam_repo.NewLabelPolicyLogoDarkAddedEvent(ctx, iamAgg, storageKey)) + if err != nil { + return nil, err + } + err = AppendAndReduce(existingPolicy, pushedEvents...) + if err != nil { + return nil, err + } + return writeModelToObjectDetails(&existingPolicy.LabelPolicyWriteModel.WriteModel), nil +} + +func (c *Commands) RemoveLogoDarkDefaultLabelPolicy(ctx context.Context) (*domain.ObjectDetails, error) { + existingPolicy, err := c.defaultLabelPolicyWriteModelByID(ctx) + if err != nil { + return nil, err + } + + if existingPolicy.State == domain.PolicyStateUnspecified || existingPolicy.State == domain.PolicyStateRemoved { + return nil, caos_errs.ThrowNotFound(nil, "IAM-3FGds", "Errors.IAM.LabelPolicy.NotFound") + } + err = c.RemoveAsset(ctx, domain.IAMID, existingPolicy.LogoDarkKey) + if err != nil { + return nil, err + } + iamAgg := IAMAggregateFromWriteModel(&existingPolicy.LabelPolicyWriteModel.WriteModel) + pushedEvents, err := c.eventstore.PushEvents(ctx, iam_repo.NewLabelPolicyLogoDarkRemovedEvent(ctx, iamAgg, existingPolicy.LogoDarkKey)) + if err != nil { + return nil, err + } + err = AppendAndReduce(existingPolicy, pushedEvents...) + if err != nil { + return nil, err + } + return writeModelToObjectDetails(&existingPolicy.LabelPolicyWriteModel.WriteModel), nil +} + +func (c *Commands) AddIconDarkDefaultLabelPolicy(ctx context.Context, storageKey string) (*domain.ObjectDetails, error) { + if storageKey == "" { + return nil, caos_errs.ThrowInvalidArgument(nil, "IAM-1cxM3", "Errors.Assets.EmptyKey") + } + existingPolicy, err := c.defaultLabelPolicyWriteModelByID(ctx) + if err != nil { + return nil, err + } + + if existingPolicy.State == domain.PolicyStateUnspecified || existingPolicy.State == domain.PolicyStateRemoved { + return nil, caos_errs.ThrowNotFound(nil, "IAM-vMsf9", "Errors.IAM.LabelPolicy.NotFound") + } + iamAgg := IAMAggregateFromWriteModel(&existingPolicy.LabelPolicyWriteModel.WriteModel) + pushedEvents, err := c.eventstore.PushEvents(ctx, iam_repo.NewLabelPolicyIconDarkAddedEvent(ctx, iamAgg, storageKey)) + if err != nil { + return nil, err + } + err = AppendAndReduce(existingPolicy, pushedEvents...) + if err != nil { + return nil, err + } + return writeModelToObjectDetails(&existingPolicy.LabelPolicyWriteModel.WriteModel), nil +} + +func (c *Commands) RemoveIconDarkDefaultLabelPolicy(ctx context.Context) (*domain.ObjectDetails, error) { + existingPolicy, err := c.defaultLabelPolicyWriteModelByID(ctx) + if err != nil { + return nil, err + } + + if existingPolicy.State == domain.PolicyStateUnspecified || existingPolicy.State == domain.PolicyStateRemoved { + return nil, caos_errs.ThrowNotFound(nil, "IAM-2nc7F", "Errors.IAM.LabelPolicy.NotFound") + } + err = c.RemoveAsset(ctx, domain.IAMID, existingPolicy.IconDarkKey) + if err != nil { + return nil, err + } + iamAgg := IAMAggregateFromWriteModel(&existingPolicy.LabelPolicyWriteModel.WriteModel) + pushedEvents, err := c.eventstore.PushEvents(ctx, iam_repo.NewLabelPolicyIconDarkRemovedEvent(ctx, iamAgg, existingPolicy.IconDarkKey)) + if err != nil { + return nil, err + } + err = AppendAndReduce(existingPolicy, pushedEvents...) + if err != nil { + return nil, err + } + return writeModelToObjectDetails(&existingPolicy.LabelPolicyWriteModel.WriteModel), nil +} + +func (c *Commands) AddFontDefaultLabelPolicy(ctx context.Context, storageKey string) (*domain.ObjectDetails, error) { + if storageKey == "" { + return nil, caos_errs.ThrowInvalidArgument(nil, "IAM-1N8fs", "Errors.Assets.EmptyKey") + } + existingPolicy, err := c.defaultLabelPolicyWriteModelByID(ctx) + if err != nil { + return nil, err + } + + if existingPolicy.State == domain.PolicyStateUnspecified || existingPolicy.State == domain.PolicyStateRemoved { + return nil, caos_errs.ThrowNotFound(nil, "IAM-1N8fE", "Errors.IAM.LabelPolicy.NotFound") + } + iamAgg := IAMAggregateFromWriteModel(&existingPolicy.LabelPolicyWriteModel.WriteModel) + pushedEvents, err := c.eventstore.PushEvents(ctx, iam_repo.NewLabelPolicyFontAddedEvent(ctx, iamAgg, storageKey)) + if err != nil { + return nil, err + } + err = AppendAndReduce(existingPolicy, pushedEvents...) + if err != nil { + return nil, err + } + return writeModelToObjectDetails(&existingPolicy.LabelPolicyWriteModel.WriteModel), nil +} + +func (c *Commands) RemoveFontDefaultLabelPolicy(ctx context.Context) (*domain.ObjectDetails, error) { + existingPolicy, err := c.defaultLabelPolicyWriteModelByID(ctx) + if err != nil { + return nil, err + } + + if existingPolicy.State == domain.PolicyStateUnspecified || existingPolicy.State == domain.PolicyStateRemoved { + return nil, caos_errs.ThrowNotFound(nil, "IAM-Tk0gw", "Errors.IAM.LabelPolicy.NotFound") + } + err = c.RemoveAsset(ctx, domain.IAMID, existingPolicy.FontKey) + if err != nil { + return nil, err + } + iamAgg := IAMAggregateFromWriteModel(&existingPolicy.LabelPolicyWriteModel.WriteModel) + pushedEvents, err := c.eventstore.PushEvents(ctx, iam_repo.NewLabelPolicyFontRemovedEvent(ctx, iamAgg, existingPolicy.FontKey)) + if err != nil { + return nil, err + } + err = AppendAndReduce(existingPolicy, pushedEvents...) + if err != nil { + return nil, err + } + return writeModelToObjectDetails(&existingPolicy.LabelPolicyWriteModel.WriteModel), nil +} + func (c *Commands) defaultLabelPolicyWriteModelByID(ctx context.Context) (policy *IAMLabelPolicyWriteModel, err error) { ctx, span := tracing.NewSpan(ctx) defer func() { span.EndWithError(err) }() @@ -84,3 +379,13 @@ func (c *Commands) defaultLabelPolicyWriteModelByID(ctx context.Context) (policy } return writeModel, nil } + +func (c *Commands) getDefaultLabelPolicy(ctx context.Context) (*domain.LabelPolicy, error) { + policyWriteModel, err := c.defaultLabelPolicyWriteModelByID(ctx) + if err != nil { + return nil, err + } + policy := writeModelToLabelPolicy(&policyWriteModel.LabelPolicyWriteModel) + policy.Default = true + return policy, nil +} diff --git a/internal/command/iam_policy_label_model.go b/internal/command/iam_policy_label_model.go index ec71677052..133aca2178 100644 --- a/internal/command/iam_policy_label_model.go +++ b/internal/command/iam_policy_label_model.go @@ -2,9 +2,9 @@ package command import ( "context" - "github.com/caos/zitadel/internal/eventstore" "github.com/caos/zitadel/internal/domain" + "github.com/caos/zitadel/internal/eventstore" "github.com/caos/zitadel/internal/repository/iam" "github.com/caos/zitadel/internal/repository/policy" ) @@ -31,6 +31,28 @@ func (wm *IAMLabelPolicyWriteModel) AppendEvents(events ...eventstore.EventReade wm.LabelPolicyWriteModel.AppendEvents(&e.LabelPolicyAddedEvent) case *iam.LabelPolicyChangedEvent: wm.LabelPolicyWriteModel.AppendEvents(&e.LabelPolicyChangedEvent) + case *iam.LabelPolicyActivatedEvent: + wm.LabelPolicyWriteModel.AppendEvents(&e.LabelPolicyActivatedEvent) + case *iam.LabelPolicyLogoAddedEvent: + wm.LabelPolicyWriteModel.AppendEvents(&e.LabelPolicyLogoAddedEvent) + case *iam.LabelPolicyLogoRemovedEvent: + wm.LabelPolicyWriteModel.AppendEvents(&e.LabelPolicyLogoRemovedEvent) + case *iam.LabelPolicyLogoDarkAddedEvent: + wm.LabelPolicyWriteModel.AppendEvents(&e.LabelPolicyLogoDarkAddedEvent) + case *iam.LabelPolicyLogoDarkRemovedEvent: + wm.LabelPolicyWriteModel.AppendEvents(&e.LabelPolicyLogoDarkRemovedEvent) + case *iam.LabelPolicyIconAddedEvent: + wm.LabelPolicyWriteModel.AppendEvents(&e.LabelPolicyIconAddedEvent) + case *iam.LabelPolicyIconRemovedEvent: + wm.LabelPolicyWriteModel.AppendEvents(&e.LabelPolicyIconRemovedEvent) + case *iam.LabelPolicyIconDarkAddedEvent: + wm.LabelPolicyWriteModel.AppendEvents(&e.LabelPolicyIconDarkAddedEvent) + case *iam.LabelPolicyIconDarkRemovedEvent: + wm.LabelPolicyWriteModel.AppendEvents(&e.LabelPolicyIconDarkRemovedEvent) + case *iam.LabelPolicyFontAddedEvent: + wm.LabelPolicyWriteModel.AppendEvents(&e.LabelPolicyFontAddedEvent) + case *iam.LabelPolicyFontRemovedEvent: + wm.LabelPolicyWriteModel.AppendEvents(&e.LabelPolicyFontRemovedEvent) } } } @@ -45,26 +67,69 @@ func (wm *IAMLabelPolicyWriteModel) Query() *eventstore.SearchQueryBuilder { ResourceOwner(wm.ResourceOwner). EventTypes( iam.LabelPolicyAddedEventType, - iam.LabelPolicyChangedEventType) + iam.LabelPolicyChangedEventType, + iam.LabelPolicyLogoAddedEventType, + iam.LabelPolicyLogoRemovedEventType, + iam.LabelPolicyIconAddedEventType, + iam.LabelPolicyIconRemovedEventType, + iam.LabelPolicyLogoDarkAddedEventType, + iam.LabelPolicyLogoDarkRemovedEventType, + iam.LabelPolicyIconDarkAddedEventType, + iam.LabelPolicyIconDarkRemovedEventType, + iam.LabelPolicyFontAddedEventType, + iam.LabelPolicyFontRemovedEventType, + ) } func (wm *IAMLabelPolicyWriteModel) NewChangedEvent( ctx context.Context, aggregate *eventstore.Aggregate, primaryColor, - secondaryColor string, - hideLoginNameSuffix bool, + backgroundColor, + warnColor, + fontColor, + primaryColorDark, + backgroundColorDark, + warnColorDark, + fontColorDark string, + hideLoginNameSuffix, + errorMsgPopup, + disableWatermark bool, ) (*iam.LabelPolicyChangedEvent, bool) { changes := make([]policy.LabelPolicyChanges, 0) if wm.PrimaryColor != primaryColor { changes = append(changes, policy.ChangePrimaryColor(primaryColor)) } - if wm.SecondaryColor != secondaryColor { - changes = append(changes, policy.ChangeSecondaryColor(secondaryColor)) + if wm.BackgroundColor != backgroundColor { + changes = append(changes, policy.ChangeBackgroundColor(backgroundColor)) + } + if wm.WarnColor != warnColor { + changes = append(changes, policy.ChangeWarnColor(warnColor)) + } + if wm.FontColor != fontColor { + changes = append(changes, policy.ChangeFontColor(fontColor)) + } + if wm.PrimaryColorDark != primaryColorDark { + changes = append(changes, policy.ChangePrimaryColorDark(primaryColorDark)) + } + if wm.BackgroundColorDark != backgroundColorDark { + changes = append(changes, policy.ChangeBackgroundColorDark(backgroundColorDark)) + } + if wm.WarnColorDark != warnColorDark { + changes = append(changes, policy.ChangeWarnColorDark(warnColorDark)) + } + if wm.FontColorDark != fontColorDark { + changes = append(changes, policy.ChangeFontColorDark(fontColorDark)) } if wm.HideLoginNameSuffix != hideLoginNameSuffix { changes = append(changes, policy.ChangeHideLoginNameSuffix(hideLoginNameSuffix)) } + if wm.ErrorMsgPopup != errorMsgPopup { + changes = append(changes, policy.ChangeErrorMsgPopup(errorMsgPopup)) + } + if wm.DisableWatermark != disableWatermark { + changes = append(changes, policy.ChangeDisableWatermark(disableWatermark)) + } if len(changes) == 0 { return nil, false } diff --git a/internal/command/iam_policy_label_test.go b/internal/command/iam_policy_label_test.go index 758f00176e..cb5a5255bc 100644 --- a/internal/command/iam_policy_label_test.go +++ b/internal/command/iam_policy_label_test.go @@ -2,6 +2,11 @@ package command import ( "context" + "testing" + + "github.com/golang/mock/gomock" + "github.com/stretchr/testify/assert" + "github.com/caos/zitadel/internal/domain" caos_errs "github.com/caos/zitadel/internal/errors" "github.com/caos/zitadel/internal/eventstore" @@ -9,8 +14,8 @@ import ( "github.com/caos/zitadel/internal/eventstore/v1/models" "github.com/caos/zitadel/internal/repository/iam" "github.com/caos/zitadel/internal/repository/policy" - "github.com/stretchr/testify/assert" - "testing" + "github.com/caos/zitadel/internal/static" + "github.com/caos/zitadel/internal/static/mock" ) func TestCommandSide_AddDefaultLabelPolicy(t *testing.T) { @@ -31,24 +36,6 @@ func TestCommandSide_AddDefaultLabelPolicy(t *testing.T) { args args res res }{ - { - name: "labelpolicy invalid, invalid argument error", - fields: fields{ - eventstore: eventstoreExpect( - t, - ), - }, - args: args{ - ctx: context.Background(), - policy: &domain.LabelPolicy{ - PrimaryColor: "", - SecondaryColor: "secondary-color", - }, - }, - res: res{ - err: caos_errs.IsErrorInvalidArgument, - }, - }, { name: "labelpolicy already existing, already exists error", fields: fields{ @@ -58,8 +45,16 @@ func TestCommandSide_AddDefaultLabelPolicy(t *testing.T) { eventFromEventPusher( iam.NewLabelPolicyAddedEvent(context.Background(), &iam.NewAggregate().Aggregate, - "primary-color", - "secondary-color", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, true, ), ), @@ -69,9 +64,17 @@ func TestCommandSide_AddDefaultLabelPolicy(t *testing.T) { args: args{ ctx: context.Background(), policy: &domain.LabelPolicy{ - PrimaryColor: "primary-color", - SecondaryColor: "secondary-color", + PrimaryColor: "#ffffff", + BackgroundColor: "#ffffff", + WarnColor: "#ffffff", + FontColor: "#ffffff", + PrimaryColorDark: "#ffffff", + BackgroundColorDark: "#ffffff", + WarnColorDark: "#ffffff", + FontColorDark: "#ffffff", HideLoginNameSuffix: true, + ErrorMsgPopup: true, + DisableWatermark: true, }, }, res: res{ @@ -89,8 +92,16 @@ func TestCommandSide_AddDefaultLabelPolicy(t *testing.T) { eventFromEventPusher( iam.NewLabelPolicyAddedEvent(context.Background(), &iam.NewAggregate().Aggregate, - "primary-color", - "secondary-color", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, true, ), ), @@ -101,9 +112,17 @@ func TestCommandSide_AddDefaultLabelPolicy(t *testing.T) { args: args{ ctx: context.Background(), policy: &domain.LabelPolicy{ - PrimaryColor: "primary-color", - SecondaryColor: "secondary-color", + PrimaryColor: "#ffffff", + BackgroundColor: "#ffffff", + WarnColor: "#ffffff", + FontColor: "#ffffff", + PrimaryColorDark: "#ffffff", + BackgroundColorDark: "#ffffff", + WarnColorDark: "#ffffff", + FontColorDark: "#ffffff", HideLoginNameSuffix: true, + ErrorMsgPopup: true, + DisableWatermark: true, }, }, res: res{ @@ -112,9 +131,17 @@ func TestCommandSide_AddDefaultLabelPolicy(t *testing.T) { AggregateID: "IAM", ResourceOwner: "IAM", }, - PrimaryColor: "primary-color", - SecondaryColor: "secondary-color", + PrimaryColor: "#ffffff", + BackgroundColor: "#ffffff", + WarnColor: "#ffffff", + FontColor: "#ffffff", + PrimaryColorDark: "#ffffff", + BackgroundColorDark: "#ffffff", + WarnColorDark: "#ffffff", + FontColorDark: "#ffffff", HideLoginNameSuffix: true, + ErrorMsgPopup: true, + DisableWatermark: true, }, }, }, @@ -156,24 +183,6 @@ func TestCommandSide_ChangeDefaultLabelPolicy(t *testing.T) { args args res res }{ - { - name: "labelpolicy invalid, invalid argument error", - fields: fields{ - eventstore: eventstoreExpect( - t, - ), - }, - args: args{ - ctx: context.Background(), - policy: &domain.LabelPolicy{ - PrimaryColor: "", - SecondaryColor: "secondary-color", - }, - }, - res: res{ - err: caos_errs.IsErrorInvalidArgument, - }, - }, { name: "labelpolicy not existing, not found error", fields: fields{ @@ -185,8 +194,9 @@ func TestCommandSide_ChangeDefaultLabelPolicy(t *testing.T) { args: args{ ctx: context.Background(), policy: &domain.LabelPolicy{ - PrimaryColor: "primary-color", - SecondaryColor: "secondary-color", + PrimaryColor: "#ffffff", + BackgroundColor: "#ffffff", + WarnColor: "#ffffff", }, }, res: res{ @@ -202,8 +212,16 @@ func TestCommandSide_ChangeDefaultLabelPolicy(t *testing.T) { eventFromEventPusher( iam.NewLabelPolicyAddedEvent(context.Background(), &iam.NewAggregate().Aggregate, - "primary-color", - "secondary-color", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, true, ), ), @@ -213,9 +231,17 @@ func TestCommandSide_ChangeDefaultLabelPolicy(t *testing.T) { args: args{ ctx: context.Background(), policy: &domain.LabelPolicy{ - PrimaryColor: "primary-color", - SecondaryColor: "secondary-color", + PrimaryColor: "#ffffff", + BackgroundColor: "#ffffff", + WarnColor: "#ffffff", + FontColor: "#ffffff", + PrimaryColorDark: "#ffffff", + BackgroundColorDark: "#ffffff", + WarnColorDark: "#ffffff", + FontColorDark: "#ffffff", HideLoginNameSuffix: true, + ErrorMsgPopup: true, + DisableWatermark: true, }, }, res: res{ @@ -231,8 +257,16 @@ func TestCommandSide_ChangeDefaultLabelPolicy(t *testing.T) { eventFromEventPusher( iam.NewLabelPolicyAddedEvent(context.Background(), &iam.NewAggregate().Aggregate, - "primary-color", - "secondary-color", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, true, ), ), @@ -240,7 +274,19 @@ func TestCommandSide_ChangeDefaultLabelPolicy(t *testing.T) { expectPush( []*repository.Event{ eventFromEventPusher( - newDefaultLabelPolicyChangedEvent(context.Background(), "primary-color-change", "secondary-color-change", false), + newDefaultLabelPolicyChangedEvent( + context.Background(), + "#000000", + "#000000", + "#000000", + "#000000", + "#000000", + "#000000", + "#000000", + "#000000", + false, + false, + false), ), }, ), @@ -249,9 +295,17 @@ func TestCommandSide_ChangeDefaultLabelPolicy(t *testing.T) { args: args{ ctx: context.Background(), policy: &domain.LabelPolicy{ - PrimaryColor: "primary-color-change", - SecondaryColor: "secondary-color-change", + PrimaryColor: "#000000", + BackgroundColor: "#000000", + WarnColor: "#000000", + FontColor: "#000000", + PrimaryColorDark: "#000000", + BackgroundColorDark: "#000000", + WarnColorDark: "#000000", + FontColorDark: "#000000", HideLoginNameSuffix: false, + ErrorMsgPopup: false, + DisableWatermark: false, }, }, res: res{ @@ -260,9 +314,17 @@ func TestCommandSide_ChangeDefaultLabelPolicy(t *testing.T) { AggregateID: "IAM", ResourceOwner: "IAM", }, - PrimaryColor: "primary-color-change", - SecondaryColor: "secondary-color-change", + PrimaryColor: "#000000", + BackgroundColor: "#000000", + WarnColor: "#000000", + FontColor: "#000000", + PrimaryColorDark: "#000000", + BackgroundColorDark: "#000000", + WarnColorDark: "#000000", + FontColorDark: "#000000", HideLoginNameSuffix: false, + ErrorMsgPopup: false, + DisableWatermark: false, }, }, }, @@ -286,13 +348,1364 @@ func TestCommandSide_ChangeDefaultLabelPolicy(t *testing.T) { } } -func newDefaultLabelPolicyChangedEvent(ctx context.Context, primaryColor, secondaryColor string, hideLoginNameSuffix bool) *iam.LabelPolicyChangedEvent { +func TestCommandSide_ActivateDefaultLabelPolicy(t *testing.T) { + type fields struct { + eventstore *eventstore.Eventstore + } + type args struct { + ctx context.Context + } + type res struct { + want *domain.ObjectDetails + err func(error) bool + } + tests := []struct { + name string + fields fields + args args + res res + }{ + { + name: "label policy not existing, not found error", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter(), + ), + }, + args: args{ + ctx: context.Background(), + }, + res: res{ + err: caos_errs.IsNotFound, + }, + }, + { + name: "activated, ok", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + iam.NewLabelPolicyAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + ), + expectPush( + []*repository.Event{ + eventFromEventPusher( + iam.NewLabelPolicyActivatedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + ), + ), + }, + ), + ), + }, + args: args{ + ctx: context.Background(), + }, + res: res{ + want: &domain.ObjectDetails{ + ResourceOwner: "IAM", + }, + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + r := &Commands{ + eventstore: tt.fields.eventstore, + } + got, err := r.ActivateDefaultLabelPolicy(tt.args.ctx) + if tt.res.err == nil { + assert.NoError(t, err) + } + if tt.res.err != nil && !tt.res.err(err) { + t.Errorf("got wrong err: %v ", err) + } + if tt.res.err == nil { + assert.Equal(t, tt.res.want, got) + } + }) + } +} + +func TestCommandSide_AddLogoDefaultLabelPolicy(t *testing.T) { + type fields struct { + eventstore *eventstore.Eventstore + storage static.Storage + } + type args struct { + ctx context.Context + storageKey string + } + type res struct { + want *domain.ObjectDetails + err func(error) bool + } + tests := []struct { + name string + fields fields + args args + res res + }{ + { + name: "storage key empty, invalid argument error", + fields: fields{ + eventstore: eventstoreExpect( + t, + ), + }, + args: args{ + ctx: context.Background(), + }, + res: res{ + err: caos_errs.IsErrorInvalidArgument, + }, + }, + { + name: "label policy not existing, not found error", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter(), + ), + }, + args: args{ + ctx: context.Background(), + storageKey: "key", + }, + res: res{ + err: caos_errs.IsNotFound, + }, + }, + { + name: "logo added, ok", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + iam.NewLabelPolicyAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + ), + expectPush( + []*repository.Event{ + eventFromEventPusher( + iam.NewLabelPolicyLogoAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "key", + ), + ), + }, + ), + ), + }, + args: args{ + ctx: context.Background(), + storageKey: "key", + }, + res: res{ + want: &domain.ObjectDetails{ + ResourceOwner: "IAM", + }, + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + r := &Commands{ + eventstore: tt.fields.eventstore, + } + got, err := r.AddLogoDefaultLabelPolicy(tt.args.ctx, tt.args.storageKey) + if tt.res.err == nil { + assert.NoError(t, err) + } + if tt.res.err != nil && !tt.res.err(err) { + t.Errorf("got wrong err: %v ", err) + } + if tt.res.err == nil { + assert.Equal(t, tt.res.want, got) + } + }) + } +} + +func TestCommandSide_RemoveLogoDefaultLabelPolicy(t *testing.T) { + type fields struct { + eventstore *eventstore.Eventstore + storage static.Storage + } + type args struct { + ctx context.Context + } + type res struct { + want *domain.ObjectDetails + err func(error) bool + } + tests := []struct { + name string + fields fields + args args + res res + }{ + { + name: "label policy not existing, not found error", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter(), + ), + }, + args: args{ + ctx: context.Background(), + }, + res: res{ + err: caos_errs.IsNotFound, + }, + }, + + { + name: "asset remove error, internal error", + fields: fields{ + storage: mock.NewMockStorage(gomock.NewController(t)).ExpectRemoveObjectError(), + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + iam.NewLabelPolicyAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + eventFromEventPusher( + iam.NewLabelPolicyLogoAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "key", + ), + ), + ), + ), + }, + args: args{ + ctx: context.Background(), + }, + res: res{ + err: caos_errs.IsInternal, + }, + }, + { + name: "logo added, ok", + fields: fields{ + storage: mock.NewMockStorage(gomock.NewController(t)).ExpectRemoveObjectNoError(), + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + iam.NewLabelPolicyAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + eventFromEventPusher( + iam.NewLabelPolicyLogoAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "key", + ), + ), + ), + expectPush( + []*repository.Event{ + eventFromEventPusher( + iam.NewLabelPolicyLogoRemovedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "key", + ), + ), + }, + ), + ), + }, + args: args{ + ctx: context.Background(), + }, + res: res{ + want: &domain.ObjectDetails{ + ResourceOwner: "IAM", + }, + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + r := &Commands{ + eventstore: tt.fields.eventstore, + static: tt.fields.storage, + } + got, err := r.RemoveLogoDefaultLabelPolicy(tt.args.ctx) + if tt.res.err == nil { + assert.NoError(t, err) + } + if tt.res.err != nil && !tt.res.err(err) { + t.Errorf("got wrong err: %v ", err) + } + if tt.res.err == nil { + assert.Equal(t, tt.res.want, got) + } + }) + } +} + +func TestCommandSide_AddIconDefaultLabelPolicy(t *testing.T) { + type fields struct { + eventstore *eventstore.Eventstore + } + type args struct { + ctx context.Context + storageKey string + } + type res struct { + want *domain.ObjectDetails + err func(error) bool + } + tests := []struct { + name string + fields fields + args args + res res + }{ + { + name: "storage key empty, invalid argument error", + fields: fields{ + eventstore: eventstoreExpect( + t, + ), + }, + args: args{ + ctx: context.Background(), + }, + res: res{ + err: caos_errs.IsErrorInvalidArgument, + }, + }, + { + name: "label policy not existing, not found error", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter(), + ), + }, + args: args{ + ctx: context.Background(), + storageKey: "key", + }, + res: res{ + err: caos_errs.IsNotFound, + }, + }, + { + name: "icon added, ok", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + iam.NewLabelPolicyAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + ), + expectPush( + []*repository.Event{ + eventFromEventPusher( + iam.NewLabelPolicyIconAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "key", + ), + ), + }, + ), + ), + }, + args: args{ + ctx: context.Background(), + storageKey: "key", + }, + res: res{ + want: &domain.ObjectDetails{ + ResourceOwner: "IAM", + }, + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + r := &Commands{ + eventstore: tt.fields.eventstore, + } + got, err := r.AddIconDefaultLabelPolicy(tt.args.ctx, tt.args.storageKey) + if tt.res.err == nil { + assert.NoError(t, err) + } + if tt.res.err != nil && !tt.res.err(err) { + t.Errorf("got wrong err: %v ", err) + } + if tt.res.err == nil { + assert.Equal(t, tt.res.want, got) + } + }) + } +} + +func TestCommandSide_RemoveIconDefaultLabelPolicy(t *testing.T) { + type fields struct { + eventstore *eventstore.Eventstore + storage static.Storage + } + type args struct { + ctx context.Context + } + type res struct { + want *domain.ObjectDetails + err func(error) bool + } + tests := []struct { + name string + fields fields + args args + res res + }{ + { + name: "label policy not existing, not found error", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter(), + ), + }, + args: args{ + ctx: context.Background(), + }, + res: res{ + err: caos_errs.IsNotFound, + }, + }, + { + name: "icon removed, ok", + fields: fields{ + storage: mock.NewMockStorage(gomock.NewController(t)).ExpectRemoveObjectNoError(), + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + iam.NewLabelPolicyAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + eventFromEventPusher( + iam.NewLabelPolicyIconAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "key", + ), + ), + ), + expectPush( + []*repository.Event{ + eventFromEventPusher( + iam.NewLabelPolicyIconRemovedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "key", + ), + ), + }, + ), + ), + }, + args: args{ + ctx: context.Background(), + }, + res: res{ + want: &domain.ObjectDetails{ + ResourceOwner: "IAM", + }, + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + r := &Commands{ + eventstore: tt.fields.eventstore, + static: tt.fields.storage, + } + got, err := r.RemoveIconDefaultLabelPolicy(tt.args.ctx) + if tt.res.err == nil { + assert.NoError(t, err) + } + if tt.res.err != nil && !tt.res.err(err) { + t.Errorf("got wrong err: %v ", err) + } + if tt.res.err == nil { + assert.Equal(t, tt.res.want, got) + } + }) + } +} + +func TestCommandSide_AddLogoDarkDefaultLabelPolicy(t *testing.T) { + type fields struct { + eventstore *eventstore.Eventstore + } + type args struct { + ctx context.Context + storageKey string + } + type res struct { + want *domain.ObjectDetails + err func(error) bool + } + tests := []struct { + name string + fields fields + args args + res res + }{ + { + name: "storage key empty, invalid argument error", + fields: fields{ + eventstore: eventstoreExpect( + t, + ), + }, + args: args{ + ctx: context.Background(), + }, + res: res{ + err: caos_errs.IsErrorInvalidArgument, + }, + }, + { + name: "label policy not existing, not found error", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter(), + ), + }, + args: args{ + ctx: context.Background(), + storageKey: "key", + }, + res: res{ + err: caos_errs.IsNotFound, + }, + }, + { + name: "logo dark added, ok", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + iam.NewLabelPolicyAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + ), + expectPush( + []*repository.Event{ + eventFromEventPusher( + iam.NewLabelPolicyLogoDarkAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "key", + ), + ), + }, + ), + ), + }, + args: args{ + ctx: context.Background(), + storageKey: "key", + }, + res: res{ + want: &domain.ObjectDetails{ + ResourceOwner: "IAM", + }, + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + r := &Commands{ + eventstore: tt.fields.eventstore, + } + got, err := r.AddLogoDarkDefaultLabelPolicy(tt.args.ctx, tt.args.storageKey) + if tt.res.err == nil { + assert.NoError(t, err) + } + if tt.res.err != nil && !tt.res.err(err) { + t.Errorf("got wrong err: %v ", err) + } + if tt.res.err == nil { + assert.Equal(t, tt.res.want, got) + } + }) + } +} + +func TestCommandSide_RemoveLogoDarkDefaultLabelPolicy(t *testing.T) { + type fields struct { + eventstore *eventstore.Eventstore + storage static.Storage + } + type args struct { + ctx context.Context + } + type res struct { + want *domain.ObjectDetails + err func(error) bool + } + tests := []struct { + name string + fields fields + args args + res res + }{ + { + name: "label policy not existing, not found error", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter(), + ), + }, + args: args{ + ctx: context.Background(), + }, + res: res{ + err: caos_errs.IsNotFound, + }, + }, + { + name: "logo dark removed, not ok", + fields: fields{ + storage: mock.NewMockStorage(gomock.NewController(t)).ExpectRemoveObjectError(), + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + iam.NewLabelPolicyAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + eventFromEventPusher( + iam.NewLabelPolicyLogoDarkAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "key", + ), + ), + ), + ), + }, + args: args{ + ctx: context.Background(), + }, + res: res{ + err: caos_errs.IsInternal, + }, + }, + { + name: "logo dark removed, ok", + fields: fields{ + storage: mock.NewMockStorage(gomock.NewController(t)).ExpectRemoveObjectNoError(), + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + iam.NewLabelPolicyAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + eventFromEventPusher( + iam.NewLabelPolicyLogoDarkAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "key", + ), + ), + ), + expectPush( + []*repository.Event{ + eventFromEventPusher( + iam.NewLabelPolicyLogoDarkRemovedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "key", + ), + ), + }, + ), + ), + }, + args: args{ + ctx: context.Background(), + }, + res: res{ + want: &domain.ObjectDetails{ + ResourceOwner: "IAM", + }, + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + r := &Commands{ + eventstore: tt.fields.eventstore, + static: tt.fields.storage, + } + got, err := r.RemoveLogoDarkDefaultLabelPolicy(tt.args.ctx) + if tt.res.err == nil { + assert.NoError(t, err) + } + if tt.res.err != nil && !tt.res.err(err) { + t.Errorf("got wrong err: %v ", err) + } + if tt.res.err == nil { + assert.Equal(t, tt.res.want, got) + } + }) + } +} + +func TestCommandSide_AddIconDarkDefaultLabelPolicy(t *testing.T) { + type fields struct { + eventstore *eventstore.Eventstore + } + type args struct { + ctx context.Context + storageKey string + } + type res struct { + want *domain.ObjectDetails + err func(error) bool + } + tests := []struct { + name string + fields fields + args args + res res + }{ + { + name: "storage key empty, invalid argument error", + fields: fields{ + eventstore: eventstoreExpect( + t, + ), + }, + args: args{ + ctx: context.Background(), + }, + res: res{ + err: caos_errs.IsErrorInvalidArgument, + }, + }, + { + name: "label policy not existing, not found error", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter(), + ), + }, + args: args{ + ctx: context.Background(), + storageKey: "key", + }, + res: res{ + err: caos_errs.IsNotFound, + }, + }, + { + name: "icon dark added, ok", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + iam.NewLabelPolicyAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + ), + expectPush( + []*repository.Event{ + eventFromEventPusher( + iam.NewLabelPolicyIconDarkAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "key", + ), + ), + }, + ), + ), + }, + args: args{ + ctx: context.Background(), + storageKey: "key", + }, + res: res{ + want: &domain.ObjectDetails{ + ResourceOwner: "IAM", + }, + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + r := &Commands{ + eventstore: tt.fields.eventstore, + } + got, err := r.AddIconDarkDefaultLabelPolicy(tt.args.ctx, tt.args.storageKey) + if tt.res.err == nil { + assert.NoError(t, err) + } + if tt.res.err != nil && !tt.res.err(err) { + t.Errorf("got wrong err: %v ", err) + } + if tt.res.err == nil { + assert.Equal(t, tt.res.want, got) + } + }) + } +} + +func TestCommandSide_RemoveIconDarkDefaultLabelPolicy(t *testing.T) { + type fields struct { + eventstore *eventstore.Eventstore + storage static.Storage + } + type args struct { + ctx context.Context + } + type res struct { + want *domain.ObjectDetails + err func(error) bool + } + tests := []struct { + name string + fields fields + args args + res res + }{ + { + name: "label policy not existing, not found error", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter(), + ), + }, + args: args{ + ctx: context.Background(), + }, + res: res{ + err: caos_errs.IsNotFound, + }, + }, + { + name: "icon dark removed, not ok", + fields: fields{ + storage: mock.NewMockStorage(gomock.NewController(t)).ExpectRemoveObjectError(), + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + iam.NewLabelPolicyAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + eventFromEventPusher( + iam.NewLabelPolicyIconDarkAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "key", + ), + ), + ), + ), + }, + args: args{ + ctx: context.Background(), + }, + res: res{ + err: caos_errs.IsInternal, + }, + }, + { + name: "icon dark removed, ok", + fields: fields{ + storage: mock.NewMockStorage(gomock.NewController(t)).ExpectRemoveObjectNoError(), + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + iam.NewLabelPolicyAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + eventFromEventPusher( + iam.NewLabelPolicyIconDarkAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "key", + ), + ), + ), + expectPush( + []*repository.Event{ + eventFromEventPusher( + iam.NewLabelPolicyIconDarkRemovedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "key", + ), + ), + }, + ), + ), + }, + args: args{ + ctx: context.Background(), + }, + res: res{ + want: &domain.ObjectDetails{ + ResourceOwner: "IAM", + }, + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + r := &Commands{ + eventstore: tt.fields.eventstore, + static: tt.fields.storage, + } + got, err := r.RemoveIconDarkDefaultLabelPolicy(tt.args.ctx) + if tt.res.err == nil { + assert.NoError(t, err) + } + if tt.res.err != nil && !tt.res.err(err) { + t.Errorf("got wrong err: %v ", err) + } + if tt.res.err == nil { + assert.Equal(t, tt.res.want, got) + } + }) + } +} + +func TestCommandSide_AddFontDefaultLabelPolicy(t *testing.T) { + type fields struct { + eventstore *eventstore.Eventstore + } + type args struct { + ctx context.Context + storageKey string + } + type res struct { + want *domain.ObjectDetails + err func(error) bool + } + tests := []struct { + name string + fields fields + args args + res res + }{ + { + name: "storage key empty, invalid argument error", + fields: fields{ + eventstore: eventstoreExpect( + t, + ), + }, + args: args{ + ctx: context.Background(), + }, + res: res{ + err: caos_errs.IsErrorInvalidArgument, + }, + }, + { + name: "label policy not existing, not found error", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter(), + ), + }, + args: args{ + ctx: context.Background(), + storageKey: "key", + }, + res: res{ + err: caos_errs.IsNotFound, + }, + }, + { + name: "font added, ok", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + iam.NewLabelPolicyAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + ), + expectPush( + []*repository.Event{ + eventFromEventPusher( + iam.NewLabelPolicyFontAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "key", + ), + ), + }, + ), + ), + }, + args: args{ + ctx: context.Background(), + storageKey: "key", + }, + res: res{ + want: &domain.ObjectDetails{ + ResourceOwner: "IAM", + }, + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + r := &Commands{ + eventstore: tt.fields.eventstore, + } + got, err := r.AddFontDefaultLabelPolicy(tt.args.ctx, tt.args.storageKey) + if tt.res.err == nil { + assert.NoError(t, err) + } + if tt.res.err != nil && !tt.res.err(err) { + t.Errorf("got wrong err: %v ", err) + } + if tt.res.err == nil { + assert.Equal(t, tt.res.want, got) + } + }) + } +} + +func TestCommandSide_RemoveFontDefaultLabelPolicy(t *testing.T) { + type fields struct { + eventstore *eventstore.Eventstore + storage static.Storage + } + type args struct { + ctx context.Context + } + type res struct { + want *domain.ObjectDetails + err func(error) bool + } + tests := []struct { + name string + fields fields + args args + res res + }{ + { + name: "label policy not existing, not found error", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter(), + ), + }, + args: args{ + ctx: context.Background(), + }, + res: res{ + err: caos_errs.IsNotFound, + }, + }, + { + name: "font remove from storage not possible, internla error", + fields: fields{ + storage: mock.NewMockStorage(gomock.NewController(t)).ExpectRemoveObjectError(), + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + iam.NewLabelPolicyAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + eventFromEventPusher( + iam.NewLabelPolicyFontAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "key", + ), + ), + ), + ), + }, + args: args{ + ctx: context.Background(), + }, + res: res{ + err: caos_errs.IsInternal, + }, + }, + { + name: "font added, ok", + fields: fields{ + storage: mock.NewMockStorage(gomock.NewController(t)).ExpectRemoveObjectNoError(), + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + iam.NewLabelPolicyAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + eventFromEventPusher( + iam.NewLabelPolicyFontAddedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "key", + ), + ), + ), + expectPush( + []*repository.Event{ + eventFromEventPusher( + iam.NewLabelPolicyFontRemovedEvent(context.Background(), + &iam.NewAggregate().Aggregate, + "key", + ), + ), + }, + ), + ), + }, + args: args{ + ctx: context.Background(), + }, + res: res{ + want: &domain.ObjectDetails{ + ResourceOwner: "IAM", + }, + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + r := &Commands{ + eventstore: tt.fields.eventstore, + static: tt.fields.storage, + } + got, err := r.RemoveFontDefaultLabelPolicy(tt.args.ctx) + if tt.res.err == nil { + assert.NoError(t, err) + } + if tt.res.err != nil && !tt.res.err(err) { + t.Errorf("got wrong err: %v ", err) + } + if tt.res.err == nil { + assert.Equal(t, tt.res.want, got) + } + }) + } +} + +func newDefaultLabelPolicyChangedEvent(ctx context.Context, primaryColor, backgroundColor, warnColor, fontColor, primaryColorDark, backgroundColorDark, warnColorDark, fontColorDark string, hideLoginNameSuffix, errMsgPopup, disableWatermark bool) *iam.LabelPolicyChangedEvent { event, _ := iam.NewLabelPolicyChangedEvent(ctx, &iam.NewAggregate().Aggregate, []policy.LabelPolicyChanges{ policy.ChangePrimaryColor(primaryColor), - policy.ChangeSecondaryColor(secondaryColor), + policy.ChangeBackgroundColor(backgroundColor), + policy.ChangeWarnColor(warnColor), + policy.ChangeFontColor(fontColor), + policy.ChangePrimaryColorDark(primaryColorDark), + policy.ChangeBackgroundColorDark(backgroundColorDark), + policy.ChangeWarnColorDark(warnColorDark), + policy.ChangeFontColorDark(fontColorDark), policy.ChangeHideLoginNameSuffix(hideLoginNameSuffix), + policy.ChangeErrorMsgPopup(errMsgPopup), + policy.ChangeDisableWatermark(disableWatermark), }, ) return event diff --git a/internal/command/org_features.go b/internal/command/org_features.go index 918ddf13e7..37cd5f162d 100644 --- a/internal/command/org_features.go +++ b/internal/command/org_features.go @@ -33,7 +33,8 @@ func (c *Commands) SetOrgFeatures(ctx context.Context, resourceOwner string, fea features.LoginPolicyUsernameLogin, features.LoginPolicyPasswordReset, features.PasswordComplexityPolicy, - features.LabelPolicy, + features.LabelPolicyPrivateLabel, + features.LabelPolicyWatermark, features.CustomDomain, ) if !hasChanged { @@ -106,15 +107,12 @@ func (c *Commands) ensureOrgSettingsToFeatures(ctx context.Context, orgID string events = append(events, removePasswordComplexityEvent) } } - if !features.LabelPolicy { - removeLabelPolicyEvent, err := c.removeLabelPolicyIfExists(ctx, orgID) - if err != nil { - return nil, err - } - if removeLabelPolicyEvent != nil { - events = append(events, removeLabelPolicyEvent) - } + labelPolicyEvents, err := c.setAllowedLabelPolicy(ctx, orgID, features) + if err != nil { + return nil, err } + events = append(events, labelPolicyEvents...) + if !features.CustomDomain { removeCustomDomainsEvents, err := c.removeCustomDomains(ctx, orgID) if err != nil { @@ -233,3 +231,56 @@ func (c *Commands) setDefaultAuthFactorsInCustomLoginPolicy(ctx context.Context, } return events, nil } + +func (c *Commands) setAllowedLabelPolicy(ctx context.Context, orgID string, features *domain.Features) ([]eventstore.EventPusher, error) { + events := make([]eventstore.EventPusher, 0) + existingPolicy, err := c.orgLabelPolicyWriteModelByID(ctx, orgID) + if err != nil { + return nil, err + } + if existingPolicy.State == domain.PolicyStateUnspecified || existingPolicy.State == domain.PolicyStateRemoved { + return nil, nil + } + if !features.LabelPolicyPrivateLabel && !features.LabelPolicyWatermark { + removeEvent, err := c.removeLabelPolicy(ctx, existingPolicy) + if err != nil { + return nil, err + } + return append(events, removeEvent), nil + } + defaultPolicy, err := c.getDefaultLabelPolicy(ctx) + if err != nil { + return nil, err + } + policy := *existingPolicy + if !features.LabelPolicyWatermark && defaultPolicy.DisableWatermark != existingPolicy.DisableWatermark { + policy.DisableWatermark = defaultPolicy.DisableWatermark + } + if !features.LabelPolicyPrivateLabel { + if defaultPolicy.HideLoginNameSuffix != existingPolicy.HideLoginNameSuffix { + policy.HideLoginNameSuffix = defaultPolicy.HideLoginNameSuffix + } + policy.PrimaryColor = "" + policy.BackgroundColor = "" + policy.WarnColor = "" + policy.FontColor = "" + policy.PrimaryColorDark = "" + policy.BackgroundColorDark = "" + policy.WarnColorDark = "" + policy.FontColorDark = "" + + assetsEvent, err := c.removeLabelPolicyAssets(ctx, existingPolicy) + if err != nil { + return nil, err + } + events = append(events, assetsEvent) + } + changedEvent, hasChanged := existingPolicy.NewChangedEvent(ctx, OrgAggregateFromWriteModel(&existingPolicy.WriteModel), + policy.PrimaryColor, policy.BackgroundColor, policy.WarnColor, policy.FontColor, + policy.PrimaryColorDark, policy.BackgroundColorDark, policy.WarnColorDark, policy.FontColorDark, + policy.HideLoginNameSuffix, policy.ErrorMsgPopup, policy.HideLoginNameSuffix) + if hasChanged { + events = append(events, changedEvent) + } + return events, nil +} diff --git a/internal/command/org_features_model.go b/internal/command/org_features_model.go index ed9dbb57ca..956c021f52 100644 --- a/internal/command/org_features_model.go +++ b/internal/command/org_features_model.go @@ -69,7 +69,8 @@ func (wm *OrgFeaturesWriteModel) NewSetEvent( loginPolicyUsernameLogin, loginPolicyPasswordReset, passwordComplexityPolicy, - labelPolicy, + labelPolicyPrivateLabel, + labelPolicyWatermark, customDomain bool, ) (*org.FeaturesSetEvent, bool) { @@ -111,8 +112,11 @@ func (wm *OrgFeaturesWriteModel) NewSetEvent( if wm.PasswordComplexityPolicy != passwordComplexityPolicy { changes = append(changes, features.ChangePasswordComplexityPolicy(passwordComplexityPolicy)) } - if wm.LabelPolicy != labelPolicy { - changes = append(changes, features.ChangeLabelPolicy(labelPolicy)) + if wm.LabelPolicyPrivateLabel != labelPolicyPrivateLabel { + changes = append(changes, features.ChangeLabelPolicyPrivateLabel(labelPolicyPrivateLabel)) + } + if wm.LabelPolicyWatermark != labelPolicyWatermark { + changes = append(changes, features.ChangeLabelPolicyWatermark(labelPolicyWatermark)) } if wm.CustomDomain != customDomain { changes = append(changes, features.ChangeCustomDomain(customDomain)) diff --git a/internal/command/org_features_test.go b/internal/command/org_features_test.go index 028642448e..d8e3ddffe3 100644 --- a/internal/command/org_features_test.go +++ b/internal/command/org_features_test.go @@ -5,6 +5,7 @@ import ( "testing" "time" + "github.com/golang/mock/gomock" "github.com/stretchr/testify/assert" "github.com/caos/zitadel/internal/domain" @@ -14,12 +15,15 @@ import ( "github.com/caos/zitadel/internal/repository/features" "github.com/caos/zitadel/internal/repository/iam" "github.com/caos/zitadel/internal/repository/org" + "github.com/caos/zitadel/internal/static" + "github.com/caos/zitadel/internal/static/mock" ) func TestCommandSide_SetOrgFeatures(t *testing.T) { type fields struct { eventstore *eventstore.Eventstore iamDomain string + static static.Storage } type args struct { ctx context.Context @@ -56,7 +60,8 @@ func TestCommandSide_SetOrgFeatures(t *testing.T) { LoginPolicyUsernameLogin: false, LoginPolicyPasswordReset: false, PasswordComplexityPolicy: false, - LabelPolicy: false, + LabelPolicyPrivateLabel: false, + LabelPolicyWatermark: false, CustomDomain: false, }, }, @@ -90,7 +95,8 @@ func TestCommandSide_SetOrgFeatures(t *testing.T) { LoginPolicyUsernameLogin: false, LoginPolicyPasswordReset: false, PasswordComplexityPolicy: false, - LabelPolicy: false, + LabelPolicyPrivateLabel: false, + LabelPolicyWatermark: false, CustomDomain: false, }, }, @@ -138,6 +144,14 @@ func TestCommandSide_SetOrgFeatures(t *testing.T) { &iam.NewAggregate().Aggregate, "primary", "secondary", + "warn", + "font", + "primary-dark", + "secondary-dark", + "warn-dark", + "font-dark", + false, + false, false, ), ), @@ -196,7 +210,8 @@ func TestCommandSide_SetOrgFeatures(t *testing.T) { LoginPolicyUsernameLogin: false, LoginPolicyPasswordReset: false, PasswordComplexityPolicy: false, - LabelPolicy: false, + LabelPolicyPrivateLabel: false, + LabelPolicyWatermark: false, CustomDomain: false, }, }, @@ -246,6 +261,14 @@ func TestCommandSide_SetOrgFeatures(t *testing.T) { &iam.NewAggregate().Aggregate, "primary", "secondary", + "warn", + "font", + "primary-dark", + "secondary-dark", + "warn-dark", + "font-dark", + false, + false, false, ), ), @@ -332,7 +355,8 @@ func TestCommandSide_SetOrgFeatures(t *testing.T) { LoginPolicyUsernameLogin: false, LoginPolicyPasswordReset: false, PasswordComplexityPolicy: false, - LabelPolicy: false, + LabelPolicyPrivateLabel: false, + LabelPolicyWatermark: false, CustomDomain: false, }, }, @@ -382,6 +406,14 @@ func TestCommandSide_SetOrgFeatures(t *testing.T) { &iam.NewAggregate().Aggregate, "primary", "secondary", + "warn", + "font", + "primary-dark", + "secondary-dark", + "warn-dark", + "font-dark", + false, + false, false, ), ), @@ -478,7 +510,8 @@ func TestCommandSide_SetOrgFeatures(t *testing.T) { LoginPolicyUsernameLogin: false, LoginPolicyPasswordReset: false, PasswordComplexityPolicy: false, - LabelPolicy: false, + LabelPolicyPrivateLabel: false, + LabelPolicyWatermark: false, CustomDomain: false, }, }, @@ -528,6 +561,14 @@ func TestCommandSide_SetOrgFeatures(t *testing.T) { &iam.NewAggregate().Aggregate, "primary", "secondary", + "warn", + "font", + "primary-dark", + "secondary-dark", + "warn-dark", + "font-dark", + false, + false, false, ), ), @@ -634,7 +675,8 @@ func TestCommandSide_SetOrgFeatures(t *testing.T) { LoginPolicyUsernameLogin: false, LoginPolicyPasswordReset: false, PasswordComplexityPolicy: false, - LabelPolicy: false, + LabelPolicyPrivateLabel: false, + LabelPolicyWatermark: false, CustomDomain: false, }, }, @@ -740,6 +782,7 @@ func TestCommandSide_SetOrgFeatures(t *testing.T) { ), ), ), + //begin setDefaultAuthFactorsInCustomLoginPolicy //orgLabelPolicyWriteModelByID expectFilter( eventFromEventPusher( @@ -748,6 +791,14 @@ func TestCommandSide_SetOrgFeatures(t *testing.T) { &iam.NewAggregate().Aggregate, "primary", "secondary", + "warn", + "font", + "primary-dark", + "secondary-dark", + "warn-dark", + "font-dark", + false, + false, false, ), ), @@ -757,10 +808,22 @@ func TestCommandSide_SetOrgFeatures(t *testing.T) { &iam.NewAggregate().Aggregate, "custom", "secondary", + "warn", + "font", + "primary-dark", + "secondary-dark", + "warn-dark", + "font-dark", + false, + false, false, ), ), ), + //removeLabelPolicy + expectFilter(), + //end setDefaultAuthFactorsInCustomLoginPolicy + //removeCustomDomains expectFilter( eventFromEventPusher( org.NewOrgAddedEvent( @@ -818,6 +881,7 @@ func TestCommandSide_SetOrgFeatures(t *testing.T) { ), ), iamDomain: "iam-domain", + static: mock.NewMockStorage(gomock.NewController(t)).ExpectRemoveObjectNoError(), }, args: args{ ctx: context.Background(), @@ -832,7 +896,9 @@ func TestCommandSide_SetOrgFeatures(t *testing.T) { LoginPolicyRegistration: false, LoginPolicyUsernameLogin: false, PasswordComplexityPolicy: false, - LabelPolicy: false, + LabelPolicyPrivateLabel: false, + LabelPolicyWatermark: false, + CustomDomain: false, }, }, res: res{ @@ -847,6 +913,7 @@ func TestCommandSide_SetOrgFeatures(t *testing.T) { r := &Commands{ eventstore: tt.fields.eventstore, iamDomain: tt.fields.iamDomain, + static: tt.fields.static, } got, err := r.SetOrgFeatures(tt.args.ctx, tt.args.resourceOwner, tt.args.features) if tt.res.err == nil { @@ -958,6 +1025,14 @@ func TestCommandSide_RemoveOrgFeatures(t *testing.T) { &iam.NewAggregate().Aggregate, "primary", "secondary", + "warn", + "font", + "primary-dark", + "secondary-dark", + "warn-dark", + "font-dark", + false, + false, false, ), ), diff --git a/internal/command/org_policy_label.go b/internal/command/org_policy_label.go index 2c0a2b9af1..146ac5b1dc 100644 --- a/internal/command/org_policy_label.go +++ b/internal/command/org_policy_label.go @@ -12,8 +12,8 @@ func (c *Commands) AddLabelPolicy(ctx context.Context, resourceOwner string, pol if resourceOwner == "" { return nil, caos_errs.ThrowInvalidArgument(nil, "Org-Fn8ds", "Errors.ResourceOwnerMissing") } - if !policy.IsValid() { - return nil, caos_errs.ThrowInvalidArgument(nil, "Org-Md9sf", "Errors.Org.LabelPolicy.Invalid") + if err := policy.IsValid(); err != nil { + return nil, err } addedPolicy := NewOrgLabelPolicyWriteModel(resourceOwner) err := c.eventstore.FilterToQueryReducer(ctx, addedPolicy) @@ -25,7 +25,20 @@ func (c *Commands) AddLabelPolicy(ctx context.Context, resourceOwner string, pol } orgAgg := OrgAggregateFromWriteModel(&addedPolicy.LabelPolicyWriteModel.WriteModel) - pushedEvents, err := c.eventstore.PushEvents(ctx, org.NewLabelPolicyAddedEvent(ctx, orgAgg, policy.PrimaryColor, policy.SecondaryColor, policy.HideLoginNameSuffix)) + pushedEvents, err := c.eventstore.PushEvents(ctx, org.NewLabelPolicyAddedEvent( + ctx, + orgAgg, + policy.PrimaryColor, + policy.BackgroundColor, + policy.WarnColor, + policy.FontColor, + policy.PrimaryColorDark, + policy.BackgroundColorDark, + policy.WarnColorDark, + policy.FontColorDark, + policy.HideLoginNameSuffix, + policy.ErrorMsgPopup, + policy.DisableWatermark)) if err != nil { return nil, err } @@ -40,8 +53,8 @@ func (c *Commands) ChangeLabelPolicy(ctx context.Context, resourceOwner string, if resourceOwner == "" { return nil, caos_errs.ThrowInvalidArgument(nil, "Org-3N9fs", "Errors.ResourceOwnerMissing") } - if !policy.IsValid() { - return nil, caos_errs.ThrowInvalidArgument(nil, "Org-dM9fs", "Errors.Org.LabelPolicy.Invalid") + if err := policy.IsValid(); err != nil { + return nil, err } existingPolicy := NewOrgLabelPolicyWriteModel(resourceOwner) err := c.eventstore.FilterToQueryReducer(ctx, existingPolicy) @@ -53,7 +66,20 @@ func (c *Commands) ChangeLabelPolicy(ctx context.Context, resourceOwner string, } orgAgg := OrgAggregateFromWriteModel(&existingPolicy.LabelPolicyWriteModel.WriteModel) - changedEvent, hasChanged := existingPolicy.NewChangedEvent(ctx, orgAgg, policy.PrimaryColor, policy.SecondaryColor, policy.HideLoginNameSuffix) + changedEvent, hasChanged := existingPolicy.NewChangedEvent( + ctx, + orgAgg, + policy.PrimaryColor, + policy.BackgroundColor, + policy.WarnColor, + policy.FontColor, + policy.PrimaryColorDark, + policy.BackgroundColorDark, + policy.WarnColorDark, + policy.FontColorDark, + policy.HideLoginNameSuffix, + policy.ErrorMsgPopup, + policy.DisableWatermark) if !hasChanged { return nil, caos_errs.ThrowPreconditionFailed(nil, "Org-4M9vs", "Errors.Org.LabelPolicy.NotChanged") } @@ -69,6 +95,306 @@ func (c *Commands) ChangeLabelPolicy(ctx context.Context, resourceOwner string, return writeModelToLabelPolicy(&existingPolicy.LabelPolicyWriteModel), nil } +func (c *Commands) ActivateLabelPolicy(ctx context.Context, orgID string) (*domain.ObjectDetails, error) { + if orgID == "" { + return nil, caos_errs.ThrowInvalidArgument(nil, "Org-KKd4X", "Errors.ResourceOwnerMissing") + } + existingPolicy, err := c.orgLabelPolicyWriteModelByID(ctx, orgID) + if err != nil { + return nil, err + } + + if existingPolicy.State == domain.PolicyStateUnspecified || existingPolicy.State == domain.PolicyStateRemoved { + return nil, caos_errs.ThrowNotFound(nil, "ORG-34mSE", "Errors.Org.LabelPolicy.NotFound") + } + orgAgg := OrgAggregateFromWriteModel(&existingPolicy.LabelPolicyWriteModel.WriteModel) + pushedEvents, err := c.eventstore.PushEvents(ctx, org.NewLabelPolicyActivatedEvent(ctx, orgAgg)) + if err != nil { + return nil, err + } + err = AppendAndReduce(existingPolicy, pushedEvents...) + if err != nil { + return nil, err + } + return writeModelToObjectDetails(&existingPolicy.LabelPolicyWriteModel.WriteModel), nil +} + +func (c *Commands) AddLogoLabelPolicy(ctx context.Context, orgID, storageKey string) (*domain.ObjectDetails, error) { + if orgID == "" { + return nil, caos_errs.ThrowInvalidArgument(nil, "Org-KKd4X", "Errors.ResourceOwnerMissing") + } + if storageKey == "" { + return nil, caos_errs.ThrowInvalidArgument(nil, "IAM-4N3nf", "Errors.Assets.EmptyKey") + } + existingPolicy, err := c.orgLabelPolicyWriteModelByID(ctx, orgID) + if err != nil { + return nil, err + } + + if existingPolicy.State == domain.PolicyStateUnspecified || existingPolicy.State == domain.PolicyStateRemoved { + return nil, caos_errs.ThrowNotFound(nil, "ORG-23BMs", "Errors.Org.LabelPolicy.NotFound") + } + orgAgg := OrgAggregateFromWriteModel(&existingPolicy.LabelPolicyWriteModel.WriteModel) + pushedEvents, err := c.eventstore.PushEvents(ctx, org.NewLabelPolicyLogoAddedEvent(ctx, orgAgg, storageKey)) + if err != nil { + return nil, err + } + err = AppendAndReduce(existingPolicy, pushedEvents...) + if err != nil { + return nil, err + } + return writeModelToObjectDetails(&existingPolicy.LabelPolicyWriteModel.WriteModel), nil +} + +func (c *Commands) RemoveLogoLabelPolicy(ctx context.Context, orgID string) (*domain.ObjectDetails, error) { + if orgID == "" { + return nil, caos_errs.ThrowInvalidArgument(nil, "Org-2FN8s", "Errors.ResourceOwnerMissing") + } + existingPolicy, err := c.orgLabelPolicyWriteModelByID(ctx, orgID) + if err != nil { + return nil, err + } + + if existingPolicy.State == domain.PolicyStateUnspecified || existingPolicy.State == domain.PolicyStateRemoved { + return nil, caos_errs.ThrowNotFound(nil, "ORG-4MVsf", "Errors.Org.LabelPolicy.NotFound") + } + err = c.RemoveAsset(ctx, orgID, existingPolicy.LogoKey) + if err != nil { + return nil, err + } + orgAgg := OrgAggregateFromWriteModel(&existingPolicy.LabelPolicyWriteModel.WriteModel) + pushedEvents, err := c.eventstore.PushEvents(ctx, org.NewLabelPolicyLogoRemovedEvent(ctx, orgAgg, existingPolicy.LogoKey)) + if err != nil { + return nil, err + } + err = AppendAndReduce(existingPolicy, pushedEvents...) + if err != nil { + return nil, err + } + return writeModelToObjectDetails(&existingPolicy.LabelPolicyWriteModel.WriteModel), nil +} + +func (c *Commands) AddIconLabelPolicy(ctx context.Context, orgID, storageKey string) (*domain.ObjectDetails, error) { + if orgID == "" { + return nil, caos_errs.ThrowInvalidArgument(nil, "Org-hMDs3", "Errors.ResourceOwnerMissing") + } + if storageKey == "" { + return nil, caos_errs.ThrowInvalidArgument(nil, "IAM-4BS7f", "Errors.Assets.EmptyKey") + } + existingPolicy, err := c.orgLabelPolicyWriteModelByID(ctx, orgID) + if err != nil { + return nil, err + } + + if existingPolicy.State == domain.PolicyStateUnspecified || existingPolicy.State == domain.PolicyStateRemoved { + return nil, caos_errs.ThrowNotFound(nil, "ORG-4nq2f", "Errors.Org.LabelPolicy.NotFound") + } + orgAgg := OrgAggregateFromWriteModel(&existingPolicy.LabelPolicyWriteModel.WriteModel) + pushedEvents, err := c.eventstore.PushEvents(ctx, org.NewLabelPolicyIconAddedEvent(ctx, orgAgg, storageKey)) + if err != nil { + return nil, err + } + err = AppendAndReduce(existingPolicy, pushedEvents...) + if err != nil { + return nil, err + } + return writeModelToObjectDetails(&existingPolicy.LabelPolicyWriteModel.WriteModel), nil +} + +func (c *Commands) RemoveIconLabelPolicy(ctx context.Context, orgID string) (*domain.ObjectDetails, error) { + if orgID == "" { + return nil, caos_errs.ThrowInvalidArgument(nil, "Org-1nd0d", "Errors.ResourceOwnerMissing") + } + existingPolicy, err := c.orgLabelPolicyWriteModelByID(ctx, orgID) + if err != nil { + return nil, err + } + + if existingPolicy.State == domain.PolicyStateUnspecified || existingPolicy.State == domain.PolicyStateRemoved { + return nil, caos_errs.ThrowNotFound(nil, "ORG-1nd9f", "Errors.Org.LabelPolicy.NotFound") + } + + err = c.RemoveAsset(ctx, orgID, existingPolicy.IconKey) + if err != nil { + return nil, err + } + orgAgg := OrgAggregateFromWriteModel(&existingPolicy.LabelPolicyWriteModel.WriteModel) + pushedEvents, err := c.eventstore.PushEvents(ctx, org.NewLabelPolicyIconRemovedEvent(ctx, orgAgg, existingPolicy.IconKey)) + if err != nil { + return nil, err + } + err = AppendAndReduce(existingPolicy, pushedEvents...) + if err != nil { + return nil, err + } + return writeModelToObjectDetails(&existingPolicy.LabelPolicyWriteModel.WriteModel), nil +} + +func (c *Commands) AddLogoDarkLabelPolicy(ctx context.Context, orgID, storageKey string) (*domain.ObjectDetails, error) { + if orgID == "" { + return nil, caos_errs.ThrowInvalidArgument(nil, "Org-67Ms2", "Errors.ResourceOwnerMissing") + } + if storageKey == "" { + return nil, caos_errs.ThrowInvalidArgument(nil, "IAM-3S7fN", "Errors.Assets.EmptyKey") + } + existingPolicy, err := c.orgLabelPolicyWriteModelByID(ctx, orgID) + if err != nil { + return nil, err + } + + if existingPolicy.State == domain.PolicyStateUnspecified || existingPolicy.State == domain.PolicyStateRemoved { + return nil, caos_errs.ThrowNotFound(nil, "ORG-QSqcd", "Errors.Org.LabelPolicy.NotFound") + } + orgAgg := OrgAggregateFromWriteModel(&existingPolicy.LabelPolicyWriteModel.WriteModel) + pushedEvents, err := c.eventstore.PushEvents(ctx, org.NewLabelPolicyLogoDarkAddedEvent(ctx, orgAgg, storageKey)) + if err != nil { + return nil, err + } + err = AppendAndReduce(existingPolicy, pushedEvents...) + if err != nil { + return nil, err + } + return writeModelToObjectDetails(&existingPolicy.LabelPolicyWriteModel.WriteModel), nil +} + +func (c *Commands) RemoveLogoDarkLabelPolicy(ctx context.Context, orgID string) (*domain.ObjectDetails, error) { + if orgID == "" { + return nil, caos_errs.ThrowInvalidArgument(nil, "Org-4NF0d", "Errors.ResourceOwnerMissing") + } + existingPolicy, err := c.orgLabelPolicyWriteModelByID(ctx, orgID) + if err != nil { + return nil, err + } + + if existingPolicy.State == domain.PolicyStateUnspecified || existingPolicy.State == domain.PolicyStateRemoved { + return nil, caos_errs.ThrowNotFound(nil, "ORG-0peQw", "Errors.Org.LabelPolicy.NotFound") + } + err = c.RemoveAsset(ctx, orgID, existingPolicy.LogoDarkKey) + if err != nil { + return nil, err + } + orgAgg := OrgAggregateFromWriteModel(&existingPolicy.LabelPolicyWriteModel.WriteModel) + pushedEvents, err := c.eventstore.PushEvents(ctx, org.NewLabelPolicyLogoDarkRemovedEvent(ctx, orgAgg, existingPolicy.LogoDarkKey)) + if err != nil { + return nil, err + } + err = AppendAndReduce(existingPolicy, pushedEvents...) + if err != nil { + return nil, err + } + return writeModelToObjectDetails(&existingPolicy.LabelPolicyWriteModel.WriteModel), nil +} + +func (c *Commands) AddIconDarkLabelPolicy(ctx context.Context, orgID, storageKey string) (*domain.ObjectDetails, error) { + if orgID == "" { + return nil, caos_errs.ThrowInvalidArgument(nil, "Org-tzBfs", "Errors.ResourceOwnerMissing") + } + if storageKey == "" { + return nil, caos_errs.ThrowInvalidArgument(nil, "IAM-4B7cs", "Errors.Assets.EmptyKey") + } + existingPolicy, err := c.orgLabelPolicyWriteModelByID(ctx, orgID) + if err != nil { + return nil, err + } + + if existingPolicy.State == domain.PolicyStateUnspecified || existingPolicy.State == domain.PolicyStateRemoved { + return nil, caos_errs.ThrowNotFound(nil, "ORG-4Nf8s", "Errors.Org.LabelPolicy.NotFound") + } + orgAgg := OrgAggregateFromWriteModel(&existingPolicy.LabelPolicyWriteModel.WriteModel) + pushedEvents, err := c.eventstore.PushEvents(ctx, org.NewLabelPolicyIconDarkAddedEvent(ctx, orgAgg, storageKey)) + if err != nil { + return nil, err + } + err = AppendAndReduce(existingPolicy, pushedEvents...) + if err != nil { + return nil, err + } + return writeModelToObjectDetails(&existingPolicy.LabelPolicyWriteModel.WriteModel), nil +} + +func (c *Commands) RemoveIconDarkLabelPolicy(ctx context.Context, orgID string) (*domain.ObjectDetails, error) { + if orgID == "" { + return nil, caos_errs.ThrowInvalidArgument(nil, "Org-Mv9ds", "Errors.ResourceOwnerMissing") + } + existingPolicy, err := c.orgLabelPolicyWriteModelByID(ctx, orgID) + if err != nil { + return nil, err + } + + if existingPolicy.State == domain.PolicyStateUnspecified || existingPolicy.State == domain.PolicyStateRemoved { + return nil, caos_errs.ThrowNotFound(nil, "ORG-3NFos", "Errors.Org.LabelPolicy.NotFound") + } + err = c.RemoveAsset(ctx, orgID, existingPolicy.IconDarkKey) + if err != nil { + return nil, err + } + orgAgg := OrgAggregateFromWriteModel(&existingPolicy.LabelPolicyWriteModel.WriteModel) + pushedEvents, err := c.eventstore.PushEvents(ctx, org.NewLabelPolicyIconDarkRemovedEvent(ctx, orgAgg, existingPolicy.IconDarkKey)) + if err != nil { + return nil, err + } + err = AppendAndReduce(existingPolicy, pushedEvents...) + if err != nil { + return nil, err + } + return writeModelToObjectDetails(&existingPolicy.LabelPolicyWriteModel.WriteModel), nil +} + +func (c *Commands) AddFontLabelPolicy(ctx context.Context, orgID, storageKey string) (*domain.ObjectDetails, error) { + if orgID == "" { + return nil, caos_errs.ThrowInvalidArgument(nil, "Org-1Nf9s", "Errors.ResourceOwnerMissing") + } + if storageKey == "" { + return nil, caos_errs.ThrowInvalidArgument(nil, "ORG-2f9fw", "Errors.Assets.EmptyKey") + } + existingPolicy, err := c.orgLabelPolicyWriteModelByID(ctx, orgID) + if err != nil { + return nil, err + } + + if existingPolicy.State == domain.PolicyStateUnspecified || existingPolicy.State == domain.PolicyStateRemoved { + return nil, caos_errs.ThrowNotFound(nil, "ORG-2M9fs", "Errors.Org.LabelPolicy.NotFound") + } + orgAgg := OrgAggregateFromWriteModel(&existingPolicy.LabelPolicyWriteModel.WriteModel) + pushedEvents, err := c.eventstore.PushEvents(ctx, org.NewLabelPolicyFontAddedEvent(ctx, orgAgg, storageKey)) + if err != nil { + return nil, err + } + err = AppendAndReduce(existingPolicy, pushedEvents...) + if err != nil { + return nil, err + } + return writeModelToObjectDetails(&existingPolicy.LabelPolicyWriteModel.WriteModel), nil +} + +func (c *Commands) RemoveFontLabelPolicy(ctx context.Context, orgID string) (*domain.ObjectDetails, error) { + if orgID == "" { + return nil, caos_errs.ThrowInvalidArgument(nil, "Org-2n0fW", "Errors.ResourceOwnerMissing") + } + existingPolicy, err := c.orgLabelPolicyWriteModelByID(ctx, orgID) + if err != nil { + return nil, err + } + + if existingPolicy.State == domain.PolicyStateUnspecified || existingPolicy.State == domain.PolicyStateRemoved { + return nil, caos_errs.ThrowNotFound(nil, "ORG-4n9SD", "Errors.Org.LabelPolicy.NotFound") + } + err = c.RemoveAsset(ctx, orgID, existingPolicy.FontKey) + if err != nil { + return nil, err + } + orgAgg := OrgAggregateFromWriteModel(&existingPolicy.LabelPolicyWriteModel.WriteModel) + pushedEvents, err := c.eventstore.PushEvents(ctx, org.NewLabelPolicyFontRemovedEvent(ctx, orgAgg, existingPolicy.FontKey)) + if err != nil { + return nil, err + } + err = AppendAndReduce(existingPolicy, pushedEvents...) + if err != nil { + return nil, err + } + return writeModelToObjectDetails(&existingPolicy.LabelPolicyWriteModel.WriteModel), nil +} + func (c *Commands) RemoveLabelPolicy(ctx context.Context, orgID string) (*domain.ObjectDetails, error) { if orgID == "" { return nil, caos_errs.ThrowInvalidArgument(nil, "Org-Mf9sf", "Errors.ResourceOwnerMissing") @@ -97,6 +423,10 @@ func (c *Commands) removeLabelPolicy(ctx context.Context, existingPolicy *OrgLab if existingPolicy.State == domain.PolicyStateUnspecified || existingPolicy.State == domain.PolicyStateRemoved { return nil, caos_errs.ThrowNotFound(nil, "Org-3M9df", "Errors.Org.LabelPolicy.NotFound") } + err = c.RemoveAsset(ctx, existingPolicy.AggregateID, domain.LabelPolicyPrefix) + if err != nil { + return nil, err + } orgAgg := OrgAggregateFromWriteModel(&existingPolicy.WriteModel) return org.NewLabelPolicyRemovedEvent(ctx, orgAgg), nil } @@ -109,10 +439,23 @@ func (c *Commands) removeLabelPolicyIfExists(ctx context.Context, orgID string) if existingPolicy.State != domain.PolicyStateActive { return nil, nil } + err = c.RemoveAsset(ctx, orgID, domain.LabelPolicyPrefix) + if err != nil { + return nil, err + } orgAgg := OrgAggregateFromWriteModel(&existingPolicy.WriteModel) return org.NewLabelPolicyRemovedEvent(ctx, orgAgg), nil } +func (c *Commands) removeLabelPolicyAssets(ctx context.Context, existingPolicy *OrgLabelPolicyWriteModel) (*org.LabelPolicyAssetsRemovedEvent, error) { + err := c.RemoveAsset(ctx, existingPolicy.AggregateID, domain.LabelPolicyPrefix) + if err != nil { + return nil, err + } + orgAgg := OrgAggregateFromWriteModel(&existingPolicy.WriteModel) + return org.NewLabelPolicyAssetsRemovedEvent(ctx, orgAgg), nil +} + func (c *Commands) orgLabelPolicyWriteModelByID(ctx context.Context, orgID string) (*OrgLabelPolicyWriteModel, error) { policy := NewOrgLabelPolicyWriteModel(orgID) err := c.eventstore.FilterToQueryReducer(ctx, policy) diff --git a/internal/command/org_policy_label_model.go b/internal/command/org_policy_label_model.go index da320a074a..bf7cd986aa 100644 --- a/internal/command/org_policy_label_model.go +++ b/internal/command/org_policy_label_model.go @@ -30,6 +30,26 @@ func (wm *OrgLabelPolicyWriteModel) AppendEvents(events ...eventstore.EventReade wm.LabelPolicyWriteModel.AppendEvents(&e.LabelPolicyAddedEvent) case *org.LabelPolicyChangedEvent: wm.LabelPolicyWriteModel.AppendEvents(&e.LabelPolicyChangedEvent) + case *org.LabelPolicyLogoAddedEvent: + wm.LabelPolicyWriteModel.AppendEvents(&e.LabelPolicyLogoAddedEvent) + case *org.LabelPolicyLogoRemovedEvent: + wm.LabelPolicyWriteModel.AppendEvents(&e.LabelPolicyLogoRemovedEvent) + case *org.LabelPolicyLogoDarkAddedEvent: + wm.LabelPolicyWriteModel.AppendEvents(&e.LabelPolicyLogoDarkAddedEvent) + case *org.LabelPolicyLogoDarkRemovedEvent: + wm.LabelPolicyWriteModel.AppendEvents(&e.LabelPolicyLogoDarkRemovedEvent) + case *org.LabelPolicyIconAddedEvent: + wm.LabelPolicyWriteModel.AppendEvents(&e.LabelPolicyIconAddedEvent) + case *org.LabelPolicyIconRemovedEvent: + wm.LabelPolicyWriteModel.AppendEvents(&e.LabelPolicyIconRemovedEvent) + case *org.LabelPolicyIconDarkAddedEvent: + wm.LabelPolicyWriteModel.AppendEvents(&e.LabelPolicyIconDarkAddedEvent) + case *org.LabelPolicyIconDarkRemovedEvent: + wm.LabelPolicyWriteModel.AppendEvents(&e.LabelPolicyIconDarkRemovedEvent) + case *org.LabelPolicyFontAddedEvent: + wm.LabelPolicyWriteModel.AppendEvents(&e.LabelPolicyFontAddedEvent) + case *org.LabelPolicyFontRemovedEvent: + wm.LabelPolicyWriteModel.AppendEvents(&e.LabelPolicyFontRemovedEvent) } } } @@ -44,26 +64,69 @@ func (wm *OrgLabelPolicyWriteModel) Query() *eventstore.SearchQueryBuilder { ResourceOwner(wm.ResourceOwner). EventTypes( org.LabelPolicyAddedEventType, - org.LabelPolicyChangedEventType) + org.LabelPolicyChangedEventType, + org.LabelPolicyLogoAddedEventType, + org.LabelPolicyLogoRemovedEventType, + org.LabelPolicyIconAddedEventType, + org.LabelPolicyIconRemovedEventType, + org.LabelPolicyLogoDarkAddedEventType, + org.LabelPolicyLogoDarkRemovedEventType, + org.LabelPolicyIconDarkAddedEventType, + org.LabelPolicyIconDarkRemovedEventType, + org.LabelPolicyFontAddedEventType, + org.LabelPolicyFontRemovedEventType, + ) } func (wm *OrgLabelPolicyWriteModel) NewChangedEvent( ctx context.Context, aggregate *eventstore.Aggregate, primaryColor, - secondaryColor string, - hideLoginNameSuffix bool, + backgroundColor, + warnColor, + fontColor, + primaryColorDark, + backgroundColorDark, + warnColorDark, + fontColorDark string, + hideLoginNameSuffix, + errorMsgPopup, + disableWatermark bool, ) (*org.LabelPolicyChangedEvent, bool) { changes := make([]policy.LabelPolicyChanges, 0) if wm.PrimaryColor != primaryColor { changes = append(changes, policy.ChangePrimaryColor(primaryColor)) } - if wm.SecondaryColor != secondaryColor { - changes = append(changes, policy.ChangeSecondaryColor(secondaryColor)) + if wm.BackgroundColor != backgroundColor { + changes = append(changes, policy.ChangeBackgroundColor(backgroundColor)) + } + if wm.WarnColor != warnColor { + changes = append(changes, policy.ChangeWarnColor(warnColor)) + } + if wm.FontColor != fontColor { + changes = append(changes, policy.ChangeFontColor(fontColor)) + } + if wm.PrimaryColorDark != primaryColorDark { + changes = append(changes, policy.ChangePrimaryColorDark(primaryColorDark)) + } + if wm.BackgroundColorDark != backgroundColorDark { + changes = append(changes, policy.ChangeBackgroundColorDark(backgroundColorDark)) + } + if wm.WarnColorDark != warnColorDark { + changes = append(changes, policy.ChangeWarnColorDark(warnColorDark)) + } + if wm.FontColorDark != fontColorDark { + changes = append(changes, policy.ChangeFontColorDark(fontColorDark)) } if wm.HideLoginNameSuffix != hideLoginNameSuffix { changes = append(changes, policy.ChangeHideLoginNameSuffix(hideLoginNameSuffix)) } + if wm.ErrorMsgPopup != errorMsgPopup { + changes = append(changes, policy.ChangeErrorMsgPopup(errorMsgPopup)) + } + if wm.DisableWatermark != disableWatermark { + changes = append(changes, policy.ChangeDisableWatermark(disableWatermark)) + } if len(changes) == 0 { return nil, false } diff --git a/internal/command/org_policy_label_test.go b/internal/command/org_policy_label_test.go index 149ce1f7fe..e504a1943d 100644 --- a/internal/command/org_policy_label_test.go +++ b/internal/command/org_policy_label_test.go @@ -4,6 +4,7 @@ import ( "context" "testing" + "github.com/golang/mock/gomock" "github.com/stretchr/testify/assert" "github.com/caos/zitadel/internal/domain" @@ -13,6 +14,8 @@ import ( "github.com/caos/zitadel/internal/eventstore/v1/models" "github.com/caos/zitadel/internal/repository/org" "github.com/caos/zitadel/internal/repository/policy" + "github.com/caos/zitadel/internal/static" + "github.com/caos/zitadel/internal/static/mock" ) func TestCommandSide_AddLabelPolicy(t *testing.T) { @@ -44,27 +47,8 @@ func TestCommandSide_AddLabelPolicy(t *testing.T) { args: args{ ctx: context.Background(), policy: &domain.LabelPolicy{ - PrimaryColor: "", - SecondaryColor: "secondary-color", - }, - }, - res: res{ - err: caos_errs.IsErrorInvalidArgument, - }, - }, - { - name: "labelpolicy invalid, invalid argument error", - fields: fields{ - eventstore: eventstoreExpect( - t, - ), - }, - args: args{ - ctx: context.Background(), - orgID: "org1", - policy: &domain.LabelPolicy{ - PrimaryColor: "", - SecondaryColor: "secondary-color", + PrimaryColor: "", + BackgroundColor: "#ffffff", }, }, res: res{ @@ -80,8 +64,16 @@ func TestCommandSide_AddLabelPolicy(t *testing.T) { eventFromEventPusher( org.NewLabelPolicyAddedEvent(context.Background(), &org.NewAggregate("org1", "org1").Aggregate, - "primary-color", - "secondary-color", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, true, ), ), @@ -92,9 +84,17 @@ func TestCommandSide_AddLabelPolicy(t *testing.T) { ctx: context.Background(), orgID: "org1", policy: &domain.LabelPolicy{ - PrimaryColor: "primary-color", - SecondaryColor: "secondary-color", + PrimaryColor: "#ffffff", + BackgroundColor: "#ffffff", + WarnColor: "#ffffff", + FontColor: "#ffffff", + PrimaryColorDark: "#ffffff", + BackgroundColorDark: "#ffffff", + WarnColorDark: "#ffffff", + FontColorDark: "#ffffff", HideLoginNameSuffix: true, + ErrorMsgPopup: true, + DisableWatermark: true, }, }, res: res{ @@ -112,8 +112,16 @@ func TestCommandSide_AddLabelPolicy(t *testing.T) { eventFromEventPusher( org.NewLabelPolicyAddedEvent(context.Background(), &org.NewAggregate("org1", "org1").Aggregate, - "primary-color", - "secondary-color", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, true, ), ), @@ -125,9 +133,17 @@ func TestCommandSide_AddLabelPolicy(t *testing.T) { ctx: context.Background(), orgID: "org1", policy: &domain.LabelPolicy{ - PrimaryColor: "primary-color", - SecondaryColor: "secondary-color", + PrimaryColor: "#ffffff", + BackgroundColor: "#ffffff", + WarnColor: "#ffffff", + FontColor: "#ffffff", + PrimaryColorDark: "#ffffff", + BackgroundColorDark: "#ffffff", + WarnColorDark: "#ffffff", + FontColorDark: "#ffffff", HideLoginNameSuffix: true, + ErrorMsgPopup: true, + DisableWatermark: true, }, }, res: res{ @@ -136,9 +152,17 @@ func TestCommandSide_AddLabelPolicy(t *testing.T) { AggregateID: "org1", ResourceOwner: "org1", }, - PrimaryColor: "primary-color", - SecondaryColor: "secondary-color", + PrimaryColor: "#ffffff", + BackgroundColor: "#ffffff", + WarnColor: "#ffffff", + FontColor: "#ffffff", + PrimaryColorDark: "#ffffff", + BackgroundColorDark: "#ffffff", + WarnColorDark: "#ffffff", + FontColorDark: "#ffffff", HideLoginNameSuffix: true, + ErrorMsgPopup: true, + DisableWatermark: true, }, }, }, @@ -191,27 +215,8 @@ func TestCommandSide_ChangeLabelPolicy(t *testing.T) { args: args{ ctx: context.Background(), policy: &domain.LabelPolicy{ - PrimaryColor: "primary-color", - SecondaryColor: "secondary-color", - }, - }, - res: res{ - err: caos_errs.IsErrorInvalidArgument, - }, - }, - { - name: "labelpolicy invalid, invalid argument error", - fields: fields{ - eventstore: eventstoreExpect( - t, - ), - }, - args: args{ - ctx: context.Background(), - orgID: "org1", - policy: &domain.LabelPolicy{ - PrimaryColor: "", - SecondaryColor: "secondary-color", + PrimaryColor: "#ffffff", + BackgroundColor: "#ffffff", }, }, res: res{ @@ -230,8 +235,9 @@ func TestCommandSide_ChangeLabelPolicy(t *testing.T) { ctx: context.Background(), orgID: "org1", policy: &domain.LabelPolicy{ - PrimaryColor: "primary-color", - SecondaryColor: "secondary-color", + PrimaryColor: "#ffffff", + BackgroundColor: "#ffffff", + WarnColor: "#ffffff", }, }, res: res{ @@ -247,8 +253,16 @@ func TestCommandSide_ChangeLabelPolicy(t *testing.T) { eventFromEventPusher( org.NewLabelPolicyAddedEvent(context.Background(), &org.NewAggregate("org1", "org1").Aggregate, - "primary-color", - "secondary-color", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, true, ), ), @@ -259,9 +273,17 @@ func TestCommandSide_ChangeLabelPolicy(t *testing.T) { ctx: context.Background(), orgID: "org1", policy: &domain.LabelPolicy{ - PrimaryColor: "primary-color", - SecondaryColor: "secondary-color", + PrimaryColor: "#ffffff", + BackgroundColor: "#ffffff", + WarnColor: "#ffffff", + FontColor: "#ffffff", + PrimaryColorDark: "#ffffff", + BackgroundColorDark: "#ffffff", + WarnColorDark: "#ffffff", + FontColorDark: "#ffffff", HideLoginNameSuffix: true, + ErrorMsgPopup: true, + DisableWatermark: true, }, }, res: res{ @@ -277,8 +299,16 @@ func TestCommandSide_ChangeLabelPolicy(t *testing.T) { eventFromEventPusher( org.NewLabelPolicyAddedEvent(context.Background(), &org.NewAggregate("org1", "org1").Aggregate, - "primary-color", - "secondary-color", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, true, ), ), @@ -286,7 +316,20 @@ func TestCommandSide_ChangeLabelPolicy(t *testing.T) { expectPush( []*repository.Event{ eventFromEventPusher( - newLabelPolicyChangedEvent(context.Background(), "org1", "primary-color-change", "secondary-color-change", false), + newLabelPolicyChangedEvent( + context.Background(), + "org1", + "#000000", + "#000000", + "#000000", + "#000000", + "#000000", + "#000000", + "#000000", + "#000000", + false, + false, + false), ), }, ), @@ -296,9 +339,17 @@ func TestCommandSide_ChangeLabelPolicy(t *testing.T) { ctx: context.Background(), orgID: "org1", policy: &domain.LabelPolicy{ - PrimaryColor: "primary-color-change", - SecondaryColor: "secondary-color-change", + PrimaryColor: "#000000", + BackgroundColor: "#000000", + WarnColor: "#000000", + FontColor: "#000000", + PrimaryColorDark: "#000000", + BackgroundColorDark: "#000000", + WarnColorDark: "#000000", + FontColorDark: "#000000", HideLoginNameSuffix: false, + ErrorMsgPopup: false, + DisableWatermark: false, }, }, res: res{ @@ -307,9 +358,17 @@ func TestCommandSide_ChangeLabelPolicy(t *testing.T) { AggregateID: "org1", ResourceOwner: "org1", }, - PrimaryColor: "primary-color-change", - SecondaryColor: "secondary-color-change", + PrimaryColor: "#000000", + BackgroundColor: "#000000", + WarnColor: "#000000", + FontColor: "#000000", + PrimaryColorDark: "#000000", + BackgroundColorDark: "#000000", + WarnColorDark: "#000000", + FontColorDark: "#000000", HideLoginNameSuffix: false, + ErrorMsgPopup: false, + DisableWatermark: false, }, }, }, @@ -333,9 +392,113 @@ func TestCommandSide_ChangeLabelPolicy(t *testing.T) { } } +func TestCommandSide_ActivateLabelPolicy(t *testing.T) { + type fields struct { + eventstore *eventstore.Eventstore + } + type args struct { + ctx context.Context + orgID string + } + type res struct { + err func(error) bool + } + tests := []struct { + name string + fields fields + args args + res res + }{ + { + name: "org id missing, invalid argument error", + fields: fields{ + eventstore: eventstoreExpect( + t, + ), + }, + args: args{ + ctx: context.Background(), + }, + res: res{ + err: caos_errs.IsErrorInvalidArgument, + }, + }, + { + name: "label policy not existing, not found error", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter(), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + }, + res: res{ + err: caos_errs.IsNotFound, + }, + }, + { + name: "activate, ok", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + org.NewLabelPolicyAddedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + ), + expectPush( + []*repository.Event{ + eventFromEventPusher( + org.NewLabelPolicyActivatedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate), + ), + }, + ), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + }, + res: res{}, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + r := &Commands{ + eventstore: tt.fields.eventstore, + } + _, err := r.ActivateLabelPolicy(tt.args.ctx, tt.args.orgID) + if tt.res.err == nil { + assert.NoError(t, err) + } + if tt.res.err != nil && !tt.res.err(err) { + t.Errorf("got wrong err: %v ", err) + } + }) + } +} + func TestCommandSide_RemoveLabelPolicy(t *testing.T) { type fields struct { eventstore *eventstore.Eventstore + static static.Storage } type args struct { ctx context.Context @@ -389,8 +552,16 @@ func TestCommandSide_RemoveLabelPolicy(t *testing.T) { eventFromEventPusher( org.NewLabelPolicyAddedEvent(context.Background(), &org.NewAggregate("org1", "org1").Aggregate, - "primary-color", - "secondary-color", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, true, ), ), @@ -404,6 +575,7 @@ func TestCommandSide_RemoveLabelPolicy(t *testing.T) { }, ), ), + static: mock.NewMockStorage(gomock.NewController(t)).ExpectRemoveObjectNoError(), }, args: args{ ctx: context.Background(), @@ -416,6 +588,7 @@ func TestCommandSide_RemoveLabelPolicy(t *testing.T) { t.Run(tt.name, func(t *testing.T) { r := &Commands{ eventstore: tt.fields.eventstore, + static: tt.fields.static, } _, err := r.RemoveLabelPolicy(tt.args.ctx, tt.args.orgID) if tt.res.err == nil { @@ -428,13 +601,1303 @@ func TestCommandSide_RemoveLabelPolicy(t *testing.T) { } } -func newLabelPolicyChangedEvent(ctx context.Context, orgID, primaryColor, secondaryColor string, hideLoginNameSuffix bool) *org.LabelPolicyChangedEvent { +func TestCommandSide_AddLogoLabelPolicy(t *testing.T) { + type fields struct { + eventstore *eventstore.Eventstore + storage static.Storage + } + type args struct { + ctx context.Context + orgID string + storageKey string + } + type res struct { + want *domain.ObjectDetails + err func(error) bool + } + tests := []struct { + name string + fields fields + args args + res res + }{ + { + name: "orgID empty, invalid argument error", + fields: fields{ + eventstore: eventstoreExpect( + t, + ), + }, + args: args{ + ctx: context.Background(), + storageKey: "key", + }, + res: res{ + err: caos_errs.IsErrorInvalidArgument, + }, + }, + { + name: "storage key empty, invalid argument error", + fields: fields{ + eventstore: eventstoreExpect( + t, + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + }, + res: res{ + err: caos_errs.IsErrorInvalidArgument, + }, + }, + { + name: "label policy not existing, not found error", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter(), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + storageKey: "key", + }, + res: res{ + err: caos_errs.IsNotFound, + }, + }, + { + name: "logo added, ok", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + org.NewLabelPolicyAddedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + ), + expectPush( + []*repository.Event{ + eventFromEventPusher( + org.NewLabelPolicyLogoAddedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "key", + ), + ), + }, + ), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + storageKey: "key", + }, + res: res{ + want: &domain.ObjectDetails{ + ResourceOwner: "org1", + }, + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + r := &Commands{ + eventstore: tt.fields.eventstore, + static: tt.fields.storage, + } + got, err := r.AddLogoLabelPolicy(tt.args.ctx, tt.args.orgID, tt.args.storageKey) + if tt.res.err == nil { + assert.NoError(t, err) + } + if tt.res.err != nil && !tt.res.err(err) { + t.Errorf("got wrong err: %v ", err) + } + if tt.res.err == nil { + assert.Equal(t, tt.res.want, got) + } + }) + } +} + +func TestCommandSide_RemoveLogoLabelPolicy(t *testing.T) { + type fields struct { + eventstore *eventstore.Eventstore + storage static.Storage + } + type args struct { + ctx context.Context + orgID string + storageKey string + } + type res struct { + want *domain.ObjectDetails + err func(error) bool + } + tests := []struct { + name string + fields fields + args args + res res + }{ + { + name: "orgID empty, invalid argument error", + fields: fields{ + eventstore: eventstoreExpect( + t, + ), + }, + args: args{ + ctx: context.Background(), + storageKey: "key", + }, + res: res{ + err: caos_errs.IsErrorInvalidArgument, + }, + }, + { + name: "label policy not existing, not found error", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter(), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + storageKey: "key", + }, + res: res{ + err: caos_errs.IsNotFound, + }, + }, + { + name: "logo added, ok", + fields: fields{ + storage: mock.NewMockStorage(gomock.NewController(t)).ExpectRemoveObjectNoError(), + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + org.NewLabelPolicyAddedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + eventFromEventPusher( + org.NewLabelPolicyLogoAddedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "key", + ), + ), + ), + expectPush( + []*repository.Event{ + eventFromEventPusher( + org.NewLabelPolicyLogoRemovedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "key", + ), + ), + }, + ), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + storageKey: "key", + }, + res: res{ + want: &domain.ObjectDetails{ + ResourceOwner: "org1", + }, + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + r := &Commands{ + eventstore: tt.fields.eventstore, + static: tt.fields.storage, + } + got, err := r.RemoveLogoLabelPolicy(tt.args.ctx, tt.args.orgID) + if tt.res.err == nil { + assert.NoError(t, err) + } + if tt.res.err != nil && !tt.res.err(err) { + t.Errorf("got wrong err: %v ", err) + } + if tt.res.err == nil { + assert.Equal(t, tt.res.want, got) + } + }) + } +} + +func TestCommandSide_AddIconLabelPolicy(t *testing.T) { + type fields struct { + eventstore *eventstore.Eventstore + } + type args struct { + ctx context.Context + orgID string + storageKey string + } + type res struct { + want *domain.ObjectDetails + err func(error) bool + } + tests := []struct { + name string + fields fields + args args + res res + }{ + { + name: "orgID empty, invalid argument error", + fields: fields{ + eventstore: eventstoreExpect( + t, + ), + }, + args: args{ + ctx: context.Background(), + storageKey: "key", + }, + res: res{ + err: caos_errs.IsErrorInvalidArgument, + }, + }, + { + name: "storage key empty, invalid argument error", + fields: fields{ + eventstore: eventstoreExpect( + t, + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + }, + res: res{ + err: caos_errs.IsErrorInvalidArgument, + }, + }, + { + name: "label policy not existing, not found error", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter(), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + storageKey: "key", + }, + res: res{ + err: caos_errs.IsNotFound, + }, + }, + { + name: "icon added, ok", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + org.NewLabelPolicyAddedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + ), + expectPush( + []*repository.Event{ + eventFromEventPusher( + org.NewLabelPolicyIconAddedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "key", + ), + ), + }, + ), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + storageKey: "key", + }, + res: res{ + want: &domain.ObjectDetails{ + ResourceOwner: "org1", + }, + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + r := &Commands{ + eventstore: tt.fields.eventstore, + } + got, err := r.AddIconLabelPolicy(tt.args.ctx, tt.args.orgID, tt.args.storageKey) + if tt.res.err == nil { + assert.NoError(t, err) + } + if tt.res.err != nil && !tt.res.err(err) { + t.Errorf("got wrong err: %v ", err) + } + if tt.res.err == nil { + assert.Equal(t, tt.res.want, got) + } + }) + } +} + +func TestCommandSide_RemoveIconLabelPolicy(t *testing.T) { + type fields struct { + eventstore *eventstore.Eventstore + storage static.Storage + } + type args struct { + ctx context.Context + orgID string + } + type res struct { + want *domain.ObjectDetails + err func(error) bool + } + tests := []struct { + name string + fields fields + args args + res res + }{ + { + name: "orgID empty, invalid argument error", + fields: fields{ + eventstore: eventstoreExpect( + t, + ), + }, + args: args{ + ctx: context.Background(), + orgID: "", + }, + res: res{ + err: caos_errs.IsErrorInvalidArgument, + }, + }, + { + name: "label policy not existing, not found error", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter(), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + }, + res: res{ + err: caos_errs.IsNotFound, + }, + }, + { + name: "icon added, ok", + fields: fields{ + storage: mock.NewMockStorage(gomock.NewController(t)).ExpectRemoveObjectNoError(), + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + org.NewLabelPolicyAddedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + eventFromEventPusher( + org.NewLabelPolicyIconAddedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "key", + ), + ), + ), + expectPush( + []*repository.Event{ + eventFromEventPusher( + org.NewLabelPolicyIconRemovedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "key", + ), + ), + }, + ), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + }, + res: res{ + want: &domain.ObjectDetails{ + ResourceOwner: "org1", + }, + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + r := &Commands{ + eventstore: tt.fields.eventstore, + static: tt.fields.storage, + } + got, err := r.RemoveIconLabelPolicy(tt.args.ctx, tt.args.orgID) + if tt.res.err == nil { + assert.NoError(t, err) + } + if tt.res.err != nil && !tt.res.err(err) { + t.Errorf("got wrong err: %v ", err) + } + if tt.res.err == nil { + assert.Equal(t, tt.res.want, got) + } + }) + } +} + +func TestCommandSide_AddLogoDarkLabelPolicy(t *testing.T) { + type fields struct { + eventstore *eventstore.Eventstore + } + type args struct { + ctx context.Context + orgID string + storageKey string + } + type res struct { + want *domain.ObjectDetails + err func(error) bool + } + tests := []struct { + name string + fields fields + args args + res res + }{ + { + name: "orgID empty, invalid argument error", + fields: fields{ + eventstore: eventstoreExpect( + t, + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + }, + res: res{ + err: caos_errs.IsErrorInvalidArgument, + }, + }, + { + name: "storage key empty, invalid argument error", + fields: fields{ + eventstore: eventstoreExpect( + t, + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + }, + res: res{ + err: caos_errs.IsErrorInvalidArgument, + }, + }, + { + name: "label policy not existing, not found error", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter(), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + storageKey: "key", + }, + res: res{ + err: caos_errs.IsNotFound, + }, + }, + { + name: "logo dark added, ok", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + org.NewLabelPolicyAddedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + ), + expectPush( + []*repository.Event{ + eventFromEventPusher( + org.NewLabelPolicyLogoDarkAddedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "key", + ), + ), + }, + ), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + storageKey: "key", + }, + res: res{ + want: &domain.ObjectDetails{ + ResourceOwner: "org1", + }, + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + r := &Commands{ + eventstore: tt.fields.eventstore, + } + got, err := r.AddLogoDarkLabelPolicy(tt.args.ctx, tt.args.orgID, tt.args.storageKey) + if tt.res.err == nil { + assert.NoError(t, err) + } + if tt.res.err != nil && !tt.res.err(err) { + t.Errorf("got wrong err: %v ", err) + } + if tt.res.err == nil { + assert.Equal(t, tt.res.want, got) + } + }) + } +} + +func TestCommandSide_RemoveLogoDarkLabelPolicy(t *testing.T) { + type fields struct { + eventstore *eventstore.Eventstore + storage static.Storage + } + type args struct { + ctx context.Context + orgID string + storageKey string + } + type res struct { + want *domain.ObjectDetails + err func(error) bool + } + tests := []struct { + name string + fields fields + args args + res res + }{ + { + name: "orgID empty, invalid argument error", + fields: fields{ + eventstore: eventstoreExpect( + t, + ), + }, + args: args{ + ctx: context.Background(), + storageKey: "key", + }, + res: res{ + err: caos_errs.IsErrorInvalidArgument, + }, + }, + { + name: "label policy not existing, not found error", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter(), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + storageKey: "key", + }, + res: res{ + err: caos_errs.IsNotFound, + }, + }, + { + name: "logo dark removed, ok", + fields: fields{ + storage: mock.NewMockStorage(gomock.NewController(t)).ExpectRemoveObjectNoError(), + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + org.NewLabelPolicyAddedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + eventFromEventPusher( + org.NewLabelPolicyLogoDarkAddedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "key", + ), + ), + ), + expectPush( + []*repository.Event{ + eventFromEventPusher( + org.NewLabelPolicyLogoDarkRemovedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "key", + ), + ), + }, + ), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + storageKey: "key", + }, + res: res{ + want: &domain.ObjectDetails{ + ResourceOwner: "org1", + }, + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + r := &Commands{ + eventstore: tt.fields.eventstore, + static: tt.fields.storage, + } + got, err := r.RemoveLogoDarkLabelPolicy(tt.args.ctx, tt.args.orgID) + if tt.res.err == nil { + assert.NoError(t, err) + } + if tt.res.err != nil && !tt.res.err(err) { + t.Errorf("got wrong err: %v ", err) + } + if tt.res.err == nil { + assert.Equal(t, tt.res.want, got) + } + }) + } +} + +func TestCommandSide_AddIconDarkLabelPolicy(t *testing.T) { + type fields struct { + eventstore *eventstore.Eventstore + storage static.Storage + } + type args struct { + ctx context.Context + orgID string + storageKey string + } + type res struct { + want *domain.ObjectDetails + err func(error) bool + } + tests := []struct { + name string + fields fields + args args + res res + }{ + { + name: "orgID empty, invalid argument error", + fields: fields{ + eventstore: eventstoreExpect( + t, + ), + }, + args: args{ + ctx: context.Background(), + storageKey: "key", + }, + res: res{ + err: caos_errs.IsErrorInvalidArgument, + }, + }, + { + name: "storage key empty, invalid argument error", + fields: fields{ + eventstore: eventstoreExpect( + t, + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + }, + res: res{ + err: caos_errs.IsErrorInvalidArgument, + }, + }, + { + name: "label policy not existing, not found error", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter(), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + storageKey: "key", + }, + res: res{ + err: caos_errs.IsNotFound, + }, + }, + { + name: "icon dark added, ok", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + org.NewLabelPolicyAddedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + ), + expectPush( + []*repository.Event{ + eventFromEventPusher( + org.NewLabelPolicyIconDarkAddedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "key", + ), + ), + }, + ), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + storageKey: "key", + }, + res: res{ + want: &domain.ObjectDetails{ + ResourceOwner: "org1", + }, + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + r := &Commands{ + eventstore: tt.fields.eventstore, + } + got, err := r.AddIconDarkLabelPolicy(tt.args.ctx, tt.args.orgID, tt.args.storageKey) + if tt.res.err == nil { + assert.NoError(t, err) + } + if tt.res.err != nil && !tt.res.err(err) { + t.Errorf("got wrong err: %v ", err) + } + if tt.res.err == nil { + assert.Equal(t, tt.res.want, got) + } + }) + } +} + +func TestCommandSide_RemoveIconDarkLabelPolicy(t *testing.T) { + type fields struct { + eventstore *eventstore.Eventstore + storage static.Storage + } + type args struct { + ctx context.Context + orgID string + } + type res struct { + want *domain.ObjectDetails + err func(error) bool + } + tests := []struct { + name string + fields fields + args args + res res + }{ + { + name: "orgID empty, invalid argument error", + fields: fields{ + eventstore: eventstoreExpect( + t, + ), + }, + args: args{ + ctx: context.Background(), + }, + res: res{ + err: caos_errs.IsErrorInvalidArgument, + }, + }, + { + name: "label policy not existing, not found error", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter(), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + }, + res: res{ + err: caos_errs.IsNotFound, + }, + }, + { + name: "icon dark added, ok", + fields: fields{ + storage: mock.NewMockStorage(gomock.NewController(t)).ExpectRemoveObjectNoError(), + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + org.NewLabelPolicyAddedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + eventFromEventPusher( + org.NewLabelPolicyIconDarkAddedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "key", + ), + ), + ), + expectPush( + []*repository.Event{ + eventFromEventPusher( + org.NewLabelPolicyIconDarkRemovedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "key", + ), + ), + }, + ), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + }, + res: res{ + want: &domain.ObjectDetails{ + ResourceOwner: "org1", + }, + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + r := &Commands{ + eventstore: tt.fields.eventstore, + static: tt.fields.storage, + } + got, err := r.RemoveIconDarkLabelPolicy(tt.args.ctx, tt.args.orgID) + if tt.res.err == nil { + assert.NoError(t, err) + } + if tt.res.err != nil && !tt.res.err(err) { + t.Errorf("got wrong err: %v ", err) + } + if tt.res.err == nil { + assert.Equal(t, tt.res.want, got) + } + }) + } +} + +func TestCommandSide_AddFontLabelPolicy(t *testing.T) { + type fields struct { + eventstore *eventstore.Eventstore + } + type args struct { + ctx context.Context + orgID string + storageKey string + } + type res struct { + want *domain.ObjectDetails + err func(error) bool + } + tests := []struct { + name string + fields fields + args args + res res + }{ + { + name: "orgID empty, invalid argument error", + fields: fields{ + eventstore: eventstoreExpect( + t, + ), + }, + args: args{ + ctx: context.Background(), + storageKey: "key", + }, + res: res{ + err: caos_errs.IsErrorInvalidArgument, + }, + }, + { + name: "storage key empty, invalid argument error", + fields: fields{ + eventstore: eventstoreExpect( + t, + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + }, + res: res{ + err: caos_errs.IsErrorInvalidArgument, + }, + }, + { + name: "label policy not existing, not found error", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter(), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + storageKey: "key", + }, + res: res{ + err: caos_errs.IsNotFound, + }, + }, + { + name: "font added, ok", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + org.NewLabelPolicyAddedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + ), + expectPush( + []*repository.Event{ + eventFromEventPusher( + org.NewLabelPolicyFontAddedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "key", + ), + ), + }, + ), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + storageKey: "key", + }, + res: res{ + want: &domain.ObjectDetails{ + ResourceOwner: "org1", + }, + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + r := &Commands{ + eventstore: tt.fields.eventstore, + } + got, err := r.AddFontLabelPolicy(tt.args.ctx, tt.args.orgID, tt.args.storageKey) + if tt.res.err == nil { + assert.NoError(t, err) + } + if tt.res.err != nil && !tt.res.err(err) { + t.Errorf("got wrong err: %v ", err) + } + if tt.res.err == nil { + assert.Equal(t, tt.res.want, got) + } + }) + } +} + +func TestCommandSide_RemoveFontLabelPolicy(t *testing.T) { + type fields struct { + eventstore *eventstore.Eventstore + storage static.Storage + } + type args struct { + ctx context.Context + orgID string + } + type res struct { + want *domain.ObjectDetails + err func(error) bool + } + tests := []struct { + name string + fields fields + args args + res res + }{ + { + name: "orgID empty, invalid argument error", + fields: fields{ + eventstore: eventstoreExpect( + t, + ), + }, + args: args{ + ctx: context.Background(), + }, + res: res{ + err: caos_errs.IsErrorInvalidArgument, + }, + }, + { + name: "label policy not existing, not found error", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter(), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + }, + res: res{ + err: caos_errs.IsNotFound, + }, + }, + { + name: "font added, ok", + fields: fields{ + storage: mock.NewMockStorage(gomock.NewController(t)).ExpectRemoveObjectNoError(), + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + org.NewLabelPolicyAddedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + "#ffffff", + true, + true, + true, + ), + ), + eventFromEventPusher( + org.NewLabelPolicyFontAddedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "key", + ), + ), + ), + expectPush( + []*repository.Event{ + eventFromEventPusher( + org.NewLabelPolicyFontRemovedEvent(context.Background(), + &org.NewAggregate("org1", "org1").Aggregate, + "key", + ), + ), + }, + ), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + }, + res: res{ + want: &domain.ObjectDetails{ + ResourceOwner: "org1", + }, + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + r := &Commands{ + eventstore: tt.fields.eventstore, + static: tt.fields.storage, + } + got, err := r.RemoveFontLabelPolicy(tt.args.ctx, tt.args.orgID) + if tt.res.err == nil { + assert.NoError(t, err) + } + if tt.res.err != nil && !tt.res.err(err) { + t.Errorf("got wrong err: %v ", err) + } + if tt.res.err == nil { + assert.Equal(t, tt.res.want, got) + } + }) + } +} + +func newLabelPolicyChangedEvent(ctx context.Context, orgID, primaryColor, backgroundColor, warnColor, fontColor, primaryColorDark, backgroundColorDark, warnColorDark, fontColorDark string, hideLoginNameSuffix, errMsgPopup, disableWatermark bool) *org.LabelPolicyChangedEvent { event, _ := org.NewLabelPolicyChangedEvent(ctx, &org.NewAggregate(orgID, orgID).Aggregate, []policy.LabelPolicyChanges{ policy.ChangePrimaryColor(primaryColor), - policy.ChangeSecondaryColor(secondaryColor), + policy.ChangeBackgroundColor(backgroundColor), + policy.ChangeWarnColor(warnColor), + policy.ChangeFontColor(fontColor), + policy.ChangePrimaryColorDark(primaryColorDark), + policy.ChangeBackgroundColorDark(backgroundColorDark), + policy.ChangeWarnColorDark(warnColorDark), + policy.ChangeFontColorDark(fontColorDark), policy.ChangeHideLoginNameSuffix(hideLoginNameSuffix), + policy.ChangeErrorMsgPopup(errMsgPopup), + policy.ChangeDisableWatermark(disableWatermark), }, ) return event diff --git a/internal/command/policy_label_model.go b/internal/command/policy_label_model.go index afbbb51102..cfeec60201 100644 --- a/internal/command/policy_label_model.go +++ b/internal/command/policy_label_model.go @@ -9,9 +9,25 @@ import ( type LabelPolicyWriteModel struct { eventstore.WriteModel - PrimaryColor string - SecondaryColor string + PrimaryColor string + BackgroundColor string + WarnColor string + FontColor string + LogoKey string + IconKey string + + PrimaryColorDark string + BackgroundColorDark string + WarnColorDark string + FontColorDark string + LogoDarkKey string + IconDarkKey string + + FontKey string + HideLoginNameSuffix bool + ErrorMsgPopup bool + DisableWatermark bool State domain.PolicyState } @@ -21,19 +37,71 @@ func (wm *LabelPolicyWriteModel) Reduce() error { switch e := event.(type) { case *policy.LabelPolicyAddedEvent: wm.PrimaryColor = e.PrimaryColor - wm.SecondaryColor = e.SecondaryColor + wm.BackgroundColor = e.BackgroundColor + wm.WarnColor = e.WarnColor + wm.FontColor = e.FontColor + wm.PrimaryColorDark = e.PrimaryColorDark + wm.BackgroundColorDark = e.BackgroundColorDark + wm.WarnColorDark = e.WarnColorDark + wm.FontColorDark = e.FontColorDark wm.HideLoginNameSuffix = e.HideLoginNameSuffix + wm.ErrorMsgPopup = e.ErrorMsgPopup + wm.DisableWatermark = e.DisableWatermark wm.State = domain.PolicyStateActive case *policy.LabelPolicyChangedEvent: if e.PrimaryColor != nil { wm.PrimaryColor = *e.PrimaryColor } - if e.SecondaryColor != nil { - wm.SecondaryColor = *e.SecondaryColor + if e.BackgroundColor != nil { + wm.BackgroundColor = *e.BackgroundColor + } + if e.WarnColor != nil { + wm.WarnColor = *e.WarnColor + } + if e.FontColor != nil { + wm.FontColor = *e.FontColor + } + if e.PrimaryColorDark != nil { + wm.PrimaryColorDark = *e.PrimaryColorDark + } + if e.BackgroundColorDark != nil { + wm.BackgroundColorDark = *e.BackgroundColorDark + } + if e.WarnColorDark != nil { + wm.WarnColorDark = *e.WarnColorDark + } + if e.FontColorDark != nil { + wm.FontColorDark = *e.FontColorDark } if e.HideLoginNameSuffix != nil { wm.HideLoginNameSuffix = *e.HideLoginNameSuffix } + if e.ErrorMsgPopup != nil { + wm.ErrorMsgPopup = *e.ErrorMsgPopup + } + if e.DisableWatermark != nil { + wm.DisableWatermark = *e.DisableWatermark + } + case *policy.LabelPolicyLogoAddedEvent: + wm.LogoKey = e.StoreKey + case *policy.LabelPolicyLogoRemovedEvent: + wm.LogoKey = "" + case *policy.LabelPolicyLogoDarkAddedEvent: + wm.LogoDarkKey = e.StoreKey + case *policy.LabelPolicyLogoDarkRemovedEvent: + wm.LogoDarkKey = "" + case *policy.LabelPolicyIconAddedEvent: + wm.IconKey = e.StoreKey + case *policy.LabelPolicyIconRemovedEvent: + wm.IconKey = "" + case *policy.LabelPolicyIconDarkAddedEvent: + wm.IconDarkKey = e.StoreKey + case *policy.LabelPolicyIconDarkRemovedEvent: + wm.IconDarkKey = "" + case *policy.LabelPolicyFontAddedEvent: + wm.FontKey = e.StoreKey + case *policy.LabelPolicyFontRemovedEvent: + wm.FontKey = "" case *policy.LabelPolicyRemovedEvent: wm.State = domain.PolicyStateRemoved } diff --git a/internal/command/setup_step12.go b/internal/command/setup_step12.go index 46db4960c6..da4498ec67 100644 --- a/internal/command/setup_step12.go +++ b/internal/command/setup_step12.go @@ -44,7 +44,7 @@ func (c *Commands) SetupStep12(ctx context.Context, step *Step12) error { LoginPolicyRegistration: step.LoginPolicyRegistration, LoginPolicyUsernameLogin: step.LoginPolicyUsernameLogin, PasswordComplexityPolicy: step.PasswordComplexityPolicy, - LabelPolicy: step.LabelPolicy, + LabelPolicyPrivateLabel: step.LabelPolicy, CustomDomain: step.CustomDomain, }) if err != nil { diff --git a/internal/command/setup_step14.go b/internal/command/setup_step14.go new file mode 100644 index 0000000000..eb56b4684a --- /dev/null +++ b/internal/command/setup_step14.go @@ -0,0 +1,48 @@ +package command + +import ( + "context" + + "github.com/caos/logging" + + "github.com/caos/zitadel/internal/domain" + "github.com/caos/zitadel/internal/eventstore" + iam_repo "github.com/caos/zitadel/internal/repository/iam" + org_repo "github.com/caos/zitadel/internal/repository/org" +) + +type Step14 struct { + ActivateExistingLabelPolicies bool +} + +func (s *Step14) Step() domain.Step { + return domain.Step14 +} + +func (s *Step14) execute(ctx context.Context, commandSide *Commands) error { + return commandSide.SetupStep14(ctx, s) +} + +func (c *Commands) SetupStep14(ctx context.Context, step *Step14) error { + fn := func(iam *IAMWriteModel) ([]eventstore.EventPusher, error) { + iamAgg := IAMAggregateFromWriteModel(&iam.WriteModel) + var events []eventstore.EventPusher + if step.ActivateExistingLabelPolicies { + existingPolicies := NewExistingLabelPoliciesReadModel(ctx) + err := c.eventstore.FilterToQueryReducer(ctx, existingPolicies) + if err != nil { + return nil, err + } + for _, aggID := range existingPolicies.aggregateIDs { + if iamAgg.ID == aggID { + events = append(events, iam_repo.NewLabelPolicyActivatedEvent(ctx, iamAgg)) + continue + } + events = append(events, org_repo.NewLabelPolicyActivatedEvent(ctx, &org_repo.NewAggregate(aggID, aggID).Aggregate)) + } + } + logging.Log("SETUP-M9fsd").Info("activate login policies") + return events, nil + } + return c.setup(ctx, step, fn) +} diff --git a/internal/command/setup_step15.go b/internal/command/setup_step15.go new file mode 100644 index 0000000000..9727a81f2b --- /dev/null +++ b/internal/command/setup_step15.go @@ -0,0 +1,32 @@ +package command + +import ( + "context" + "github.com/caos/logging" + "github.com/caos/zitadel/internal/domain" + "github.com/caos/zitadel/internal/eventstore" +) + +type Step15 struct { + DefaultMailTemplate domain.MailTemplate +} + +func (s *Step15) Step() domain.Step { + return domain.Step15 +} + +func (s *Step15) execute(ctx context.Context, commandSide *Commands) error { + return commandSide.SetupStep15(ctx, s) +} + +func (c *Commands) SetupStep15(ctx context.Context, step *Step15) error { + fn := func(iam *IAMWriteModel) ([]eventstore.EventPusher, error) { + _, mailTemplateEvent, err := c.changeDefaultMailTemplate(ctx, &step.DefaultMailTemplate) + if err != nil { + return nil, err + } + logging.Log("SETUP-2nfsd").Info("default mail template/text set up") + return []eventstore.EventPusher{mailTemplateEvent}, nil + } + return c.setup(ctx, step, fn) +} diff --git a/internal/command/setup_step2.go b/internal/command/setup_step2.go index 46b5327c36..b14189d5a3 100644 --- a/internal/command/setup_step2.go +++ b/internal/command/setup_step2.go @@ -2,15 +2,16 @@ package command import ( "context" + "github.com/caos/logging" + "github.com/caos/zitadel/internal/eventstore" "github.com/caos/zitadel/internal/domain" - iam_model "github.com/caos/zitadel/internal/iam/model" ) type Step2 struct { - DefaultPasswordComplexityPolicy iam_model.PasswordComplexityPolicy + DefaultPasswordComplexityPolicy domain.PasswordComplexityPolicy } func (s *Step2) Step() domain.Step { diff --git a/internal/command/setup_step3.go b/internal/command/setup_step3.go index 840af25858..092b5f229d 100644 --- a/internal/command/setup_step3.go +++ b/internal/command/setup_step3.go @@ -2,15 +2,16 @@ package command import ( "context" + "github.com/caos/logging" + "github.com/caos/zitadel/internal/eventstore" "github.com/caos/zitadel/internal/domain" - iam_model "github.com/caos/zitadel/internal/iam/model" ) type Step3 struct { - DefaultPasswordAgePolicy iam_model.PasswordAgePolicy + DefaultPasswordAgePolicy domain.PasswordAgePolicy } func (s *Step3) Step() domain.Step { diff --git a/internal/command/setup_step4.go b/internal/command/setup_step4.go index 480f3addc9..0216574c50 100644 --- a/internal/command/setup_step4.go +++ b/internal/command/setup_step4.go @@ -2,15 +2,16 @@ package command import ( "context" + "github.com/caos/logging" + "github.com/caos/zitadel/internal/eventstore" "github.com/caos/zitadel/internal/domain" - iam_model "github.com/caos/zitadel/internal/iam/model" ) type Step4 struct { - DefaultPasswordLockoutPolicy iam_model.PasswordLockoutPolicy + DefaultPasswordLockoutPolicy domain.PasswordLockoutPolicy } func (s *Step4) Step() domain.Step { diff --git a/internal/command/setup_step5.go b/internal/command/setup_step5.go index 33d2e68a51..d23ceb2a3d 100644 --- a/internal/command/setup_step5.go +++ b/internal/command/setup_step5.go @@ -2,15 +2,16 @@ package command import ( "context" + "github.com/caos/logging" + "github.com/caos/zitadel/internal/eventstore" "github.com/caos/zitadel/internal/domain" - iam_model "github.com/caos/zitadel/internal/iam/model" ) type Step5 struct { - DefaultOrgIAMPolicy iam_model.OrgIAMPolicy + DefaultOrgIAMPolicy domain.OrgIAMPolicy } func (s *Step5) Step() domain.Step { diff --git a/internal/command/setup_step6.go b/internal/command/setup_step6.go index 70818f1f7a..095e304903 100644 --- a/internal/command/setup_step6.go +++ b/internal/command/setup_step6.go @@ -2,15 +2,16 @@ package command import ( "context" + "github.com/caos/logging" + "github.com/caos/zitadel/internal/eventstore" "github.com/caos/zitadel/internal/domain" - iam_model "github.com/caos/zitadel/internal/iam/model" ) type Step6 struct { - DefaultLabelPolicy iam_model.LabelPolicy + DefaultLabelPolicy domain.LabelPolicy } func (s *Step6) Step() domain.Step { @@ -24,10 +25,7 @@ func (s *Step6) execute(ctx context.Context, commandSide *Commands) error { func (c *Commands) SetupStep6(ctx context.Context, step *Step6) error { fn := func(iam *IAMWriteModel) ([]eventstore.EventPusher, error) { iamAgg := IAMAggregateFromWriteModel(&iam.WriteModel) - event, err := c.addDefaultLabelPolicy(ctx, iamAgg, NewIAMLabelPolicyWriteModel(), &domain.LabelPolicy{ - PrimaryColor: step.DefaultLabelPolicy.PrimaryColor, - SecondaryColor: step.DefaultLabelPolicy.SecondaryColor, - }) + event, err := c.addDefaultLabelPolicy(ctx, iamAgg, NewIAMLabelPolicyWriteModel(), &step.DefaultLabelPolicy) if err != nil { return nil, err } diff --git a/internal/command/statics.go b/internal/command/statics.go new file mode 100644 index 0000000000..bfd9a327e7 --- /dev/null +++ b/internal/command/statics.go @@ -0,0 +1,27 @@ +package command + +import ( + "context" + "io" + + "github.com/caos/zitadel/internal/domain" + caos_errors "github.com/caos/zitadel/internal/errors" +) + +func (c *Commands) UploadAsset(ctx context.Context, bucketName, objectName, contentType string, file io.Reader, size int64) (*domain.AssetInfo, error) { + if c.static == nil { + return nil, caos_errors.ThrowPreconditionFailed(nil, "STATIC-Fm92f", "Errors.Assets.Store.NotConfigured") + } + return c.static.PutObject(ctx, + bucketName, + objectName, + contentType, + file, + size, + true, + ) +} + +func (c *Commands) RemoveAsset(ctx context.Context, bucketName, storeKey string) error { + return c.static.RemoveObject(ctx, bucketName, storeKey) +} diff --git a/internal/command/user_human.go b/internal/command/user_human.go index 4a2d3aff1b..a674ec0c79 100644 --- a/internal/command/user_human.go +++ b/internal/command/user_human.go @@ -23,7 +23,7 @@ func (c *Commands) getHuman(ctx context.Context, userID, resourceowner string) ( func (c *Commands) AddHuman(ctx context.Context, orgID string, human *domain.Human) (*domain.Human, error) { if orgID == "" { - return nil, caos_errs.ThrowInvalidArgument(nil, "COMMAND-4M90d", "Errors.ResourceOwnerMissing") + return nil, caos_errs.ThrowInvalidArgument(nil, "COMMAND-XYFk9", "Errors.ResourceOwnerMissing") } orgIAMPolicy, err := c.getOrgIAMPolicy(ctx, orgID) if err != nil { @@ -81,7 +81,7 @@ func (c *Commands) ImportHuman(ctx context.Context, orgID string, human *domain. func (c *Commands) addHuman(ctx context.Context, orgID string, human *domain.Human, orgIAMPolicy *domain.OrgIAMPolicy, pwPolicy *domain.PasswordComplexityPolicy) ([]eventstore.EventPusher, *HumanWriteModel, error) { if orgID == "" || !human.IsValid() { - return nil, nil, caos_errs.ThrowInvalidArgument(nil, "COMMAND-4M90d", "Errors.User.Invalid") + return nil, nil, caos_errs.ThrowInvalidArgument(nil, "COMMAND-67Ms8", "Errors.User.Invalid") } if human.Password != nil && human.SecretString != "" { human.ChangeRequired = true @@ -91,7 +91,7 @@ func (c *Commands) addHuman(ctx context.Context, orgID string, human *domain.Hum func (c *Commands) importHuman(ctx context.Context, orgID string, human *domain.Human, orgIAMPolicy *domain.OrgIAMPolicy, pwPolicy *domain.PasswordComplexityPolicy) ([]eventstore.EventPusher, *HumanWriteModel, error) { if orgID == "" || !human.IsValid() { - return nil, nil, caos_errs.ThrowInvalidArgument(nil, "COMMAND-4M90d", "Errors.User.Invalid") + return nil, nil, caos_errs.ThrowInvalidArgument(nil, "COMMAND-00p2b", "Errors.User.Invalid") } return c.createHuman(ctx, orgID, human, nil, false, orgIAMPolicy, pwPolicy) } diff --git a/internal/command/user_human_avatar.go b/internal/command/user_human_avatar.go new file mode 100644 index 0000000000..18458b2d73 --- /dev/null +++ b/internal/command/user_human_avatar.go @@ -0,0 +1,63 @@ +package command + +import ( + "context" + + "github.com/caos/zitadel/internal/domain" + caos_errs "github.com/caos/zitadel/internal/errors" + "github.com/caos/zitadel/internal/repository/user" +) + +func (c *Commands) AddHumanAvatar(ctx context.Context, orgID, userID, storageKey string) (*domain.ObjectDetails, error) { + if userID == "" { + return nil, caos_errs.ThrowInvalidArgument(nil, "USER-Ba5Ds", "Errors.IDMissing") + } + if storageKey == "" { + return nil, caos_errs.ThrowInvalidArgument(nil, "USER-1Xyud", "Errors.Assets.EmptyKey") + } + existingUser, err := c.userWriteModelByID(ctx, userID, orgID) + if err != nil { + return nil, err + } + + if existingUser.UserState == domain.UserStateUnspecified || existingUser.UserState == domain.UserStateDeleted { + return nil, caos_errs.ThrowNotFound(nil, "USER-vJ3fS", "Errors.Users.NotFound") + } + userAgg := UserAggregateFromWriteModel(&existingUser.WriteModel) + pushedEvents, err := c.eventstore.PushEvents(ctx, user.NewHumanAvatarAddedEvent(ctx, userAgg, storageKey)) + if err != nil { + return nil, err + } + err = AppendAndReduce(existingUser, pushedEvents...) + if err != nil { + return nil, err + } + return writeModelToObjectDetails(&existingUser.WriteModel), nil +} + +func (c *Commands) RemoveHumanAvatar(ctx context.Context, orgID, userID string) (*domain.ObjectDetails, error) { + if userID == "" { + return nil, caos_errs.ThrowInvalidArgument(nil, "USER-1B8sd", "Errors.IDMissing") + } + existingUser, err := c.getHumanWriteModelByID(ctx, userID, orgID) + if err != nil { + return nil, err + } + if existingUser.UserState == domain.UserStateUnspecified || existingUser.UserState == domain.UserStateDeleted { + return nil, caos_errs.ThrowNotFound(nil, "USER-35N8f", "Errors.Users.NotFound") + } + err = c.RemoveAsset(ctx, orgID, existingUser.Avatar) + if err != nil { + return nil, err + } + userAgg := UserAggregateFromWriteModel(&existingUser.WriteModel) + pushedEvents, err := c.eventstore.PushEvents(ctx, user.NewHumanAvatarRemovedEvent(ctx, userAgg, existingUser.Avatar)) + if err != nil { + return nil, err + } + err = AppendAndReduce(existingUser, pushedEvents...) + if err != nil { + return nil, err + } + return writeModelToObjectDetails(&existingUser.WriteModel), nil +} diff --git a/internal/command/user_human_avatar_test.go b/internal/command/user_human_avatar_test.go new file mode 100644 index 0000000000..ea2d31e327 --- /dev/null +++ b/internal/command/user_human_avatar_test.go @@ -0,0 +1,319 @@ +package command + +import ( + "context" + "testing" + + "github.com/golang/mock/gomock" + "github.com/stretchr/testify/assert" + "golang.org/x/text/language" + + "github.com/caos/zitadel/internal/domain" + caos_errs "github.com/caos/zitadel/internal/errors" + "github.com/caos/zitadel/internal/eventstore" + "github.com/caos/zitadel/internal/eventstore/repository" + "github.com/caos/zitadel/internal/repository/user" + "github.com/caos/zitadel/internal/static" + "github.com/caos/zitadel/internal/static/mock" +) + +func TestCommandSide_AddHumanAvatar(t *testing.T) { + type fields struct { + eventstore *eventstore.Eventstore + } + type args struct { + ctx context.Context + orgID string + userID string + storageKey string + } + type res struct { + want *domain.ObjectDetails + err func(error) bool + } + tests := []struct { + name string + fields fields + args args + res res + }{ + { + name: "userID empty, invalid argument error", + fields: fields{ + eventstore: eventstoreExpect( + t, + ), + }, + args: args{ + ctx: context.Background(), + storageKey: "key", + }, + res: res{ + err: caos_errs.IsErrorInvalidArgument, + }, + }, + { + name: "storage key empty, invalid argument error", + fields: fields{ + eventstore: eventstoreExpect( + t, + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + userID: "user1", + }, + res: res{ + err: caos_errs.IsErrorInvalidArgument, + }, + }, + { + name: "user not existing, not found error", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter(), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + userID: "user1", + storageKey: "key", + }, + res: res{ + err: caos_errs.IsNotFound, + }, + }, + { + name: "logo added, ok", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + user.NewHumanAddedEvent(context.Background(), + &user.NewAggregate("user1", "org1").Aggregate, + "username", + "firstname", + "lastname", + "nickname", + "displayname", + language.Und, + domain.GenderUnspecified, + "email@test.ch", + true, + ), + ), + ), + expectPush( + []*repository.Event{ + eventFromEventPusher( + user.NewHumanAvatarAddedEvent(context.Background(), + &user.NewAggregate("user1", "org1").Aggregate, + "key", + ), + ), + }, + ), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + userID: "user1", + storageKey: "key", + }, + res: res{ + want: &domain.ObjectDetails{ + ResourceOwner: "org1", + }, + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + r := &Commands{ + eventstore: tt.fields.eventstore, + } + got, err := r.AddHumanAvatar(tt.args.ctx, tt.args.orgID, tt.args.userID, tt.args.storageKey) + if tt.res.err == nil { + assert.NoError(t, err) + } + if tt.res.err != nil && !tt.res.err(err) { + t.Errorf("got wrong err: %v ", err) + } + if tt.res.err == nil { + assert.Equal(t, tt.res.want, got) + } + }) + } +} + +func TestCommandSide_RemoveHumanAvatar(t *testing.T) { + type fields struct { + eventstore *eventstore.Eventstore + storage static.Storage + } + type args struct { + ctx context.Context + orgID string + userID string + storageKey string + } + type res struct { + want *domain.ObjectDetails + err func(error) bool + } + tests := []struct { + name string + fields fields + args args + res res + }{ + { + name: "userID empty, invalid argument error", + fields: fields{ + eventstore: eventstoreExpect( + t, + ), + }, + args: args{ + ctx: context.Background(), + storageKey: "key", + }, + res: res{ + err: caos_errs.IsErrorInvalidArgument, + }, + }, + { + name: "user not existing, not found error", + fields: fields{ + eventstore: eventstoreExpect( + t, + expectFilter(), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + userID: "user1", + storageKey: "key", + }, + res: res{ + err: caos_errs.IsNotFound, + }, + }, + { + name: "file remove error, not found error", + fields: fields{ + storage: mock.NewMockStorage(gomock.NewController(t)).ExpectRemoveObjectError(), + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + user.NewHumanAddedEvent(context.Background(), + &user.NewAggregate("user1", "org1").Aggregate, + "username", + "firstname", + "lastname", + "nickname", + "displayname", + language.Und, + domain.GenderUnspecified, + "email@test.ch", + true, + ), + ), + eventFromEventPusher( + user.NewHumanAvatarAddedEvent(context.Background(), + &user.NewAggregate("user1", "org1").Aggregate, + "key", + ), + ), + ), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + userID: "user1", + storageKey: "key", + }, + res: res{ + err: caos_errs.IsInternal, + }, + }, + { + name: "logo removed, ok", + fields: fields{ + storage: mock.NewMockStorage(gomock.NewController(t)).ExpectRemoveObjectNoError(), + eventstore: eventstoreExpect( + t, + expectFilter( + eventFromEventPusher( + user.NewHumanAddedEvent(context.Background(), + &user.NewAggregate("user1", "org1").Aggregate, + "username", + "firstname", + "lastname", + "nickname", + "displayname", + language.Und, + domain.GenderUnspecified, + "email@test.ch", + true, + ), + ), + eventFromEventPusher( + user.NewHumanAvatarAddedEvent(context.Background(), + &user.NewAggregate("user1", "org1").Aggregate, + "key", + ), + ), + ), + expectPush( + []*repository.Event{ + eventFromEventPusher( + user.NewHumanAvatarRemovedEvent(context.Background(), + &user.NewAggregate("user1", "org1").Aggregate, + "key", + ), + ), + }, + ), + ), + }, + args: args{ + ctx: context.Background(), + orgID: "org1", + userID: "user1", + storageKey: "key", + }, + res: res{ + want: &domain.ObjectDetails{ + ResourceOwner: "org1", + }, + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + r := &Commands{ + eventstore: tt.fields.eventstore, + static: tt.fields.storage, + } + got, err := r.RemoveHumanAvatar(tt.args.ctx, tt.args.orgID, tt.args.userID) + if tt.res.err == nil { + assert.NoError(t, err) + } + if tt.res.err != nil && !tt.res.err(err) { + t.Errorf("got wrong err: %v ", err) + } + if tt.res.err == nil { + assert.Equal(t, tt.res.want, got) + } + }) + } +} diff --git a/internal/command/user_human_model.go b/internal/command/user_human_model.go index b1c7811ce2..4b4456a222 100644 --- a/internal/command/user_human_model.go +++ b/internal/command/user_human_model.go @@ -1,11 +1,12 @@ package command import ( + "golang.org/x/text/language" + "github.com/caos/zitadel/internal/crypto" "github.com/caos/zitadel/internal/domain" "github.com/caos/zitadel/internal/eventstore" "github.com/caos/zitadel/internal/repository/user" - "golang.org/x/text/language" ) type HumanWriteModel struct { @@ -19,6 +20,7 @@ type HumanWriteModel struct { DisplayName string PreferredLanguage language.Tag Gender domain.Gender + Avatar string Email string IsEmailVerified bool @@ -74,6 +76,10 @@ func (wm *HumanWriteModel) Reduce() error { wm.reduceHumanPhoneRemovedEvent() case *user.HumanPasswordChangedEvent: wm.reduceHumanPasswordChangedEvent(e) + case *user.HumanAvatarAddedEvent: + wm.Avatar = e.StoreKey + case *user.HumanAvatarRemovedEvent: + wm.Avatar = "" case *user.UserLockedEvent: if wm.UserState != domain.UserStateDeleted { wm.UserState = domain.UserStateLocked @@ -112,6 +118,8 @@ func (wm *HumanWriteModel) Query() *eventstore.SearchQueryBuilder { user.HumanPhoneChangedType, user.HumanPhoneVerifiedType, user.HumanPhoneRemovedType, + user.HumanAvatarAddedType, + user.HumanAvatarRemovedType, user.HumanPasswordChangedType, user.UserLockedType, user.UserUnlockedType, diff --git a/internal/command/user_human_phone_test.go b/internal/command/user_human_phone_test.go index 8b8e5a519c..60eaa86330 100644 --- a/internal/command/user_human_phone_test.go +++ b/internal/command/user_human_phone_test.go @@ -828,70 +828,70 @@ func TestCommandSide_RemoveHumanPhone(t *testing.T) { args args res res }{ - { - name: "userid missing, invalid argument error", - fields: fields{ - eventstore: eventstoreExpect( - t, - ), - }, - args: args{ - ctx: context.Background(), - resourceOwner: "org1", - }, - res: res{ - err: caos_errs.IsErrorInvalidArgument, - }, - }, - { - name: "user not existing, precondition error", - fields: fields{ - eventstore: eventstoreExpect( - t, - expectFilter(), - ), - }, - args: args{ - ctx: context.Background(), - userID: "user1", - resourceOwner: "org1", - }, - res: res{ - err: caos_errs.IsPreconditionFailed, - }, - }, - { - name: "phone not existing, precondition error", - fields: fields{ - eventstore: eventstoreExpect( - t, - expectFilter( - eventFromEventPusher( - user.NewHumanAddedEvent(context.Background(), - &user.NewAggregate("user1", "org1").Aggregate, - "username", - "firstname", - "lastname", - "nickname", - "displayname", - language.German, - domain.GenderUnspecified, - "email@test.ch", - true, - ), - ), - ), - ), - }, - args: args{ - ctx: context.Background(), - userID: "user1", - resourceOwner: "org1", - }, - res: res{ - err: caos_errs.IsNotFound, - }, - }, + //{ + // name: "userid missing, invalid argument error", + // fields: fields{ + // eventstore: eventstoreExpect( + // t, + // ), + // }, + // args: args{ + // ctx: context.Background(), + // resourceOwner: "org1", + // }, + // res: res{ + // err: caos_errs.IsErrorInvalidArgument, + // }, + //}, + //{ + // name: "user not existing, precondition error", + // fields: fields{ + // eventstore: eventstoreExpect( + // t, + // expectFilter(), + // ), + // }, + // args: args{ + // ctx: context.Background(), + // userID: "user1", + // resourceOwner: "org1", + // }, + // res: res{ + // err: caos_errs.IsPreconditionFailed, + // }, + //}, + //{ + // name: "phone not existing, precondition error", + // fields: fields{ + // eventstore: eventstoreExpect( + // t, + // expectFilter( + // eventFromEventPusher( + // user.NewHumanAddedEvent(context.Background(), + // &user.NewAggregate("user1", "org1").Aggregate, + // "username", + // "firstname", + // "lastname", + // "nickname", + // "displayname", + // language.German, + // domain.GenderUnspecified, + // "email@test.ch", + // true, + // ), + // ), + // ), + // ), + // }, + // args: args{ + // ctx: context.Background(), + // userID: "user1", + // resourceOwner: "org1", + // }, + // res: res{ + // err: caos_errs.IsNotFound, + // }, + //}, { name: "remove phone, ok", fields: fields{ diff --git a/internal/domain/asset.go b/internal/domain/asset.go index be7c7588cc..bd778260c8 100644 --- a/internal/domain/asset.go +++ b/internal/domain/asset.go @@ -2,6 +2,25 @@ package domain import "time" +const ( + UsersAssetPath = "users" + AvatarAssetPath = "/avatar" + + policyPrefix = "policy" + LabelPolicyPrefix = policyPrefix + "/label" + labelPolicyLogoPrefix = LabelPolicyPrefix + "/logo" + labelPolicyIconPrefix = LabelPolicyPrefix + "/icon" + labelPolicyFontPrefix = LabelPolicyPrefix + "/font" + Dark = "dark" + + CssPath = LabelPolicyPrefix + "/css" + CssVariablesFileName = "variables.css" + + LabelPolicyLogoPath = labelPolicyLogoPrefix + LabelPolicyIconPath = labelPolicyIconPrefix + LabelPolicyFontPath = labelPolicyFontPrefix +) + type AssetInfo struct { Bucket string Key string @@ -12,4 +31,9 @@ type AssetInfo struct { VersionID string Expiration time.Time AutheticatedURL string + ContentType string +} + +func GetHumanAvatarAssetPath(userID string) string { + return UsersAssetPath + "/" + userID + AvatarAssetPath } diff --git a/internal/domain/auth_request.go b/internal/domain/auth_request.go index b055e39485..b57448850c 100644 --- a/internal/domain/auth_request.go +++ b/internal/domain/auth_request.go @@ -30,6 +30,8 @@ type AuthRequest struct { UserName string LoginName string DisplayName string + AvatarKey string + PresignedAvatar string UserOrgID string RequestedOrgID string RequestedOrgName string @@ -108,11 +110,12 @@ func (a *AuthRequest) WithCurrentInfo(info *BrowserInfo) *AuthRequest { return a } -func (a *AuthRequest) SetUserInfo(userID, userName, loginName, displayName, userOrgID string) { +func (a *AuthRequest) SetUserInfo(userID, userName, loginName, displayName, avatar, userOrgID string) { a.UserID = userID a.UserName = userName a.LoginName = loginName a.DisplayName = displayName + a.AvatarKey = avatar a.UserOrgID = userOrgID } diff --git a/internal/domain/features.go b/internal/domain/features.go index 17a29369ef..e1dfeb84d2 100644 --- a/internal/domain/features.go +++ b/internal/domain/features.go @@ -16,6 +16,8 @@ const ( FeatureLoginPolicyPasswordReset = FeatureLoginPolicy + ".password_reset" FeaturePasswordComplexityPolicy = "password_complexity_policy" FeatureLabelPolicy = "label_policy" + FeatureLabelPolicyPrivateLabel = FeatureLabelPolicy + ".private_label" + FeatureLabelPolicyWatermark = FeatureLabelPolicy + ".watermark" FeatureCustomDomain = "custom_domain" ) @@ -36,7 +38,8 @@ type Features struct { LoginPolicyUsernameLogin bool LoginPolicyPasswordReset bool PasswordComplexityPolicy bool - LabelPolicy bool + LabelPolicyPrivateLabel bool + LabelPolicyWatermark bool CustomDomain bool } diff --git a/internal/domain/next_step.go b/internal/domain/next_step.go index 6c5b97310c..396258b1ef 100644 --- a/internal/domain/next_step.go +++ b/internal/domain/next_step.go @@ -47,6 +47,7 @@ type UserSelection struct { LoginName string UserSessionState UserSessionState SelectionPossible bool + AvatarKey string } type UserSessionState int32 diff --git a/internal/domain/policy_label.go b/internal/domain/policy_label.go index 322036837e..56fe87dfde 100644 --- a/internal/domain/policy_label.go +++ b/internal/domain/policy_label.go @@ -1,18 +1,84 @@ package domain import ( + "regexp" + + caos_errs "github.com/caos/zitadel/internal/errors" "github.com/caos/zitadel/internal/eventstore/v1/models" ) +var colorRegex = regexp.MustCompile("^$|^#([A-Fa-f0-9]{6}|[A-Fa-f0-9]{3})$") + type LabelPolicy struct { models.ObjectRoot - Default bool - PrimaryColor string - SecondaryColor string + State LabelPolicyState + Default bool + + PrimaryColor string + BackgroundColor string + WarnColor string + FontColor string + LogoURL string + IconURL string + + PrimaryColorDark string + BackgroundColorDark string + WarnColorDark string + FontColorDark string + LogoDarkURL string + IconDarkURL string + + Font string + HideLoginNameSuffix bool + ErrorMsgPopup bool + DisableWatermark bool } -func (p *LabelPolicy) IsValid() bool { - return p.PrimaryColor != "" && p.SecondaryColor != "" +type LabelPolicyState int32 + +const ( + LabelPolicyStateUnspecified LabelPolicyState = iota + LabelPolicyStateActive + LabelPolicyStateRemoved + LabelPolicyStatePreview + + labelPolicyStateCount +) + +func (f LabelPolicy) IsValid() error { + if !colorRegex.MatchString(f.PrimaryColor) { + return caos_errs.ThrowInvalidArgument(nil, "POLICY-391dG", "Errors.Policy.Label.Invalid.PrimaryColor") + } + if !colorRegex.MatchString(f.BackgroundColor) { + return caos_errs.ThrowInvalidArgument(nil, "POLICY-502F1", "Errors.Policy.Label.Invalid.BackgroundColor") + } + if !colorRegex.MatchString(f.WarnColor) { + return caos_errs.ThrowInvalidArgument(nil, "POLICY-nvw33", "Errors.Policy.Label.Invalid.WarnColor") + } + if !colorRegex.MatchString(f.FontColor) { + return caos_errs.ThrowInvalidArgument(nil, "POLICY-93mSf", "Errors.Policy.Label.Invalid.FontColor") + } + if !colorRegex.MatchString(f.PrimaryColorDark) { + return caos_errs.ThrowInvalidArgument(nil, "POLICY-391dG", "Errors.Policy.Label.Invalid.PrimaryColorDark") + } + if !colorRegex.MatchString(f.BackgroundColorDark) { + return caos_errs.ThrowInvalidArgument(nil, "POLICY-llsp2", "Errors.Policy.Label.Invalid.BackgroundColorDark") + } + if !colorRegex.MatchString(f.WarnColorDark) { + return caos_errs.ThrowInvalidArgument(nil, "POLICY-2b6sf", "Errors.Policy.Label.Invalid.WarnColorDark") + } + if !colorRegex.MatchString(f.FontColorDark) { + return caos_errs.ThrowInvalidArgument(nil, "POLICY-3M0fs", "Errors.Policy.Label.Invalid.FontColorDark") + } + return nil +} + +func (f LabelPolicyState) Valid() bool { + return f >= 0 && f < labelPolicyStateCount +} + +func (s LabelPolicyState) Exists() bool { + return s != LabelPolicyStateUnspecified && s != LabelPolicyStateRemoved } diff --git a/internal/domain/policy_label_test.go b/internal/domain/policy_label_test.go new file mode 100644 index 0000000000..b60307396c --- /dev/null +++ b/internal/domain/policy_label_test.go @@ -0,0 +1,505 @@ +package domain + +import ( + "testing" + + "github.com/stretchr/testify/assert" + + caos_errs "github.com/caos/zitadel/internal/errors" +) + +func TestLabelPolicyPrimaryColorValid(t *testing.T) { + type args struct { + policy *LabelPolicy + } + tests := []struct { + name string + args args + err func(error) bool + }{ + { + name: "empty primary, valid", + args: args{ + policy: &LabelPolicy{PrimaryColor: ""}, + }, + }, + { + name: "color code with 6 characters, valid", + args: args{ + policy: &LabelPolicy{PrimaryColor: "#ffffff"}, + }, + }, + { + name: "color code with 3 characters, valid", + args: args{ + policy: &LabelPolicy{PrimaryColor: "#000"}, + }, + }, + { + name: "color code with wrong characters, invalid", + args: args{ + policy: &LabelPolicy{PrimaryColor: "#0f9wfm"}, + }, + err: caos_errs.IsErrorInvalidArgument, + }, + { + name: "color code with wrong count of characters, invalid", + args: args{ + policy: &LabelPolicy{PrimaryColor: "#00"}, + }, + err: caos_errs.IsErrorInvalidArgument, + }, + { + name: "color code with no #, invalid", + args: args{ + policy: &LabelPolicy{PrimaryColor: "#00"}, + }, + err: caos_errs.IsErrorInvalidArgument, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + err := tt.args.policy.IsValid() + if tt.err == nil { + assert.NoError(t, err) + } + if tt.err != nil && !tt.err(err) { + t.Errorf("got wrong err: %v ", err) + } + }) + } +} + +func TestLabelPolicyBackgroundColorValid(t *testing.T) { + type args struct { + policy *LabelPolicy + } + tests := []struct { + name string + args args + err func(error) bool + }{ + { + name: "empty background, valid", + args: args{ + policy: &LabelPolicy{BackgroundColor: ""}, + }, + }, + { + name: "color code with 6 characters, valid", + args: args{ + policy: &LabelPolicy{BackgroundColor: "#ffffff"}, + }, + }, + { + name: "color code with 3 characters, valid", + args: args{ + policy: &LabelPolicy{BackgroundColor: "#000"}, + }, + }, + { + name: "color code with wrong characters, invalid", + args: args{ + policy: &LabelPolicy{BackgroundColor: "#0f9wfm"}, + }, + err: caos_errs.IsErrorInvalidArgument, + }, + { + name: "color code with wrong count of characters, invalid", + args: args{ + policy: &LabelPolicy{BackgroundColor: "#00"}, + }, + err: caos_errs.IsErrorInvalidArgument, + }, + { + name: "color code with no #, invalid", + args: args{ + policy: &LabelPolicy{BackgroundColor: "#00"}, + }, + err: caos_errs.IsErrorInvalidArgument, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + err := tt.args.policy.IsValid() + if tt.err == nil { + assert.NoError(t, err) + } + if tt.err != nil && !tt.err(err) { + t.Errorf("got wrong err: %v ", err) + } + }) + } +} + +func TestLabelPolicyWarnColorValid(t *testing.T) { + type args struct { + policy *LabelPolicy + } + tests := []struct { + name string + args args + err func(error) bool + }{ + { + name: "empty warn, valid", + args: args{ + policy: &LabelPolicy{WarnColor: ""}, + }, + }, + { + name: "color code with 6 characters, valid", + args: args{ + policy: &LabelPolicy{WarnColor: "#ffffff"}, + }, + }, + { + name: "color code with 3 characters, valid", + args: args{ + policy: &LabelPolicy{WarnColor: "#000"}, + }, + }, + { + name: "color code with wrong characters, invalid", + args: args{ + policy: &LabelPolicy{WarnColor: "#0f9wfm"}, + }, + err: caos_errs.IsErrorInvalidArgument, + }, + { + name: "color code with wrong count of characters, invalid", + args: args{ + policy: &LabelPolicy{WarnColor: "#00"}, + }, + err: caos_errs.IsErrorInvalidArgument, + }, + { + name: "color code with no #, invalid", + args: args{ + policy: &LabelPolicy{WarnColor: "#00"}, + }, + err: caos_errs.IsErrorInvalidArgument, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + err := tt.args.policy.IsValid() + if tt.err == nil { + assert.NoError(t, err) + } + if tt.err != nil && !tt.err(err) { + t.Errorf("got wrong err: %v ", err) + } + }) + } +} + +func TestLabelPolicyFontColorValid(t *testing.T) { + type args struct { + policy *LabelPolicy + } + tests := []struct { + name string + args args + err func(error) bool + }{ + { + name: "empty font, valid", + args: args{ + policy: &LabelPolicy{FontColor: ""}, + }, + }, + { + name: "color code with 6 characters, valid", + args: args{ + policy: &LabelPolicy{FontColor: "#ffffff"}, + }, + }, + { + name: "color code with 3 characters, valid", + args: args{ + policy: &LabelPolicy{FontColor: "#000"}, + }, + }, + { + name: "color code with wrong characters, invalid", + args: args{ + policy: &LabelPolicy{FontColor: "#0f9wfm"}, + }, + err: caos_errs.IsErrorInvalidArgument, + }, + { + name: "color code with wrong count of characters, invalid", + args: args{ + policy: &LabelPolicy{FontColor: "#00"}, + }, + err: caos_errs.IsErrorInvalidArgument, + }, + { + name: "color code with no #, invalid", + args: args{ + policy: &LabelPolicy{FontColor: "#00"}, + }, + err: caos_errs.IsErrorInvalidArgument, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + err := tt.args.policy.IsValid() + if tt.err == nil { + assert.NoError(t, err) + } + if tt.err != nil && !tt.err(err) { + t.Errorf("got wrong err: %v ", err) + } + }) + } +} + +func TestLabelPolicyPrimaryColorDarkValid(t *testing.T) { + type args struct { + policy *LabelPolicy + } + tests := []struct { + name string + args args + err func(error) bool + }{ + { + name: "empty primary dark, valid", + args: args{ + policy: &LabelPolicy{PrimaryColorDark: ""}, + }, + }, + { + name: "color code with 6 characters, valid", + args: args{ + policy: &LabelPolicy{PrimaryColorDark: "#ffffff"}, + }, + }, + { + name: "color code with 3 characters, valid", + args: args{ + policy: &LabelPolicy{PrimaryColorDark: "#000"}, + }, + }, + { + name: "color code with wrong characters, invalid", + args: args{ + policy: &LabelPolicy{PrimaryColorDark: "#0f9wfm"}, + }, + err: caos_errs.IsErrorInvalidArgument, + }, + { + name: "color code with wrong count of characters, invalid", + args: args{ + policy: &LabelPolicy{PrimaryColorDark: "#00"}, + }, + err: caos_errs.IsErrorInvalidArgument, + }, + { + name: "color code with no #, invalid", + args: args{ + policy: &LabelPolicy{PrimaryColorDark: "#00"}, + }, + err: caos_errs.IsErrorInvalidArgument, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + err := tt.args.policy.IsValid() + if tt.err == nil { + assert.NoError(t, err) + } + if tt.err != nil && !tt.err(err) { + t.Errorf("got wrong err: %v ", err) + } + }) + } +} + +func TestLabelPolicyBackgroundColorDarkValid(t *testing.T) { + type args struct { + policy *LabelPolicy + } + tests := []struct { + name string + args args + err func(error) bool + }{ + { + name: "empty background dark, valid", + args: args{ + policy: &LabelPolicy{BackgroundColorDark: ""}, + }, + }, + { + name: "color code with 6 characters, valid", + args: args{ + policy: &LabelPolicy{BackgroundColorDark: "#ffffff"}, + }, + }, + { + name: "color code with 3 characters, valid", + args: args{ + policy: &LabelPolicy{BackgroundColorDark: "#000"}, + }, + }, + { + name: "color code with wrong characters, invalid", + args: args{ + policy: &LabelPolicy{BackgroundColorDark: "#0f9wfm"}, + }, + err: caos_errs.IsErrorInvalidArgument, + }, + { + name: "color code with wrong count of characters, invalid", + args: args{ + policy: &LabelPolicy{BackgroundColorDark: "#00"}, + }, + err: caos_errs.IsErrorInvalidArgument, + }, + { + name: "color code with no #, invalid", + args: args{ + policy: &LabelPolicy{BackgroundColorDark: "#00"}, + }, + err: caos_errs.IsErrorInvalidArgument, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + err := tt.args.policy.IsValid() + if tt.err == nil { + assert.NoError(t, err) + } + if tt.err != nil && !tt.err(err) { + t.Errorf("got wrong err: %v ", err) + } + }) + } +} + +func TestLabelPolicyWarnColorDarkValid(t *testing.T) { + type args struct { + policy *LabelPolicy + } + tests := []struct { + name string + args args + err func(error) bool + }{ + { + name: "empty warn dark, valid", + args: args{ + policy: &LabelPolicy{WarnColorDark: ""}, + }, + }, + { + name: "color code with 6 characters, valid", + args: args{ + policy: &LabelPolicy{WarnColorDark: "#ffffff"}, + }, + }, + { + name: "color code with 3 characters, valid", + args: args{ + policy: &LabelPolicy{WarnColorDark: "#000"}, + }, + }, + { + name: "color code with wrong characters, invalid", + args: args{ + policy: &LabelPolicy{WarnColorDark: "#0f9wfm"}, + }, + err: caos_errs.IsErrorInvalidArgument, + }, + { + name: "color code with wrong count of characters, invalid", + args: args{ + policy: &LabelPolicy{WarnColorDark: "#00"}, + }, + err: caos_errs.IsErrorInvalidArgument, + }, + { + name: "color code with no #, invalid", + args: args{ + policy: &LabelPolicy{WarnColorDark: "#00"}, + }, + err: caos_errs.IsErrorInvalidArgument, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + err := tt.args.policy.IsValid() + if tt.err == nil { + assert.NoError(t, err) + } + if tt.err != nil && !tt.err(err) { + t.Errorf("got wrong err: %v ", err) + } + }) + } +} + +func TestLabelPolicyFontColorDarkValid(t *testing.T) { + type args struct { + policy *LabelPolicy + } + tests := []struct { + name string + args args + err func(error) bool + }{ + { + name: "empty font dark, valid", + args: args{ + policy: &LabelPolicy{FontColorDark: ""}, + }, + }, + { + name: "color code with 6 characters, valid", + args: args{ + policy: &LabelPolicy{FontColorDark: "#ffffff"}, + }, + }, + { + name: "color code with 3 characters, valid", + args: args{ + policy: &LabelPolicy{FontColorDark: "#000"}, + }, + }, + { + name: "color code with wrong characters, invalid", + args: args{ + policy: &LabelPolicy{FontColorDark: "#0f9wfm"}, + }, + err: caos_errs.IsErrorInvalidArgument, + }, + { + name: "color code with wrong count of characters, invalid", + args: args{ + policy: &LabelPolicy{FontColorDark: "#00"}, + }, + err: caos_errs.IsErrorInvalidArgument, + }, + { + name: "color code with no #, invalid", + args: args{ + policy: &LabelPolicy{FontColorDark: "#00"}, + }, + err: caos_errs.IsErrorInvalidArgument, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + err := tt.args.policy.IsValid() + if tt.err == nil { + assert.NoError(t, err) + } + if tt.err != nil && !tt.err(err) { + t.Errorf("got wrong err: %v ", err) + } + }) + } +} diff --git a/internal/domain/step.go b/internal/domain/step.go index 45ce98137b..62d7edbac0 100644 --- a/internal/domain/step.go +++ b/internal/domain/step.go @@ -16,6 +16,8 @@ const ( Step11 Step12 Step13 + Step14 + Step15 //StepCount marks the the length of possible steps (StepCount-1 == last possible step) StepCount ) diff --git a/internal/features/model/features_view.go b/internal/features/model/features_view.go index 0fb0473dc6..e72c9bf982 100644 --- a/internal/features/model/features_view.go +++ b/internal/features/model/features_view.go @@ -25,12 +25,13 @@ type FeaturesView struct { LoginPolicyUsernameLogin bool LoginPolicyPasswordReset bool PasswordComplexityPolicy bool - LabelPolicy bool + LabelPolicyPrivateLabel bool + LabelPolicyWatermark bool CustomDomain bool } func (f *FeaturesView) FeatureList() []string { - list := make([]string, 0, 6) + list := make([]string, 0) if f.LoginPolicyFactors { list = append(list, domain.FeatureLoginPolicyFactors) } @@ -52,8 +53,11 @@ func (f *FeaturesView) FeatureList() []string { if f.PasswordComplexityPolicy { list = append(list, domain.FeaturePasswordComplexityPolicy) } - if f.LabelPolicy { - list = append(list, domain.FeatureLabelPolicy) + if f.LabelPolicyPrivateLabel { + list = append(list, domain.FeatureLabelPolicyPrivateLabel) + } + if f.LabelPolicyWatermark { + list = append(list, domain.FeatureLabelPolicyWatermark) } if f.CustomDomain { list = append(list, domain.FeatureCustomDomain) diff --git a/internal/features/repository/view/model/features.go b/internal/features/repository/view/model/features.go index bc71f7034f..1093ed05c2 100644 --- a/internal/features/repository/view/model/features.go +++ b/internal/features/repository/view/model/features.go @@ -38,7 +38,9 @@ type FeaturesView struct { LoginPolicyUsernameLogin bool `json:"loginPolicyUsernameLogin" gorm:"column:login_policy_username_login"` LoginPolicyPasswordReset bool `json:"loginPolicyPasswordReset" gorm:"column:login_policy_password_reset"` PasswordComplexityPolicy bool `json:"passwordComplexityPolicy" gorm:"column:password_complexity_policy"` - LabelPolicy bool `json:"labelPolicy" gorm:"column:label_policy"` + LabelPolicy *bool `json:"labelPolicy" gorm:"-"` + LabelPolicyPrivateLabel bool `json:"labelPolicyPrivateLabel" gorm:"column:label_policy_private_label"` + LabelPolicyWatermark bool `json:"labelPolicyWatermark" gorm:"column:label_policy_watermark"` CustomDomain bool `json:"customDomain" gorm:"column:custom_domain"` } @@ -61,7 +63,8 @@ func FeaturesToModel(features *FeaturesView) *features_model.FeaturesView { LoginPolicyUsernameLogin: features.LoginPolicyUsernameLogin, LoginPolicyPasswordReset: features.LoginPolicyPasswordReset, PasswordComplexityPolicy: features.PasswordComplexityPolicy, - LabelPolicy: features.LabelPolicy, + LabelPolicyPrivateLabel: features.LabelPolicyPrivateLabel, + LabelPolicyWatermark: features.LabelPolicyWatermark, CustomDomain: features.CustomDomain, } } @@ -95,5 +98,8 @@ func (f *FeaturesView) SetData(event *models.Event) error { logging.Log("EVEN-DVsf2").WithError(err).Error("could not unmarshal event data") return caos_errs.ThrowInternal(err, "MODEL-Bfg31", "Could not unmarshal data") } + if f.LabelPolicy != nil { + f.LabelPolicyPrivateLabel = *f.LabelPolicy + } return nil } diff --git a/internal/iam/model/label_policy.go b/internal/iam/model/label_policy.go index 09663affa2..b3c2cee9ee 100644 --- a/internal/iam/model/label_policy.go +++ b/internal/iam/model/label_policy.go @@ -10,7 +10,13 @@ type LabelPolicy struct { State PolicyState Default bool PrimaryColor string - SecondaryColor string + BackgroundColor string + FontColor string + WarnColor string + PrimaryColorDark string + BackgroundColorDark string + FontColorDark string + WarnColorDark string HideLoginNameSuffix bool } diff --git a/internal/iam/model/label_policy_view.go b/internal/iam/model/label_policy_view.go index 5bb3bb93ae..4555d660b8 100644 --- a/internal/iam/model/label_policy_view.go +++ b/internal/iam/model/label_policy_view.go @@ -1,16 +1,33 @@ package model import ( - "github.com/caos/zitadel/internal/domain" "time" + + "github.com/caos/zitadel/internal/domain" ) type LabelPolicyView struct { - AggregateID string - PrimaryColor string - SecondaryColor string + AggregateID string + PrimaryColor string + BackgroundColor string + WarnColor string + FontColor string + LogoURL string + IconURL string + + PrimaryColorDark string + BackgroundColorDark string + WarnColorDark string + FontColorDark string + LogoDarkURL string + IconDarkURL string + FontURL string + HideLoginNameSuffix bool - Default bool + ErrorMsgPopup bool + DisableWatermark bool + + Default bool CreationDate time.Time ChangeDate time.Time @@ -30,6 +47,7 @@ type LabelPolicySearchKey int32 const ( LabelPolicySearchKeyUnspecified LabelPolicySearchKey = iota LabelPolicySearchKeyAggregateID + LabelPolicySearchKeyState ) type LabelPolicySearchQuery struct { diff --git a/internal/iam/repository/eventsourcing/model/label_policy.go b/internal/iam/repository/eventsourcing/model/label_policy.go index 659de0bb08..d5540b29fb 100644 --- a/internal/iam/repository/eventsourcing/model/label_policy.go +++ b/internal/iam/repository/eventsourcing/model/label_policy.go @@ -12,7 +12,13 @@ type LabelPolicy struct { es_models.ObjectRoot State int32 `json:"-"` PrimaryColor string `json:"primaryColor"` - SecondaryColor string `json:"secondaryColor"` + BackgroundColor string `json:"backgroundColor"` + FontColor string `json:"fontColor"` + WarnColor string `json:"warnColor"` + PrimaryColorDark string `json:"primaryColorDark"` + BackgroundColorDark string `json:"backgroundColorDark"` + FontColorDark string `json:"fontColorDark"` + WarnColorDark string `json:"warnColorDark"` HideLoginNameSuffix bool `json:"hideLoginNameSuffix"` } @@ -21,7 +27,13 @@ func LabelPolicyToModel(policy *LabelPolicy) *iam_model.LabelPolicy { ObjectRoot: policy.ObjectRoot, State: iam_model.PolicyState(policy.State), PrimaryColor: policy.PrimaryColor, - SecondaryColor: policy.SecondaryColor, + BackgroundColor: policy.BackgroundColor, + WarnColor: policy.WarnColor, + FontColor: policy.FontColor, + PrimaryColorDark: policy.PrimaryColorDark, + BackgroundColorDark: policy.BackgroundColorDark, + WarnColorDark: policy.WarnColorDark, + FontColorDark: policy.FontColorDark, HideLoginNameSuffix: policy.HideLoginNameSuffix, } } @@ -31,24 +43,17 @@ func LabelPolicyFromModel(policy *iam_model.LabelPolicy) *LabelPolicy { ObjectRoot: policy.ObjectRoot, State: int32(policy.State), PrimaryColor: policy.PrimaryColor, - SecondaryColor: policy.SecondaryColor, + BackgroundColor: policy.BackgroundColor, + WarnColor: policy.WarnColor, + FontColor: policy.FontColor, + PrimaryColorDark: policy.PrimaryColorDark, + BackgroundColorDark: policy.BackgroundColorDark, + WarnColorDark: policy.WarnColorDark, + FontColorDark: policy.FontColorDark, HideLoginNameSuffix: policy.HideLoginNameSuffix, } } -func (p *LabelPolicy) Changes(changed *LabelPolicy) map[string]interface{} { - changes := make(map[string]interface{}, 2) - - if changed.PrimaryColor != p.PrimaryColor { - changes["primaryColor"] = changed.PrimaryColor - } - if changed.SecondaryColor != p.SecondaryColor { - changes["secondaryColor"] = changed.SecondaryColor - } - - return changes -} - func (i *IAM) appendAddLabelPolicyEvent(event *es_models.Event) error { i.DefaultLabelPolicy = new(LabelPolicy) err := i.DefaultLabelPolicy.SetDataLabel(event) diff --git a/internal/iam/repository/eventsourcing/model/label_policy_test.go b/internal/iam/repository/eventsourcing/model/label_policy_test.go index 3e4d889404..2809ba30d4 100644 --- a/internal/iam/repository/eventsourcing/model/label_policy_test.go +++ b/internal/iam/repository/eventsourcing/model/label_policy_test.go @@ -7,50 +7,6 @@ import ( es_models "github.com/caos/zitadel/internal/eventstore/v1/models" ) -func TestLabelPolicyChanges(t *testing.T) { - type args struct { - existing *LabelPolicy - new *LabelPolicy - } - type res struct { - changesLen int - } - tests := []struct { - name string - args args - res res - }{ - { - name: "labelpolicy all attributes change", - args: args{ - existing: &LabelPolicy{PrimaryColor: "000001", SecondaryColor: "FFFFFA"}, - new: &LabelPolicy{PrimaryColor: "000000", SecondaryColor: "FFFFFF"}, - }, - res: res{ - changesLen: 2, - }, - }, - { - name: "no changes", - args: args{ - existing: &LabelPolicy{PrimaryColor: "000000", SecondaryColor: "FFFFFF"}, - new: &LabelPolicy{PrimaryColor: "000000", SecondaryColor: "FFFFFF"}, - }, - res: res{ - changesLen: 0, - }, - }, - } - for _, tt := range tests { - t.Run(tt.name, func(t *testing.T) { - changes := tt.args.existing.Changes(tt.args.new) - if len(changes) != tt.res.changesLen { - t.Errorf("got wrong changes len: expected: %v, actual: %v ", tt.res.changesLen, len(changes)) - } - }) - } -} - func TestAppendAddLabelPolicyEvent(t *testing.T) { type args struct { iam *IAM @@ -66,10 +22,10 @@ func TestAppendAddLabelPolicyEvent(t *testing.T) { name: "append add label policy event", args: args{ iam: new(IAM), - policy: &LabelPolicy{PrimaryColor: "000000", SecondaryColor: "FFFFFF"}, + policy: &LabelPolicy{PrimaryColor: "000000", BackgroundColor: "FFFFFF"}, event: new(es_models.Event), }, - result: &IAM{DefaultLabelPolicy: &LabelPolicy{PrimaryColor: "000000", SecondaryColor: "FFFFFF"}}, + result: &IAM{DefaultLabelPolicy: &LabelPolicy{PrimaryColor: "000000", BackgroundColor: "FFFFFF"}}, }, } for _, tt := range tests { @@ -82,8 +38,8 @@ func TestAppendAddLabelPolicyEvent(t *testing.T) { if tt.result.DefaultLabelPolicy.PrimaryColor != tt.args.iam.DefaultLabelPolicy.PrimaryColor { t.Errorf("got wrong result: expected: %v, actual: %v ", tt.result.DefaultLabelPolicy.PrimaryColor, tt.args.iam.DefaultLabelPolicy.PrimaryColor) } - if tt.result.DefaultLabelPolicy.SecondaryColor != tt.args.iam.DefaultLabelPolicy.SecondaryColor { - t.Errorf("got wrong result: expected: %v, actual: %v ", tt.result.DefaultLabelPolicy.SecondaryColor, tt.args.iam.DefaultLabelPolicy.SecondaryColor) + if tt.result.DefaultLabelPolicy.BackgroundColor != tt.args.iam.DefaultLabelPolicy.BackgroundColor { + t.Errorf("got wrong result: expected: %v, actual: %v ", tt.result.DefaultLabelPolicy.BackgroundColor, tt.args.iam.DefaultLabelPolicy.BackgroundColor) } }) } @@ -104,13 +60,13 @@ func TestAppendChangeLabelPolicyEvent(t *testing.T) { name: "append change label policy event", args: args{ iam: &IAM{DefaultLabelPolicy: &LabelPolicy{ - PrimaryColor: "000001", SecondaryColor: "FFFFF0", + PrimaryColor: "000001", BackgroundColor: "FFFFF0", }}, - policy: &LabelPolicy{PrimaryColor: "000000", SecondaryColor: "FFFFFF"}, + policy: &LabelPolicy{PrimaryColor: "000000", BackgroundColor: "FFFFFF"}, event: &es_models.Event{}, }, result: &IAM{DefaultLabelPolicy: &LabelPolicy{ - PrimaryColor: "000000", SecondaryColor: "FFFFFF", + PrimaryColor: "000000", BackgroundColor: "FFFFFF", }}, }, } @@ -124,8 +80,8 @@ func TestAppendChangeLabelPolicyEvent(t *testing.T) { if tt.result.DefaultLabelPolicy.PrimaryColor != tt.args.iam.DefaultLabelPolicy.PrimaryColor { t.Errorf("got wrong result: expected: %v, actual: %v ", tt.result.DefaultLabelPolicy.PrimaryColor, tt.args.iam.DefaultLabelPolicy.PrimaryColor) } - if tt.result.DefaultLabelPolicy.SecondaryColor != tt.args.iam.DefaultLabelPolicy.SecondaryColor { - t.Errorf("got wrong result: expected: %v, actual: %v ", tt.result.DefaultLabelPolicy.SecondaryColor, tt.args.iam.DefaultLabelPolicy.SecondaryColor) + if tt.result.DefaultLabelPolicy.BackgroundColor != tt.args.iam.DefaultLabelPolicy.BackgroundColor { + t.Errorf("got wrong result: expected: %v, actual: %v ", tt.result.DefaultLabelPolicy.BackgroundColor, tt.args.iam.DefaultLabelPolicy.BackgroundColor) } }) } diff --git a/internal/iam/repository/eventsourcing/model/types.go b/internal/iam/repository/eventsourcing/model/types.go index c07bfc5954..12289c9587 100644 --- a/internal/iam/repository/eventsourcing/model/types.go +++ b/internal/iam/repository/eventsourcing/model/types.go @@ -35,8 +35,21 @@ const ( LoginPolicyMultiFactorAdded models.EventType = "iam.policy.login.multifactor.added" LoginPolicyMultiFactorRemoved models.EventType = "iam.policy.login.multifactor.removed" - LabelPolicyAdded models.EventType = "iam.policy.label.added" - LabelPolicyChanged models.EventType = "iam.policy.label.changed" + LabelPolicyAdded models.EventType = "iam.policy.label.added" + LabelPolicyChanged models.EventType = "iam.policy.label.changed" + LabelPolicyActivated models.EventType = "iam.policy.label.activated" + + LabelPolicyLogoAdded models.EventType = "iam.policy.label.logo.added" + LabelPolicyLogoRemoved models.EventType = "iam.policy.label.logo.removed" + LabelPolicyIconAdded models.EventType = "iam.policy.label.icon.added" + LabelPolicyIconRemoved models.EventType = "iam.policy.label.icon.removed" + LabelPolicyLogoDarkAdded models.EventType = "iam.policy.label.logo.dark.added" + LabelPolicyLogoDarkRemoved models.EventType = "iam.policy.label.logo.dark.removed" + LabelPolicyIconDarkAdded models.EventType = "iam.policy.label.icon.dark.added" + LabelPolicyIconDarkRemoved models.EventType = "iam.policy.label.icon.dark.removed" + LabelPolicyFontAdded models.EventType = "iam.policy.label.font.added" + LabelPolicyFontRemoved models.EventType = "iam.policy.label.font.removed" + LabelPolicyAssetsRemoved models.EventType = "iam.policy.label.assets.removed" MailTemplateAdded models.EventType = "iam.mail.template.added" MailTemplateChanged models.EventType = "iam.mail.template.changed" diff --git a/internal/iam/repository/view/label_policy_view.go b/internal/iam/repository/view/label_policy_view.go index d35150f199..a4731d0511 100644 --- a/internal/iam/repository/view/label_policy_view.go +++ b/internal/iam/repository/view/label_policy_view.go @@ -6,13 +6,15 @@ import ( iam_model "github.com/caos/zitadel/internal/iam/model" "github.com/caos/zitadel/internal/iam/repository/view/model" "github.com/caos/zitadel/internal/view/repository" + "github.com/jinzhu/gorm" ) -func GetLabelPolicyByAggregateID(db *gorm.DB, table, aggregateID string) (*model.LabelPolicyView, error) { +func GetLabelPolicyByAggregateIDAndState(db *gorm.DB, table, aggregateID string, state int32) (*model.LabelPolicyView, error) { policy := new(model.LabelPolicyView) aggregateIDQuery := &model.LabelPolicySearchQuery{Key: iam_model.LabelPolicySearchKeyAggregateID, Value: aggregateID, Method: domain.SearchMethodEquals} - query := repository.PrepareGetByQuery(table, aggregateIDQuery) + stateQuery := &model.LabelPolicySearchQuery{Key: iam_model.LabelPolicySearchKeyState, Value: state, Method: domain.SearchMethodEquals} + query := repository.PrepareGetByQuery(table, aggregateIDQuery, stateQuery) err := query(db, policy) if caos_errs.IsNotFound(err) { return nil, caos_errs.ThrowNotFound(nil, "VIEW-68G11", "Errors.IAM.LabelPolicy.NotExisting") diff --git a/internal/iam/repository/view/model/label_policy.go b/internal/iam/repository/view/model/label_policy.go index 5d81e28db9..568e21da4a 100644 --- a/internal/iam/repository/view/model/label_policy.go +++ b/internal/iam/repository/view/model/label_policy.go @@ -10,6 +10,7 @@ import ( es_model "github.com/caos/zitadel/internal/iam/repository/eventsourcing/model" "github.com/caos/logging" + caos_errs "github.com/caos/zitadel/internal/errors" "github.com/caos/zitadel/internal/eventstore/v1/models" "github.com/caos/zitadel/internal/iam/model" @@ -17,22 +18,40 @@ import ( const ( LabelPolicyKeyAggregateID = "aggregate_id" + LabelPolicyKeyState = "label_policy_state" ) type LabelPolicyView struct { AggregateID string `json:"-" gorm:"column:aggregate_id;primary_key"` + State int32 `json:"-" gorm:"column:label_policy_state;primary_key"` CreationDate time.Time `json:"-" gorm:"column:creation_date"` ChangeDate time.Time `json:"-" gorm:"column:change_date"` - State int32 `json:"-" gorm:"column:label_policy_state"` PrimaryColor string `json:"primaryColor" gorm:"column:primary_color"` - SecondaryColor string `json:"secondaryColor" gorm:"column:secondary_color"` + BackgroundColor string `json:"backgroundColor" gorm:"column:background_color"` + WarnColor string `json:"warnColor" gorm:"column:warn_color"` + FontColor string `json:"fontColor" gorm:"column:font_color"` + PrimaryColorDark string `json:"primaryColorDark" gorm:"column:primary_color_dark"` + BackgroundColorDark string `json:"backgroundColorDark" gorm:"column:background_color_dark"` + WarnColorDark string `json:"warnColorDark" gorm:"column:warn_color_dark"` + FontColorDark string `json:"fontColorDark" gorm:"column:font_color_dark"` + LogoURL string `json:"-" gorm:"column:logo_url"` + IconURL string `json:"-" gorm:"column:icon_url"` + LogoDarkURL string `json:"-" gorm:"column:logo_dark_url"` + IconDarkURL string `json:"-" gorm:"column:icon_dark_url"` + FontURL string `json:"-" gorm:"column:font_url"` HideLoginNameSuffix bool `json:"hideLoginNameSuffix" gorm:"column:hide_login_name_suffix"` + ErrorMsgPopup bool `json:"errorMsgPopup" gorm:"column:err_msg_popup"` + DisableWatermark bool `json:"disableWatermark" gorm:"column:disable_watermark"` Default bool `json:"-" gorm:"-"` Sequence uint64 `json:"-" gorm:"column:sequence"` } +type AssetView struct { + AssetURL string `json:"storeKey"` +} + func (p *LabelPolicyView) ToDomain() *domain.LabelPolicy { return &domain.LabelPolicy{ ObjectRoot: models.ObjectRoot{ @@ -41,36 +60,129 @@ func (p *LabelPolicyView) ToDomain() *domain.LabelPolicy { ChangeDate: p.ChangeDate, Sequence: p.Sequence, }, - Default: p.Default, - PrimaryColor: p.PrimaryColor, - SecondaryColor: p.SecondaryColor, + Default: p.Default, + PrimaryColor: p.PrimaryColor, + BackgroundColor: p.BackgroundColor, + WarnColor: p.WarnColor, + FontColor: p.FontColor, + LogoURL: p.LogoURL, + IconURL: p.IconURL, + + PrimaryColorDark: p.PrimaryColorDark, + BackgroundColorDark: p.BackgroundColorDark, + WarnColorDark: p.WarnColorDark, + FontColorDark: p.FontColorDark, + LogoDarkURL: p.LogoDarkURL, + IconDarkURL: p.IconDarkURL, + Font: p.FontURL, + HideLoginNameSuffix: p.HideLoginNameSuffix, + ErrorMsgPopup: p.ErrorMsgPopup, + DisableWatermark: p.DisableWatermark, } } func LabelPolicyViewToModel(policy *LabelPolicyView) *model.LabelPolicyView { return &model.LabelPolicyView{ - AggregateID: policy.AggregateID, - Sequence: policy.Sequence, - CreationDate: policy.CreationDate, - ChangeDate: policy.ChangeDate, - PrimaryColor: policy.PrimaryColor, - SecondaryColor: policy.SecondaryColor, + AggregateID: policy.AggregateID, + Sequence: policy.Sequence, + CreationDate: policy.CreationDate, + ChangeDate: policy.ChangeDate, + + PrimaryColor: policy.PrimaryColor, + BackgroundColor: policy.BackgroundColor, + WarnColor: policy.WarnColor, + FontColor: policy.FontColor, + LogoURL: policy.LogoURL, + IconURL: policy.IconURL, + + PrimaryColorDark: policy.PrimaryColorDark, + BackgroundColorDark: policy.BackgroundColorDark, + WarnColorDark: policy.WarnColorDark, + FontColorDark: policy.FontColorDark, + LogoDarkURL: policy.LogoDarkURL, + IconDarkURL: policy.IconDarkURL, + + FontURL: policy.FontURL, + HideLoginNameSuffix: policy.HideLoginNameSuffix, + ErrorMsgPopup: policy.ErrorMsgPopup, + DisableWatermark: policy.DisableWatermark, Default: policy.Default, } } func (i *LabelPolicyView) AppendEvent(event *models.Event) (err error) { + asset := &AssetView{} i.Sequence = event.Sequence i.ChangeDate = event.CreationDate switch event.Type { case es_model.LabelPolicyAdded, org_es_model.LabelPolicyAdded: i.setRootData(event) i.CreationDate = event.CreationDate + i.State = int32(domain.LabelPolicyStatePreview) err = i.SetData(event) case es_model.LabelPolicyChanged, org_es_model.LabelPolicyChanged: err = i.SetData(event) + i.State = int32(domain.LabelPolicyStatePreview) + case es_model.LabelPolicyLogoAdded, org_es_model.LabelPolicyLogoAdded: + err = asset.SetData(event) + if err != nil { + return err + } + i.LogoURL = asset.AssetURL + i.State = int32(domain.LabelPolicyStatePreview) + case es_model.LabelPolicyLogoRemoved, org_es_model.LabelPolicyLogoRemoved: + i.LogoURL = "" + i.State = int32(domain.LabelPolicyStatePreview) + case es_model.LabelPolicyIconAdded, org_es_model.LabelPolicyIconAdded: + err = asset.SetData(event) + if err != nil { + return err + } + i.IconURL = asset.AssetURL + i.State = int32(domain.LabelPolicyStatePreview) + case es_model.LabelPolicyIconRemoved, org_es_model.LabelPolicyIconRemoved: + i.IconURL = "" + case es_model.LabelPolicyLogoDarkAdded, org_es_model.LabelPolicyLogoDarkAdded: + err = asset.SetData(event) + if err != nil { + return err + } + i.LogoDarkURL = asset.AssetURL + i.State = int32(domain.LabelPolicyStatePreview) + case es_model.LabelPolicyLogoDarkRemoved, org_es_model.LabelPolicyLogoDarkRemoved: + i.LogoDarkURL = "" + i.State = int32(domain.LabelPolicyStatePreview) + case es_model.LabelPolicyIconDarkAdded, org_es_model.LabelPolicyIconDarkAdded: + err = asset.SetData(event) + if err != nil { + return err + } + i.IconDarkURL = asset.AssetURL + i.State = int32(domain.LabelPolicyStatePreview) + case es_model.LabelPolicyIconDarkRemoved, org_es_model.LabelPolicyIconDarkRemoved: + i.IconDarkURL = "" + i.State = int32(domain.LabelPolicyStatePreview) + case es_model.LabelPolicyFontAdded, org_es_model.LabelPolicyFontAdded: + err = asset.SetData(event) + if err != nil { + return err + } + i.FontURL = asset.AssetURL + i.State = int32(domain.LabelPolicyStatePreview) + case es_model.LabelPolicyFontRemoved, org_es_model.LabelPolicyFontRemoved: + i.FontURL = "" + i.State = int32(domain.LabelPolicyStatePreview) + case es_model.LabelPolicyActivated, org_es_model.LabelPolicyActivated: + i.State = int32(domain.LabelPolicyStateActive) + case es_model.LabelPolicyAssetsRemoved, org_es_model.LabelPolicyAssetsRemoved: + i.LogoURL = "" + i.IconURL = "" + i.LogoDarkURL = "" + i.IconDarkURL = "" + i.FontURL = "" + i.State = int32(domain.LabelPolicyStatePreview) } return err } @@ -86,3 +198,11 @@ func (r *LabelPolicyView) SetData(event *models.Event) error { } return nil } + +func (r *AssetView) SetData(event *models.Event) error { + if err := json.Unmarshal(event.Data, r); err != nil { + logging.Log("MODEL-Ms8f2").WithError(err).Error("could not unmarshal event data") + return caos_errs.ThrowInternal(err, "MODEL-Hs8uf", "Could not unmarshal data") + } + return nil +} diff --git a/internal/iam/repository/view/model/label_policy_query.go b/internal/iam/repository/view/model/label_policy_query.go index e0940457fa..a4ee2914f7 100644 --- a/internal/iam/repository/view/model/label_policy_query.go +++ b/internal/iam/repository/view/model/label_policy_query.go @@ -53,6 +53,8 @@ func (key LabelPolicySearchKey) ToColumnName() string { switch iam_model.LabelPolicySearchKey(key) { case iam_model.LabelPolicySearchKeyAggregateID: return LabelPolicyKeyAggregateID + case iam_model.LabelPolicySearchKeyState: + return LabelPolicyKeyState default: return "" } diff --git a/internal/management/repository/eventsourcing/eventstore/org.go b/internal/management/repository/eventsourcing/eventstore/org.go index dac7740ba0..25ebb28dcf 100644 --- a/internal/management/repository/eventsourcing/eventstore/org.go +++ b/internal/management/repository/eventsourcing/eventstore/org.go @@ -195,9 +195,24 @@ func (repo *OrgRepository) SearchIDPConfigs(ctx context.Context, request *iam_mo } func (repo *OrgRepository) GetLabelPolicy(ctx context.Context) (*iam_model.LabelPolicyView, error) { - policy, err := repo.View.LabelPolicyByAggregateID(authz.GetCtxData(ctx).OrgID) + policy, err := repo.View.LabelPolicyByAggregateIDAndState(authz.GetCtxData(ctx).OrgID, int32(domain.LabelPolicyStateActive)) if errors.IsNotFound(err) { - policy, err = repo.View.LabelPolicyByAggregateID(repo.SystemDefaults.IamID) + policy, err = repo.View.LabelPolicyByAggregateIDAndState(repo.SystemDefaults.IamID, int32(domain.LabelPolicyStateActive)) + if err != nil { + return nil, err + } + policy.Default = true + } + if err != nil { + return nil, err + } + return iam_es_model.LabelPolicyViewToModel(policy), err +} + +func (repo *OrgRepository) GetPreviewLabelPolicy(ctx context.Context) (*iam_model.LabelPolicyView, error) { + policy, err := repo.View.LabelPolicyByAggregateIDAndState(authz.GetCtxData(ctx).OrgID, int32(domain.LabelPolicyStatePreview)) + if errors.IsNotFound(err) { + policy, err = repo.View.LabelPolicyByAggregateIDAndState(repo.SystemDefaults.IamID, int32(domain.LabelPolicyStatePreview)) if err != nil { return nil, err } @@ -210,7 +225,15 @@ func (repo *OrgRepository) GetLabelPolicy(ctx context.Context) (*iam_model.Label } func (repo *OrgRepository) GetDefaultLabelPolicy(ctx context.Context) (*iam_model.LabelPolicyView, error) { - policy, viewErr := repo.View.LabelPolicyByAggregateID(repo.SystemDefaults.IamID) + return repo.getDefaultLabelPolicy(ctx, domain.LabelPolicyStateActive) +} + +func (repo *OrgRepository) GetPreviewDefaultLabelPolicy(ctx context.Context) (*iam_model.LabelPolicyView, error) { + return repo.getDefaultLabelPolicy(ctx, domain.LabelPolicyStatePreview) +} + +func (repo *OrgRepository) getDefaultLabelPolicy(ctx context.Context, state domain.LabelPolicyState) (*iam_model.LabelPolicyView, error) { + policy, viewErr := repo.View.LabelPolicyByAggregateIDAndState(repo.SystemDefaults.IamID, int32(state)) if viewErr != nil && !errors.IsNotFound(viewErr) { return nil, viewErr } diff --git a/internal/management/repository/eventsourcing/handler/handler.go b/internal/management/repository/eventsourcing/handler/handler.go index a116b3a3bc..1f063b2aa2 100644 --- a/internal/management/repository/eventsourcing/handler/handler.go +++ b/internal/management/repository/eventsourcing/handler/handler.go @@ -4,6 +4,7 @@ import ( "time" "github.com/caos/zitadel/internal/eventstore/v1" + "github.com/caos/zitadel/internal/static" "github.com/caos/zitadel/internal/config/systemdefaults" "github.com/caos/zitadel/internal/config/types" @@ -30,7 +31,7 @@ func (h *handler) Eventstore() v1.Eventstore { return h.es } -func Register(configs Configs, bulkLimit, errorCount uint64, view *view.View, es v1.Eventstore, defaults systemdefaults.SystemDefaults) []query.Handler { +func Register(configs Configs, bulkLimit, errorCount uint64, view *view.View, es v1.Eventstore, defaults systemdefaults.SystemDefaults, staticStorage static.Storage) []query.Handler { return []query.Handler{ newProject( handler{view, bulkLimit, configs.cycleDuration("Project"), errorCount, es}), @@ -58,7 +59,8 @@ func Register(configs Configs, bulkLimit, errorCount uint64, view *view.View, es newLoginPolicy( handler{view, bulkLimit, configs.cycleDuration("LoginPolicy"), errorCount, es}), newLabelPolicy( - handler{view, bulkLimit, configs.cycleDuration("LabelPolicy"), errorCount, es}), + handler{view, bulkLimit, configs.cycleDuration("LabelPolicy"), errorCount, es}, + staticStorage), newIDPProvider( handler{view, bulkLimit, configs.cycleDuration("IDPProvider"), errorCount, es}, defaults), diff --git a/internal/management/repository/eventsourcing/handler/label_policy.go b/internal/management/repository/eventsourcing/handler/label_policy.go index 7228d8b994..1979532cee 100644 --- a/internal/management/repository/eventsourcing/handler/label_policy.go +++ b/internal/management/repository/eventsourcing/handler/label_policy.go @@ -1,7 +1,10 @@ package handler import ( + "context" + "github.com/caos/logging" + "github.com/caos/zitadel/internal/domain" "github.com/caos/zitadel/internal/eventstore/v1" es_models "github.com/caos/zitadel/internal/eventstore/v1/models" "github.com/caos/zitadel/internal/eventstore/v1/query" @@ -9,6 +12,7 @@ import ( iam_es_model "github.com/caos/zitadel/internal/iam/repository/eventsourcing/model" iam_model "github.com/caos/zitadel/internal/iam/repository/view/model" "github.com/caos/zitadel/internal/org/repository/eventsourcing/model" + "github.com/caos/zitadel/internal/static" ) const ( @@ -18,11 +22,13 @@ const ( type LabelPolicy struct { handler subscription *v1.Subscription + static static.Storage } -func newLabelPolicy(handler handler) *LabelPolicy { +func newLabelPolicy(handler handler, static static.Storage) *LabelPolicy { h := &LabelPolicy{ handler: handler, + static: static, } h.subscribe() @@ -78,12 +84,29 @@ func (m *LabelPolicy) processLabelPolicy(event *es_models.Event) (err error) { switch event.Type { case iam_es_model.LabelPolicyAdded, model.LabelPolicyAdded: err = policy.AppendEvent(event) - case iam_es_model.LabelPolicyChanged, model.LabelPolicyChanged: - policy, err = m.view.LabelPolicyByAggregateID(event.AggregateID) + case iam_es_model.LabelPolicyChanged, model.LabelPolicyChanged, + iam_es_model.LabelPolicyLogoAdded, model.LabelPolicyLogoAdded, + iam_es_model.LabelPolicyLogoRemoved, model.LabelPolicyLogoRemoved, + iam_es_model.LabelPolicyIconAdded, model.LabelPolicyIconAdded, + iam_es_model.LabelPolicyIconRemoved, model.LabelPolicyIconRemoved, + iam_es_model.LabelPolicyLogoDarkAdded, model.LabelPolicyLogoDarkAdded, + iam_es_model.LabelPolicyLogoDarkRemoved, model.LabelPolicyLogoDarkRemoved, + iam_es_model.LabelPolicyIconDarkAdded, model.LabelPolicyIconDarkAdded, + iam_es_model.LabelPolicyIconDarkRemoved, model.LabelPolicyIconDarkRemoved, + iam_es_model.LabelPolicyFontAdded, model.LabelPolicyFontAdded, + iam_es_model.LabelPolicyFontRemoved, model.LabelPolicyFontRemoved: + policy, err = m.view.LabelPolicyByAggregateIDAndState(event.AggregateID, int32(domain.LabelPolicyStatePreview)) if err != nil { return err } err = policy.AppendEvent(event) + case iam_es_model.LabelPolicyActivated, model.LabelPolicyActivated: + policy, err = m.view.LabelPolicyByAggregateIDAndState(event.AggregateID, int32(domain.LabelPolicyStatePreview)) + if err != nil { + return err + } + go m.CleanUpBucket(policy) + err = policy.AppendEvent(event) default: return m.view.ProcessedLabelPolicySequence(event) } @@ -101,3 +124,27 @@ func (m *LabelPolicy) OnError(event *es_models.Event, err error) error { func (m *LabelPolicy) OnSuccess() error { return spooler.HandleSuccess(m.view.UpdateLabelPolicySpoolerRunTimestamp) } + +func (p *LabelPolicy) CleanUpBucket(policy *iam_model.LabelPolicyView) { + if p.static == nil { + return + } + ctx := context.Background() + objects, err := p.static.ListObjectInfos(ctx, policy.AggregateID, domain.LabelPolicyPrefix+"/", false) + if err != nil { + return + } + for _, object := range objects { + if !deleteableObject(object, policy) { + continue + } + p.static.RemoveObject(ctx, policy.AggregateID, object.Key) + } +} + +func deleteableObject(object *domain.AssetInfo, policy *iam_model.LabelPolicyView) bool { + if object.Key == policy.LogoURL || object.Key == policy.LogoDarkURL || object.Key == policy.IconURL || object.Key == policy.IconDarkURL || object.Key == policy.FontURL { + return false + } + return true +} diff --git a/internal/management/repository/eventsourcing/handler/user.go b/internal/management/repository/eventsourcing/handler/user.go index fdfc2a714d..0b9d0f2094 100644 --- a/internal/management/repository/eventsourcing/handler/user.go +++ b/internal/management/repository/eventsourcing/handler/user.go @@ -120,6 +120,8 @@ func (u *User) ProcessUser(event *es_models.Event) (err error) { es_model.HumanProfileChanged, es_model.HumanEmailChanged, es_model.HumanEmailVerified, + es_model.HumanAvatarAdded, + es_model.HumanAvatarRemoved, es_model.HumanPhoneChanged, es_model.HumanPhoneVerified, es_model.HumanPhoneRemoved, diff --git a/internal/management/repository/eventsourcing/repository.go b/internal/management/repository/eventsourcing/repository.go index ac1649d1a4..92d47a9e57 100644 --- a/internal/management/repository/eventsourcing/repository.go +++ b/internal/management/repository/eventsourcing/repository.go @@ -3,6 +3,7 @@ package eventsourcing import ( "github.com/caos/zitadel/internal/eventstore/v1" "github.com/caos/zitadel/internal/query" + "github.com/caos/zitadel/internal/static" sd "github.com/caos/zitadel/internal/config/systemdefaults" "github.com/caos/zitadel/internal/config/types" @@ -31,7 +32,7 @@ type EsRepository struct { view *mgmt_view.View } -func Start(conf Config, systemDefaults sd.SystemDefaults, roles []string, queries *query.Queries) (*EsRepository, error) { +func Start(conf Config, systemDefaults sd.SystemDefaults, roles []string, queries *query.Queries, staticStorage static.Storage) (*EsRepository, error) { es, err := v1.Start(conf.Eventstore) if err != nil { @@ -47,7 +48,7 @@ func Start(conf Config, systemDefaults sd.SystemDefaults, roles []string, querie return nil, err } - spool := spooler.StartSpooler(conf.Spooler, es, view, sqlClient, systemDefaults) + spool := spooler.StartSpooler(conf.Spooler, es, view, sqlClient, systemDefaults, staticStorage) return &EsRepository{ spooler: spool, diff --git a/internal/management/repository/eventsourcing/spooler/spooler.go b/internal/management/repository/eventsourcing/spooler/spooler.go index 84a6b6f2a0..3c76a43a0a 100644 --- a/internal/management/repository/eventsourcing/spooler/spooler.go +++ b/internal/management/repository/eventsourcing/spooler/spooler.go @@ -4,6 +4,7 @@ import ( "database/sql" "github.com/caos/zitadel/internal/config/systemdefaults" "github.com/caos/zitadel/internal/eventstore/v1" + "github.com/caos/zitadel/internal/static" "github.com/caos/zitadel/internal/eventstore/v1/spooler" "github.com/caos/zitadel/internal/management/repository/eventsourcing/handler" @@ -17,12 +18,12 @@ type SpoolerConfig struct { Handlers handler.Configs } -func StartSpooler(c SpoolerConfig, es v1.Eventstore, view *view.View, sql *sql.DB, defaults systemdefaults.SystemDefaults) *spooler.Spooler { +func StartSpooler(c SpoolerConfig, es v1.Eventstore, view *view.View, sql *sql.DB, defaults systemdefaults.SystemDefaults, staticStorage static.Storage) *spooler.Spooler { spoolerConfig := spooler.Config{ Eventstore: es, Locker: &locker{dbClient: sql}, ConcurrentWorkers: c.ConcurrentWorkers, - ViewHandlers: handler.Register(c.Handlers, c.BulkLimit, c.FailureCountUntilSkip, view, es, defaults), + ViewHandlers: handler.Register(c.Handlers, c.BulkLimit, c.FailureCountUntilSkip, view, es, defaults, staticStorage), } spool := spoolerConfig.New() spool.Start() diff --git a/internal/management/repository/eventsourcing/view/label_policies.go b/internal/management/repository/eventsourcing/view/label_policies.go index 92489ded89..f85857cc8d 100644 --- a/internal/management/repository/eventsourcing/view/label_policies.go +++ b/internal/management/repository/eventsourcing/view/label_policies.go @@ -12,8 +12,8 @@ const ( labelPolicyTable = "management.label_policies" ) -func (v *View) LabelPolicyByAggregateID(aggregateID string) (*model.LabelPolicyView, error) { - return view.GetLabelPolicyByAggregateID(v.Db, labelPolicyTable, aggregateID) +func (v *View) LabelPolicyByAggregateIDAndState(aggregateID string, state int32) (*model.LabelPolicyView, error) { + return view.GetLabelPolicyByAggregateIDAndState(v.Db, labelPolicyTable, aggregateID, state) } func (v *View) PutLabelPolicy(policy *model.LabelPolicyView, event *models.Event) error { diff --git a/internal/management/repository/org.go b/internal/management/repository/org.go index 285f95ebfd..bae912a8af 100644 --- a/internal/management/repository/org.go +++ b/internal/management/repository/org.go @@ -48,5 +48,7 @@ type OrgRepository interface { GetMailTexts(ctx context.Context) (*iam_model.MailTextsView, error) GetLabelPolicy(ctx context.Context) (*iam_model.LabelPolicyView, error) + GetPreviewLabelPolicy(ctx context.Context) (*iam_model.LabelPolicyView, error) GetDefaultLabelPolicy(ctx context.Context) (*iam_model.LabelPolicyView, error) + GetPreviewDefaultLabelPolicy(ctx context.Context) (*iam_model.LabelPolicyView, error) } diff --git a/internal/notification/notification.go b/internal/notification/notification.go index 06c77ae3d3..321e69ce7e 100644 --- a/internal/notification/notification.go +++ b/internal/notification/notification.go @@ -12,13 +12,18 @@ import ( ) type Config struct { + APIDomain string Repository eventsourcing.Config } -func Start(ctx context.Context, config Config, systemDefaults sd.SystemDefaults, command *command.Commands) { +func Start(ctx context.Context, config Config, systemDefaults sd.SystemDefaults, command *command.Commands, hasStatics bool) { statikFS, err := fs.NewWithNamespace("notification") logging.Log("CONFI-7usEW").OnError(err).Panic("unable to start listener") - _, err = eventsourcing.Start(config.Repository, statikFS, systemDefaults, command) + apiDomain := config.APIDomain + if !hasStatics { + apiDomain = "" + } + _, err = eventsourcing.Start(config.Repository, statikFS, systemDefaults, command, apiDomain) logging.Log("MAIN-9uBxp").OnError(err).Panic("unable to start app") } diff --git a/internal/notification/repository/eventsourcing/handler/handler.go b/internal/notification/repository/eventsourcing/handler/handler.go index b81c6bf5c7..310993bfed 100644 --- a/internal/notification/repository/eventsourcing/handler/handler.go +++ b/internal/notification/repository/eventsourcing/handler/handler.go @@ -34,7 +34,7 @@ func (h *handler) Eventstore() v1.Eventstore { return h.es } -func Register(configs Configs, bulkLimit, errorCount uint64, view *view.View, es v1.Eventstore, command *command.Commands, systemDefaults sd.SystemDefaults, i18n *i18n.Translator, dir http.FileSystem) []query.Handler { +func Register(configs Configs, bulkLimit, errorCount uint64, view *view.View, es v1.Eventstore, command *command.Commands, systemDefaults sd.SystemDefaults, i18n *i18n.Translator, dir http.FileSystem, apiDomain string) []query.Handler { aesCrypto, err := crypto.NewAESCrypto(systemDefaults.UserVerificationKey) if err != nil { logging.Log("HANDL-s90ew").WithError(err).Debug("error create new aes crypto") @@ -51,6 +51,7 @@ func Register(configs Configs, bulkLimit, errorCount uint64, view *view.View, es aesCrypto, i18n, dir, + apiDomain, ), } } diff --git a/internal/notification/repository/eventsourcing/handler/notification.go b/internal/notification/repository/eventsourcing/handler/notification.go index b0f5a0a0da..f42312226f 100644 --- a/internal/notification/repository/eventsourcing/handler/notification.go +++ b/internal/notification/repository/eventsourcing/handler/notification.go @@ -7,12 +7,15 @@ import ( "time" "github.com/caos/logging" + "golang.org/x/text/language" + "github.com/caos/zitadel/internal/api/authz" "github.com/caos/zitadel/internal/command" sd "github.com/caos/zitadel/internal/config/systemdefaults" "github.com/caos/zitadel/internal/crypto" + "github.com/caos/zitadel/internal/domain" "github.com/caos/zitadel/internal/errors" - v1 "github.com/caos/zitadel/internal/eventstore/v1" + "github.com/caos/zitadel/internal/eventstore/v1" "github.com/caos/zitadel/internal/eventstore/v1/models" "github.com/caos/zitadel/internal/eventstore/v1/query" "github.com/caos/zitadel/internal/eventstore/v1/spooler" @@ -23,7 +26,6 @@ import ( es_model "github.com/caos/zitadel/internal/user/repository/eventsourcing/model" "github.com/caos/zitadel/internal/user/repository/view" "github.com/caos/zitadel/internal/user/repository/view/model" - "golang.org/x/text/language" ) const ( @@ -50,6 +52,7 @@ type Notification struct { i18n *i18n.Translator statikDir http.FileSystem subscription *v1.Subscription + apiDomain string } func newNotification( @@ -59,6 +62,7 @@ func newNotification( aesCrypto crypto.EncryptionAlgorithm, translator *i18n.Translator, statikDir http.FileSystem, + apiDomain string, ) *Notification { h := &Notification{ handler: handler, @@ -67,6 +71,7 @@ func newNotification( i18n: translator, statikDir: statikDir, AesCrypto: aesCrypto, + apiDomain: apiDomain, } h.subscribe() @@ -142,12 +147,13 @@ func (n *Notification) handleInitUserCode(event *models.Event) (err error) { return err } - colors, err := n.getLabelPolicy(context.Background()) + ctx := getSetNotifyContextData(event.ResourceOwner) + colors, err := n.getLabelPolicy(ctx) if err != nil { return err } - template, err := n.getMailTemplate(context.Background()) + template, err := n.getMailTemplate(ctx) if err != nil { return err } @@ -157,16 +163,16 @@ func (n *Notification) handleInitUserCode(event *models.Event) (err error) { return err } - text, err := n.getMailText(context.Background(), mailTextTypeInitCode, user.PreferredLanguage) + text, err := n.getMailText(ctx, mailTextTypeInitCode, user.PreferredLanguage) if err != nil { return err } - err = types.SendUserInitCode(string(template.Template), text, user, initCode, n.systemDefaults, n.AesCrypto, colors) + err = types.SendUserInitCode(string(template.Template), text, user, initCode, n.systemDefaults, n.AesCrypto, colors, n.apiDomain) if err != nil { return err } - return n.command.HumanInitCodeSent(getSetNotifyContextData(event.ResourceOwner), event.ResourceOwner, event.AggregateID) + return n.command.HumanInitCodeSent(ctx, event.ResourceOwner, event.AggregateID) } func (n *Notification) handlePasswordCode(event *models.Event) (err error) { @@ -180,13 +186,13 @@ func (n *Notification) handlePasswordCode(event *models.Event) (err error) { if err != nil || alreadyHandled { return err } - - colors, err := n.getLabelPolicy(context.Background()) + ctx := getSetNotifyContextData(event.ResourceOwner) + colors, err := n.getLabelPolicy(ctx) if err != nil { return err } - template, err := n.getMailTemplate(context.Background()) + template, err := n.getMailTemplate(ctx) if err != nil { return err } @@ -196,15 +202,15 @@ func (n *Notification) handlePasswordCode(event *models.Event) (err error) { return err } - text, err := n.getMailText(context.Background(), mailTextTypePasswordReset, user.PreferredLanguage) + text, err := n.getMailText(ctx, mailTextTypePasswordReset, user.PreferredLanguage) if err != nil { return err } - err = types.SendPasswordCode(string(template.Template), text, user, pwCode, n.systemDefaults, n.AesCrypto, colors) + err = types.SendPasswordCode(string(template.Template), text, user, pwCode, n.systemDefaults, n.AesCrypto, colors, n.apiDomain) if err != nil { return err } - return n.command.PasswordCodeSent(getSetNotifyContextData(event.ResourceOwner), event.ResourceOwner, event.AggregateID) + return n.command.PasswordCodeSent(ctx, event.ResourceOwner, event.AggregateID) } func (n *Notification) handleEmailVerificationCode(event *models.Event) (err error) { @@ -219,12 +225,13 @@ func (n *Notification) handleEmailVerificationCode(event *models.Event) (err err return nil } - colors, err := n.getLabelPolicy(context.Background()) + ctx := getSetNotifyContextData(event.ResourceOwner) + colors, err := n.getLabelPolicy(ctx) if err != nil { return err } - template, err := n.getMailTemplate(context.Background()) + template, err := n.getMailTemplate(ctx) if err != nil { return err } @@ -234,16 +241,16 @@ func (n *Notification) handleEmailVerificationCode(event *models.Event) (err err return err } - text, err := n.getMailText(context.Background(), mailTextTypeVerifyEmail, user.PreferredLanguage) + text, err := n.getMailText(ctx, mailTextTypeVerifyEmail, user.PreferredLanguage) if err != nil { return err } - err = types.SendEmailVerificationCode(string(template.Template), text, user, emailCode, n.systemDefaults, n.AesCrypto, colors) + err = types.SendEmailVerificationCode(string(template.Template), text, user, emailCode, n.systemDefaults, n.AesCrypto, colors, n.apiDomain) if err != nil { return err } - return n.command.HumanEmailVerificationCodeSent(getSetNotifyContextData(event.ResourceOwner), event.ResourceOwner, event.AggregateID) + return n.command.HumanEmailVerificationCodeSent(ctx, event.ResourceOwner, event.AggregateID) } func (n *Notification) handlePhoneVerificationCode(event *models.Event) (err error) { @@ -285,25 +292,26 @@ func (n *Notification) handleDomainClaimed(event *models.Event) (err error) { if user.LastEmail == "" { return nil } - colors, err := n.getLabelPolicy(context.Background()) + ctx := getSetNotifyContextData(event.ResourceOwner) + colors, err := n.getLabelPolicy(ctx) if err != nil { return err } - template, err := n.getMailTemplate(context.Background()) + template, err := n.getMailTemplate(ctx) if err != nil { return err } - text, err := n.getMailText(context.Background(), mailTextTypeDomainClaimed, user.PreferredLanguage) + text, err := n.getMailText(ctx, mailTextTypeDomainClaimed, user.PreferredLanguage) if err != nil { return err } - err = types.SendDomainClaimed(string(template.Template), text, user, data["userName"], n.systemDefaults, colors) + err = types.SendDomainClaimed(string(template.Template), text, user, data["userName"], n.systemDefaults, colors, n.apiDomain) if err != nil { return err } - return n.command.UserDomainClaimedSent(getSetNotifyContextData(event.ResourceOwner), event.ResourceOwner, event.AggregateID) + return n.command.UserDomainClaimedSent(ctx, event.ResourceOwner, event.AggregateID) } func (n *Notification) checkIfCodeAlreadyHandledOrExpired(event *models.Event, expiry time.Duration, eventTypes ...models.EventType) (bool, error) { @@ -353,10 +361,10 @@ func getSetNotifyContextData(orgID string) context.Context { // Read organization specific colors func (n *Notification) getLabelPolicy(ctx context.Context) (*iam_model.LabelPolicyView, error) { // read from Org - policy, err := n.view.LabelPolicyByAggregateID(authz.GetCtxData(ctx).OrgID, labelPolicyTableOrg) + policy, err := n.view.LabelPolicyByAggregateIDAndState(authz.GetCtxData(ctx).OrgID, labelPolicyTableOrg, int32(domain.LabelPolicyStateActive)) if errors.IsNotFound(err) { // read from default - policy, err = n.view.LabelPolicyByAggregateID(n.systemDefaults.IamID, labelPolicyTableDef) + policy, err = n.view.LabelPolicyByAggregateIDAndState(n.systemDefaults.IamID, labelPolicyTableDef, int32(domain.LabelPolicyStateActive)) if err != nil { return nil, err } diff --git a/internal/notification/repository/eventsourcing/repository.go b/internal/notification/repository/eventsourcing/repository.go index cb0267ee25..22c5689b25 100644 --- a/internal/notification/repository/eventsourcing/repository.go +++ b/internal/notification/repository/eventsourcing/repository.go @@ -26,7 +26,7 @@ type EsRepository struct { spooler *es_spol.Spooler } -func Start(conf Config, dir http.FileSystem, systemDefaults sd.SystemDefaults, command *command.Commands) (*EsRepository, error) { +func Start(conf Config, dir http.FileSystem, systemDefaults sd.SystemDefaults, command *command.Commands, apiDomain string) (*EsRepository, error) { es, err := v1.Start(conf.Eventstore) if err != nil { return nil, err @@ -45,7 +45,7 @@ func Start(conf Config, dir http.FileSystem, systemDefaults sd.SystemDefaults, c if err != nil { return nil, err } - spool := spooler.StartSpooler(conf.Spooler, es, view, sqlClient, command, systemDefaults, translator, dir) + spool := spooler.StartSpooler(conf.Spooler, es, view, sqlClient, command, systemDefaults, translator, dir, apiDomain) return &EsRepository{ spool, diff --git a/internal/notification/repository/eventsourcing/spooler/spooler.go b/internal/notification/repository/eventsourcing/spooler/spooler.go index 9e783cf6b4..0dcf6f09aa 100644 --- a/internal/notification/repository/eventsourcing/spooler/spooler.go +++ b/internal/notification/repository/eventsourcing/spooler/spooler.go @@ -20,12 +20,12 @@ type SpoolerConfig struct { Handlers handler.Configs } -func StartSpooler(c SpoolerConfig, es v1.Eventstore, view *view.View, sql *sql.DB, command *command.Commands, systemDefaults sd.SystemDefaults, i18n *i18n.Translator, dir http.FileSystem) *spooler.Spooler { +func StartSpooler(c SpoolerConfig, es v1.Eventstore, view *view.View, sql *sql.DB, command *command.Commands, systemDefaults sd.SystemDefaults, i18n *i18n.Translator, dir http.FileSystem, apiDomain string) *spooler.Spooler { spoolerConfig := spooler.Config{ Eventstore: es, Locker: &locker{dbClient: sql}, ConcurrentWorkers: c.ConcurrentWorkers, - ViewHandlers: handler.Register(c.Handlers, c.BulkLimit, c.FailureCountUntilSkip, view, es, command, systemDefaults, i18n, dir), + ViewHandlers: handler.Register(c.Handlers, c.BulkLimit, c.FailureCountUntilSkip, view, es, command, systemDefaults, i18n, dir, apiDomain), } spool := spoolerConfig.New() spool.Start() diff --git a/internal/notification/repository/eventsourcing/view/label_policies.go b/internal/notification/repository/eventsourcing/view/label_policies.go index a330d4ac84..a43d0ecb78 100644 --- a/internal/notification/repository/eventsourcing/view/label_policies.go +++ b/internal/notification/repository/eventsourcing/view/label_policies.go @@ -5,6 +5,6 @@ import ( "github.com/caos/zitadel/internal/iam/repository/view/model" ) -func (v *View) LabelPolicyByAggregateID(aggregateID string, labelPolicyTableVar string) (*model.LabelPolicyView, error) { - return view.GetLabelPolicyByAggregateID(v.Db, labelPolicyTableVar, aggregateID) +func (v *View) LabelPolicyByAggregateIDAndState(aggregateID, labelPolicyTableVar string, state int32) (*model.LabelPolicyView, error) { + return view.GetLabelPolicyByAggregateIDAndState(v.Db, labelPolicyTableVar, aggregateID, state) } diff --git a/internal/notification/static/templates/template.html b/internal/notification/static/templates/template.html index fbcf19d24d..a2297dda90 100644 --- a/internal/notification/static/templates/template.html +++ b/internal/notification/static/templates/template.html @@ -1,8 +1,9 @@ + - + @@ -10,241 +11,362 @@ + + + + 96 + + + + + + - + + + + + - + + + {{if .FontURL}} + + {{end}} + - -
- - - - + + +
- -
- - + + +
+ +
+ + + +
+ + + + + +
+ + + + + - - -
+ + + + - - -
- - - + +
+ + + + + +
+ + + - - -
- -
- - + +
+ + +
+ + +
+ + + - - -
- -
- -
- - + + + + +
+ + + + + + +
+ + + - - -
- - - - - - -
- - - - - - -
- -
-
+ 		+ + +
- - - - +
+ +
+
+
+ +
+ + +
- - - - - - - -
- -
- - - - - - -
- -
- - - - - - -
- - - - - - - - - - - - - - - - - - -
-
{{.Greeting}}
-
-
{{.Text}}
-
- - - - -
- - {{.ButtonText}} - -
-
-

-

- -
-
CAOS AG | Teufener Strasse 19 | CH-9000 St. Gallen
-
-
-
- -
-
- -
+
+ + + + + +
- - -
-
- +
- \ No newline at end of file + + + + + + + + +
+ + + + + +
+ + + + + + + +
+ + +
+ + + + + + + +
+ + + + + + + + + + + + + + + + + {{if .IncludeFooter}} + + + + + + + + {{end}} + +
+ +
{{.Greeting}}
+ +
+ +
{{.Text}}
+ +
+ + + + + +
+ + {{.ButtonText}} + +
+ +
+ +

+

+ + + + +
+ +
{{.FooterText}}
+ +
+ +
+ +
+ + +
+ +
+ + + + + +
+ + +
+ +
+ + + + + + + + + + + + + + + \ No newline at end of file diff --git a/internal/notification/static/templates/template.mjml b/internal/notification/static/templates/template.mjml index 67ad7750b7..49595ee223 100644 --- a/internal/notification/static/templates/template.mjml +++ b/internal/notification/static/templates/template.mjml @@ -1,8 +1,8 @@ - - + + @@ -16,30 +16,36 @@ - + + {{if .IncludeLogo}} - + + {{end}} {{.Greeting}} {{.Text}} - {{.ButtonText}} - - - CAOS AG | Teufener Strasse 19 | CH-9000 St. Gallen + {{.ButtonText}} + + {{if .IncludeFooter}} + + + {{.FooterText}} + + {{end}} diff --git a/internal/notification/templates/templateData.go b/internal/notification/templates/templateData.go index 676af69d4b..895f1309d4 100644 --- a/internal/notification/templates/templateData.go +++ b/internal/notification/templates/templateData.go @@ -1,21 +1,45 @@ package templates import ( + "fmt" "html" + "strings" "github.com/caos/zitadel/internal/i18n" + iam_model "github.com/caos/zitadel/internal/iam/model" +) + +const ( + defaultFont = "http://fonts.googleapis.com/css?family=Lato:200,300,400,600" + defaultFontFamily = "-apple-system, BlinkMacSystemFont, Segoe UI, Lato, Arial, Helvetica, sans-serif" + defaultLogo = "https://static.zitadel.ch/zitadel-logo-dark@3x.png" + defaultFontColor = "#22292f" + defaultBackgroundColor = "#fafafa" + defaultPrimaryColor = "#5282C1" + //defaultOrgName = "CAOS AG" + //defaultOrgURL = "http://www.caos.ch" + //defaultFooter1 = "Teufener Strasse 19" + //defaultFooter2 = "CH-9000 St. Gallen" ) type TemplateData struct { - Title string - PreHeader string - Subject string - Greeting string - Text string - Href string - ButtonText string - PrimaryColor string - SecondaryColor string + Title string + PreHeader string + Subject string + Greeting string + Text string + Href string + ButtonText string + PrimaryColor string + BackgroundColor string + FontColor string + IncludeLogo bool + LogoURL string + FontURL string + FontFamily string + + IncludeFooter bool + FooterText string } func (data *TemplateData) Translate(i18n *i18n.Translator, args map[string]interface{}, langs ...string) { @@ -29,3 +53,46 @@ func (data *TemplateData) Translate(i18n *i18n.Translator, args map[string]inter } data.ButtonText = i18n.Localize(data.ButtonText, nil, langs...) } + +func GetTemplateData(apiDomain, href string, text *iam_model.MailTextView, policy *iam_model.LabelPolicyView) TemplateData { + templateData := TemplateData{ + Title: text.Title, + PreHeader: text.PreHeader, + Subject: text.Subject, + Greeting: text.Greeting, + Text: html.UnescapeString(text.Text), + Href: href, + ButtonText: text.ButtonText, + PrimaryColor: defaultPrimaryColor, + BackgroundColor: defaultBackgroundColor, + FontColor: defaultFontColor, + LogoURL: defaultLogo, + FontURL: defaultFont, + FontFamily: defaultFontFamily, + IncludeFooter: false, + } + if policy.PrimaryColor != "" { + templateData.PrimaryColor = policy.PrimaryColor + } + if policy.BackgroundColor != "" { + templateData.BackgroundColor = policy.BackgroundColor + } + if policy.FontColor != "" { + templateData.FontColor = policy.FontColor + } + if apiDomain == "" { + return templateData + } + if policy.LogoURL == "" { + templateData.IncludeLogo = false + } else { + templateData.IncludeLogo = true + templateData.LogoURL = fmt.Sprintf("%s/assets/v1/%s/%s", apiDomain, policy.AggregateID, policy.LogoURL) + } + if policy.FontURL != "" { + split := strings.Split(policy.FontURL, "/") + templateData.FontFamily = split[len(split)-1] + "," + defaultFontFamily + templateData.FontURL = fmt.Sprintf("%s/assets/v1/%s/%s", apiDomain, policy.AggregateID, policy.FontURL) + } + return templateData +} diff --git a/internal/notification/types/domain_claimed.go b/internal/notification/types/domain_claimed.go index 5af796f735..0717f0ea70 100644 --- a/internal/notification/types/domain_claimed.go +++ b/internal/notification/types/domain_claimed.go @@ -15,7 +15,7 @@ type DomainClaimedData struct { URL string } -func SendDomainClaimed(mailhtml string, text *iam_model.MailTextView, user *view_model.NotifyUser, username string, systemDefaults systemdefaults.SystemDefaults, colors *iam_model.LabelPolicyView) error { +func SendDomainClaimed(mailhtml string, text *iam_model.MailTextView, user *view_model.NotifyUser, username string, systemDefaults systemdefaults.SystemDefaults, colors *iam_model.LabelPolicyView, apiDomain string) error { url, err := templates.ParseTemplateText(systemDefaults.Notifications.Endpoints.DomainClaimed, &UrlData{UserID: user.ID}) if err != nil { return err @@ -33,18 +33,8 @@ func SendDomainClaimed(mailhtml string, text *iam_model.MailTextView, user *view text.Text = html.UnescapeString(text.Text) emailCodeData := &DomainClaimedData{ - TemplateData: templates.TemplateData{ - Title: text.Title, - PreHeader: text.PreHeader, - Subject: text.Subject, - Greeting: text.Greeting, - Text: html.UnescapeString(text.Text), - Href: url, - ButtonText: text.ButtonText, - PrimaryColor: colors.PrimaryColor, - SecondaryColor: colors.SecondaryColor, - }, - URL: url, + TemplateData: templates.GetTemplateData(apiDomain, url, text, colors), + URL: url, } template, err := templates.GetParsedTemplate(mailhtml, emailCodeData) if err != nil { diff --git a/internal/notification/types/email_verification_code.go b/internal/notification/types/email_verification_code.go index 8c97af995b..2654b4e897 100644 --- a/internal/notification/types/email_verification_code.go +++ b/internal/notification/types/email_verification_code.go @@ -16,7 +16,7 @@ type EmailVerificationCodeData struct { URL string } -func SendEmailVerificationCode(mailhtml string, text *iam_model.MailTextView, user *view_model.NotifyUser, code *es_model.EmailCode, systemDefaults systemdefaults.SystemDefaults, alg crypto.EncryptionAlgorithm, colors *iam_model.LabelPolicyView) error { +func SendEmailVerificationCode(mailhtml string, text *iam_model.MailTextView, user *view_model.NotifyUser, code *es_model.EmailCode, systemDefaults systemdefaults.SystemDefaults, alg crypto.EncryptionAlgorithm, colors *iam_model.LabelPolicyView, apiDomain string) error { codeString, err := crypto.DecryptString(code.Code, alg) if err != nil { return err @@ -36,18 +36,8 @@ func SendEmailVerificationCode(mailhtml string, text *iam_model.MailTextView, us text.Text = html.UnescapeString(text.Text) emailCodeData := &EmailVerificationCodeData{ - TemplateData: templates.TemplateData{ - Title: text.Title, - PreHeader: text.PreHeader, - Subject: text.Subject, - Greeting: text.Greeting, - Text: html.UnescapeString(text.Text), - Href: url, - ButtonText: text.ButtonText, - PrimaryColor: colors.PrimaryColor, - SecondaryColor: colors.SecondaryColor, - }, - URL: url, + TemplateData: templates.GetTemplateData(apiDomain, url, text, colors), + URL: url, } template, err := templates.GetParsedTemplate(mailhtml, emailCodeData) diff --git a/internal/notification/types/init_code.go b/internal/notification/types/init_code.go index c403e1bdb4..596af557d1 100644 --- a/internal/notification/types/init_code.go +++ b/internal/notification/types/init_code.go @@ -22,7 +22,7 @@ type UrlData struct { PasswordSet bool } -func SendUserInitCode(mailhtml string, text *iam_model.MailTextView, user *view_model.NotifyUser, code *es_model.InitUserCode, systemDefaults systemdefaults.SystemDefaults, alg crypto.EncryptionAlgorithm, colors *iam_model.LabelPolicyView) error { +func SendUserInitCode(mailhtml string, text *iam_model.MailTextView, user *view_model.NotifyUser, code *es_model.InitUserCode, systemDefaults systemdefaults.SystemDefaults, alg crypto.EncryptionAlgorithm, colors *iam_model.LabelPolicyView, apiDomain string) error { codeString, err := crypto.DecryptString(code.Code, alg) if err != nil { return err @@ -43,18 +43,8 @@ func SendUserInitCode(mailhtml string, text *iam_model.MailTextView, user *view_ text.Text = html.UnescapeString(text.Text) emailCodeData := &InitCodeEmailData{ - TemplateData: templates.TemplateData{ - Title: text.Title, - PreHeader: text.PreHeader, - Subject: text.Subject, - Greeting: text.Greeting, - Text: html.UnescapeString(text.Text), - Href: url, - ButtonText: text.ButtonText, - PrimaryColor: colors.PrimaryColor, - SecondaryColor: colors.SecondaryColor, - }, - URL: url, + TemplateData: templates.GetTemplateData(apiDomain, url, text, colors), + URL: url, } template, err := templates.GetParsedTemplate(mailhtml, emailCodeData) if err != nil { diff --git a/internal/notification/types/password_code.go b/internal/notification/types/password_code.go index 7f072d5c03..bdcb478dca 100644 --- a/internal/notification/types/password_code.go +++ b/internal/notification/types/password_code.go @@ -18,7 +18,7 @@ type PasswordCodeData struct { URL string } -func SendPasswordCode(mailhtml string, text *iam_model.MailTextView, user *view_model.NotifyUser, code *es_model.PasswordCode, systemDefaults systemdefaults.SystemDefaults, alg crypto.EncryptionAlgorithm, colors *iam_model.LabelPolicyView) error { +func SendPasswordCode(mailhtml string, text *iam_model.MailTextView, user *view_model.NotifyUser, code *es_model.PasswordCode, systemDefaults systemdefaults.SystemDefaults, alg crypto.EncryptionAlgorithm, colors *iam_model.LabelPolicyView, apiDomain string) error { codeString, err := crypto.DecryptString(code.Code, alg) if err != nil { return err @@ -38,20 +38,10 @@ func SendPasswordCode(mailhtml string, text *iam_model.MailTextView, user *view_ text.Text = html.UnescapeString(text.Text) emailCodeData := &PasswordCodeData{ - TemplateData: templates.TemplateData{ - Title: text.Title, - PreHeader: text.PreHeader, - Subject: text.Subject, - Greeting: text.Greeting, - Text: html.UnescapeString(text.Text), - Href: url, - ButtonText: text.ButtonText, - PrimaryColor: colors.PrimaryColor, - SecondaryColor: colors.SecondaryColor, - }, - FirstName: user.FirstName, - LastName: user.LastName, - URL: url, + TemplateData: templates.GetTemplateData(apiDomain, url, text, colors), + FirstName: user.FirstName, + LastName: user.LastName, + URL: url, } template, err := templates.GetParsedTemplate(mailhtml, emailCodeData) if err != nil { diff --git a/internal/org/repository/eventsourcing/model/label_policy_test.go b/internal/org/repository/eventsourcing/model/label_policy_test.go index b482e5e4e9..7893f477ee 100644 --- a/internal/org/repository/eventsourcing/model/label_policy_test.go +++ b/internal/org/repository/eventsourcing/model/label_policy_test.go @@ -23,10 +23,10 @@ func TestAppendAddLabelPolicyEvent(t *testing.T) { name: "append add label policy event", args: args{ org: &Org{}, - policy: &iam_es_model.LabelPolicy{PrimaryColor: "000000", SecondaryColor: "FFFFFF"}, + policy: &iam_es_model.LabelPolicy{PrimaryColor: "000000", BackgroundColor: "FFFFFF"}, event: &es_models.Event{}, }, - result: &Org{LabelPolicy: &iam_es_model.LabelPolicy{PrimaryColor: "000000", SecondaryColor: "FFFFFF"}}, + result: &Org{LabelPolicy: &iam_es_model.LabelPolicy{PrimaryColor: "000000", BackgroundColor: "FFFFFF"}}, }, } for _, tt := range tests { @@ -39,8 +39,8 @@ func TestAppendAddLabelPolicyEvent(t *testing.T) { if tt.result.LabelPolicy.PrimaryColor != tt.args.org.LabelPolicy.PrimaryColor { t.Errorf("got wrong result: expected: %v, actual: %v ", tt.result.LabelPolicy.PrimaryColor, tt.args.org.LabelPolicy.PrimaryColor) } - if tt.result.LabelPolicy.SecondaryColor != tt.args.org.LabelPolicy.SecondaryColor { - t.Errorf("got wrong result: expected: %v, actual: %v ", tt.result.LabelPolicy.SecondaryColor, tt.args.org.LabelPolicy.SecondaryColor) + if tt.result.LabelPolicy.BackgroundColor != tt.args.org.LabelPolicy.BackgroundColor { + t.Errorf("got wrong result: expected: %v, actual: %v ", tt.result.LabelPolicy.BackgroundColor, tt.args.org.LabelPolicy.BackgroundColor) } }) } @@ -61,15 +61,15 @@ func TestAppendChangeLabelPolicyEvent(t *testing.T) { name: "append change label policy event", args: args{ org: &Org{LabelPolicy: &iam_es_model.LabelPolicy{ - SecondaryColor: "FFFFF0", - PrimaryColor: "000001", + BackgroundColor: "FFFFF0", + PrimaryColor: "000001", }}, - policy: &iam_es_model.LabelPolicy{PrimaryColor: "000000", SecondaryColor: "FFFFFF"}, + policy: &iam_es_model.LabelPolicy{PrimaryColor: "000000", BackgroundColor: "FFFFFF"}, event: &es_models.Event{}, }, result: &Org{LabelPolicy: &iam_es_model.LabelPolicy{ - SecondaryColor: "FFFFFF", - PrimaryColor: "000000", + BackgroundColor: "FFFFFF", + PrimaryColor: "000000", }}, }, } @@ -83,8 +83,8 @@ func TestAppendChangeLabelPolicyEvent(t *testing.T) { if tt.result.LabelPolicy.PrimaryColor != tt.args.org.LabelPolicy.PrimaryColor { t.Errorf("got wrong result: expected: %v, actual: %v ", tt.result.LabelPolicy.PrimaryColor, tt.args.org.LabelPolicy.PrimaryColor) } - if tt.result.LabelPolicy.SecondaryColor != tt.args.org.LabelPolicy.SecondaryColor { - t.Errorf("got wrong result: expected: %v, actual: %v ", tt.result.LabelPolicy.SecondaryColor, tt.args.org.LabelPolicy.SecondaryColor) + if tt.result.LabelPolicy.BackgroundColor != tt.args.org.LabelPolicy.BackgroundColor { + t.Errorf("got wrong result: expected: %v, actual: %v ", tt.result.LabelPolicy.BackgroundColor, tt.args.org.LabelPolicy.BackgroundColor) } }) } diff --git a/internal/org/repository/eventsourcing/model/types.go b/internal/org/repository/eventsourcing/model/types.go index c01cd84ea3..d4ed82aacb 100644 --- a/internal/org/repository/eventsourcing/model/types.go +++ b/internal/org/repository/eventsourcing/model/types.go @@ -56,9 +56,21 @@ const ( LoginPolicyMultiFactorAdded models.EventType = "org.policy.login.multifactor.added" LoginPolicyMultiFactorRemoved models.EventType = "org.policy.login.multifactor.removed" - LabelPolicyAdded models.EventType = "org.policy.label.added" - LabelPolicyChanged models.EventType = "org.policy.label.changed" - LabelPolicyRemoved models.EventType = "org.policy.label.removed" + LabelPolicyAdded models.EventType = "org.policy.label.added" + LabelPolicyChanged models.EventType = "org.policy.label.changed" + LabelPolicyActivated models.EventType = "org.policy.label.activated" + LabelPolicyRemoved models.EventType = "org.policy.label.removed" + LabelPolicyLogoAdded models.EventType = "org.policy.label.logo.added" + LabelPolicyLogoRemoved models.EventType = "org.policy.label.logo.removed" + LabelPolicyIconAdded models.EventType = "org.policy.label.icon.added" + LabelPolicyIconRemoved models.EventType = "org.policy.label.icon.removed" + LabelPolicyLogoDarkAdded models.EventType = "org.policy.label.logo.dark.added" + LabelPolicyLogoDarkRemoved models.EventType = "org.policy.label.logo.dark.removed" + LabelPolicyIconDarkAdded models.EventType = "org.policy.label.icon.dark.added" + LabelPolicyIconDarkRemoved models.EventType = "org.policy.label.icon.dark.removed" + LabelPolicyFontAdded models.EventType = "org.policy.label.font.added" + LabelPolicyFontRemoved models.EventType = "org.policy.label.font.removed" + LabelPolicyAssetsRemoved models.EventType = "org.policy.label.assets.removed" MailTemplateAdded models.EventType = "org.mail.template.added" MailTemplateChanged models.EventType = "org.mail.template.changed" diff --git a/internal/query/converter.go b/internal/query/converter.go index 512f366cdb..dc815e0360 100644 --- a/internal/query/converter.go +++ b/internal/query/converter.go @@ -73,10 +73,16 @@ func readModelToMembers(readModel *IAMMembersReadModel) []*model.IAMMember { func readModelToLabelPolicy(readModel *IAMLabelPolicyReadModel) *model.LabelPolicy { return &model.LabelPolicy{ - ObjectRoot: readModelToObjectRoot(readModel.LabelPolicyReadModel.ReadModel), - PrimaryColor: readModel.PrimaryColor, - SecondaryColor: readModel.SecondaryColor, - Default: true, + ObjectRoot: readModelToObjectRoot(readModel.LabelPolicyReadModel.ReadModel), + PrimaryColor: readModel.PrimaryColor, + BackgroundColor: readModel.BackgroundColor, + WarnColor: readModel.WarnColor, + FontColor: readModel.FontColor, + PrimaryColorDark: readModel.PrimaryColorDark, + BackgroundColorDark: readModel.BackgroundColorDark, + WarnColorDark: readModel.WarnColorDark, + FontColorDark: readModel.FontColorDark, + Default: true, } } diff --git a/internal/query/policy_label_model.go b/internal/query/policy_label_model.go index 4a845c5c00..b7df0fc669 100644 --- a/internal/query/policy_label_model.go +++ b/internal/query/policy_label_model.go @@ -8,9 +8,15 @@ import ( type LabelPolicyReadModel struct { eventstore.ReadModel - PrimaryColor string - SecondaryColor string - IsActive bool + PrimaryColor string + BackgroundColor string + WarnColor string + FontColor string + PrimaryColorDark string + BackgroundColorDark string + WarnColorDark string + FontColorDark string + IsActive bool } func (rm *LabelPolicyReadModel) Reduce() error { @@ -18,14 +24,38 @@ func (rm *LabelPolicyReadModel) Reduce() error { switch e := event.(type) { case *policy.LabelPolicyAddedEvent: rm.PrimaryColor = e.PrimaryColor - rm.SecondaryColor = e.SecondaryColor + rm.BackgroundColor = e.BackgroundColor + rm.FontColor = e.FontColor + rm.WarnColor = e.WarnColor + rm.PrimaryColorDark = e.PrimaryColorDark + rm.BackgroundColorDark = e.BackgroundColorDark + rm.FontColorDark = e.FontColorDark + rm.WarnColorDark = e.WarnColorDark rm.IsActive = true case *policy.LabelPolicyChangedEvent: if e.PrimaryColor != nil { rm.PrimaryColor = *e.PrimaryColor } - if e.SecondaryColor != nil { - rm.SecondaryColor = *e.SecondaryColor + if e.BackgroundColor != nil { + rm.BackgroundColor = *e.BackgroundColor + } + if e.WarnColor != nil { + rm.WarnColor = *e.WarnColor + } + if e.FontColor != nil { + rm.FontColor = *e.FontColor + } + if e.PrimaryColorDark != nil { + rm.PrimaryColorDark = *e.PrimaryColorDark + } + if e.BackgroundColorDark != nil { + rm.BackgroundColorDark = *e.BackgroundColorDark + } + if e.WarnColorDark != nil { + rm.WarnColorDark = *e.WarnColorDark + } + if e.FontColorDark != nil { + rm.FontColorDark = *e.FontColorDark } case *policy.LabelPolicyRemovedEvent: rm.IsActive = false diff --git a/internal/repository/asset/asset.go b/internal/repository/asset/asset.go new file mode 100644 index 0000000000..bc9c7655cf --- /dev/null +++ b/internal/repository/asset/asset.go @@ -0,0 +1,90 @@ +package asset + +import ( + "encoding/json" + + "github.com/caos/zitadel/internal/errors" + "github.com/caos/zitadel/internal/eventstore" + "github.com/caos/zitadel/internal/eventstore/repository" +) + +const ( + AddedEventType = "asset.added" + RemovedEventType = "asset.removed" +) + +type AddedEvent struct { + eventstore.BaseEvent `json:"-"` + + StoreKey string `json:"storeKey"` +} + +func (e *AddedEvent) Data() interface{} { + return e +} + +func (e *AddedEvent) UniqueConstraints() []*eventstore.EventUniqueConstraint { + return nil +} + +func NewAddedEvent( + base *eventstore.BaseEvent, + key string, +) *AddedEvent { + + return &AddedEvent{ + BaseEvent: *base, + StoreKey: key, + } +} + +func AddedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e := &AddedEvent{ + BaseEvent: *eventstore.BaseEventFromRepo(event), + } + + err := json.Unmarshal(event.Data, e) + if err != nil { + return nil, errors.ThrowInternal(err, "ASSET-1WEAx", "unable to unmarshal asset") + } + + return e, nil +} + +type RemovedEvent struct { + eventstore.BaseEvent `json:"-"` + + StoreKey string `json:"storeKey"` +} + +func (e *RemovedEvent) Data() interface{} { + return e +} + +func (e *RemovedEvent) UniqueConstraints() []*eventstore.EventUniqueConstraint { + return nil +} + +func NewRemovedEvent( + base *eventstore.BaseEvent, + key string, +) *RemovedEvent { + + return &RemovedEvent{ + BaseEvent: *base, + StoreKey: key, + } +} + +func RemovedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e := &RemovedEvent{ + BaseEvent: *eventstore.BaseEventFromRepo(event), + } + + err := json.Unmarshal(event.Data, e) + if err != nil { + return nil, errors.ThrowInternal(err, "ASSET-1m9PP", "unable to unmarshal asset") + } + + return e, nil +} diff --git a/internal/repository/features/features.go b/internal/repository/features/features.go index 65a3ddfaa6..b7dde676f4 100644 --- a/internal/repository/features/features.go +++ b/internal/repository/features/features.go @@ -32,6 +32,8 @@ type FeaturesSetEvent struct { LoginPolicyPasswordReset *bool `json:"loginPolicyPasswordReset,omitempty"` PasswordComplexityPolicy *bool `json:"passwordComplexityPolicy,omitempty"` LabelPolicy *bool `json:"labelPolicy,omitempty"` + LabelPolicyPrivateLabel *bool `json:"labelPolicyPrivateLabel,omitempty"` + LabelPolicyWatermark *bool `json:"labelPolicyWatermark,omitempty"` CustomDomain *bool `json:"customDomain,omitempty"` } @@ -133,9 +135,15 @@ func ChangePasswordComplexityPolicy(passwordComplexityPolicy bool) func(event *F } } -func ChangeLabelPolicy(labelPolicy bool) func(event *FeaturesSetEvent) { +func ChangeLabelPolicyPrivateLabel(labelPolicyPrivateLabel bool) func(event *FeaturesSetEvent) { return func(e *FeaturesSetEvent) { - e.LabelPolicy = &labelPolicy + e.LabelPolicyPrivateLabel = &labelPolicyPrivateLabel + } +} + +func ChangeLabelPolicyWatermark(labelPolicyWatermark bool) func(event *FeaturesSetEvent) { + return func(e *FeaturesSetEvent) { + e.LabelPolicyWatermark = &labelPolicyWatermark } } diff --git a/internal/repository/iam/eventstore.go b/internal/repository/iam/eventstore.go index d50e6658b4..0e06b86e94 100644 --- a/internal/repository/iam/eventstore.go +++ b/internal/repository/iam/eventstore.go @@ -12,6 +12,18 @@ func RegisterEventMappers(es *eventstore.Eventstore) { RegisterFilterEventMapper(UniqueConstraintsMigratedEventType, MigrateUniqueConstraintEventMapper). RegisterFilterEventMapper(LabelPolicyAddedEventType, LabelPolicyAddedEventMapper). RegisterFilterEventMapper(LabelPolicyChangedEventType, LabelPolicyChangedEventMapper). + RegisterFilterEventMapper(LabelPolicyActivatedEventType, LabelPolicyActivatedEventMapper). + RegisterFilterEventMapper(LabelPolicyLogoAddedEventType, LabelPolicyLogoAddedEventMapper). + RegisterFilterEventMapper(LabelPolicyLogoRemovedEventType, LabelPolicyLogoRemovedEventMapper). + RegisterFilterEventMapper(LabelPolicyIconAddedEventType, LabelPolicyIconAddedEventMapper). + RegisterFilterEventMapper(LabelPolicyIconRemovedEventType, LabelPolicyIconRemovedEventMapper). + RegisterFilterEventMapper(LabelPolicyLogoDarkAddedEventType, LabelPolicyLogoDarkAddedEventMapper). + RegisterFilterEventMapper(LabelPolicyLogoDarkRemovedEventType, LabelPolicyLogoDarkRemovedEventMapper). + RegisterFilterEventMapper(LabelPolicyIconDarkAddedEventType, LabelPolicyIconDarkAddedEventMapper). + RegisterFilterEventMapper(LabelPolicyIconDarkRemovedEventType, LabelPolicyIconDarkRemovedEventMapper). + RegisterFilterEventMapper(LabelPolicyFontAddedEventType, LabelPolicyFontAddedEventMapper). + RegisterFilterEventMapper(LabelPolicyFontRemovedEventType, LabelPolicyFontRemovedEventMapper). + RegisterFilterEventMapper(LabelPolicyAssetsRemovedEventType, LabelPolicyAssetsRemovedEventMapper). RegisterFilterEventMapper(LoginPolicyAddedEventType, LoginPolicyAddedEventMapper). RegisterFilterEventMapper(LoginPolicyChangedEventType, LoginPolicyChangedEventMapper). RegisterFilterEventMapper(OrgIAMPolicyAddedEventType, OrgIAMPolicyAddedEventMapper). diff --git a/internal/repository/iam/policy_label.go b/internal/repository/iam/policy_label.go index a1dd04c65e..e6d0cf55fb 100644 --- a/internal/repository/iam/policy_label.go +++ b/internal/repository/iam/policy_label.go @@ -9,8 +9,23 @@ import ( ) var ( - LabelPolicyAddedEventType = iamEventTypePrefix + policy.LabelPolicyAddedEventType - LabelPolicyChangedEventType = iamEventTypePrefix + policy.LabelPolicyChangedEventType + LabelPolicyAddedEventType = iamEventTypePrefix + policy.LabelPolicyAddedEventType + LabelPolicyChangedEventType = iamEventTypePrefix + policy.LabelPolicyChangedEventType + LabelPolicyActivatedEventType = iamEventTypePrefix + policy.LabelPolicyActivatedEventType + + LabelPolicyLogoAddedEventType = iamEventTypePrefix + policy.LabelPolicyLogoAddedEventType + LabelPolicyLogoRemovedEventType = iamEventTypePrefix + policy.LabelPolicyLogoRemovedEventType + LabelPolicyIconAddedEventType = iamEventTypePrefix + policy.LabelPolicyIconAddedEventType + LabelPolicyIconRemovedEventType = iamEventTypePrefix + policy.LabelPolicyIconRemovedEventType + LabelPolicyLogoDarkAddedEventType = iamEventTypePrefix + policy.LabelPolicyLogoDarkAddedEventType + LabelPolicyLogoDarkRemovedEventType = iamEventTypePrefix + policy.LabelPolicyLogoDarkRemovedEventType + LabelPolicyIconDarkAddedEventType = iamEventTypePrefix + policy.LabelPolicyIconDarkAddedEventType + LabelPolicyIconDarkRemovedEventType = iamEventTypePrefix + policy.LabelPolicyIconDarkRemovedEventType + + LabelPolicyFontAddedEventType = iamEventTypePrefix + policy.LabelPolicyFontAddedEventType + LabelPolicyFontRemovedEventType = iamEventTypePrefix + policy.LabelPolicyFontRemovedEventType + + LabelPolicyAssetsRemovedEventType = iamEventTypePrefix + policy.LabelPolicyAssetsRemovedEventType ) type LabelPolicyAddedEvent struct { @@ -21,8 +36,16 @@ func NewLabelPolicyAddedEvent( ctx context.Context, aggregate *eventstore.Aggregate, primaryColor, - secondaryColor string, - hideLoginNameSuffix bool, + backgroundColor, + warnColor, + fontColor, + primaryColorDark, + backgroundColorDark, + warnColorDark, + fontColorDark string, + hideLoginNameSuffix, + errorMsgPopup, + disableWatermark bool, ) *LabelPolicyAddedEvent { return &LabelPolicyAddedEvent{ LabelPolicyAddedEvent: *policy.NewLabelPolicyAddedEvent( @@ -31,8 +54,16 @@ func NewLabelPolicyAddedEvent( aggregate, LabelPolicyAddedEventType), primaryColor, - secondaryColor, - hideLoginNameSuffix), + backgroundColor, + warnColor, + fontColor, + primaryColorDark, + backgroundColorDark, + warnColorDark, + fontColorDark, + hideLoginNameSuffix, + errorMsgPopup, + disableWatermark), } } @@ -75,3 +106,355 @@ func LabelPolicyChangedEventMapper(event *repository.Event) (eventstore.EventRea return &LabelPolicyChangedEvent{LabelPolicyChangedEvent: *e.(*policy.LabelPolicyChangedEvent)}, nil } + +type LabelPolicyActivatedEvent struct { + policy.LabelPolicyActivatedEvent +} + +func NewLabelPolicyActivatedEvent( + ctx context.Context, + aggregate *eventstore.Aggregate, +) *LabelPolicyActivatedEvent { + return &LabelPolicyActivatedEvent{ + LabelPolicyActivatedEvent: *policy.NewLabelPolicyActivatedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + LabelPolicyActivatedEventType), + ), + } +} + +func LabelPolicyActivatedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := policy.LabelPolicyActivatedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyActivatedEvent{LabelPolicyActivatedEvent: *e.(*policy.LabelPolicyActivatedEvent)}, nil +} + +type LabelPolicyLogoAddedEvent struct { + policy.LabelPolicyLogoAddedEvent +} + +func NewLabelPolicyLogoAddedEvent( + ctx context.Context, + aggregate *eventstore.Aggregate, + storageKey string, +) *LabelPolicyLogoAddedEvent { + return &LabelPolicyLogoAddedEvent{ + LabelPolicyLogoAddedEvent: *policy.NewLabelPolicyLogoAddedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + LabelPolicyLogoAddedEventType), + storageKey, + ), + } +} + +func LabelPolicyLogoAddedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := policy.LabelPolicyLogoAddedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyLogoAddedEvent{LabelPolicyLogoAddedEvent: *e.(*policy.LabelPolicyLogoAddedEvent)}, nil +} + +type LabelPolicyLogoRemovedEvent struct { + policy.LabelPolicyLogoRemovedEvent +} + +func NewLabelPolicyLogoRemovedEvent( + ctx context.Context, + aggregate *eventstore.Aggregate, + storageKey string, +) *LabelPolicyLogoRemovedEvent { + return &LabelPolicyLogoRemovedEvent{ + LabelPolicyLogoRemovedEvent: *policy.NewLabelPolicyLogoRemovedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + LabelPolicyLogoRemovedEventType), + storageKey, + ), + } +} + +func LabelPolicyLogoRemovedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := policy.LabelPolicyLogoRemovedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyLogoRemovedEvent{LabelPolicyLogoRemovedEvent: *e.(*policy.LabelPolicyLogoRemovedEvent)}, nil +} + +type LabelPolicyIconAddedEvent struct { + policy.LabelPolicyIconAddedEvent +} + +func NewLabelPolicyIconAddedEvent( + ctx context.Context, + aggregate *eventstore.Aggregate, + storageKey string, +) *LabelPolicyIconAddedEvent { + return &LabelPolicyIconAddedEvent{ + LabelPolicyIconAddedEvent: *policy.NewLabelPolicyIconAddedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + LabelPolicyIconAddedEventType), + storageKey, + ), + } +} + +func LabelPolicyIconAddedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := policy.LabelPolicyIconAddedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyIconAddedEvent{LabelPolicyIconAddedEvent: *e.(*policy.LabelPolicyIconAddedEvent)}, nil +} + +type LabelPolicyIconRemovedEvent struct { + policy.LabelPolicyIconRemovedEvent +} + +func NewLabelPolicyIconRemovedEvent( + ctx context.Context, + aggregate *eventstore.Aggregate, + storageKey string, +) *LabelPolicyIconRemovedEvent { + return &LabelPolicyIconRemovedEvent{ + LabelPolicyIconRemovedEvent: *policy.NewLabelPolicyIconRemovedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + LabelPolicyIconRemovedEventType), + storageKey, + ), + } +} + +func LabelPolicyIconRemovedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := policy.LabelPolicyIconRemovedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyIconRemovedEvent{LabelPolicyIconRemovedEvent: *e.(*policy.LabelPolicyIconRemovedEvent)}, nil +} + +type LabelPolicyLogoDarkAddedEvent struct { + policy.LabelPolicyLogoDarkAddedEvent +} + +func NewLabelPolicyLogoDarkAddedEvent( + ctx context.Context, + aggregate *eventstore.Aggregate, + storageKey string, +) *LabelPolicyLogoDarkAddedEvent { + return &LabelPolicyLogoDarkAddedEvent{ + LabelPolicyLogoDarkAddedEvent: *policy.NewLabelPolicyLogoDarkAddedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + LabelPolicyLogoDarkAddedEventType), + storageKey, + ), + } +} + +func LabelPolicyLogoDarkAddedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := policy.LabelPolicyLogoDarkAddedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyLogoDarkAddedEvent{LabelPolicyLogoDarkAddedEvent: *e.(*policy.LabelPolicyLogoDarkAddedEvent)}, nil +} + +type LabelPolicyLogoDarkRemovedEvent struct { + policy.LabelPolicyLogoDarkRemovedEvent +} + +func NewLabelPolicyLogoDarkRemovedEvent( + ctx context.Context, + aggregate *eventstore.Aggregate, + storageKey string, +) *LabelPolicyLogoDarkRemovedEvent { + return &LabelPolicyLogoDarkRemovedEvent{ + LabelPolicyLogoDarkRemovedEvent: *policy.NewLabelPolicyLogoDarkRemovedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + LabelPolicyLogoDarkRemovedEventType), + storageKey, + ), + } +} + +func LabelPolicyLogoDarkRemovedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := policy.LabelPolicyLogoDarkRemovedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyLogoDarkRemovedEvent{LabelPolicyLogoDarkRemovedEvent: *e.(*policy.LabelPolicyLogoDarkRemovedEvent)}, nil +} + +type LabelPolicyIconDarkAddedEvent struct { + policy.LabelPolicyIconDarkAddedEvent +} + +func NewLabelPolicyIconDarkAddedEvent( + ctx context.Context, + aggregate *eventstore.Aggregate, + storageKey string, +) *LabelPolicyIconDarkAddedEvent { + return &LabelPolicyIconDarkAddedEvent{ + LabelPolicyIconDarkAddedEvent: *policy.NewLabelPolicyIconDarkAddedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + LabelPolicyIconDarkAddedEventType), + storageKey, + ), + } +} + +func LabelPolicyIconDarkAddedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := policy.LabelPolicyIconDarkAddedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyIconDarkAddedEvent{LabelPolicyIconDarkAddedEvent: *e.(*policy.LabelPolicyIconDarkAddedEvent)}, nil +} + +type LabelPolicyIconDarkRemovedEvent struct { + policy.LabelPolicyIconDarkRemovedEvent +} + +func NewLabelPolicyIconDarkRemovedEvent( + ctx context.Context, + aggregate *eventstore.Aggregate, + storageKey string, +) *LabelPolicyIconDarkRemovedEvent { + return &LabelPolicyIconDarkRemovedEvent{ + LabelPolicyIconDarkRemovedEvent: *policy.NewLabelPolicyIconDarkRemovedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + LabelPolicyIconDarkRemovedEventType), + storageKey, + ), + } +} + +func LabelPolicyIconDarkRemovedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := policy.LabelPolicyIconDarkRemovedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyIconDarkRemovedEvent{LabelPolicyIconDarkRemovedEvent: *e.(*policy.LabelPolicyIconDarkRemovedEvent)}, nil +} + +type LabelPolicyFontAddedEvent struct { + policy.LabelPolicyFontAddedEvent +} + +func NewLabelPolicyFontAddedEvent( + ctx context.Context, + aggregate *eventstore.Aggregate, + storageKey string, +) *LabelPolicyFontAddedEvent { + return &LabelPolicyFontAddedEvent{ + LabelPolicyFontAddedEvent: *policy.NewLabelPolicyFontAddedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + LabelPolicyFontAddedEventType), + storageKey, + ), + } +} + +func LabelPolicyFontAddedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := policy.LabelPolicyFontAddedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyFontAddedEvent{LabelPolicyFontAddedEvent: *e.(*policy.LabelPolicyFontAddedEvent)}, nil +} + +type LabelPolicyFontRemovedEvent struct { + policy.LabelPolicyFontRemovedEvent +} + +func NewLabelPolicyFontRemovedEvent( + ctx context.Context, + aggregate *eventstore.Aggregate, + storageKey string, +) *LabelPolicyFontRemovedEvent { + return &LabelPolicyFontRemovedEvent{ + LabelPolicyFontRemovedEvent: *policy.NewLabelPolicyFontRemovedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + LabelPolicyFontRemovedEventType), + storageKey, + ), + } +} + +func LabelPolicyFontRemovedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := policy.LabelPolicyFontRemovedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyFontRemovedEvent{LabelPolicyFontRemovedEvent: *e.(*policy.LabelPolicyFontRemovedEvent)}, nil +} + +type LabelPolicyAssetsRemovedEvent struct { + policy.LabelPolicyAssetsRemovedEvent +} + +func (e *LabelPolicyAssetsRemovedEvent) Data() interface{} { + return nil +} + +func (e *LabelPolicyAssetsRemovedEvent) UniqueConstraints() []*eventstore.EventUniqueConstraint { + return nil +} + +func NewLabelPolicyAssetsRemovedEvent( + ctx context.Context, + aggregate *eventstore.Aggregate, +) *LabelPolicyAssetsRemovedEvent { + return &LabelPolicyAssetsRemovedEvent{ + LabelPolicyAssetsRemovedEvent: *policy.NewLabelPolicyAssetsRemovedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + LabelPolicyAssetsRemovedEventType), + ), + } +} + +func LabelPolicyAssetsRemovedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := policy.LabelPolicyAssetsRemovedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyAssetsRemovedEvent{LabelPolicyAssetsRemovedEvent: *e.(*policy.LabelPolicyAssetsRemovedEvent)}, nil +} diff --git a/internal/repository/org/eventstore.go b/internal/repository/org/eventstore.go index 990fe160cb..1deed8d412 100644 --- a/internal/repository/org/eventstore.go +++ b/internal/repository/org/eventstore.go @@ -20,7 +20,19 @@ func RegisterEventMappers(es *eventstore.Eventstore) { RegisterFilterEventMapper(MemberRemovedEventType, MemberRemovedEventMapper). RegisterFilterEventMapper(LabelPolicyAddedEventType, LabelPolicyAddedEventMapper). RegisterFilterEventMapper(LabelPolicyChangedEventType, LabelPolicyChangedEventMapper). + RegisterFilterEventMapper(LabelPolicyActivatedEventType, LabelPolicyActivatedEventMapper). RegisterFilterEventMapper(LabelPolicyRemovedEventType, LabelPolicyRemovedEventMapper). + RegisterFilterEventMapper(LabelPolicyLogoAddedEventType, LabelPolicyLogoAddedEventMapper). + RegisterFilterEventMapper(LabelPolicyLogoRemovedEventType, LabelPolicyLogoRemovedEventMapper). + RegisterFilterEventMapper(LabelPolicyIconAddedEventType, LabelPolicyIconAddedEventMapper). + RegisterFilterEventMapper(LabelPolicyIconRemovedEventType, LabelPolicyIconRemovedEventMapper). + RegisterFilterEventMapper(LabelPolicyLogoDarkAddedEventType, LabelPolicyLogoDarkAddedEventMapper). + RegisterFilterEventMapper(LabelPolicyLogoDarkRemovedEventType, LabelPolicyLogoDarkRemovedEventMapper). + RegisterFilterEventMapper(LabelPolicyIconDarkAddedEventType, LabelPolicyIconDarkAddedEventMapper). + RegisterFilterEventMapper(LabelPolicyIconDarkRemovedEventType, LabelPolicyIconDarkRemovedEventMapper). + RegisterFilterEventMapper(LabelPolicyFontAddedEventType, LabelPolicyFontAddedEventMapper). + RegisterFilterEventMapper(LabelPolicyFontRemovedEventType, LabelPolicyFontRemovedEventMapper). + RegisterFilterEventMapper(LabelPolicyAssetsRemovedEventType, LabelPolicyAssetsRemovedEventMapper). RegisterFilterEventMapper(LoginPolicyAddedEventType, LoginPolicyAddedEventMapper). RegisterFilterEventMapper(LoginPolicyChangedEventType, LoginPolicyChangedEventMapper). RegisterFilterEventMapper(LoginPolicyRemovedEventType, LoginPolicyRemovedEventMapper). diff --git a/internal/repository/org/policy_label.go b/internal/repository/org/policy_label.go index 77c32dc21c..f250b3f5da 100644 --- a/internal/repository/org/policy_label.go +++ b/internal/repository/org/policy_label.go @@ -2,16 +2,31 @@ package org import ( "context" - "github.com/caos/zitadel/internal/eventstore" + "github.com/caos/zitadel/internal/eventstore" "github.com/caos/zitadel/internal/eventstore/repository" "github.com/caos/zitadel/internal/repository/policy" ) var ( - LabelPolicyAddedEventType = orgEventTypePrefix + policy.LabelPolicyAddedEventType - LabelPolicyChangedEventType = orgEventTypePrefix + policy.LabelPolicyChangedEventType - LabelPolicyRemovedEventType = orgEventTypePrefix + policy.LabelPolicyRemovedEventType + LabelPolicyAddedEventType = orgEventTypePrefix + policy.LabelPolicyAddedEventType + LabelPolicyChangedEventType = orgEventTypePrefix + policy.LabelPolicyChangedEventType + LabelPolicyActivatedEventType = orgEventTypePrefix + policy.LabelPolicyActivatedEventType + LabelPolicyRemovedEventType = orgEventTypePrefix + policy.LabelPolicyRemovedEventType + + LabelPolicyLogoAddedEventType = orgEventTypePrefix + policy.LabelPolicyLogoAddedEventType + LabelPolicyLogoRemovedEventType = orgEventTypePrefix + policy.LabelPolicyLogoRemovedEventType + LabelPolicyIconAddedEventType = orgEventTypePrefix + policy.LabelPolicyIconAddedEventType + LabelPolicyIconRemovedEventType = orgEventTypePrefix + policy.LabelPolicyIconRemovedEventType + LabelPolicyLogoDarkAddedEventType = orgEventTypePrefix + policy.LabelPolicyLogoDarkAddedEventType + LabelPolicyLogoDarkRemovedEventType = orgEventTypePrefix + policy.LabelPolicyLogoDarkRemovedEventType + LabelPolicyIconDarkAddedEventType = orgEventTypePrefix + policy.LabelPolicyIconDarkAddedEventType + LabelPolicyIconDarkRemovedEventType = orgEventTypePrefix + policy.LabelPolicyIconDarkRemovedEventType + + LabelPolicyFontAddedEventType = orgEventTypePrefix + policy.LabelPolicyFontAddedEventType + LabelPolicyFontRemovedEventType = orgEventTypePrefix + policy.LabelPolicyFontRemovedEventType + + LabelPolicyAssetsRemovedEventType = orgEventTypePrefix + policy.LabelPolicyAssetsRemovedEventType ) type LabelPolicyAddedEvent struct { @@ -22,8 +37,16 @@ func NewLabelPolicyAddedEvent( ctx context.Context, aggregate *eventstore.Aggregate, primaryColor, - secondaryColor string, - hideLoginNameSuffix bool, + backgroundColor, + warnColor, + fontColor, + primaryColorDark, + backgroundColorDark, + warnColorDark, + fontColorDark string, + hideLoginNameSuffix, + errorMsgPopup, + disableWatermark bool, ) *LabelPolicyAddedEvent { return &LabelPolicyAddedEvent{ LabelPolicyAddedEvent: *policy.NewLabelPolicyAddedEvent( @@ -32,8 +55,16 @@ func NewLabelPolicyAddedEvent( aggregate, LabelPolicyAddedEventType), primaryColor, - secondaryColor, - hideLoginNameSuffix), + backgroundColor, + warnColor, + fontColor, + primaryColorDark, + backgroundColorDark, + warnColorDark, + fontColorDark, + hideLoginNameSuffix, + errorMsgPopup, + disableWatermark), } } @@ -103,3 +134,355 @@ func LabelPolicyRemovedEventMapper(event *repository.Event) (eventstore.EventRea return &LabelPolicyRemovedEvent{LabelPolicyRemovedEvent: *e.(*policy.LabelPolicyRemovedEvent)}, nil } + +type LabelPolicyActivatedEvent struct { + policy.LabelPolicyActivatedEvent +} + +func NewLabelPolicyActivatedEvent( + ctx context.Context, + aggregate *eventstore.Aggregate, +) *LabelPolicyActivatedEvent { + return &LabelPolicyActivatedEvent{ + LabelPolicyActivatedEvent: *policy.NewLabelPolicyActivatedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + LabelPolicyActivatedEventType), + ), + } +} + +func LabelPolicyActivatedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := policy.LabelPolicyActivatedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyActivatedEvent{LabelPolicyActivatedEvent: *e.(*policy.LabelPolicyActivatedEvent)}, nil +} + +type LabelPolicyLogoAddedEvent struct { + policy.LabelPolicyLogoAddedEvent +} + +func NewLabelPolicyLogoAddedEvent( + ctx context.Context, + aggregate *eventstore.Aggregate, + storageKey string, +) *LabelPolicyLogoAddedEvent { + return &LabelPolicyLogoAddedEvent{ + LabelPolicyLogoAddedEvent: *policy.NewLabelPolicyLogoAddedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + LabelPolicyLogoAddedEventType), + storageKey, + ), + } +} + +func LabelPolicyLogoAddedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := policy.LabelPolicyLogoAddedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyLogoAddedEvent{LabelPolicyLogoAddedEvent: *e.(*policy.LabelPolicyLogoAddedEvent)}, nil +} + +type LabelPolicyLogoRemovedEvent struct { + policy.LabelPolicyLogoRemovedEvent +} + +func NewLabelPolicyLogoRemovedEvent( + ctx context.Context, + aggregate *eventstore.Aggregate, + storageKey string, +) *LabelPolicyLogoRemovedEvent { + return &LabelPolicyLogoRemovedEvent{ + LabelPolicyLogoRemovedEvent: *policy.NewLabelPolicyLogoRemovedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + LabelPolicyLogoRemovedEventType), + storageKey, + ), + } +} + +func LabelPolicyLogoRemovedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := policy.LabelPolicyLogoRemovedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyLogoRemovedEvent{LabelPolicyLogoRemovedEvent: *e.(*policy.LabelPolicyLogoRemovedEvent)}, nil +} + +type LabelPolicyIconAddedEvent struct { + policy.LabelPolicyIconAddedEvent +} + +func NewLabelPolicyIconAddedEvent( + ctx context.Context, + aggregate *eventstore.Aggregate, + storageKey string, +) *LabelPolicyIconAddedEvent { + return &LabelPolicyIconAddedEvent{ + LabelPolicyIconAddedEvent: *policy.NewLabelPolicyIconAddedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + LabelPolicyIconAddedEventType), + storageKey, + ), + } +} + +func LabelPolicyIconAddedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := policy.LabelPolicyIconAddedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyIconAddedEvent{LabelPolicyIconAddedEvent: *e.(*policy.LabelPolicyIconAddedEvent)}, nil +} + +type LabelPolicyIconRemovedEvent struct { + policy.LabelPolicyIconRemovedEvent +} + +func NewLabelPolicyIconRemovedEvent( + ctx context.Context, + aggregate *eventstore.Aggregate, + storageKey string, +) *LabelPolicyIconRemovedEvent { + return &LabelPolicyIconRemovedEvent{ + LabelPolicyIconRemovedEvent: *policy.NewLabelPolicyIconRemovedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + LabelPolicyIconRemovedEventType), + storageKey, + ), + } +} + +func LabelPolicyIconRemovedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := policy.LabelPolicyIconRemovedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyIconRemovedEvent{LabelPolicyIconRemovedEvent: *e.(*policy.LabelPolicyIconRemovedEvent)}, nil +} + +type LabelPolicyLogoDarkAddedEvent struct { + policy.LabelPolicyLogoDarkAddedEvent +} + +func NewLabelPolicyLogoDarkAddedEvent( + ctx context.Context, + aggregate *eventstore.Aggregate, + storageKey string, +) *LabelPolicyLogoDarkAddedEvent { + return &LabelPolicyLogoDarkAddedEvent{ + LabelPolicyLogoDarkAddedEvent: *policy.NewLabelPolicyLogoDarkAddedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + LabelPolicyLogoDarkAddedEventType), + storageKey, + ), + } +} + +func LabelPolicyLogoDarkAddedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := policy.LabelPolicyLogoDarkAddedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyLogoDarkAddedEvent{LabelPolicyLogoDarkAddedEvent: *e.(*policy.LabelPolicyLogoDarkAddedEvent)}, nil +} + +type LabelPolicyLogoDarkRemovedEvent struct { + policy.LabelPolicyLogoDarkRemovedEvent +} + +func NewLabelPolicyLogoDarkRemovedEvent( + ctx context.Context, + aggregate *eventstore.Aggregate, + storageKey string, +) *LabelPolicyLogoDarkRemovedEvent { + return &LabelPolicyLogoDarkRemovedEvent{ + LabelPolicyLogoDarkRemovedEvent: *policy.NewLabelPolicyLogoDarkRemovedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + LabelPolicyLogoDarkRemovedEventType), + storageKey, + ), + } +} + +func LabelPolicyLogoDarkRemovedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := policy.LabelPolicyLogoDarkRemovedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyLogoDarkRemovedEvent{LabelPolicyLogoDarkRemovedEvent: *e.(*policy.LabelPolicyLogoDarkRemovedEvent)}, nil +} + +type LabelPolicyIconDarkAddedEvent struct { + policy.LabelPolicyIconDarkAddedEvent +} + +func NewLabelPolicyIconDarkAddedEvent( + ctx context.Context, + aggregate *eventstore.Aggregate, + storageKey string, +) *LabelPolicyIconDarkAddedEvent { + return &LabelPolicyIconDarkAddedEvent{ + LabelPolicyIconDarkAddedEvent: *policy.NewLabelPolicyIconDarkAddedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + LabelPolicyIconDarkAddedEventType), + storageKey, + ), + } +} + +func LabelPolicyIconDarkAddedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := policy.LabelPolicyIconDarkAddedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyIconDarkAddedEvent{LabelPolicyIconDarkAddedEvent: *e.(*policy.LabelPolicyIconDarkAddedEvent)}, nil +} + +type LabelPolicyIconDarkRemovedEvent struct { + policy.LabelPolicyIconDarkRemovedEvent +} + +func NewLabelPolicyIconDarkRemovedEvent( + ctx context.Context, + aggregate *eventstore.Aggregate, + storageKey string, +) *LabelPolicyIconDarkRemovedEvent { + return &LabelPolicyIconDarkRemovedEvent{ + LabelPolicyIconDarkRemovedEvent: *policy.NewLabelPolicyIconDarkRemovedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + LabelPolicyIconDarkRemovedEventType), + storageKey, + ), + } +} + +func LabelPolicyIconDarkRemovedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := policy.LabelPolicyIconDarkRemovedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyIconDarkRemovedEvent{LabelPolicyIconDarkRemovedEvent: *e.(*policy.LabelPolicyIconDarkRemovedEvent)}, nil +} + +type LabelPolicyFontAddedEvent struct { + policy.LabelPolicyFontAddedEvent +} + +func NewLabelPolicyFontAddedEvent( + ctx context.Context, + aggregate *eventstore.Aggregate, + storageKey string, +) *LabelPolicyFontAddedEvent { + return &LabelPolicyFontAddedEvent{ + LabelPolicyFontAddedEvent: *policy.NewLabelPolicyFontAddedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + LabelPolicyFontAddedEventType), + storageKey, + ), + } +} + +func LabelPolicyFontAddedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := policy.LabelPolicyFontAddedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyFontAddedEvent{LabelPolicyFontAddedEvent: *e.(*policy.LabelPolicyFontAddedEvent)}, nil +} + +type LabelPolicyFontRemovedEvent struct { + policy.LabelPolicyFontRemovedEvent +} + +func NewLabelPolicyFontRemovedEvent( + ctx context.Context, + aggregate *eventstore.Aggregate, + storageKey string, +) *LabelPolicyFontRemovedEvent { + return &LabelPolicyFontRemovedEvent{ + LabelPolicyFontRemovedEvent: *policy.NewLabelPolicyFontRemovedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + LabelPolicyFontRemovedEventType), + storageKey, + ), + } +} + +func LabelPolicyFontRemovedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := policy.LabelPolicyFontRemovedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyFontRemovedEvent{LabelPolicyFontRemovedEvent: *e.(*policy.LabelPolicyFontRemovedEvent)}, nil +} + +type LabelPolicyAssetsRemovedEvent struct { + policy.LabelPolicyAssetsRemovedEvent +} + +func (e *LabelPolicyAssetsRemovedEvent) Data() interface{} { + return nil +} + +func (e *LabelPolicyAssetsRemovedEvent) UniqueConstraints() []*eventstore.EventUniqueConstraint { + return nil +} + +func NewLabelPolicyAssetsRemovedEvent( + ctx context.Context, + aggregate *eventstore.Aggregate, +) *LabelPolicyAssetsRemovedEvent { + return &LabelPolicyAssetsRemovedEvent{ + LabelPolicyAssetsRemovedEvent: *policy.NewLabelPolicyAssetsRemovedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + LabelPolicyAssetsRemovedEventType), + ), + } +} + +func LabelPolicyAssetsRemovedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := policy.LabelPolicyAssetsRemovedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyAssetsRemovedEvent{LabelPolicyAssetsRemovedEvent: *e.(*policy.LabelPolicyAssetsRemovedEvent)}, nil +} diff --git a/internal/repository/policy/label.go b/internal/repository/policy/label.go index b53009724c..1780686b05 100644 --- a/internal/repository/policy/label.go +++ b/internal/repository/policy/label.go @@ -2,14 +2,33 @@ package policy import ( "encoding/json" + "github.com/caos/zitadel/internal/errors" "github.com/caos/zitadel/internal/eventstore" "github.com/caos/zitadel/internal/eventstore/repository" + "github.com/caos/zitadel/internal/repository/asset" ) const ( - LabelPolicyAddedEventType = "policy.label.added" - LabelPolicyChangedEventType = "policy.label.changed" + LabelPolicyAddedEventType = "policy.label.added" + LabelPolicyChangedEventType = "policy.label.changed" + LabelPolicyActivatedEventType = "policy.label.activated" + + LabelPolicyLogoAddedEventType = "policy.label.logo.added" + LabelPolicyLogoRemovedEventType = "policy.label.logo.removed" + LabelPolicyIconAddedEventType = "policy.label.icon.added" + LabelPolicyIconRemovedEventType = "policy.label.icon.removed" + + LabelPolicyLogoDarkAddedEventType = "policy.label.logo.dark.added" + LabelPolicyLogoDarkRemovedEventType = "policy.label.logo.dark.removed" + LabelPolicyIconDarkAddedEventType = "policy.label.icon.dark.added" + LabelPolicyIconDarkRemovedEventType = "policy.label.icon.dark.removed" + + LabelPolicyFontAddedEventType = "policy.label.font.added" + LabelPolicyFontRemovedEventType = "policy.label.font.removed" + + LabelPolicyAssetsRemovedEventType = "policy.label.assets.removed" + LabelPolicyRemovedEventType = "policy.label.removed" ) @@ -17,9 +36,16 @@ type LabelPolicyAddedEvent struct { eventstore.BaseEvent `json:"-"` PrimaryColor string `json:"primaryColor,omitempty"` - SecondaryColor string `json:"secondaryColor,omitempty"` + BackgroundColor string `json:"backgroundColor,omitempty"` + WarnColor string `json:"warnColor,omitempty"` + FontColor string `json:"fontColor,omitempty"` + PrimaryColorDark string `json:"primaryColorDark,omitempty"` + BackgroundColorDark string `json:"backgroundColorDark,omitempty"` + WarnColorDark string `json:"warnColorDark,omitempty"` + FontColorDark string `json:"fontColorDark,omitempty"` HideLoginNameSuffix bool `json:"hideLoginNameSuffix,omitempty"` - LogoDarkThemeID string + ErrorMsgPopup bool `json:"errorMsgPopup,omitempty"` + DisableWatermark bool `json:"disableMsgPopup,omitempty"` } func (e *LabelPolicyAddedEvent) Data() interface{} { @@ -33,15 +59,31 @@ func (e *LabelPolicyAddedEvent) UniqueConstraints() []*eventstore.EventUniqueCon func NewLabelPolicyAddedEvent( base *eventstore.BaseEvent, primaryColor, - secondaryColor string, - hideLoginNameSuffix bool, + backgroundColor, + warnColor, + fontColor, + primaryColorDark, + backgroundColorDark, + warnColorDark, + fontColorDark string, + hideLoginNameSuffix, + errorMsgPopup, + disableWatermark bool, ) *LabelPolicyAddedEvent { return &LabelPolicyAddedEvent{ BaseEvent: *base, PrimaryColor: primaryColor, - SecondaryColor: secondaryColor, + BackgroundColor: backgroundColor, + WarnColor: warnColor, + FontColor: fontColor, + PrimaryColorDark: primaryColorDark, + BackgroundColorDark: backgroundColorDark, + WarnColorDark: warnColorDark, + FontColorDark: fontColorDark, HideLoginNameSuffix: hideLoginNameSuffix, + ErrorMsgPopup: errorMsgPopup, + DisableWatermark: disableWatermark, } } @@ -62,8 +104,16 @@ type LabelPolicyChangedEvent struct { eventstore.BaseEvent `json:"-"` PrimaryColor *string `json:"primaryColor,omitempty"` - SecondaryColor *string `json:"secondaryColor,omitempty"` + BackgroundColor *string `json:"backgroundColor,omitempty"` + WarnColor *string `json:"warnColor,omitempty"` + FontColor *string `json:"fontColor,omitempty"` + PrimaryColorDark *string `json:"primaryColorDark,omitempty"` + BackgroundColorDark *string `json:"backgroundColorDark,omitempty"` + WarnColorDark *string `json:"warnColorDark,omitempty"` + FontColorDark *string `json:"fontColorDark,omitempty"` HideLoginNameSuffix *bool `json:"hideLoginNameSuffix,omitempty"` + ErrorMsgPopup *bool `json:"errorMsgPopup,omitempty"` + DisableWatermark *bool `json:"disableWatermark,omitempty"` } func (e *LabelPolicyChangedEvent) Data() interface{} { @@ -98,9 +148,45 @@ func ChangePrimaryColor(primaryColor string) func(*LabelPolicyChangedEvent) { } } -func ChangeSecondaryColor(secondaryColor string) func(*LabelPolicyChangedEvent) { +func ChangeBackgroundColor(background string) func(*LabelPolicyChangedEvent) { return func(e *LabelPolicyChangedEvent) { - e.SecondaryColor = &secondaryColor + e.BackgroundColor = &background + } +} + +func ChangeWarnColor(warnColor string) func(*LabelPolicyChangedEvent) { + return func(e *LabelPolicyChangedEvent) { + e.WarnColor = &warnColor + } +} + +func ChangeFontColor(fontColor string) func(*LabelPolicyChangedEvent) { + return func(e *LabelPolicyChangedEvent) { + e.FontColor = &fontColor + } +} + +func ChangePrimaryColorDark(primaryColorDark string) func(*LabelPolicyChangedEvent) { + return func(e *LabelPolicyChangedEvent) { + e.PrimaryColorDark = &primaryColorDark + } +} + +func ChangeBackgroundColorDark(backgroundColorDark string) func(*LabelPolicyChangedEvent) { + return func(e *LabelPolicyChangedEvent) { + e.BackgroundColorDark = &backgroundColorDark + } +} + +func ChangeWarnColorDark(warnColorDark string) func(*LabelPolicyChangedEvent) { + return func(e *LabelPolicyChangedEvent) { + e.WarnColorDark = &warnColorDark + } +} + +func ChangeFontColorDark(fontColorDark string) func(*LabelPolicyChangedEvent) { + return func(e *LabelPolicyChangedEvent) { + e.FontColorDark = &fontColorDark } } @@ -110,6 +196,18 @@ func ChangeHideLoginNameSuffix(hideLoginNameSuffix bool) func(*LabelPolicyChange } } +func ChangeErrorMsgPopup(errMsgPopup bool) func(*LabelPolicyChangedEvent) { + return func(e *LabelPolicyChangedEvent) { + e.ErrorMsgPopup = &errMsgPopup + } +} + +func ChangeDisableWatermark(disableWatermark bool) func(*LabelPolicyChangedEvent) { + return func(e *LabelPolicyChangedEvent) { + e.DisableWatermark = &disableWatermark + } +} + func LabelPolicyChangedEventMapper(event *repository.Event) (eventstore.EventReader, error) { e := &LabelPolicyChangedEvent{ BaseEvent: *eventstore.BaseEventFromRepo(event), @@ -123,12 +221,36 @@ func LabelPolicyChangedEventMapper(event *repository.Event) (eventstore.EventRea return e, nil } +type LabelPolicyActivatedEvent struct { + eventstore.BaseEvent `json:"-"` +} + +func (e *LabelPolicyActivatedEvent) Data() interface{} { + return e +} + +func (e *LabelPolicyActivatedEvent) UniqueConstraints() []*eventstore.EventUniqueConstraint { + return nil +} + +func NewLabelPolicyActivatedEvent(base *eventstore.BaseEvent) *LabelPolicyActivatedEvent { + return &LabelPolicyActivatedEvent{ + BaseEvent: *base, + } +} + +func LabelPolicyActivatedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + return &LabelPolicyActivatedEvent{ + BaseEvent: *eventstore.BaseEventFromRepo(event), + }, nil +} + type LabelPolicyRemovedEvent struct { eventstore.BaseEvent `json:"-"` } func (e *LabelPolicyRemovedEvent) Data() interface{} { - return nil + return e } func (e *LabelPolicyRemovedEvent) UniqueConstraints() []*eventstore.EventUniqueConstraint { @@ -146,3 +268,297 @@ func LabelPolicyRemovedEventMapper(event *repository.Event) (eventstore.EventRea BaseEvent: *eventstore.BaseEventFromRepo(event), }, nil } + +type LabelPolicyLogoAddedEvent struct { + asset.AddedEvent +} + +func (e *LabelPolicyLogoAddedEvent) Data() interface{} { + return e +} + +func (e *LabelPolicyLogoAddedEvent) UniqueConstraints() []*eventstore.EventUniqueConstraint { + return nil +} + +func NewLabelPolicyLogoAddedEvent(base *eventstore.BaseEvent, storageKey string) *LabelPolicyLogoAddedEvent { + return &LabelPolicyLogoAddedEvent{ + *asset.NewAddedEvent(base, storageKey), + } +} + +func LabelPolicyLogoAddedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := asset.AddedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyLogoAddedEvent{*e.(*asset.AddedEvent)}, nil +} + +type LabelPolicyLogoRemovedEvent struct { + asset.RemovedEvent +} + +func (e *LabelPolicyLogoRemovedEvent) Data() interface{} { + return e +} + +func (e *LabelPolicyLogoRemovedEvent) UniqueConstraints() []*eventstore.EventUniqueConstraint { + return nil +} + +func NewLabelPolicyLogoRemovedEvent(base *eventstore.BaseEvent, storageKey string) *LabelPolicyLogoRemovedEvent { + return &LabelPolicyLogoRemovedEvent{ + *asset.NewRemovedEvent(base, storageKey), + } +} + +func LabelPolicyLogoRemovedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := asset.RemovedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyLogoRemovedEvent{*e.(*asset.RemovedEvent)}, nil +} + +type LabelPolicyIconAddedEvent struct { + asset.AddedEvent +} + +func (e *LabelPolicyIconAddedEvent) Data() interface{} { + return e +} + +func (e *LabelPolicyIconAddedEvent) UniqueConstraints() []*eventstore.EventUniqueConstraint { + return nil +} + +func NewLabelPolicyIconAddedEvent(base *eventstore.BaseEvent, storageKey string) *LabelPolicyIconAddedEvent { + return &LabelPolicyIconAddedEvent{ + *asset.NewAddedEvent(base, storageKey), + } +} + +func LabelPolicyIconAddedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := asset.AddedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyIconAddedEvent{*e.(*asset.AddedEvent)}, nil +} + +type LabelPolicyIconRemovedEvent struct { + asset.RemovedEvent +} + +func (e *LabelPolicyIconRemovedEvent) Data() interface{} { + return e +} + +func (e *LabelPolicyIconRemovedEvent) UniqueConstraints() []*eventstore.EventUniqueConstraint { + return nil +} + +func NewLabelPolicyIconRemovedEvent(base *eventstore.BaseEvent, storageKey string) *LabelPolicyIconRemovedEvent { + return &LabelPolicyIconRemovedEvent{ + *asset.NewRemovedEvent(base, storageKey), + } +} + +func LabelPolicyIconRemovedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := asset.RemovedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyIconRemovedEvent{*e.(*asset.RemovedEvent)}, nil +} + +type LabelPolicyLogoDarkAddedEvent struct { + asset.AddedEvent +} + +func (e *LabelPolicyLogoDarkAddedEvent) Data() interface{} { + return e +} + +func (e *LabelPolicyLogoDarkAddedEvent) UniqueConstraints() []*eventstore.EventUniqueConstraint { + return nil +} + +func NewLabelPolicyLogoDarkAddedEvent(base *eventstore.BaseEvent, storageKey string) *LabelPolicyLogoDarkAddedEvent { + return &LabelPolicyLogoDarkAddedEvent{ + *asset.NewAddedEvent(base, storageKey), + } +} + +func LabelPolicyLogoDarkAddedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := asset.AddedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyLogoDarkAddedEvent{*e.(*asset.AddedEvent)}, nil +} + +type LabelPolicyLogoDarkRemovedEvent struct { + asset.RemovedEvent +} + +func (e *LabelPolicyLogoDarkRemovedEvent) Data() interface{} { + return e +} + +func (e *LabelPolicyLogoDarkRemovedEvent) UniqueConstraints() []*eventstore.EventUniqueConstraint { + return nil +} + +func NewLabelPolicyLogoDarkRemovedEvent(base *eventstore.BaseEvent, storageKey string) *LabelPolicyLogoDarkRemovedEvent { + return &LabelPolicyLogoDarkRemovedEvent{ + *asset.NewRemovedEvent(base, storageKey), + } +} + +func LabelPolicyLogoDarkRemovedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := asset.RemovedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyLogoDarkRemovedEvent{*e.(*asset.RemovedEvent)}, nil +} + +type LabelPolicyIconDarkAddedEvent struct { + asset.AddedEvent +} + +func (e *LabelPolicyIconDarkAddedEvent) Data() interface{} { + return e +} + +func (e *LabelPolicyIconDarkAddedEvent) UniqueConstraints() []*eventstore.EventUniqueConstraint { + return nil +} + +func NewLabelPolicyIconDarkAddedEvent(base *eventstore.BaseEvent, storageKey string) *LabelPolicyIconDarkAddedEvent { + return &LabelPolicyIconDarkAddedEvent{ + *asset.NewAddedEvent(base, storageKey), + } +} + +func LabelPolicyIconDarkAddedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := asset.AddedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyIconDarkAddedEvent{*e.(*asset.AddedEvent)}, nil +} + +type LabelPolicyIconDarkRemovedEvent struct { + asset.RemovedEvent +} + +func (e *LabelPolicyIconDarkRemovedEvent) Data() interface{} { + return e +} + +func (e *LabelPolicyIconDarkRemovedEvent) UniqueConstraints() []*eventstore.EventUniqueConstraint { + return nil +} + +func NewLabelPolicyIconDarkRemovedEvent(base *eventstore.BaseEvent, storageKey string) *LabelPolicyIconDarkRemovedEvent { + return &LabelPolicyIconDarkRemovedEvent{ + *asset.NewRemovedEvent(base, storageKey), + } +} + +func LabelPolicyIconDarkRemovedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := asset.RemovedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyIconDarkRemovedEvent{*e.(*asset.RemovedEvent)}, nil +} + +type LabelPolicyFontAddedEvent struct { + asset.AddedEvent +} + +func (e *LabelPolicyFontAddedEvent) Data() interface{} { + return e +} + +func (e *LabelPolicyFontAddedEvent) UniqueConstraints() []*eventstore.EventUniqueConstraint { + return nil +} + +func NewLabelPolicyFontAddedEvent(base *eventstore.BaseEvent, storageKey string) *LabelPolicyFontAddedEvent { + return &LabelPolicyFontAddedEvent{ + *asset.NewAddedEvent(base, storageKey), + } +} + +func LabelPolicyFontAddedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := asset.AddedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyFontAddedEvent{*e.(*asset.AddedEvent)}, nil +} + +type LabelPolicyFontRemovedEvent struct { + asset.RemovedEvent +} + +func (e *LabelPolicyFontRemovedEvent) Data() interface{} { + return e +} + +func (e *LabelPolicyFontRemovedEvent) UniqueConstraints() []*eventstore.EventUniqueConstraint { + return nil +} + +func NewLabelPolicyFontRemovedEvent(base *eventstore.BaseEvent, storageKey string) *LabelPolicyFontRemovedEvent { + return &LabelPolicyFontRemovedEvent{ + *asset.NewRemovedEvent(base, storageKey), + } +} + +func LabelPolicyFontRemovedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := asset.RemovedEventMapper(event) + if err != nil { + return nil, err + } + + return &LabelPolicyFontRemovedEvent{*e.(*asset.RemovedEvent)}, nil +} + +type LabelPolicyAssetsRemovedEvent struct { + eventstore.BaseEvent `json:"-"` +} + +func (e *LabelPolicyAssetsRemovedEvent) Data() interface{} { + return nil +} + +func (e *LabelPolicyAssetsRemovedEvent) UniqueConstraints() []*eventstore.EventUniqueConstraint { + return nil +} + +func NewLabelPolicyAssetsRemovedEvent(base *eventstore.BaseEvent) *LabelPolicyAssetsRemovedEvent { + return &LabelPolicyAssetsRemovedEvent{ + *base, + } +} + +func LabelPolicyAssetsRemovedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + return &LabelPolicyAssetsRemovedEvent{ + BaseEvent: *eventstore.BaseEventFromRepo(event), + }, nil +} diff --git a/internal/repository/user/eventstore.go b/internal/repository/user/eventstore.go index 64c54302ac..ec4ca6037d 100644 --- a/internal/repository/user/eventstore.go +++ b/internal/repository/user/eventstore.go @@ -73,6 +73,8 @@ func RegisterEventMappers(es *eventstore.Eventstore) { RegisterFilterEventMapper(HumanPhoneCodeAddedType, HumanPhoneCodeAddedEventMapper). RegisterFilterEventMapper(HumanPhoneCodeSentType, HumanPhoneCodeSentEventMapper). RegisterFilterEventMapper(HumanProfileChangedType, HumanProfileChangedEventMapper). + RegisterFilterEventMapper(HumanAvatarAddedType, HumanAvatarAddedEventMapper). + RegisterFilterEventMapper(HumanAvatarRemovedType, HumanAvatarRemovedEventMapper). RegisterFilterEventMapper(HumanAddressChangedType, HumanAddressChangedEventMapper). RegisterFilterEventMapper(HumanMFAInitSkippedType, HumanMFAInitSkippedEventMapper). RegisterFilterEventMapper(HumanMFAOTPAddedType, HumanOTPAddedEventMapper). diff --git a/internal/repository/user/human_avatar.go b/internal/repository/user/human_avatar.go new file mode 100644 index 0000000000..bc50ba03e0 --- /dev/null +++ b/internal/repository/user/human_avatar.go @@ -0,0 +1,63 @@ +package user + +import ( + "context" + + "github.com/caos/zitadel/internal/eventstore" + "github.com/caos/zitadel/internal/eventstore/repository" + "github.com/caos/zitadel/internal/repository/asset" +) + +const ( + avatarEventPrefix = humanEventPrefix + "avatar." + HumanAvatarAddedType = avatarEventPrefix + "added" + HumanAvatarRemovedType = avatarEventPrefix + "removed" +) + +type HumanAvatarAddedEvent struct { + asset.AddedEvent +} + +func NewHumanAvatarAddedEvent(ctx context.Context, aggregate *eventstore.Aggregate, storageKey string) *HumanAvatarAddedEvent { + return &HumanAvatarAddedEvent{ + AddedEvent: *asset.NewAddedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + HumanAvatarAddedType), + storageKey), + } +} + +func HumanAvatarAddedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := asset.AddedEventMapper(event) + if err != nil { + return nil, err + } + + return &HumanAvatarAddedEvent{AddedEvent: *e.(*asset.AddedEvent)}, nil +} + +type HumanAvatarRemovedEvent struct { + asset.RemovedEvent +} + +func NewHumanAvatarRemovedEvent(ctx context.Context, aggregate *eventstore.Aggregate, storageKey string) *HumanAvatarRemovedEvent { + return &HumanAvatarRemovedEvent{ + RemovedEvent: *asset.NewRemovedEvent( + eventstore.NewBaseEventForPush( + ctx, + aggregate, + HumanAvatarRemovedType), + storageKey), + } +} + +func HumanAvatarRemovedEventMapper(event *repository.Event) (eventstore.EventReader, error) { + e, err := asset.RemovedEventMapper(event) + if err != nil { + return nil, err + } + + return &HumanAvatarRemovedEvent{RemovedEvent: *e.(*asset.RemovedEvent)}, nil +} diff --git a/internal/setup/config.go b/internal/setup/config.go index 04b9bc15f1..d6100b2abc 100644 --- a/internal/setup/config.go +++ b/internal/setup/config.go @@ -19,6 +19,8 @@ type IAMSetUp struct { Step11 *command.Step11 Step12 *command.Step12 Step13 *command.Step13 + Step14 *command.Step14 + Step15 *command.Step15 } func (setup *IAMSetUp) Steps(currentDone domain.Step) ([]command.Step, error) { @@ -38,6 +40,8 @@ func (setup *IAMSetUp) Steps(currentDone domain.Step) ([]command.Step, error) { setup.Step11, setup.Step12, setup.Step13, + setup.Step14, + setup.Step15, } { if step.Step() <= currentDone { continue diff --git a/internal/static/config/config.go b/internal/static/config/config.go new file mode 100644 index 0000000000..fdbf7a263a --- /dev/null +++ b/internal/static/config/config.go @@ -0,0 +1,57 @@ +package config + +import ( + "encoding/json" + + "github.com/caos/zitadel/internal/errors" + "github.com/caos/zitadel/internal/static" + "github.com/caos/zitadel/internal/static/s3" +) + +type AssetStorageConfig struct { + Type string + Config static.Config +} + +var storage = map[string]func() static.Config{ + "s3": func() static.Config { return &s3.Config{} }, +} + +func (c *AssetStorageConfig) UnmarshalJSON(data []byte) error { + var rc struct { + Type string + Config json.RawMessage + } + + if err := json.Unmarshal(data, &rc); err != nil { + return errors.ThrowInternal(err, "STATIC-Bfn5r", "error parsing config") + } + + c.Type = rc.Type + + var err error + c.Config, err = newStorageConfig(c.Type, rc.Config) + if err != nil { + return err + } + + return nil +} + +func newStorageConfig(storageType string, configData []byte) (static.Config, error) { + t, ok := storage[storageType] + if !ok { + return nil, errors.ThrowInternalf(nil, "STATIC-dsbjh", "config type %s not supported", storageType) + } + + staticConfig := t() + if len(configData) == 0 { + return staticConfig, nil + } + + if err := json.Unmarshal(configData, staticConfig); err != nil { + return nil, errors.ThrowInternal(err, "STATIC-GB4nw", "Could not read config: %v") + } + + return staticConfig, nil +} diff --git a/internal/static/generate.go b/internal/static/generate.go new file mode 100644 index 0000000000..ba0e413684 --- /dev/null +++ b/internal/static/generate.go @@ -0,0 +1,3 @@ +package static + +//go:generate mockgen -source storage.go -destination ./mock/storage_mock.go -package mock diff --git a/internal/static/i18n/de.yaml b/internal/static/i18n/de.yaml index c2617c0540..bbe9c94bfc 100644 --- a/internal/static/i18n/de.yaml +++ b/internal/static/i18n/de.yaml @@ -5,14 +5,17 @@ Errors: IDMissing: ID fehlt ResourceOwnerMissing: Organisation fehlt Assets: + EmptyKey: Asset Key ist leer Store: NotInitialized: Assets Speicher konnte nicht initialisiert werden + NotConfigured: Assets Speicher wurde nicht konfiguriert Bucket: Internal: Interner Fehler beim erstellen eines Buckets AlreadyExists: Bucket existiert bereits CreateFailed: Bucket konnte nicht erstellt werden ListFailed: Buckets konnten nicht gelesen werden RemoveFailed: Bucket konnte nicht gelöscht werden + SetPublicFailed: Bucket konnte nicht auf public gesetzt werden Object: PutFailed: Objekt konnte nicht erstellt werden GetFaieled: Objekt konnte nicht gelesen werden @@ -247,6 +250,7 @@ Errors: IdpIsNotOIDC: IDP Konfiguration ist nicht vom Typ OIDC LoginPolicyInvalid: Login Policy ist ungültig LoginPolicyNotExisting: Login Policy nicht vorhanden + IdpProviderInvalid: IDP Provider ist ungültig LoginPolicy: NotFound: Default Login Policy konnte nicht gefunden NotChanged: Default Login Policy wurde nicht verändert @@ -303,6 +307,16 @@ Errors: NotChanged: Default Org IAM Policy wurde nicht verändert Policy: AlreadyExists: Policy existiert bereits + Label: + Invalid: + PrimaryColor: Primäre Farbe ist kein gültiger Hex Farbwert + BackgroundColor: Hintergrund Farbe ist kein gültiger Hex Farbwert + WarnColor: Warn Farbe ist kein gültiger Hex Farbwert + FontColor: Schrift Farbe ist kein gültiger Hex Farbwert + PrimaryColorDark: Primäre Farbe (dunkler Modus) ist kein gültiger Hex Farbwert + BackgroundColorDark: Hintergrund Farbe (dunkler Modus) ist kein gültiger Hex Farbwert + WarnColorDark: Warn Farbe (dunkler Modus) ist kein gültiger Hex Farbwert + FontColorDark: Schrift Farbe (dunkler Modus) ist kein gültiger Hex Farbwert UserGrant: AlreadyExists: Benutzer Berechtigung existiert bereits NotFound: Benutzer Berechtigung konnte nicht gefunden werden @@ -372,6 +386,9 @@ EventTypes: human: added: Benutzer hinzugefügt selfregistered: Benutzer hat sich selbst registriert + avatar: + added: Avatar hinzugefügt + removed: Avatar entfernt initialization: code: added: Initialisierungscode generiert @@ -580,7 +597,25 @@ EventTypes: label: added: Label Richtline hinzugefügt changed: Label Richtline geändert + activated: Label Richtline aktiviert removed: Label Richtline entfernt + logo: + added: Logo zu Label Richtlinie hinzugefügt + removed: Logo von Label Richtlinie entfernt + dark: + added: Logo (dunkler Modus) zu Label Richtlinie hinzugefügt + removed: Logo (dunkler Modus) von Label Richtlinie entfernt + icon: + added: Icon zu Label Richtlinie hinzugefügt + removed: Icon von Label Richtlinie entfernt + dark: + added: Icon (dunkler Modus) zu Label Richtlinie hinzugefügt + removed: Icon (dunkler Modus) von Label Richtlinie entfernt + font: + added: Schrift zu Label Richtlinie hinzugefügt + removed: Schrift von Label Richtlinie entfernt + assets: + removed: Dateien von Label Richtlinie entfernt project: added: Projekt hinzugefügt changed: Project geändert @@ -679,6 +714,27 @@ EventTypes: idpprovider: added: Idp Provider zu Default Login Policy hinzugefügt removed: Idp Provider aus Default Login Policy gelöscht + label: + added: Label Richtline hinzugefügt + changed: Label Richtline geändert + activated: Label Richtline aktiviert + logo: + added: Logo zu Label Richtlinie hinzugefügt + removed: Logo von Label Richtlinie entfernt + dark: + added: Logo (dunkler Modus) zu Label Richtlinie hinzugefügt + removed: Logo (dunkler Modus) von Label Richtlinie entfernt + icon: + added: Icon zu Label Richtlinie hinzugefügt + removed: Icon von Label Richtlinie entfernt + dark: + added: Icon (dunkler Modus) zu Label Richtlinie hinzugefügt + removed: Icon (dunkler Modus) von Label Richtlinie entfernt + font: + added: Schrift zu Label Richtlinie hinzugefügt + removed: Schrift von Label Richtlinie entfernt + assets: + removed: Bilder und Schrift von Label Richtlinie entfernt key_pair: added: Schlüsselpaar hinzugefügt Application: diff --git a/internal/static/i18n/en.yaml b/internal/static/i18n/en.yaml index 6f7f6cebb0..cf03f83e47 100644 --- a/internal/static/i18n/en.yaml +++ b/internal/static/i18n/en.yaml @@ -5,14 +5,17 @@ Errors: IDMissing: ID missing ResourceOwnerMissing: Resource Owner Organisation missing Assets: + EmptyKey: Asset key is empty Store: NotInitialized: Assets storage not initialized + NotConfigured: Assets storage not configured Bucket: Internal: Internal error on create bucket AlreadyExists: Bucket already exists CreateFailed: Bucket not created ListFailed: Buckets could not be read RemoveFailed: Bucket not deleted + SetPublicFailed: Could not set bucket to public Object: PutFailed: Objekt not created GetFaieled: Objekt could not be read @@ -304,6 +307,16 @@ Errors: NotChanged: Org IAM Policy has not been changed Policy: AlreadyExists: Policy already exists + Label: + Invalid: + PrimaryColor: Primary color is no valid Hex color value + BackgroundColor: Background color is no valid Hex color value + WarnColor: Warn color is no valid Hex color value + FontColor: Font color is no valid Hex color value + PrimaryColorDark: Primary color (dark mode) is no valid Hex color value + BackgroundColorDark: Background color (dark mode) is no valid Hex color value + WarnColorDark: Warn color (dark mode) is no valid Hex color value + FontColorDark: Font color (dark mode) is no valid Hex color value UserGrant: AlreadyExists: User grant already exists NotFound: User grant not found @@ -373,6 +386,9 @@ EventTypes: human: added: Person added selfregistered: Person registered himself + avatar: + added: Avatar added + removed: Avatar removed initialization: code: added: Initialisation code generated @@ -581,7 +597,25 @@ EventTypes: label: added: Label Policy added changed: Label Policy changed + activated: Label Policy activated removed: Label Policy removed + logo: + added: Logo added to Label Policy + removed: Logo removed from Label Policy + dark: + added: Logo (dark mode) added to Label Policy + removed: Logo (dark mode) removed from Label Policy + icon: + added: Icon added to Label Policy + removed: Icon removed from Label Policy + dark: + added: Icon (dark mode) added to Label Policy + removed: Icon (dark mode) removed from Label Policy + font: + added: Font added to Label Policy + removed: Font removed from Label Policy + assets: + removed: Assets removed from Label Policy project: added: Project added changed: Project changed @@ -680,6 +714,27 @@ EventTypes: idpprovider: added: Idp Provider added to Default Login Policy removed: Idp Provider removed from Default Login Policy + label: + added: Label Policy added + changed: Label Policy changed + activated: Label Policy activated + logo: + added: Logo added to Label Policy + removed: Logo removed from Label Policy + dark: + added: Logo (dark mode) added to Label Policy + removed: Logo (dark mode) removed from Label Policy + icon: + added: Icon added to Label Policy + removed: Icon removed from Label Policy + dark: + added: Icon (dark mode) added to Label Policy + removed: Icon (dark mode) removed from Label Policy + font: + added: Font added to Label Policy + removed: Font removed from Label Policy + assets: + removed: Assets removed from Label Policy key_pair: added: Key pair added Application: diff --git a/internal/static/mock/storage_mock.go b/internal/static/mock/storage_mock.go new file mode 100644 index 0000000000..28cd2c1735 --- /dev/null +++ b/internal/static/mock/storage_mock.go @@ -0,0 +1,210 @@ +// Code generated by MockGen. DO NOT EDIT. +// Source: storage.go + +// Package mock is a generated GoMock package. +package mock + +import ( + context "context" + domain "github.com/caos/zitadel/internal/domain" + static "github.com/caos/zitadel/internal/static" + gomock "github.com/golang/mock/gomock" + io "io" + url "net/url" + reflect "reflect" + time "time" +) + +// MockStorage is a mock of Storage interface +type MockStorage struct { + ctrl *gomock.Controller + recorder *MockStorageMockRecorder +} + +// MockStorageMockRecorder is the mock recorder for MockStorage +type MockStorageMockRecorder struct { + mock *MockStorage +} + +// NewMockStorage creates a new mock instance +func NewMockStorage(ctrl *gomock.Controller) *MockStorage { + mock := &MockStorage{ctrl: ctrl} + mock.recorder = &MockStorageMockRecorder{mock} + return mock +} + +// EXPECT returns an object that allows the caller to indicate expected use +func (m *MockStorage) EXPECT() *MockStorageMockRecorder { + return m.recorder +} + +// CreateBucket mocks base method +func (m *MockStorage) CreateBucket(ctx context.Context, name, location string) error { + m.ctrl.T.Helper() + ret := m.ctrl.Call(m, "CreateBucket", ctx, name, location) + ret0, _ := ret[0].(error) + return ret0 +} + +// CreateBucket indicates an expected call of CreateBucket +func (mr *MockStorageMockRecorder) CreateBucket(ctx, name, location interface{}) *gomock.Call { + mr.mock.ctrl.T.Helper() + return mr.mock.ctrl.RecordCallWithMethodType(mr.mock, "CreateBucket", reflect.TypeOf((*MockStorage)(nil).CreateBucket), ctx, name, location) +} + +// RemoveBucket mocks base method +func (m *MockStorage) RemoveBucket(ctx context.Context, name string) error { + m.ctrl.T.Helper() + ret := m.ctrl.Call(m, "RemoveBucket", ctx, name) + ret0, _ := ret[0].(error) + return ret0 +} + +// RemoveBucket indicates an expected call of RemoveBucket +func (mr *MockStorageMockRecorder) RemoveBucket(ctx, name interface{}) *gomock.Call { + mr.mock.ctrl.T.Helper() + return mr.mock.ctrl.RecordCallWithMethodType(mr.mock, "RemoveBucket", reflect.TypeOf((*MockStorage)(nil).RemoveBucket), ctx, name) +} + +// ListBuckets mocks base method +func (m *MockStorage) ListBuckets(ctx context.Context) ([]*domain.BucketInfo, error) { + m.ctrl.T.Helper() + ret := m.ctrl.Call(m, "ListBuckets", ctx) + ret0, _ := ret[0].([]*domain.BucketInfo) + ret1, _ := ret[1].(error) + return ret0, ret1 +} + +// ListBuckets indicates an expected call of ListBuckets +func (mr *MockStorageMockRecorder) ListBuckets(ctx interface{}) *gomock.Call { + mr.mock.ctrl.T.Helper() + return mr.mock.ctrl.RecordCallWithMethodType(mr.mock, "ListBuckets", reflect.TypeOf((*MockStorage)(nil).ListBuckets), ctx) +} + +// PutObject mocks base method +func (m *MockStorage) PutObject(ctx context.Context, bucketName, objectName, contentType string, object io.Reader, objectSize int64, createBucketIfNotExisting bool) (*domain.AssetInfo, error) { + m.ctrl.T.Helper() + ret := m.ctrl.Call(m, "PutObject", ctx, bucketName, objectName, contentType, object, objectSize, createBucketIfNotExisting) + ret0, _ := ret[0].(*domain.AssetInfo) + ret1, _ := ret[1].(error) + return ret0, ret1 +} + +// PutObject indicates an expected call of PutObject +func (mr *MockStorageMockRecorder) PutObject(ctx, bucketName, objectName, contentType, object, objectSize, createBucketIfNotExisting interface{}) *gomock.Call { + mr.mock.ctrl.T.Helper() + return mr.mock.ctrl.RecordCallWithMethodType(mr.mock, "PutObject", reflect.TypeOf((*MockStorage)(nil).PutObject), ctx, bucketName, objectName, contentType, object, objectSize, createBucketIfNotExisting) +} + +// GetObjectInfo mocks base method +func (m *MockStorage) GetObjectInfo(ctx context.Context, bucketName, objectName string) (*domain.AssetInfo, error) { + m.ctrl.T.Helper() + ret := m.ctrl.Call(m, "GetObjectInfo", ctx, bucketName, objectName) + ret0, _ := ret[0].(*domain.AssetInfo) + ret1, _ := ret[1].(error) + return ret0, ret1 +} + +// GetObjectInfo indicates an expected call of GetObjectInfo +func (mr *MockStorageMockRecorder) GetObjectInfo(ctx, bucketName, objectName interface{}) *gomock.Call { + mr.mock.ctrl.T.Helper() + return mr.mock.ctrl.RecordCallWithMethodType(mr.mock, "GetObjectInfo", reflect.TypeOf((*MockStorage)(nil).GetObjectInfo), ctx, bucketName, objectName) +} + +// GetObject mocks base method +func (m *MockStorage) GetObject(ctx context.Context, bucketName, objectName string) (io.Reader, func() (*domain.AssetInfo, error), error) { + m.ctrl.T.Helper() + ret := m.ctrl.Call(m, "GetObject", ctx, bucketName, objectName) + ret0, _ := ret[0].(io.Reader) + ret1, _ := ret[1].(func() (*domain.AssetInfo, error)) + ret2, _ := ret[2].(error) + return ret0, ret1, ret2 +} + +// GetObject indicates an expected call of GetObject +func (mr *MockStorageMockRecorder) GetObject(ctx, bucketName, objectName interface{}) *gomock.Call { + mr.mock.ctrl.T.Helper() + return mr.mock.ctrl.RecordCallWithMethodType(mr.mock, "GetObject", reflect.TypeOf((*MockStorage)(nil).GetObject), ctx, bucketName, objectName) +} + +// ListObjectInfos mocks base method +func (m *MockStorage) ListObjectInfos(ctx context.Context, bucketName, prefix string, recursive bool) ([]*domain.AssetInfo, error) { + m.ctrl.T.Helper() + ret := m.ctrl.Call(m, "ListObjectInfos", ctx, bucketName, prefix, recursive) + ret0, _ := ret[0].([]*domain.AssetInfo) + ret1, _ := ret[1].(error) + return ret0, ret1 +} + +// ListObjectInfos indicates an expected call of ListObjectInfos +func (mr *MockStorageMockRecorder) ListObjectInfos(ctx, bucketName, prefix, recursive interface{}) *gomock.Call { + mr.mock.ctrl.T.Helper() + return mr.mock.ctrl.RecordCallWithMethodType(mr.mock, "ListObjectInfos", reflect.TypeOf((*MockStorage)(nil).ListObjectInfos), ctx, bucketName, prefix, recursive) +} + +// GetObjectPresignedURL mocks base method +func (m *MockStorage) GetObjectPresignedURL(ctx context.Context, bucketName, objectName string, expiration time.Duration) (*url.URL, error) { + m.ctrl.T.Helper() + ret := m.ctrl.Call(m, "GetObjectPresignedURL", ctx, bucketName, objectName, expiration) + ret0, _ := ret[0].(*url.URL) + ret1, _ := ret[1].(error) + return ret0, ret1 +} + +// GetObjectPresignedURL indicates an expected call of GetObjectPresignedURL +func (mr *MockStorageMockRecorder) GetObjectPresignedURL(ctx, bucketName, objectName, expiration interface{}) *gomock.Call { + mr.mock.ctrl.T.Helper() + return mr.mock.ctrl.RecordCallWithMethodType(mr.mock, "GetObjectPresignedURL", reflect.TypeOf((*MockStorage)(nil).GetObjectPresignedURL), ctx, bucketName, objectName, expiration) +} + +// RemoveObject mocks base method +func (m *MockStorage) RemoveObject(ctx context.Context, bucketName, objectName string) error { + m.ctrl.T.Helper() + ret := m.ctrl.Call(m, "RemoveObject", ctx, bucketName, objectName) + ret0, _ := ret[0].(error) + return ret0 +} + +// RemoveObject indicates an expected call of RemoveObject +func (mr *MockStorageMockRecorder) RemoveObject(ctx, bucketName, objectName interface{}) *gomock.Call { + mr.mock.ctrl.T.Helper() + return mr.mock.ctrl.RecordCallWithMethodType(mr.mock, "RemoveObject", reflect.TypeOf((*MockStorage)(nil).RemoveObject), ctx, bucketName, objectName) +} + +// MockConfig is a mock of Config interface +type MockConfig struct { + ctrl *gomock.Controller + recorder *MockConfigMockRecorder +} + +// MockConfigMockRecorder is the mock recorder for MockConfig +type MockConfigMockRecorder struct { + mock *MockConfig +} + +// NewMockConfig creates a new mock instance +func NewMockConfig(ctrl *gomock.Controller) *MockConfig { + mock := &MockConfig{ctrl: ctrl} + mock.recorder = &MockConfigMockRecorder{mock} + return mock +} + +// EXPECT returns an object that allows the caller to indicate expected use +func (m *MockConfig) EXPECT() *MockConfigMockRecorder { + return m.recorder +} + +// NewStorage mocks base method +func (m *MockConfig) NewStorage() (static.Storage, error) { + m.ctrl.T.Helper() + ret := m.ctrl.Call(m, "NewStorage") + ret0, _ := ret[0].(static.Storage) + ret1, _ := ret[1].(error) + return ret0, ret1 +} + +// NewStorage indicates an expected call of NewStorage +func (mr *MockConfigMockRecorder) NewStorage() *gomock.Call { + mr.mock.ctrl.T.Helper() + return mr.mock.ctrl.RecordCallWithMethodType(mr.mock, "NewStorage", reflect.TypeOf((*MockConfig)(nil).NewStorage)) +} diff --git a/internal/static/mock/storage_mock.impl.go b/internal/static/mock/storage_mock.impl.go new file mode 100644 index 0000000000..3ca50faa32 --- /dev/null +++ b/internal/static/mock/storage_mock.impl.go @@ -0,0 +1,41 @@ +package mock + +import ( + "testing" + + "github.com/golang/mock/gomock" + + caos_errors "github.com/caos/zitadel/internal/errors" +) + +func NewStorage(t *testing.T) *MockStorage { + return NewMockStorage(gomock.NewController(t)) +} + +func (m *MockStorage) ExpectAddObjectNoError() *MockStorage { + m.EXPECT(). + PutObject(gomock.Any(), gomock.Any(), gomock.Any(), gomock.Any(), gomock.Any(), gomock.Any(), gomock.Any()). + Return(nil, nil) + return m +} + +func (m *MockStorage) ExpectAddObjectError() *MockStorage { + m.EXPECT(). + PutObject(gomock.Any(), gomock.Any(), gomock.Any(), gomock.Any(), gomock.Any(), gomock.Any(), gomock.Any()). + Return(nil, caos_errors.ThrowInternal(nil, "", "")) + return m +} + +func (m *MockStorage) ExpectRemoveObjectNoError() *MockStorage { + m.EXPECT(). + RemoveObject(gomock.Any(), gomock.Any(), gomock.Any()). + Return(nil) + return m +} + +func (m *MockStorage) ExpectRemoveObjectError() *MockStorage { + m.EXPECT(). + RemoveObject(gomock.Any(), gomock.Any(), gomock.Any()). + Return(caos_errors.ThrowInternal(nil, "", "")) + return m +} diff --git a/internal/static/s3/config.go b/internal/static/s3/config.go index 5f052ca5bd..180d51f2b1 100644 --- a/internal/static/s3/config.go +++ b/internal/static/s3/config.go @@ -1,14 +1,34 @@ package s3 -type AssetStorage struct { - Type string - Config S3Config -} +import ( + "github.com/minio/minio-go/v7" + "github.com/minio/minio-go/v7/pkg/credentials" -type S3Config struct { + caos_errs "github.com/caos/zitadel/internal/errors" + "github.com/caos/zitadel/internal/static" +) + +type Config struct { Endpoint string AccessKeyID string SecretAccessKey string SSL bool Location string + BucketPrefix string +} + +func (c *Config) NewStorage() (static.Storage, error) { + minioClient, err := minio.New(c.Endpoint, &minio.Options{ + Creds: credentials.NewStaticV4(c.AccessKeyID, c.SecretAccessKey, ""), + Secure: c.SSL, + Region: c.Location, + }) + if err != nil { + return nil, caos_errs.ThrowInternal(err, "MINIO-2n9fs", "Errors.Assets.Store.NotInitialized") + } + return &Minio{ + Client: minioClient, + Location: c.Location, + BucketPrefix: c.BucketPrefix, + }, nil } diff --git a/internal/static/s3/minio.go b/internal/static/s3/minio.go index 82d80d7aeb..fc50690c48 100644 --- a/internal/static/s3/minio.go +++ b/internal/static/s3/minio.go @@ -2,46 +2,34 @@ package s3 import ( "context" - "fmt" "io" + "net/http" "net/url" + "strings" "time" "github.com/caos/logging" "github.com/minio/minio-go/v7" - "github.com/minio/minio-go/v7/pkg/credentials" "github.com/caos/zitadel/internal/domain" caos_errs "github.com/caos/zitadel/internal/errors" ) type Minio struct { - Client *minio.Client - Location string -} - -func NewMinio(config S3Config) (*Minio, error) { - minioClient, err := minio.New(config.Endpoint, &minio.Options{ - Creds: credentials.NewStaticV4(config.AccessKeyID, config.SecretAccessKey, ""), - Secure: config.SSL, - Region: config.Location, - }) - if err != nil { - return nil, caos_errs.ThrowInternal(err, "MINIO-4m90d", "Errors.Assets.Store.NotInitialized") - } - return &Minio{ - Client: minioClient, - Location: config.Location, - }, nil + Client *minio.Client + Location string + BucketPrefix string } func (m *Minio) CreateBucket(ctx context.Context, name, location string) error { if location == "" { location = m.Location } + name = m.prefixBucketName(name) exists, err := m.Client.BucketExists(ctx, name) if err != nil { - return caos_errs.ThrowInternal(err, "MINIO-4m90d", "Errors.Assets.Bucket.Internal") + logging.LogWithFields("MINIO-ADvf3", "bucketname", name).WithError(err).Error("cannot check if bucket exists") + return caos_errs.ThrowInternal(err, "MINIO-1b8fs", "Errors.Assets.Bucket.Internal") } if exists { return caos_errs.ThrowAlreadyExists(nil, "MINIO-9n3MK", "Errors.Assets.Bucket.AlreadyExists") @@ -69,6 +57,7 @@ func (m *Minio) ListBuckets(ctx context.Context) ([]*domain.BucketInfo, error) { } func (m *Minio) RemoveBucket(ctx context.Context, name string) error { + name = m.prefixBucketName(name) err := m.Client.RemoveBucket(ctx, name) if err != nil { return caos_errs.ThrowInternal(err, "MINIO-338Hs", "Errors.Assets.Bucket.RemoveFailed") @@ -76,7 +65,14 @@ func (m *Minio) RemoveBucket(ctx context.Context, name string) error { return nil } -func (m *Minio) PutObject(ctx context.Context, bucketName, objectName, contentType string, object io.Reader, objectSize int64) (*domain.AssetInfo, error) { +func (m *Minio) PutObject(ctx context.Context, bucketName, objectName, contentType string, object io.Reader, objectSize int64, createBucketIfNotExisting bool) (*domain.AssetInfo, error) { + if createBucketIfNotExisting { + err := m.CreateBucket(ctx, bucketName, "") + if err != nil && !caos_errs.IsErrorAlreadyExists(err) { + return nil, err + } + } + bucketName = m.prefixBucketName(bucketName) info, err := m.Client.PutObject(ctx, bucketName, objectName, object, objectSize, minio.PutObjectOptions{ContentType: contentType}) if err != nil { return nil, caos_errs.ThrowInternal(err, "MINIO-590sw", "Errors.Assets.Object.PutFailed") @@ -93,20 +89,36 @@ func (m *Minio) PutObject(ctx context.Context, bucketName, objectName, contentTy } func (m *Minio) GetObjectInfo(ctx context.Context, bucketName, objectName string) (*domain.AssetInfo, error) { - object, err := m.Client.GetObject(ctx, bucketName, objectName, minio.GetObjectOptions{}) + bucketName = m.prefixBucketName(bucketName) + objectinfo, err := m.Client.StatObject(ctx, bucketName, objectName, minio.StatObjectOptions{}) if err != nil { + if errResp := minio.ToErrorResponse(err); errResp.StatusCode == http.StatusNotFound { + return nil, caos_errs.ThrowNotFound(err, "MINIO-Gdfh4", "Errors.Assets.Object.GetFailed") + } return nil, caos_errs.ThrowInternal(err, "MINIO-1vySX", "Errors.Assets.Object.GetFailed") } - info, err := object.Stat() + return m.objectToAssetInfo(bucketName, objectinfo), nil +} + +func (m *Minio) GetObject(ctx context.Context, bucketName, objectName string) (io.Reader, func() (*domain.AssetInfo, error), error) { + bucketName = m.prefixBucketName(bucketName) + object, err := m.Client.GetObject(ctx, bucketName, objectName, minio.GetObjectOptions{}) if err != nil { - return nil, caos_errs.ThrowInternal(err, "MINIO-F96xF", "Errors.Assets.Object.GetFailed") + return nil, nil, caos_errs.ThrowInternal(err, "MINIO-VGDgv", "Errors.Assets.Object.GetFailed") } - return m.objectToAssetInfo(bucketName, info), nil + info := func() (*domain.AssetInfo, error) { + info, err := object.Stat() + if err != nil { + return nil, caos_errs.ThrowInternal(err, "MINIO-F96xF", "Errors.Assets.Object.GetFailed") + } + return m.objectToAssetInfo(bucketName, info), nil + } + return object, info, nil } func (m *Minio) GetObjectPresignedURL(ctx context.Context, bucketName, objectName string, expiration time.Duration) (*url.URL, error) { + bucketName = m.prefixBucketName(bucketName) reqParams := make(url.Values) - reqParams.Set("response-content-disposition", fmt.Sprintf("attachment; filename=\"%s\"", objectName)) presignedURL, err := m.Client.PresignedGetObject(ctx, bucketName, objectName, expiration, reqParams) if err != nil { return nil, caos_errs.ThrowInternal(err, "MINIO-19Mp0", "Errors.Assets.Object.PresignedTokenFailed") @@ -115,6 +127,7 @@ func (m *Minio) GetObjectPresignedURL(ctx context.Context, bucketName, objectNam } func (m *Minio) ListObjectInfos(ctx context.Context, bucketName, prefix string, recursive bool) ([]*domain.AssetInfo, error) { + bucketName = m.prefixBucketName(bucketName) ctx, cancel := context.WithCancel(ctx) defer cancel() @@ -134,6 +147,7 @@ func (m *Minio) ListObjectInfos(ctx context.Context, bucketName, prefix string, } func (m *Minio) RemoveObject(ctx context.Context, bucketName, objectName string) error { + bucketName = m.prefixBucketName(bucketName) err := m.Client.RemoveObject(ctx, bucketName, objectName, minio.RemoveObjectOptions{}) if err != nil { return caos_errs.ThrowInternal(err, "MINIO-x85RT", "Errors.Assets.Object.RemoveFailed") @@ -149,7 +163,12 @@ func (m *Minio) objectToAssetInfo(bucketName string, object minio.ObjectInfo) *d Size: object.Size, LastModified: object.LastModified, VersionID: object.VersionID, - Expiration: object.Expiration, - AutheticatedURL: m.Client.EndpointURL().String() + "/" + object.Key, + Expiration: object.Expires, + ContentType: object.ContentType, + AutheticatedURL: m.Client.EndpointURL().String() + "/" + bucketName + "/" + object.Key, } } + +func (m *Minio) prefixBucketName(name string) string { + return strings.ToLower(m.BucketPrefix + "-" + name) +} diff --git a/internal/static/s3/storage_client.go b/internal/static/storage.go similarity index 59% rename from internal/static/s3/storage_client.go rename to internal/static/storage.go index 03da7a5bb0..9df291183c 100644 --- a/internal/static/s3/storage_client.go +++ b/internal/static/storage.go @@ -1,4 +1,4 @@ -package s3 +package static import ( "context" @@ -9,13 +9,17 @@ import ( "github.com/caos/zitadel/internal/domain" ) -type Client interface { +type Storage interface { CreateBucket(ctx context.Context, name, location string) error RemoveBucket(ctx context.Context, name string) error ListBuckets(ctx context.Context) ([]*domain.BucketInfo, error) - PutObject(ctx context.Context, bucketName, objectName, contentType string, object io.Reader, objectSize int64) (*domain.AssetInfo, error) + PutObject(ctx context.Context, bucketName, objectName, contentType string, object io.Reader, objectSize int64, createBucketIfNotExisting bool) (*domain.AssetInfo, error) GetObjectInfo(ctx context.Context, bucketName, objectName string) (*domain.AssetInfo, error) - ListObjectInfos(ctx context.Context, bucketName, prefix string) ([]*domain.AssetInfo, error) + GetObject(ctx context.Context, bucketName, objectName string) (io.Reader, func() (*domain.AssetInfo, error), error) + ListObjectInfos(ctx context.Context, bucketName, prefix string, recursive bool) ([]*domain.AssetInfo, error) GetObjectPresignedURL(ctx context.Context, bucketName, objectName string, expiration time.Duration) (*url.URL, error) RemoveObject(ctx context.Context, bucketName, objectName string) error } +type Config interface { + NewStorage() (Storage, error) +} diff --git a/internal/ui/console/console.go b/internal/ui/console/console.go index 9bfca32b1d..ee3c6f61c0 100644 --- a/internal/ui/console/console.go +++ b/internal/ui/console/console.go @@ -86,6 +86,7 @@ func csp(zitadelDomain string) *middleware.CSP { AddHost("fonts.googleapis.com"). AddHost("fonts.gstatic.com"). AddHost("maxst.icons8.com") //TODO: host it + csp.ImgSrc = csp.ImgSrc.AddScheme("blob") return &csp } diff --git a/internal/ui/login/handler/login.go b/internal/ui/login/handler/login.go index 25e84a8524..8943ac4985 100644 --- a/internal/ui/login/handler/login.go +++ b/internal/ui/login/handler/login.go @@ -11,12 +11,15 @@ import ( "github.com/caos/zitadel/internal/api/http/middleware" auth_repository "github.com/caos/zitadel/internal/auth/repository" "github.com/caos/zitadel/internal/auth/repository/eventsourcing" + "github.com/caos/zitadel/internal/cache" + cache_config "github.com/caos/zitadel/internal/cache/config" "github.com/caos/zitadel/internal/command" "github.com/caos/zitadel/internal/config/systemdefaults" "github.com/caos/zitadel/internal/crypto" "github.com/caos/zitadel/internal/domain" "github.com/caos/zitadel/internal/form" "github.com/caos/zitadel/internal/id" + "github.com/caos/zitadel/internal/static" "github.com/caos/zitadel/internal/query" _ "github.com/caos/zitadel/internal/ui/login/statik" usr_model "github.com/caos/zitadel/internal/user/model" @@ -32,6 +35,8 @@ type Login struct { parser *form.Parser command *command.Commands query *query.Queries + staticStorage static.Storage + staticCache cache.Cache authRepo auth_repository.Repository baseURL string zitadelURL string @@ -49,6 +54,7 @@ type Config struct { CSRF CSRF UserAgentCookieConfig *middleware.UserAgentCookieConfig Cache middleware.CacheConfig + StaticCache cache_config.CacheConfig } type CSRF struct { @@ -62,7 +68,7 @@ const ( handlerPrefix = "/login" ) -func CreateLogin(config Config, command *command.Commands, query *query.Queries, authRepo *eventsourcing.EsRepository, systemDefaults systemdefaults.SystemDefaults, localDevMode bool) (*Login, string) { +func CreateLogin(config Config, command *command.Commands, query *query.Queries, authRepo *eventsourcing.EsRepository, staticStorage static.Storage, systemDefaults systemdefaults.SystemDefaults, localDevMode bool) (*Login, string) { aesCrypto, err := crypto.NewAESCrypto(systemDefaults.IDPConfigVerificationKey) if err != nil { logging.Log("HANDL-s90ew").WithError(err).Debug("error create new aes crypto") @@ -73,6 +79,7 @@ func CreateLogin(config Config, command *command.Commands, query *query.Queries, zitadelURL: config.ZitadelURL, command: command, query: query, + staticStorage: staticStorage, authRepo: authRepo, IDPConfigAesCrypto: aesCrypto, iamDomain: systemDefaults.Domain, @@ -81,6 +88,9 @@ func CreateLogin(config Config, command *command.Commands, query *query.Queries, if localDevMode { prefix = handlerPrefix } + login.staticCache, err = config.StaticCache.Config.NewCache() + logging.Log("CONFI-dgg31").OnError(err).Panic("unable to create storage cache") + statikFS, err := fs.NewWithNamespace("login") logging.Log("CONFI-Ga21f").OnError(err).Panic("unable to create filesystem") @@ -92,7 +102,7 @@ func CreateLogin(config Config, command *command.Commands, query *query.Queries, userAgentCookie, err := middleware.NewUserAgentHandler(config.UserAgentCookieConfig, id.SonyFlakeGenerator, localDevMode) logging.Log("CONFI-Dvwf2").OnError(err).Panic("unable to create userAgentInterceptor") login.router = CreateRouter(login, statikFS, csrf, cache, security, userAgentCookie, middleware.TelemetryHandler(EndpointResources)) - login.renderer = CreateRenderer(prefix, statikFS, config.LanguageCookieName, config.DefaultLanguage) + login.renderer = CreateRenderer(prefix, statikFS, staticStorage, config.LanguageCookieName, config.DefaultLanguage) login.parser = form.NewParser() return login, handlerPrefix } diff --git a/internal/ui/login/handler/renderer.go b/internal/ui/login/handler/renderer.go index 322587d5d2..c87d485fbf 100644 --- a/internal/ui/login/handler/renderer.go +++ b/internal/ui/login/handler/renderer.go @@ -3,10 +3,13 @@ package handler import ( "errors" "fmt" - "github.com/caos/zitadel/internal/domain" "html/template" "net/http" "path" + "strings" + + "github.com/caos/zitadel/internal/domain" + "github.com/caos/zitadel/internal/static" "github.com/caos/logging" "github.com/gorilla/csrf" @@ -25,12 +28,14 @@ const ( type Renderer struct { *renderer.Renderer - pathPrefix string + pathPrefix string + staticStorage static.Storage } -func CreateRenderer(pathPrefix string, staticDir http.FileSystem, cookieName string, defaultLanguage language.Tag) *Renderer { +func CreateRenderer(pathPrefix string, staticDir http.FileSystem, staticStorage static.Storage, cookieName string, defaultLanguage language.Tag) *Renderer { r := &Renderer{ - pathPrefix: pathPrefix, + pathPrefix: pathPrefix, + staticStorage: staticStorage, } tmplMapping := map[string]string{ tmplError: "error.html", @@ -69,6 +74,35 @@ func CreateRenderer(pathPrefix string, staticDir http.FileSystem, cookieName str "resourceThemeUrl": func(file, theme string) string { return path.Join(r.pathPrefix, EndpointResources, "themes", theme, file) }, + "hasCustomPolicy": func(policy *domain.LabelPolicy) bool { + if policy != nil { + return true + } + return false + }, + "hasWatermark": func(policy *domain.LabelPolicy) bool { + if policy != nil && policy.DisableWatermark { + return false + } + return true + }, + "variablesCssFileUrl": func(orgID string, policy *domain.LabelPolicy) string { + cssFile := domain.CssPath + "/" + domain.CssVariablesFileName + return path.Join(r.pathPrefix, fmt.Sprintf("%s?%s=%s&%s=%v&%s=%s", EndpointDynamicResources, "orgId", orgID, "default-policy", policy.Default, "filename", cssFile)) + }, + "customLogoResource": func(orgID string, policy *domain.LabelPolicy, darkMode bool) string { + fileName := policy.LogoURL + if darkMode && policy.LogoDarkURL != "" { + fileName = policy.LogoDarkURL + } + if fileName == "" { + return "" + } + return path.Join(r.pathPrefix, fmt.Sprintf("%s?%s=%s&%s=%v&%s=%s", EndpointDynamicResources, "orgId", orgID, "default-policy", policy.Default, "filename", fileName)) + }, + "avatarResource": func(orgID, avatar string) string { + return path.Join(r.pathPrefix, fmt.Sprintf("%s?%s=%s&%s=%v&%s=%s", EndpointDynamicResources, "orgId", orgID, "default-policy", false, "filename", avatar)) + }, "loginUrl": func() string { return path.Join(r.pathPrefix, EndpointLogin) }, @@ -272,6 +306,7 @@ func (l *Login) getBaseData(r *http.Request, authReq *domain.AuthRequest, title Title: title, Theme: l.getTheme(r), ThemeMode: l.getThemeMode(r), + DarkMode: l.isDarkMode(r), OrgID: l.getOrgID(authReq), OrgName: l.getOrgName(authReq), PrimaryDomain: l.getOrgPrimaryDomain(authReq), @@ -282,22 +317,27 @@ func (l *Login) getBaseData(r *http.Request, authReq *domain.AuthRequest, title } if authReq != nil { baseData.LoginPolicy = authReq.LoginPolicy + baseData.LabelPolicy = authReq.LabelPolicy baseData.IDPProviders = authReq.AllowedExternalIDPs + } else { + //TODO: How to handle LabelPolicy if no auth req (eg Register) } return baseData } func (l *Login) getProfileData(authReq *domain.AuthRequest) profileData { - var userName, loginName, displayName string + var userName, loginName, displayName, avatar string if authReq != nil { userName = authReq.UserName loginName = authReq.LoginName displayName = authReq.DisplayName + avatar = authReq.AvatarKey } return profileData{ UserName: userName, LoginName: loginName, DisplayName: displayName, + AvatarKey: avatar, } } @@ -316,7 +356,18 @@ func (l *Login) getTheme(r *http.Request) string { } func (l *Login) getThemeMode(r *http.Request) string { - return "lgn-dark-theme" //TODO: impl + if l.isDarkMode(r) { + return "lgn-dark-theme" + } + return "lgn-light-theme" +} + +func (l *Login) isDarkMode(r *http.Request) bool { + cookie, err := r.Cookie("mode") + if err != nil { + return false + } + return strings.HasSuffix(cookie.Value, "dark") } func (l *Login) getOrgID(authReq *domain.AuthRequest) string { @@ -379,6 +430,7 @@ type baseData struct { Title string Theme string ThemeMode string + DarkMode bool OrgID string OrgName string PrimaryDomain string @@ -388,6 +440,7 @@ type baseData struct { Nonce string LoginPolicy *domain.LoginPolicy IDPProviders []*domain.IDPProvider + LabelPolicy *domain.LabelPolicy } type errorData struct { @@ -408,6 +461,7 @@ type profileData struct { LoginName string UserName string DisplayName string + AvatarKey string } type passwordData struct { diff --git a/internal/ui/login/handler/resources_handler.go b/internal/ui/login/handler/resources_handler.go index b06449a6da..6444f6ce92 100644 --- a/internal/ui/login/handler/resources_handler.go +++ b/internal/ui/login/handler/resources_handler.go @@ -1,9 +1,99 @@ package handler import ( + "context" + "io/ioutil" "net/http" + "strconv" + "time" + + "github.com/caos/logging" + + "github.com/caos/zitadel/internal/domain" + caos_errs "github.com/caos/zitadel/internal/errors" ) +type dynamicResourceData struct { + OrgID string `schema:"orgId"` + DefaultPolicy bool `schema:"default-policy"` + FileName string `schema:"filename"` +} + func (l *Login) handleResources(staticDir http.FileSystem) http.Handler { return http.FileServer(staticDir) } + +func (l *Login) handleDynamicResources(w http.ResponseWriter, r *http.Request) { + data := new(dynamicResourceData) + err := l.getParseData(r, data) + if err != nil { + return + } + + bucketName := domain.IAMID + if data.OrgID != "" && !data.DefaultPolicy { + bucketName = data.OrgID + } + + etag := r.Header.Get("If-None-Match") + asset, info, err := l.getStatic(r.Context(), bucketName, data.FileName) + if info != nil && info.ETag == etag { + w.WriteHeader(304) + return + } + if err != nil { + return + } + + w.Header().Set("content-length", strconv.FormatInt(info.Size, 10)) + w.Header().Set("content-type", info.ContentType) + w.Header().Set("ETag", info.ETag) + w.Write(asset) +} + +func (l *Login) getStatic(ctx context.Context, bucketName, fileName string) ([]byte, *domain.AssetInfo, error) { + s := new(staticAsset) + key := bucketName + "-" + fileName + err := l.staticCache.Get(key, s) + if err == nil && s.Info != nil && (s.Info.Expiration.After(time.Now().Add(-1 * time.Minute))) { //TODO: config? + return s.Data, s.Info, nil + } + + info, err := l.staticStorage.GetObjectInfo(ctx, bucketName, fileName) + if err != nil { + if caos_errs.IsNotFound(err) { + return nil, nil, err + } + return s.Data, s.Info, err + } + if s.Info != nil && s.Info.ETag == info.ETag { + if info.Expiration.After(s.Info.Expiration) { + s.Info = info + l.cacheStatic(bucketName, fileName, s) + } + return s.Data, s.Info, nil + } + + reader, _, err := l.staticStorage.GetObject(ctx, bucketName, fileName) + if err != nil { + return s.Data, s.Info, err + } + s.Data, err = ioutil.ReadAll(reader) + if err != nil { + return nil, nil, err + } + s.Info = info + l.cacheStatic(bucketName, fileName, s) + return s.Data, s.Info, nil +} + +func (l *Login) cacheStatic(bucketName, fileName string, s *staticAsset) { + key := bucketName + "-" + fileName + err := l.staticCache.Set(key, &s) + logging.Log("HANDLER-dfht2").OnError(err).Warnf("caching of asset %s: %s failed", bucketName, fileName) +} + +type staticAsset struct { + Data []byte + Info *domain.AssetInfo +} diff --git a/internal/ui/login/handler/router.go b/internal/ui/login/handler/router.go index 6d3b8cde36..3f6b7f9b13 100644 --- a/internal/ui/login/handler/router.go +++ b/internal/ui/login/handler/router.go @@ -37,7 +37,8 @@ const ( EndpointLogoutDone = "/logout/done" EndpointExternalNotFoundOption = "/externaluser/option" - EndpointResources = "/resources" + EndpointResources = "/resources" + EndpointDynamicResources = "/resources/dynamic" ) func CreateRouter(login *Login, staticDir http.FileSystem, interceptors ...mux.MiddlewareFunc) *mux.Router { @@ -77,6 +78,7 @@ func CreateRouter(login *Login, staticDir http.FileSystem, interceptors ...mux.M router.HandleFunc(EndpointExternalRegister, login.handleExternalRegister).Methods(http.MethodGet) router.HandleFunc(EndpointExternalRegisterCallback, login.handleExternalRegisterCallback).Methods(http.MethodGet) router.HandleFunc(EndpointLogoutDone, login.handleLogoutDone).Methods(http.MethodGet) + router.HandleFunc(EndpointDynamicResources, login.handleDynamicResources).Methods(http.MethodGet) router.PathPrefix(EndpointResources).Handler(login.handleResources(staticDir)).Methods(http.MethodGet) router.HandleFunc(EndpointRegisterOrg, login.handleRegisterOrg).Methods(http.MethodGet) router.HandleFunc(EndpointRegisterOrg, login.handleRegisterOrgCheck).Methods(http.MethodPost) diff --git a/internal/ui/login/login.go b/internal/ui/login/login.go index b2b591e116..0b89920b1c 100644 --- a/internal/ui/login/login.go +++ b/internal/ui/login/login.go @@ -5,6 +5,7 @@ import ( "github.com/caos/zitadel/internal/command" "github.com/caos/zitadel/internal/config/systemdefaults" "github.com/caos/zitadel/internal/query" + "github.com/caos/zitadel/internal/static" "github.com/caos/zitadel/internal/ui/login/handler" ) @@ -12,6 +13,6 @@ type Config struct { Handler handler.Config } -func Start(config Config, command *command.Commands, query *query.Queries, authRepo *eventsourcing.EsRepository, systemdefaults systemdefaults.SystemDefaults, localDevMode bool) (*handler.Login, string) { - return handler.CreateLogin(config.Handler, command, query, authRepo, systemdefaults, localDevMode) +func Start(config Config, command *command.Commands, query *query.Queries, authRepo *eventsourcing.EsRepository, staticStorage static.Storage, systemdefaults systemdefaults.SystemDefaults, localDevMode bool) (*handler.Login, string) { + return handler.CreateLogin(config.Handler, command, query, authRepo, staticStorage, systemdefaults, localDevMode) } diff --git a/internal/ui/login/static/i18n/de.yaml b/internal/ui/login/static/i18n/de.yaml index d30511dd7a..b32ae723b2 100644 --- a/internal/ui/login/static/i18n/de.yaml +++ b/internal/ui/login/static/i18n/de.yaml @@ -220,6 +220,7 @@ Actions: PasswordLogin: Mit Passwort anmelden Footer: + PoweredBy: Powered By Tos: AGB TosLink: https://zitadel.ch/pdf/agb.pdf Privacy: Datenschutzerklärung diff --git a/internal/ui/login/static/i18n/en.yaml b/internal/ui/login/static/i18n/en.yaml index 937f46a8f1..73df887929 100644 --- a/internal/ui/login/static/i18n/en.yaml +++ b/internal/ui/login/static/i18n/en.yaml @@ -220,6 +220,7 @@ Actions: PasswordLogin: Login with password Footer: + PoweredBy: Powered By Tos: TOS TosLink: https://zitadel.ch/pdf/tos.pdf Privacy: Privacy policy diff --git a/internal/ui/login/static/resources/generate.go b/internal/ui/login/static/resources/generate.go index ed4e6fc385..df529f451c 100644 --- a/internal/ui/login/static/resources/generate.go +++ b/internal/ui/login/static/resources/generate.go @@ -3,6 +3,4 @@ package resources // TODO whitelabeling go:generate sass themes/scss/zitadel-alternative.scss themes/zitadel/css/zitadel.css // scss -//go:generate sass themes/scss/main.scss themes/zitadel/css/main.css -//go:generate sass themes/scss/bundle.scss themes/zitadel/css/bundle.css //go:generate sass themes/scss/zitadel.scss themes/zitadel/css/zitadel.css diff --git a/internal/ui/login/static/resources/scripts/avatar.js b/internal/ui/login/static/resources/scripts/avatar.js index 921906d4a4..7373163bbf 100644 --- a/internal/ui/login/static/resources/scripts/avatar.js +++ b/internal/ui/login/static/resources/scripts/avatar.js @@ -1,50 +1,36 @@ const avatars = document.getElementsByClassName('lgn-avatar'); for (let i = 0; i < avatars.length; i++) { - const displayName = avatars[i].getAttribute('displayname'); + const displayName = avatars[i].getAttribute('loginname'); if (displayName) { - const split = displayName.split(' '); - if (split) { - const initials = split[0].charAt(0) + (split[1] ? split[1].charAt(0) : ''); - if (initials) { - avatars[i].getElementsByClassName('initials')[0].innerHTML = initials; - } + const username = displayName.split('@')[0]; + let separator = '_'; + if (username.includes('-')) { + separator = '-'; } + if (username.includes('.')) { + separator = '.'; + } + const split = username.split(separator); + const initials = split[0].charAt(0) + (split[1] ? split[1].charAt(0) : ''); + avatars[i].getElementsByClassName('initials')[0].innerHTML = initials; - const color = this.getColor(displayName); - avatars[i].style.background = color; + avatars[i].style.background = this.getColor(displayName); // set default white text instead of contrast text mode avatars[i].style.color = '#ffffff'; } } -function getColor(userName) { - const colors = [ - 'linear-gradient(40deg, #B44D51 30%, rgb(241,138,138))', - 'linear-gradient(40deg, #B75073 30%, rgb(234,96,143))', - 'linear-gradient(40deg, #84498E 30%, rgb(214,116,230))', - 'linear-gradient(40deg, #705998 30%, rgb(163,131,220))', - 'linear-gradient(40deg, #5C6598 30%, rgb(135,148,222))', - 'linear-gradient(40deg, #7F90D3 30%, rgb(181,196,247))', - 'linear-gradient(40deg, #3E93B9 30%, rgb(150,215,245))', - 'linear-gradient(40deg, #3494A0 30%, rgb(71,205,222))', - 'linear-gradient(40deg, #25716A 30%, rgb(58,185,173))', - 'linear-gradient(40deg, #427E41 30%, rgb(97,185,96))', - 'linear-gradient(40deg, #89A568 30%, rgb(176,212,133))', - 'linear-gradient(40deg, #90924D 30%, rgb(187,189,98))', - 'linear-gradient(40deg, #E2B032 30%, rgb(245,203,99))', - 'linear-gradient(40deg, #C97358 30%, rgb(245,148,118))', - 'linear-gradient(40deg, #6D5B54 30%, rgb(152,121,108))', - 'linear-gradient(40deg, #6B7980 30%, rgb(134,163,177))', - ]; - +function getColor(username) { + const s = 40; + const l = 50; + const l2 = 62.5; let hash = 0; - if (userName.length === 0) { - return colors[hash]; + for (let i = 0; i < username.length; i++) { + hash = username.charCodeAt(i) + ((hash << 5) - hash); } - for (let i = 0; i < userName.length; i++) { - hash = userName.charCodeAt(i) + ((hash << 5) - hash); - hash = hash & hash; - } - hash = ((hash % colors.length) + colors.length) % colors.length; - return colors[hash]; + + const h = hash % 360; + const col1 = 'hsl(' + h + ', ' + s + '%, ' + l + '%)'; + const col2 = 'hsl(' + h + ', ' + s + '%, ' + l2 + '%)'; + return 'linear-gradient(40deg, ' + col1 + ' 30%, ' + col2 + ')'; } \ No newline at end of file diff --git a/internal/ui/login/static/resources/scripts/theme.js b/internal/ui/login/static/resources/scripts/theme.js index 9c0004e470..c5b088f6ba 100644 --- a/internal/ui/login/static/resources/scripts/theme.js +++ b/internal/ui/login/static/resources/scripts/theme.js @@ -1,6 +1,46 @@ -const usesDarkTheme = window.matchMedia('(prefers-color-scheme: dark)').matches; +const usesDarkTheme = hasDarkModeOverwriteCookie() || (!hasLightModeOverwriteCookie() && window.matchMedia('(prefers-color-scheme: dark)').matches); if (usesDarkTheme) { document.documentElement.classList.replace('lgn-light-theme', 'lgn-dark-theme'); + writeModeCookie('dark'); } else { document.documentElement.classList.replace('lgn-dark-theme', 'lgn-light-theme'); + writeModeCookie('light'); } + +function hasDarkModeOverwriteCookie() { + return getCookie('mode') === 'dark'; +} + +function hasLightModeOverwriteCookie() { + return getCookie('mode') === 'light'; +} + +function writeModeCookie(mode) { + let cookieMode = getCookie('mode') + if (cookieMode === '' || cookieMode.startsWith('auto')) { + setCookie('mode', 'auto-' + mode, 365); + } +} + +function getCookie(cname) { + let name = cname + '='; + let decodedCookie = decodeURIComponent(document.cookie); + let ca = decodedCookie.split(';'); + for (let i = 0; i < ca.length; i++) { + let c = ca[i]; + while (c.charAt(0) === ' ') { + c = c.substring(1); + } + if (c.indexOf(name) === 0) { + return c.substring(name.length, c.length); + } + } + return ''; +} + +function setCookie(name, value, exdays) { + let d = new Date(); + d.setTime(d.getTime() + (exdays * 24 * 60 * 60 * 1000)); + let expires = "expires=" + d.toUTCString(); + document.cookie = name + "=" + value + ";" + expires + ";path=/"; +} \ No newline at end of file diff --git a/internal/ui/login/static/resources/themes/scss/styles/a/a_theme.scss b/internal/ui/login/static/resources/themes/scss/styles/a/a_theme.scss index b44c5a2e8f..db3d40ea03 100644 --- a/internal/ui/login/static/resources/themes/scss/styles/a/a_theme.scss +++ b/internal/ui/login/static/resources/themes/scss/styles/a/a_theme.scss @@ -1,24 +1,18 @@ @import './a.scss'; -@mixin lgn-a-theme($theme-or-color-config) { - $theme: lgn-private-legacy-get-theme($theme-or-color-config); - $color: lgn-get-color-config($theme); +@mixin lgn-a-theme() { + + @include lgn-a-color(); - @if $color != null { - @include lgn-a-color($color); - } } -@mixin lgn-a-color($config-or-theme) { - $config: lgn-get-color-config($config-or-theme); - $primary: map-get($config, primary); - +@mixin lgn-a-color() { a { - color: lgn-color($primary, default); - + color: var(--zitadel-color-primary); + &:hover, &:active { - color: lgn-color($primary, 400); + color: var(--zitadel-color-primary-400); } } } \ No newline at end of file diff --git a/internal/ui/login/static/resources/themes/scss/styles/account_selection/account_selection_theme.scss b/internal/ui/login/static/resources/themes/scss/styles/account_selection/account_selection_theme.scss index fe7036cbd9..778ce883a5 100644 --- a/internal/ui/login/static/resources/themes/scss/styles/account_selection/account_selection_theme.scss +++ b/internal/ui/login/static/resources/themes/scss/styles/account_selection/account_selection_theme.scss @@ -1,20 +1,12 @@ @import './account_selection.scss'; -@mixin lgn-account-selection-theme($theme-or-color-config) { - $theme: lgn-private-legacy-get-theme($theme-or-color-config); - $color: lgn-get-color-config($theme); +@mixin lgn-account-selection-theme() { + + @include lgn-account-selection-color(); - @if $color != null { - @include lgn-account-selection-color($color); - } } -@mixin lgn-account-selection-color($config-or-theme) { - $config: lgn-get-color-config($config-or-theme); - $warn: map-get($config, warn); - $primary: map-get($config, primary); - $foreground: map-get($config, foreground); - $background: map-get($config, background); +@mixin lgn-account-selection-color() { .lgn-account-selection{ display: flex; @@ -24,36 +16,34 @@ .lgn-account { color: inherit; background: transparent; - box-shadow: inset 0 -1px lgn-color($foreground, footer-line); + box-shadow: inset 0 -1px var(--zitadel-color-footer-line); &:hover { - $primary: map-get($config, primary); - background-color: lgn-color($background, account-selector-hover); + background-color: var(--zitadel-color-account-selector-hover); } &:focus { - background-color: lgn-color($background, account-selector-active); + background-color: var(--zitadel-color-account-selector-active); } &:active { - background-color: lgn-color($background, account-selector-active); + background-color: var(--zitadel-color-account-selector-active); } .lgn-loginname{ font-size: 14px; - color: lgn-color($foreground, label); + color: var(--zitadel-color-label); } .lgn-session-state { - color: lgn-color($foreground, label); + color: var(--zitadel-color-label); &.i0 { color: #85d996; } &.i1 { - $warn: map-get($config, warn); - color: lgn-color($warn, default); + color: var(--zitadel-color-warn); } } } diff --git a/internal/ui/login/static/resources/themes/scss/styles/avatar/avatar.scss b/internal/ui/login/static/resources/themes/scss/styles/avatar/avatar.scss index 9d7e3d81b8..434869ef7b 100644 --- a/internal/ui/login/static/resources/themes/scss/styles/avatar/avatar.scss +++ b/internal/ui/login/static/resources/themes/scss/styles/avatar/avatar.scss @@ -15,4 +15,11 @@ $lgn-avatar-size: 32px; font-size: 14px; outline: none; font-weight: bold; + overflow: hidden; +} + +.lgn-avatar .avatar-img { + height: 100%; + width: 100%; + object-fit: cover; } \ No newline at end of file diff --git a/internal/ui/login/static/resources/themes/scss/styles/avatar/avatar_theme.scss b/internal/ui/login/static/resources/themes/scss/styles/avatar/avatar_theme.scss index 8c14a69694..f837199f97 100644 --- a/internal/ui/login/static/resources/themes/scss/styles/avatar/avatar_theme.scss +++ b/internal/ui/login/static/resources/themes/scss/styles/avatar/avatar_theme.scss @@ -1,45 +1,32 @@ @import './avatar.scss'; @import "../elevation/elevation.scss"; -@mixin lgn-avatar-theme($theme-or-color-config) { - $theme: lgn-private-legacy-get-theme($theme-or-color-config); - $color: lgn-get-color-config($theme); - - @if $color != null { - @include lgn-avatar-color($color); - } +@mixin lgn-avatar-theme() { + @include lgn-avatar-color(); } -@mixin lgn-avatar-color($config-or-theme) { - $config: lgn-get-color-config($config-or-theme); - $warn: map-get($config, warn); - $primary: map-get($config, primary); - +@mixin lgn-avatar-color() { .lgn-avatar:not(.transparent) { - @include _lgn-avatar-theme-property($config, "background-color", default); - @include lgn-button-elevation(2, $config); + @include _lgn-avatar-theme-property("background-color", false); + @include lgn-avatar-elevation(2); } .lgn-avatar .initials{ - @include _lgn-avatar-theme-property($config, "color", default-contrast); + @include _lgn-avatar-theme-property("color", true); } } -@mixin _lgn-avatar-theme-property($theme, $property, $hue) { - $primary: map-get($theme, primary); - $accent: map-get($theme, accent); - $warn: map-get($theme, warn); - $background: map-get($theme, background); - $foreground: map-get($theme, foreground); - +@mixin _lgn-avatar-theme-property($property, $contrast) { + $color: if($contrast, var(--zitadel-color-primary-contrast), var(--zitadel-color-primary)); + &.lgn-primary { - #{$property}: lgn-color($primary, $hue); + #{$property}: $color; } &.lgn-accent { - #{$property}: lgn-color($accent, $hue); + #{$property}: $color; } &.lgn-warn { - #{$property}: lgn-color($warn, $hue); + #{$property}: $color; } &.lgn-primary, @@ -47,20 +34,12 @@ &.lgn-warn, &[disabled] { &[disabled] { - $palette: if($property == "color", $foreground, $background); - #{$property}: lgn-color($palette, disabled-button); + $btn-color: if($property == "color", var(--zitadel-color-button-disabled), var(--itadel-color-button-disabled-background)); + #{$property}: $btn-color; } } } -@mixin lgn-avatar-elevation($zValue, $config, $opacity: $lgn-elevation-opacity) { - $foreground: map-get($config, foreground); - $elevation-color: map-get($foreground, elevation); - $elevation-color-or-default: if( - $elevation-color == null, - $lgn-elevation-color, - $elevation-color - ); - - @include lgn-elevation($zValue, $elevation-color-or-default, $opacity); +@mixin lgn-avatar-elevation($zValue, $opacity: $lgn-elevation-opacity) { + @include lgn-elevation($zValue, rgb(0, 0, 0), $opacity); } \ No newline at end of file diff --git a/internal/ui/login/static/resources/themes/scss/styles/button/button_theme.scss b/internal/ui/login/static/resources/themes/scss/styles/button/button_theme.scss index 3cd42b3ccc..19616745a9 100644 --- a/internal/ui/login/static/resources/themes/scss/styles/button/button_theme.scss +++ b/internal/ui/login/static/resources/themes/scss/styles/button/button_theme.scss @@ -2,81 +2,68 @@ @import "./button.scss"; @import "../elevation/elevation.scss"; -@mixin lgn-button-theme($theme-or-color-config) { - $theme: lgn-private-legacy-get-theme($theme-or-color-config); - $color: lgn-get-color-config($theme); - - @if $color != null { - @include lgn-button-color($color); - } +@mixin lgn-button-theme() { + @include lgn-button-color(); } -@mixin lgn-button-color($config-or-theme) { - $config: lgn-get-color-config($config-or-theme); - $primary: map-get($config, primary); - $accent: map-get($config, accent); - $warn: map-get($config, warn); - $background: map-get($config, background); - $foreground: map-get($config, foreground); - +@mixin lgn-button-color() { .lgn-button, .lgn-stroked-button, .lgn-icon-button { color: inherit; background: transparent; - @include _lgn-button-theme-property($config, "color", text); + @include _lgn-button-theme-color(false); } .lgn-button:focus, .lgn-stroked-button:focus, .lgn-raised-button:focus { - @include lgn-button-elevation(8, $config); - background: map-get($background, base); + @include lgn-button-elevation(8); + background: var(--zitadel-color-background); } .lgn-stroked-button:not([disabled]) { - border-color: lgn-color($foreground, divider); + border-color: var(--zitadel-color-divider); } .lgn-button { - @include _lgn-button-theme-property($config, "color", text); + @include _lgn-button-theme-color(false); &:hover { - $primary: map-get($config, primary); - background-color: rgba(lgn-color($primary, 500), 0.1); + background-color: rgba(var(--zitadel-color-primary-rgb), 0.1); } &:focus { - background-color: rgba(lgn-color($primary, 500), 0.2); + background-color: rgba(var(--zitadel-color-primary-rgb), 0.2); } &:active { - background-color: rgba(lgn-color($primary, 500), 0.25); + background-color: rgba(var(--zitadel-color-primary-rgb), 0.25); } } .lgn-raised-button { - color: lgn-color($foreground, text); - background-color: lgn-color($background, raised-button); + color: var(--zitadel-color-text); + background-color: var(--zitadel-color-raised-button-background); - @include _lgn-button-theme-property($config, "color", default-contrast); - @include _lgn-button-theme-property($config, "background-color", default); + @include _lgn-button-theme-color(true); + @include _lgn-button-theme-background-color(); &:active { - background-color: rgba(lgn-color($primary, 500), 0.8); + background-color: rgba(var(--zitadel-color-primary-rgb), 0.8); } } .lgn-button, .lgn-stroked-button { - @include lgn-button-elevation(0, $config); + @include lgn-button-elevation(0); } .lgn-raised-button { - @include lgn-button-elevation(2, $config); + @include lgn-button-elevation(2); &:not([disabled]):active { - @include lgn-button-elevation(8, $config); + @include lgn-button-elevation(8); } // &:focus { @@ -84,26 +71,20 @@ // } &[disabled] { - @include lgn-button-elevation(0, $config); + @include lgn-button-elevation(0); } } } -@mixin _lgn-button-theme-property($theme, $property, $hue) { - $primary: map-get($theme, primary); - $accent: map-get($theme, accent); - $warn: map-get($theme, warn); - $background: map-get($theme, background); - $foreground: map-get($theme, foreground); - +@mixin _lgn-button-theme-color() { &.lgn-primary { - #{$property}: lgn-color($primary, $hue); + color: var(--zitadel-color-primary); } &.lgn-accent { - #{$property}: lgn-color($accent, $hue); + color: var(--zitadel-color-secondary); } &.lgn-warn { - #{$property}: lgn-color($warn, $hue); + color: var(--zitadel-color-warn); } &.lgn-primary, @@ -111,50 +92,92 @@ &.lgn-warn, &[disabled] { &[disabled] { - $palette: if($property == "color", $foreground, $background); - #{$property}: lgn-color($palette, disabled-button); + color: var(--zitadel-color-button-disabled); } } } -@mixin _lgn-button-focus-overlay-color($config-or-theme) { - $config: lgn-get-color-config($config-or-theme); - $primary: map-get($config, primary); - $accent: map-get($config, accent); - $warn: map-get($config, warn); +@mixin _lgn-button-theme-background-color() { + &.lgn-primary { + background-color: var(--zitadel-color-primary); + } + &.lgn-accent { + background-color: var(--zitadel-color-secondary); + } + &.lgn-warn { + background-color: var(--zitadel-color-warn); + } + + &.lgn-primary, + &.lgn-accent, + &.lgn-warn, + &[disabled] { + &[disabled] { + background-color: var(--zitadel-color-button-disabled-background); + } + } +} + +@mixin _lgn-button-theme-color($contrast) { + $color: if($contrast, var(--zitadel-color-primary-contrast), var(--zitadel-color-primary)); + + &.lgn-primary { + color: $color; + } + &.lgn-accent { + color: $color; + } + &.lgn-warn { + color: $color; + } + + &.lgn-primary, + &.lgn-accent, + &.lgn-warn, + &[disabled] { + &[disabled] { + color: var(--zitadel-color-button-disabled); + } + } +} + +@mixin _lgn-button-theme-background-color() { + + &.lgn-primary { + background-color: var(--zitadel-color-primary); + } + &.lgn-accent { + background-color: var(--zitadel-color-primary); + } + &.lgn-warn { + background-color: var(--zitadel-color-primary); + } + + &.lgn-primary, + &.lgn-accent, + &.lgn-warn, + &[disabled] { + &[disabled] { + background-color: var(--zitadel-color-button-disabled-background); + } + } +} + +@mixin _lgn-button-focus-overlay-color() { &.lgn-primary:focus { - background-color: lgn-color($primary); + background-color: var(--zitadel-color-primary); } &.lgn-accent:focus { - background-color: lgn-color($accent); + background-color: var(--zitadel-color-secondary); } &.lgn-warn:focus { - background-color: lgn-color($warn); + background-color: var(--zitadel-color-warn); } } -@mixin lgn-button-elevation($zValue, $config, $opacity: $lgn-elevation-opacity) { - $foreground: map-get($config, foreground); - $elevation-color: map-get($foreground, elevation); - $elevation-color-or-default: if( - $elevation-color == null, - $lgn-elevation-color, - $elevation-color - ); - - @include lgn-elevation($zValue, $elevation-color-or-default, $opacity); +@mixin lgn-button-elevation($zValue, $opacity: $lgn-elevation-opacity) { + @include lgn-elevation($zValue, rgb(0, 0, 0), $opacity); } - -@mixin lgn-button-typography($config-or-theme) { - $config: lgn-get-typography-config($config-or-theme); - .lgn-button, .lgn-raised-button, .lgn-icon-button, .lgn-stroked-button { - font: { - family: lgn-font-family($config, button); - size: lgn-font-size($config, button); - weight: lgn-font-weight($config, button); - } - } - } diff --git a/internal/ui/login/static/resources/themes/scss/styles/checkbox/checkbox_theme.scss b/internal/ui/login/static/resources/themes/scss/styles/checkbox/checkbox_theme.scss index 90784e1595..09337ef371 100644 --- a/internal/ui/login/static/resources/themes/scss/styles/checkbox/checkbox_theme.scss +++ b/internal/ui/login/static/resources/themes/scss/styles/checkbox/checkbox_theme.scss @@ -1,21 +1,11 @@ @import '../theming/theming.scss'; @import './checkbox.scss'; -@mixin lgn-checkbox-theme($theme-or-color-config) { - $theme: lgn-private-legacy-get-theme($theme-or-color-config); - $color: lgn-get-color-config($theme); - - @if $color != null { - @include lgn-checkbox-color($color); - } +@mixin lgn-checkbox-theme() { + @include lgn-checkbox-color(); } -@mixin lgn-checkbox-color($config-or-theme) { - $config: lgn-get-color-config($config-or-theme); - $primary: map-get($config, primary); - $warn: map-get($config, warn); - $background: map-get($config, background); - $foreground: map-get($config, foreground); +@mixin lgn-checkbox-color() { input[type='checkbox'] { position: absolute; @@ -31,7 +21,7 @@ .lgn-checkbox label { &:before { background-color: transparent; - border: 2px solid lgn-color($foreground, input-border); + border: 2px solid var(--zitadel-color-input-border); } &:after { @@ -44,8 +34,8 @@ // Checked input[type='checkbox']:checked + label { &:before { - background-color: lgn-color($primary, default); - border-color: lgn-color($primary, default); + background-color: var(--zitadel-color-primary); + border-color: var(--zitadel-color-primary); } &:after { diff --git a/internal/ui/login/static/resources/themes/scss/styles/container/container_theme.scss b/internal/ui/login/static/resources/themes/scss/styles/container/container_theme.scss index b077324f4b..d84ebefa0e 100644 --- a/internal/ui/login/static/resources/themes/scss/styles/container/container_theme.scss +++ b/internal/ui/login/static/resources/themes/scss/styles/container/container_theme.scss @@ -1,29 +1,20 @@ @import './container.scss'; -@mixin lgn-container-theme($theme-or-color-config) { - $theme: lgn-private-legacy-get-theme($theme-or-color-config); - $color: lgn-get-color-config($theme); - - @if $color != null { - @include lgn-container-color($color); - } +@mixin lgn-container-theme() { + @include lgn-container-color(); } -@mixin lgn-container-color($config-or-theme) { - $config: lgn-get-color-config($config-or-theme); - $warn: map-get($config, warn); - $primary: map-get($config, primary); +@mixin lgn-container-color() { .lgn-error { .lgn-error-message { - color: lgn-color($warn, default); + color: var(--zitadel-color-warn); } } .lgn-login-profile { .lgn-names { - $foreground: map-get($config, foreground); - border-color: lgn-color($foreground, divider); + border-color: var(--zitadel-color-divider); } } } \ No newline at end of file diff --git a/internal/ui/login/static/resources/themes/scss/styles/core/core.scss b/internal/ui/login/static/resources/themes/scss/styles/core/core.scss index 7b55f57da0..d129648535 100644 --- a/internal/ui/login/static/resources/themes/scss/styles/core/core.scss +++ b/internal/ui/login/static/resources/themes/scss/styles/core/core.scss @@ -3,16 +3,12 @@ @include zitadel-lgn-typography($typography-config); } - @mixin lgn-core-color($config-or-theme) { - $config: lgn-get-color-config($config-or-theme); + @mixin lgn-core-color() { // Wrapper element that provides the theme background .lgn-app-background#{if(&, ', &.lgn-app-background', '')} { - $background: map-get($config, background); - $foreground: map-get($config, foreground); - - background-color: lgn-color($background, background); - color: lgn-color($foreground, text); + background-color: var(--zitadel-color-background); + color: var(--zitadel-color-text); } // Marker that is used to determine whether the user has added a theme to their page. @@ -24,10 +20,6 @@ } // Mixin that renders all of the core styles that depend on the theme. - @mixin lgn-core-theme($theme-or-color-config) { - $theme: lgn-private-legacy-get-theme($theme-or-color-config); - $color: lgn-get-color-config($theme); - @if $color != null { - @include lgn-core-color($color); - } + @mixin lgn-core-theme() { + @include lgn-core-color(); } \ No newline at end of file diff --git a/internal/ui/login/static/resources/themes/scss/styles/error/error_theme.scss b/internal/ui/login/static/resources/themes/scss/styles/error/error_theme.scss index 36b07c975b..9f3ed11879 100644 --- a/internal/ui/login/static/resources/themes/scss/styles/error/error_theme.scss +++ b/internal/ui/login/static/resources/themes/scss/styles/error/error_theme.scss @@ -1,19 +1,12 @@ @import './error.scss'; -@mixin lgn-error-theme($theme-or-color-config) { - $theme: lgn-private-legacy-get-theme($theme-or-color-config); - $color: lgn-get-color-config($theme); - - @if $color != null { - @include lgn-error-color($color); - } +@mixin lgn-error-theme() { + @include lgn-error-color(); } -@mixin lgn-error-color($config-or-theme) { - $config: lgn-get-color-config($config-or-theme); - $warn: map-get($config, warn); +@mixin lgn-error-color() { .lgn-error { - color: lgn-color($warn, default); + color: var(--zitadel-color-warn); } } \ No newline at end of file diff --git a/internal/ui/login/static/resources/themes/scss/styles/footer/footer.scss b/internal/ui/login/static/resources/themes/scss/styles/footer/footer.scss index 59cb5fa75b..d141ec7700 100644 --- a/internal/ui/login/static/resources/themes/scss/styles/footer/footer.scss +++ b/internal/ui/login/static/resources/themes/scss/styles/footer/footer.scss @@ -18,6 +18,7 @@ footer { a { font-size: 12px; margin-left: 1rem; + display: block; } @media only screen and (min-width: 600px) { @@ -26,4 +27,22 @@ footer { left: 0; right: 0; } + + .watermark { + display: flex; + position: relative; + width: 100%; + + .powered { + font-size: 12px; + margin: auto 2px; + } + + .lgn-logo-watermark { + height: 34px; + width: 125px; + margin: 2px; + } + } + } \ No newline at end of file diff --git a/internal/ui/login/static/resources/themes/scss/styles/footer/footer_theme.scss b/internal/ui/login/static/resources/themes/scss/styles/footer/footer_theme.scss index d1d137448a..8fe41b69d0 100644 --- a/internal/ui/login/static/resources/themes/scss/styles/footer/footer_theme.scss +++ b/internal/ui/login/static/resources/themes/scss/styles/footer/footer_theme.scss @@ -1,27 +1,26 @@ @import './footer.scss'; -@mixin lgn-footer-theme($theme-or-color-config) { - $theme: lgn-private-legacy-get-theme($theme-or-color-config); +@mixin lgn-footer-theme() { // @include lgn-private-check-duplicate-theme-styles($theme, 'mat-button') { - $color: lgn-get-color-config($theme); - @if $color != null { - @include lgn-footer-color($color); - } + @include lgn-footer-color(); // } } -@mixin lgn-footer-color($config-or-theme) { - $config: lgn-get-color-config($config-or-theme); - $background: map-get($config, background); - $foreground: map-get($config, foreground); +@mixin lgn-footer-color() { footer { - background-color: lgn-color($background, footer); - border-top: 1px solid lgn-color($foreground, footer-line); + background-color: var(--zitadel-color-background); + border-top: 1px solid var(--zitadel-color-footer-line); a { - color: lgn-color($background, footer-links); + color: var(--zitadel-color-primary); + } + + .lgn-logo-watermark { + background: var(--zitadel-logo-powered-by); + background-position: auto; + background-size: contain; } } } \ No newline at end of file diff --git a/internal/ui/login/static/resources/themes/scss/styles/header/header.scss b/internal/ui/login/static/resources/themes/scss/styles/header/header.scss index 1c2f9f2f51..433e6a53d5 100644 --- a/internal/ui/login/static/resources/themes/scss/styles/header/header.scss +++ b/internal/ui/login/static/resources/themes/scss/styles/header/header.scss @@ -9,8 +9,8 @@ $lgn-header-margin: 1rem auto .5rem auto; width: 100%; .lgn-logo { - height: 43px; - width: 160px; + display: block; + max-height: 100px; margin: 0 auto; } } diff --git a/internal/ui/login/static/resources/themes/scss/styles/header/header_theme.scss b/internal/ui/login/static/resources/themes/scss/styles/header/header_theme.scss index f367449ccd..61906d2bb8 100644 --- a/internal/ui/login/static/resources/themes/scss/styles/header/header_theme.scss +++ b/internal/ui/login/static/resources/themes/scss/styles/header/header_theme.scss @@ -1,27 +1,12 @@ @import './header.scss'; -@mixin lgn-header-theme($theme-or-color-config) { - $theme: lgn-private-legacy-get-theme($theme-or-color-config); - $color: lgn-get-color-config($theme); - - @if $color != null { - @include lgn-header-color($color); - } +@mixin lgn-header-theme() { + @include lgn-header-color(); } -@mixin lgn-header-color($config-or-theme) { - $config: lgn-get-color-config($config-or-theme); - +@mixin lgn-header-color() { .lgn-logo { - background: _lgn-get-logo-src($config); background-position: auto; background-size: contain; } } - - -@function _lgn-get-logo-src($config) { - $is-dark-theme: map-get($config, is-dark); - @return if($is-dark-theme, url('../logo-light.svg') no-repeat, url('../logo-dark.svg') no-repeat); - // @return if($is-dark-theme, url('../'+attr(sourcelight))/*url('../logo-light.svg')*/ no-repeat, url('../'+attr(sourcedark))/*url('../logo-dark.svg')*/ no-repeat); -} diff --git a/internal/ui/login/static/resources/themes/scss/styles/identity_provider/identity_provider_theme.scss b/internal/ui/login/static/resources/themes/scss/styles/identity_provider/identity_provider_theme.scss index b55757a143..11fe742690 100644 --- a/internal/ui/login/static/resources/themes/scss/styles/identity_provider/identity_provider_theme.scss +++ b/internal/ui/login/static/resources/themes/scss/styles/identity_provider/identity_provider_theme.scss @@ -1,43 +1,27 @@ @import './identity_provider.scss'; -@mixin lgn-idp-theme($theme-or-color-config) { - $theme: lgn-private-legacy-get-theme($theme-or-color-config); - $color: lgn-get-color-config($theme); - - @if $color != null { - @include lgn-idp-color($color); - } +@mixin lgn-idp-theme() { + @include lgn-idp-color(); } -@mixin lgn-idp-color($config-or-theme) { - $config: lgn-get-color-config($config-or-theme); - $background: map-get($config, background); - $foreground: map-get($config, foreground); - - .lgn-idp { - border-color: lgn-color($foreground, divider); +@mixin lgn-idp-color() { - @include lgn-idp-elevation(1, $config); + .lgn-idp { + border-color: var(--zitadel-color-divider); - &:not([disabled]):active { - @include lgn-idp-elevation(8, $config); - } + @include lgn-idp-elevation(1); - &.google { - color: lgn-color($foreground, google-text); - background-color: lgn-color($background, google); - } + &:not([disabled]):active { + @include lgn-idp-elevation(8); } + + &.google { + color: var(--zitadel-color-google-text); + background-color: var(--zitadel-color-google-background); + } + } } -@mixin lgn-idp-elevation($zValue, $config, $opacity: $lgn-elevation-opacity) { - $foreground: map-get($config, foreground); - $elevation-color: map-get($foreground, elevation); - $elevation-color-or-default: if( - $elevation-color == null, - $lgn-elevation-color, - $elevation-color - ); - - @include lgn-elevation($zValue, $elevation-color-or-default, $opacity); - } \ No newline at end of file +@mixin lgn-idp-elevation($zValue, $opacity: $lgn-elevation-opacity) { + @include lgn-elevation($zValue, rgb(0, 0, 0), $opacity); +} \ No newline at end of file diff --git a/internal/ui/login/static/resources/themes/scss/styles/input/input_theme.scss b/internal/ui/login/static/resources/themes/scss/styles/input/input_theme.scss index d864e27b91..76631b8bd8 100644 --- a/internal/ui/login/static/resources/themes/scss/styles/input/input_theme.scss +++ b/internal/ui/login/static/resources/themes/scss/styles/input/input_theme.scss @@ -1,58 +1,43 @@ @import '../theming/theming.scss'; @import './input.scss'; -@mixin lgn-input-theme($theme-or-color-config) { - $theme: lgn-private-legacy-get-theme($theme-or-color-config); - $color: lgn-get-color-config($theme); - - @if $color != null { - @include lgn-input-color($color); - } +@mixin lgn-input-theme() { + @include lgn-input-color(); } -@mixin lgn-input-color($config-or-theme) { - $config: lgn-get-color-config($config-or-theme); - $primary: map-get($config, primary); - $warn: map-get($config, warn); - $background: map-get($config, background); - $foreground: map-get($config, foreground); +@mixin lgn-input-color() { .lgn-input:not([disabled]), select:not([disabled]), .lgn-select:not([disabled]) { - border-color: lgn-color($foreground, input-border); + border-color: var(--zitadel-color-input-border); } .lgn-input, select, .lgn-select { - color: lgn-color($foreground, text); - background-color: lgn-color($background, input); + color: var(--zitadel-color-text); + background-color: var(--zitadel-color-input-background); &:hover { - border-color: lgn-color($foreground, input-border-hover); + border-color: var(--zitadel-color-input-border-hover); } &:active { - @include _lgn-input-theme-property($config, 'border-color', default); + border-color: var(--zitadel-color-input-border); } &:focus { - @include _lgn-input-theme-property($config, 'border-color', default); + border-color: var(--zitadel-color-input-border); } // overwrite if state is warn &[color='warn'] { - border-color: lgn-color($warn, default); + border-color: var(--zitadel-color-warn); } } .lgn-input::placeholder, select::placeholder, .lgn-select::placeholder { - color: lgn-color($foreground, input-placeholder); + color: var(--zitadel-color-input-placeholder); } } - - @mixin _lgn-input-theme-property($theme, $property, $hue) { - $primary: map-get($theme, primary); - #{$property}: lgn-color($primary, $hue); - } diff --git a/internal/ui/login/static/resources/themes/scss/styles/label/label_theme.scss b/internal/ui/login/static/resources/themes/scss/styles/label/label_theme.scss index 9be432aeca..153c085735 100644 --- a/internal/ui/login/static/resources/themes/scss/styles/label/label_theme.scss +++ b/internal/ui/login/static/resources/themes/scss/styles/label/label_theme.scss @@ -1,25 +1,15 @@ @import '../theming/theming.scss'; @import './label.scss'; -@mixin lgn-label-theme($theme-or-color-config) { - $theme: lgn-private-legacy-get-theme($theme-or-color-config); +@mixin lgn-label-theme() { // @include lgn-private-check-duplicate-theme-styles($theme, 'lgn-label') { - $color: lgn-get-color-config($theme); - - @if $color != null { - @include lgn-label-color($color); - } + @include lgn-label-color(); // } } -@mixin lgn-label-color($config-or-theme) { - $config: lgn-get-color-config($config-or-theme); - $primary: map-get($config, primary); - $warn: map-get($config, warn); - $background: map-get($config, background); - $foreground: map-get($config, foreground); +@mixin lgn-label-color() { .lgn-label { - color: lgn-color($foreground, label); + color: var(--zitadel-color-label); } } \ No newline at end of file diff --git a/internal/ui/login/static/resources/themes/scss/styles/list/list_theme.scss b/internal/ui/login/static/resources/themes/scss/styles/list/list_theme.scss index bbf95201c0..699902bf3f 100644 --- a/internal/ui/login/static/resources/themes/scss/styles/list/list_theme.scss +++ b/internal/ui/login/static/resources/themes/scss/styles/list/list_theme.scss @@ -1,29 +1,19 @@ @import '../theming/theming.scss'; @import './list.scss'; -@mixin lgn-list-theme($theme-or-color-config) { - $theme: lgn-private-legacy-get-theme($theme-or-color-config); - $color: lgn-get-color-config($theme); - - @if $color != null { - @include lgn-list-color($color); - } +@mixin lgn-list-theme() { + @include lgn-list-color(); } -@mixin lgn-list-color($config-or-theme) { - $config: lgn-get-color-config($config-or-theme); - $primary: map-get($config, primary); - $warn: map-get($config, warn); - - $is-dark-theme: map-get($config, is-dark); +@mixin lgn-list-color() { .lgn-list, ul { li::before { - color: lgn-color($primary, default); + color: var(--zitadel-color-primary); } li i { &.lgn-warn { - color: lgn-color($warn, default); + color: var(--zitadel-color-warn); } &.lgn-valid { diff --git a/internal/ui/login/static/resources/themes/scss/styles/progress_bar/progress_bar_theme.scss b/internal/ui/login/static/resources/themes/scss/styles/progress_bar/progress_bar_theme.scss index c0fd59f4e5..3ce5dcb5e3 100644 --- a/internal/ui/login/static/resources/themes/scss/styles/progress_bar/progress_bar_theme.scss +++ b/internal/ui/login/static/resources/themes/scss/styles/progress_bar/progress_bar_theme.scss @@ -1,23 +1,12 @@ @import '../theming/theming.scss'; @import './progress_bar.scss'; -@mixin lgn-progress-bar-theme($theme-or-color-config) { - $theme: lgn-private-legacy-get-theme($theme-or-color-config); - $color: lgn-get-color-config($theme); - - @if $color != null { - @include lgn-progress-bar-color($color); - } +@mixin lgn-progress-bar-theme() { + @include lgn-progress-bar-color(); } -@mixin lgn-progress-bar-color($config-or-theme) { - $config: lgn-get-color-config($config-or-theme); - $primary: map-get($config, primary); - $warn: map-get($config, warn); - $background: map-get($config, background); - $foreground: map-get($config, foreground); - +@mixin lgn-progress-bar-color() { .lgn-progress-bar { - border-color: lgn-color($foreground, input-border); + border-color: var(--zitadel-color-input-border); } } \ No newline at end of file diff --git a/internal/ui/login/static/resources/themes/scss/styles/qrcode/qrcode_theme.scss b/internal/ui/login/static/resources/themes/scss/styles/qrcode/qrcode_theme.scss index d0df30fd6d..742a69fd9d 100644 --- a/internal/ui/login/static/resources/themes/scss/styles/qrcode/qrcode_theme.scss +++ b/internal/ui/login/static/resources/themes/scss/styles/qrcode/qrcode_theme.scss @@ -1,30 +1,22 @@ @import './qrcode.scss'; -@mixin lgn-qrcode-theme($theme-or-color-config) { - $theme: lgn-private-legacy-get-theme($theme-or-color-config); - $color: lgn-get-color-config($theme); - - @if $color != null { - @include lgn-qrcode-color($color); - } +@mixin lgn-qrcode-theme() { + @include lgn-qrcode-color(); } -@mixin lgn-qrcode-color($config-or-theme) { - $config: lgn-get-color-config($config-or-theme); - $background: map-get($config, background); - $foreground: map-get($config, foreground); +@mixin lgn-qrcode-color() { .lgn-qrcode { svg { - background: lgn-color($background, qrcode); + background: var(--zitadel-color-qr-background); } svg rect.color { - fill: lgn-color($foreground, qrcode); + fill: var(--zitadel-color-qr); } svg rect.bg-color { - fill: lgn-color($background, qrcode); + fill: var(--zitadel-color-qr-background); } } } \ No newline at end of file diff --git a/internal/ui/login/static/resources/themes/scss/styles/radio/radio_theme.scss b/internal/ui/login/static/resources/themes/scss/styles/radio/radio_theme.scss index e7b50c4813..3f1da3f759 100644 --- a/internal/ui/login/static/resources/themes/scss/styles/radio/radio_theme.scss +++ b/internal/ui/login/static/resources/themes/scss/styles/radio/radio_theme.scss @@ -1,29 +1,18 @@ @import '../theming/theming.scss'; @import './radio.scss'; -@mixin lgn-radio-theme($theme-or-color-config) { - $theme: lgn-private-legacy-get-theme($theme-or-color-config); - $color: lgn-get-color-config($theme); - - @if $color != null { - @include lgn-radio-color($color); - } +@mixin lgn-radio-theme() { + @include lgn-radio-color(); } -@mixin lgn-radio-color($config-or-theme) { - $config: lgn-get-color-config($config-or-theme); - $primary: map-get($config, primary); - $warn: map-get($config, warn); - $background: map-get($config, background); - $foreground: map-get($config, foreground); - +@mixin lgn-radio-color() { label { &::before { - border-color: lgn-color($foreground, radio-border); + border-color: var(--zitadel-color-input-border); } &::after { - background: lgn-color($primary, default); + background: var(--zitadel-color-primary); } } @@ -31,7 +20,7 @@ opacity: 0; &:checked + label::before { - border-color: lgn-color($primary, default); + border-color: var(--zitadel-color-primary); } &:focus + label { @@ -41,16 +30,16 @@ &:disabled { + label::before { - border-color: lgn-color($background, disabled-button); + border-color: var(--zitadel-color-button-disabled-background); } &:checked { + label::before { - color: lgn-color($background, disabled-selected-button);; + color: var(--zitadel-color-button-selected-background); } + label::after { - background: lgn-color($background, disabled-selected-button);; + background: var(--zitadel-color-button-disabled-selected-background); } } diff --git a/internal/ui/login/static/resources/themes/scss/styles/select/select_theme.scss b/internal/ui/login/static/resources/themes/scss/styles/select/select_theme.scss index 04c2d8057d..4f659f993f 100644 --- a/internal/ui/login/static/resources/themes/scss/styles/select/select_theme.scss +++ b/internal/ui/login/static/resources/themes/scss/styles/select/select_theme.scss @@ -1,27 +1,12 @@ @import '../theming/theming.scss'; @import './select.scss'; -@mixin lgn-select-theme($theme-or-color-config) { - $theme: lgn-private-legacy-get-theme($theme-or-color-config); - $color: lgn-get-color-config($theme); - - @if $color != null { - @include lgn-select-color($color); - } +@mixin lgn-select-theme() { + @include lgn-select-color(); } -@mixin lgn-select-color($config-or-theme) { - $config: lgn-get-color-config($config-or-theme); - $primary: map-get($config, primary); - - $is-dark-theme: map-get($config, is-dark); +@mixin lgn-select-color() { .lgn-select, select { - background-image: svg-icon($is-dark-theme); + background-image: var(--zitadel-icon-select); } -} - -@function svg-icon($darktheme) { - // @return url('../select_arrow_dark.svg'); - @return if($darktheme, url('../select_arrow_dark.svg'),url('../select_arrow_light.svg')); - // @return url('data:image/svg+xml;charset=UTF-8,'); } \ No newline at end of file diff --git a/internal/ui/login/static/resources/themes/scss/styles/success_label/success_label_theme.scss b/internal/ui/login/static/resources/themes/scss/styles/success_label/success_label_theme.scss index b8e3cde7b8..fd17552c6b 100644 --- a/internal/ui/login/static/resources/themes/scss/styles/success_label/success_label_theme.scss +++ b/internal/ui/login/static/resources/themes/scss/styles/success_label/success_label_theme.scss @@ -1,21 +1,16 @@ @import '../theming/theming.scss'; @import './success_label.scss'; -@mixin lgn-success-label-theme($theme-or-color-config) { - $theme: lgn-private-legacy-get-theme($theme-or-color-config); - $color: lgn-get-color-config($theme); - - @if $color != null { - @include lgn-success-label-color($color); - } +@mixin lgn-success-label-theme() { + @include lgn-success-label-color(); } -@mixin lgn-success-label-color($config-or-theme) { - $config: lgn-get-color-config($config-or-theme); - $is-dark-theme: map-get($config, is-dark); +@mixin lgn-success-label-color() { .lgn-success-label { - color: if($is-dark-theme, #cbf4c9, #0e6245); - background-color: if($is-dark-theme, #4f566b, #cbf4c9); + color: var(--zitadel-color-success); + background-color: var(--zitadel-color-success-background); } + + } \ No newline at end of file diff --git a/internal/ui/login/static/resources/themes/scss/styles/theming/all.scss b/internal/ui/login/static/resources/themes/scss/styles/theming/all.scss index c14f5e64ab..96e8c29b42 100644 --- a/internal/ui/login/static/resources/themes/scss/styles/theming/all.scss +++ b/internal/ui/login/static/resources/themes/scss/styles/theming/all.scss @@ -19,23 +19,23 @@ @import '../success_label/success_label_theme.scss'; @import './theming'; -@mixin zitadel-lgn-theme($theme-or-color-config) { - @include lgn-core-theme($theme-or-color-config); - @include lgn-header-theme($theme-or-color-config); - @include lgn-button-theme($theme-or-color-config); - @include lgn-input-theme($theme-or-color-config); - @include lgn-radio-theme($theme-or-color-config); - @include lgn-checkbox-theme($theme-or-color-config); - @include lgn-label-theme($theme-or-color-config); - @include lgn-footer-theme($theme-or-color-config); - @include lgn-a-theme($theme-or-color-config); - @include lgn-error-theme($theme-or-color-config); - @include lgn-qrcode-theme($theme-or-color-config); - @include lgn-container-theme($theme-or-color-config); - @include lgn-account-selection-theme($theme-or-color-config); - @include lgn-avatar-theme($theme-or-color-config); - @include lgn-select-theme($theme-or-color-config); - @include lgn-list-theme($theme-or-color-config); - @include lgn-idp-theme($theme-or-color-config); - @include lgn-success-label-theme($theme-or-color-config); +@mixin zitadel-lgn-theme() { + @include lgn-core-theme(); + @include lgn-header-theme(); + @include lgn-button-theme(); + @include lgn-input-theme(); + @include lgn-radio-theme(); + @include lgn-checkbox-theme(); + @include lgn-label-theme(); + @include lgn-footer-theme(); + @include lgn-a-theme(); + @include lgn-error-theme(); + @include lgn-qrcode-theme(); + @include lgn-container-theme(); + @include lgn-account-selection-theme(); + @include lgn-avatar-theme(); + @include lgn-select-theme(); + @include lgn-list-theme(); + @include lgn-idp-theme(); + @include lgn-success-label-theme(); } \ No newline at end of file diff --git a/internal/ui/login/static/resources/themes/scss/styles/typography/typography.scss b/internal/ui/login/static/resources/themes/scss/styles/typography/typography.scss index 0e1ba43829..90a6e88478 100644 --- a/internal/ui/login/static/resources/themes/scss/styles/typography/typography.scss +++ b/internal/ui/login/static/resources/themes/scss/styles/typography/typography.scss @@ -16,7 +16,7 @@ } @function lgn-typography-config( - $font-family: 'Lato, -apple-system, BlinkMacSystemFont, sans-serif', + $font-family: var(--zitadel-font-family) + ", -apple-system, BlinkMacSystemFont, sans-serif", $display-4: lgn-typography-level(112px, 112px, 300, $letter-spacing: -0.05em), $display-3: lgn-typography-level(56px, 56px, 400, $letter-spacing: -0.02em), $display-2: lgn-typography-level(45px, 48px, 400, $letter-spacing: -0.005em), @@ -145,7 +145,8 @@ // Otherwise use the shorthand `font`, because it's the least amount of bytes. Note // that we need to use interpolation for `font-size/line-height` in order to prevent // Sass from dividing the two values. - font: $font-weight #{$font-size}/#{$line-height} $font-family; + font: $font-weight #{$font-size}/#{$line-height} serif; + font-family: $font-family; } } diff --git a/internal/ui/login/static/resources/themes/scss/styles/vars.scss b/internal/ui/login/static/resources/themes/scss/styles/vars.scss new file mode 100644 index 0000000000..3495022015 --- /dev/null +++ b/internal/ui/login/static/resources/themes/scss/styles/vars.scss @@ -0,0 +1,165 @@ +:root { + --zitadel-color-primary: var(--zitadel-color-primary-500); + --zitadel-color-background: var(--zitadel-color-background-500); + --zitadel-color-secondary: var(--zitadel-color-secondary-500); + --zitadel-color-warn: var(--zitadel-color-warn-500); + + --zitadel-color-primary-50: #eaedfa; + --zitadel-color-primary-100: #ccd2f2; + --zitadel-color-primary-200: #aab4ea; + --zitadel-color-primary-300: #8796e1; + --zitadel-color-primary-400: #6e80da; + --zitadel-color-primary-500: #5469d4; + --zitadel-color-primary-600: #4d61cf; + --zitadel-color-primary-700: #4356c9; + --zitadel-color-primary-800: #3a4cc3; + --zitadel-color-primary-900: #293bb9; + --zitadel-color-primary-rgb: rgb(84, 105, 212); + --zitadel-color-primary-contrast: var(--zitadel-color-white); + + --zitadel-color-secondary-50: #eaedfa; + --zitadel-color-secondary-100: #ccd2f2; + --zitadel-color-secondary-200: #aab4ea; + --zitadel-color-secondary-300: #8796e1; + --zitadel-color-secondary-400: #6e80da; + --zitadel-color-secondary-500: #5469d4; + --zitadel-color-secondary-600: #4d61cf; + --zitadel-color-secondary-700: #4356c9; + --zitadel-color-secondary-800: #3a4cc3; + --zitadel-color-secondary-900: #293bb9; + --zitadel-color-secondary-contrast: var(--zitadel-color-white); + + --zitadel-color-warn-50: #ffebee; + --zitadel-color-warn-100: #ffcdd2; + --zitadel-color-warn-200: #ef9a9a; + --zitadel-color-warn-300: #e57373; + --zitadel-color-warn-400: #ef5350; + --zitadel-color-warn-500: #f44336; + --zitadel-color-warn-600: #e53935; + --zitadel-color-warn-700: #d32f2f; + --zitadel-color-warn-800: #c62828; + --zitadel-color-warn-900: #b71c1c; + + --zitadel-font-family: 'Lato'; + + --zitadel-color-background-500: var(--zitadel-color-grey-50); + --zitadel-color-footer-line: #e3e8ee; + + --zitadel-color-input-background: #fafafa50; + --zitadel-color-input-border: #00000040; + --zitadel-color-input-border-hover: #1a1b1b; + --zitadel-color-input-placeholder: var(--zitadel-color-grey-600); + + --zitadel-color-text: rgba(0, 0, 0, 0.87); + --zitadel-color-label: var(--zitadel-color-grey-600); + + + --zitadel-color-account-selector-hover: rgba(0, 0, 0, 0.02); + --zitadel-color-account-selector-active: rgba(0, 0, 0, 0.05); + + --zitadel-color-success: #0e6245; + --zitadel-color-success-background: #cbf4c9; + + --zitadel-color-divider: rgba(0, 0, 0, 0.12); + + --zitadel-color-button-disabled: rgba(0, 0, 0, 0.26); + --zitadel-color-button-disabled-background: rgba(0, 0, 0, 0.12); + --zitadel-color-button-selected-background: var(--zitadel-color-grey-900); + --zitadel-color-button-disabled-selected-background: var(--zitadel-color-grey-800); + --zitadel-color-raised-button-background: var(--zitadel-color-white); + + + --zitadel-color-white: #ffffff; + --zitadel-color-black: #000000; + --zitadel-color-grey-50: #fafafa; + --zitadel-color-grey-100: #f5f5f5; + --zitadel-color-grey-200: #eeeeee; + --zitadel-color-grey-300: #e0e0e0; + --zitadel-color-grey-400: #bdbdbd; + --zitadel-color-grey-500: #9e9e9e; + --zitadel-color-grey-600: #757575; + --zitadel-color-grey-700: #616161; + --zitadel-color-grey-800: #424242; + --zitadel-color-grey-900: #212121; + + --zitadel-icon-select: url('../select_arrow_light.svg'); + --zitadel-logo-powered-by: url('../logo-dark.svg'); + + --zitadel-color-google-text: #8b8d8d; + --zitadel-color-google-background: #ffffff; + + --zitadel-color-qr: var(--zitadel-color-white); + --zitadel-color-qr-background: var(--zitadel-color-black); +} + +.lgn-dark-theme { + --zitadel-color-primary-50: #ffffff; + --zitadel-color-primary-100: #dde6f3; + --zitadel-color-primary-200: #b4c9e4; + --zitadel-color-primary-300: #7fa3d1; + --zitadel-color-primary-400: #6992c9; + --zitadel-color-primary-500: #5282c1; + --zitadel-color-primary-600: #4072b4; + --zitadel-color-primary-700: #38649d; + --zitadel-color-primary-800: #305687; + --zitadel-color-primary-900: #284770; + + --zitadel-color-secondary-50: #ffffff; + --zitadel-color-secondary-100: #dde6f3; + --zitadel-color-secondary-200: #b4c9e4; + --zitadel-color-secondary-300: #7fa3d1; + --zitadel-color-secondary-400: #6992c9; + --zitadel-color-secondary-500: #5282c1; + --zitadel-color-secondary-600: #4072b4; + --zitadel-color-secondary-700: #38649d; + --zitadel-color-secondary-800: #305687; + --zitadel-color-secondary-900: #284770; + + --zitadel-color-warn-50: #ffebee; + --zitadel-color-warn-100: #ffcdd2; + --zitadel-color-warn-200: #ef9a9a; + --zitadel-color-warn-300: #e57373; + --zitadel-color-warn-400: #ef5350; + --zitadel-color-warn-500: #f44336; + --zitadel-color-warn-600: #e53935; + --zitadel-color-warn-700: #d32f2f; + --zitadel-color-warn-800: #c62828; + --zitadel-color-warn-900: #b71c1c; + + --zitadel-font-family: 'Lato'; + + --zitadel-color-background-500: var(--zitadel-color-grey-900); + --zitadel-color-footer-line: #303131; + + --zitadel-color-input-background: rgba(0, 0, 0, 0.2); + --zitadel-color-input-border: #403e3e; + --zitadel-color-input-border-hover: #aeafb1; + --zitadel-color-input-placeholder: var(--zitadel-color-grey-600); + + --zitadel-color-text: var(--zitadel-color-white); + --zitadel-color-label: var(--zitadel-color-grey-600); + + --zitadel-color-account-selector-hover: rgba(255, 255, 255, 0.02); + --zitadel-color-account-selector-active: rgba(255, 255, 255, 0.05); + + + --zitadel-color-success: #cbf4c9; + --zitadel-color-success-background: #4f566b; + + --zitadel-color-divider: rgba(255, 255, 255, 0.12); + + --zitadel-color-button-disabled: rgba(0, 0, 0, 0.26); + --zitadel-color-button-disabled-background: rgba(255, 255, 255, 0.12); + --zitadel-color-button-selected-background: var(--zitadel-color-grey-900); + --zitadel-color-button-disabled-selected-background: var(--zitadel-color-grey-800); + --zitadel-color-raised-button-background: var(--zitadel-color-grey-800); + + + /*--zitadel-color-label: var(--zitadel-color-grey-600); same */ + --zitadel-icon-select: url('../select_arrow_dark.svg'); + --zitadel-logo-powered-by: url('../logo-light.svg'); + + + --zitadel-color-google-text: #8b8d8d; + --zitadel-color-google-background: #ffffff; +} \ No newline at end of file diff --git a/internal/ui/login/static/resources/themes/scss/zitadel-alternative.scss b/internal/ui/login/static/resources/themes/scss/zitadel-alternative.scss index 2e2ea0ee42..fa04e5f535 100644 --- a/internal/ui/login/static/resources/themes/scss/zitadel-alternative.scss +++ b/internal/ui/login/static/resources/themes/scss/zitadel-alternative.scss @@ -1,6 +1,6 @@ -// This file is meant to show off a possible starting point for an organisation whitelabeling +@import 'main.scss'; +@import 'bundle.scss'; -@import './styles/theming/all'; // Include non-theme styles for core. -> mainly background of the login @@ -123,13 +123,6 @@ $dark-warn: lgn-palette($lgn-alternative-warn); $light-theme: lgn-light-theme($light-primary, $light-accent, $light-warn); $dark-theme: lgn-dark-theme($dark-primary, $dark-accent, $dark-warn); -$light-theme: lgn-light-theme(( - color: ( - primary: $light-primary, - accent: $light-accent, - ) -)); - // Include all theme styles for the components. @include zitadel-lgn-theme($dark-theme); diff --git a/internal/ui/login/static/resources/themes/scss/zitadel.scss b/internal/ui/login/static/resources/themes/scss/zitadel.scss index 57453e169f..66de516e15 100644 --- a/internal/ui/login/static/resources/themes/scss/zitadel.scss +++ b/internal/ui/login/static/resources/themes/scss/zitadel.scss @@ -1,4 +1,6 @@ -@import './styles/theming/all'; +@import 'styles/vars'; +@import 'main.scss'; +@import 'bundle.scss'; // Include non-theme styles for core. -> mainly background of the login @include lgn-core(); @@ -14,20 +16,13 @@ $dark-warn: lgn-palette($lgn-warn); $light-theme: lgn-light-theme($light-primary, $light-accent, $light-warn); $dark-theme: lgn-dark-theme($dark-primary, $dark-accent, $dark-warn); -$light-theme: lgn-light-theme(( - color: ( - primary: $light-primary, - accent: $light-accent, - ) -)); - // Include all theme styles for the components. -@include zitadel-lgn-theme($dark-theme); +@include zitadel-lgn-theme(); -.lgn-dark-theme { - @include zitadel-lgn-theme($dark-theme); -} +//.lgn-dark-theme { +// @include zitadel-lgn-theme($dark-theme); +//} -.lgn-light-theme { - @include zitadel-lgn-theme($light-theme); -} \ No newline at end of file +//.lgn-light-theme { +// @include zitadel-lgn-theme($light-theme); +//} \ No newline at end of file diff --git a/internal/ui/login/static/resources/themes/zitadel/css/bundle.css b/internal/ui/login/static/resources/themes/zitadel/css/bundle.css deleted file mode 100644 index 048966b51e..0000000000 --- a/internal/ui/login/static/resources/themes/zitadel/css/bundle.css +++ /dev/null @@ -1,2137 +0,0 @@ -@charset "UTF-8"; -footer { - width: 100%; - box-sizing: border-box; - background: #00000020; - min-height: 50px; - display: flex; - align-items: center; - padding: 0 1rem; -} -footer .fill-space { - flex: 1; -} -footer a { - font-size: 12px; - margin-left: 1rem; -} -@media only screen and (min-width: 600px) { - footer { - position: fixed; - bottom: 0; - left: 0; - right: 0; - } -} - -.lgn-header { - display: block; - position: relative; - margin: 1rem auto 0.5rem auto; - padding: 0; - width: 100%; -} -.lgn-header .lgn-logo { - height: 43px; - width: 160px; - margin: 0 auto; -} - -.lgn-button, .lgn-stroked-button, .lgn-icon-button { - box-sizing: border-box; - position: relative; - cursor: pointer; - outline: none; - border: none; - -webkit-tap-highlight-color: transparent; - display: inline-block; - white-space: nowrap; - text-decoration: none; - vertical-align: baseline; - text-align: center; - margin: 0; - min-width: 64px; - line-height: 36px; - padding: 0 16px; - border-radius: 6px; - overflow: visible; -} -.lgn-button[disabled], .lgn-stroked-button[disabled], .lgn-icon-button[disabled] { - cursor: default; -} -.lgn-button::-moz-focus-inner, .lgn-stroked-button::-moz-focus-inner, .lgn-icon-button::-moz-focus-inner { - border: 0; -} - -.lgn-raised-button { - box-sizing: border-box; - position: relative; - cursor: pointer; - outline: none; - border: none; - -webkit-tap-highlight-color: transparent; - display: inline-block; - white-space: nowrap; - text-decoration: none; - vertical-align: baseline; - text-align: center; - margin: 0; - min-width: 64px; - line-height: 36px; - padding: 0 16px; - border-radius: 6px; - overflow: visible; - transform: translate3d(0, 0, 0); -} -.lgn-raised-button[disabled] { - cursor: default; -} -.lgn-raised-button::-moz-focus-inner { - border: 0; -} - -.lgn-icon-button { - padding: 0; - min-width: 0; - width: 40px; - height: 40px; - flex-shrink: 0; - line-height: 40px; - border-radius: 50%; -} -.lgn-icon-button i, .lgn-icon-button .mat-icon { - line-height: 24px; -} - -.lgn-stroked-button { - border: 1px solid currentColor; - padding: 0 15px; - line-height: 34px; -} - -.lgn-button:focus { - pointer-events: none; - transition: opacity 200ms cubic-bezier(0.35, 0, 0.25, 1), background-color 200ms cubic-bezier(0.35, 0, 0.25, 1); -} - -.lgn-button *, .lgn-stroked-button *, .lgn-raised-button * { - vertical-align: middle; -} - -input:not([type=radio]):not([type=checkbox]), -.lgn-input { - display: block; - box-sizing: border-box; - padding-inline-start: 10px; - outline: none; - display: inline-block; - text-align: start; - cursor: text; - border-radius: 4px; - transform: all 0.2 linear; - font-size: 1rem; - border-style: solid; - border-width: 1px; - height: 40px; - padding: 10px; - transition: border-color 0.2s ease-in-out; - width: 100%; - margin: 0 0 2px 0; -} -input:not([type=radio]):not([type=checkbox])::placeholder, -.lgn-input::placeholder { - font-size: 14px; - font-style: italic; -} - -select, .lgn-select { - display: block; - box-sizing: border-box; - padding-inline-start: 10px; - outline: none; - display: inline-block; - text-align: start; - cursor: text; - border-radius: 4px; - transform: all 0.2 linear; - font-size: 1rem; - border-style: solid; - border-width: 1px; - height: 40px; - padding: 10px; - transition: border-color 0.2s ease-in-out; - width: 100%; - margin: 0 0 2px 0; -} -select::placeholder, .lgn-select::placeholder { - font-size: 14px; - font-style: italic; -} - -.lgn-suffix-wrapper { - position: relative; -} -.lgn-suffix-wrapper [lgnSuffix] { - position: absolute; - right: 0.5rem; - top: 9px; - height: inherit; - vertical-align: middle; -} - -.lgn-label { - display: block; - font-size: 12px; - transition: color 0.2s ease; - margin: 0 0 2px 0; - font-weight: 400; -} - -@keyframes ripple { - 0% { - box-shadow: 0 0 0 1px rgba(0, 0, 0, 0); - } - 50% { - box-shadow: 0 0 0 15px rgba(0, 0, 0, 0.1); - } - 100% { - box-shadow: 0 0 0 15px rgba(0, 0, 0, 0); - } -} -.lgn-radio { - outline: none; - margin: 16px 0; - display: inline-block; -} -.lgn-radio.block { - display: block; -} -.lgn-radio label { - display: inline-block; - height: 20px; - position: relative; - padding: 0 0 0 30px; - margin-bottom: 0; - cursor: pointer; - vertical-align: middle; - padding-top: 2px; - outline: none; - font-size: 14px; - line-height: 16px; -} -.lgn-radio label::before, .lgn-radio label::after { - position: absolute; - content: ""; - border-radius: 50%; - transition: all 0.3s ease; - transition-property: transform, border-color; -} -.lgn-radio label::before { - left: 0; - top: 0; - width: 20px; - height: 20px; - border-width: 2px; - border-style: solid; -} -.lgn-radio label::after { - top: 5px; - left: 5px; - width: 10px; - height: 10px; - transform: scale(0); -} -.lgn-radio input[type=radio] { - opacity: 0; - margin: 0; - width: 0; - height: 0; - outline: none; -} -.lgn-radio input[type=radio]:checked + label::before { - animation: ripple 0.2s linear forwards; -} -.lgn-radio input[type=radio]:checked + label::after { - transform: scale(1); -} -.lgn-radio input[type=radio]:focus + label { - opacity: 1; -} -.lgn-radio input[type=radio]:disabled + label { - cursor: not-allowed; - font-style: italic; -} -.lgn-radio input[type=radio]:disabled:focus { - opacity: 0; -} -.lgn-radio *, -.lgn-radio *::before, -.lgn-radio *::after { - box-sizing: border-box; -} - -a { - text-decoration: none; - outline: none; - cursor: pointer; - margin: 2px 0; -} -a.block { - display: block; -} - -.lgn-idp { - display: block; - margin: 0.5rem 0; - box-sizing: border-box; - display: flex; - align-items: center; - position: relative; - padding: 0 1px; - border-radius: 0.5rem; - border-width: 1px; - border-style: solid; -} -.lgn-idp span.logo { - height: 46px; - width: 46px; -} -.lgn-idp span.provider-name { - line-height: 36px; - position: absolute; - left: 50%; - transform: translateX(-50%); -} -.lgn-idp.google span.logo { - height: 46px; - width: 46px; - background-image: url("../../../images/idp/google.png"); - background-size: 25px; - background-position: center; - background-repeat: no-repeat; - border-radius: 5px; -} - -.lgn-error { - display: flex; - align-items: center; - outline: none; -} -.lgn-error i { - margin-right: 0.5rem; - font-size: 1.5rem; -} - -.lgn-qrcode { - display: block; - margin: auto; - margin: 1rem 0; - margin-bottom: 1.5rem; -} -.lgn-qrcode svg { - margin: auto; - display: block; - border-radius: 0.5rem; -} - -.lgn-max-width-wrapper { - max-width: 400px; - margin: auto; - margin-top: 50px; - margin-bottom: 50px; - display: block; -} -@media only screen and (min-width: 600px) { - .lgn-max-width-wrapper { - margin-top: 100px; - } -} - -.content-container { - position: relative; - display: block; - margin: 0 auto 0 auto; - padding: 20px; - width: 100%; - box-sizing: border-box; -} -.content-container .lgn-head h1 { - text-align: center; -} -.content-container .lgn-head p { - text-align: center; -} -.content-container .lgn-actions { - display: flex; - align-items: center; - padding: 0.5rem 0; - margin-top: 1rem; -} -.content-container .lgn-actions.lgn-reverse-order { - flex-direction: row-reverse; -} -.content-container .lgn-actions .fill-space { - flex: 1; -} -.content-container .lgn-row { - display: flex; - align-items: center; - padding: 0; -} -.content-container .lgn-row.lgn-reverse-order { - flex-direction: row-reverse; -} -.content-container .lgn-row .fill-space { - flex: 1; -} -.content-container .lgn-login-profile { - margin-bottom: 0.5rem; -} -.content-container .lgn-login-profile .lgn-profile-image { - display: block; - margin: 0.5rem; -} -.content-container .lgn-login-profile .lgn-names { - border-width: 1px; - border-style: solid; - border-radius: 50vw; - display: flex; - align-items: center; -} -.content-container .lgn-login-profile .lgn-names .inline-block { - display: inline-block; - margin: 0 2px; -} -.content-container .lgn-login-profile .lgn-names .lgn-displayname { - margin: 0.5rem 1rem; -} -.content-container .lgn-login-profile .lgn-names .lgn-loginname p { - margin: 0.5rem 1rem; -} -.content-container .lgn-left-action { - position: absolute; - left: 1rem; - top: -40px; -} -.content-container .lgn-register-options { - display: flex; - flex-direction: column; -} -.content-container .lgn-mfa-other { - display: flex; - flex-direction: column; -} -.content-container .lgn-mfa-other button { - width: 100%; - margin: 0.5rem 0; -} - -i { - font-size: 1.2rem; -} - -.lgn-account-selection { - display: flex; - flex-direction: column; - width: 100%; -} -.lgn-account-selection .lgn-account { - display: flex; - align-items: center; - border: none; - outline: none; - cursor: pointer; -} -.lgn-account-selection .lgn-account:disabled { - cursor: not-allowed; -} -.lgn-account-selection .lgn-account .left { - padding: 0.5rem 1rem; -} -.lgn-account-selection .lgn-account .lgn-names { - display: block; - margin: 0.5rem; - text-align: start; - overflow: hidden; -} -.lgn-account-selection .lgn-account .lgn-names .lgn-displayname { - font-size: 16px; - margin: 0.5rem 0; - margin-bottom: 0; - text-overflow: ellipsis; - overflow: hidden; -} -.lgn-account-selection .lgn-account .lgn-names .lgn-loginname { - font-size: 14px; - margin: 0; - text-overflow: ellipsis; - overflow: hidden; -} -.lgn-account-selection .lgn-account .lgn-names .lgn-session-state { - margin: 0; - font-size: 14px; - margin-bottom: 0.5rem; -} -.lgn-account-selection .lgn-account .fill-space { - flex: 1; -} -.lgn-account-selection .lgn-account i { - font-size: 1.2rem; -} - -.lgn-avatar { - height: 32px; - width: 32px; - border-radius: 50%; - display: flex; - align-items: center; - justify-content: center; - text-transform: uppercase; - box-sizing: border-box; - letter-spacing: 0.05em; - font-size: 14px; - outline: none; - font-weight: bold; -} - -.lgn-checkbox { - display: inline-block; - position: relative; - margin: 0 0 10px; - font-size: 14px; - line-height: 24px; - box-sizing: inherit; -} -.lgn-checkbox input[type=checkbox] { - position: absolute; - top: 4px; - left: 0; - width: 16px; - height: 16px; - opacity: 0; - z-index: 0; - box-sizing: inherit; -} -.lgn-checkbox label { - display: block; - padding: 0 0 0 30px; - cursor: pointer; - box-sizing: inherit; - font-size: 14px; - line-height: 28px; -} -.lgn-checkbox label:before { - content: ""; - position: absolute; - top: 4px; - left: 0; - width: 16px; - height: 16px; - border-radius: 2px; - transition: all 0.28s cubic-bezier(0.4, 0, 0.2, 1); - transition-property: background-color, border-color; -} -.lgn-checkbox label:after { - content: ""; - position: absolute; - top: 5px; - left: 5px; - width: 6px; - height: 12px; - transform: rotate(45deg); - transition: border-color 0.28s cubic-bezier(0.4, 0, 0.2, 1); -} - -.lgn-select, select { - background-position: right 10px center; - background-repeat: no-repeat; - background-size: auto 50%; - color: white; - -moz-appearance: none; - -webkit-appearance: none; - appearance: none; -} -.lgn-select::-ms-expand, select::-ms-expand { - display: none; -} - -.lgn-list.lgn-policy, ul.lgn-policy { - display: flex; - flex-wrap: wrap; -} -.lgn-list.lgn-policy li, ul.lgn-policy li { - flex: 1 0 50%; -} -.lgn-list li, ul li { - display: flex; - align-items: center; - list-style: none; - margin: 4px 0; - font-style: italic; -} -.lgn-list li i, ul li i { - margin: 0 0.5rem; - font-size: 20px; -} -.lgn-list:not(.lgn-no-dots) li::before, ul:not(.lgn-no-dots) li::before { - content: "•"; - font-weight: bold; - display: inline-block; - width: 20px; - margin-left: -20px; - font-style: normal; -} -.lgn-list.lgn-no-dots, ul.lgn-no-dots { - list-style-type: none; - padding-inline-start: 0; -} - -@font-face { - font-family: Aileron; - src: url(../../../fonts/ailerons/ailerons.otf) format("opentype"); -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-Thin.ttf) format("truetype"); - font-style: normal; - font-weight: 100; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-ThinItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 100; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-Light.ttf) format("truetype"); - font-style: normal; - font-weight: 200; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-LightItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 200; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-Regular.ttf) format("truetype"); - font-style: normal; - font-weight: 400; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-Italic.ttf) format("truetype"); - font-style: italic; - font-weight: 400; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-Bold.ttf) format("truetype"); - font-style: normal; - font-weight: 700; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-BoldItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 700; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-Black.ttf) format("truetype"); - font-style: normal; - font-weight: 800; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-BlackItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 800; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-Black.ttf) format("truetype"); - font-style: normal; - font-weight: 900; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-BlackItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 900; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-Bold.ttf) format("truetype"); - font-style: normal; - font-weight: 700; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-BoldItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 700; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-Regular.ttf) format("truetype"); - font-style: normal; - font-weight: 400; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-Italic.ttf) format("truetype"); - font-style: italic; - font-weight: 400; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-Light.ttf) format("truetype"); - font-style: normal; - font-weight: 300; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-LightItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 300; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-Medium.ttf) format("truetype"); - font-style: normal; - font-weight: 500; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-MediumItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 500; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-Thin.ttf) format("truetype"); - font-style: normal; - font-weight: 100; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-ThinItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 100; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-Black.ttf) format("truetype"); - font-style: normal; - font-weight: 900; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-BlackItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 900; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-Bold.ttf) format("truetype"); - font-style: normal; - font-weight: 700; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-BoldItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 700; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-ExtraBold.ttf) format("truetype"); - font-style: normal; - font-weight: 800; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-ExtraBoldItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 800; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-ExtraLight.ttf) format("truetype"); - font-style: normal; - font-weight: 200; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-ExtraLightItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 200; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-Light.ttf) format("truetype"); - font-style: normal; - font-weight: 300; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-LightItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 300; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-Medium.ttf) format("truetype"); - font-style: normal; - font-weight: 500; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-MediumItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 500; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-Regular.ttf) format("truetype"); - font-style: normal; - font-weight: 400; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-Italic.ttf) format("truetype"); - font-style: italic; - font-weight: 400; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-SemiBold.ttf) format("truetype"); - font-style: normal; - font-weight: 600; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-SemiBoldItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 600; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-Thin.ttf) format("truetype"); - font-style: normal; - font-weight: 100; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-ThinItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 100; -} -@font-face { - font-family: PTSans; - src: url(../../../fonts/PT_Sans/PTSans-Bold.ttf) format("truetype"); - font-style: normal; - font-weight: 700; -} -@font-face { - font-family: PTSans; - src: url(../../../fonts/PT_Sans/PTSans-BoldItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 700; -} -@font-face { - font-family: PTSans; - src: url(../../../fonts/PT_Sans/PTSans-Italic.ttf) format("truetype"); - font-style: italic; - font-weight: 400; -} -@font-face { - font-family: PTSans; - src: url(../../../fonts/PT_Sans/PTSans-Regular.ttf) format("truetype"); - font-style: normal; - font-weight: 400; -} -.lgn-success-label { - color: #0e6245; - background: #cbf4c9; - border-radius: 0.5rem; - padding: 0.5rem; -} - -footer { - width: 100%; - box-sizing: border-box; - background: #00000020; - min-height: 50px; - display: flex; - align-items: center; - padding: 0 1rem; -} -footer .fill-space { - flex: 1; -} -footer a { - font-size: 12px; - margin-left: 1rem; -} -@media only screen and (min-width: 600px) { - footer { - position: fixed; - bottom: 0; - left: 0; - right: 0; - } -} - -.lgn-header { - display: block; - position: relative; - margin: 1rem auto 0.5rem auto; - padding: 0; - width: 100%; -} -.lgn-header .lgn-logo { - height: 43px; - width: 160px; - margin: 0 auto; -} - -.lgn-button, .lgn-stroked-button, .lgn-icon-button { - box-sizing: border-box; - position: relative; - cursor: pointer; - outline: none; - border: none; - -webkit-tap-highlight-color: transparent; - display: inline-block; - white-space: nowrap; - text-decoration: none; - vertical-align: baseline; - text-align: center; - margin: 0; - min-width: 64px; - line-height: 36px; - padding: 0 16px; - border-radius: 6px; - overflow: visible; -} -.lgn-button[disabled], .lgn-stroked-button[disabled], .lgn-icon-button[disabled] { - cursor: default; -} -.lgn-button::-moz-focus-inner, .lgn-stroked-button::-moz-focus-inner, .lgn-icon-button::-moz-focus-inner { - border: 0; -} - -.lgn-raised-button { - box-sizing: border-box; - position: relative; - cursor: pointer; - outline: none; - border: none; - -webkit-tap-highlight-color: transparent; - display: inline-block; - white-space: nowrap; - text-decoration: none; - vertical-align: baseline; - text-align: center; - margin: 0; - min-width: 64px; - line-height: 36px; - padding: 0 16px; - border-radius: 6px; - overflow: visible; - transform: translate3d(0, 0, 0); -} -.lgn-raised-button[disabled] { - cursor: default; -} -.lgn-raised-button::-moz-focus-inner { - border: 0; -} - -.lgn-icon-button { - padding: 0; - min-width: 0; - width: 40px; - height: 40px; - flex-shrink: 0; - line-height: 40px; - border-radius: 50%; -} -.lgn-icon-button i, .lgn-icon-button .mat-icon { - line-height: 24px; -} - -.lgn-stroked-button { - border: 1px solid currentColor; - padding: 0 15px; - line-height: 34px; -} - -.lgn-button:focus { - pointer-events: none; - transition: opacity 200ms cubic-bezier(0.35, 0, 0.25, 1), background-color 200ms cubic-bezier(0.35, 0, 0.25, 1); -} - -.lgn-button *, .lgn-stroked-button *, .lgn-raised-button * { - vertical-align: middle; -} - -input:not([type=radio]):not([type=checkbox]), -.lgn-input { - display: block; - box-sizing: border-box; - padding-inline-start: 10px; - outline: none; - display: inline-block; - text-align: start; - cursor: text; - border-radius: 4px; - transform: all 0.2 linear; - font-size: 1rem; - border-style: solid; - border-width: 1px; - height: 40px; - padding: 10px; - transition: border-color 0.2s ease-in-out; - width: 100%; - margin: 0 0 2px 0; -} -input:not([type=radio]):not([type=checkbox])::placeholder, -.lgn-input::placeholder { - font-size: 14px; - font-style: italic; -} - -select, .lgn-select { - display: block; - box-sizing: border-box; - padding-inline-start: 10px; - outline: none; - display: inline-block; - text-align: start; - cursor: text; - border-radius: 4px; - transform: all 0.2 linear; - font-size: 1rem; - border-style: solid; - border-width: 1px; - height: 40px; - padding: 10px; - transition: border-color 0.2s ease-in-out; - width: 100%; - margin: 0 0 2px 0; -} -select::placeholder, .lgn-select::placeholder { - font-size: 14px; - font-style: italic; -} - -.lgn-suffix-wrapper { - position: relative; -} -.lgn-suffix-wrapper [lgnSuffix] { - position: absolute; - right: 0.5rem; - top: 9px; - height: inherit; - vertical-align: middle; -} - -.lgn-label { - display: block; - font-size: 12px; - transition: color 0.2s ease; - margin: 0 0 2px 0; - font-weight: 400; -} - -@keyframes ripple { - 0% { - box-shadow: 0 0 0 1px rgba(0, 0, 0, 0); - } - 50% { - box-shadow: 0 0 0 15px rgba(0, 0, 0, 0.1); - } - 100% { - box-shadow: 0 0 0 15px rgba(0, 0, 0, 0); - } -} -.lgn-radio { - outline: none; - margin: 16px 0; - display: inline-block; -} -.lgn-radio.block { - display: block; -} -.lgn-radio label { - display: inline-block; - height: 20px; - position: relative; - padding: 0 0 0 30px; - margin-bottom: 0; - cursor: pointer; - vertical-align: middle; - padding-top: 2px; - outline: none; - font-size: 14px; - line-height: 16px; -} -.lgn-radio label::before, .lgn-radio label::after { - position: absolute; - content: ""; - border-radius: 50%; - transition: all 0.3s ease; - transition-property: transform, border-color; -} -.lgn-radio label::before { - left: 0; - top: 0; - width: 20px; - height: 20px; - border-width: 2px; - border-style: solid; -} -.lgn-radio label::after { - top: 5px; - left: 5px; - width: 10px; - height: 10px; - transform: scale(0); -} -.lgn-radio input[type=radio] { - opacity: 0; - margin: 0; - width: 0; - height: 0; - outline: none; -} -.lgn-radio input[type=radio]:checked + label::before { - animation: ripple 0.2s linear forwards; -} -.lgn-radio input[type=radio]:checked + label::after { - transform: scale(1); -} -.lgn-radio input[type=radio]:focus + label { - opacity: 1; -} -.lgn-radio input[type=radio]:disabled + label { - cursor: not-allowed; - font-style: italic; -} -.lgn-radio input[type=radio]:disabled:focus { - opacity: 0; -} -.lgn-radio *, -.lgn-radio *::before, -.lgn-radio *::after { - box-sizing: border-box; -} - -a { - text-decoration: none; - outline: none; - cursor: pointer; - margin: 2px 0; -} -a.block { - display: block; -} - -.lgn-idp { - display: block; - margin: 0.5rem 0; - box-sizing: border-box; - display: flex; - align-items: center; - position: relative; - padding: 0 1px; - border-radius: 0.5rem; - border-width: 1px; - border-style: solid; -} -.lgn-idp span.logo { - height: 46px; - width: 46px; -} -.lgn-idp span.provider-name { - line-height: 36px; - position: absolute; - left: 50%; - transform: translateX(-50%); -} -.lgn-idp.google span.logo { - height: 46px; - width: 46px; - background-image: url("../../../images/idp/google.png"); - background-size: 25px; - background-position: center; - background-repeat: no-repeat; - border-radius: 5px; -} - -.lgn-error { - display: flex; - align-items: center; - outline: none; -} -.lgn-error i { - margin-right: 0.5rem; - font-size: 1.5rem; -} - -.lgn-qrcode { - display: block; - margin: auto; - margin: 1rem 0; - margin-bottom: 1.5rem; -} -.lgn-qrcode svg { - margin: auto; - display: block; - border-radius: 0.5rem; -} - -.lgn-max-width-wrapper { - max-width: 400px; - margin: auto; - margin-top: 50px; - margin-bottom: 50px; - display: block; -} -@media only screen and (min-width: 600px) { - .lgn-max-width-wrapper { - margin-top: 100px; - } -} - -.content-container { - position: relative; - display: block; - margin: 0 auto 0 auto; - padding: 20px; - width: 100%; - box-sizing: border-box; -} -.content-container .lgn-head h1 { - text-align: center; -} -.content-container .lgn-head p { - text-align: center; -} -.content-container .lgn-actions { - display: flex; - align-items: center; - padding: 0.5rem 0; - margin-top: 1rem; -} -.content-container .lgn-actions.lgn-reverse-order { - flex-direction: row-reverse; -} -.content-container .lgn-actions .fill-space { - flex: 1; -} -.content-container .lgn-row { - display: flex; - align-items: center; - padding: 0; -} -.content-container .lgn-row.lgn-reverse-order { - flex-direction: row-reverse; -} -.content-container .lgn-row .fill-space { - flex: 1; -} -.content-container .lgn-login-profile { - margin-bottom: 0.5rem; -} -.content-container .lgn-login-profile .lgn-profile-image { - display: block; - margin: 0.5rem; -} -.content-container .lgn-login-profile .lgn-names { - border-width: 1px; - border-style: solid; - border-radius: 50vw; - display: flex; - align-items: center; -} -.content-container .lgn-login-profile .lgn-names .inline-block { - display: inline-block; - margin: 0 2px; -} -.content-container .lgn-login-profile .lgn-names .lgn-displayname { - margin: 0.5rem 1rem; -} -.content-container .lgn-login-profile .lgn-names .lgn-loginname p { - margin: 0.5rem 1rem; -} -.content-container .lgn-left-action { - position: absolute; - left: 1rem; - top: -40px; -} -.content-container .lgn-register-options { - display: flex; - flex-direction: column; -} -.content-container .lgn-mfa-other { - display: flex; - flex-direction: column; -} -.content-container .lgn-mfa-other button { - width: 100%; - margin: 0.5rem 0; -} - -i { - font-size: 1.2rem; -} - -.lgn-account-selection { - display: flex; - flex-direction: column; - width: 100%; -} -.lgn-account-selection .lgn-account { - display: flex; - align-items: center; - border: none; - outline: none; - cursor: pointer; -} -.lgn-account-selection .lgn-account:disabled { - cursor: not-allowed; -} -.lgn-account-selection .lgn-account .left { - padding: 0.5rem 1rem; -} -.lgn-account-selection .lgn-account .lgn-names { - display: block; - margin: 0.5rem; - text-align: start; - overflow: hidden; -} -.lgn-account-selection .lgn-account .lgn-names .lgn-displayname { - font-size: 16px; - margin: 0.5rem 0; - margin-bottom: 0; - text-overflow: ellipsis; - overflow: hidden; -} -.lgn-account-selection .lgn-account .lgn-names .lgn-loginname { - font-size: 14px; - margin: 0; - text-overflow: ellipsis; - overflow: hidden; -} -.lgn-account-selection .lgn-account .lgn-names .lgn-session-state { - margin: 0; - font-size: 14px; - margin-bottom: 0.5rem; -} -.lgn-account-selection .lgn-account .fill-space { - flex: 1; -} -.lgn-account-selection .lgn-account i { - font-size: 1.2rem; -} - -.lgn-avatar { - height: 32px; - width: 32px; - border-radius: 50%; - display: flex; - align-items: center; - justify-content: center; - text-transform: uppercase; - box-sizing: border-box; - letter-spacing: 0.05em; - font-size: 14px; - outline: none; - font-weight: bold; -} - -.lgn-checkbox { - display: inline-block; - position: relative; - margin: 0 0 10px; - font-size: 14px; - line-height: 24px; - box-sizing: inherit; -} -.lgn-checkbox input[type=checkbox] { - position: absolute; - top: 4px; - left: 0; - width: 16px; - height: 16px; - opacity: 0; - z-index: 0; - box-sizing: inherit; -} -.lgn-checkbox label { - display: block; - padding: 0 0 0 30px; - cursor: pointer; - box-sizing: inherit; - font-size: 14px; - line-height: 28px; -} -.lgn-checkbox label:before { - content: ""; - position: absolute; - top: 4px; - left: 0; - width: 16px; - height: 16px; - border-radius: 2px; - transition: all 0.28s cubic-bezier(0.4, 0, 0.2, 1); - transition-property: background-color, border-color; -} -.lgn-checkbox label:after { - content: ""; - position: absolute; - top: 5px; - left: 5px; - width: 6px; - height: 12px; - transform: rotate(45deg); - transition: border-color 0.28s cubic-bezier(0.4, 0, 0.2, 1); -} - -.lgn-select, select { - background-position: right 10px center; - background-repeat: no-repeat; - background-size: auto 50%; - color: white; - -moz-appearance: none; - -webkit-appearance: none; - appearance: none; -} -.lgn-select::-ms-expand, select::-ms-expand { - display: none; -} - -.lgn-list.lgn-policy, ul.lgn-policy { - display: flex; - flex-wrap: wrap; -} -.lgn-list.lgn-policy li, ul.lgn-policy li { - flex: 1 0 50%; -} -.lgn-list li, ul li { - display: flex; - align-items: center; - list-style: none; - margin: 4px 0; - font-style: italic; -} -.lgn-list li i, ul li i { - margin: 0 0.5rem; - font-size: 20px; -} -.lgn-list:not(.lgn-no-dots) li::before, ul:not(.lgn-no-dots) li::before { - content: "•"; - font-weight: bold; - display: inline-block; - width: 20px; - margin-left: -20px; - font-style: normal; -} -.lgn-list.lgn-no-dots, ul.lgn-no-dots { - list-style-type: none; - padding-inline-start: 0; -} - -@font-face { - font-family: Aileron; - src: url(../../../fonts/ailerons/ailerons.otf) format("opentype"); -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-Thin.ttf) format("truetype"); - font-style: normal; - font-weight: 100; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-ThinItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 100; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-Light.ttf) format("truetype"); - font-style: normal; - font-weight: 200; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-LightItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 200; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-Regular.ttf) format("truetype"); - font-style: normal; - font-weight: 400; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-Italic.ttf) format("truetype"); - font-style: italic; - font-weight: 400; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-Bold.ttf) format("truetype"); - font-style: normal; - font-weight: 700; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-BoldItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 700; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-Black.ttf) format("truetype"); - font-style: normal; - font-weight: 800; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-BlackItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 800; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-Black.ttf) format("truetype"); - font-style: normal; - font-weight: 900; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-BlackItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 900; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-Bold.ttf) format("truetype"); - font-style: normal; - font-weight: 700; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-BoldItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 700; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-Regular.ttf) format("truetype"); - font-style: normal; - font-weight: 400; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-Italic.ttf) format("truetype"); - font-style: italic; - font-weight: 400; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-Light.ttf) format("truetype"); - font-style: normal; - font-weight: 300; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-LightItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 300; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-Medium.ttf) format("truetype"); - font-style: normal; - font-weight: 500; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-MediumItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 500; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-Thin.ttf) format("truetype"); - font-style: normal; - font-weight: 100; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-ThinItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 100; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-Black.ttf) format("truetype"); - font-style: normal; - font-weight: 900; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-BlackItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 900; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-Bold.ttf) format("truetype"); - font-style: normal; - font-weight: 700; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-BoldItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 700; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-ExtraBold.ttf) format("truetype"); - font-style: normal; - font-weight: 800; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-ExtraBoldItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 800; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-ExtraLight.ttf) format("truetype"); - font-style: normal; - font-weight: 200; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-ExtraLightItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 200; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-Light.ttf) format("truetype"); - font-style: normal; - font-weight: 300; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-LightItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 300; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-Medium.ttf) format("truetype"); - font-style: normal; - font-weight: 500; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-MediumItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 500; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-Regular.ttf) format("truetype"); - font-style: normal; - font-weight: 400; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-Italic.ttf) format("truetype"); - font-style: italic; - font-weight: 400; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-SemiBold.ttf) format("truetype"); - font-style: normal; - font-weight: 600; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-SemiBoldItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 600; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-Thin.ttf) format("truetype"); - font-style: normal; - font-weight: 100; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-ThinItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 100; -} -@font-face { - font-family: PTSans; - src: url(../../../fonts/PT_Sans/PTSans-Bold.ttf) format("truetype"); - font-style: normal; - font-weight: 700; -} -@font-face { - font-family: PTSans; - src: url(../../../fonts/PT_Sans/PTSans-BoldItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 700; -} -@font-face { - font-family: PTSans; - src: url(../../../fonts/PT_Sans/PTSans-Italic.ttf) format("truetype"); - font-style: italic; - font-weight: 400; -} -@font-face { - font-family: PTSans; - src: url(../../../fonts/PT_Sans/PTSans-Regular.ttf) format("truetype"); - font-style: normal; - font-weight: 400; -} -.lgn-success-label { - color: #0e6245; - background: #cbf4c9; - border-radius: 0.5rem; - padding: 0.5rem; -} - -@font-face { - font-family: Aileron; - src: url(../../../fonts/ailerons/ailerons.otf) format("opentype"); -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-Thin.ttf) format("truetype"); - font-style: normal; - font-weight: 100; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-ThinItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 100; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-Light.ttf) format("truetype"); - font-style: normal; - font-weight: 200; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-LightItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 200; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-Regular.ttf) format("truetype"); - font-style: normal; - font-weight: 400; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-Italic.ttf) format("truetype"); - font-style: italic; - font-weight: 400; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-Bold.ttf) format("truetype"); - font-style: normal; - font-weight: 700; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-BoldItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 700; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-Black.ttf) format("truetype"); - font-style: normal; - font-weight: 800; -} -@font-face { - font-family: Lato; - src: url(../../../fonts/lato/Lato-BlackItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 800; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-Black.ttf) format("truetype"); - font-style: normal; - font-weight: 900; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-BlackItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 900; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-Bold.ttf) format("truetype"); - font-style: normal; - font-weight: 700; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-BoldItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 700; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-Regular.ttf) format("truetype"); - font-style: normal; - font-weight: 400; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-Italic.ttf) format("truetype"); - font-style: italic; - font-weight: 400; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-Light.ttf) format("truetype"); - font-style: normal; - font-weight: 300; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-LightItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 300; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-Medium.ttf) format("truetype"); - font-style: normal; - font-weight: 500; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-MediumItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 500; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-Thin.ttf) format("truetype"); - font-style: normal; - font-weight: 100; -} -@font-face { - font-family: Roboto; - src: url(../../../fonts/Roboto/Roboto-ThinItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 100; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-Black.ttf) format("truetype"); - font-style: normal; - font-weight: 900; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-BlackItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 900; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-Bold.ttf) format("truetype"); - font-style: normal; - font-weight: 700; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-BoldItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 700; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-ExtraBold.ttf) format("truetype"); - font-style: normal; - font-weight: 800; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-ExtraBoldItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 800; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-ExtraLight.ttf) format("truetype"); - font-style: normal; - font-weight: 200; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-ExtraLightItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 200; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-Light.ttf) format("truetype"); - font-style: normal; - font-weight: 300; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-LightItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 300; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-Medium.ttf) format("truetype"); - font-style: normal; - font-weight: 500; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-MediumItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 500; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-Regular.ttf) format("truetype"); - font-style: normal; - font-weight: 400; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-Italic.ttf) format("truetype"); - font-style: italic; - font-weight: 400; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-SemiBold.ttf) format("truetype"); - font-style: normal; - font-weight: 600; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-SemiBoldItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 600; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-Thin.ttf) format("truetype"); - font-style: normal; - font-weight: 100; -} -@font-face { - font-family: Raleway; - src: url(../../../fonts/Raleway/Raleway-ThinItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 100; -} -@font-face { - font-family: PTSans; - src: url(../../../fonts/PT_Sans/PTSans-Bold.ttf) format("truetype"); - font-style: normal; - font-weight: 700; -} -@font-face { - font-family: PTSans; - src: url(../../../fonts/PT_Sans/PTSans-BoldItalic.ttf) format("truetype"); - font-style: italic; - font-weight: 700; -} -@font-face { - font-family: PTSans; - src: url(../../../fonts/PT_Sans/PTSans-Italic.ttf) format("truetype"); - font-style: italic; - font-weight: 400; -} -@font-face { - font-family: PTSans; - src: url(../../../fonts/PT_Sans/PTSans-Regular.ttf) format("truetype"); - font-style: normal; - font-weight: 400; -} -.lgn-max-width-wrapper { - max-width: 400px; - margin: auto; - margin-top: 50px; - margin-bottom: 50px; - display: block; -} -@media only screen and (min-width: 600px) { - .lgn-max-width-wrapper { - margin-top: 100px; - } -} - -.content-container { - position: relative; - display: block; - margin: 0 auto 0 auto; - padding: 20px; - width: 100%; - box-sizing: border-box; -} -.content-container .lgn-head h1 { - text-align: center; -} -.content-container .lgn-head p { - text-align: center; -} -.content-container .lgn-actions { - display: flex; - align-items: center; - padding: 0.5rem 0; - margin-top: 1rem; -} -.content-container .lgn-actions.lgn-reverse-order { - flex-direction: row-reverse; -} -.content-container .lgn-actions .fill-space { - flex: 1; -} -.content-container .lgn-row { - display: flex; - align-items: center; - padding: 0; -} -.content-container .lgn-row.lgn-reverse-order { - flex-direction: row-reverse; -} -.content-container .lgn-row .fill-space { - flex: 1; -} -.content-container .lgn-login-profile { - margin-bottom: 0.5rem; -} -.content-container .lgn-login-profile .lgn-profile-image { - display: block; - margin: 0.5rem; -} -.content-container .lgn-login-profile .lgn-names { - border-width: 1px; - border-style: solid; - border-radius: 50vw; - display: flex; - align-items: center; -} -.content-container .lgn-login-profile .lgn-names .inline-block { - display: inline-block; - margin: 0 2px; -} -.content-container .lgn-login-profile .lgn-names .lgn-displayname { - margin: 0.5rem 1rem; -} -.content-container .lgn-login-profile .lgn-names .lgn-loginname p { - margin: 0.5rem 1rem; -} -.content-container .lgn-left-action { - position: absolute; - left: 1rem; - top: -40px; -} -.content-container .lgn-register-options { - display: flex; - flex-direction: column; -} -.content-container .lgn-mfa-other { - display: flex; - flex-direction: column; -} -.content-container .lgn-mfa-other button { - width: 100%; - margin: 0.5rem 0; -} - -i { - font-size: 1.2rem; -} - -.lgn-register .double-col { - display: flex; - flex-wrap: wrap; - margin: 0 -0.5rem; -} -.lgn-register .double-col .lgn-field { - margin: 0 0.5rem; - flex: 1; - box-sizing: border-box; - margin-bottom: 0.5rem; -} -.lgn-register .lgn-field { - margin-bottom: 0.5rem; -} - -.lgn-header { - display: block; - position: relative; - margin: 1rem auto 0.5rem auto; - padding: 0; - width: 100%; -} -.lgn-header .lgn-logo { - height: 43px; - width: 160px; - margin: 0 auto; -} - -@keyframes shake { - 10%, 90% { - transform: translate3d(-1px, 0, 0); - } - 20%, 80% { - transform: translate3d(2px, 0, 0); - } - 30%, 50%, 70% { - transform: translate3d(-4px, 0, 0); - } - 40%, 60% { - transform: translate3d(4px, 0, 0); - } -} -[shake] { - animation: shake 0.8s cubic-bezier(0.36, 0.07, 0.19, 0.97) both; - transform: translate3d(0, 0, 0); -} - -/*# sourceMappingURL=bundle.css.map */ diff --git a/internal/ui/login/static/resources/themes/zitadel/css/bundle.css.map b/internal/ui/login/static/resources/themes/zitadel/css/bundle.css.map deleted file mode 100644 index bd258a0a02..0000000000 --- a/internal/ui/login/static/resources/themes/zitadel/css/bundle.css.map +++ /dev/null @@ -1 +0,0 @@ -{"version":3,"sourceRoot":"","sources":["../../scss/styles/footer/footer.scss","../../scss/styles/header/header.scss","../../scss/styles/button/button.scss","../../scss/styles/button/button_base.scss","../../scss/styles/input/input.scss","../../scss/styles/input/input_base.scss","../../scss/styles/label/label.scss","../../scss/styles/label/label_base.scss","../../scss/styles/radio/radio_base.scss","../../scss/styles/radio/radio.scss","../../scss/styles/a/a.scss","../../scss/styles/identity_provider/identity_provider.scss","../../scss/styles/identity_provider/identity_provider_base.scss","../../scss/styles/error/error.scss","../../scss/styles/qrcode/qrcode.scss","../../scss/styles/container/container.scss","../../scss/styles/account_selection/account_selection.scss","../../scss/styles/avatar/avatar.scss","../../scss/styles/checkbox/checkbox.scss","../../scss/styles/checkbox/checkbox_base.scss","../../scss/styles/select/select.scss","../../scss/styles/select/select_base.scss","../../scss/styles/list/list_base.scss","../../scss/styles/typography/faces/ailerons_font_faces.scss","../../scss/styles/typography/faces/lato_font_faces.scss","../../scss/styles/typography/faces/roboto_font_faces.scss","../../scss/styles/typography/faces/raleway_font_faces.scss","../../scss/styles/typography/faces/pt_sans_font_faces.scss","../../scss/styles/success_label/success_label.scss","../../scss/styles/register/register.scss","../../scss/styles/animations.scss"],"names":[],"mappings":";AAIA;EACI;EACA;EACA;EACA,YAPY;EAQZ;EACA;EACA,SATa;;AAWb;EACI;;AAGJ;EACI;EACA;;AAGJ;EAlBJ;IAmBQ;IACA;IACA;IACA;;;;ACvBR;EACI;EACA;EACA,QALgB;EAMhB,SAPiB;EAQjB;;AAEA;EACI;EACA;EACA;;;ACXR;ECkBE;EACA;EACA;EACA;EACA;EACA;EAGA;EACA;EACA;EACA;EACA;EAGA,QAjCkB;EAkClB,WAnCqB;EAoCrB,aAlCuB;EAmCvB,SAtCmB;EAuCnB,eAnCyB;EAqCzB;;AAEA;EACE;;AAGF;EACE;;;AD1CJ;ECcE;EACA;EACA;EACA;EACA;EACA;EAGA;EACA;EACA;EACA;EACA;EAGA,QAjCkB;EAkClB,WAnCqB;EAoCrB,aAlCuB;EAmCvB,SAtCmB;EAuCnB,eAnCyB;EAqCzB;EAgBA;;AAdA;EACE;;AAGF;EACE;;;ADtCJ;EACE;EACA;EACA,OCCqB;EDArB;EACA;EACA,aCFqB;EDGrB,eCF8B;;ADI9B;EACE,aCJ0B;;;ADQ9B;EACE;EACA,SCf2B;EDgB3B,aCjB+B;;;ADoBjC;EACE;EACA,YC3B4B;;;AD+B5B;EACE;;;AEnCJ;AAAA;ECOI;EACA;EACA,sBAXsB;EAYtB;EACA;EACA;EACA;EACA,eAZsB;EAatB;EACA;EACA;EACA,cAfqB;EAgBrB,QAlBoB;EAmBpB,SArBgB;EAsBhB;EACA;EACA,QAvBe;;AAyBf;AAAA;EACI,WAtB0B;EAuB1B;;;ADrBR;ECCI;EACA;EACA,sBAXsB;EAYtB;EACA;EACA;EACA;EACA,eAZsB;EAatB;EACA;EACA;EACA,cAfqB;EAgBrB,QAlBoB;EAmBpB,SArBgB;EAsBhB;EACA;EACA,QAvBe;;AAyBf;EACI,WAtB0B;EAuB1B;;;ADjBR;EACI;;AAEA;EACI;EACA;EACA;EACA;EACA;;;AElBR;ECGI;EACA,WANkB;EAOlB;EACA,QAPe;EAQf,aAPoB;;;ACMxB;EACI;IACE;;EAGF;IACE;;EAGF;IACE;;;AChBN;EDqBI;EACA;EACA;;AAEA;EACI;;AAGJ;EACI;EACA,QA9BS;EA+BT;EACA,SA7BkB;EA8BlB;EACA;EACA;EACA;EACA;EACA,WAzCc;EA0Cd;;AAEA;EAEI;EACA;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA,OArDK;EAsDL,QAtDK;EAuDL;EACA;;AAGJ;EACI;EACA;EACA,OA7Da;EA8Db,QA9Da;EA+Db;;AAIR;EACI;EACA;EACA;EACA;EACA;;AAEA;EACI;;AAGJ;EACI;;AAGJ;EACI;;AAOA;EACI;EACA;;AAGJ;EACI;;AAKZ;AAAA;AAAA;EAGI;;;AE5GR;EACI;EACA;EACA;EACA;;AAEA;EACI;;;ACLR;ECKI;EACA,QARa;EASb;EACA;EACA;EACA;EACA,SAZc;EAad,eAXoB;EAYpB;EACA;;AAEA;EACI;EACA;;AAGJ;EACI,aAtB4B;EAuB5B;EACA;EACA;;AAIA;EACI;EACA;EACA;EACA;EACA;EACA;EACA;;;ACtCZ;EACI;EACA;EACA;;AACA;EACI;EACA;;;ACNR;EACI;EACA;EACA;EACA;;AAEA;EACI;EACA;EACA;;;ACHR;EACI,WAPsB;EAQtB;EACA;EACA,eAN0B;EAO1B;;AAEA;EAPJ;IAQQ,YAXmB;;;;AAe3B;EACI;EACA;EACA,QAnBmB;EAoBnB,SArBoB;EAsBpB;EACA;;AAGI;EACI;;AAGJ;EACI;;AAIR;EACI;EACA;EACA;EACA;;AAIA;EACI;;AAGJ;EACI;;AAIR;EACI;EACA;EACA;;AAIA;EACI;;AAGJ;EACI;;AAIR;EACI;;AAEA;EACI;EACA;;AAEJ;EACI;EACA;EACA;EACA;EACA;;AAEA;EACI;EACA;;AAGJ;EACI;;AAGA;EACI;;AAMhB;EACI;EACA;EACA;;AAGJ;EACI;EACA;;AAGJ;EACI;EACA;;AAEA;EACI;EACA;;;AAKZ;EACI;;;ACtHJ;EACI;EACA;EACA;;AAEA;EACI;EACA;EACA;EACA;EACA;;AAEA;EACI;;AAGJ;EACI;;AAGJ;EACI;EACA;EACA;EACA;;AAEA;EACI;EACA;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;;AAIR;EACI;;AAGJ;EACI;;;ACrDZ;EACI,QAHc;EAId,OAJc;EAKd;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;;;ACdJ;ECCI;EACA;EACA;EACA,WANqB;EAOrB;EACA;;AAEA;EACI;EACA;EACA;EACA;EACA;EACA;EACA;EACA;;AAIJ;EACI;EACA;EACA;EACA;EACA,WA3BiB;EA4BjB;;AAEA;EACI;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;EACA;EACA;EACA;EACA;;;AChDZ;ECCI;EACA;EACA;EACA;EACA;EACA;EACA;;AACA;EACI;;;ACVJ;EACI;EACA;;AAEA;EACI;;AAIR;EACI;EACA;EACA;EACA;EACA;;AAEA;EACI;EACA;;AAKJ;EACI;EACA;EACA;EACA;EACA;EACA;;AAIR;EACI;EACA;;;ACpCR;EACI;EACA;;ACFJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AC7DJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;ACzEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AC9GJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;ACtBJ;EACI;EACA;EACA;EACA;;;A5BFJ;EACI;EACA;EACA;EACA,YAPY;EAQZ;EACA;EACA,SATa;;AAWb;EACI;;AAGJ;EACI;EACA;;AAGJ;EAlBJ;IAmBQ;IACA;IACA;IACA;;;;ACvBR;EACI;EACA;EACA,QALgB;EAMhB,SAPiB;EAQjB;;AAEA;EACI;EACA;EACA;;;ACXR;ECkBE;EACA;EACA;EACA;EACA;EACA;EAGA;EACA;EACA;EACA;EACA;EAGA,QAjCkB;EAkClB,WAnCqB;EAoCrB,aAlCuB;EAmCvB,SAtCmB;EAuCnB,eAnCyB;EAqCzB;;AAEA;EACE;;AAGF;EACE;;;AD1CJ;ECcE;EACA;EACA;EACA;EACA;EACA;EAGA;EACA;EACA;EACA;EACA;EAGA,QAjCkB;EAkClB,WAnCqB;EAoCrB,aAlCuB;EAmCvB,SAtCmB;EAuCnB,eAnCyB;EAqCzB;EAgBA;;AAdA;EACE;;AAGF;EACE;;;ADtCJ;EACE;EACA;EACA,OCCqB;EDArB;EACA;EACA,aCFqB;EDGrB,eCF8B;;ADI9B;EACE,aCJ0B;;;ADQ9B;EACE;EACA,SCf2B;EDgB3B,aCjB+B;;;ADoBjC;EACE;EACA,YC3B4B;;;AD+B5B;EACE;;;AEnCJ;AAAA;ECOI;EACA;EACA,sBAXsB;EAYtB;EACA;EACA;EACA;EACA,eAZsB;EAatB;EACA;EACA;EACA,cAfqB;EAgBrB,QAlBoB;EAmBpB,SArBgB;EAsBhB;EACA;EACA,QAvBe;;AAyBf;AAAA;EACI,WAtB0B;EAuB1B;;;ADrBR;ECCI;EACA;EACA,sBAXsB;EAYtB;EACA;EACA;EACA;EACA,eAZsB;EAatB;EACA;EACA;EACA,cAfqB;EAgBrB,QAlBoB;EAmBpB,SArBgB;EAsBhB;EACA;EACA,QAvBe;;AAyBf;EACI,WAtB0B;EAuB1B;;;ADjBR;EACI;;AAEA;EACI;EACA;EACA;EACA;EACA;;;AElBR;ECGI;EACA,WANkB;EAOlB;EACA,QAPe;EAQf,aAPoB;;;ACMxB;EACI;IACE;;EAGF;IACE;;EAGF;IACE;;;AChBN;EDqBI;EACA;EACA;;AAEA;EACI;;AAGJ;EACI;EACA,QA9BS;EA+BT;EACA,SA7BkB;EA8BlB;EACA;EACA;EACA;EACA;EACA,WAzCc;EA0Cd;;AAEA;EAEI;EACA;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA,OArDK;EAsDL,QAtDK;EAuDL;EACA;;AAGJ;EACI;EACA;EACA,OA7Da;EA8Db,QA9Da;EA+Db;;AAIR;EACI;EACA;EACA;EACA;EACA;;AAEA;EACI;;AAGJ;EACI;;AAGJ;EACI;;AAOA;EACI;EACA;;AAGJ;EACI;;AAKZ;AAAA;AAAA;EAGI;;;AE5GR;EACI;EACA;EACA;EACA;;AAEA;EACI;;;ACLR;ECKI;EACA,QARa;EASb;EACA;EACA;EACA;EACA,SAZc;EAad,eAXoB;EAYpB;EACA;;AAEA;EACI;EACA;;AAGJ;EACI,aAtB4B;EAuB5B;EACA;EACA;;AAIA;EACI;EACA;EACA;EACA;EACA;EACA;EACA;;;ACtCZ;EACI;EACA;EACA;;AACA;EACI;EACA;;;ACNR;EACI;EACA;EACA;EACA;;AAEA;EACI;EACA;EACA;;;ACHR;EACI,WAPsB;EAQtB;EACA;EACA,eAN0B;EAO1B;;AAEA;EAPJ;IAQQ,YAXmB;;;;AAe3B;EACI;EACA;EACA,QAnBmB;EAoBnB,SArBoB;EAsBpB;EACA;;AAGI;EACI;;AAGJ;EACI;;AAIR;EACI;EACA;EACA;EACA;;AAIA;EACI;;AAGJ;EACI;;AAIR;EACI;EACA;EACA;;AAIA;EACI;;AAGJ;EACI;;AAIR;EACI;;AAEA;EACI;EACA;;AAEJ;EACI;EACA;EACA;EACA;EACA;;AAEA;EACI;EACA;;AAGJ;EACI;;AAGA;EACI;;AAMhB;EACI;EACA;EACA;;AAGJ;EACI;EACA;;AAGJ;EACI;EACA;;AAEA;EACI;EACA;;;AAKZ;EACI;;;ACtHJ;EACI;EACA;EACA;;AAEA;EACI;EACA;EACA;EACA;EACA;;AAEA;EACI;;AAGJ;EACI;;AAGJ;EACI;EACA;EACA;EACA;;AAEA;EACI;EACA;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;;AAIR;EACI;;AAGJ;EACI;;;ACrDZ;EACI,QAHc;EAId,OAJc;EAKd;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;;;ACdJ;ECCI;EACA;EACA;EACA,WANqB;EAOrB;EACA;;AAEA;EACI;EACA;EACA;EACA;EACA;EACA;EACA;EACA;;AAIJ;EACI;EACA;EACA;EACA;EACA,WA3BiB;EA4BjB;;AAEA;EACI;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;EACA;EACA;EACA;EACA;;;AChDZ;ECCI;EACA;EACA;EACA;EACA;EACA;EACA;;AACA;EACI;;;ACVJ;EACI;EACA;;AAEA;EACI;;AAIR;EACI;EACA;EACA;EACA;EACA;;AAEA;EACI;EACA;;AAKJ;EACI;EACA;EACA;EACA;EACA;EACA;;AAIR;EACI;EACA;;;ACpCR;EACI;EACA;;ACFJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AC7DJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;ACzEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AC9GJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;ACtBJ;EACI;EACA;EACA;EACA;;;ALNJ;EACI;EACA;;ACFJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AC7DJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;ACzEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AC9GJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AZlBJ;EACI,WAPsB;EAQtB;EACA;EACA,eAN0B;EAO1B;;AAEA;EAPJ;IAQQ,YAXmB;;;;AAe3B;EACI;EACA;EACA,QAnBmB;EAoBnB,SArBoB;EAsBpB;EACA;;AAGI;EACI;;AAGJ;EACI;;AAIR;EACI;EACA;EACA;EACA;;AAIA;EACI;;AAGJ;EACI;;AAIR;EACI;EACA;EACA;;AAIA;EACI;;AAGJ;EACI;;AAIR;EACI;;AAEA;EACI;EACA;;AAEJ;EACI;EACA;EACA;EACA;EACA;;AAEA;EACI;EACA;;AAGJ;EACI;;AAGA;EACI;;AAMhB;EACI;EACA;EACA;;AAGJ;EACI;EACA;;AAGJ;EACI;EACA;;AAEA;EACI;EACA;;;AAKZ;EACI;;;AcvHA;EACI;EACA;EACA;;AAEA;EACI;EACA;EACA;EACA;;AAIR;EACI;;;A5BdR;EACI;EACA;EACA,QALgB;EAMhB,SAPiB;EAQjB;;AAEA;EACI;EACA;EACA;;;A6BbR;EACI;IACE;;EAGF;IACE;;EAGF;IACE;;EAGF;IACE;;;AAIN;EACI;EACA","file":"bundle.css"} \ No newline at end of file diff --git a/internal/ui/login/static/resources/themes/zitadel/css/main.css b/internal/ui/login/static/resources/themes/zitadel/css/main.css deleted file mode 100644 index 9101ba81a7..0000000000 --- a/internal/ui/login/static/resources/themes/zitadel/css/main.css +++ /dev/null @@ -1,22 +0,0 @@ -body { - margin: 0 auto; - display: flex; - flex-direction: column; - height: 100vh; -} -body .lgn-grow { - flex: 1; -} -body.waiting * { - cursor: wait !important; -} - -.hidden { - display: none !important; -} - -.text-align-center { - text-align: center; -} - -/*# sourceMappingURL=main.css.map */ diff --git a/internal/ui/login/static/resources/themes/zitadel/css/main.css.map b/internal/ui/login/static/resources/themes/zitadel/css/main.css.map deleted file mode 100644 index 56b37b0359..0000000000 --- a/internal/ui/login/static/resources/themes/zitadel/css/main.css.map +++ /dev/null @@ -1 +0,0 @@ -{"version":3,"sourceRoot":"","sources":["../../scss/main.scss"],"names":[],"mappings":"AAAA;EACI;EACA;EACA;EACA;;AAEA;EACI;;AAGJ;EACI;;;AAIR;EACI;;;AAGJ;EACI","file":"main.css"} \ No newline at end of file diff --git a/internal/ui/login/static/resources/themes/zitadel/css/variables.css b/internal/ui/login/static/resources/themes/zitadel/css/variables.css new file mode 100644 index 0000000000..ec1954b734 --- /dev/null +++ b/internal/ui/login/static/resources/themes/zitadel/css/variables.css @@ -0,0 +1,13 @@ +:root { + --primary-color: #222324; + --secondary-color: #ffffff; + --warn-color: #ffffff; + --primary-color-dark: #222324; + --secondary-color-dark: #ffffff; + --warn-color-dark: #ffffff; + --logo-url: 'logo-light.svg'; + --logo-url-dark: 'logo-dark.svg'; + --icon-url: 'logo-light.svg'; + --icon-url-dark: 'logo-dark.svg'; + --font-url: ''; +} \ No newline at end of file diff --git a/internal/ui/login/static/resources/themes/zitadel/css/zitadel.css b/internal/ui/login/static/resources/themes/zitadel/css/zitadel.css index 8ae8f19bdb..8571b6dc89 100644 --- a/internal/ui/login/static/resources/themes/zitadel/css/zitadel.css +++ b/internal/ui/login/static/resources/themes/zitadel/css/zitadel.css @@ -1,4 +1,159 @@ @charset "UTF-8"; +:root { + --zitadel-color-primary: var(--zitadel-color-primary-500); + --zitadel-color-background: var(--zitadel-color-background-500); + --zitadel-color-secondary: var(--zitadel-color-secondary-500); + --zitadel-color-warn: var(--zitadel-color-warn-500); + --zitadel-color-primary-50: #eaedfa; + --zitadel-color-primary-100: #ccd2f2; + --zitadel-color-primary-200: #aab4ea; + --zitadel-color-primary-300: #8796e1; + --zitadel-color-primary-400: #6e80da; + --zitadel-color-primary-500: #5469d4; + --zitadel-color-primary-600: #4d61cf; + --zitadel-color-primary-700: #4356c9; + --zitadel-color-primary-800: #3a4cc3; + --zitadel-color-primary-900: #293bb9; + --zitadel-color-primary-rgb: rgb(84, 105, 212); + --zitadel-color-primary-contrast: var(--zitadel-color-white); + --zitadel-color-secondary-50: #eaedfa; + --zitadel-color-secondary-100: #ccd2f2; + --zitadel-color-secondary-200: #aab4ea; + --zitadel-color-secondary-300: #8796e1; + --zitadel-color-secondary-400: #6e80da; + --zitadel-color-secondary-500: #5469d4; + --zitadel-color-secondary-600: #4d61cf; + --zitadel-color-secondary-700: #4356c9; + --zitadel-color-secondary-800: #3a4cc3; + --zitadel-color-secondary-900: #293bb9; + --zitadel-color-secondary-contrast: var(--zitadel-color-white); + --zitadel-color-warn-50: #ffebee; + --zitadel-color-warn-100: #ffcdd2; + --zitadel-color-warn-200: #ef9a9a; + --zitadel-color-warn-300: #e57373; + --zitadel-color-warn-400: #ef5350; + --zitadel-color-warn-500: #f44336; + --zitadel-color-warn-600: #e53935; + --zitadel-color-warn-700: #d32f2f; + --zitadel-color-warn-800: #c62828; + --zitadel-color-warn-900: #b71c1c; + --zitadel-font-family: "Lato"; + --zitadel-color-background-500: var(--zitadel-color-grey-50); + --zitadel-color-footer-line: #e3e8ee; + --zitadel-color-input-background: #fafafa50; + --zitadel-color-input-border: #00000040; + --zitadel-color-input-border-hover: #1a1b1b; + --zitadel-color-input-placeholder: var(--zitadel-color-grey-600); + --zitadel-color-text: rgba(0, 0, 0, 0.87); + --zitadel-color-label: var(--zitadel-color-grey-600); + --zitadel-color-account-selector-hover: rgba(0, 0, 0, 0.02); + --zitadel-color-account-selector-active: rgba(0, 0, 0, 0.05); + --zitadel-color-success: #0e6245; + --zitadel-color-success-background: #cbf4c9; + --zitadel-color-divider: rgba(0, 0, 0, 0.12); + --zitadel-color-button-disabled: rgba(0, 0, 0, 0.26); + --zitadel-color-button-disabled-background: rgba(0, 0, 0, 0.12); + --zitadel-color-button-selected-background: var(--zitadel-color-grey-900); + --zitadel-color-button-disabled-selected-background: var(--zitadel-color-grey-800); + --zitadel-color-raised-button-background: var(--zitadel-color-white); + --zitadel-color-white: #ffffff; + --zitadel-color-black: #000000; + --zitadel-color-grey-50: #fafafa; + --zitadel-color-grey-100: #f5f5f5; + --zitadel-color-grey-200: #eeeeee; + --zitadel-color-grey-300: #e0e0e0; + --zitadel-color-grey-400: #bdbdbd; + --zitadel-color-grey-500: #9e9e9e; + --zitadel-color-grey-600: #757575; + --zitadel-color-grey-700: #616161; + --zitadel-color-grey-800: #424242; + --zitadel-color-grey-900: #212121; + --zitadel-icon-select: url("../select_arrow_light.svg"); + --zitadel-logo-powered-by: url("../logo-dark.svg"); + --zitadel-color-google-text: #8b8d8d; + --zitadel-color-google-background: #ffffff; + --zitadel-color-qr: var(--zitadel-color-white); + --zitadel-color-qr-background: var(--zitadel-color-black); +} + +.lgn-dark-theme { + --zitadel-color-primary-50: #ffffff; + --zitadel-color-primary-100: #dde6f3; + --zitadel-color-primary-200: #b4c9e4; + --zitadel-color-primary-300: #7fa3d1; + --zitadel-color-primary-400: #6992c9; + --zitadel-color-primary-500: #5282c1; + --zitadel-color-primary-600: #4072b4; + --zitadel-color-primary-700: #38649d; + --zitadel-color-primary-800: #305687; + --zitadel-color-primary-900: #284770; + --zitadel-color-secondary-50: #ffffff; + --zitadel-color-secondary-100: #dde6f3; + --zitadel-color-secondary-200: #b4c9e4; + --zitadel-color-secondary-300: #7fa3d1; + --zitadel-color-secondary-400: #6992c9; + --zitadel-color-secondary-500: #5282c1; + --zitadel-color-secondary-600: #4072b4; + --zitadel-color-secondary-700: #38649d; + --zitadel-color-secondary-800: #305687; + --zitadel-color-secondary-900: #284770; + --zitadel-color-warn-50: #ffebee; + --zitadel-color-warn-100: #ffcdd2; + --zitadel-color-warn-200: #ef9a9a; + --zitadel-color-warn-300: #e57373; + --zitadel-color-warn-400: #ef5350; + --zitadel-color-warn-500: #f44336; + --zitadel-color-warn-600: #e53935; + --zitadel-color-warn-700: #d32f2f; + --zitadel-color-warn-800: #c62828; + --zitadel-color-warn-900: #b71c1c; + --zitadel-font-family: "Lato"; + --zitadel-color-background-500: var(--zitadel-color-grey-900); + --zitadel-color-footer-line: #303131; + --zitadel-color-input-background: rgba(0, 0, 0, 0.2); + --zitadel-color-input-border: #403e3e; + --zitadel-color-input-border-hover: #aeafb1; + --zitadel-color-input-placeholder: var(--zitadel-color-grey-600); + --zitadel-color-text: var(--zitadel-color-white); + --zitadel-color-label: var(--zitadel-color-grey-600); + --zitadel-color-account-selector-hover: rgba(255, 255, 255, 0.02); + --zitadel-color-account-selector-active: rgba(255, 255, 255, 0.05); + --zitadel-color-success: #cbf4c9; + --zitadel-color-success-background: #4f566b; + --zitadel-color-divider: rgba(255, 255, 255, 0.12); + --zitadel-color-button-disabled: rgba(0, 0, 0, 0.26); + --zitadel-color-button-disabled-background: rgba(255, 255, 255, 0.12); + --zitadel-color-button-selected-background: var(--zitadel-color-grey-900); + --zitadel-color-button-disabled-selected-background: var(--zitadel-color-grey-800); + --zitadel-color-raised-button-background: var(--zitadel-color-grey-800); + /*--zitadel-color-label: var(--zitadel-color-grey-600); same */ + --zitadel-icon-select: url("../select_arrow_dark.svg"); + --zitadel-logo-powered-by: url("../logo-light.svg"); + --zitadel-color-google-text: #8b8d8d; + --zitadel-color-google-background: #ffffff; +} + +body { + margin: 0 auto; + display: flex; + flex-direction: column; + height: 100vh; +} +body .lgn-grow { + flex: 1; +} +body.waiting * { + cursor: wait !important; +} + +.hidden { + display: none !important; +} + +.text-align-center { + text-align: center; +} + footer { width: 100%; box-sizing: border-box; @@ -14,6 +169,7 @@ footer .fill-space { footer a { font-size: 12px; margin-left: 1rem; + display: block; } @media only screen and (min-width: 600px) { footer { @@ -23,6 +179,20 @@ footer a { right: 0; } } +footer .watermark { + display: flex; + position: relative; + width: 100%; +} +footer .watermark .powered { + font-size: 12px; + margin: auto 2px; +} +footer .watermark .lgn-logo-watermark { + height: 34px; + width: 125px; + margin: 2px; +} .lgn-header { display: block; @@ -32,8 +202,8 @@ footer a { width: 100%; } .lgn-header .lgn-logo { - height: 43px; - width: 160px; + display: block; + max-height: 100px; margin: 0 auto; } @@ -492,6 +662,13 @@ i { font-size: 14px; outline: none; font-weight: bold; + overflow: hidden; +} + +.lgn-avatar .avatar-img { + height: 100%; + width: 100%; + object-fit: cover; } .lgn-checkbox { @@ -861,37 +1038,1338 @@ i { padding: 0.5rem; } +footer { + width: 100%; + box-sizing: border-box; + background: #00000020; + min-height: 50px; + display: flex; + align-items: center; + padding: 0 1rem; +} +footer .fill-space { + flex: 1; +} +footer a { + font-size: 12px; + margin-left: 1rem; + display: block; +} +@media only screen and (min-width: 600px) { + footer { + position: fixed; + bottom: 0; + left: 0; + right: 0; + } +} +footer .watermark { + display: flex; + position: relative; + width: 100%; +} +footer .watermark .powered { + font-size: 12px; + margin: auto 2px; +} +footer .watermark .lgn-logo-watermark { + height: 34px; + width: 125px; + margin: 2px; +} + +.lgn-header { + display: block; + position: relative; + margin: 1rem auto 0.5rem auto; + padding: 0; + width: 100%; +} +.lgn-header .lgn-logo { + display: block; + max-height: 100px; + margin: 0 auto; +} + +.lgn-button, .lgn-stroked-button, .lgn-icon-button { + box-sizing: border-box; + position: relative; + cursor: pointer; + outline: none; + border: none; + -webkit-tap-highlight-color: transparent; + display: inline-block; + white-space: nowrap; + text-decoration: none; + vertical-align: baseline; + text-align: center; + margin: 0; + min-width: 64px; + line-height: 36px; + padding: 0 16px; + border-radius: 6px; + overflow: visible; +} +.lgn-button[disabled], .lgn-stroked-button[disabled], .lgn-icon-button[disabled] { + cursor: default; +} +.lgn-button::-moz-focus-inner, .lgn-stroked-button::-moz-focus-inner, .lgn-icon-button::-moz-focus-inner { + border: 0; +} + +.lgn-raised-button { + box-sizing: border-box; + position: relative; + cursor: pointer; + outline: none; + border: none; + -webkit-tap-highlight-color: transparent; + display: inline-block; + white-space: nowrap; + text-decoration: none; + vertical-align: baseline; + text-align: center; + margin: 0; + min-width: 64px; + line-height: 36px; + padding: 0 16px; + border-radius: 6px; + overflow: visible; + transform: translate3d(0, 0, 0); +} +.lgn-raised-button[disabled] { + cursor: default; +} +.lgn-raised-button::-moz-focus-inner { + border: 0; +} + +.lgn-icon-button { + padding: 0; + min-width: 0; + width: 40px; + height: 40px; + flex-shrink: 0; + line-height: 40px; + border-radius: 50%; +} +.lgn-icon-button i, .lgn-icon-button .mat-icon { + line-height: 24px; +} + +.lgn-stroked-button { + border: 1px solid currentColor; + padding: 0 15px; + line-height: 34px; +} + +.lgn-button:focus { + pointer-events: none; + transition: opacity 200ms cubic-bezier(0.35, 0, 0.25, 1), background-color 200ms cubic-bezier(0.35, 0, 0.25, 1); +} + +.lgn-button *, .lgn-stroked-button *, .lgn-raised-button * { + vertical-align: middle; +} + +input:not([type=radio]):not([type=checkbox]), +.lgn-input { + display: block; + box-sizing: border-box; + padding-inline-start: 10px; + outline: none; + display: inline-block; + text-align: start; + cursor: text; + border-radius: 4px; + transform: all 0.2 linear; + font-size: 1rem; + border-style: solid; + border-width: 1px; + height: 40px; + padding: 10px; + transition: border-color 0.2s ease-in-out; + width: 100%; + margin: 0 0 2px 0; +} +input:not([type=radio]):not([type=checkbox])::placeholder, +.lgn-input::placeholder { + font-size: 14px; + font-style: italic; +} + +select, .lgn-select { + display: block; + box-sizing: border-box; + padding-inline-start: 10px; + outline: none; + display: inline-block; + text-align: start; + cursor: text; + border-radius: 4px; + transform: all 0.2 linear; + font-size: 1rem; + border-style: solid; + border-width: 1px; + height: 40px; + padding: 10px; + transition: border-color 0.2s ease-in-out; + width: 100%; + margin: 0 0 2px 0; +} +select::placeholder, .lgn-select::placeholder { + font-size: 14px; + font-style: italic; +} + +.lgn-suffix-wrapper { + position: relative; +} +.lgn-suffix-wrapper [lgnSuffix] { + position: absolute; + right: 0.5rem; + top: 9px; + height: inherit; + vertical-align: middle; +} + +.lgn-label { + display: block; + font-size: 12px; + transition: color 0.2s ease; + margin: 0 0 2px 0; + font-weight: 400; +} + +@keyframes ripple { + 0% { + box-shadow: 0 0 0 1px rgba(0, 0, 0, 0); + } + 50% { + box-shadow: 0 0 0 15px rgba(0, 0, 0, 0.1); + } + 100% { + box-shadow: 0 0 0 15px rgba(0, 0, 0, 0); + } +} +.lgn-radio { + outline: none; + margin: 16px 0; + display: inline-block; +} +.lgn-radio.block { + display: block; +} +.lgn-radio label { + display: inline-block; + height: 20px; + position: relative; + padding: 0 0 0 30px; + margin-bottom: 0; + cursor: pointer; + vertical-align: middle; + padding-top: 2px; + outline: none; + font-size: 14px; + line-height: 16px; +} +.lgn-radio label::before, .lgn-radio label::after { + position: absolute; + content: ""; + border-radius: 50%; + transition: all 0.3s ease; + transition-property: transform, border-color; +} +.lgn-radio label::before { + left: 0; + top: 0; + width: 20px; + height: 20px; + border-width: 2px; + border-style: solid; +} +.lgn-radio label::after { + top: 5px; + left: 5px; + width: 10px; + height: 10px; + transform: scale(0); +} +.lgn-radio input[type=radio] { + opacity: 0; + margin: 0; + width: 0; + height: 0; + outline: none; +} +.lgn-radio input[type=radio]:checked + label::before { + animation: ripple 0.2s linear forwards; +} +.lgn-radio input[type=radio]:checked + label::after { + transform: scale(1); +} +.lgn-radio input[type=radio]:focus + label { + opacity: 1; +} +.lgn-radio input[type=radio]:disabled + label { + cursor: not-allowed; + font-style: italic; +} +.lgn-radio input[type=radio]:disabled:focus { + opacity: 0; +} +.lgn-radio *, +.lgn-radio *::before, +.lgn-radio *::after { + box-sizing: border-box; +} + +a { + text-decoration: none; + outline: none; + cursor: pointer; + margin: 2px 0; +} +a.block { + display: block; +} + +.lgn-idp { + display: block; + margin: 0.5rem 0; + box-sizing: border-box; + display: flex; + align-items: center; + position: relative; + padding: 0 1px; + border-radius: 0.5rem; + border-width: 1px; + border-style: solid; +} +.lgn-idp span.logo { + height: 46px; + width: 46px; +} +.lgn-idp span.provider-name { + line-height: 36px; + position: absolute; + left: 50%; + transform: translateX(-50%); +} +.lgn-idp.google span.logo { + height: 46px; + width: 46px; + background-image: url("../../../images/idp/google.png"); + background-size: 25px; + background-position: center; + background-repeat: no-repeat; + border-radius: 5px; +} + +.lgn-error { + display: flex; + align-items: center; + outline: none; +} +.lgn-error i { + margin-right: 0.5rem; + font-size: 1.5rem; +} + +.lgn-qrcode { + display: block; + margin: auto; + margin: 1rem 0; + margin-bottom: 1.5rem; +} +.lgn-qrcode svg { + margin: auto; + display: block; + border-radius: 0.5rem; +} + +.lgn-max-width-wrapper { + max-width: 400px; + margin: auto; + margin-top: 50px; + margin-bottom: 50px; + display: block; +} +@media only screen and (min-width: 600px) { + .lgn-max-width-wrapper { + margin-top: 100px; + } +} + +.content-container { + position: relative; + display: block; + margin: 0 auto 0 auto; + padding: 20px; + width: 100%; + box-sizing: border-box; +} +.content-container .lgn-head h1 { + text-align: center; +} +.content-container .lgn-head p { + text-align: center; +} +.content-container .lgn-actions { + display: flex; + align-items: center; + padding: 0.5rem 0; + margin-top: 1rem; +} +.content-container .lgn-actions.lgn-reverse-order { + flex-direction: row-reverse; +} +.content-container .lgn-actions .fill-space { + flex: 1; +} +.content-container .lgn-row { + display: flex; + align-items: center; + padding: 0; +} +.content-container .lgn-row.lgn-reverse-order { + flex-direction: row-reverse; +} +.content-container .lgn-row .fill-space { + flex: 1; +} +.content-container .lgn-login-profile { + margin-bottom: 0.5rem; +} +.content-container .lgn-login-profile .lgn-profile-image { + display: block; + margin: 0.5rem; +} +.content-container .lgn-login-profile .lgn-names { + border-width: 1px; + border-style: solid; + border-radius: 50vw; + display: flex; + align-items: center; +} +.content-container .lgn-login-profile .lgn-names .inline-block { + display: inline-block; + margin: 0 2px; +} +.content-container .lgn-login-profile .lgn-names .lgn-displayname { + margin: 0.5rem 1rem; +} +.content-container .lgn-login-profile .lgn-names .lgn-loginname p { + margin: 0.5rem 1rem; +} +.content-container .lgn-left-action { + position: absolute; + left: 1rem; + top: -40px; +} +.content-container .lgn-register-options { + display: flex; + flex-direction: column; +} +.content-container .lgn-mfa-other { + display: flex; + flex-direction: column; +} +.content-container .lgn-mfa-other button { + width: 100%; + margin: 0.5rem 0; +} + +i { + font-size: 1.2rem; +} + +.lgn-account-selection { + display: flex; + flex-direction: column; + width: 100%; +} +.lgn-account-selection .lgn-account { + display: flex; + align-items: center; + border: none; + outline: none; + cursor: pointer; +} +.lgn-account-selection .lgn-account:disabled { + cursor: not-allowed; +} +.lgn-account-selection .lgn-account .left { + padding: 0.5rem 1rem; +} +.lgn-account-selection .lgn-account .lgn-names { + display: block; + margin: 0.5rem; + text-align: start; + overflow: hidden; +} +.lgn-account-selection .lgn-account .lgn-names .lgn-displayname { + font-size: 16px; + margin: 0.5rem 0; + margin-bottom: 0; + text-overflow: ellipsis; + overflow: hidden; +} +.lgn-account-selection .lgn-account .lgn-names .lgn-loginname { + font-size: 14px; + margin: 0; + text-overflow: ellipsis; + overflow: hidden; +} +.lgn-account-selection .lgn-account .lgn-names .lgn-session-state { + margin: 0; + font-size: 14px; + margin-bottom: 0.5rem; +} +.lgn-account-selection .lgn-account .fill-space { + flex: 1; +} +.lgn-account-selection .lgn-account i { + font-size: 1.2rem; +} + +.lgn-avatar { + height: 32px; + width: 32px; + border-radius: 50%; + display: flex; + align-items: center; + justify-content: center; + text-transform: uppercase; + box-sizing: border-box; + letter-spacing: 0.05em; + font-size: 14px; + outline: none; + font-weight: bold; + overflow: hidden; +} + +.lgn-avatar .avatar-img { + height: 100%; + width: 100%; + object-fit: cover; +} + +.lgn-checkbox { + display: inline-block; + position: relative; + margin: 0 0 10px; + font-size: 14px; + line-height: 24px; + box-sizing: inherit; +} +.lgn-checkbox input[type=checkbox] { + position: absolute; + top: 4px; + left: 0; + width: 16px; + height: 16px; + opacity: 0; + z-index: 0; + box-sizing: inherit; +} +.lgn-checkbox label { + display: block; + padding: 0 0 0 30px; + cursor: pointer; + box-sizing: inherit; + font-size: 14px; + line-height: 28px; +} +.lgn-checkbox label:before { + content: ""; + position: absolute; + top: 4px; + left: 0; + width: 16px; + height: 16px; + border-radius: 2px; + transition: all 0.28s cubic-bezier(0.4, 0, 0.2, 1); + transition-property: background-color, border-color; +} +.lgn-checkbox label:after { + content: ""; + position: absolute; + top: 5px; + left: 5px; + width: 6px; + height: 12px; + transform: rotate(45deg); + transition: border-color 0.28s cubic-bezier(0.4, 0, 0.2, 1); +} + +.lgn-select, select { + background-position: right 10px center; + background-repeat: no-repeat; + background-size: auto 50%; + color: white; + -moz-appearance: none; + -webkit-appearance: none; + appearance: none; +} +.lgn-select::-ms-expand, select::-ms-expand { + display: none; +} + +.lgn-list.lgn-policy, ul.lgn-policy { + display: flex; + flex-wrap: wrap; +} +.lgn-list.lgn-policy li, ul.lgn-policy li { + flex: 1 0 50%; +} +.lgn-list li, ul li { + display: flex; + align-items: center; + list-style: none; + margin: 4px 0; + font-style: italic; +} +.lgn-list li i, ul li i { + margin: 0 0.5rem; + font-size: 20px; +} +.lgn-list:not(.lgn-no-dots) li::before, ul:not(.lgn-no-dots) li::before { + content: "•"; + font-weight: bold; + display: inline-block; + width: 20px; + margin-left: -20px; + font-style: normal; +} +.lgn-list.lgn-no-dots, ul.lgn-no-dots { + list-style-type: none; + padding-inline-start: 0; +} + +@font-face { + font-family: Aileron; + src: url(../../../fonts/ailerons/ailerons.otf) format("opentype"); +} +@font-face { + font-family: Lato; + src: url(../../../fonts/lato/Lato-Thin.ttf) format("truetype"); + font-style: normal; + font-weight: 100; +} +@font-face { + font-family: Lato; + src: url(../../../fonts/lato/Lato-ThinItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 100; +} +@font-face { + font-family: Lato; + src: url(../../../fonts/lato/Lato-Light.ttf) format("truetype"); + font-style: normal; + font-weight: 200; +} +@font-face { + font-family: Lato; + src: url(../../../fonts/lato/Lato-LightItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 200; +} +@font-face { + font-family: Lato; + src: url(../../../fonts/lato/Lato-Regular.ttf) format("truetype"); + font-style: normal; + font-weight: 400; +} +@font-face { + font-family: Lato; + src: url(../../../fonts/lato/Lato-Italic.ttf) format("truetype"); + font-style: italic; + font-weight: 400; +} +@font-face { + font-family: Lato; + src: url(../../../fonts/lato/Lato-Bold.ttf) format("truetype"); + font-style: normal; + font-weight: 700; +} +@font-face { + font-family: Lato; + src: url(../../../fonts/lato/Lato-BoldItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 700; +} +@font-face { + font-family: Lato; + src: url(../../../fonts/lato/Lato-Black.ttf) format("truetype"); + font-style: normal; + font-weight: 800; +} +@font-face { + font-family: Lato; + src: url(../../../fonts/lato/Lato-BlackItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 800; +} +@font-face { + font-family: Roboto; + src: url(../../../fonts/Roboto/Roboto-Black.ttf) format("truetype"); + font-style: normal; + font-weight: 900; +} +@font-face { + font-family: Roboto; + src: url(../../../fonts/Roboto/Roboto-BlackItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 900; +} +@font-face { + font-family: Roboto; + src: url(../../../fonts/Roboto/Roboto-Bold.ttf) format("truetype"); + font-style: normal; + font-weight: 700; +} +@font-face { + font-family: Roboto; + src: url(../../../fonts/Roboto/Roboto-BoldItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 700; +} +@font-face { + font-family: Roboto; + src: url(../../../fonts/Roboto/Roboto-Regular.ttf) format("truetype"); + font-style: normal; + font-weight: 400; +} +@font-face { + font-family: Roboto; + src: url(../../../fonts/Roboto/Roboto-Italic.ttf) format("truetype"); + font-style: italic; + font-weight: 400; +} +@font-face { + font-family: Roboto; + src: url(../../../fonts/Roboto/Roboto-Light.ttf) format("truetype"); + font-style: normal; + font-weight: 300; +} +@font-face { + font-family: Roboto; + src: url(../../../fonts/Roboto/Roboto-LightItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 300; +} +@font-face { + font-family: Roboto; + src: url(../../../fonts/Roboto/Roboto-Medium.ttf) format("truetype"); + font-style: normal; + font-weight: 500; +} +@font-face { + font-family: Roboto; + src: url(../../../fonts/Roboto/Roboto-MediumItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 500; +} +@font-face { + font-family: Roboto; + src: url(../../../fonts/Roboto/Roboto-Thin.ttf) format("truetype"); + font-style: normal; + font-weight: 100; +} +@font-face { + font-family: Roboto; + src: url(../../../fonts/Roboto/Roboto-ThinItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 100; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-Black.ttf) format("truetype"); + font-style: normal; + font-weight: 900; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-BlackItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 900; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-Bold.ttf) format("truetype"); + font-style: normal; + font-weight: 700; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-BoldItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 700; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-ExtraBold.ttf) format("truetype"); + font-style: normal; + font-weight: 800; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-ExtraBoldItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 800; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-ExtraLight.ttf) format("truetype"); + font-style: normal; + font-weight: 200; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-ExtraLightItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 200; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-Light.ttf) format("truetype"); + font-style: normal; + font-weight: 300; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-LightItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 300; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-Medium.ttf) format("truetype"); + font-style: normal; + font-weight: 500; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-MediumItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 500; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-Regular.ttf) format("truetype"); + font-style: normal; + font-weight: 400; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-Italic.ttf) format("truetype"); + font-style: italic; + font-weight: 400; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-SemiBold.ttf) format("truetype"); + font-style: normal; + font-weight: 600; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-SemiBoldItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 600; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-Thin.ttf) format("truetype"); + font-style: normal; + font-weight: 100; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-ThinItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 100; +} +@font-face { + font-family: PTSans; + src: url(../../../fonts/PT_Sans/PTSans-Bold.ttf) format("truetype"); + font-style: normal; + font-weight: 700; +} +@font-face { + font-family: PTSans; + src: url(../../../fonts/PT_Sans/PTSans-BoldItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 700; +} +@font-face { + font-family: PTSans; + src: url(../../../fonts/PT_Sans/PTSans-Italic.ttf) format("truetype"); + font-style: italic; + font-weight: 400; +} +@font-face { + font-family: PTSans; + src: url(../../../fonts/PT_Sans/PTSans-Regular.ttf) format("truetype"); + font-style: normal; + font-weight: 400; +} +.lgn-success-label { + color: #0e6245; + background: #cbf4c9; + border-radius: 0.5rem; + padding: 0.5rem; +} + +@font-face { + font-family: Aileron; + src: url(../../../fonts/ailerons/ailerons.otf) format("opentype"); +} +@font-face { + font-family: Lato; + src: url(../../../fonts/lato/Lato-Thin.ttf) format("truetype"); + font-style: normal; + font-weight: 100; +} +@font-face { + font-family: Lato; + src: url(../../../fonts/lato/Lato-ThinItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 100; +} +@font-face { + font-family: Lato; + src: url(../../../fonts/lato/Lato-Light.ttf) format("truetype"); + font-style: normal; + font-weight: 200; +} +@font-face { + font-family: Lato; + src: url(../../../fonts/lato/Lato-LightItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 200; +} +@font-face { + font-family: Lato; + src: url(../../../fonts/lato/Lato-Regular.ttf) format("truetype"); + font-style: normal; + font-weight: 400; +} +@font-face { + font-family: Lato; + src: url(../../../fonts/lato/Lato-Italic.ttf) format("truetype"); + font-style: italic; + font-weight: 400; +} +@font-face { + font-family: Lato; + src: url(../../../fonts/lato/Lato-Bold.ttf) format("truetype"); + font-style: normal; + font-weight: 700; +} +@font-face { + font-family: Lato; + src: url(../../../fonts/lato/Lato-BoldItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 700; +} +@font-face { + font-family: Lato; + src: url(../../../fonts/lato/Lato-Black.ttf) format("truetype"); + font-style: normal; + font-weight: 800; +} +@font-face { + font-family: Lato; + src: url(../../../fonts/lato/Lato-BlackItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 800; +} +@font-face { + font-family: Roboto; + src: url(../../../fonts/Roboto/Roboto-Black.ttf) format("truetype"); + font-style: normal; + font-weight: 900; +} +@font-face { + font-family: Roboto; + src: url(../../../fonts/Roboto/Roboto-BlackItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 900; +} +@font-face { + font-family: Roboto; + src: url(../../../fonts/Roboto/Roboto-Bold.ttf) format("truetype"); + font-style: normal; + font-weight: 700; +} +@font-face { + font-family: Roboto; + src: url(../../../fonts/Roboto/Roboto-BoldItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 700; +} +@font-face { + font-family: Roboto; + src: url(../../../fonts/Roboto/Roboto-Regular.ttf) format("truetype"); + font-style: normal; + font-weight: 400; +} +@font-face { + font-family: Roboto; + src: url(../../../fonts/Roboto/Roboto-Italic.ttf) format("truetype"); + font-style: italic; + font-weight: 400; +} +@font-face { + font-family: Roboto; + src: url(../../../fonts/Roboto/Roboto-Light.ttf) format("truetype"); + font-style: normal; + font-weight: 300; +} +@font-face { + font-family: Roboto; + src: url(../../../fonts/Roboto/Roboto-LightItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 300; +} +@font-face { + font-family: Roboto; + src: url(../../../fonts/Roboto/Roboto-Medium.ttf) format("truetype"); + font-style: normal; + font-weight: 500; +} +@font-face { + font-family: Roboto; + src: url(../../../fonts/Roboto/Roboto-MediumItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 500; +} +@font-face { + font-family: Roboto; + src: url(../../../fonts/Roboto/Roboto-Thin.ttf) format("truetype"); + font-style: normal; + font-weight: 100; +} +@font-face { + font-family: Roboto; + src: url(../../../fonts/Roboto/Roboto-ThinItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 100; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-Black.ttf) format("truetype"); + font-style: normal; + font-weight: 900; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-BlackItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 900; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-Bold.ttf) format("truetype"); + font-style: normal; + font-weight: 700; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-BoldItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 700; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-ExtraBold.ttf) format("truetype"); + font-style: normal; + font-weight: 800; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-ExtraBoldItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 800; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-ExtraLight.ttf) format("truetype"); + font-style: normal; + font-weight: 200; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-ExtraLightItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 200; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-Light.ttf) format("truetype"); + font-style: normal; + font-weight: 300; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-LightItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 300; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-Medium.ttf) format("truetype"); + font-style: normal; + font-weight: 500; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-MediumItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 500; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-Regular.ttf) format("truetype"); + font-style: normal; + font-weight: 400; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-Italic.ttf) format("truetype"); + font-style: italic; + font-weight: 400; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-SemiBold.ttf) format("truetype"); + font-style: normal; + font-weight: 600; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-SemiBoldItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 600; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-Thin.ttf) format("truetype"); + font-style: normal; + font-weight: 100; +} +@font-face { + font-family: Raleway; + src: url(../../../fonts/Raleway/Raleway-ThinItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 100; +} +@font-face { + font-family: PTSans; + src: url(../../../fonts/PT_Sans/PTSans-Bold.ttf) format("truetype"); + font-style: normal; + font-weight: 700; +} +@font-face { + font-family: PTSans; + src: url(../../../fonts/PT_Sans/PTSans-BoldItalic.ttf) format("truetype"); + font-style: italic; + font-weight: 700; +} +@font-face { + font-family: PTSans; + src: url(../../../fonts/PT_Sans/PTSans-Italic.ttf) format("truetype"); + font-style: italic; + font-weight: 400; +} +@font-face { + font-family: PTSans; + src: url(../../../fonts/PT_Sans/PTSans-Regular.ttf) format("truetype"); + font-style: normal; + font-weight: 400; +} +.lgn-max-width-wrapper { + max-width: 400px; + margin: auto; + margin-top: 50px; + margin-bottom: 50px; + display: block; +} +@media only screen and (min-width: 600px) { + .lgn-max-width-wrapper { + margin-top: 100px; + } +} + +.content-container { + position: relative; + display: block; + margin: 0 auto 0 auto; + padding: 20px; + width: 100%; + box-sizing: border-box; +} +.content-container .lgn-head h1 { + text-align: center; +} +.content-container .lgn-head p { + text-align: center; +} +.content-container .lgn-actions { + display: flex; + align-items: center; + padding: 0.5rem 0; + margin-top: 1rem; +} +.content-container .lgn-actions.lgn-reverse-order { + flex-direction: row-reverse; +} +.content-container .lgn-actions .fill-space { + flex: 1; +} +.content-container .lgn-row { + display: flex; + align-items: center; + padding: 0; +} +.content-container .lgn-row.lgn-reverse-order { + flex-direction: row-reverse; +} +.content-container .lgn-row .fill-space { + flex: 1; +} +.content-container .lgn-login-profile { + margin-bottom: 0.5rem; +} +.content-container .lgn-login-profile .lgn-profile-image { + display: block; + margin: 0.5rem; +} +.content-container .lgn-login-profile .lgn-names { + border-width: 1px; + border-style: solid; + border-radius: 50vw; + display: flex; + align-items: center; +} +.content-container .lgn-login-profile .lgn-names .inline-block { + display: inline-block; + margin: 0 2px; +} +.content-container .lgn-login-profile .lgn-names .lgn-displayname { + margin: 0.5rem 1rem; +} +.content-container .lgn-login-profile .lgn-names .lgn-loginname p { + margin: 0.5rem 1rem; +} +.content-container .lgn-left-action { + position: absolute; + left: 1rem; + top: -40px; +} +.content-container .lgn-register-options { + display: flex; + flex-direction: column; +} +.content-container .lgn-mfa-other { + display: flex; + flex-direction: column; +} +.content-container .lgn-mfa-other button { + width: 100%; + margin: 0.5rem 0; +} + +i { + font-size: 1.2rem; +} + +.lgn-register .double-col { + display: flex; + flex-wrap: wrap; + margin: 0 -0.5rem; +} +.lgn-register .double-col .lgn-field { + margin: 0 0.5rem; + flex: 1; + box-sizing: border-box; + margin-bottom: 0.5rem; +} +.lgn-register .lgn-field { + margin-bottom: 0.5rem; +} + +.lgn-header { + display: block; + position: relative; + margin: 1rem auto 0.5rem auto; + padding: 0; + width: 100%; +} +.lgn-header .lgn-logo { + display: block; + max-height: 100px; + margin: 0 auto; +} + +@keyframes shake { + 10%, 90% { + transform: translate3d(-1px, 0, 0); + } + 20%, 80% { + transform: translate3d(2px, 0, 0); + } + 30%, 50%, 70% { + transform: translate3d(-4px, 0, 0); + } + 40%, 60% { + transform: translate3d(4px, 0, 0); + } +} +[shake] { + animation: shake 0.8s cubic-bezier(0.36, 0.07, 0.19, 0.97) both; + transform: translate3d(0, 0, 0); +} + h1, .lgn-headline, .lgn-typography h1 { - font: 400 24px/32px Lato, -apple-system, BlinkMacSystemFont, sans-serif; + font: 400 24px/32px serif; + font-family: var(--zitadel-font-family), -apple-system, BlinkMacSystemFont, sans-serif; letter-spacing: normal; margin: 0 0 16px; } h2, .lgn-title, .lgn-typography h2 { - font: 500 20px/32px Lato, -apple-system, BlinkMacSystemFont, sans-serif; + font: 500 20px/32px serif; + font-family: var(--zitadel-font-family), -apple-system, BlinkMacSystemFont, sans-serif; letter-spacing: normal; margin: 0 0 16px; } h3, .lgn-subheading-2, .lgn-typography h3 { - font: 400 16px/28px Lato, -apple-system, BlinkMacSystemFont, sans-serif; + font: 400 16px/28px serif; + font-family: var(--zitadel-font-family), -apple-system, BlinkMacSystemFont, sans-serif; letter-spacing: normal; margin: 0 0 16px; } h4, .lgn-subheading-1, .lgn-typography h4 { - font: 400 15px/24px Lato, -apple-system, BlinkMacSystemFont, sans-serif; + font: 400 15px/24px serif; + font-family: var(--zitadel-font-family), -apple-system, BlinkMacSystemFont, sans-serif; letter-spacing: normal; margin: 0 0 16px; } .lgn-body-strong, .lgn-body-2 { - font: 500 14px/24px Lato, -apple-system, BlinkMacSystemFont, sans-serif; + font: 500 14px/24px serif; + font-family: var(--zitadel-font-family), -apple-system, BlinkMacSystemFont, sans-serif; letter-spacing: normal; } p, .lgn-body, .lgn-body-1, .lgn-typography { - font: 400 14px/20px Lato, -apple-system, BlinkMacSystemFont, sans-serif; + font: 400 14px/20px serif; + font-family: var(--zitadel-font-family), -apple-system, BlinkMacSystemFont, sans-serif; letter-spacing: normal; } p p, .lgn-body p, .lgn-body-1 p, .lgn-typography p { @@ -899,58 +2377,67 @@ p p, .lgn-body p, .lgn-body-1 p, .lgn-typography p { } button, .lgn-button, .lgn-raised-button, .lgn-stroked-button { - font: 500 14px/36px Lato, -apple-system, BlinkMacSystemFont, sans-serif; + font: 500 14px/36px serif; + font-family: var(--zitadel-font-family), -apple-system, BlinkMacSystemFont, sans-serif; letter-spacing: normal; } span { - font: 400 14px/20px Lato, -apple-system, BlinkMacSystemFont, sans-serif; + font: 400 14px/20px serif; + font-family: var(--zitadel-font-family), -apple-system, BlinkMacSystemFont, sans-serif; letter-spacing: normal; } a, .lgn-a { - font: 400 14px/20px Lato, -apple-system, BlinkMacSystemFont, sans-serif; + font: 400 14px/20px serif; + font-family: var(--zitadel-font-family), -apple-system, BlinkMacSystemFont, sans-serif; letter-spacing: normal; } small .lgn-small, .lgn-caption { - font: 400 12px/20px Lato, -apple-system, BlinkMacSystemFont, sans-serif; + font: 400 12px/20px serif; + font-family: var(--zitadel-font-family), -apple-system, BlinkMacSystemFont, sans-serif; letter-spacing: normal; } label, .lgn-label, .lgn-typography .lgn-label, .lgn-typography label { - font: 400 12px/20px Lato, -apple-system, BlinkMacSystemFont, sans-serif; + font: 400 12px/20px serif; + font-family: var(--zitadel-font-family), -apple-system, BlinkMacSystemFont, sans-serif; letter-spacing: normal; margin: 0 0 2px 0; } .lgn-display-4, .lgn-typography .lgn-display-4 { - font: 300 112px/112px Lato, -apple-system, BlinkMacSystemFont, sans-serif; + font: 300 112px/112px serif; + font-family: var(--zitadel-font-family), -apple-system, BlinkMacSystemFont, sans-serif; letter-spacing: -0.05em; margin: 0 0 56px; } .lgn-display-3, .lgn-typography .lgn-display-3 { - font: 400 56px/56px Lato, -apple-system, BlinkMacSystemFont, sans-serif; + font: 400 56px/56px serif; + font-family: var(--zitadel-font-family), -apple-system, BlinkMacSystemFont, sans-serif; letter-spacing: -0.02em; margin: 0 0 64px; } .lgn-display-2, .lgn-typography .lgn-display-2 { - font: 400 45px/48px Lato, -apple-system, BlinkMacSystemFont, sans-serif; + font: 400 45px/48px serif; + font-family: var(--zitadel-font-family), -apple-system, BlinkMacSystemFont, sans-serif; letter-spacing: -0.005em; margin: 0 0 64px; } .lgn-display-1, .lgn-typography .lgn-display-1 { - font: 400 34px/40px Lato, -apple-system, BlinkMacSystemFont, sans-serif; + font: 400 34px/40px serif; + font-family: var(--zitadel-font-family), -apple-system, BlinkMacSystemFont, sans-serif; letter-spacing: normal; margin: 0 0 64px; } .lgn-app-background { - background-color: #212224; - color: white; + background-color: var(--zitadel-color-background); + color: var(--zitadel-color-text); } .lgn-theme-loaded-marker { @@ -958,7 +2445,6 @@ label, .lgn-label, .lgn-typography .lgn-label, .lgn-typography label { } .lgn-logo { - background: url("../logo-light.svg") no-repeat; background-position: auto; background-size: contain; } @@ -972,17 +2458,17 @@ label, .lgn-label, .lgn-typography .lgn-label, .lgn-typography label { .lgn-button.lgn-primary, .lgn-stroked-button.lgn-primary, .lgn-icon-button.lgn-primary { - color: #5282c1; + color: var(--zitadel-color-primary); } .lgn-button.lgn-accent, .lgn-stroked-button.lgn-accent, .lgn-icon-button.lgn-accent { - color: #5282c1; + color: var(--zitadel-color-primary); } .lgn-button.lgn-warn, .lgn-stroked-button.lgn-warn, .lgn-icon-button.lgn-warn { - color: #f44336; + color: var(--zitadel-color-primary); } .lgn-button.lgn-primary[disabled], .lgn-button.lgn-accent[disabled], .lgn-button.lgn-warn[disabled], .lgn-button[disabled][disabled], .lgn-stroked-button.lgn-primary[disabled], @@ -993,71 +2479,72 @@ label, .lgn-label, .lgn-typography .lgn-label, .lgn-typography label { .lgn-icon-button.lgn-accent[disabled], .lgn-icon-button.lgn-warn[disabled], .lgn-icon-button[disabled][disabled] { - color: rgba(255, 255, 255, 0.3); + color: var(--zitadel-color-button-disabled); } .lgn-button:focus, .lgn-stroked-button:focus, .lgn-raised-button:focus { box-shadow: 0px 5px 5px -3px rgba(0, 0, 0, 0.2), 0px 8px 10px 1px rgba(0, 0, 0, 0.14), 0px 3px 14px 2px rgba(0, 0, 0, 0.12); + background: var(--zitadel-color-background); } .lgn-stroked-button:not([disabled]) { - border-color: rgba(255, 255, 255, 0.12); + border-color: var(--zitadel-color-divider); } .lgn-button.lgn-primary { - color: #5282c1; + color: var(--zitadel-color-primary); } .lgn-button.lgn-accent { - color: #5282c1; + color: var(--zitadel-color-primary); } .lgn-button.lgn-warn { - color: #f44336; + color: var(--zitadel-color-primary); } .lgn-button.lgn-primary[disabled], .lgn-button.lgn-accent[disabled], .lgn-button.lgn-warn[disabled], .lgn-button[disabled][disabled] { - color: rgba(255, 255, 255, 0.3); + color: var(--zitadel-color-button-disabled); } .lgn-button:hover { - background-color: rgba(82, 130, 193, 0.1); + background-color: rgba(var(--zitadel-color-primary-rgb), 0.1); } .lgn-button:focus { - background-color: rgba(82, 130, 193, 0.2); + background-color: rgba(var(--zitadel-color-primary-rgb), 0.2); } .lgn-button:active { - background-color: rgba(82, 130, 193, 0.25); + background-color: rgba(var(--zitadel-color-primary-rgb), 0.25); } .lgn-raised-button { - color: white; - background-color: #424242; + color: var(--zitadel-color-text); + background-color: var(--zitadel-color-raised-button-background); } .lgn-raised-button.lgn-primary { - color: white; + color: var(--zitadel-color-primary-contrast); } .lgn-raised-button.lgn-accent { - color: white; + color: var(--zitadel-color-primary-contrast); } .lgn-raised-button.lgn-warn { - color: white; + color: var(--zitadel-color-primary-contrast); } .lgn-raised-button.lgn-primary[disabled], .lgn-raised-button.lgn-accent[disabled], .lgn-raised-button.lgn-warn[disabled], .lgn-raised-button[disabled][disabled] { - color: rgba(255, 255, 255, 0.3); + color: var(--zitadel-color-button-disabled); } .lgn-raised-button.lgn-primary { - background-color: #5282c1; + background-color: var(--zitadel-color-primary); } .lgn-raised-button.lgn-accent { - background-color: #5282c1; + background-color: var(--zitadel-color-primary); } .lgn-raised-button.lgn-warn { - background-color: #f44336; + background-color: var(--zitadel-color-primary); } .lgn-raised-button.lgn-primary[disabled], .lgn-raised-button.lgn-accent[disabled], .lgn-raised-button.lgn-warn[disabled], .lgn-raised-button[disabled][disabled] { - background-color: rgba(255, 255, 255, 0.12); + background-color: var(--zitadel-color-button-disabled-background); } .lgn-raised-button:active { - background-color: rgba(82, 130, 193, 0.8); + background-color: rgba(var(--zitadel-color-primary-rgb), 0.8); } .lgn-button, @@ -1077,56 +2564,62 @@ label, .lgn-label, .lgn-typography .lgn-label, .lgn-typography label { .lgn-input:not([disabled]), select:not([disabled]), .lgn-select:not([disabled]) { - border-color: #403e3e; + border-color: var(--zitadel-color-input-border); } .lgn-input, select, .lgn-select { - color: white; - background-color: rgba(0, 0, 0, 0.2); + color: var(--zitadel-color-text); + background-color: var(--zitadel-color-input-background); } .lgn-input:hover, select:hover, .lgn-select:hover { - border-color: #aeafb1; + border-color: var(--zitadel-color-input-border-hover); } .lgn-input:active, select:active, .lgn-select:active { - border-color: #5282c1; + border-color: var(--zitadel-color-input-border); } .lgn-input:focus, select:focus, .lgn-select:focus { - border-color: #5282c1; + border-color: var(--zitadel-color-input-border); } .lgn-input[color=warn], select[color=warn], .lgn-select[color=warn] { - border-color: #f44336; + border-color: var(--zitadel-color-warn); } .lgn-input::placeholder, select::placeholder, .lgn-select::placeholder { - color: #757575; + color: var(--zitadel-color-input-placeholder); } label::before { - border-color: #403e3e; + border-color: var(--zitadel-color-input-border); } label::after { - background: #5282c1; + background: var(--zitadel-color-primary); } input[type=radio] { opacity: 0; } input[type=radio]:checked + label::before { - border-color: #5282c1; + border-color: var(--zitadel-color-primary); } input[type=radio]:focus + label { opacity: 1; outline: none; } input[type=radio]:disabled + label::before { - border-color: rgba(255, 255, 255, 0.12); + border-color: var(--zitadel-color-button-disabled-background); +} +input[type=radio]:disabled:checked + label::before { + color: var(--zitadel-color-button-selected-background); +} +input[type=radio]:disabled:checked + label::after { + background: var(--zitadel-color-button-disabled-selected-background); } input[type=radio]:disabled:focus { opacity: 0; @@ -1144,7 +2637,7 @@ input[type=checkbox] { .lgn-checkbox label:before { background-color: transparent; - border: 2px solid #403e3e; + border: 2px solid var(--zitadel-color-input-border); } .lgn-checkbox label:after { border-bottom: 2px solid transparent; @@ -1153,48 +2646,57 @@ input[type=checkbox] { } input[type=checkbox]:checked + label:before { - background-color: #5282c1; - border-color: #5282c1; + background-color: var(--zitadel-color-primary); + border-color: var(--zitadel-color-primary); } input[type=checkbox]:checked + label:after { border-color: #fff; } .lgn-label { - color: #757575; + color: var(--zitadel-color-label); } footer { - background-color: #212224; - border-top: 1px solid #303131; + background-color: var(--zitadel-color-background); + border-top: 1px solid var(--zitadel-color-footer-line); } +footer a { + color: var(--zitadel-color-primary); +} +footer .lgn-logo-watermark { + background: var(--zitadel-logo-powered-by); + background-position: auto; + background-size: contain; +} + a { - color: #5282c1; + color: var(--zitadel-color-primary); } a:hover, a:active { - color: #6992c9; + color: var(--zitadel-color-primary-400); } .lgn-error { - color: #f44336; + color: var(--zitadel-color-warn); } .lgn-qrcode svg { - background: white; + background: var(--zitadel-color-qr-background); } .lgn-qrcode svg rect.color { - fill: black; + fill: var(--zitadel-color-qr); } .lgn-qrcode svg rect.bg-color { - fill: white; + fill: var(--zitadel-color-qr-background); } .lgn-error .lgn-error-message { - color: #f44336; + color: var(--zitadel-color-warn); } .lgn-login-profile .lgn-names { - border-color: rgba(255, 255, 255, 0.12); + border-color: var(--zitadel-color-divider); } .lgn-account-selection { @@ -1205,715 +2707,89 @@ a:hover, a:active { .lgn-account-selection .lgn-account { color: inherit; background: transparent; - box-shadow: inset 0 -1px #303131; + box-shadow: inset 0 -1px var(--zitadel-color-footer-line); } .lgn-account-selection .lgn-account:hover { - background-color: rgba(255, 255, 255, 0.02); + background-color: var(--zitadel-color-account-selector-hover); } .lgn-account-selection .lgn-account:focus { - background-color: rgba(255, 255, 255, 0.05); + background-color: var(--zitadel-color-account-selector-active); } .lgn-account-selection .lgn-account:active { - background-color: rgba(255, 255, 255, 0.05); + background-color: var(--zitadel-color-account-selector-active); } .lgn-account-selection .lgn-account .lgn-loginname { font-size: 14px; - color: #757575; + color: var(--zitadel-color-label); } .lgn-account-selection .lgn-account .lgn-session-state { - color: #757575; + color: var(--zitadel-color-label); } .lgn-account-selection .lgn-account .lgn-session-state.i0 { color: #85d996; } .lgn-account-selection .lgn-account .lgn-session-state.i1 { - color: #f44336; + color: var(--zitadel-color-warn); } .lgn-avatar:not(.transparent) { box-shadow: 0px 3px 1px -2px rgba(0, 0, 0, 0.2), 0px 2px 2px 0px rgba(0, 0, 0, 0.14), 0px 1px 5px 0px rgba(0, 0, 0, 0.12); } .lgn-avatar:not(.transparent).lgn-primary { - background-color: #5282c1; + background-color: var(--zitadel-color-primary); } .lgn-avatar:not(.transparent).lgn-accent { - background-color: #5282c1; + background-color: var(--zitadel-color-primary); } .lgn-avatar:not(.transparent).lgn-warn { - background-color: #f44336; + background-color: var(--zitadel-color-primary); } .lgn-avatar:not(.transparent).lgn-primary[disabled], .lgn-avatar:not(.transparent).lgn-accent[disabled], .lgn-avatar:not(.transparent).lgn-warn[disabled], .lgn-avatar:not(.transparent)[disabled][disabled] { - background-color: rgba(255, 255, 255, 0.12); + background-color: var(--itadel-color-button-disabled-background); } .lgn-avatar .initials.lgn-primary { - color: white; + color: var(--zitadel-color-primary-contrast); } .lgn-avatar .initials.lgn-accent { - color: white; + color: var(--zitadel-color-primary-contrast); } .lgn-avatar .initials.lgn-warn { - color: white; + color: var(--zitadel-color-primary-contrast); } .lgn-avatar .initials.lgn-primary[disabled], .lgn-avatar .initials.lgn-accent[disabled], .lgn-avatar .initials.lgn-warn[disabled], .lgn-avatar .initials[disabled][disabled] { - color: rgba(255, 255, 255, 0.3); + color: var(--zitadel-color-button-disabled); } .lgn-select, select { - background-image: url("../select_arrow_dark.svg"); + background-image: var(--zitadel-icon-select); } .lgn-list li::before, ul li::before { - color: #5282c1; + color: var(--zitadel-color-primary); } .lgn-list li i.lgn-warn, ul li i.lgn-warn { - color: #f44336; + color: var(--zitadel-color-warn); } .lgn-list li i.lgn-valid, ul li i.lgn-valid { color: #85d996; } .lgn-idp { - border-color: rgba(255, 255, 255, 0.12); + border-color: var(--zitadel-color-divider); box-shadow: 0px 2px 1px -1px rgba(0, 0, 0, 0.2), 0px 1px 1px 0px rgba(0, 0, 0, 0.14), 0px 1px 3px 0px rgba(0, 0, 0, 0.12); } .lgn-idp:not([disabled]):active { box-shadow: 0px 5px 5px -3px rgba(0, 0, 0, 0.2), 0px 8px 10px 1px rgba(0, 0, 0, 0.14), 0px 3px 14px 2px rgba(0, 0, 0, 0.12); } .lgn-idp.google { - color: #8b8d8d; - background-color: white; + color: var(--zitadel-color-google-text); + background-color: var(--zitadel-color-google-background); } .lgn-success-label { - color: #cbf4c9; - background-color: #4f566b; -} - -.lgn-dark-theme .lgn-app-background, .lgn-dark-theme.lgn-app-background { - background-color: #212224; - color: white; -} -.lgn-theme-loaded-marker { - display: none; -} - -.lgn-dark-theme .lgn-logo { - background: url("../logo-light.svg") no-repeat; - background-position: auto; - background-size: contain; -} -.lgn-dark-theme .lgn-button, -.lgn-dark-theme .lgn-stroked-button, -.lgn-dark-theme .lgn-icon-button { - color: inherit; - background: transparent; -} -.lgn-dark-theme .lgn-button.lgn-primary, -.lgn-dark-theme .lgn-stroked-button.lgn-primary, -.lgn-dark-theme .lgn-icon-button.lgn-primary { - color: #5282c1; -} -.lgn-dark-theme .lgn-button.lgn-accent, -.lgn-dark-theme .lgn-stroked-button.lgn-accent, -.lgn-dark-theme .lgn-icon-button.lgn-accent { - color: #5282c1; -} -.lgn-dark-theme .lgn-button.lgn-warn, -.lgn-dark-theme .lgn-stroked-button.lgn-warn, -.lgn-dark-theme .lgn-icon-button.lgn-warn { - color: #f44336; -} -.lgn-dark-theme .lgn-button.lgn-primary[disabled], .lgn-dark-theme .lgn-button.lgn-accent[disabled], .lgn-dark-theme .lgn-button.lgn-warn[disabled], .lgn-dark-theme .lgn-button[disabled][disabled], -.lgn-dark-theme .lgn-stroked-button.lgn-primary[disabled], -.lgn-dark-theme .lgn-stroked-button.lgn-accent[disabled], -.lgn-dark-theme .lgn-stroked-button.lgn-warn[disabled], -.lgn-dark-theme .lgn-stroked-button[disabled][disabled], -.lgn-dark-theme .lgn-icon-button.lgn-primary[disabled], -.lgn-dark-theme .lgn-icon-button.lgn-accent[disabled], -.lgn-dark-theme .lgn-icon-button.lgn-warn[disabled], -.lgn-dark-theme .lgn-icon-button[disabled][disabled] { - color: rgba(255, 255, 255, 0.3); -} -.lgn-dark-theme .lgn-button:focus, -.lgn-dark-theme .lgn-stroked-button:focus, -.lgn-dark-theme .lgn-raised-button:focus { - box-shadow: 0px 5px 5px -3px rgba(0, 0, 0, 0.2), 0px 8px 10px 1px rgba(0, 0, 0, 0.14), 0px 3px 14px 2px rgba(0, 0, 0, 0.12); -} -.lgn-dark-theme .lgn-stroked-button:not([disabled]) { - border-color: rgba(255, 255, 255, 0.12); -} -.lgn-dark-theme .lgn-button.lgn-primary { - color: #5282c1; -} -.lgn-dark-theme .lgn-button.lgn-accent { - color: #5282c1; -} -.lgn-dark-theme .lgn-button.lgn-warn { - color: #f44336; -} -.lgn-dark-theme .lgn-button.lgn-primary[disabled], .lgn-dark-theme .lgn-button.lgn-accent[disabled], .lgn-dark-theme .lgn-button.lgn-warn[disabled], .lgn-dark-theme .lgn-button[disabled][disabled] { - color: rgba(255, 255, 255, 0.3); -} -.lgn-dark-theme .lgn-button:hover { - background-color: rgba(82, 130, 193, 0.1); -} -.lgn-dark-theme .lgn-button:focus { - background-color: rgba(82, 130, 193, 0.2); -} -.lgn-dark-theme .lgn-button:active { - background-color: rgba(82, 130, 193, 0.25); -} -.lgn-dark-theme .lgn-raised-button { - color: white; - background-color: #424242; -} -.lgn-dark-theme .lgn-raised-button.lgn-primary { - color: white; -} -.lgn-dark-theme .lgn-raised-button.lgn-accent { - color: white; -} -.lgn-dark-theme .lgn-raised-button.lgn-warn { - color: white; -} -.lgn-dark-theme .lgn-raised-button.lgn-primary[disabled], .lgn-dark-theme .lgn-raised-button.lgn-accent[disabled], .lgn-dark-theme .lgn-raised-button.lgn-warn[disabled], .lgn-dark-theme .lgn-raised-button[disabled][disabled] { - color: rgba(255, 255, 255, 0.3); -} -.lgn-dark-theme .lgn-raised-button.lgn-primary { - background-color: #5282c1; -} -.lgn-dark-theme .lgn-raised-button.lgn-accent { - background-color: #5282c1; -} -.lgn-dark-theme .lgn-raised-button.lgn-warn { - background-color: #f44336; -} -.lgn-dark-theme .lgn-raised-button.lgn-primary[disabled], .lgn-dark-theme .lgn-raised-button.lgn-accent[disabled], .lgn-dark-theme .lgn-raised-button.lgn-warn[disabled], .lgn-dark-theme .lgn-raised-button[disabled][disabled] { - background-color: rgba(255, 255, 255, 0.12); -} -.lgn-dark-theme .lgn-raised-button:active { - background-color: rgba(82, 130, 193, 0.8); -} -.lgn-dark-theme .lgn-button, -.lgn-dark-theme .lgn-stroked-button { - box-shadow: 0px 0px 0px 0px rgba(0, 0, 0, 0.2), 0px 0px 0px 0px rgba(0, 0, 0, 0.14), 0px 0px 0px 0px rgba(0, 0, 0, 0.12); -} -.lgn-dark-theme .lgn-raised-button { - box-shadow: 0px 3px 1px -2px rgba(0, 0, 0, 0.2), 0px 2px 2px 0px rgba(0, 0, 0, 0.14), 0px 1px 5px 0px rgba(0, 0, 0, 0.12); -} -.lgn-dark-theme .lgn-raised-button:not([disabled]):active { - box-shadow: 0px 5px 5px -3px rgba(0, 0, 0, 0.2), 0px 8px 10px 1px rgba(0, 0, 0, 0.14), 0px 3px 14px 2px rgba(0, 0, 0, 0.12); -} -.lgn-dark-theme .lgn-raised-button[disabled] { - box-shadow: 0px 0px 0px 0px rgba(0, 0, 0, 0.2), 0px 0px 0px 0px rgba(0, 0, 0, 0.14), 0px 0px 0px 0px rgba(0, 0, 0, 0.12); -} -.lgn-dark-theme .lgn-input:not([disabled]), -.lgn-dark-theme select:not([disabled]), .lgn-dark-theme .lgn-select:not([disabled]) { - border-color: #403e3e; -} -.lgn-dark-theme .lgn-input, -.lgn-dark-theme select, .lgn-dark-theme .lgn-select { - color: white; - background-color: rgba(0, 0, 0, 0.2); -} -.lgn-dark-theme .lgn-input:hover, -.lgn-dark-theme select:hover, .lgn-dark-theme .lgn-select:hover { - border-color: #aeafb1; -} -.lgn-dark-theme .lgn-input:active, -.lgn-dark-theme select:active, .lgn-dark-theme .lgn-select:active { - border-color: #5282c1; -} -.lgn-dark-theme .lgn-input:focus, -.lgn-dark-theme select:focus, .lgn-dark-theme .lgn-select:focus { - border-color: #5282c1; -} -.lgn-dark-theme .lgn-input[color=warn], -.lgn-dark-theme select[color=warn], .lgn-dark-theme .lgn-select[color=warn] { - border-color: #f44336; -} -.lgn-dark-theme .lgn-input::placeholder, -.lgn-dark-theme select::placeholder, -.lgn-dark-theme .lgn-select::placeholder { - color: #757575; -} -.lgn-dark-theme label::before { - border-color: #403e3e; -} -.lgn-dark-theme label::after { - background: #5282c1; -} -.lgn-dark-theme input[type=radio] { - opacity: 0; -} -.lgn-dark-theme input[type=radio]:checked + label::before { - border-color: #5282c1; -} -.lgn-dark-theme input[type=radio]:focus + label { - opacity: 1; - outline: none; -} -.lgn-dark-theme input[type=radio]:disabled + label::before { - border-color: rgba(255, 255, 255, 0.12); -} -.lgn-dark-theme input[type=radio]:disabled:focus { - opacity: 0; -} -.lgn-dark-theme input[type=checkbox] { - position: absolute; - top: 4px; - left: 0; - width: 16px; - height: 16px; - opacity: 0; - z-index: 0; -} -.lgn-dark-theme .lgn-checkbox label:before { - background-color: transparent; - border: 2px solid #403e3e; -} -.lgn-dark-theme .lgn-checkbox label:after { - border-bottom: 2px solid transparent; - border-right: 2px solid transparent; - background: transparent; -} -.lgn-dark-theme input[type=checkbox]:checked + label:before { - background-color: #5282c1; - border-color: #5282c1; -} -.lgn-dark-theme input[type=checkbox]:checked + label:after { - border-color: #fff; -} -.lgn-dark-theme .lgn-label { - color: #757575; -} -.lgn-dark-theme footer { - background-color: #212224; - border-top: 1px solid #303131; -} -.lgn-dark-theme a { - color: #5282c1; -} -.lgn-dark-theme a:hover, .lgn-dark-theme a:active { - color: #6992c9; -} -.lgn-dark-theme .lgn-error { - color: #f44336; -} -.lgn-dark-theme .lgn-qrcode svg { - background: white; -} -.lgn-dark-theme .lgn-qrcode svg rect.color { - fill: black; -} -.lgn-dark-theme .lgn-qrcode svg rect.bg-color { - fill: white; -} -.lgn-dark-theme .lgn-error .lgn-error-message { - color: #f44336; -} -.lgn-dark-theme .lgn-login-profile .lgn-names { - border-color: rgba(255, 255, 255, 0.12); -} -.lgn-dark-theme .lgn-account-selection { - display: flex; - flex-direction: column; - width: 100%; -} -.lgn-dark-theme .lgn-account-selection .lgn-account { - color: inherit; - background: transparent; - box-shadow: inset 0 -1px #303131; -} -.lgn-dark-theme .lgn-account-selection .lgn-account:hover { - background-color: rgba(255, 255, 255, 0.02); -} -.lgn-dark-theme .lgn-account-selection .lgn-account:focus { - background-color: rgba(255, 255, 255, 0.05); -} -.lgn-dark-theme .lgn-account-selection .lgn-account:active { - background-color: rgba(255, 255, 255, 0.05); -} -.lgn-dark-theme .lgn-account-selection .lgn-account .lgn-loginname { - font-size: 14px; - color: #757575; -} -.lgn-dark-theme .lgn-account-selection .lgn-account .lgn-session-state { - color: #757575; -} -.lgn-dark-theme .lgn-account-selection .lgn-account .lgn-session-state.i0 { - color: #85d996; -} -.lgn-dark-theme .lgn-account-selection .lgn-account .lgn-session-state.i1 { - color: #f44336; -} -.lgn-dark-theme .lgn-avatar:not(.transparent) { - box-shadow: 0px 3px 1px -2px rgba(0, 0, 0, 0.2), 0px 2px 2px 0px rgba(0, 0, 0, 0.14), 0px 1px 5px 0px rgba(0, 0, 0, 0.12); -} -.lgn-dark-theme .lgn-avatar:not(.transparent).lgn-primary { - background-color: #5282c1; -} -.lgn-dark-theme .lgn-avatar:not(.transparent).lgn-accent { - background-color: #5282c1; -} -.lgn-dark-theme .lgn-avatar:not(.transparent).lgn-warn { - background-color: #f44336; -} -.lgn-dark-theme .lgn-avatar:not(.transparent).lgn-primary[disabled], .lgn-dark-theme .lgn-avatar:not(.transparent).lgn-accent[disabled], .lgn-dark-theme .lgn-avatar:not(.transparent).lgn-warn[disabled], .lgn-dark-theme .lgn-avatar:not(.transparent)[disabled][disabled] { - background-color: rgba(255, 255, 255, 0.12); -} -.lgn-dark-theme .lgn-avatar .initials.lgn-primary { - color: white; -} -.lgn-dark-theme .lgn-avatar .initials.lgn-accent { - color: white; -} -.lgn-dark-theme .lgn-avatar .initials.lgn-warn { - color: white; -} -.lgn-dark-theme .lgn-avatar .initials.lgn-primary[disabled], .lgn-dark-theme .lgn-avatar .initials.lgn-accent[disabled], .lgn-dark-theme .lgn-avatar .initials.lgn-warn[disabled], .lgn-dark-theme .lgn-avatar .initials[disabled][disabled] { - color: rgba(255, 255, 255, 0.3); -} -.lgn-dark-theme .lgn-select, .lgn-dark-theme select { - background-image: url("../select_arrow_dark.svg"); -} -.lgn-dark-theme .lgn-list li::before, .lgn-dark-theme ul li::before { - color: #5282c1; -} -.lgn-dark-theme .lgn-list li i.lgn-warn, .lgn-dark-theme ul li i.lgn-warn { - color: #f44336; -} -.lgn-dark-theme .lgn-list li i.lgn-valid, .lgn-dark-theme ul li i.lgn-valid { - color: #85d996; -} -.lgn-dark-theme .lgn-idp { - border-color: rgba(255, 255, 255, 0.12); - box-shadow: 0px 2px 1px -1px rgba(0, 0, 0, 0.2), 0px 1px 1px 0px rgba(0, 0, 0, 0.14), 0px 1px 3px 0px rgba(0, 0, 0, 0.12); -} -.lgn-dark-theme .lgn-idp:not([disabled]):active { - box-shadow: 0px 5px 5px -3px rgba(0, 0, 0, 0.2), 0px 8px 10px 1px rgba(0, 0, 0, 0.14), 0px 3px 14px 2px rgba(0, 0, 0, 0.12); -} -.lgn-dark-theme .lgn-idp.google { - color: #8b8d8d; - background-color: white; -} -.lgn-dark-theme .lgn-success-label { - color: #cbf4c9; - background-color: #4f566b; -} - -.lgn-light-theme .lgn-app-background, .lgn-light-theme.lgn-app-background { - background-color: #fafafa; - color: rgba(0, 0, 0, 0.87); -} -.lgn-theme-loaded-marker { - display: none; -} - -.lgn-light-theme .lgn-logo { - background: url("../logo-dark.svg") no-repeat; - background-position: auto; - background-size: contain; -} -.lgn-light-theme .lgn-button, -.lgn-light-theme .lgn-stroked-button, -.lgn-light-theme .lgn-icon-button { - color: inherit; - background: transparent; -} -.lgn-light-theme .lgn-button.lgn-primary, -.lgn-light-theme .lgn-stroked-button.lgn-primary, -.lgn-light-theme .lgn-icon-button.lgn-primary { - color: #5469d4; -} -.lgn-light-theme .lgn-button.lgn-accent, -.lgn-light-theme .lgn-stroked-button.lgn-accent, -.lgn-light-theme .lgn-icon-button.lgn-accent { - color: #5469d4; -} -.lgn-light-theme .lgn-button.lgn-warn, -.lgn-light-theme .lgn-stroked-button.lgn-warn, -.lgn-light-theme .lgn-icon-button.lgn-warn { - color: #f44336; -} -.lgn-light-theme .lgn-button.lgn-primary[disabled], .lgn-light-theme .lgn-button.lgn-accent[disabled], .lgn-light-theme .lgn-button.lgn-warn[disabled], .lgn-light-theme .lgn-button[disabled][disabled], -.lgn-light-theme .lgn-stroked-button.lgn-primary[disabled], -.lgn-light-theme .lgn-stroked-button.lgn-accent[disabled], -.lgn-light-theme .lgn-stroked-button.lgn-warn[disabled], -.lgn-light-theme .lgn-stroked-button[disabled][disabled], -.lgn-light-theme .lgn-icon-button.lgn-primary[disabled], -.lgn-light-theme .lgn-icon-button.lgn-accent[disabled], -.lgn-light-theme .lgn-icon-button.lgn-warn[disabled], -.lgn-light-theme .lgn-icon-button[disabled][disabled] { - color: rgba(0, 0, 0, 0.26); -} -.lgn-light-theme .lgn-button:focus, -.lgn-light-theme .lgn-stroked-button:focus, -.lgn-light-theme .lgn-raised-button:focus { - box-shadow: 0px 5px 5px -3px rgba(0, 0, 0, 0.2), 0px 8px 10px 1px rgba(0, 0, 0, 0.14), 0px 3px 14px 2px rgba(0, 0, 0, 0.12); -} -.lgn-light-theme .lgn-stroked-button:not([disabled]) { - border-color: rgba(0, 0, 0, 0.12); -} -.lgn-light-theme .lgn-button.lgn-primary { - color: #5469d4; -} -.lgn-light-theme .lgn-button.lgn-accent { - color: #5469d4; -} -.lgn-light-theme .lgn-button.lgn-warn { - color: #f44336; -} -.lgn-light-theme .lgn-button.lgn-primary[disabled], .lgn-light-theme .lgn-button.lgn-accent[disabled], .lgn-light-theme .lgn-button.lgn-warn[disabled], .lgn-light-theme .lgn-button[disabled][disabled] { - color: rgba(0, 0, 0, 0.26); -} -.lgn-light-theme .lgn-button:hover { - background-color: rgba(84, 105, 212, 0.1); -} -.lgn-light-theme .lgn-button:focus { - background-color: rgba(84, 105, 212, 0.2); -} -.lgn-light-theme .lgn-button:active { - background-color: rgba(84, 105, 212, 0.25); -} -.lgn-light-theme .lgn-raised-button { - color: rgba(0, 0, 0, 0.87); - background-color: white; -} -.lgn-light-theme .lgn-raised-button.lgn-primary { - color: white; -} -.lgn-light-theme .lgn-raised-button.lgn-accent { - color: white; -} -.lgn-light-theme .lgn-raised-button.lgn-warn { - color: white; -} -.lgn-light-theme .lgn-raised-button.lgn-primary[disabled], .lgn-light-theme .lgn-raised-button.lgn-accent[disabled], .lgn-light-theme .lgn-raised-button.lgn-warn[disabled], .lgn-light-theme .lgn-raised-button[disabled][disabled] { - color: rgba(0, 0, 0, 0.26); -} -.lgn-light-theme .lgn-raised-button.lgn-primary { - background-color: #5469d4; -} -.lgn-light-theme .lgn-raised-button.lgn-accent { - background-color: #5469d4; -} -.lgn-light-theme .lgn-raised-button.lgn-warn { - background-color: #f44336; -} -.lgn-light-theme .lgn-raised-button.lgn-primary[disabled], .lgn-light-theme .lgn-raised-button.lgn-accent[disabled], .lgn-light-theme .lgn-raised-button.lgn-warn[disabled], .lgn-light-theme .lgn-raised-button[disabled][disabled] { - background-color: rgba(0, 0, 0, 0.12); -} -.lgn-light-theme .lgn-raised-button:active { - background-color: rgba(84, 105, 212, 0.8); -} -.lgn-light-theme .lgn-button, -.lgn-light-theme .lgn-stroked-button { - box-shadow: 0px 0px 0px 0px rgba(0, 0, 0, 0.2), 0px 0px 0px 0px rgba(0, 0, 0, 0.14), 0px 0px 0px 0px rgba(0, 0, 0, 0.12); -} -.lgn-light-theme .lgn-raised-button { - box-shadow: 0px 3px 1px -2px rgba(0, 0, 0, 0.2), 0px 2px 2px 0px rgba(0, 0, 0, 0.14), 0px 1px 5px 0px rgba(0, 0, 0, 0.12); -} -.lgn-light-theme .lgn-raised-button:not([disabled]):active { - box-shadow: 0px 5px 5px -3px rgba(0, 0, 0, 0.2), 0px 8px 10px 1px rgba(0, 0, 0, 0.14), 0px 3px 14px 2px rgba(0, 0, 0, 0.12); -} -.lgn-light-theme .lgn-raised-button[disabled] { - box-shadow: 0px 0px 0px 0px rgba(0, 0, 0, 0.2), 0px 0px 0px 0px rgba(0, 0, 0, 0.14), 0px 0px 0px 0px rgba(0, 0, 0, 0.12); -} -.lgn-light-theme .lgn-input:not([disabled]), -.lgn-light-theme select:not([disabled]), .lgn-light-theme .lgn-select:not([disabled]) { - border-color: rgba(0, 0, 0, 0.2509803922); -} -.lgn-light-theme .lgn-input, -.lgn-light-theme select, .lgn-light-theme .lgn-select { - color: rgba(0, 0, 0, 0.87); - background-color: rgba(250, 250, 250, 0.3137254902); -} -.lgn-light-theme .lgn-input:hover, -.lgn-light-theme select:hover, .lgn-light-theme .lgn-select:hover { - border-color: #1a1b1b; -} -.lgn-light-theme .lgn-input:active, -.lgn-light-theme select:active, .lgn-light-theme .lgn-select:active { - border-color: #5469d4; -} -.lgn-light-theme .lgn-input:focus, -.lgn-light-theme select:focus, .lgn-light-theme .lgn-select:focus { - border-color: #5469d4; -} -.lgn-light-theme .lgn-input[color=warn], -.lgn-light-theme select[color=warn], .lgn-light-theme .lgn-select[color=warn] { - border-color: #f44336; -} -.lgn-light-theme .lgn-input::placeholder, -.lgn-light-theme select::placeholder, -.lgn-light-theme .lgn-select::placeholder { - color: #757575; -} -.lgn-light-theme label::before { - border-color: rgba(0, 0, 0, 0.2509803922); -} -.lgn-light-theme label::after { - background: #5469d4; -} -.lgn-light-theme input[type=radio] { - opacity: 0; -} -.lgn-light-theme input[type=radio]:checked + label::before { - border-color: #5469d4; -} -.lgn-light-theme input[type=radio]:focus + label { - opacity: 1; - outline: none; -} -.lgn-light-theme input[type=radio]:disabled + label::before { - border-color: rgba(0, 0, 0, 0.12); -} -.lgn-light-theme input[type=radio]:disabled:focus { - opacity: 0; -} -.lgn-light-theme input[type=checkbox] { - position: absolute; - top: 4px; - left: 0; - width: 16px; - height: 16px; - opacity: 0; - z-index: 0; -} -.lgn-light-theme .lgn-checkbox label:before { - background-color: transparent; - border: 2px solid rgba(0, 0, 0, 0.2509803922); -} -.lgn-light-theme .lgn-checkbox label:after { - border-bottom: 2px solid transparent; - border-right: 2px solid transparent; - background: transparent; -} -.lgn-light-theme input[type=checkbox]:checked + label:before { - background-color: #5469d4; - border-color: #5469d4; -} -.lgn-light-theme input[type=checkbox]:checked + label:after { - border-color: #fff; -} -.lgn-light-theme .lgn-label { - color: #757575; -} -.lgn-light-theme footer { - background-color: #fafafa; - border-top: 1px solid #e3e8ee; -} -.lgn-light-theme a { - color: #5469d4; -} -.lgn-light-theme a:hover, .lgn-light-theme a:active { - color: #6e80da; -} -.lgn-light-theme .lgn-error { - color: #f44336; -} -.lgn-light-theme .lgn-qrcode svg { - background: #fafafa; -} -.lgn-light-theme .lgn-qrcode svg rect.color { - fill: black; -} -.lgn-light-theme .lgn-qrcode svg rect.bg-color { - fill: #fafafa; -} -.lgn-light-theme .lgn-error .lgn-error-message { - color: #f44336; -} -.lgn-light-theme .lgn-login-profile .lgn-names { - border-color: rgba(0, 0, 0, 0.12); -} -.lgn-light-theme .lgn-account-selection { - display: flex; - flex-direction: column; - width: 100%; -} -.lgn-light-theme .lgn-account-selection .lgn-account { - color: inherit; - background: transparent; - box-shadow: inset 0 -1px #e3e8ee; -} -.lgn-light-theme .lgn-account-selection .lgn-account:hover { - background-color: rgba(0, 0, 0, 0.02); -} -.lgn-light-theme .lgn-account-selection .lgn-account:focus { - background-color: rgba(0, 0, 0, 0.05); -} -.lgn-light-theme .lgn-account-selection .lgn-account:active { - background-color: rgba(0, 0, 0, 0.05); -} -.lgn-light-theme .lgn-account-selection .lgn-account .lgn-loginname { - font-size: 14px; - color: #757575; -} -.lgn-light-theme .lgn-account-selection .lgn-account .lgn-session-state { - color: #757575; -} -.lgn-light-theme .lgn-account-selection .lgn-account .lgn-session-state.i0 { - color: #85d996; -} -.lgn-light-theme .lgn-account-selection .lgn-account .lgn-session-state.i1 { - color: #f44336; -} -.lgn-light-theme .lgn-avatar:not(.transparent) { - box-shadow: 0px 3px 1px -2px rgba(0, 0, 0, 0.2), 0px 2px 2px 0px rgba(0, 0, 0, 0.14), 0px 1px 5px 0px rgba(0, 0, 0, 0.12); -} -.lgn-light-theme .lgn-avatar:not(.transparent).lgn-primary { - background-color: #5469d4; -} -.lgn-light-theme .lgn-avatar:not(.transparent).lgn-accent { - background-color: #5469d4; -} -.lgn-light-theme .lgn-avatar:not(.transparent).lgn-warn { - background-color: #f44336; -} -.lgn-light-theme .lgn-avatar:not(.transparent).lgn-primary[disabled], .lgn-light-theme .lgn-avatar:not(.transparent).lgn-accent[disabled], .lgn-light-theme .lgn-avatar:not(.transparent).lgn-warn[disabled], .lgn-light-theme .lgn-avatar:not(.transparent)[disabled][disabled] { - background-color: rgba(0, 0, 0, 0.12); -} -.lgn-light-theme .lgn-avatar .initials.lgn-primary { - color: white; -} -.lgn-light-theme .lgn-avatar .initials.lgn-accent { - color: white; -} -.lgn-light-theme .lgn-avatar .initials.lgn-warn { - color: white; -} -.lgn-light-theme .lgn-avatar .initials.lgn-primary[disabled], .lgn-light-theme .lgn-avatar .initials.lgn-accent[disabled], .lgn-light-theme .lgn-avatar .initials.lgn-warn[disabled], .lgn-light-theme .lgn-avatar .initials[disabled][disabled] { - color: rgba(0, 0, 0, 0.26); -} -.lgn-light-theme .lgn-select, .lgn-light-theme select { - background-image: url("../select_arrow_light.svg"); -} -.lgn-light-theme .lgn-list li::before, .lgn-light-theme ul li::before { - color: #5469d4; -} -.lgn-light-theme .lgn-list li i.lgn-warn, .lgn-light-theme ul li i.lgn-warn { - color: #f44336; -} -.lgn-light-theme .lgn-list li i.lgn-valid, .lgn-light-theme ul li i.lgn-valid { - color: #85d996; -} -.lgn-light-theme .lgn-idp { - border-color: rgba(0, 0, 0, 0.12); - box-shadow: 0px 2px 1px -1px rgba(0, 0, 0, 0.2), 0px 1px 1px 0px rgba(0, 0, 0, 0.14), 0px 1px 3px 0px rgba(0, 0, 0, 0.12); -} -.lgn-light-theme .lgn-idp:not([disabled]):active { - box-shadow: 0px 5px 5px -3px rgba(0, 0, 0, 0.2), 0px 8px 10px 1px rgba(0, 0, 0, 0.14), 0px 3px 14px 2px rgba(0, 0, 0, 0.12); -} -.lgn-light-theme .lgn-idp.google { - color: #8b8d8d; - background-color: white; -} -.lgn-light-theme .lgn-success-label { - color: #0e6245; - background-color: #cbf4c9; + color: var(--zitadel-color-success); + background-color: var(--zitadel-color-success-background); } /*# sourceMappingURL=zitadel.css.map */ diff --git a/internal/ui/login/static/resources/themes/zitadel/css/zitadel.css.map b/internal/ui/login/static/resources/themes/zitadel/css/zitadel.css.map index 2d45e2c211..7675013ff1 100644 --- a/internal/ui/login/static/resources/themes/zitadel/css/zitadel.css.map +++ b/internal/ui/login/static/resources/themes/zitadel/css/zitadel.css.map @@ -1 +1 @@ -{"version":3,"sourceRoot":"","sources":["../../scss/styles/footer/footer.scss","../../scss/styles/header/header.scss","../../scss/styles/button/button.scss","../../scss/styles/button/button_base.scss","../../scss/styles/input/input.scss","../../scss/styles/input/input_base.scss","../../scss/styles/label/label.scss","../../scss/styles/label/label_base.scss","../../scss/styles/radio/radio_base.scss","../../scss/styles/radio/radio.scss","../../scss/styles/a/a.scss","../../scss/styles/identity_provider/identity_provider.scss","../../scss/styles/identity_provider/identity_provider_base.scss","../../scss/styles/error/error.scss","../../scss/styles/qrcode/qrcode.scss","../../scss/styles/container/container.scss","../../scss/styles/account_selection/account_selection.scss","../../scss/styles/avatar/avatar.scss","../../scss/styles/checkbox/checkbox.scss","../../scss/styles/checkbox/checkbox_base.scss","../../scss/styles/select/select.scss","../../scss/styles/select/select_base.scss","../../scss/styles/list/list_base.scss","../../scss/styles/typography/faces/ailerons_font_faces.scss","../../scss/styles/typography/faces/lato_font_faces.scss","../../scss/styles/typography/faces/roboto_font_faces.scss","../../scss/styles/typography/faces/raleway_font_faces.scss","../../scss/styles/typography/faces/pt_sans_font_faces.scss","../../scss/styles/success_label/success_label.scss","../../scss/styles/typography/typography.scss","../../scss/styles/core/core.scss","../../scss/styles/header/header_theme.scss","../../scss/styles/button/button_theme.scss","../../scss/styles/elevation/elevation.scss","../../scss/styles/input/input_theme.scss","../../scss/styles/radio/radio_theme.scss","../../scss/styles/checkbox/checkbox_theme.scss","../../scss/styles/label/label_theme.scss","../../scss/styles/footer/footer_theme.scss","../../scss/styles/a/a_theme.scss","../../scss/styles/error/error_theme.scss","../../scss/styles/qrcode/qrcode_theme.scss","../../scss/styles/container/container_theme.scss","../../scss/styles/account_selection/account_selection_theme.scss","../../scss/styles/avatar/avatar_theme.scss","../../scss/styles/select/select_theme.scss","../../scss/styles/list/list_theme.scss","../../scss/styles/identity_provider/identity_provider_theme.scss","../../scss/styles/success_label/success_label_theme.scss"],"names":[],"mappings":";AAIA;EACI;EACA;EACA;EACA,YAPY;EAQZ;EACA;EACA,SATa;;AAWb;EACI;;AAGJ;EACI;EACA;;AAGJ;EAlBJ;IAmBQ;IACA;IACA;IACA;;;;ACvBR;EACI;EACA;EACA,QALgB;EAMhB,SAPiB;EAQjB;;AAEA;EACI;EACA;EACA;;;ACXR;ECkBE;EACA;EACA;EACA;EACA;EACA;EAGA;EACA;EACA;EACA;EACA;EAGA,QAjCkB;EAkClB,WAnCqB;EAoCrB,aAlCuB;EAmCvB,SAtCmB;EAuCnB,eAnCyB;EAqCzB;;AAEA;EACE;;AAGF;EACE;;;AD1CJ;ECcE;EACA;EACA;EACA;EACA;EACA;EAGA;EACA;EACA;EACA;EACA;EAGA,QAjCkB;EAkClB,WAnCqB;EAoCrB,aAlCuB;EAmCvB,SAtCmB;EAuCnB,eAnCyB;EAqCzB;EAgBA;;AAdA;EACE;;AAGF;EACE;;;ADtCJ;EACE;EACA;EACA,OCCqB;EDArB;EACA;EACA,aCFqB;EDGrB,eCF8B;;ADI9B;EACE,aCJ0B;;;ADQ9B;EACE;EACA,SCf2B;EDgB3B,aCjB+B;;;ADoBjC;EACE;EACA,YC3B4B;;;AD+B5B;EACE;;;AEnCJ;AAAA;ECOI;EACA;EACA,sBAXsB;EAYtB;EACA;EACA;EACA;EACA,eAZsB;EAatB;EACA;EACA;EACA,cAfqB;EAgBrB,QAlBoB;EAmBpB,SArBgB;EAsBhB;EACA;EACA,QAvBe;;AAyBf;AAAA;EACI,WAtB0B;EAuB1B;;;ADrBR;ECCI;EACA;EACA,sBAXsB;EAYtB;EACA;EACA;EACA;EACA,eAZsB;EAatB;EACA;EACA;EACA,cAfqB;EAgBrB,QAlBoB;EAmBpB,SArBgB;EAsBhB;EACA;EACA,QAvBe;;AAyBf;EACI,WAtB0B;EAuB1B;;;ADjBR;EACI;;AAEA;EACI;EACA;EACA;EACA;EACA;;;AElBR;ECGI;EACA,WANkB;EAOlB;EACA,QAPe;EAQf,aAPoB;;;ACMxB;EACI;IACE;;EAGF;IACE;;EAGF;IACE;;;AChBN;EDqBI;EACA;EACA;;AAEA;EACI;;AAGJ;EACI;EACA,QA9BS;EA+BT;EACA,SA7BkB;EA8BlB;EACA;EACA;EACA;EACA;EACA,WAzCc;EA0Cd;;AAEA;EAEI;EACA;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA,OArDK;EAsDL,QAtDK;EAuDL;EACA;;AAGJ;EACI;EACA;EACA,OA7Da;EA8Db,QA9Da;EA+Db;;AAIR;EACI;EACA;EACA;EACA;EACA;;AAEA;EACI;;AAGJ;EACI;;AAGJ;EACI;;AAOA;EACI;EACA;;AAGJ;EACI;;AAKZ;AAAA;AAAA;EAGI;;;AE5GR;EACI;EACA;EACA;EACA;;AAEA;EACI;;;ACLR;ECKI;EACA,QARa;EASb;EACA;EACA;EACA;EACA,SAZc;EAad,eAXoB;EAYpB;EACA;;AAEA;EACI;EACA;;AAGJ;EACI,aAtB4B;EAuB5B;EACA;EACA;;AAIA;EACI;EACA;EACA;EACA;EACA;EACA;EACA;;;ACtCZ;EACI;EACA;EACA;;AACA;EACI;EACA;;;ACNR;EACI;EACA;EACA;EACA;;AAEA;EACI;EACA;EACA;;;ACHR;EACI,WAPsB;EAQtB;EACA;EACA,eAN0B;EAO1B;;AAEA;EAPJ;IAQQ,YAXmB;;;;AAe3B;EACI;EACA;EACA,QAnBmB;EAoBnB,SArBoB;EAsBpB;EACA;;AAGI;EACI;;AAGJ;EACI;;AAIR;EACI;EACA;EACA;EACA;;AAIA;EACI;;AAGJ;EACI;;AAIR;EACI;EACA;EACA;;AAIA;EACI;;AAGJ;EACI;;AAIR;EACI;;AAEA;EACI;EACA;;AAEJ;EACI;EACA;EACA;EACA;EACA;;AAEA;EACI;EACA;;AAGJ;EACI;;AAGA;EACI;;AAMhB;EACI;EACA;EACA;;AAGJ;EACI;EACA;;AAGJ;EACI;EACA;;AAEA;EACI;EACA;;;AAKZ;EACI;;;ACtHJ;EACI;EACA;EACA;;AAEA;EACI;EACA;EACA;EACA;EACA;;AAEA;EACI;;AAGJ;EACI;;AAGJ;EACI;EACA;EACA;EACA;;AAEA;EACI;EACA;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;;AAIR;EACI;;AAGJ;EACI;;;ACrDZ;EACI,QAHc;EAId,OAJc;EAKd;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;;;ACdJ;ECCI;EACA;EACA;EACA,WANqB;EAOrB;EACA;;AAEA;EACI;EACA;EACA;EACA;EACA;EACA;EACA;EACA;;AAIJ;EACI;EACA;EACA;EACA;EACA,WA3BiB;EA4BjB;;AAEA;EACI;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;EACA;EACA;EACA;EACA;;;AChDZ;ECCI;EACA;EACA;EACA;EACA;EACA;EACA;;AACA;EACI;;;ACVJ;EACI;EACA;;AAEA;EACI;;AAIR;EACI;EACA;EACA;EACA;EACA;;AAEA;EACI;EACA;;AAKJ;EACI;EACA;EACA;EACA;EACA;EACA;;AAIR;EACI;EACA;;;ACpCR;EACI;EACA;;ACFJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AC7DJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;ACzEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AC9GJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;ACtBJ;EACI;EACA;EACA;EACA;;;ACkJA;EALE;EA9DF;EAqEE;;;AAGF;EAVE;EA9DF;EA0EE;;;AAGF;EAfE;EA9DF;EA+EE;;;AAGF;EApBE;EA9DF;EAoFE;;;AAGF;EAzBE;EA9DF;;;AA2FA;EA7BE;EA9DF;;AA8FE;EACE;;;AAIJ;EArCE;EA9DF;;;AAuGA;EAzCE;EA9DF;;;AA2GA;EA7CE;EA9DF;;;AA+GA;EAjDE;EA9DF;;;AAmHA;EArDE;EA9DF;EAqHI;;;AAGJ;EA1DE;EA9DF;EA0HE;;;AAGF;EA/DE;EA9DF;EA+HE;;;AAGF;EApEE;EA9DF;EAoIE;;;AAGF;EAzEE;EA9DF;EAyIE;;;ACrNF;EAIE;EACA;;;AAKA;EACE;;;ACNJ;EACI;EACA;EACA;;;ACIN;AAAA;AAAA;EAGE;EACA;;AAyEF;AAAA;AAAA;EACE;;AAEF;AAAA;AAAA;EACE;;AAEF;AAAA;AAAA;EACE;;AAOI;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;EAEI;;;AApFV;AAAA;AAAA;ECwGA;;;ADjGA;EACE;;;AA4DF;EACE;;AAEF;EACE;;AAEF;EACE;;AAOI;EAEI;;AAvER;EAEE;;AAGF;EACE;;AAGF;EACE;;;AAIJ;EACE;EACA;;AAuCF;EACE;;AAEF;EACE;;AAEF;EACE;;AAOI;EAEI;;AAhBV;EACE;;AAEF;EACE;;AAEF;EACE;;AAOI;EAEI;;AAlDR;EACE;;;AAIJ;AAAA;ECiEA;;;AD5DA;EC4DA;;ADzDE;ECyDF;;ADjDE;ECiDF;;;ACnHE;AAAA;EAEE;;;AAGF;AAAA;EAEE;EACA;;AAEA;AAAA;EACE;;AAGF;AAAA;EAuBF;;AAnBE;AAAA;EAmBF;;AAdE;AAAA;EACE;;;AAIJ;AAAA;AAAA;EAGI;;;AC9BA;EACI;;AAGJ;EACI;;;AAIR;EACI;;AAEA;EACI;;AAGJ;EACI;EACA;;AAIA;EACI;;AAaJ;EACI;;;ACtCZ;EACI;EACA;EACA;EACA;EACA;EACA;EACA;;;AAKA;EACI;EACA;;AAGJ;EACI;EACA;EACA;;;AAMJ;EACI;EACA;;AAGJ;EACI;;;AC9BR;EACE;;;ACJF;EACE;EACA;;ACLF;EACE;;AAEA;EAEI;;;ACLN;EACE;;;ACCE;EACI;;AAGJ;EACI;;AAGJ;EACI;;;ACTJ;EACI;;;AAKJ;EAEI;;;ACPR;EACI;EACA;EACA;;AAEA;EACI;EACA;EACA;;AAEA;EAEI;;AAGJ;EACI;;AAGJ;EACI;;AAGJ;EACI;EACA;;AAGJ;EACI;;AAEA;EACI;;AAGJ;EAEI;;;ACtChB;EXqHF;;AWpGE;EACE;;AAEF;EACE;;AAEF;EACE;;AAOE;EAEI;;;AAhBR;EACE;;AAEF;EACE;;AAEF;EACE;;AAOE;EAEI;;;ACjCR;EACI;;;ACCA;EACI;;AAIA;EACI;;AAGJ;EACI;;;ACbZ;EACI;EdqHN;;AcjHM;EdiHN;;Ac7GM;EACI;EACA;;;ACXR;EACI;EACA;;;AlBTJ;EAIE;EACA;;AAKA;EACE;;;ACNJ;EACI;EACA;EACA;;ACIN;AAAA;AAAA;EAGE;EACA;;AAyEF;AAAA;AAAA;EACE;;AAEF;AAAA;AAAA;EACE;;AAEF;AAAA;AAAA;EACE;;AAOI;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;EAEI;;AApFV;AAAA;AAAA;ECwGA;;ADjGA;EACE;;AA4DF;EACE;;AAEF;EACE;;AAEF;EACE;;AAOI;EAEI;;AAvER;EAEE;;AAGF;EACE;;AAGF;EACE;;AAIJ;EACE;EACA;;AAuCF;EACE;;AAEF;EACE;;AAEF;EACE;;AAOI;EAEI;;AAhBV;EACE;;AAEF;EACE;;AAEF;EACE;;AAOI;EAEI;;AAlDR;EACE;;AAIJ;AAAA;ECiEA;;AD5DA;EC4DA;;ADzDE;ECyDF;;ADjDE;ECiDF;;ACnHE;AAAA;EAEE;;AAGF;AAAA;EAEE;EACA;;AAEA;AAAA;EACE;;AAGF;AAAA;EAuBF;;AAnBE;AAAA;EAmBF;;AAdE;AAAA;EACE;;AAIJ;AAAA;AAAA;EAGI;;AC9BA;EACI;;AAGJ;EACI;;AAIR;EACI;;AAEA;EACI;;AAGJ;EACI;EACA;;AAIA;EACI;;AAaJ;EACI;;ACtCZ;EACI;EACA;EACA;EACA;EACA;EACA;EACA;;AAKA;EACI;EACA;;AAGJ;EACI;EACA;EACA;;AAMJ;EACI;EACA;;AAGJ;EACI;;AC9BR;EACE;;ACJF;EACE;EACA;;ACLF;EACE;;AAEA;EAEI;;ACLN;EACE;;ACCE;EACI;;AAGJ;EACI;;AAGJ;EACI;;ACTJ;EACI;;AAKJ;EAEI;;ACPR;EACI;EACA;EACA;;AAEA;EACI;EACA;EACA;;AAEA;EAEI;;AAGJ;EACI;;AAGJ;EACI;;AAGJ;EACI;EACA;;AAGJ;EACI;;AAEA;EACI;;AAGJ;EAEI;;ACtChB;EXqHF;;AWpGE;EACE;;AAEF;EACE;;AAEF;EACE;;AAOE;EAEI;;AAhBR;EACE;;AAEF;EACE;;AAEF;EACE;;AAOE;EAEI;;ACjCR;EACI;;ACCA;EACI;;AAIA;EACI;;AAGJ;EACI;;ACbZ;EACI;EdqHN;;AcjHM;EdiHN;;Ac7GM;EACI;EACA;;ACXR;EACI;EACA;;;AlBTJ;EAIE;EACA;;AAKA;EACE;;;ACNJ;EACI;EACA;EACA;;ACIN;AAAA;AAAA;EAGE;EACA;;AAyEF;AAAA;AAAA;EACE;;AAEF;AAAA;AAAA;EACE;;AAEF;AAAA;AAAA;EACE;;AAOI;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;EAEI;;AApFV;AAAA;AAAA;ECwGA;;ADjGA;EACE;;AA4DF;EACE;;AAEF;EACE;;AAEF;EACE;;AAOI;EAEI;;AAvER;EAEE;;AAGF;EACE;;AAGF;EACE;;AAIJ;EACE;EACA;;AAuCF;EACE;;AAEF;EACE;;AAEF;EACE;;AAOI;EAEI;;AAhBV;EACE;;AAEF;EACE;;AAEF;EACE;;AAOI;EAEI;;AAlDR;EACE;;AAIJ;AAAA;ECiEA;;AD5DA;EC4DA;;ADzDE;ECyDF;;ADjDE;ECiDF;;ACnHE;AAAA;EAEE;;AAGF;AAAA;EAEE;EACA;;AAEA;AAAA;EACE;;AAGF;AAAA;EAuBF;;AAnBE;AAAA;EAmBF;;AAdE;AAAA;EACE;;AAIJ;AAAA;AAAA;EAGI;;AC9BA;EACI;;AAGJ;EACI;;AAIR;EACI;;AAEA;EACI;;AAGJ;EACI;EACA;;AAIA;EACI;;AAaJ;EACI;;ACtCZ;EACI;EACA;EACA;EACA;EACA;EACA;EACA;;AAKA;EACI;EACA;;AAGJ;EACI;EACA;EACA;;AAMJ;EACI;EACA;;AAGJ;EACI;;AC9BR;EACE;;ACJF;EACE;EACA;;ACLF;EACE;;AAEA;EAEI;;ACLN;EACE;;ACCE;EACI;;AAGJ;EACI;;AAGJ;EACI;;ACTJ;EACI;;AAKJ;EAEI;;ACPR;EACI;EACA;EACA;;AAEA;EACI;EACA;EACA;;AAEA;EAEI;;AAGJ;EACI;;AAGJ;EACI;;AAGJ;EACI;EACA;;AAGJ;EACI;;AAEA;EACI;;AAGJ;EAEI;;ACtChB;EXqHF;;AWpGE;EACE;;AAEF;EACE;;AAEF;EACE;;AAOE;EAEI;;AAhBR;EACE;;AAEF;EACE;;AAEF;EACE;;AAOE;EAEI;;ACjCR;EACI;;ACCA;EACI;;AAIA;EACI;;AAGJ;EACI;;ACbZ;EACI;EdqHN;;AcjHM;EdiHN;;Ac7GM;EACI;EACA;;ACXR;EACI;EACA","file":"zitadel.css"} \ No newline at end of file +{"version":3,"sourceRoot":"","sources":["../../scss/styles/vars.scss","../../scss/main.scss","../../scss/styles/footer/footer.scss","../../scss/styles/header/header.scss","../../scss/styles/button/button.scss","../../scss/styles/button/button_base.scss","../../scss/styles/input/input.scss","../../scss/styles/input/input_base.scss","../../scss/styles/label/label.scss","../../scss/styles/label/label_base.scss","../../scss/styles/radio/radio_base.scss","../../scss/styles/radio/radio.scss","../../scss/styles/a/a.scss","../../scss/styles/identity_provider/identity_provider.scss","../../scss/styles/identity_provider/identity_provider_base.scss","../../scss/styles/error/error.scss","../../scss/styles/qrcode/qrcode.scss","../../scss/styles/container/container.scss","../../scss/styles/account_selection/account_selection.scss","../../scss/styles/avatar/avatar.scss","../../scss/styles/checkbox/checkbox.scss","../../scss/styles/checkbox/checkbox_base.scss","../../scss/styles/select/select.scss","../../scss/styles/select/select_base.scss","../../scss/styles/list/list_base.scss","../../scss/styles/typography/faces/ailerons_font_faces.scss","../../scss/styles/typography/faces/lato_font_faces.scss","../../scss/styles/typography/faces/roboto_font_faces.scss","../../scss/styles/typography/faces/raleway_font_faces.scss","../../scss/styles/typography/faces/pt_sans_font_faces.scss","../../scss/styles/success_label/success_label.scss","../../scss/styles/register/register.scss","../../scss/styles/animations.scss","../../scss/styles/typography/typography.scss","../../scss/styles/core/core.scss","../../scss/styles/header/header_theme.scss","../../scss/styles/button/button_theme.scss","../../scss/styles/elevation/elevation.scss","../../scss/styles/input/input_theme.scss","../../scss/styles/radio/radio_theme.scss","../../scss/styles/checkbox/checkbox_theme.scss","../../scss/styles/label/label_theme.scss","../../scss/styles/footer/footer_theme.scss","../../scss/styles/a/a_theme.scss","../../scss/styles/error/error_theme.scss","../../scss/styles/qrcode/qrcode_theme.scss","../../scss/styles/container/container_theme.scss","../../scss/styles/account_selection/account_selection_theme.scss","../../scss/styles/avatar/avatar_theme.scss","../../scss/styles/select/select_theme.scss","../../scss/styles/list/list_theme.scss","../../scss/styles/identity_provider/identity_provider_theme.scss","../../scss/styles/success_label/success_label_theme.scss"],"names":[],"mappings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nKF;EACI;EACA;EACA;EACA;;AAEA;EACI;;AAGJ;EACI;;;AAIR;EACI;;;AAGJ;EACI;;;AChBJ;EACI;EACA;EACA;EACA,YAPY;EAQZ;EACA;EACA,SATa;;AAWb;EACI;;AAGJ;EACI;EACA;EACA;;AAGJ;EAnBJ;IAoBQ;IACA;IACA;IACA;;;AAGJ;EACI;EACA;EACA;;AAEA;EACI;EACA;;AAGJ;EACI;EACA;EACA;;;ACxCZ;EACI;EACA;EACA,QALgB;EAMhB,SAPiB;EAQjB;;AAEA;EACI;EACA;EACA;;;ACXR;ECkBE;EACA;EACA;EACA;EACA;EACA;EAGA;EACA;EACA;EACA;EACA;EAGA,QAjCkB;EAkClB,WAnCqB;EAoCrB,aAlCuB;EAmCvB,SAtCmB;EAuCnB,eAnCyB;EAqCzB;;AAEA;EACE;;AAGF;EACE;;;AD1CJ;ECcE;EACA;EACA;EACA;EACA;EACA;EAGA;EACA;EACA;EACA;EACA;EAGA,QAjCkB;EAkClB,WAnCqB;EAoCrB,aAlCuB;EAmCvB,SAtCmB;EAuCnB,eAnCyB;EAqCzB;EAgBA;;AAdA;EACE;;AAGF;EACE;;;ADtCJ;EACE;EACA;EACA,OCCqB;EDArB;EACA;EACA,aCFqB;EDGrB,eCF8B;;ADI9B;EACE,aCJ0B;;;ADQ9B;EACE;EACA,SCf2B;EDgB3B,aCjB+B;;;ADoBjC;EACE;EACA,YC3B4B;;;AD+B5B;EACE;;;AEnCJ;AAAA;ECOI;EACA;EACA,sBAXsB;EAYtB;EACA;EACA;EACA;EACA,eAZsB;EAatB;EACA;EACA;EACA,cAfqB;EAgBrB,QAlBoB;EAmBpB,SArBgB;EAsBhB;EACA;EACA,QAvBe;;AAyBf;AAAA;EACI,WAtB0B;EAuB1B;;;ADrBR;ECCI;EACA;EACA,sBAXsB;EAYtB;EACA;EACA;EACA;EACA,eAZsB;EAatB;EACA;EACA;EACA,cAfqB;EAgBrB,QAlBoB;EAmBpB,SArBgB;EAsBhB;EACA;EACA,QAvBe;;AAyBf;EACI,WAtB0B;EAuB1B;;;ADjBR;EACI;;AAEA;EACI;EACA;EACA;EACA;EACA;;;AElBR;ECGI;EACA,WANkB;EAOlB;EACA,QAPe;EAQf,aAPoB;;;ACMxB;EACI;IACE;;EAGF;IACE;;EAGF;IACE;;;AChBN;EDqBI;EACA;EACA;;AAEA;EACI;;AAGJ;EACI;EACA,QA9BS;EA+BT;EACA,SA7BkB;EA8BlB;EACA;EACA;EACA;EACA;EACA,WAzCc;EA0Cd;;AAEA;EAEI;EACA;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA,OArDK;EAsDL,QAtDK;EAuDL;EACA;;AAGJ;EACI;EACA;EACA,OA7Da;EA8Db,QA9Da;EA+Db;;AAIR;EACI;EACA;EACA;EACA;EACA;;AAEA;EACI;;AAGJ;EACI;;AAGJ;EACI;;AAOA;EACI;EACA;;AAGJ;EACI;;AAKZ;AAAA;AAAA;EAGI;;;AE5GR;EACI;EACA;EACA;EACA;;AAEA;EACI;;;ACLR;ECKI;EACA,QARa;EASb;EACA;EACA;EACA;EACA,SAZc;EAad,eAXoB;EAYpB;EACA;;AAEA;EACI;EACA;;AAGJ;EACI,aAtB4B;EAuB5B;EACA;EACA;;AAIA;EACI;EACA;EACA;EACA;EACA;EACA;EACA;;;ACtCZ;EACI;EACA;EACA;;AACA;EACI;EACA;;;ACNR;EACI;EACA;EACA;EACA;;AAEA;EACI;EACA;EACA;;;ACHR;EACI,WAPsB;EAQtB;EACA;EACA,eAN0B;EAO1B;;AAEA;EAPJ;IAQQ,YAXmB;;;;AAe3B;EACI;EACA;EACA,QAnBmB;EAoBnB,SArBoB;EAsBpB;EACA;;AAGI;EACI;;AAGJ;EACI;;AAIR;EACI;EACA;EACA;EACA;;AAIA;EACI;;AAGJ;EACI;;AAIR;EACI;EACA;EACA;;AAIA;EACI;;AAGJ;EACI;;AAIR;EACI;;AAEA;EACI;EACA;;AAEJ;EACI;EACA;EACA;EACA;EACA;;AAEA;EACI;EACA;;AAGJ;EACI;;AAGA;EACI;;AAMhB;EACI;EACA;EACA;;AAGJ;EACI;EACA;;AAGJ;EACI;EACA;;AAEA;EACI;EACA;;;AAKZ;EACI;;;ACtHJ;EACI;EACA;EACA;;AAEA;EACI;EACA;EACA;EACA;EACA;;AAEA;EACI;;AAGJ;EACI;;AAGJ;EACI;EACA;EACA;EACA;;AAEA;EACI;EACA;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;;AAIR;EACI;;AAGJ;EACI;;;ACrDZ;EACI,QAHc;EAId,OAJc;EAKd;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;;;AAGJ;EACI;EACA;EACA;;;ACrBJ;ECCI;EACA;EACA;EACA,WANqB;EAOrB;EACA;;AAEA;EACI;EACA;EACA;EACA;EACA;EACA;EACA;EACA;;AAIJ;EACI;EACA;EACA;EACA;EACA,WA3BiB;EA4BjB;;AAEA;EACI;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;EACA;EACA;EACA;EACA;;;AChDZ;ECCI;EACA;EACA;EACA;EACA;EACA;EACA;;AACA;EACI;;;ACVJ;EACI;EACA;;AAEA;EACI;;AAIR;EACI;EACA;EACA;EACA;EACA;;AAEA;EACI;EACA;;AAKJ;EACI;EACA;EACA;EACA;EACA;EACA;;AAIR;EACI;EACA;;;ACpCR;EACI;EACA;;ACFJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AC7DJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;ACzEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AC9GJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;ACtBJ;EACI;EACA;EACA;EACA;;;A5BFJ;EACI;EACA;EACA;EACA,YAPY;EAQZ;EACA;EACA,SATa;;AAWb;EACI;;AAGJ;EACI;EACA;EACA;;AAGJ;EAnBJ;IAoBQ;IACA;IACA;IACA;;;AAGJ;EACI;EACA;EACA;;AAEA;EACI;EACA;;AAGJ;EACI;EACA;EACA;;;ACxCZ;EACI;EACA;EACA,QALgB;EAMhB,SAPiB;EAQjB;;AAEA;EACI;EACA;EACA;;;ACXR;ECkBE;EACA;EACA;EACA;EACA;EACA;EAGA;EACA;EACA;EACA;EACA;EAGA,QAjCkB;EAkClB,WAnCqB;EAoCrB,aAlCuB;EAmCvB,SAtCmB;EAuCnB,eAnCyB;EAqCzB;;AAEA;EACE;;AAGF;EACE;;;AD1CJ;ECcE;EACA;EACA;EACA;EACA;EACA;EAGA;EACA;EACA;EACA;EACA;EAGA,QAjCkB;EAkClB,WAnCqB;EAoCrB,aAlCuB;EAmCvB,SAtCmB;EAuCnB,eAnCyB;EAqCzB;EAgBA;;AAdA;EACE;;AAGF;EACE;;;ADtCJ;EACE;EACA;EACA,OCCqB;EDArB;EACA;EACA,aCFqB;EDGrB,eCF8B;;ADI9B;EACE,aCJ0B;;;ADQ9B;EACE;EACA,SCf2B;EDgB3B,aCjB+B;;;ADoBjC;EACE;EACA,YC3B4B;;;AD+B5B;EACE;;;AEnCJ;AAAA;ECOI;EACA;EACA,sBAXsB;EAYtB;EACA;EACA;EACA;EACA,eAZsB;EAatB;EACA;EACA;EACA,cAfqB;EAgBrB,QAlBoB;EAmBpB,SArBgB;EAsBhB;EACA;EACA,QAvBe;;AAyBf;AAAA;EACI,WAtB0B;EAuB1B;;;ADrBR;ECCI;EACA;EACA,sBAXsB;EAYtB;EACA;EACA;EACA;EACA,eAZsB;EAatB;EACA;EACA;EACA,cAfqB;EAgBrB,QAlBoB;EAmBpB,SArBgB;EAsBhB;EACA;EACA,QAvBe;;AAyBf;EACI,WAtB0B;EAuB1B;;;ADjBR;EACI;;AAEA;EACI;EACA;EACA;EACA;EACA;;;AElBR;ECGI;EACA,WANkB;EAOlB;EACA,QAPe;EAQf,aAPoB;;;ACMxB;EACI;IACE;;EAGF;IACE;;EAGF;IACE;;;AChBN;EDqBI;EACA;EACA;;AAEA;EACI;;AAGJ;EACI;EACA,QA9BS;EA+BT;EACA,SA7BkB;EA8BlB;EACA;EACA;EACA;EACA;EACA,WAzCc;EA0Cd;;AAEA;EAEI;EACA;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA,OArDK;EAsDL,QAtDK;EAuDL;EACA;;AAGJ;EACI;EACA;EACA,OA7Da;EA8Db,QA9Da;EA+Db;;AAIR;EACI;EACA;EACA;EACA;EACA;;AAEA;EACI;;AAGJ;EACI;;AAGJ;EACI;;AAOA;EACI;EACA;;AAGJ;EACI;;AAKZ;AAAA;AAAA;EAGI;;;AE5GR;EACI;EACA;EACA;EACA;;AAEA;EACI;;;ACLR;ECKI;EACA,QARa;EASb;EACA;EACA;EACA;EACA,SAZc;EAad,eAXoB;EAYpB;EACA;;AAEA;EACI;EACA;;AAGJ;EACI,aAtB4B;EAuB5B;EACA;EACA;;AAIA;EACI;EACA;EACA;EACA;EACA;EACA;EACA;;;ACtCZ;EACI;EACA;EACA;;AACA;EACI;EACA;;;ACNR;EACI;EACA;EACA;EACA;;AAEA;EACI;EACA;EACA;;;ACHR;EACI,WAPsB;EAQtB;EACA;EACA,eAN0B;EAO1B;;AAEA;EAPJ;IAQQ,YAXmB;;;;AAe3B;EACI;EACA;EACA,QAnBmB;EAoBnB,SArBoB;EAsBpB;EACA;;AAGI;EACI;;AAGJ;EACI;;AAIR;EACI;EACA;EACA;EACA;;AAIA;EACI;;AAGJ;EACI;;AAIR;EACI;EACA;EACA;;AAIA;EACI;;AAGJ;EACI;;AAIR;EACI;;AAEA;EACI;EACA;;AAEJ;EACI;EACA;EACA;EACA;EACA;;AAEA;EACI;EACA;;AAGJ;EACI;;AAGA;EACI;;AAMhB;EACI;EACA;EACA;;AAGJ;EACI;EACA;;AAGJ;EACI;EACA;;AAEA;EACI;EACA;;;AAKZ;EACI;;;ACtHJ;EACI;EACA;EACA;;AAEA;EACI;EACA;EACA;EACA;EACA;;AAEA;EACI;;AAGJ;EACI;;AAGJ;EACI;EACA;EACA;EACA;;AAEA;EACI;EACA;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;;AAIR;EACI;;AAGJ;EACI;;;ACrDZ;EACI,QAHc;EAId,OAJc;EAKd;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;;;AAGJ;EACI;EACA;EACA;;;ACrBJ;ECCI;EACA;EACA;EACA,WANqB;EAOrB;EACA;;AAEA;EACI;EACA;EACA;EACA;EACA;EACA;EACA;EACA;;AAIJ;EACI;EACA;EACA;EACA;EACA,WA3BiB;EA4BjB;;AAEA;EACI;EACA;EACA;EACA;EACA;EACA;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;EACA;EACA;EACA;EACA;;;AChDZ;ECCI;EACA;EACA;EACA;EACA;EACA;EACA;;AACA;EACI;;;ACVJ;EACI;EACA;;AAEA;EACI;;AAIR;EACI;EACA;EACA;EACA;EACA;;AAEA;EACI;EACA;;AAKJ;EACI;EACA;EACA;EACA;EACA;EACA;;AAIR;EACI;EACA;;;ACpCR;EACI;EACA;;ACFJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AC7DJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;ACzEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AC9GJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;ACtBJ;EACI;EACA;EACA;EACA;;;ALNJ;EACI;EACA;;ACFJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AC7DJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;ACzEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AC9GJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AAGJ;EACI;EACA;EACA;EACA;;AAEJ;EACI;EACA;EACA;EACA;;AZlBJ;EACI,WAPsB;EAQtB;EACA;EACA,eAN0B;EAO1B;;AAEA;EAPJ;IAQQ,YAXmB;;;;AAe3B;EACI;EACA;EACA,QAnBmB;EAoBnB,SArBoB;EAsBpB;EACA;;AAGI;EACI;;AAGJ;EACI;;AAIR;EACI;EACA;EACA;EACA;;AAIA;EACI;;AAGJ;EACI;;AAIR;EACI;EACA;EACA;;AAIA;EACI;;AAGJ;EACI;;AAIR;EACI;;AAEA;EACI;EACA;;AAEJ;EACI;EACA;EACA;EACA;EACA;;AAEA;EACI;EACA;;AAGJ;EACI;;AAGA;EACI;;AAMhB;EACI;EACA;EACA;;AAGJ;EACI;EACA;;AAGJ;EACI;EACA;;AAEA;EACI;EACA;;;AAKZ;EACI;;;AcvHA;EACI;EACA;EACA;;AAEA;EACI;EACA;EACA;EACA;;AAIR;EACI;;;A5BdR;EACI;EACA;EACA,QALgB;EAMhB,SAPiB;EAQjB;;AAEA;EACI;EACA;EACA;;;A6BbR;EACI;IACE;;EAGF;IACE;;EAGF;IACE;;EAGF;IACE;;;AAIN;EACI;EACA;;;ACqIA;EANE;EACA,aAlEY;EAGd;EAsEE;;;AAGF;EAXE;EACA,aAlEY;EAGd;EA2EE;;;AAGF;EAhBE;EACA,aAlEY;EAGd;EAgFE;;;AAGF;EArBE;EACA,aAlEY;EAGd;EAqFE;;;AAGF;EA1BE;EACA,aAlEY;EAGd;;;AA4FA;EA9BE;EACA,aAlEY;EAGd;;AA+FE;EACE;;;AAIJ;EAtCE;EACA,aAlEY;EAGd;;;AAwGA;EA1CE;EACA,aAlEY;EAGd;;;AA4GA;EA9CE;EACA,aAlEY;EAGd;;;AAgHA;EAlDE;EACA,aAlEY;EAGd;;;AAoHA;EAtDE;EACA,aAlEY;EAGd;EAsHI;;;AAGJ;EA3DE;EACA,aAlEY;EAGd;EA2HE;;;AAGF;EAhEE;EACA,aAlEY;EAGd;EAgIE;;;AAGF;EArEE;EACA,aAlEY;EAGd;EAqIE;;;AAGF;EA1EE;EACA,aAlEY;EAGd;EA0IE;;;ACvNF;EACE;EACA;;;AAKA;EACE;;;ACTJ;EACI;EACA;;;ACAN;AAAA;AAAA;EAGE;EACA;;AA8GF;AAAA;AAAA;EACE,OAHM;;AAKR;AAAA;AAAA;EACE,OANM;;AAQR;AAAA;AAAA;EACE,OATM;;AAgBF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;EACI;;;AAxHV;AAAA;AAAA;ECoHA;EDhHE;;;AAGF;EACE;;;AAiGF;EACE,OAHM;;AAKR;EACE,OANM;;AAQR;EACE,OATM;;AAgBF;EACI;;AA3GR;EACE;;AAGF;EACE;;AAGF;EACE;;;AAIJ;EACE;EACA;;AA6EF;EACE,OAHM;;AAKR;EACE,OANM;;AAQR;EACE,OATM;;AAgBF;EACI;;AAOV;EACE;;AAEF;EACE;;AAEF;EACE;;AAOI;EACI;;AA7GR;EACE;;;AAIJ;AAAA;EC8EA;;;ADzEA;ECyEA;;ADtEE;ECsEF;;AD9DE;EC8DF;;;AC7HE;AAAA;EAEE;;;AAGF;AAAA;EAEE;EACA;;AAEA;AAAA;EACE;;AAGF;AAAA;EACE;;AAGF;AAAA;EACE;;AAIF;AAAA;EACE;;;AAIJ;AAAA;AAAA;EAGI;;;AC/BA;EACI;;AAGJ;EACI;;;AAIR;EACI;;AAEA;EACI;;AAGJ;EACI;EACA;;AAIA;EACI;;AAIA;EACI;;AAGJ;EACI;;AAIR;EACI;;;ACrCZ;EACI;EACA;EACA;EACA;EACA;EACA;EACA;;;AAKA;EACI;EACA;;AAGJ;EACI;EACA;EACA;;;AAMJ;EACI;EACA;;AAGJ;EACI;;;AC9BR;EACE;;;ACDF;EACE;EACA;;AAEA;EACE;;AAGF;EACI;EACA;EACA;;;ACbN;EACE;;AAEA;EAEI;;;ACNN;EACE;;;ACAE;EACI;;AAGJ;EACI;;AAGJ;EACI;;;ACTJ;EACI;;;AAKJ;EACI;;;ACNR;EACI;EACA;EACA;;AAEA;EACI;EACA;EACA;;AAEA;EACI;;AAGJ;EACI;;AAGJ;EACI;;AAGJ;EACI;EACA;;AAGJ;EACI;;AAEA;EACI;;AAGJ;EACI;;;ACrChB;EX8HF;;AWjHE;EACE,kBAHM;;AAKR;EACE,kBANM;;AAQR;EACE,kBATM;;AAgBJ;EAEI,kBADY;;;AAfpB;EACE,OAHM;;AAKR;EACE,OANM;;AAQR;EACE,OATM;;AAgBJ;EAEI,OADY;;;AC5BpB;EACI;;;ACAA;EACI;;AAIA;EACI;;AAGJ;EACI;;;ACXd;EACE;Ed6HF;;AczHE;EdyHF;;AcrHE;EACE;EACA;;;ACVF;EACI;EACA","file":"zitadel.css"} \ No newline at end of file diff --git a/internal/ui/login/static/templates/footer.html b/internal/ui/login/static/templates/footer.html index 505626028a..5cb89cc72a 100644 --- a/internal/ui/login/static/templates/footer.html +++ b/internal/ui/login/static/templates/footer.html @@ -1,5 +1,11 @@ {{define "footer"}}