mirror of
https://github.com/zitadel/zitadel.git
synced 2025-12-06 02:12:06 +00:00
feat: token introspection, api clients and auth method private_key_jwt (#1276)
* introspect * testingapplication key * date * client keys * fix client keys * fix client keys * access tokens only for users * AuthMethodPrivateKeyJWT * client keys * set introspection info correctly * managae apis * update oidc pkg * cleanup * merge msater * set current sequence in migration * set current sequence in migration * set current sequence in migration * Apply suggestions from code review Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> * DeleteAuthNKeysByObjectID * ensure authn keys uptodate * update oidc version * merge master * merge master Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
This commit is contained in:
Livio Amstutz
101
internal/key/model/authn_key.go
Normal file
101
internal/key/model/authn_key.go
Normal file
@@ -0,0 +1,101 @@
|
||||
package model
|
||||
|
||||
import (
|
||||
"time"
|
||||
|
||||
"github.com/caos/zitadel/internal/eventstore/models"
|
||||
"github.com/caos/zitadel/internal/model"
|
||||
)
|
||||
|
||||
const (
|
||||
yearLayout = "2006-01-02"
|
||||
defaultExpirationDate = "9999-01-01"
|
||||
)
|
||||
|
||||
type AuthNKeyView struct {
|
||||
ID string
|
||||
ObjectID string
|
||||
ObjectType ObjectType
|
||||
AuthIdentifier string
|
||||
Type AuthNKeyType
|
||||
Sequence uint64
|
||||
CreationDate time.Time
|
||||
ExpirationDate time.Time
|
||||
PublicKey []byte
|
||||
State AuthNKeyState
|
||||
}
|
||||
|
||||
type AuthNKey struct {
|
||||
models.ObjectRoot
|
||||
|
||||
KeyID string
|
||||
ObjectType ObjectType
|
||||
Type AuthNKeyType
|
||||
ExpirationDate time.Time
|
||||
PrivateKey []byte
|
||||
}
|
||||
|
||||
type AuthNKeyType int32
|
||||
|
||||
const (
|
||||
AuthNKeyTypeNONE = iota
|
||||
AuthNKeyTypeJSON
|
||||
)
|
||||
|
||||
type AuthNKeyState int32
|
||||
|
||||
const (
|
||||
AuthNKeyStateActive AuthNKeyState = iota
|
||||
AuthNKeyStateInactive
|
||||
AuthNKeyStateRemoved
|
||||
)
|
||||
|
||||
type AuthNKeySearchRequest struct {
|
||||
Offset uint64
|
||||
Limit uint64
|
||||
SortingColumn AuthNKeySearchKey
|
||||
Asc bool
|
||||
Queries []*AuthNKeySearchQuery
|
||||
}
|
||||
|
||||
type AuthNKeySearchKey int32
|
||||
|
||||
const (
|
||||
AuthNKeyKeyUnspecified AuthNKeySearchKey = iota
|
||||
AuthNKeyKeyID
|
||||
AuthNKeyObjectID
|
||||
AuthNKeyObjectType
|
||||
)
|
||||
|
||||
type ObjectType int32
|
||||
|
||||
const (
|
||||
AuthNKeyObjectTypeUnspecified ObjectType = iota
|
||||
AuthNKeyObjectTypeUser
|
||||
AuthNKeyObjectTypeApplication
|
||||
)
|
||||
|
||||
type AuthNKeySearchQuery struct {
|
||||
Key AuthNKeySearchKey
|
||||
Method model.SearchMethod
|
||||
Value interface{}
|
||||
}
|
||||
|
||||
type AuthNKeySearchResponse struct {
|
||||
Offset uint64
|
||||
Limit uint64
|
||||
TotalResult uint64
|
||||
Result []*AuthNKeyView
|
||||
Sequence uint64
|
||||
Timestamp time.Time
|
||||
}
|
||||
|
||||
func (r *AuthNKeySearchRequest) EnsureLimit(limit uint64) {
|
||||
if r.Limit == 0 || r.Limit > limit {
|
||||
r.Limit = limit
|
||||
}
|
||||
}
|
||||
|
||||
func DefaultExpiration() (time.Time, error) {
|
||||
return time.Parse(yearLayout, defaultExpirationDate)
|
||||
}
|
||||
Reference in New Issue
Block a user