diff --git a/.golangci.yaml b/.golangci.yaml index f480eb8c10..1cae359605 100644 --- a/.golangci.yaml +++ b/.golangci.yaml @@ -4,12 +4,7 @@ issues: max-issues-per-linter: 0 # Set to 0 to disable. max-same-issues: 0 - -run: - concurrency: 4 - timeout: 10m - go: '1.22' - skip-dirs: + exclude-dirs: - .artifacts - .backups - .codecov @@ -25,6 +20,11 @@ run: - openapi - proto - tools + +run: + concurrency: 4 + timeout: 10m + go: '1.22' linters: enable: # Simple linter to check that your code does not contain non-ASCII identifiers [fast: true, auto-fix: false] diff --git a/API_DESIGN.md b/API_DESIGN.md new file mode 100644 index 0000000000..3768c112aa --- /dev/null +++ b/API_DESIGN.md @@ -0,0 +1,344 @@ +# API Design + +This document describes the design principles and conventions for the ZITADEL API. It is scoped to the services and +endpoints of the proprietary ZITADEL API and does not cover any standardized APIs like OAuth 2, OpenID Connect or SCIM. + +## The Basics +ZITADEL follows an API first approach. This means all features can not only be accessed via the UI but also via the API. +The API is designed using the Protobuf specification. The Protobuf specification is then used to generate the API client +and server code in different programming languages. +The API is designed to be used by different clients, such as web applications, mobile applications, and other services. +Therefore, the API is designed to be easy to use, consistent, and reliable. + +Starting with the V2 API, the API and its services use a resource-oriented design. +This means that the API is designed around resources, which are the key entities in the system. +Each resource has a unique identifier and a set of properties that describe the resource. +The entire lifecycle of a resource can be managed using the API. + +> [!IMPORTANT] +> This style guide is a work in progress and will be updated over time. +> Not all parts of the API might follow the guidelines yet. +> However, all new endpoints and services MUST be designed according to this style guide. + +### Protobuf, gRPC and connectRPC + +The API is designed using the Protobuf specification. The Protobuf specification is used to define the API services, messages, and methods. +Starting with the V2 API, the API uses connectRPC as the main transport protocol. +[connectRPC](https://connectrpc.com/) is a protocol that is based on gRPC and HTTP/2. +It allows clients to call the API using connectRPC, gRPC and also HTTP/1.1. + +## Conventions + +The API follows the base conventions of Protobuf and connectRPC. + +Please check out their style guides and concepts for more information: +- Protobuf: https://protobuf.dev/programming-guides/style/ +- gRPC: https://grpc.io/docs/what-is-grpc/core-concepts/ +- Buf: https://buf.build/docs/best-practices/style-guide/ + +Additionally, there are some conventions that are specific to the ZITADEL API. +These conventions are described in the following sections. + +### Versioning + +The services and messages are versioned using major version numbers. This means that any change within a major version number is backward compatible. +Any breaking change requires a new major version number. +Each service is versioned independently. This means that a service can have a different version number than another service. +When creating a new service, start with version `2`, as version `1` is reserved for the old context based API and services. + +Please check out the structure Buf style guide for more information about the folder and package structure: https://buf.build/docs/best-practices/style-guide/ + +### Explicitness + +Make the handling of the API as explicit as possible. Do not make assumptions about the client's knowledge of the system or the API. +Provide clear and concise documentation for the API. + +Do not rely on implicit fallbacks or defaults if the client does not provide certain parameters. +Only use defaults if they are explicitly documented, such as returning a result set for the whole instance if no filter is provided. + +### Naming Conventions + +Names of resources, fields and methods MUST be descriptive and consistent. +Use domain-specific terminology and avoid abbreviations. +For example, use `organization_id` instead of **org_id** or **resource_owner** for the creation of a new user or when returning one. + +> [!NOTE] +> We'll update the resources in the [concepts section](https://zitadel.com/docs/concepts/structure/instance) to describe +> common resources and their meaning. +> Until then, please refer to the following issue: https://github.com/zitadel/zitadel/issues/5888 + +#### Resources and Fields + +When a context is required for creating a resource, the context is added as a field to the resource. +For example, when creating a new user, the organization's id is required. The `organization_id` is added as a field to the `CreateUserRequest`. + +```protobuf +message CreateUserRequest { + ... + string organization_id = 7 [ + (validate.rules).string = {min_len: 1, max_len: 200}, + ]; + ... +} +``` + +Only allow providing a context where it is required. The context MUST not be provided if not required. +For example, when retrieving or updating a user, the `organization_id` is not required, since the user can be determined by the user's id. +However, it is possible to provide the `organization_id` as a filter to retrieve a list of users of a specific organization. + +Prevent the creation of global messages that are used in multiple resources unless they always follow the same pattern. +Use dedicated fields as described above or create a separate message for the specific context, that is only used in the boundary of the same resource. +For example, settings might be set as a default on the instance level, but might be overridden on the organization level. +In this case, the settings could share the same `SettingsContext` message to determine the context of the settings. +But do not create a global `Context` message that is used across the whole API if there are different scenarios and different fields required for the context. +The same applies to messages that are returned by multiple resources. +For example, information about the `User` might be different when managing the user resource itself than when it's returned +as part of an authorization or a manager role, where only limited information is needed. + +Prevent reusing messages for the creation and the retrieval of a resource. +Returning messages might contain additional information that is not required or even not available for the creation of the resource. +What might sound obvious when designing the CreateUserRequest for example, where only an `organization_id` but not the +`organization_name` is available, might not be so obvious when designing some sub-resource like a user's `IdentityProviderLink`, +which might contain an `identity_provider_name` when returned but not when created. + +```protobuf +message CreateUserRequest { + ... + repreated AddIdentityProviderLink identity_provider_links = 8; + ... +} + +message AddIdentityProviderLink { + string identity_provider_id = 1 [ + (validate.rules).string = {min_len: 1, max_len: 200}, + ]; + string user_id = 2 [ + (validate.rules).string = {min_len: 1, max_len: 200}, + ]; + string user_name = 3; +} + +message IdentiyProviderLink { + string identity_provider_id = 1; + string identity_provider_name = 2; + string user_id = 3; + string user_name = 4; +} +``` + +#### Operations and Methods + +Methods on a resource MUST be named using the following convention: + +| Operation | Method Name | Description | +|-----------|--------------------|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| +| Create | Create\ | Create a new resource. If the new resource conflicts with an existing resources uniqueness (id, loginname, ...) the creation MUST be prevented and an error returned. | +| Update | Update\ | Update an existing resource. In most cases this SHOULD allow partial updates. If there are exception, they MUST be explicitly documented on the endpoint. The resource MUST already exists. An error is returned otherwise. | +| Delete | Delete\ | Delete an existing resource. If the resource does not exist, no error SHOULD be returned. In case of an exception to this rule, the behavior MUST clearly be documented. | +| Set | Set\ | Set a resource. This will replace the existing resource with the new resource. In case where the creation and update of a resource do not need to be differentiated, a single `Set` method SHOULD be used. It SHOULD allow partial changes. | +| Get | Get\ | Retrieve a single resource by its unique identifier. If the resource does not exist, an error MUST be returned. | +| List | List\ | Retrieve a list of resources. The endpoint SHOULD provide options to filter, sort and paginate. | + +Methods on a list of resources MUST be named using the following convention: + +| Operation | Method Name | Description | +|-----------|--------------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| +| Add | Add\ | Add a new resource to a list. Any existing unique constraint (id, loginname, ...) will prevent the addition and return an error. | +| Remove | Remove\ | Remove an existing resource from a list. If the resource does not exist in the list, no error SHOULD be returned. In case of an exception to this rule, the behavior MUST clearly be documented. | +| Set | Set\ | Set a list of resources. This will replace the existing list with the new list. | + +Additionally, state changes, specific actions or operations that do not fit into the CRUD operations SHOULD be named according to the action that is performed: +- `Activate` or `Deactivate` for enabling or disabling a resource. +- `Verify` for verifying a resource. +- `Send` for sending a resource. +- etc. + +## Authentication and Authorization + +The API uses OAuth 2 for authorization. There are corresponding middlewares that check the access token for validity and +automatically return an error if the token is invalid. + +Permissions grated to the user are organization specific and might only be checked based on the queried resource. +Therefore, the API does not check the permissions itself but relies on the checks of the functions that are called by the API. +Required permissions need to be documented in the [API documentation](#documentation). + +## Pagination + +The API uses pagination for listing resources. The client can specify a limit and an offset to retrieve a subset of the resources. +Additionally, the client can specify sorting options to sort the resources by a specific field. + +Most listing methods SHOULD provide use the `ListQuery` message to allow the client to specify the limit, offset, and sorting options. +```protobuf + +// ListQuery is a general query object for lists to allow pagination and sorting. +message ListQuery { + uint64 offset = 1; + // limit is the maximum amount of objects returned. The default is set to 100 + // with a maximum of 1000 in the runtime configuration. + // If the limit exceeds the maximum configured ZITADEL will throw an error. + // If no limit is present the default is taken. + uint32 limit = 2; + // Asc is the sorting order. If true the list is sorted ascending, if false + // the list is sorted descending. The default is descending. + bool asc = 3; +} +``` +On the corresponding responses the `ListDetails` can be used to return the total count of the resources +and allow the user to handle their offset and limit accordingly. + + +## Error Handling + +The API returns machine-readable errors in the response body. This includes a status code, an error code and possibly +some details about the error. See the following sections for more information about the status codes, error codes and error messages. + +### Status Codes + +The API uses status codes to indicate the status of a request. Depending on the protocol used to call the API, +the status code is returned as an HTTP status code or as a gRPC / connectRPC status code. +Check the possible status codes https://zitadel.com/docs/apis/statuscodes + +### Error Codes + +Additionally to the status code, the API returns unique error codes for each type of error. +The error codes are used to identify a specific error and can be used to handle the error programmatically. + +> [!NOTE] +> Currently, ZITADEL might already return some error codes. However, they do not follow a specific pattern yet +> and are not documented. We will update the error codes and document them in the future. + +### Error Message and Details + +The API returns additional details about the error in the response body. +This includes a human-readable error message and additional information that can help the client to understand the error +as well as machine-readable details that can be used to handle the error programmatically. +Error details use the Google RPC error details format: https://github.com/googleapis/googleapis/blob/master/google/rpc/error_details.proto + +### Example + +HTTP/1.1 example: +``` +HTTP/1.1 400 Bad Request +Content-Type: application/json + +{ + "code": "user_missing_information", + "message": "missing required information for the creation of the user", + "details": [ + { + "@type": "type.googleapis.com/google.rpc.BadRequest", + "fieldViolations": [ + { + "field": "given_name", + "description": "given name is required" + }, + { + "field": "family_name", + "description": "family name is required" + } + ] + } + ] +} +``` + +gRPC / connectRPC example: +``` +HTTP/2.0 200 OK +Content-Type: application/grpc +Grpc-Message: missing required information for the creation of the user +Grpc-Status: 3 + +{ + "code": "user_missing_information", + "message": "missing required information for the creation of the user", + "details": [ + { + "@type": "type.googleapis.com/google.rpc.BadRequest", + "fieldViolations": [ + { + "field": "given_name", + "description": "given name is required" + }, + { + "field": "family_name", + "description": "family name is required" + } + ] + } + ] +} +``` + +### Documentation + +- Document the purpose of the API, the services, the endpoints, the request and response messages, the error codes and the status codes. +- Describe the fields of the request and response messages, the purpose and if needed the constraints. +- Document if the endpoints requires specific permissions or roles. +- Document and explain the possible error codes and the error messages that can be returned by the API. + +#### Examples + +```protobuf +// CreateUser will create a new user (human or machine) in the specified organization. +// The username must be unique. +// +// For human users: +// The user will receive a verification email if the email address is not marked as verified. +// You can pass a hashed_password. This allows migrating your users from your own system to ZITADEL, without any password +// reset for the user. Please check the required format and supported algorithms: . +// +// Required permission: +// - user.write +// +// Error Codes: +// - user_missing_information: The request is missing required information (either given_name, family_name and/or email) for the creation of the user. Check error details for the missing fields. +// - user_already_exists: The user already exists. The username must be unique. +// - invalid_request: Your request does not have a valid format. Check error details for the reason. +// - permission_denied: You do not have the required permissions to access the requested resource. +// - unauthenticated: You are not authenticated. Please provide a valid access token. +rpc CreatUser(CreatUserRequest) returns (CreatUserResponse) {} +``` + +```protobuf +// ListUsers will return all matching users. By default, we will return all users of your instance that you have permission to read. Make sure to include a limit and sorting for pagination. +// +// Required permission: +// - user.read +// - no permission required to own user +// +// Error Codes: +// - invalid_request: Your request does not have a valid format. Check error details for the reason. +// - permission_denied: You do not have the required permissions to access the requested resource. +// - unauthenticated: You are not authenticated. Please provide a valid access token. +rpc ListUsers(ListUsersRequest) returns (ListUsersResponse) {} +``` + +```protobuf +// VerifyEmail will verify the provided verification code and mark the email as verified on success. +// An error is returned if the verification code is invalid or expired or if the user does not exist. +// Note that if multiple verification codes are generated, only the last one is valid. +// +// Required permission: +// - no permission required, the user must be authenticated +// +// Error Codes: +// - invalid_verification_code: The verification code is invalid or expired. +// - invalid_request: Your request does not have a valid format. Check error details for the reason. +// - unauthenticated: You are not authenticated. Please provide a valid access token. +rpc VerifyEmail (VerifyEmailRequest) returns (VerifyEmailResponse) {} +``` + +```protobuf +message VerifyEmailRequest{ + // The id of the user to verify the email for. + string user_id = 1 [ + (validate.rules).string = {min_len: 1, max_len: 200} + ]; + // The verification code generated and sent to the user. + string verification_code = 2 [ + (validate.rules).string = {min_len: 1, max_len: 20} + ]; +} + +``` \ No newline at end of file diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md index e56ca307d1..6fafd3dd6f 100644 --- a/CONTRIBUTING.md +++ b/CONTRIBUTING.md @@ -141,6 +141,13 @@ Replace "policeman" with "police officer," "manpower" with "workforce," and "bus Ableist language includes words or phrases such as crazy, insane, blind to or blind eye to, cripple, dumb, and others. Choose alternative words depending on the context. +### API + +ZITADEL follows an API first approach. This means all features can not only be accessed via the UI but also via the API. +The API is designed to be used by different clients, such as web applications, mobile applications, and other services. +Therefore, the API is designed to be easy to use, consistent, and reliable. +Please check out the dedicated [API guidelines](./API_DESIGN.md) page when contributing to the API. + ### Developing ZITADEL with Dev Containers Follow the instructions provided by your code editor/IDE to initiate the development container. This typically involves opening the "Command Palette" or similar functionality and searching for commands related to "Dev Containers" or "Remote Containers". The quick start guide for VS Code can found [here](https://code.visualstudio.com/docs/devcontainers/containers#_quick-start-open-an-existing-folder-in-a-container) diff --git a/README.md b/README.md index 592952cdc2..5d4aecf441 100644 --- a/README.md +++ b/README.md @@ -45,6 +45,7 @@ We provide you with a wide range of out-of-the-box features to accelerate your p :white_check_mark: LDAP :white_check_mark: Passkeys / FIDO2 :white_check_mark: OTP +:white_check_mark: SCIM 2.0 Server and an unlimited audit trail is there for you, ready to use. With ZITADEL, you are assured of a robust and customizable turnkey solution for all your authentication and authorization needs. @@ -124,6 +125,7 @@ Authentication - [Custom sessions](https://zitadel.com/docs/guides/integrate/login-ui/username-password) if you need to go beyond OIDC or SAML - [Machine-to-machine](https://zitadel.com/docs/guides/integrate/service-users/authenticate-service-users) with JWT profile, Personal Access Tokens (PAT), and Client Credentials - [Token exchange and impersonation](https://zitadel.com/docs/guides/integrate/token-exchange) +- [Beta: Hosted Login V2](https://zitadel.com/docs/guides/integrate/login/hosted-login#hosted-login-version-2-beta) our new login version 2.0 Multi-Tenancy @@ -137,10 +139,11 @@ Integration - [GRPC and REST APIs](https://zitadel.com/docs/apis/introduction) for every functionality and resource - [Actions](https://zitadel.com/docs/apis/actions/introduction) to call any API, send webhooks, adjust workflows, or customize tokens - [Role Based Access Control (RBAC)](https://zitadel.com/docs/guides/integrate/retrieve-user-roles) +- [SCIM 2.0 Server](https://zitadel.com/docs/apis/scim2) - [Examples and SDKs](https://zitadel.com/docs/sdk-examples/introduction) - [Audit Log and SOC/SIEM](https://zitadel.com/docs/guides/integrate/external-audit-log) - [User registration and onboarding](https://zitadel.com/docs/guides/integrate/onboarding) -- [Hosted and custom login user interface](https://zitadel.com/docs/guides/integrate/login-ui) +- [Hosted and custom login user interface](https://zitadel.com/docs/guides/integrate/login/login-users) Self-Service - [Self-registration](https://zitadel.com/docs/concepts/features/selfservice#registration) including verification @@ -187,6 +190,11 @@ Use [Console](https://zitadel.com/docs/guides/manage/console/overview) or our [A [![Console Showcase](https://user-images.githubusercontent.com/1366906/223663344-67038d5f-4415-4285-ab20-9a4d397e2138.gif)](http://www.youtube.com/watch?v=RPpHktAcCtk "Console Showcase") +### Login V2 + +Check out our new Login V2 version in our [typescript repository](https://github.com/zitadel/typescript) or in our [documentation](https://zitadel.com/docs/guides/integrate/login/hosted-login#hosted-login-version-2-beta) +[![New Login Showcase](https://github.com/user-attachments/assets/cb5c5212-128b-4dc9-b11d-cabfd3f73e26)] + ## Security You can find our security policy [here](./SECURITY.md). diff --git a/cmd/defaults.yaml b/cmd/defaults.yaml index 3615c7fa34..71ad22a4f9 100644 --- a/cmd/defaults.yaml +++ b/cmd/defaults.yaml @@ -416,12 +416,10 @@ Projections: TransactionDuration: 0s BulkLimit: 2000 - # The Notifications projection is used for sending emails and SMS to users + # The Notifications projection is used for preparing the messages (emails and SMS) to be sent to users Notifications: # As notification projections don't result in database statements, retries don't have an effect MaxFailureCount: 10 # ZITADEL_PROJECTIONS_CUSTOMIZATIONS_NOTIFICATIONS_MAXFAILURECOUNT - # Sending emails can take longer than 500ms - TransactionDuration: 5s # ZITADEL_PROJECTIONS_CUSTOMIZATIONS_NOTIFICATIONS_TRANSACTIONDURATION password_complexities: TransactionDuration: 2s # ZITADEL_PROJECTIONS_CUSTOMIZATIONS_PASSWORD_COMPLEXITIES_TRANSACTIONDURATION lockout_policy: @@ -453,34 +451,12 @@ Notifications: # If set to 0, no notification request events will be handled. This can be useful when running in # multi binary / pod setup and allowing only certain executables to process the events. Workers: 1 # ZITADEL_NOTIFIACATIONS_WORKERS - # The amount of events a single worker will process in a run. - BulkLimit: 10 # ZITADEL_NOTIFIACATIONS_BULKLIMIT - # Time interval between scheduled notifications for request events - RequeueEvery: 5s # ZITADEL_NOTIFIACATIONS_REQUEUEEVERY - # The amount of workers processing the notification retry events. - # If set to 0, no notification retry events will be handled. This can be useful when running in - # multi binary / pod setup and allowing only certain executables to process the events. - RetryWorkers: 1 # ZITADEL_NOTIFIACATIONS_RETRYWORKERS - # Time interval between scheduled notifications for retry events - RetryRequeueEvery: 5s # ZITADEL_NOTIFIACATIONS_RETRYREQUEUEEVERY - # Only instances are projected, for which at least a projection-relevant event exists within the timeframe - # from HandleActiveInstances duration in the past until the projection's current time - # If set to 0 (default), every instance is always considered active - HandleActiveInstances: 0s # ZITADEL_NOTIFIACATIONS_HANDLEACTIVEINSTANCES - # The maximum duration a transaction remains open - # before it spots left folding additional events - # and updates the table. + # The maximum duration a job can do it's work before it is considered as failed. TransactionDuration: 10s # ZITADEL_NOTIFIACATIONS_TRANSACTIONDURATION # Automatically cancel the notification after the amount of failed attempts MaxAttempts: 3 # ZITADEL_NOTIFIACATIONS_MAXATTEMPTS # Automatically cancel the notification if it cannot be handled within a specific time MaxTtl: 5m # ZITADEL_NOTIFIACATIONS_MAXTTL - # Failed attempts are retried after a confogired delay (with exponential backoff). - # Set a minimum and maximum delay and a factor for the backoff - MinRetryDelay: 5s # ZITADEL_NOTIFIACATIONS_MINRETRYDELAY - MaxRetryDelay: 1m # ZITADEL_NOTIFIACATIONS_MAXRETRYDELAY - # Any factor below 1 will be set to 1 - RetryDelayFactor: 1.5 # ZITADEL_NOTIFIACATIONS_RETRYDELAYFACTOR Auth: # See Projections.BulkLimit @@ -1321,6 +1297,8 @@ InternalAuthZ: - "userschema.read" - "userschema.write" - "userschema.delete" + - "session.read" + - "session.delete" - Role: "IAM_OWNER_VIEWER" Permissions: - "iam.read" @@ -1356,6 +1334,7 @@ InternalAuthZ: - "action.target.read" - "action.execution.read" - "userschema.read" + - "session.read" - Role: "IAM_ORG_MANAGER" Permissions: - "org.read" diff --git a/cmd/mirror/projections.go b/cmd/mirror/projections.go index a4987a48f6..c15747e74a 100644 --- a/cmd/mirror/projections.go +++ b/cmd/mirror/projections.go @@ -221,6 +221,7 @@ func projections( keys.OIDC, config.OIDC.DefaultBackChannelLogoutLifetime, client, + nil, ) config.Auth.Spooler.Client = client diff --git a/cmd/setup/49.go b/cmd/setup/49.go new file mode 100644 index 0000000000..28bf797110 --- /dev/null +++ b/cmd/setup/49.go @@ -0,0 +1,39 @@ +package setup + +import ( + "context" + "embed" + "fmt" + + "github.com/zitadel/logging" + + "github.com/zitadel/zitadel/internal/database" + "github.com/zitadel/zitadel/internal/eventstore" +) + +type InitPermittedOrgsFunction struct { + eventstoreClient *database.DB +} + +var ( + //go:embed 49/*.sql + permittedOrgsFunction embed.FS +) + +func (mig *InitPermittedOrgsFunction) Execute(ctx context.Context, _ eventstore.Event) error { + statements, err := readStatements(permittedOrgsFunction, "49", "") + if err != nil { + return err + } + for _, stmt := range statements { + logging.WithFields("file", stmt.file, "migration", mig.String()).Info("execute statement") + if _, err := mig.eventstoreClient.ExecContext(ctx, stmt.query); err != nil { + return fmt.Errorf("%s %s: %w", mig.String(), stmt.file, err) + } + } + return nil +} + +func (*InitPermittedOrgsFunction) String() string { + return "49_init_permitted_orgs_function" +} diff --git a/cmd/setup/49/01-permitted_orgs_function.sql b/cmd/setup/49/01-permitted_orgs_function.sql new file mode 100644 index 0000000000..9f291c016b --- /dev/null +++ b/cmd/setup/49/01-permitted_orgs_function.sql @@ -0,0 +1,56 @@ +DROP FUNCTION IF EXISTS eventstore.permitted_orgs; + +CREATE OR REPLACE FUNCTION eventstore.permitted_orgs( + instanceId TEXT + , userId TEXT + , perm TEXT + , filter_orgs TEXT + + , org_ids OUT TEXT[] +) + LANGUAGE 'plpgsql' + STABLE +AS $$ +DECLARE + matched_roles TEXT[]; -- roles containing permission +BEGIN + SELECT array_agg(rp.role) INTO matched_roles + FROM eventstore.role_permissions rp + WHERE rp.instance_id = instanceId + AND rp.permission = perm; + + -- First try if the permission was granted thru an instance-level role + DECLARE + has_instance_permission bool; + BEGIN + SELECT true INTO has_instance_permission + FROM eventstore.instance_members im + WHERE im.role = ANY(matched_roles) + AND im.instance_id = instanceId + AND im.user_id = userId + LIMIT 1; + + IF has_instance_permission THEN + -- Return all organizations or only those in filter_orgs + SELECT array_agg(o.org_id) INTO org_ids + FROM eventstore.instance_orgs o + WHERE o.instance_id = instanceId + AND CASE WHEN filter_orgs != '' + THEN o.org_id IN (filter_orgs) + ELSE TRUE END; + RETURN; + END IF; + END; + + -- Return the organizations where permission were granted thru org-level roles + SELECT array_agg(org_id) INTO org_ids + FROM ( + SELECT DISTINCT om.org_id + FROM eventstore.org_members om + WHERE om.role = ANY(matched_roles) + AND om.instance_id = instanceID + AND om.user_id = userId + ); + RETURN; +END; +$$; diff --git a/cmd/setup/50.go b/cmd/setup/50.go new file mode 100644 index 0000000000..fea69f79ce --- /dev/null +++ b/cmd/setup/50.go @@ -0,0 +1,27 @@ +package setup + +import ( + "context" + _ "embed" + + "github.com/zitadel/zitadel/internal/database" + "github.com/zitadel/zitadel/internal/eventstore" +) + +var ( + //go:embed 50.sql + addUsePKCE string +) + +type IDPTemplate6UsePKCE struct { + dbClient *database.DB +} + +func (mig *IDPTemplate6UsePKCE) Execute(ctx context.Context, _ eventstore.Event) error { + _, err := mig.dbClient.ExecContext(ctx, addUsePKCE) + return err +} + +func (mig *IDPTemplate6UsePKCE) String() string { + return "50_idp_templates6_add_use_pkce" +} diff --git a/cmd/setup/50.sql b/cmd/setup/50.sql new file mode 100644 index 0000000000..4ff0fd7042 --- /dev/null +++ b/cmd/setup/50.sql @@ -0,0 +1,2 @@ +ALTER TABLE IF EXISTS projections.idp_templates6_oauth2 ADD COLUMN IF NOT EXISTS use_pkce BOOLEAN; +ALTER TABLE IF EXISTS projections.idp_templates6_oidc ADD COLUMN IF NOT EXISTS use_pkce BOOLEAN; \ No newline at end of file diff --git a/cmd/setup/config.go b/cmd/setup/config.go index d782a32dd6..6706d219e6 100644 --- a/cmd/setup/config.go +++ b/cmd/setup/config.go @@ -137,6 +137,8 @@ type Steps struct { s46InitPermissionFunctions *InitPermissionFunctions s47FillMembershipFields *FillMembershipFields s48Apps7SAMLConfigsLoginVersion *Apps7SAMLConfigsLoginVersion + s49InitPermittedOrgsFunction *InitPermittedOrgsFunction + s50IDPTemplate6UsePKCE *IDPTemplate6UsePKCE } func MustNewSteps(v *viper.Viper) *Steps { diff --git a/cmd/setup/river_queue_repeatable.go b/cmd/setup/river_queue_repeatable.go index e88293256b..5248894a8f 100644 --- a/cmd/setup/river_queue_repeatable.go +++ b/cmd/setup/river_queue_repeatable.go @@ -16,7 +16,7 @@ func (mig *RiverMigrateRepeatable) Execute(ctx context.Context, _ eventstore.Eve if mig.client.Type() != "postgres" { return nil } - return queue.New(mig.client).ExecuteMigrations(ctx) + return queue.NewMigrator(mig.client).Execute(ctx) } func (mig *RiverMigrateRepeatable) String() string { diff --git a/cmd/setup/setup.go b/cmd/setup/setup.go index bfa289ab36..b693df3022 100644 --- a/cmd/setup/setup.go +++ b/cmd/setup/setup.go @@ -37,6 +37,7 @@ import ( notify_handler "github.com/zitadel/zitadel/internal/notification" "github.com/zitadel/zitadel/internal/query" "github.com/zitadel/zitadel/internal/query/projection" + "github.com/zitadel/zitadel/internal/queue" es_v4 "github.com/zitadel/zitadel/internal/v2/eventstore" es_v4_pg "github.com/zitadel/zitadel/internal/v2/eventstore/postgres" "github.com/zitadel/zitadel/internal/webauthn" @@ -174,37 +175,12 @@ func Setup(ctx context.Context, config *Config, steps *Steps, masterKey string) steps.s46InitPermissionFunctions = &InitPermissionFunctions{eventstoreClient: dbClient} steps.s47FillMembershipFields = &FillMembershipFields{eventstore: eventstoreClient} steps.s48Apps7SAMLConfigsLoginVersion = &Apps7SAMLConfigsLoginVersion{dbClient: dbClient} + steps.s49InitPermittedOrgsFunction = &InitPermittedOrgsFunction{eventstoreClient: dbClient} + steps.s50IDPTemplate6UsePKCE = &IDPTemplate6UsePKCE{dbClient: dbClient} err = projection.Create(ctx, dbClient, eventstoreClient, config.Projections, nil, nil, nil) logging.OnError(err).Fatal("unable to start projections") - repeatableSteps := []migration.RepeatableMigration{ - &externalConfigChange{ - es: eventstoreClient, - ExternalDomain: config.ExternalDomain, - ExternalPort: config.ExternalPort, - ExternalSecure: config.ExternalSecure, - defaults: config.SystemDefaults, - }, - &projectionTables{ - es: eventstoreClient, - Version: build.Version(), - }, - &DeleteStaleOrgFields{ - eventstore: eventstoreClient, - }, - &FillFieldsForInstanceDomains{ - eventstore: eventstoreClient, - }, - &SyncRolePermissions{ - eventstore: eventstoreClient, - rolePermissionMappings: config.InternalAuthZ.RolePermissionMappings, - }, - &RiverMigrateRepeatable{ - client: dbClient, - }, - } - for _, step := range []migration.Migration{ steps.s14NewEventsTable, steps.s40InitPushFunc, @@ -212,6 +188,7 @@ func Setup(ctx context.Context, config *Config, steps *Steps, masterKey string) steps.s2AssetsTable, steps.s28AddFieldTable, steps.s31AddAggregateIndexToFields, + steps.s46InitPermissionFunctions, steps.FirstInstance, steps.s5LastFailed, steps.s6OwnerRemoveColumns, @@ -236,12 +213,43 @@ func Setup(ctx context.Context, config *Config, steps *Steps, masterKey string) steps.s38BackChannelLogoutNotificationStart, steps.s44ReplaceCurrentSequencesIndex, steps.s45CorrectProjectOwners, - steps.s46InitPermissionFunctions, steps.s47FillMembershipFields, + steps.s49InitPermittedOrgsFunction, + steps.s50IDPTemplate6UsePKCE, } { mustExecuteMigration(ctx, eventstoreClient, step, "migration failed") } + commands, _, _, _ := startCommandsQueries(ctx, eventstoreClient, eventstoreV4, dbClient, masterKey, config) + + repeatableSteps := []migration.RepeatableMigration{ + &externalConfigChange{ + es: eventstoreClient, + ExternalDomain: config.ExternalDomain, + ExternalPort: config.ExternalPort, + ExternalSecure: config.ExternalSecure, + defaults: config.SystemDefaults, + }, + &projectionTables{ + es: eventstoreClient, + Version: build.Version(), + }, + &DeleteStaleOrgFields{ + eventstore: eventstoreClient, + }, + &FillFieldsForInstanceDomains{ + eventstore: eventstoreClient, + }, + &SyncRolePermissions{ + commands: commands, + eventstore: eventstoreClient, + rolePermissionMappings: config.InternalAuthZ.RolePermissionMappings, + }, + &RiverMigrateRepeatable{ + client: dbClient, + }, + } + for _, repeatableStep := range repeatableSteps { mustExecuteMigration(ctx, eventstoreClient, repeatableStep, "unable to migrate repeatable step") } @@ -267,11 +275,6 @@ func Setup(ctx context.Context, config *Config, steps *Steps, masterKey string) initProjections( ctx, eventstoreClient, - eventstoreV4, - dbClient, - dbClient, - masterKey, - config, ) } } @@ -332,18 +335,20 @@ func readStatements(fs embed.FS, folder, typ string) ([]statement, error) { return statements, nil } -func initProjections( +func startCommandsQueries( ctx context.Context, eventstoreClient *eventstore.Eventstore, eventstoreV4 *es_v4.EventStore, - queryDBClient, - projectionDBClient *database.DB, + dbClient *database.DB, masterKey string, config *Config, +) ( + *command.Commands, + *query.Queries, + *admin_view.View, + *auth_view.View, ) { - logging.Info("init-projections is currently in beta") - - keyStorage, err := cryptoDB.NewKeyStorage(queryDBClient, masterKey) + keyStorage, err := cryptoDB.NewKeyStorage(dbClient, masterKey) logging.OnError(err).Fatal("unable to start key storage") keys, err := encryption.EnsureEncryptionKeys(ctx, config.EncryptionKeys, keyStorage) @@ -351,7 +356,7 @@ func initProjections( err = projection.Create( ctx, - queryDBClient, + dbClient, eventstoreClient, projection.Config{ RetryFailedAfter: config.InitProjections.RetryFailedAfter, @@ -363,19 +368,15 @@ func initProjections( config.SystemAPIUsers, ) logging.OnError(err).Fatal("unable to start projections") - for _, p := range projection.Projections() { - err := migration.Migrate(ctx, eventstoreClient, p) - logging.WithFields("name", p.String()).OnError(err).Fatal("migration failed") - } - staticStorage, err := config.AssetStorage.NewStorage(queryDBClient.DB) + staticStorage, err := config.AssetStorage.NewStorage(dbClient.DB) logging.OnError(err).Fatal("unable to start asset storage") - adminView, err := admin_view.StartView(queryDBClient) + adminView, err := admin_view.StartView(dbClient) logging.OnError(err).Fatal("unable to start admin view") admin_handler.Register(ctx, admin_handler.Config{ - Client: queryDBClient, + Client: dbClient, Eventstore: eventstoreClient, BulkLimit: config.InitProjections.BulkLimit, FailureCountUntilSkip: uint64(config.InitProjections.MaxFailureCount), @@ -383,22 +384,18 @@ func initProjections( adminView, staticStorage, ) - for _, p := range admin_handler.Projections() { - err := migration.Migrate(ctx, eventstoreClient, p) - logging.WithFields("name", p.String()).OnError(err).Fatal("migration failed") - } sessionTokenVerifier := internal_authz.SessionTokenVerifier(keys.OIDC) - cacheConnectors, err := connector.StartConnectors(config.Caches, queryDBClient) + cacheConnectors, err := connector.StartConnectors(config.Caches, dbClient) logging.OnError(err).Fatal("unable to start caches") queries, err := query.StartQueries( ctx, eventstoreClient, eventstoreV4.Querier, - queryDBClient, - projectionDBClient, + dbClient, + dbClient, cacheConnectors, config.Projections, config.SystemDefaults, @@ -420,11 +417,11 @@ func initProjections( ) logging.OnError(err).Fatal("unable to start queries") - authView, err := auth_view.StartView(queryDBClient, keys.OIDC, queries, eventstoreClient) + authView, err := auth_view.StartView(dbClient, keys.OIDC, queries, eventstoreClient) logging.OnError(err).Fatal("unable to start admin view") auth_handler.Register(ctx, auth_handler.Config{ - Client: queryDBClient, + Client: dbClient, Eventstore: eventstoreClient, BulkLimit: config.InitProjections.BulkLimit, FailureCountUntilSkip: uint64(config.InitProjections.MaxFailureCount), @@ -432,16 +429,13 @@ func initProjections( authView, queries, ) - for _, p := range auth_handler.Projections() { - err := migration.Migrate(ctx, eventstoreClient, p) - logging.WithFields("name", p.String()).OnError(err).Fatal("migration failed") - } - authZRepo, err := authz.Start(queries, eventstoreClient, queryDBClient, keys.OIDC, config.ExternalSecure) + authZRepo, err := authz.Start(queries, eventstoreClient, dbClient, keys.OIDC, config.ExternalSecure) logging.OnError(err).Fatal("unable to start authz repo") permissionCheck := func(ctx context.Context, permission, orgID, resourceID string) (err error) { return internal_authz.CheckPermission(ctx, authZRepo, config.InternalAuthZ.RolePermissionMappings, permission, orgID, resourceID) } + commands, err := command.StartCommands(ctx, eventstoreClient, cacheConnectors, @@ -473,6 +467,11 @@ func initProjections( config.DefaultInstance.SecretGenerators, ) logging.OnError(err).Fatal("unable to start commands") + q, err := queue.NewQueue(&queue.Config{ + Client: dbClient, + }) + logging.OnError(err).Fatal("unable to start queue") + notify_handler.Register( ctx, config.Projections.Customizations["notifications"], @@ -494,8 +493,34 @@ func initProjections( keys.SMS, keys.OIDC, config.OIDC.DefaultBackChannelLogoutLifetime, - queryDBClient, + dbClient, + q, ) + + return commands, queries, adminView, authView +} + +func initProjections( + ctx context.Context, + eventstoreClient *eventstore.Eventstore, +) { + logging.Info("init-projections is currently in beta") + + for _, p := range projection.Projections() { + err := migration.Migrate(ctx, eventstoreClient, p) + logging.WithFields("name", p.String()).OnError(err).Fatal("migration failed") + } + + for _, p := range admin_handler.Projections() { + err := migration.Migrate(ctx, eventstoreClient, p) + logging.WithFields("name", p.String()).OnError(err).Fatal("migration failed") + } + + for _, p := range auth_handler.Projections() { + err := migration.Migrate(ctx, eventstoreClient, p) + logging.WithFields("name", p.String()).OnError(err).Fatal("migration failed") + } + for _, p := range notify_handler.Projections() { err := migration.Migrate(ctx, eventstoreClient, p) logging.WithFields("name", p.String()).OnError(err).Fatal("migration failed") diff --git a/cmd/setup/sync_role_permissions.go b/cmd/setup/sync_role_permissions.go index b38b075d82..5c380265b5 100644 --- a/cmd/setup/sync_role_permissions.go +++ b/cmd/setup/sync_role_permissions.go @@ -2,29 +2,22 @@ package setup import ( "context" - "database/sql" _ "embed" "fmt" - "strings" "github.com/zitadel/logging" "github.com/zitadel/zitadel/internal/api/authz" - "github.com/zitadel/zitadel/internal/database" + "github.com/zitadel/zitadel/internal/command" "github.com/zitadel/zitadel/internal/eventstore" "github.com/zitadel/zitadel/internal/repository/instance" - "github.com/zitadel/zitadel/internal/repository/permission" -) - -var ( - //go:embed sync_role_permissions.sql - getRolePermissionOperationsQuery string ) // SyncRolePermissions is a repeatable step which synchronizes the InternalAuthZ // RolePermissionMappings from the configuration to the database. // This is needed until role permissions are manageable over the API. type SyncRolePermissions struct { + commands *command.Commands eventstore *eventstore.Eventstore rolePermissionMappings []authz.RoleMapping } @@ -38,18 +31,11 @@ func (mig *SyncRolePermissions) Execute(ctx context.Context, _ eventstore.Event) func (mig *SyncRolePermissions) executeSystem(ctx context.Context) error { logging.WithFields("migration", mig.String()).Info("prepare system role permission sync events") - - target := rolePermissionMappingsToDatabaseMap(mig.rolePermissionMappings, true) - cmds, err := mig.synchronizeCommands(ctx, "SYSTEM", target) + details, err := mig.commands.SynchronizeRolePermission(ctx, "SYSTEM", mig.rolePermissionMappings) if err != nil { return err } - events, err := mig.eventstore.Push(ctx, cmds...) - if err != nil { - return err - } - - logging.WithFields("migration", mig.String(), "pushed_events", len(events)).Info("pushed system role permission sync events") + logging.WithFields("migration", mig.String(), "sequence", details.Sequence).Info("pushed system role permission sync events") return nil } @@ -70,51 +56,17 @@ func (mig *SyncRolePermissions) executeInstances(ctx context.Context) error { if err != nil { return err } - target := rolePermissionMappingsToDatabaseMap(mig.rolePermissionMappings, false) for i, instanceID := range instances { logging.WithFields("instance_id", instanceID, "migration", mig.String(), "progress", fmt.Sprintf("%d/%d", i+1, len(instances))).Info("prepare instance role permission sync events") - cmds, err := mig.synchronizeCommands(ctx, instanceID, target) + details, err := mig.commands.SynchronizeRolePermission(ctx, instanceID, mig.rolePermissionMappings) if err != nil { return err } - events, err := mig.eventstore.Push(ctx, cmds...) - if err != nil { - return err - } - logging.WithFields("instance_id", instanceID, "migration", mig.String(), "pushed_events", len(events)).Info("pushed instance role permission sync events") + logging.WithFields("instance_id", instanceID, "migration", mig.String(), "sequence", details.Sequence).Info("pushed instance role permission sync events") } return nil } -// synchronizeCommands checks the current state of role permissions in the eventstore for the aggregate. -// It returns the commands required to reach the desired state passed in target. -// For system level permissions aggregateID must be set to `SYSTEM`, -// else it is the instance ID. -func (mig *SyncRolePermissions) synchronizeCommands(ctx context.Context, aggregateID string, target database.Map[[]string]) (cmds []eventstore.Command, err error) { - aggregate := permission.NewAggregate(aggregateID) - err = mig.eventstore.Client().QueryContext(ctx, func(rows *sql.Rows) error { - for rows.Next() { - var operation, role, perm string - if err := rows.Scan(&operation, &role, &perm); err != nil { - return err - } - logging.WithFields("aggregate_id", aggregateID, "migration", mig.String(), "operation", operation, "role", role, "permission", perm).Debug("sync role permission") - switch operation { - case "add": - cmds = append(cmds, permission.NewAddedEvent(ctx, aggregate, role, perm)) - case "remove": - cmds = append(cmds, permission.NewRemovedEvent(ctx, aggregate, role, perm)) - } - } - return rows.Close() - - }, getRolePermissionOperationsQuery, aggregateID, target) - if err != nil { - return nil, err - } - return cmds, err -} - func (*SyncRolePermissions) String() string { return "repeatable_sync_role_permissions" } @@ -122,13 +74,3 @@ func (*SyncRolePermissions) String() string { func (*SyncRolePermissions) Check(lastRun map[string]interface{}) bool { return true } - -func rolePermissionMappingsToDatabaseMap(mappings []authz.RoleMapping, system bool) database.Map[[]string] { - out := make(database.Map[[]string], len(mappings)) - for _, m := range mappings { - if system == strings.HasPrefix(m.Role, "SYSTEM") { - out[m.Role] = m.Permissions - } - } - return out -} diff --git a/cmd/start/start.go b/cmd/start/start.go index 4091213d2d..12062951a9 100644 --- a/cmd/start/start.go +++ b/cmd/start/start.go @@ -92,6 +92,7 @@ import ( "github.com/zitadel/zitadel/internal/net" "github.com/zitadel/zitadel/internal/notification" "github.com/zitadel/zitadel/internal/query" + "github.com/zitadel/zitadel/internal/queue" "github.com/zitadel/zitadel/internal/static" es_v4 "github.com/zitadel/zitadel/internal/v2/eventstore" es_v4_pg "github.com/zitadel/zitadel/internal/v2/eventstore/postgres" @@ -143,10 +144,6 @@ type Server struct { func startZitadel(ctx context.Context, config *Config, masterKey string, server chan<- *Server) error { showBasicInformation(config) - // sink Server is stubbed out in production builds, see function's godoc. - closeSink := sink.StartServer() - defer closeSink() - i18n.MustLoadSupportedLanguagesFromDir() dbClient, err := database.Connect(config.Database, false) @@ -254,6 +251,10 @@ func startZitadel(ctx context.Context, config *Config, masterKey string, server } defer commands.Close(ctx) // wait for background jobs + // sink Server is stubbed out in production builds, see function's godoc. + closeSink := sink.StartServer(commands) + defer closeSink() + clock := clockpkg.New() actionsExecutionStdoutEmitter, err := logstore.NewEmitter[*record.ExecutionLog](ctx, clock, &logstore.EmitterConfig{Enabled: config.LogStore.Execution.Stdout.Enabled}, stdout.NewStdoutEmitter[*record.ExecutionLog]()) if err != nil { @@ -267,6 +268,13 @@ func startZitadel(ctx context.Context, config *Config, masterKey string, server actionsLogstoreSvc := logstore.New(queries, actionsExecutionDBEmitter, actionsExecutionStdoutEmitter) actions.SetLogstoreService(actionsLogstoreSvc) + q, err := queue.NewQueue(&queue.Config{ + Client: dbClient, + }) + if err != nil { + return err + } + notification.Register( ctx, config.Projections.Customizations["notifications"], @@ -289,9 +297,14 @@ func startZitadel(ctx context.Context, config *Config, masterKey string, server keys.OIDC, config.OIDC.DefaultBackChannelLogoutLifetime, dbClient, + q, ) notification.Start(ctx) + if err = q.Start(ctx); err != nil { + return err + } + router := mux.NewRouter() tlsConfig, err := config.TLS.Config() if err != nil { @@ -560,7 +573,7 @@ func startAPIs( if err := apis.RegisterService(ctx, oidc_v2beta.CreateServer(commands, queries, oidcServer, config.ExternalSecure)); err != nil { return nil, err } - if err := apis.RegisterService(ctx, oidc_v2.CreateServer(commands, queries, oidcServer, config.ExternalSecure)); err != nil { + if err := apis.RegisterService(ctx, oidc_v2.CreateServer(commands, queries, oidcServer, config.ExternalSecure, keys.OIDC)); err != nil { return nil, err } // After SAML provider so that the callback endpoint can be used diff --git a/console/angular.json b/console/angular.json index 278498ccd7..5564b2c428 100644 --- a/console/angular.json +++ b/console/angular.json @@ -63,7 +63,7 @@ { "type": "initial", "maximumWarning": "8mb", - "maximumError": "9mb" + "maximumError": "10mb" }, { "type": "anyComponentStyle", diff --git a/console/package.json b/console/package.json index fcf3a4bbf8..2c1d38da1b 100644 --- a/console/package.json +++ b/console/package.json @@ -24,6 +24,8 @@ "@angular/platform-browser-dynamic": "^16.2.5", "@angular/router": "^16.2.5", "@angular/service-worker": "^16.2.5", + "@connectrpc/connect": "^2.0.0", + "@connectrpc/connect-web": "^2.0.0", "@ctrl/ngx-codemirror": "^6.1.0", "@fortawesome/angular-fontawesome": "^0.13.0", "@fortawesome/fontawesome-svg-core": "^6.4.2", @@ -31,6 +33,8 @@ "@grpc/grpc-js": "^1.11.2", "@netlify/framework-info": "^9.8.13", "@ngx-translate/core": "^15.0.0", + "@zitadel/client": "^1.0.6", + "@zitadel/proto": "^1.0.3", "angular-oauth2-oidc": "^15.0.1", "angularx-qrcode": "^16.0.0", "buffer": "^6.0.3", diff --git a/console/src/app/app.component.html b/console/src/app/app.component.html index 5b31b33dc4..9907e233e1 100644 --- a/console/src/app/app.component.html +++ b/console/src/app/app.component.html @@ -1,9 +1,8 @@
- + @@ -12,9 +11,8 @@ id="mainnav" class="nav" [ngClass]="{ shadow: yoffset > 60 }" - *ngIf="user && user !== {}" [org]="org" - [user]="$any(user)" + [user]="user" [isDarkTheme]="componentCssClass === 'dark-theme'" > diff --git a/console/src/app/app.component.ts b/console/src/app/app.component.ts index 24dedf2b5d..bd46e30cee 100644 --- a/console/src/app/app.component.ts +++ b/console/src/app/app.component.ts @@ -1,14 +1,14 @@ import { BreakpointObserver } from '@angular/cdk/layout'; import { OverlayContainer } from '@angular/cdk/overlay'; import { DOCUMENT, ViewportScroller } from '@angular/common'; -import { Component, HostBinding, HostListener, Inject, OnDestroy, ViewChild } from '@angular/core'; +import { Component, DestroyRef, HostBinding, HostListener, Inject, OnDestroy, ViewChild } from '@angular/core'; import { MatIconRegistry } from '@angular/material/icon'; import { MatDrawer } from '@angular/material/sidenav'; import { DomSanitizer } from '@angular/platform-browser'; import { ActivatedRoute, Router, RouterOutlet } from '@angular/router'; import { LangChangeEvent, TranslateService } from '@ngx-translate/core'; -import { Observable, of, Subject } from 'rxjs'; -import { filter, map, takeUntil } from 'rxjs/operators'; +import { Observable, of, Subject, switchMap } from 'rxjs'; +import { filter, map, startWith, takeUntil, tap } from 'rxjs/operators'; import { accountCard, adminLineAnimation, navAnimations, routeAnimations, toolbarAnimation } from './animations'; import { Org } from './proto/generated/zitadel/org_pb'; @@ -21,6 +21,7 @@ import { ThemeService } from './services/theme.service'; import { UpdateService } from './services/update.service'; import { fallbackLanguage, supportedLanguages, supportedLanguagesRegexp } from './utils/language'; import { PosthogService } from './services/posthog.service'; +import { takeUntilDestroyed } from '@angular/core/rxjs-interop'; @Component({ selector: 'cnsl-root', @@ -28,7 +29,7 @@ import { PosthogService } from './services/posthog.service'; styleUrls: ['./app.component.scss'], animations: [toolbarAnimation, ...navAnimations, accountCard, routeAnimations, adminLineAnimation], }) -export class AppComponent implements OnDestroy { +export class AppComponent { @ViewChild('drawer') public drawer!: MatDrawer; public isHandset$: Observable = this.breakpointObserver.observe('(max-width: 599px)').pipe( map((result) => { @@ -48,8 +49,6 @@ export class AppComponent implements OnDestroy { public showProjectSection: boolean = false; - private destroy$: Subject = new Subject(); - public language: string = 'en'; public privacyPolicy!: PrivacyPolicy.AsObject; constructor( @@ -70,6 +69,7 @@ export class AppComponent implements OnDestroy { private activatedRoute: ActivatedRoute, @Inject(DOCUMENT) private document: Document, private posthog: PosthogService, + private readonly destroyRef: DestroyRef, ) { console.log( '%cWait!', @@ -199,42 +199,43 @@ export class AppComponent implements OnDestroy { this.getProjectCount(); - this.authService.activeOrgChanged.pipe(takeUntil(this.destroy$)).subscribe((org) => { + this.authService.activeOrgChanged.pipe(takeUntilDestroyed(this.destroyRef)).subscribe((org) => { if (org) { this.org = org; this.getProjectCount(); } }); - this.activatedRoute.queryParams.pipe(filter((params) => !!params['org'])).subscribe((params) => { - const { org } = params; - this.authService.getActiveOrg(org); - }); + this.activatedRoute.queryParamMap + .pipe( + map((params) => params.get('org')), + filter(Boolean), + takeUntilDestroyed(this.destroyRef), + ) + .subscribe((org) => this.authService.getActiveOrg(org)); - this.authenticationService.authenticationChanged.pipe(takeUntil(this.destroy$)).subscribe((authenticated) => { - if (authenticated) { - this.authService - .getActiveOrg() - .then(async (org) => { - this.org = org; - // TODO add when console storage is implemented - // this.startIntroWorkflow(); - }) - .catch((error) => { - console.error(error); - this.router.navigate(['/users/me']); - }); - } - }); + this.authenticationService.authenticationChanged + .pipe( + filter(Boolean), + switchMap(() => this.authService.getActiveOrg()), + takeUntilDestroyed(this.destroyRef), + ) + .subscribe({ + next: (org) => (this.org = org), + error: async (err) => { + console.error(err); + return this.router.navigate(['/users/me']); + }, + }); this.isDarkTheme = this.themeService.isDarkTheme; - this.isDarkTheme.pipe(takeUntil(this.destroy$)).subscribe((dark) => { + this.isDarkTheme.pipe(takeUntilDestroyed(this.destroyRef)).subscribe((dark) => { const theme = dark ? 'dark-theme' : 'light-theme'; this.onSetTheme(theme); this.setFavicon(theme); }); - this.translate.onLangChange.pipe(takeUntil(this.destroy$)).subscribe((language: LangChangeEvent) => { + this.translate.onLangChange.pipe(takeUntilDestroyed(this.destroyRef)).subscribe((language: LangChangeEvent) => { this.document.documentElement.lang = language.lang; this.language = language.lang; }); @@ -254,11 +255,6 @@ export class AppComponent implements OnDestroy { // }, 1000); // } - public ngOnDestroy(): void { - this.destroy$.next(); - this.destroy$.complete(); - } - public prepareRoute(outlet: RouterOutlet): boolean { return outlet && outlet.activatedRouteData && outlet.activatedRouteData['animation']; } @@ -275,7 +271,7 @@ export class AppComponent implements OnDestroy { const currentUrl = this.router.url; this.router.navigateByUrl('/', { skipLocationChange: true }).then(() => { // We use navigateByUrl as our urls may have queryParams - this.router.navigateByUrl(currentUrl); + this.router.navigateByUrl(currentUrl).then(); }); } @@ -283,18 +279,16 @@ export class AppComponent implements OnDestroy { this.translate.addLangs(supportedLanguages); this.translate.setDefaultLang(fallbackLanguage); - this.authService.userSubject.pipe(takeUntil(this.destroy$)).subscribe((userprofile) => { - if (userprofile) { - const cropped = navigator.language.split('-')[0] ?? fallbackLanguage; - const fallbackLang = cropped.match(supportedLanguagesRegexp) ? cropped : fallbackLanguage; + this.authService.user.pipe(filter(Boolean), takeUntilDestroyed(this.destroyRef)).subscribe((userprofile) => { + const cropped = navigator.language.split('-')[0] ?? fallbackLanguage; + const fallbackLang = cropped.match(supportedLanguagesRegexp) ? cropped : fallbackLanguage; - const lang = userprofile?.human?.profile?.preferredLanguage.match(supportedLanguagesRegexp) - ? userprofile.human.profile?.preferredLanguage - : fallbackLang; - this.translate.use(lang); - this.language = lang; - this.document.documentElement.lang = lang; - } + const lang = userprofile?.human?.profile?.preferredLanguage.match(supportedLanguagesRegexp) + ? userprofile.human.profile?.preferredLanguage + : fallbackLang; + this.translate.use(lang); + this.language = lang; + this.document.documentElement.lang = lang; }); } @@ -308,7 +302,7 @@ export class AppComponent implements OnDestroy { } private setFavicon(theme: string): void { - this.authService.labelpolicy.pipe(takeUntil(this.destroy$)).subscribe((lP) => { + this.authService.labelpolicy$.pipe(startWith(undefined), takeUntilDestroyed(this.destroyRef)).subscribe((lP) => { if (theme === 'dark-theme' && lP?.iconUrlDark) { // Check if asset url is stable, maybe it was deleted but still wasn't applied fetch(lP.iconUrlDark).then((response) => { diff --git a/console/src/app/components/features/features.component.ts b/console/src/app/components/features/features.component.ts index 327e9d2792..899670c95e 100644 --- a/console/src/app/components/features/features.component.ts +++ b/console/src/app/components/features/features.component.ts @@ -1,28 +1,24 @@ import { CommonModule } from '@angular/common'; -import { Component, OnDestroy } from '@angular/core'; +import { Component } from '@angular/core'; import { FormsModule } from '@angular/forms'; import { MatButtonModule } from '@angular/material/button'; import { MatButtonToggleModule } from '@angular/material/button-toggle'; import { MatCheckboxModule } from '@angular/material/checkbox'; -import { MatDialog } from '@angular/material/dialog'; import { MatIconModule } from '@angular/material/icon'; import { MatTooltipModule } from '@angular/material/tooltip'; import { TranslateModule } from '@ngx-translate/core'; -import { BehaviorSubject, Subject } from 'rxjs'; import { HasRoleModule } from 'src/app/directives/has-role/has-role.module'; import { CardModule } from 'src/app/modules/card/card.module'; -import { DisplayJsonDialogComponent } from 'src/app/modules/display-json-dialog/display-json-dialog.component'; import { InfoSectionModule } from 'src/app/modules/info-section/info-section.module'; import { HasRolePipeModule } from 'src/app/pipes/has-role-pipe/has-role-pipe.module'; -import { Event } from 'src/app/proto/generated/zitadel/event_pb'; import { Source } from 'src/app/proto/generated/zitadel/feature/v2beta/feature_pb'; -import { - GetInstanceFeaturesResponse, - SetInstanceFeaturesRequest, -} from 'src/app/proto/generated/zitadel/feature/v2beta/instance_pb'; import { Breadcrumb, BreadcrumbService, BreadcrumbType } from 'src/app/services/breadcrumb.service'; import { FeatureService } from 'src/app/services/feature.service'; import { ToastService } from 'src/app/services/toast.service'; +import { + GetInstanceFeaturesResponse, + SetInstanceFeaturesRequest, +} from 'src/app/proto/generated/zitadel/feature/v2/instance_pb'; enum ToggleState { ENABLED = 'ENABLED', @@ -61,21 +57,17 @@ type ToggleStates = { templateUrl: './features.component.html', styleUrls: ['./features.component.scss'], }) -export class FeaturesComponent implements OnDestroy { - private destroy$: Subject = new Subject(); +export class FeaturesComponent { + protected featureData: GetInstanceFeaturesResponse.AsObject | undefined; - public _loading: BehaviorSubject = new BehaviorSubject(false); - public featureData: GetInstanceFeaturesResponse.AsObject | undefined = undefined; - - public toggleStates: ToggleStates | undefined = undefined; - public Source: any = Source; - public ToggleState: any = ToggleState; + protected toggleStates: ToggleStates | undefined; + protected Source: any = Source; + protected ToggleState: any = ToggleState; constructor( private featureService: FeatureService, private breadcrumbService: BreadcrumbService, private toast: ToastService, - private dialog: MatDialog, ) { const breadcrumbs = [ new Breadcrumb({ @@ -89,20 +81,6 @@ export class FeaturesComponent implements OnDestroy { this.getFeatures(true); } - ngOnDestroy(): void { - this.destroy$.next(); - this.destroy$.complete(); - } - - public openDialog(event: Event): void { - this.dialog.open(DisplayJsonDialogComponent, { - data: { - event: event, - }, - width: '450px', - }); - } - public validateAndSave() { this.featureService.resetInstanceFeatures().then(() => { const req = new SetInstanceFeaturesRequest(); diff --git a/console/src/app/directives/has-role/has-role.directive.ts b/console/src/app/directives/has-role/has-role.directive.ts index b58e1f3a10..9ba21c1dd2 100644 --- a/console/src/app/directives/has-role/has-role.directive.ts +++ b/console/src/app/directives/has-role/has-role.directive.ts @@ -1,18 +1,17 @@ -import { Directive, Input, OnDestroy, TemplateRef, ViewContainerRef } from '@angular/core'; -import { Subject, takeUntil } from 'rxjs'; +import { DestroyRef, Directive, Input, TemplateRef, ViewContainerRef } from '@angular/core'; import { GrpcAuthService } from 'src/app/services/grpc-auth.service'; +import { takeUntilDestroyed } from '@angular/core/rxjs-interop'; @Directive({ selector: '[cnslHasRole]', }) -export class HasRoleDirective implements OnDestroy { - private destroy$: Subject = new Subject(); +export class HasRoleDirective { private hasView: boolean = false; @Input() public set hasRole(roles: string[] | RegExp[] | undefined) { if (roles && roles.length > 0) { this.authService .isAllowed(roles) - .pipe(takeUntil(this.destroy$)) + .pipe(takeUntilDestroyed(this.destroyRef)) .subscribe((isAllowed) => { if (isAllowed && !this.hasView) { if (this.viewContainerRef.length !== 0) { @@ -38,10 +37,6 @@ export class HasRoleDirective implements OnDestroy { private authService: GrpcAuthService, protected templateRef: TemplateRef, protected viewContainerRef: ViewContainerRef, + private readonly destroyRef: DestroyRef, ) {} - - ngOnDestroy(): void { - this.destroy$.next(); - this.destroy$.complete(); - } } diff --git a/console/src/app/modules/accounts-card/accounts-card.component.ts b/console/src/app/modules/accounts-card/accounts-card.component.ts index 617a41bf6d..2676a5bcf5 100644 --- a/console/src/app/modules/accounts-card/accounts-card.component.ts +++ b/console/src/app/modules/accounts-card/accounts-card.component.ts @@ -4,6 +4,7 @@ import { AuthConfig } from 'angular-oauth2-oidc'; import { Session, User, UserState } from 'src/app/proto/generated/zitadel/user_pb'; import { AuthenticationService } from 'src/app/services/authentication.service'; import { GrpcAuthService } from 'src/app/services/grpc-auth.service'; +import { toSignal } from '@angular/core/rxjs-interop'; @Component({ selector: 'cnsl-accounts-card', @@ -18,6 +19,8 @@ export class AccountsCardComponent implements OnInit { public sessions: Session.AsObject[] = []; public loadingUsers: boolean = false; public UserState: any = UserState; + private labelpolicy = toSignal(this.userService.labelpolicy$, { initialValue: undefined }); + constructor( public authService: AuthenticationService, private router: Router, @@ -68,7 +71,7 @@ export class AccountsCardComponent implements OnInit { } public logout(): void { - const lP = JSON.stringify(this.userService.labelpolicy.getValue()); + const lP = JSON.stringify(this.labelpolicy()); localStorage.setItem('labelPolicyOnSignout', lP); this.authService.signout(); diff --git a/console/src/app/modules/filter-org/filter-org.component.ts b/console/src/app/modules/filter-org/filter-org.component.ts index 8e100971d0..220b219358 100644 --- a/console/src/app/modules/filter-org/filter-org.component.ts +++ b/console/src/app/modules/filter-org/filter-org.component.ts @@ -1,4 +1,4 @@ -import { Component, OnInit } from '@angular/core'; +import { Component, DestroyRef, OnInit } from '@angular/core'; import { MatCheckboxChange } from '@angular/material/checkbox'; import { ActivatedRoute, Router } from '@angular/router'; import { take } from 'rxjs'; @@ -27,9 +27,10 @@ export class FilterOrgComponent extends FilterComponent implements OnInit { constructor( router: Router, + destroyRef: DestroyRef, protected override route: ActivatedRoute, ) { - super(router, route); + super(router, route, destroyRef); } ngOnInit(): void { diff --git a/console/src/app/modules/filter-project/filter-project.component.ts b/console/src/app/modules/filter-project/filter-project.component.ts index b884024c2c..92556d311d 100644 --- a/console/src/app/modules/filter-project/filter-project.component.ts +++ b/console/src/app/modules/filter-project/filter-project.component.ts @@ -1,4 +1,4 @@ -import { Component, OnInit } from '@angular/core'; +import { Component, DestroyRef, OnInit } from '@angular/core'; import { MatCheckboxChange } from '@angular/material/checkbox'; import { ActivatedRoute, Router } from '@angular/router'; import { take } from 'rxjs'; @@ -23,8 +23,8 @@ export class FilterProjectComponent extends FilterComponent implements OnInit { public searchQueries: ProjectQuery[] = []; public states: ProjectState[] = [ProjectState.PROJECT_STATE_ACTIVE, ProjectState.PROJECT_STATE_INACTIVE]; - constructor(router: Router, route: ActivatedRoute) { - super(router, route); + constructor(router: Router, route: ActivatedRoute, destroyRef: DestroyRef) { + super(router, route, destroyRef); } ngOnInit(): void { diff --git a/console/src/app/modules/filter-user-grants/filter-user-grants.component.ts b/console/src/app/modules/filter-user-grants/filter-user-grants.component.ts index 3c17e8c208..dccaed13e5 100644 --- a/console/src/app/modules/filter-user-grants/filter-user-grants.component.ts +++ b/console/src/app/modules/filter-user-grants/filter-user-grants.component.ts @@ -1,4 +1,4 @@ -import { Component, OnInit } from '@angular/core'; +import { Component, DestroyRef, OnInit } from '@angular/core'; import { MatCheckboxChange } from '@angular/material/checkbox'; import { ActivatedRoute, Router } from '@angular/router'; import { take } from 'rxjs'; @@ -29,8 +29,8 @@ export class FilterUserGrantsComponent extends FilterComponent implements OnInit public SubQuery: any = SubQuery; public searchQueries: UserGrantQuery[] = []; - constructor(router: Router, route: ActivatedRoute) { - super(router, route); + constructor(router: Router, route: ActivatedRoute, destroyRef: DestroyRef) { + super(router, route, destroyRef); } ngOnInit(): void { diff --git a/console/src/app/modules/filter-user/filter-user.component.html b/console/src/app/modules/filter-user/filter-user.component.html index c5d3d9a820..907ea6d18d 100644 --- a/console/src/app/modules/filter-user/filter-user.component.html +++ b/console/src/app/modules/filter-user/filter-user.component.html @@ -1,4 +1,4 @@ - +
{ - const { filter } = params; - if (filter) { - const stringifiedFilters = filter as string; + this.route.queryParamMap + .pipe( + take(1), + map((params) => params.get('filter')), + filter(Boolean), + ) + .subscribe((stringifiedFilters) => { const filters: UserSearchQuery.AsObject[] = JSON.parse(stringifiedFilters) as UserSearchQuery.AsObject[]; const userQueries = filters.map((filter) => { @@ -94,8 +97,7 @@ export class FilterUserComponent extends FilterComponent implements OnInit { this.filterChanged.emit(this.searchQueries ? this.searchQueries : []); // this.showFilter = true; // this.filterOpen.emit(true); - } - }); + }); } public changeCheckbox(subquery: SubQuery, event: MatCheckboxChange) { diff --git a/console/src/app/modules/filter/filter.component.ts b/console/src/app/modules/filter/filter.component.ts index ce2cc15c08..dac94525d9 100644 --- a/console/src/app/modules/filter/filter.component.ts +++ b/console/src/app/modules/filter/filter.component.ts @@ -1,7 +1,6 @@ import { ConnectedPosition, ConnectionPositionPair } from '@angular/cdk/overlay'; -import { Component, EventEmitter, Input, OnDestroy, Output } from '@angular/core'; +import { Component, DestroyRef, EventEmitter, Input, Output } from '@angular/core'; import { ActivatedRoute, Router } from '@angular/router'; -import { Observable, Subject, takeUntil } from 'rxjs'; import { SearchQuery as MemberSearchQuery } from 'src/app/proto/generated/zitadel/member_pb'; import { TextQueryMethod } from 'src/app/proto/generated/zitadel/object_pb'; import { OrgQuery } from 'src/app/proto/generated/zitadel/org_pb'; @@ -9,6 +8,7 @@ import { ProjectQuery } from 'src/app/proto/generated/zitadel/project_pb'; import { SearchQuery as UserSearchQuery, UserGrantQuery } from 'src/app/proto/generated/zitadel/user_pb'; import { ActionKeysType } from '../action-keys/action-keys.component'; +import { takeUntilDestroyed } from '@angular/core/rxjs-interop'; type FilterSearchQuery = UserSearchQuery | MemberSearchQuery | UserGrantQuery | ProjectQuery | OrgQuery; type FilterSearchQueryAsObject = @@ -23,7 +23,7 @@ type FilterSearchQueryAsObject = templateUrl: './filter.component.html', styleUrls: ['./filter.component.scss'], }) -export class FilterComponent implements OnDestroy { +export class FilterComponent { @Output() public filterChanged: EventEmitter = new EventEmitter(); @Output() public filterOpen: EventEmitter = new EventEmitter(false); @@ -32,9 +32,6 @@ export class FilterComponent implements OnDestroy { @Input() public queryCount: number = 0; - private destroy$: Subject = new Subject(); - public filterChanged$: Observable = this.filterChanged.asObservable(); - public showFilter: boolean = false; public methods: TextQueryMethod[] = [ TextQueryMethod.TEXT_QUERY_METHOD_CONTAINS_IGNORE_CASE, @@ -59,17 +56,13 @@ export class FilterComponent implements OnDestroy { this.trigger.emit(); } - public ngOnDestroy(): void { - this.destroy$.next(); - this.destroy$.complete(); - } - constructor( private router: Router, protected route: ActivatedRoute, + destroyRef: DestroyRef, ) { const changes$ = this.filterChanged.asObservable(); - changes$.pipe(takeUntil(this.destroy$)).subscribe((queries) => { + changes$.pipe(takeUntilDestroyed(destroyRef)).subscribe((queries) => { const filters: Array | undefined = queries ?.map((q) => q.toObject()) .map((query) => @@ -81,15 +74,17 @@ export class FilterComponent implements OnDestroy { ); if (filters && Object.keys(filters)) { - this.router.navigate([], { - relativeTo: this.route, - queryParams: { - ['filter']: JSON.stringify(filters), - }, - replaceUrl: true, - queryParamsHandling: 'merge', - skipLocationChange: false, - }); + this.router + .navigate([], { + relativeTo: this.route, + queryParams: { + ['filter']: JSON.stringify(filters), + }, + replaceUrl: true, + queryParamsHandling: 'merge', + skipLocationChange: false, + }) + .then(); } }); } diff --git a/console/src/app/modules/footer/footer.component.html b/console/src/app/modules/footer/footer.component.html index 26d863d129..b9eda2d7db 100644 --- a/console/src/app/modules/footer/footer.component.html +++ b/console/src/app/modules/footer/footer.component.html @@ -1,6 +1,6 @@
-
+
{{ 'FOOTER.LINKS.TOS' | translate }} @@ -11,7 +11,7 @@
-
+
diff --git a/console/src/app/modules/header/header.component.html b/console/src/app/modules/header/header.component.html index e4ef76dd2a..f1a3244792 100644 --- a/console/src/app/modules/header/header.component.html +++ b/console/src/app/modules/header/header.component.html @@ -4,7 +4,7 @@
- + - + - + {{ pP.customLinkText }} diff --git a/console/src/app/modules/header/header.component.ts b/console/src/app/modules/header/header.component.ts index 9954429302..e560237343 100644 --- a/console/src/app/modules/header/header.component.ts +++ b/console/src/app/modules/header/header.component.ts @@ -1,10 +1,8 @@ import { ConnectedPosition, ConnectionPositionPair } from '@angular/cdk/overlay'; -import { Component, ElementRef, EventEmitter, Input, OnDestroy, OnInit, Output, ViewChild } from '@angular/core'; +import { Component, EventEmitter, Input, Output } from '@angular/core'; import { Router } from '@angular/router'; -import { BehaviorSubject, Observable, of, Subject } from 'rxjs'; import { Org } from 'src/app/proto/generated/zitadel/org_pb'; import { User } from 'src/app/proto/generated/zitadel/user_pb'; -import { AuthenticationService } from 'src/app/services/authentication.service'; import { BreadcrumbService, BreadcrumbType } from 'src/app/services/breadcrumb.service'; import { GrpcAuthService } from 'src/app/services/grpc-auth.service'; import { ManagementService } from 'src/app/services/mgmt.service'; @@ -15,19 +13,14 @@ import { ActionKeysType } from '../action-keys/action-keys.component'; templateUrl: './header.component.html', styleUrls: ['./header.component.scss'], }) -export class HeaderComponent implements OnDestroy { - @ViewChild('input', { static: false }) input!: ElementRef; - +export class HeaderComponent { @Input() public isDarkTheme: boolean = true; @Input() public user?: User.AsObject; public showOrgContext: boolean = false; - public orgs$: Observable = of([]); @Input() public org!: Org.AsObject; @Output() public changedActiveOrg: EventEmitter = new EventEmitter(); - public orgLoading$: BehaviorSubject = new BehaviorSubject(false); public showAccount: boolean = false; - private destroy$: Subject = new Subject(); public BreadcrumbType: any = BreadcrumbType; public ActionKeysType: any = ActionKeysType; @@ -41,24 +34,12 @@ export class HeaderComponent implements OnDestroy { new ConnectionPositionPair({ originX: 'end', originY: 'bottom' }, { overlayX: 'end', overlayY: 'top' }, 0, 10), ]; constructor( - public authenticationService: AuthenticationService, public authService: GrpcAuthService, public mgmtService: ManagementService, public breadcrumbService: BreadcrumbService, public router: Router, ) {} - public ngOnDestroy() { - this.destroy$.next(); - this.destroy$.complete(); - } - - public closeAccountCard(): void { - if (this.showAccount) { - this.showAccount = false; - } - } - public setActiveOrg(org: Org.AsObject): void { this.org = org; this.authService.setActiveOrg(org); diff --git a/console/src/app/modules/info-row/info-row.component.html b/console/src/app/modules/info-row/info-row.component.html index db68931eeb..52bd6b93ba 100644 --- a/console/src/app/modules/info-row/info-row.component.html +++ b/console/src/app/modules/info-row/info-row.component.html @@ -9,26 +9,26 @@ inactive: user.state === UserState.USER_STATE_INACTIVE, }" > - {{ 'USER.DATA.STATE' + user.state | translate }} + {{ (isV2(user) ? 'USER.STATEV2.' : 'USER.STATE.') + user.state | translate }}

{{ 'USER.ID' | translate }}

-

{{ user.id }}

+

{{ userId }}

{{ 'USER.DETAILS.DATECREATED' | translate }}

-

- {{ user.details.creationDate | timestampToDate | localizedDate: 'dd. MMMM YYYY, HH:mm' }} +

+ {{ creationDate | timestampToDate | localizedDate: 'dd. MMMM YYYY, HH:mm' }}

{{ 'USER.DETAILS.DATECHANGED' | translate }}

-

- {{ user.details.changeDate | timestampToDate | localizedDate: 'dd. MMMM YYYY, HH:mm' }} +

+ {{ changeDate | timestampToDate | localizedDate: 'dd. MMMM YYYY, HH:mm' }}

diff --git a/console/src/app/modules/info-row/info-row.component.ts b/console/src/app/modules/info-row/info-row.component.ts index 35e682e4a1..2689584813 100644 --- a/console/src/app/modules/info-row/info-row.component.ts +++ b/console/src/app/modules/info-row/info-row.component.ts @@ -6,6 +6,9 @@ import { Org, OrgState } from 'src/app/proto/generated/zitadel/org_pb'; import { LoginPolicy } from 'src/app/proto/generated/zitadel/policy_pb'; import { GrantedProject, Project, ProjectGrantState, ProjectState } from 'src/app/proto/generated/zitadel/project_pb'; import { User, UserState } from 'src/app/proto/generated/zitadel/user_pb'; +import { User as UserV1 } from '@zitadel/proto/zitadel/user_pb'; +import { User as UserV2 } from '@zitadel/proto/zitadel/user/v2/user_pb'; +import { LoginPolicy as LoginPolicyV2 } from '@zitadel/proto/zitadel/policy_pb'; @Component({ selector: 'cnsl-info-row', @@ -13,14 +16,14 @@ import { User, UserState } from 'src/app/proto/generated/zitadel/user_pb'; styleUrls: ['./info-row.component.scss'], }) export class InfoRowComponent { - @Input() public user!: User.AsObject; + @Input() public user?: User.AsObject | UserV2 | UserV1; @Input() public org!: Org.AsObject; @Input() public instance!: InstanceDetail.AsObject; @Input() public app!: App.AsObject; @Input() public idp!: IDP.AsObject; @Input() public project!: Project.AsObject; @Input() public grantedProject!: GrantedProject.AsObject; - @Input() public loginPolicy?: LoginPolicy.AsObject; + @Input() public loginPolicy?: LoginPolicy.AsObject | LoginPolicyV2; public UserState: any = UserState; public State: any = State; @@ -35,25 +38,77 @@ export class InfoRowComponent { constructor() {} public get loginMethods(): Set { - const methods = this.user?.loginNamesList; - let email: string = ''; - let phone: string = ''; - if (this.loginPolicy) { - if ( - !this.loginPolicy?.disableLoginWithEmail && - this.user.human?.email?.email && - this.user.human.email.isEmailVerified - ) { - email = this.user.human?.email?.email; - } - if ( - !this.loginPolicy?.disableLoginWithPhone && - this.user.human?.phone?.phone && - this.user.human.phone.isPhoneVerified - ) { - phone = this.user.human?.phone?.phone; - } + if (!this.user) { + return new Set(); } - return new Set([email, phone, ...methods].filter((method) => !!method)); + + const methods = '$typeName' in this.user ? this.user.loginNames : this.user.loginNamesList; + + const loginPolicy = this.loginPolicy; + if (!loginPolicy) { + return new Set([...methods]); + } + + let email = !loginPolicy.disableLoginWithEmail ? this.getEmail(this.user) : ''; + let phone = !loginPolicy.disableLoginWithPhone ? this.getPhone(this.user) : ''; + + return new Set([email, phone, ...methods].filter(Boolean)); + } + + public get userId() { + if (!this.user) { + return undefined; + } + if ('$typeName' in this.user && this.user.$typeName === 'zitadel.user.v2.User') { + return this.user.userId; + } + return this.user.id; + } + + public get changeDate() { + return this?.user?.details?.changeDate; + } + + public get creationDate() { + if (!this.user) { + return undefined; + } + return '$typeName' in this.user ? undefined : this.user.details?.creationDate; + } + + private getEmail(user: User.AsObject | UserV2 | UserV1) { + const human = this.human(user); + if (!human) { + return ''; + } + if ('$typeName' in human && human.$typeName === 'zitadel.user.v2.HumanUser') { + return human.email?.isVerified ? human.email.email : ''; + } + return human.email?.isEmailVerified ? human.email.email : ''; + } + + private getPhone(user: User.AsObject | UserV2 | UserV1) { + const human = this.human(user); + if (!human) { + return ''; + } + if ('$typeName' in human && human.$typeName === 'zitadel.user.v2.HumanUser') { + return human.phone?.isVerified ? human.phone.phone : ''; + } + return human.phone?.isPhoneVerified ? human.phone.phone : ''; + } + + public human(user: User.AsObject | UserV2 | UserV1) { + if (!('$typeName' in user)) { + return user.human; + } + return user.type.case === 'human' ? user.type.value : undefined; + } + + public isV2(user: User.AsObject | UserV2 | UserV1) { + if ('$typeName' in user) { + return user.$typeName === 'zitadel.user.v2.User'; + } + return false; } } diff --git a/console/src/app/modules/metadata/metadata-dialog/metadata-dialog.component.ts b/console/src/app/modules/metadata/metadata-dialog/metadata-dialog.component.ts index 599e58d937..8deff09eee 100644 --- a/console/src/app/modules/metadata/metadata-dialog/metadata-dialog.component.ts +++ b/console/src/app/modules/metadata/metadata-dialog/metadata-dialog.component.ts @@ -1,8 +1,16 @@ import { Component, Inject } from '@angular/core'; import { MatDialogRef, MAT_DIALOG_DATA } from '@angular/material/dialog'; import { Timestamp } from 'google-protobuf/google/protobuf/timestamp_pb'; -import { Metadata } from 'src/app/proto/generated/zitadel/metadata_pb'; import { ToastService } from 'src/app/services/toast.service'; +import { Metadata as MetadataV2 } from '@zitadel/proto/zitadel/metadata_pb'; +import { Metadata } from 'src/app/proto/generated/zitadel/metadata_pb'; +import { Buffer } from 'buffer'; + +export type MetadataDialogData = { + metadata: (Metadata.AsObject | MetadataV2)[]; + setFcn: (key: string, value: string) => Promise; + removeFcn: (key: string) => Promise; +}; @Component({ selector: 'cnsl-metadata-dialog', @@ -10,72 +18,63 @@ import { ToastService } from 'src/app/services/toast.service'; styleUrls: ['./metadata-dialog.component.scss'], }) export class MetadataDialogComponent { - public metadata: Partial[] = []; + public metadata: { key: string; value: string }[] = []; public ts!: Timestamp.AsObject | undefined; constructor( private toast: ToastService, public dialogRef: MatDialogRef, - @Inject(MAT_DIALOG_DATA) public data: any, + @Inject(MAT_DIALOG_DATA) public data: MetadataDialogData, ) { - this.metadata = data.metadata; + this.metadata = data.metadata.map(({ key, value }) => ({ + key, + value: typeof value === 'string' ? value : Buffer.from(value as unknown as string, 'base64').toString('utf8'), + })); } public addEntry(): void { - const newGroup = { + this.metadata.push({ key: '', value: '', - }; - - this.metadata.push(newGroup); + }); } - public removeEntry(index: number): void { + public async removeEntry(index: number) { const key = this.metadata[index].key; - if (key) { - this.removeMetadata(key).then(() => { - this.metadata.splice(index, 1); - if (this.metadata.length === 0) { - this.addEntry(); - } - }); - } else { + if (!key) { this.metadata.splice(index, 1); + return; + } + + try { + await this.data.removeFcn(key); + } catch (error) { + this.toast.showError(error); + return; + } + + this.toast.showInfo('METADATA.REMOVESUCCESS', true); + this.metadata.splice(index, 1); + if (this.metadata.length === 0) { + this.addEntry(); } } - public saveElement(index: number): void { - const metadataElement = this.metadata[index]; + public async saveElement(index: number) { + const { key, value } = this.metadata[index]; - if (metadataElement.key && metadataElement.value) { - this.setMetadata(metadataElement.key, metadataElement.value as string); + if (!key || !value) { + return; } - } - public setMetadata(key: string, value: string): void { - if (key && value) { - this.data - .setFcn(key, value) - .then(() => { - this.toast.showInfo('METADATA.SETSUCCESS', true); - }) - .catch((error: any) => { - this.toast.showError(error); - }); + try { + await this.data.setFcn(key, value); + this.toast.showInfo('METADATA.SETSUCCESS', true); + } catch (error) { + this.toast.showError(error); } } - public removeMetadata(key: string): Promise { - return this.data - .removeFcn(key) - .then((resp: any) => { - this.toast.showInfo('METADATA.REMOVESUCCESS', true); - }) - .catch((error: any) => { - this.toast.showError(error); - }); - } - closeDialog(): void { this.dialogRef.close(); } diff --git a/console/src/app/modules/metadata/metadata/metadata.component.html b/console/src/app/modules/metadata/metadata/metadata.component.html index acd0b407f6..4ea29728ae 100644 --- a/console/src/app/modules/metadata/metadata/metadata.component.html +++ b/console/src/app/modules/metadata/metadata/metadata.component.html @@ -1,7 +1,12 @@ - + @@ -28,7 +33,7 @@ -
+
{{ 'USER.MFA.EMPTY' | translate }}
diff --git a/console/src/app/modules/metadata/metadata/metadata.component.ts b/console/src/app/modules/metadata/metadata/metadata.component.ts index bb784ac433..7f72297c00 100644 --- a/console/src/app/modules/metadata/metadata/metadata.component.ts +++ b/console/src/app/modules/metadata/metadata/metadata.component.ts @@ -1,16 +1,26 @@ -import { Component, EventEmitter, Input, OnChanges, Output, SimpleChanges, ViewChild } from '@angular/core'; +import { Component, EventEmitter, Input, OnInit, Output, ViewChild } from '@angular/core'; import { MatSort } from '@angular/material/sort'; -import { MatTable, MatTableDataSource } from '@angular/material/table'; -import { BehaviorSubject, Observable } from 'rxjs'; +import { MatTableDataSource } from '@angular/material/table'; +import { Observable, ReplaySubject } from 'rxjs'; +import { Metadata as MetadataV2 } from '@zitadel/proto/zitadel/metadata_pb'; +import { map, startWith } from 'rxjs/operators'; import { Metadata } from 'src/app/proto/generated/zitadel/metadata_pb'; +import { Buffer } from 'buffer'; + +type StringMetadata = { + key: string; + value: string; +}; @Component({ selector: 'cnsl-metadata', templateUrl: './metadata.component.html', styleUrls: ['./metadata.component.scss'], }) -export class MetadataComponent implements OnChanges { - @Input() public metadata: Metadata.AsObject[] = []; +export class MetadataComponent implements OnInit { + @Input({ required: true }) public set metadata(metadata: (Metadata.AsObject | MetadataV2)[]) { + this.metadata$.next(metadata); + } @Input() public disabled: boolean = false; @Input() public loading: boolean = false; @Input({ required: true }) public description!: string; @@ -18,18 +28,23 @@ export class MetadataComponent implements OnChanges { @Output() public refresh: EventEmitter = new EventEmitter(); public displayedColumns: string[] = ['key', 'value']; - private loadingSubject: BehaviorSubject = new BehaviorSubject(false); - public loading$: Observable = this.loadingSubject.asObservable(); + public metadata$ = new ReplaySubject<(Metadata.AsObject | MetadataV2)[]>(1); + public dataSource$?: Observable>; - @ViewChild(MatTable) public table!: MatTable; @ViewChild(MatSort) public sort!: MatSort; - public dataSource: MatTableDataSource = new MatTableDataSource([]); constructor() {} - ngOnChanges(changes: SimpleChanges): void { - if (changes['metadata']?.currentValue) { - this.dataSource = new MatTableDataSource(changes['metadata'].currentValue); - } + ngOnInit() { + this.dataSource$ = this.metadata$.pipe( + map((metadata) => + metadata.map(({ key, value }) => ({ + key, + value: Buffer.from(value as any as string, 'base64').toString('utf-8'), + })), + ), + startWith([] as StringMetadata[]), + map((metadata) => new MatTableDataSource(metadata)), + ); } } diff --git a/console/src/app/modules/paginator/paginator.component.ts b/console/src/app/modules/paginator/paginator.component.ts index 4fd62fb568..74f487dcb5 100644 --- a/console/src/app/modules/paginator/paginator.component.ts +++ b/console/src/app/modules/paginator/paginator.component.ts @@ -1,5 +1,6 @@ import { Component, EventEmitter, Input, Output } from '@angular/core'; import { Timestamp } from 'src/app/proto/generated/google/protobuf/timestamp_pb'; +import { Timestamp as ConnectTimestamp } from '@bufbuild/protobuf/wkt'; export interface PageEvent { length: number; @@ -14,7 +15,7 @@ export interface PageEvent { styleUrls: ['./paginator.component.scss'], }) export class PaginatorComponent { - @Input() public timestamp: Timestamp.AsObject | undefined = undefined; + @Input() public timestamp: Timestamp.AsObject | ConnectTimestamp | undefined = undefined; @Input() public length: number = 0; @Input() public pageSize: number = 10; @Input() public pageIndex: number = 0; diff --git a/console/src/app/modules/providers/provider-oauth/provider-oauth.component.html b/console/src/app/modules/providers/provider-oauth/provider-oauth.component.html index b8f43a856a..8c6412cd91 100644 --- a/console/src/app/modules/providers/provider-oauth/provider-oauth.component.html +++ b/console/src/app/modules/providers/provider-oauth/provider-oauth.component.html @@ -110,6 +110,15 @@
+
+ +
+

{{ 'IDP.USEPKCE_DESC' | translate }}

+ {{ 'IDP.USEPKCE' | translate }} +
+ +
+
-
+

{{ 'IDP.ISIDTOKENMAPPING_DESC' | translate }}

{{ 'IDP.ISIDTOKENMAPPING' | translate }}
+ + +
+

{{ 'IDP.USEPKCE_DESC' | translate }}

+ {{ 'IDP.USEPKCE' | translate }} +
+
+ { @@ -165,6 +166,7 @@ export class ProviderOIDCComponent { req.setScopesList(this.scopesList?.value); req.setProviderOptions(this.options); req.setIsIdTokenMapping(this.isIdTokenMapping?.value); + req.setUsePkce(this.usePkce?.value); this.loading = true; this.service @@ -193,11 +195,12 @@ export class ProviderOIDCComponent { req.setScopesList(this.scopesList?.value); req.setProviderOptions(this.options); req.setIsIdTokenMapping(this.isIdTokenMapping?.value); + req.setUsePkce(this.usePkce?.value); this.loading = true; this.service .updateGenericOIDCProvider(req) - .then((idp) => { + .then(() => { setTimeout(() => { this.loading = false; this.close(); @@ -261,4 +264,8 @@ export class ProviderOIDCComponent { public get isIdTokenMapping(): AbstractControl | null { return this.form.get('isIdTokenMapping'); } + + public get usePkce(): AbstractControl | null { + return this.form.get('usePkce'); + } } diff --git a/console/src/app/modules/refresh-table/refresh-table.component.ts b/console/src/app/modules/refresh-table/refresh-table.component.ts index 6c6d46e281..08e67044f0 100644 --- a/console/src/app/modules/refresh-table/refresh-table.component.ts +++ b/console/src/app/modules/refresh-table/refresh-table.component.ts @@ -3,6 +3,7 @@ import { SelectionModel } from '@angular/cdk/collections'; import { Component, EventEmitter, Input, OnInit, Output } from '@angular/core'; import { Timestamp } from 'google-protobuf/google/protobuf/timestamp_pb'; import { RefreshService } from 'src/app/services/refresh.service'; +import { Timestamp as ConnectTimestamp } from '@bufbuild/protobuf/wkt'; import { ActionKeysType } from '../action-keys/action-keys.component'; @@ -27,7 +28,7 @@ const rotate = animation([ }) export class RefreshTableComponent implements OnInit { @Input() public selection: SelectionModel = new SelectionModel(true, []); - @Input() public timestamp: Timestamp.AsObject | undefined = undefined; + @Input() public timestamp: Timestamp.AsObject | ConnectTimestamp | undefined = undefined; @Input() public dataSize: number = 0; @Input() public emitRefreshAfterTimeoutInMs: number = 0; @Input() public loading: boolean | null = false; diff --git a/console/src/app/modules/sidenav/sidenav.component.ts b/console/src/app/modules/sidenav/sidenav.component.ts index dc7948a256..e07c82dc51 100644 --- a/console/src/app/modules/sidenav/sidenav.component.ts +++ b/console/src/app/modules/sidenav/sidenav.component.ts @@ -51,15 +51,17 @@ export class SidenavComponent implements ControlValueAccessor { } if (this.queryParam && setting) { - this.router.navigate([], { - relativeTo: this.route, - queryParams: { - [this.queryParam]: setting, - }, - replaceUrl: true, - queryParamsHandling: 'merge', - skipLocationChange: false, - }); + this.router + .navigate([], { + relativeTo: this.route, + queryParams: { + [this.queryParam]: setting, + }, + replaceUrl: true, + queryParamsHandling: 'merge', + skipLocationChange: false, + }) + .then(); } } diff --git a/console/src/app/pages/signedout/signedout.component.ts b/console/src/app/pages/signedout/signedout.component.ts index a5d41f7a60..53b88ca6d6 100644 --- a/console/src/app/pages/signedout/signedout.component.ts +++ b/console/src/app/pages/signedout/signedout.component.ts @@ -19,16 +19,21 @@ export class SignedoutComponent { const lP = localStorage.getItem(LABELPOLICY_LOCALSTORAGE_KEY); - if (lP) { - const parsed = JSON.parse(lP); - localStorage.removeItem(LABELPOLICY_LOCALSTORAGE_KEY); - if (parsed) { - this.labelpolicy = parsed; - authService.labelpolicy.next(parsed); - authService.labelPolicyLoading$.next(false); - } - } else { + if (!lP) { authService.labelPolicyLoading$.next(false); + return; } + + const parsed = JSON.parse(lP); + localStorage.removeItem(LABELPOLICY_LOCALSTORAGE_KEY); + + if (!parsed) { + return; + } + + this.labelpolicy = parsed; + // todo: figure this one out + // authService.labelpolicy.next(parsed); + authService.labelPolicyLoading$.next(false); } } diff --git a/console/src/app/pages/users/user-create/user-create.component.html b/console/src/app/pages/users/user-create/user-create.component.html index 94a42cdc98..13fcb95bb3 100644 --- a/console/src/app/pages/users/user-create/user-create.component.html +++ b/console/src/app/pages/users/user-create/user-create.component.html @@ -2,12 +2,17 @@ title="{{ 'USER.CREATE.TITLE' | translate }}" [createSteps]="1" [currentCreateStep]="1" - (closed)="close()" + (closed)="location.back()" >
-
+

{{ 'USER.CREATE.NAMEANDEMAILSECTION' | translate }}

@@ -19,12 +24,13 @@ {{ 'USER.PROFILE.USERNAME' | translate }} - {{ envSuffix }} + {{ envSuffix }} @@ -42,7 +48,7 @@
-
- +
+
- + {{ 'USER.PASSWORD.NEWINITIAL' | translate }} - + {{ 'USER.PASSWORD.CONFIRMINITIAL' | translate }} = new Subject(); + protected readonly countryPhoneCodes: CountryPhoneCode[]; - public userLoginMustBeDomain: boolean = false; - public loading: boolean = false; + protected loading = false; - @ViewChild('suffix') public suffix!: any; - private primaryDomain!: Domain.AsObject; - public usePassword: boolean = false; - public policy!: PasswordComplexityPolicy.AsObject; + private readonly suffix$ = new ReplaySubject(1); + @ViewChild('suffix') public set suffix(suffix: ElementRef) { + this.suffix$.next(suffix.nativeElement); + } + + protected usePassword: boolean = false; + protected readonly envSuffix$: Observable; + protected readonly userForm: ReturnType; + protected readonly pwdForm$: ReturnType; + protected readonly passwordComplexityPolicy$: Observable; + protected readonly suffixPadding$: Observable; constructor( - private router: Router, - private toast: ToastService, - private fb: UntypedFormBuilder, - private mgmtService: ManagementService, - private changeDetRef: ChangeDetectorRef, - private _location: Location, - private countryCallingCodesService: CountryCallingCodesService, - public langSvc: LanguagesService, - breadcrumbService: BreadcrumbService, + private readonly router: Router, + private readonly toast: ToastService, + private readonly fb: FormBuilder, + private readonly mgmtService: ManagementService, + private readonly destroyRef: DestroyRef, + private readonly breadcrumbService: BreadcrumbService, + protected readonly location: Location, + protected readonly langSvc: LanguagesService, + countryCallingCodesService: CountryCallingCodesService, ) { - breadcrumbService.setBreadcrumb([ + this.envSuffix$ = this.getEnvSuffix(); + this.suffixPadding$ = this.getSuffixPadding(); + this.passwordComplexityPolicy$ = this.getPasswordComplexityPolicy().pipe(shareReplay({ refCount: true, bufferSize: 1 })); + + this.userForm = this.buildUserForm(); + this.pwdForm$ = this.buildPwdForm(this.passwordComplexityPolicy$); + + this.countryPhoneCodes = countryCallingCodesService.getCountryCallingCodes(); + } + + ngOnInit(): void { + this.watchPhoneChanges(); + + this.breadcrumbService.setBreadcrumb([ new Breadcrumb({ type: BreadcrumbType.ORG, routerLink: ['/org'], }), ]); - this.loading = true; - this.loadOrg(); - this.mgmtService - .getDomainPolicy() - .then((resp) => { - if (resp.policy?.userLoginMustBeDomain) { - this.userLoginMustBeDomain = resp.policy.userLoginMustBeDomain; + } + + private getEnvSuffix() { + const domainPolicy$ = defer(() => this.mgmtService.getDomainPolicy()); + const orgDomains$ = defer(() => this.mgmtService.listOrgDomains()); + + return forkJoin([domainPolicy$, orgDomains$]).pipe( + map(([policy, domains]) => { + const userLoginMustBeDomain = policy.policy?.userLoginMustBeDomain; + const primaryDomain = domains.resultList.find((resp) => resp.isPrimary); + if (userLoginMustBeDomain && primaryDomain) { + return `@${primaryDomain.domainName}`; + } else { + return ''; } - this.initForm(); - this.loading = false; - this.changeDetRef.detectChanges(); - }) - .catch((error) => { - console.error(error); - this.initForm(); - this.loading = false; - this.changeDetRef.detectChanges(); - }); + }), + catchError(() => of('')), + ); } - public close(): void { - this._location.back(); + private getSuffixPadding() { + return this.suffix$.pipe( + map((suffix) => `${suffix.offsetWidth + 10}px`), + startWith('10px'), + ); } - private async loadOrg(): Promise { - const domains = await this.mgmtService.listOrgDomains(); - const found = domains.resultList.find((resp) => resp.isPrimary); - if (found) { - this.primaryDomain = found; - } + private getPasswordComplexityPolicy() { + return defer(() => this.mgmtService.getPasswordComplexityPolicy()).pipe( + map(({ policy }) => policy), + catchError((error) => { + this.toast.showError(error); + return EMPTY; + }), + ); } - private initForm(): void { - this.userForm = this.fb.group({ - email: ['', [requiredValidator, emailValidator]], - userName: ['', [requiredValidator, minLengthValidator(2)]], - firstName: ['', requiredValidator], - lastName: ['', requiredValidator], - nickName: [''], - gender: [], - preferredLanguage: [''], - phone: ['', phoneValidator], - isVerified: [false, []], + private buildUserForm() { + return this.fb.group({ + email: new FormControl('', { nonNullable: true, validators: [requiredValidator, emailValidator] }), + userName: new FormControl('', { nonNullable: true, validators: [requiredValidator, minLengthValidator(2)] }), + firstName: new FormControl('', { nonNullable: true, validators: [requiredValidator] }), + lastName: new FormControl('', { nonNullable: true, validators: [requiredValidator] }), + nickName: new FormControl('', { nonNullable: true }), + gender: new FormControl(Gender.GENDER_UNSPECIFIED, { nonNullable: true, validators: [requiredValidator] }), + preferredLanguage: new FormControl('', { nonNullable: true }), + phone: new FormControl('', { nonNullable: true, validators: [phoneValidator] }), + emailVerified: new FormControl(false, { nonNullable: true }), }); + } - const validators: Validators[] = [requiredValidator]; - - this.mgmtService.getPasswordComplexityPolicy().then((data) => { - if (data.policy) { - this.policy = data.policy; - - if (this.policy.minLength) { - validators.push(minLengthValidator(this.policy.minLength)); + private buildPwdForm(passwordComplexityPolicy$: Observable) { + return passwordComplexityPolicy$.pipe( + map((policy) => { + const validators: ValidatorFn[] = [requiredValidator]; + if (policy?.minLength) { + validators.push(minLengthValidator(policy.minLength)); } - if (this.policy.hasLowercase) { + if (policy?.hasLowercase) { validators.push(containsLowerCaseValidator); } - if (this.policy.hasUppercase) { + if (policy?.hasUppercase) { validators.push(containsUpperCaseValidator); } - if (this.policy.hasNumber) { + if (policy?.hasNumber) { validators.push(containsNumberValidator); } - if (this.policy.hasSymbol) { + if (policy?.hasSymbol) { validators.push(containsSymbolValidator); } - const pwdValidators = [...validators] as ValidatorFn[]; - const confirmPwdValidators = [requiredValidator, passwordConfirmValidator()] as ValidatorFn[]; - - this.pwdForm = this.fb.group({ - password: ['', pwdValidators], - confirmPassword: ['', confirmPwdValidators], + return this.fb.group({ + password: new FormControl('', { nonNullable: true, validators }), + confirmPassword: new FormControl('', { + nonNullable: true, + validators: [requiredValidator, passwordConfirmValidator()], + }), }); - } - }); + }), + ); + } - this.phone?.valueChanges.pipe(debounceTime(200)).subscribe((value: string) => { + private watchPhoneChanges(): void { + const phone = this.userForm.controls.phone; + + phone.valueChanges.pipe(debounceTime(200), takeUntilDestroyed(this.destroyRef)).subscribe((value) => { const phoneNumber = formatPhone(value); if (phoneNumber) { this.selected = this.countryPhoneCodes.find((code) => code.countryCode === phoneNumber.country); - this.phone?.setValue(phoneNumber.phone); + phone.setValue(phoneNumber.phone); } }); } - public createUser(): void { - this.user = this.userForm.value; - + protected async createUser(pwdForm: ObservedValueOf): Promise { this.loading = true; + const controls = this.userForm.controls; const profileReq = new AddHumanUserRequest.Profile(); - profileReq.setFirstName(this.firstName?.value); - profileReq.setLastName(this.lastName?.value); - profileReq.setNickName(this.nickName?.value); - profileReq.setPreferredLanguage(this.preferredLanguage?.value); - profileReq.setGender(this.gender?.value); + profileReq.setFirstName(controls.firstName.value); + profileReq.setLastName(controls.lastName.value); + profileReq.setNickName(controls.nickName.value); + profileReq.setPreferredLanguage(controls.preferredLanguage.value); + profileReq.setGender(controls.gender.value); const humanReq = new AddHumanUserRequest(); - humanReq.setUserName(this.userName?.value); + humanReq.setUserName(controls.userName.value); humanReq.setProfile(profileReq); const emailreq = new AddHumanUserRequest.Email(); - emailreq.setEmail(this.email?.value); - emailreq.setIsEmailVerified(this.isVerified?.value); + emailreq.setEmail(controls.email.value); + emailreq.setIsEmailVerified(controls.emailVerified.value); humanReq.setEmail(emailreq); - if (this.usePassword && this.password?.value) { - humanReq.setInitialPassword(this.password.value); + if (this.usePassword) { + humanReq.setInitialPassword(pwdForm.controls.password.value); } - if (this.phone && this.phone.value) { + if (controls.phone.value) { // Try to parse number and format it according to country - const phoneNumber = formatPhone(this.phone.value); + const phoneNumber = formatPhone(controls.phone.value); if (phoneNumber) { this.selected = this.countryPhoneCodes.find((code) => code.countryCode === phoneNumber.country); humanReq.setPhone(new AddHumanUserRequest.Phone().setPhone(phoneNumber.phone)); } } - this.mgmtService - .addHumanUser(humanReq) - .then((data) => { - this.loading = false; - this.toast.showInfo('USER.TOAST.CREATED', true); - this.router.navigate(['users', data.userId], { queryParams: { new: true } }); - }) - .catch((error) => { - this.loading = false; - this.toast.showError(error); - }); + try { + const data = await this.mgmtService.addHumanUser(humanReq); + this.toast.showInfo('USER.TOAST.CREATED', true); + await this.router.navigate(['users', data.userId], { queryParams: { new: true } }); + } catch (error) { + this.toast.showError(error); + } finally { + this.loading = false; + } } - public setCountryCallingCode(): void { - let value = (this.phone?.value as string) || ''; + protected setCountryCallingCode(): void { + let value = this.userForm.controls.phone.value; this.countryPhoneCodes.forEach((code) => (value = value.replace(`+${code.countryCallingCode}`, ''))); value = value.trim(); - this.phone?.setValue('+' + this.selected?.countryCallingCode + ' ' + value); + + this.userForm.controls.phone.setValue('+' + this.selected?.countryCallingCode + ' ' + value); } - ngOnInit(): void { - this.countryPhoneCodes = this.countryCallingCodesService.getCountryCallingCodes(); - } - - ngOnDestroy(): void { - this.destroyed$.next(); - this.destroyed$.complete(); - } - - public get email(): AbstractControl | null { - return this.userForm.get('email'); - } - public get isVerified(): AbstractControl | null { - return this.userForm.get('isVerified'); - } - public get userName(): AbstractControl | null { - return this.userForm.get('userName'); - } - public get firstName(): AbstractControl | null { - return this.userForm.get('firstName'); - } - public get lastName(): AbstractControl | null { - return this.userForm.get('lastName'); - } - public get nickName(): AbstractControl | null { - return this.userForm.get('nickName'); - } - public get gender(): AbstractControl | null { - return this.userForm.get('gender'); - } - public get preferredLanguage(): AbstractControl | null { - return this.userForm.get('preferredLanguage'); - } - public get phone(): AbstractControl | null { - return this.userForm.get('phone'); - } - - public get password(): AbstractControl | null { - return this.pwdForm.get('password'); - } - public get confirmPassword(): AbstractControl | null { - return this.pwdForm.get('confirmPassword'); - } - - public get envSuffix(): string { - if (this.userLoginMustBeDomain && this.primaryDomain?.domainName) { - return `@${this.primaryDomain.domainName}`; - } else { - return ''; - } - } - - public get suffixPadding(): string | undefined { - if (this.suffix?.nativeElement.offsetWidth) { - return `${(this.suffix.nativeElement as HTMLElement).offsetWidth + 10}px`; - } else { - return; - } - } - - public compareCountries(i1: CountryPhoneCode, i2: CountryPhoneCode) { + protected compareCountries(i1: CountryPhoneCode, i2: CountryPhoneCode) { return ( i1 && i2 && diff --git a/console/src/app/pages/users/user-detail/auth-user-detail/auth-user-detail.component.html b/console/src/app/pages/users/user-detail/auth-user-detail/auth-user-detail.component.html index ce18e55e4a..80f985eb24 100644 --- a/console/src/app/pages/users/user-detail/auth-user-detail/auth-user-detail.component.html +++ b/console/src/app/pages/users/user-detail/auth-user-detail/auth-user-detail.component.html @@ -1,182 +1,179 @@ - - {{ 'USER.PAGES.NOUSER' | translate }} - - + + + + -
- -
- - - - - + + + + - - + + + - - - - - + + + + - - -

{{ 'USER.PAGES.DELETEACCOUNT_DESC' | translate }}

+ + +

{{ 'USER.PAGES.DELETEACCOUNT_DESC' | translate }}

- +
+ +
+ +
+ diff --git a/console/src/app/pages/users/user-detail/auth-user-detail/auth-user-detail.component.ts b/console/src/app/pages/users/user-detail/auth-user-detail/auth-user-detail.component.ts index 5c79274bb0..2752dd9265 100644 --- a/console/src/app/pages/users/user-detail/auth-user-detail/auth-user-detail.component.ts +++ b/console/src/app/pages/users/user-detail/auth-user-detail/auth-user-detail.component.ts @@ -1,56 +1,66 @@ import { MediaMatcher } from '@angular/cdk/layout'; -import { Location } from '@angular/common'; -import { Component, EventEmitter, OnDestroy } from '@angular/core'; +import { Component, DestroyRef, EventEmitter, OnInit } from '@angular/core'; import { Validators } from '@angular/forms'; import { MatDialog } from '@angular/material/dialog'; -import { ActivatedRoute, Params } from '@angular/router'; +import { ActivatedRoute, Router } from '@angular/router'; import { TranslateService } from '@ngx-translate/core'; import { Buffer } from 'buffer'; -import { from, Observable, Subscription, take } from 'rxjs'; +import { defer, EMPTY, fromEvent, mergeWith, Observable, of, shareReplay, Subject, switchMap, take } from 'rxjs'; import { ChangeType } from 'src/app/modules/changes/changes.component'; import { phoneValidator, requiredValidator } from 'src/app/modules/form-field/validators/validators'; import { InfoDialogComponent } from 'src/app/modules/info-dialog/info-dialog.component'; -import { MetadataDialogComponent } from 'src/app/modules/metadata/metadata-dialog/metadata-dialog.component'; +import { + MetadataDialogComponent, + MetadataDialogData, +} from 'src/app/modules/metadata/metadata-dialog/metadata-dialog.component'; import { PolicyComponentServiceType } from 'src/app/modules/policies/policy-component-types.enum'; import { SidenavSetting } from 'src/app/modules/sidenav/sidenav.component'; import { UserGrantContext } from 'src/app/modules/user-grants/user-grants-datasource'; import { WarnDialogComponent } from 'src/app/modules/warn-dialog/warn-dialog.component'; -import { Metadata } from 'src/app/proto/generated/zitadel/metadata_pb'; -import { LoginPolicy } from 'src/app/proto/generated/zitadel/policy_pb'; -import { Email, Gender, Phone, Profile, User, UserState } from 'src/app/proto/generated/zitadel/user_pb'; import { AuthenticationService } from 'src/app/services/authentication.service'; import { Breadcrumb, BreadcrumbService, BreadcrumbType } from 'src/app/services/breadcrumb.service'; import { GrpcAuthService } from 'src/app/services/grpc-auth.service'; -import { ManagementService } from 'src/app/services/mgmt.service'; import { ToastService } from 'src/app/services/toast.service'; import { formatPhone } from 'src/app/utils/formatPhone'; -import { EditDialogComponent, EditDialogType } from './edit-dialog/edit-dialog.component'; -import { LanguagesService } from '../../../../services/languages.service'; +import { EditDialogComponent, EditDialogData, EditDialogResult, EditDialogType } from './edit-dialog/edit-dialog.component'; +import { LanguagesService } from 'src/app/services/languages.service'; +import { Gender, HumanProfile, HumanUser, User, UserState } from '@zitadel/proto/zitadel/user/v2/user_pb'; +import { catchError, filter, map, startWith, withLatestFrom } from 'rxjs/operators'; +import { pairwiseStartWith } from 'src/app/utils/pairwiseStartWith'; +import { NewAuthService } from 'src/app/services/new-auth.service'; +import { takeUntilDestroyed } from '@angular/core/rxjs-interop'; +import { NewMgmtService } from 'src/app/services/new-mgmt.service'; +import { Metadata } from '@zitadel/proto/zitadel/metadata_pb'; +import { UserService } from 'src/app/services/user.service'; +import { LoginPolicy } from '@zitadel/proto/zitadel/policy_pb'; +import { query } from '@angular/animations'; + +type UserQuery = { state: 'success'; value: User } | { state: 'error'; error: any } | { state: 'loading'; value?: User }; + +type MetadataQuery = + | { state: 'success'; value: Metadata[] } + | { state: 'loading'; value: Metadata[] } + | { state: 'error'; error: any }; + +type UserWithHumanType = Omit & { type: { case: 'human'; value: HumanUser } }; @Component({ selector: 'cnsl-auth-user-detail', templateUrl: './auth-user-detail.component.html', styleUrls: ['./auth-user-detail.component.scss'], }) -export class AuthUserDetailComponent implements OnDestroy { - public user?: User.AsObject; - public genders: Gender[] = [Gender.GENDER_MALE, Gender.GENDER_FEMALE, Gender.GENDER_DIVERSE]; +export class AuthUserDetailComponent implements OnInit { + protected readonly genders: Gender[] = [Gender.MALE, Gender.FEMALE, Gender.DIVERSE]; - private subscription: Subscription = new Subscription(); - - public loading: boolean = false; - public loadingMetadata: boolean = false; - - public ChangeType: any = ChangeType; + protected readonly ChangeType = ChangeType; public userLoginMustBeDomain: boolean = false; - public UserState: any = UserState; + protected readonly UserState = UserState; - public USERGRANTCONTEXT: UserGrantContext = UserGrantContext.AUTHUSER; - public refreshChanges$: EventEmitter = new EventEmitter(); + protected USERGRANTCONTEXT: UserGrantContext = UserGrantContext.AUTHUSER; + protected readonly refreshChanges$: EventEmitter = new EventEmitter(); + protected readonly refreshMetadata$ = new Subject(); - public metadata: Metadata.AsObject[] = []; - - public settingsList: SidenavSetting[] = [ + protected readonly settingsList: SidenavSetting[] = [ { id: 'general', i18nKey: 'USER.SETTINGS.GENERAL' }, { id: 'security', i18nKey: 'USER.SETTINGS.SECURITY' }, { id: 'idp', i18nKey: 'USER.SETTINGS.IDP' }, @@ -62,170 +72,204 @@ export class AuthUserDetailComponent implements OnDestroy { requiredRoles: { [PolicyComponentServiceType.MGMT]: ['user.read'] }, }, ]; - public currentSetting: string | undefined = this.settingsList[0].id; - public loginPolicy?: LoginPolicy.AsObject; - private savedLanguage?: string; + protected readonly user$: Observable; + protected readonly metadata$: Observable; + private readonly savedLanguage$: Observable; + protected readonly currentSetting$: Observable; + protected readonly loginPolicy$: Observable; + protected readonly userName$: Observable; constructor( - public translate: TranslateService, + private translate: TranslateService, private toast: ToastService, - public userService: GrpcAuthService, + protected grpcAuthService: GrpcAuthService, private dialog: MatDialog, private auth: AuthenticationService, - private mgmt: ManagementService, private breadcrumbService: BreadcrumbService, private mediaMatcher: MediaMatcher, - private _location: Location, - activatedRoute: ActivatedRoute, public langSvc: LanguagesService, + private readonly route: ActivatedRoute, + private readonly newAuthService: NewAuthService, + private readonly newMgmtService: NewMgmtService, + private readonly userService: UserService, + private readonly destroyRef: DestroyRef, + private readonly router: Router, ) { - activatedRoute.queryParams.pipe(take(1)).subscribe((params: Params) => { - const { id } = params; - if (id) { - this.cleanupTranslation(); - this.currentSetting = id; - } - }); + this.currentSetting$ = this.getCurrentSetting$().pipe(shareReplay({ refCount: true, bufferSize: 1 })); + this.user$ = this.getUser$().pipe(shareReplay({ refCount: true, bufferSize: 1 })); + this.userName$ = this.getUserName(this.user$); + this.savedLanguage$ = this.getSavedLanguage$(this.user$); + this.metadata$ = this.getMetadata$().pipe(shareReplay({ refCount: true, bufferSize: 1 })); - const mediaq: string = '(max-width: 500px)'; - const small = this.mediaMatcher.matchMedia(mediaq).matches; - if (small) { - this.changeSelection(small); - } - this.mediaMatcher.matchMedia(mediaq).onchange = (small) => { - this.changeSelection(small.matches); - }; - - this.loading = true; - this.refreshUser(); - - this.userService.getMyLoginPolicy().then((policy) => { - if (policy.policy) { - this.loginPolicy = policy.policy; - } - }); + this.loginPolicy$ = defer(() => this.newMgmtService.getLoginPolicy()).pipe( + catchError(() => EMPTY), + map(({ policy }) => policy), + filter(Boolean), + ); } - private changeSelection(small: boolean): void { - this.cleanupTranslation(); - if (small) { - this.currentSetting = undefined; - } else { - this.currentSetting = this.currentSetting === undefined ? this.settingsList[0].id : this.currentSetting; - } - } - - public navigateBack(): void { - this._location.back(); - } - - refreshUser(): void { - this.refreshChanges$.emit(); - this.userService - .getMyUser() - .then((resp) => { - if (resp.user) { - this.user = resp.user; - - this.loadMetadata(); - - this.breadcrumbService.setBreadcrumb([ - new Breadcrumb({ - type: BreadcrumbType.AUTHUSER, - name: this.user.human?.profile?.displayName, - routerLink: ['/users', 'me'], - }), - ]); + getUserName(user$: Observable) { + return user$.pipe( + map((query) => { + const user = this.user(query); + if (!user) { + return ''; } - this.savedLanguage = resp.user?.human?.profile?.preferredLanguage; - this.loading = false; - }) - .catch((error) => { - this.toast.showError(error); - this.loading = false; - }); + if (user.type.case === 'human') { + return user.type.value.profile?.displayName ?? ''; + } + if (user.type.case === 'machine') { + return user.type.value.name; + } + return ''; + }), + ); } - public ngOnDestroy(): void { - this.cleanupTranslation(); - this.subscription.unsubscribe(); + getSavedLanguage$(user$: Observable) { + return user$.pipe( + switchMap((query) => { + if (query.state !== 'success' || query.value.type.case !== 'human') { + return EMPTY; + } + return query.value.type.value.profile?.preferredLanguage ?? EMPTY; + }), + startWith(this.translate.defaultLang), + ); } - public settingChanged(): void { - this.cleanupTranslation(); + ngOnInit(): void { + this.user$.pipe(takeUntilDestroyed(this.destroyRef)).subscribe((query) => { + if ((query.state === 'loading' || query.state === 'success') && query.value?.type.case === 'human') { + this.breadcrumbService.setBreadcrumb([ + new Breadcrumb({ + type: BreadcrumbType.AUTHUSER, + name: query.value.type.value.profile?.displayName, + routerLink: ['/users', 'me'], + }), + ]); + } + }); + this.user$.pipe(mergeWith(this.metadata$), takeUntilDestroyed(this.destroyRef)).subscribe((query) => { + if (query.state == 'error') { + this.toast.showError(query.error); + } + }); + + this.savedLanguage$ + .pipe(takeUntilDestroyed(this.destroyRef)) + .subscribe((savedLanguage) => this.translate.use(savedLanguage)); } - private cleanupTranslation(): void { - if (this?.savedLanguage) { - this.translate.use(this?.savedLanguage); - } else { - this.translate.use(this.translate.defaultLang); - } + private getCurrentSetting$(): Observable { + const mediaq: string = '(max-width: 500px)'; + const matcher = this.mediaMatcher.matchMedia(mediaq); + const small$ = fromEvent(matcher, 'change', ({ matches }: MediaQueryListEvent) => matches).pipe( + startWith(matcher.matches), + ); + + return this.route.queryParamMap.pipe( + map((params) => params.get('id')), + filter(Boolean), + startWith('general'), + withLatestFrom(small$), + map(([id, small]) => (small ? undefined : id)), + ); } - public changeUsername(): void { - const dialogRef = this.dialog.open(EditDialogComponent, { - data: { - confirmKey: 'ACTIONS.CHANGE', - cancelKey: 'ACTIONS.CANCEL', - labelKey: 'ACTIONS.NEWVALUE', - titleKey: 'USER.PROFILE.CHANGEUSERNAME_TITLE', - descriptionKey: 'USER.PROFILE.CHANGEUSERNAME_DESC', - value: this.user?.userName, - }, + private getUser$(): Observable { + return this.refreshChanges$.pipe( + startWith(true), + switchMap(() => this.getMyUser()), + pairwiseStartWith(undefined), + map(([prev, curr]) => { + if (prev?.state === 'success' && curr.state === 'loading') { + return { state: 'loading', value: prev.value } as const; + } + return curr; + }), + ); + } + + private getMyUser(): Observable { + return defer(() => this.userService.getMyUser()).pipe( + map((user) => ({ state: 'success' as const, value: user })), + catchError((error) => of({ state: 'error', error } as const)), + startWith({ state: 'loading' } as const), + ); + } + + getMetadata$(): Observable { + return this.refreshMetadata$.pipe( + startWith(true), + switchMap(() => this.getMetadata()), + pairwiseStartWith(undefined), + map(([prev, curr]) => { + if (prev?.state === 'success' && curr.state === 'loading') { + return { state: 'loading', value: prev.value } as const; + } + return curr; + }), + ); + } + + private getMetadata(): Observable { + return defer(() => this.newAuthService.listMyMetadata()).pipe( + map((metadata) => ({ state: 'success', value: metadata.result }) as const), + startWith({ state: 'loading', value: [] as Metadata[] } as const), + catchError((error) => of({ state: 'error', error } as const)), + ); + } + + public changeUsername(user: User): void { + const data = { + confirmKey: 'ACTIONS.CHANGE' as const, + cancelKey: 'ACTIONS.CANCEL' as const, + labelKey: 'ACTIONS.NEWVALUE' as const, + titleKey: 'USER.PROFILE.CHANGEUSERNAME_TITLE' as const, + descriptionKey: 'USER.PROFILE.CHANGEUSERNAME_DESC' as const, + value: user.username, + }; + const dialogRef = this.dialog.open(EditDialogComponent, { + data, width: '400px', }); - dialogRef.afterClosed().subscribe((resp: { value: string }) => { - if (resp && resp.value && resp.value !== this.user?.userName) { - this.userService - .updateMyUserName(resp.value) - .then(() => { - this.toast.showInfo('USER.TOAST.USERNAMECHANGED', true); - this.refreshUser(); - }) - .catch((error) => { - this.toast.showError(error); - }); - } - }); - } - - public saveProfile(profileData: Profile.AsObject): void { - if (this.user?.human) { - this.user.human.profile = profileData; - - this.userService - .updateMyProfile( - this.user.human.profile?.firstName, - this.user.human.profile?.lastName, - this.user.human.profile?.nickName, - this.user.human.profile?.displayName, - this.user.human.profile?.preferredLanguage, - this.user.human.profile?.gender, - ) - .then(() => { - this.toast.showInfo('USER.TOAST.SAVED', true); - this.savedLanguage = this.user?.human?.profile?.preferredLanguage; + dialogRef + .afterClosed() + .pipe( + map((value) => value?.value), + filter(Boolean), + filter((value) => user.username != value), + switchMap((username) => this.userService.updateUser({ userId: user.userId, username })), + ) + .subscribe({ + next: () => { + this.toast.showInfo('USER.TOAST.USERNAMECHANGED', true); this.refreshChanges$.emit(); - }) - .catch((error) => { + }, + error: (error) => { this.toast.showError(error); - }); - } + }, + }); } - public saveEmail(email: string): void { + public saveProfile(user: User, profile: HumanProfile): void { this.userService - .setMyEmail(email) + .updateUser({ + userId: user.userId, + profile: { + givenName: profile.givenName, + familyName: profile.familyName, + nickName: profile.nickName, + displayName: profile.displayName, + preferredLanguage: profile.preferredLanguage, + gender: profile.gender, + }, + }) .then(() => { - this.toast.showInfo('USER.TOAST.EMAILSAVED', true); - if (this.user?.human) { - const mailToSet = new Email(); - mailToSet.setEmail(email); - this.user.human.email = mailToSet.toObject(); - this.refreshUser(); - } + this.toast.showInfo('USER.TOAST.SAVED', true); + this.refreshChanges$.emit(); }) .catch((error) => { this.toast.showError(error); @@ -233,11 +277,11 @@ export class AuthUserDetailComponent implements OnDestroy { } public enteredPhoneCode(code: string): void { - this.userService + this.newAuthService .verifyMyPhone(code) .then(() => { this.toast.showInfo('USER.TOAST.PHONESAVED', true); - this.refreshUser(); + this.refreshChanges$.emit(); this.promptSetupforSMSOTP(); }) .catch((error) => { @@ -256,39 +300,26 @@ export class AuthUserDetailComponent implements OnDestroy { width: '400px', }); - dialogRef.afterClosed().subscribe((resp) => { - if (resp) { - this.userService.addMyAuthFactorOTPSMS().then(() => { - this.translate - .get('USER.MFA.OTPSMSSUCCESS') - .pipe(take(1)) - .subscribe((msg) => { - this.toast.showInfo(msg); - }); - }); - } - }); + dialogRef + .afterClosed() + .pipe( + filter(Boolean), + switchMap(() => this.newAuthService.addMyAuthFactorOTPSMS()), + switchMap(() => this.translate.get('USER.MFA.OTPSMSSUCCESS').pipe(take(1))), + ) + .subscribe({ + next: (msg) => this.toast.showInfo(msg), + error: (err) => this.toast.showError(err), + }); } public changedLanguage(language: string): void { this.translate.use(language); } - public resendPhoneVerification(): void { - this.userService - .resendMyPhoneVerification() - .then(() => { - this.toast.showInfo('USER.TOAST.PHONEVERIFICATIONSENT', true); - this.refreshChanges$.emit(); - }) - .catch((error) => { - this.toast.showError(error); - }); - } - - public resendEmailVerification(): void { - this.userService - .resendMyEmailVerification() + public resendEmailVerification(user: User): void { + this.newMgmtService + .resendHumanEmailVerification(user.userId) .then(() => { this.toast.showInfo('USER.TOAST.EMAILVERIFICATIONSENT', true); this.refreshChanges$.emit(); @@ -298,161 +329,187 @@ export class AuthUserDetailComponent implements OnDestroy { }); } - public deletePhone(): void { - this.userService - .removeMyPhone() + public resendPhoneVerification(user: User): void { + this.newMgmtService + .resendHumanPhoneVerification(user.userId) .then(() => { - this.toast.showInfo('USER.TOAST.PHONEREMOVED', true); - if (this.user?.human?.phone) { - const phone = new Phone(); - this.user.human.phone = phone.toObject(); - this.refreshUser(); - } + this.toast.showInfo('USER.TOAST.PHONEVERIFICATIONSENT', true); + this.refreshChanges$.emit(); }) .catch((error) => { this.toast.showError(error); }); } - public savePhone(phone: string): void { - if (this.user?.human) { - // Format phone before save (add +) - const formattedPhone = formatPhone(phone); - if (formattedPhone) { - phone = formattedPhone.phone; - } - - this.userService - .setMyPhone(phone) - .then(() => { - this.toast.showInfo('USER.TOAST.PHONESAVED', true); - if (this.user?.human) { - const phoneToSet = new Phone(); - phoneToSet.setPhone(phone); - this.user.human.phone = phoneToSet.toObject(); - this.refreshUser(); - } - }) - .catch((error) => { - this.toast.showError(error); - }); - } + public deletePhone(user: User): void { + this.userService + .removePhone(user.userId) + .then(() => { + this.toast.showInfo('USER.TOAST.PHONEREMOVED', true); + this.refreshChanges$.emit(); + }) + .catch((error) => { + this.toast.showError(error); + }); } - public openEditDialog(type: EditDialogType): void { + public openEditDialog(user: UserWithHumanType, type: EditDialogType): void { switch (type) { case EditDialogType.PHONE: - const dialogRefPhone = this.dialog.open(EditDialogComponent, { - data: { - confirmKey: 'ACTIONS.SAVE', - cancelKey: 'ACTIONS.CANCEL', - labelKey: 'USER.LOGINMETHODS.PHONE.EDITVALUE', - titleKey: 'USER.LOGINMETHODS.PHONE.EDITTITLE', - descriptionKey: 'USER.LOGINMETHODS.PHONE.EDITDESC', - value: this.user?.human?.phone?.phone, - type: type, - validator: Validators.compose([phoneValidator, requiredValidator]), - }, - width: '400px', - }); - - dialogRefPhone.afterClosed().subscribe((resp: { value: string; isVerified: boolean }) => { - if (resp && resp.value) { - this.savePhone(resp.value); - } - }); - break; + this.openEditPhoneDialog(user); + return; case EditDialogType.EMAIL: - const dialogRefEmail = this.dialog.open(EditDialogComponent, { - data: { - confirmKey: 'ACTIONS.SAVE', - cancelKey: 'ACTIONS.CANCEL', - labelKey: 'ACTIONS.NEWVALUE', - titleKey: 'USER.LOGINMETHODS.EMAIL.EDITTITLE', - descriptionKey: 'USER.LOGINMETHODS.EMAIL.EDITDESC', - value: this.user?.human?.email?.email, - type: type, - }, - width: '400px', - }); - - dialogRefEmail.afterClosed().subscribe((resp: { value: string; isVerified: boolean }) => { - if (resp && resp.value) { - this.saveEmail(resp.value); - } - }); - break; + this.openEditEmailDialog(user); + return; } } - public deleteAccount(): void { - const dialogRef = this.dialog.open(WarnDialogComponent, { - data: { - confirmKey: 'USER.DIALOG.DELETE_BTN', - cancelKey: 'ACTIONS.CANCEL', - titleKey: 'USER.DIALOG.DELETE_TITLE', - descriptionKey: 'USER.DIALOG.DELETE_AUTH_DESCRIPTION', - }, + private openEditEmailDialog(user: UserWithHumanType) { + const data: EditDialogData = { + confirmKey: 'ACTIONS.SAVE', + cancelKey: 'ACTIONS.CANCEL', + labelKey: 'ACTIONS.NEWVALUE', + titleKey: 'USER.LOGINMETHODS.EMAIL.EDITTITLE', + descriptionKey: 'USER.LOGINMETHODS.EMAIL.EDITDESC', + value: user.type.value?.email?.email, + type: EditDialogType.EMAIL, + } as const; + + const dialogRefEmail = this.dialog.open(EditDialogComponent, { + data, width: '400px', }); - dialogRef.afterClosed().subscribe((resp) => { - if (resp) { - this.userService - .RemoveMyUser() - .then(() => { - this.toast.showInfo('USER.PAGES.DELETEACCOUNT_SUCCESS', true); - this.auth.signout(); - }) - .catch((error) => { - this.toast.showError(error); - }); - } + dialogRefEmail + .afterClosed() + .pipe( + filter((resp): resp is Required => !!resp?.value), + switchMap(({ value, isVerified }) => + this.userService.setEmail({ + userId: user.userId, + email: value, + verification: isVerified ? { case: 'isVerified', value: isVerified } : { case: undefined }, + }), + ), + ) + .subscribe({ + next: () => { + this.toast.showInfo('USER.TOAST.EMAILSAVED', true); + this.refreshChanges$.emit(); + }, + error: (error) => this.toast.showError(error), + }); + } + + private openEditPhoneDialog(user: UserWithHumanType) { + const data = { + confirmKey: 'ACTIONS.SAVE', + cancelKey: 'ACTIONS.CANCEL', + labelKey: 'ACTIONS.NEWVALUE', + titleKey: 'USER.LOGINMETHODS.PHONE.EDITTITLE', + descriptionKey: 'USER.LOGINMETHODS.PHONE.EDITDESC', + value: user.type.value.phone?.phone, + type: EditDialogType.PHONE, + validator: Validators.compose([phoneValidator, requiredValidator]), + }; + const dialogRefPhone = this.dialog.open( + EditDialogComponent, + { data, width: '400px' }, + ); + + dialogRefPhone + .afterClosed() + .pipe( + map((resp) => formatPhone(resp?.value)), + filter(Boolean), + switchMap(({ phone }) => this.userService.setPhone({ userId: user.userId, phone })), + ) + .subscribe({ + next: () => { + this.toast.showInfo('USER.TOAST.PHONESAVED', true); + this.refreshChanges$.emit(); + }, + error: (error) => { + this.toast.showError(error); + }, + }); + } + + public deleteUser(user: User): void { + const data = { + confirmKey: 'USER.DIALOG.DELETE_BTN', + cancelKey: 'ACTIONS.CANCEL', + titleKey: 'USER.DIALOG.DELETE_TITLE', + descriptionKey: 'USER.DIALOG.DELETE_AUTH_DESCRIPTION', + }; + + const dialogRef = this.dialog.open(WarnDialogComponent, { + width: '400px', + }); + + dialogRef + .afterClosed() + .pipe( + filter(Boolean), + switchMap(() => this.userService.deleteUser(user.userId)), + ) + .subscribe({ + next: () => { + this.toast.showInfo('USER.PAGES.DELETEACCOUNT_SUCCESS', true); + this.auth.signout(); + }, + error: (error) => this.toast.showError(error), + }); + } + + public editMetadata(user: User, metadata: Metadata[]): void { + const setFcn = (key: string, value: string) => + this.newMgmtService.setUserMetadata({ + key, + value: Buffer.from(value), + id: user.userId, + }); + const removeFcn = (key: string): Promise => this.newMgmtService.removeUserMetadata({ key, id: user.userId }); + + const dialogRef = this.dialog.open(MetadataDialogComponent, { + data: { + metadata: [...metadata], + setFcn: setFcn, + removeFcn: removeFcn, + }, + }); + + dialogRef + .afterClosed() + .pipe(takeUntilDestroyed(this.destroyRef)) + .subscribe(() => { + this.refreshMetadata$.next(true); + }); + } + + protected readonly query = query; + + protected user(user: UserQuery): User | undefined { + if (user.state === 'success' || user.state === 'loading') { + return user.value; + } + return; + } + + public async goToSetting(setting: string) { + await this.router.navigate([], { + relativeTo: this.route, + queryParams: { id: setting }, + queryParamsHandling: 'merge', + skipLocationChange: true, }); } - public loadMetadata(): void { - if (this.user) { - this.userService.isAllowed(['user.read']).subscribe((allowed) => { - if (allowed) { - this.loadingMetadata = true; - this.mgmt - .listUserMetadata(this.user?.id ?? '') - .then((resp) => { - this.loadingMetadata = false; - this.metadata = resp.resultList.map((md) => { - return { - key: md.key, - value: Buffer.from(md.value as string, 'base64').toString('utf8'), - }; - }); - }) - .catch((error) => { - this.loadingMetadata = false; - this.toast.showError(error); - }); - } - }); - } - } - - public editMetadata(): void { - if (this.user && this.user.id) { - const setFcn = (key: string, value: string): Promise => - this.mgmt.setUserMetadata(key, Buffer.from(value).toString('base64'), this.user?.id ?? ''); - const removeFcn = (key: string): Promise => this.mgmt.removeUserMetadata(key, this.user?.id ?? ''); - - const dialogRef = this.dialog.open(MetadataDialogComponent, { - data: { - metadata: this.metadata, - setFcn: setFcn, - removeFcn: removeFcn, - }, - }); - - dialogRef.afterClosed().subscribe(() => { - this.loadMetadata(); - }); + public humanUser(userQuery: UserQuery): UserWithHumanType | undefined { + const user = this.user(userQuery); + if (user?.type.case === 'human') { + return { ...user, type: user.type }; } + return; } } diff --git a/console/src/app/pages/users/user-detail/auth-user-detail/edit-dialog/edit-dialog.component.html b/console/src/app/pages/users/user-detail/auth-user-detail/edit-dialog/edit-dialog.component.html index 6ab7aeabdc..13a990a38d 100644 --- a/console/src/app/pages/users/user-detail/auth-user-detail/edit-dialog/edit-dialog.component.html +++ b/console/src/app/pages/users/user-detail/auth-user-detail/edit-dialog/edit-dialog.component.html @@ -47,7 +47,7 @@ {{ data.isVerifiedTextKey | translate }} - {{ data.isVerifiedTextDescKey | translate }} + {{ data.isVerifiedTextDescKey ?? '' | translate }} diff --git a/console/src/app/pages/users/user-detail/auth-user-detail/edit-dialog/edit-dialog.component.ts b/console/src/app/pages/users/user-detail/auth-user-detail/edit-dialog/edit-dialog.component.ts index 66ae88cf21..79c35116d3 100644 --- a/console/src/app/pages/users/user-detail/auth-user-detail/edit-dialog/edit-dialog.component.ts +++ b/console/src/app/pages/users/user-detail/auth-user-detail/edit-dialog/edit-dialog.component.ts @@ -1,5 +1,5 @@ import { Component, Inject, OnInit } from '@angular/core'; -import { FormGroup, UntypedFormControl, UntypedFormGroup } from '@angular/forms'; +import { FormGroup, UntypedFormControl, UntypedFormGroup, ValidatorFn } from '@angular/forms'; import { MatDialogRef, MAT_DIALOG_DATA } from '@angular/material/dialog'; import { debounceTime } from 'rxjs'; import { requiredValidator } from 'src/app/modules/form-field/validators/validators'; @@ -11,6 +11,24 @@ export enum EditDialogType { EMAIL = 2, } +export type EditDialogData = { + confirmKey: 'ACTIONS.SAVE' | 'ACTIONS.CHANGE'; + cancelKey: 'ACTIONS.CANCEL'; + labelKey: 'ACTIONS.NEWVALUE'; + titleKey: 'USER.LOGINMETHODS.EMAIL.EDITTITLE'; + descriptionKey: 'USER.LOGINMETHODS.EMAIL.EDITDESC'; + isVerifiedTextKey?: 'USER.LOGINMETHODS.EMAIL.ISVERIFIED'; + isVerifiedTextDescKey?: 'USER.LOGINMETHODS.EMAIL.ISVERIFIEDDESC'; + value: string | undefined; + type: EditDialogType; + validator?: ValidatorFn; +}; + +export type EditDialogResult = { + value?: string; + isVerified: boolean; +}; + @Component({ selector: 'cnsl-edit-dialog', templateUrl: './edit-dialog.component.html', @@ -31,7 +49,7 @@ export class EditDialogComponent implements OnInit { public countryPhoneCodes: CountryPhoneCode[] = []; constructor( public dialogRef: MatDialogRef, - @Inject(MAT_DIALOG_DATA) public data: any, + @Inject(MAT_DIALOG_DATA) public data: EditDialogData, private countryCallingCodesService: CountryCallingCodesService, ) { if (data.type === EditDialogType.PHONE) { diff --git a/console/src/app/pages/users/user-detail/auth-user-detail/resend-email-dialog/resend-email-dialog.component.html b/console/src/app/pages/users/user-detail/auth-user-detail/resend-email-dialog/resend-email-dialog.component.html index cde6a0cc5f..e74edf38e0 100644 --- a/console/src/app/pages/users/user-detail/auth-user-detail/resend-email-dialog/resend-email-dialog.component.html +++ b/console/src/app/pages/users/user-detail/auth-user-detail/resend-email-dialog/resend-email-dialog.component.html @@ -1,5 +1,5 @@

- {{ 'USER.SENDEMAILDIALOG.TITLE' | translate }} {{ data?.number }} + {{ 'USER.SENDEMAILDIALOG.TITLE' | translate }}

{{ 'USER.SENDEMAILDIALOG.DESCRIPTION' | translate }}

diff --git a/console/src/app/pages/users/user-detail/auth-user-detail/resend-email-dialog/resend-email-dialog.component.ts b/console/src/app/pages/users/user-detail/auth-user-detail/resend-email-dialog/resend-email-dialog.component.ts index 6c8d7aba2a..bcead33780 100644 --- a/console/src/app/pages/users/user-detail/auth-user-detail/resend-email-dialog/resend-email-dialog.component.ts +++ b/console/src/app/pages/users/user-detail/auth-user-detail/resend-email-dialog/resend-email-dialog.component.ts @@ -1,6 +1,12 @@ import { Component, Inject } from '@angular/core'; import { MatDialogRef, MAT_DIALOG_DATA } from '@angular/material/dialog'; +export type ResendEmailDialogData = { + email: string | ''; +}; + +export type ResendEmailDialogResult = { send: true; email: string } | { send: false }; + @Component({ selector: 'cnsl-resend-email-dialog', templateUrl: './resend-email-dialog.component.html', @@ -9,16 +15,16 @@ import { MatDialogRef, MAT_DIALOG_DATA } from '@angular/material/dialog'; export class ResendEmailDialogComponent { public email: string = ''; constructor( - public dialogRef: MatDialogRef, - @Inject(MAT_DIALOG_DATA) public data: any, + public dialogRef: MatDialogRef, + @Inject(MAT_DIALOG_DATA) public data: ResendEmailDialogData, ) { if (data.email) { this.email = data.email; } } - closeDialog(email: string = ''): void { - this.dialogRef.close(email); + closeDialog(): void { + this.dialogRef.close({ send: false }); } closeDialogWithSend(email: string = ''): void { diff --git a/console/src/app/pages/users/user-detail/contact/contact.component.html b/console/src/app/pages/users/user-detail/contact/contact.component.html index cfcc60c0e3..9855185087 100644 --- a/console/src/app/pages/users/user-detail/contact/contact.component.html +++ b/console/src/app/pages/users/user-detail/contact/contact.component.html @@ -1,10 +1,10 @@ -
+
{{ 'USER.EMAIL' | translate }} {{ human.email?.email }} - {{ 'USER.EMAILVERIFIED' | translate }} -
+ {{ 'USER.EMAILVERIFIED' | translate }} +
{{ 'USER.NOTVERIFIED' | translate }} @@ -37,8 +37,8 @@
{{ 'USER.PHONE' | translate }} - {{ 'USER.PHONEVERIFIED' | translate }} -
+ {{ 'USER.PHONEVERIFIED' | translate }} +
{{ 'USER.NOTVERIFIED' | translate }} diff --git a/console/src/app/pages/users/user-detail/contact/contact.component.ts b/console/src/app/pages/users/user-detail/contact/contact.component.ts index 725bcf6ce6..fd16d40c57 100644 --- a/console/src/app/pages/users/user-detail/contact/contact.component.ts +++ b/console/src/app/pages/users/user-detail/contact/contact.component.ts @@ -1,11 +1,12 @@ import { Component, EventEmitter, Input, Output } from '@angular/core'; import { MatDialog } from '@angular/material/dialog'; import { WarnDialogComponent } from 'src/app/modules/warn-dialog/warn-dialog.component'; -import { Human, UserState } from 'src/app/proto/generated/zitadel/user_pb'; import { GrpcAuthService } from 'src/app/services/grpc-auth.service'; import { CodeDialogComponent } from '../auth-user-detail/code-dialog/code-dialog.component'; import { EditDialogType } from '../auth-user-detail/edit-dialog/edit-dialog.component'; +import { HumanUser, UserState } from '@zitadel/proto/zitadel/user/v2/user_pb'; +import { Human } from '@zitadel/proto/zitadel/user_pb'; @Component({ selector: 'cnsl-contact', @@ -15,15 +16,14 @@ import { EditDialogType } from '../auth-user-detail/edit-dialog/edit-dialog.comp export class ContactComponent { @Input() disablePhoneCode: boolean = false; @Input() canWrite: boolean | null = false; - @Input() human?: Human.AsObject; + @Input({ required: true }) human!: HumanUser | Human; @Input() username: string = ''; - @Input() state!: UserState; @Output() editType: EventEmitter = new EventEmitter(); @Output() resendEmailVerification: EventEmitter = new EventEmitter(); @Output() resendPhoneVerification: EventEmitter = new EventEmitter(); @Output() enteredPhoneCode: EventEmitter = new EventEmitter(); @Output() deletedPhone: EventEmitter = new EventEmitter(); - public UserState: any = UserState; + public UserState = UserState; public EditDialogType: any = EditDialogType; constructor( @@ -81,4 +81,18 @@ export class ContactComponent { public openEditDialog(type: EditDialogType): void { this.editType.emit(type); } + + protected get isPhoneVerified() { + if (this.human.$typeName === 'zitadel.user.v2.HumanUser') { + return !!this.human.phone?.isVerified; + } + return this.human.phone?.isPhoneVerified; + } + + protected get isEmailVerified() { + if (this.human.$typeName === 'zitadel.user.v2.HumanUser') { + return !!this.human.email?.isVerified; + } + return this.human.email?.isEmailVerified; + } } diff --git a/console/src/app/pages/users/user-detail/detail-form-machine/detail-form-machine.component.html b/console/src/app/pages/users/user-detail/detail-form-machine/detail-form-machine.component.html index d9a57d9157..4c5fa510de 100644 --- a/console/src/app/pages/users/user-detail/detail-form-machine/detail-form-machine.component.html +++ b/console/src/app/pages/users/user-detail/detail-form-machine/detail-form-machine.component.html @@ -1,8 +1,8 @@ -
+
{{ 'USER.MACHINE.USERNAME' | translate }} - + {{ 'USER.MACHINE.NAME' | translate }} diff --git a/console/src/app/pages/users/user-detail/detail-form-machine/detail-form-machine.component.ts b/console/src/app/pages/users/user-detail/detail-form-machine/detail-form-machine.component.ts index c4e2701986..1016bcc685 100644 --- a/console/src/app/pages/users/user-detail/detail-form-machine/detail-form-machine.component.ts +++ b/console/src/app/pages/users/user-detail/detail-form-machine/detail-form-machine.component.ts @@ -1,55 +1,77 @@ -import { Component, EventEmitter, Input, OnDestroy, OnInit, Output } from '@angular/core'; -import { AbstractControl, UntypedFormBuilder, UntypedFormGroup } from '@angular/forms'; -import { Subscription } from 'rxjs'; +import { Component, DestroyRef, EventEmitter, Input, Output } from '@angular/core'; +import { FormBuilder, FormControl } from '@angular/forms'; +import { combineLatestWith, distinctUntilChanged, ReplaySubject } from 'rxjs'; import { requiredValidator } from 'src/app/modules/form-field/validators/validators'; -import { AccessTokenType, Human, Machine } from 'src/app/proto/generated/zitadel/user_pb'; +import { AccessTokenType, MachineUser } from '@zitadel/proto/zitadel/user/v2/user_pb'; +import { startWith } from 'rxjs/operators'; +import { takeUntilDestroyed } from '@angular/core/rxjs-interop'; @Component({ selector: 'cnsl-detail-form-machine', templateUrl: './detail-form-machine.component.html', styleUrls: ['./detail-form-machine.component.scss'], }) -export class DetailFormMachineComponent implements OnInit, OnDestroy { - @Input() public username!: string; - @Input() public user!: Human.AsObject | Machine.AsObject; - @Input() public disabled: boolean = false; - @Output() public submitData: EventEmitter = new EventEmitter(); +export class DetailFormMachineComponent { + @Input({ required: true }) public set username(username: string) { + this.username$.next(username); + } + @Input({ required: true }) public set user(user: MachineUser) { + this.user$.next(user); + } + @Input() public set disabled(disabled: boolean) { + this.disabled$.next(disabled); + } - public machineForm!: UntypedFormGroup; + private username$ = new ReplaySubject(1); + private user$ = new ReplaySubject(1); + private disabled$ = new ReplaySubject(1); - public accessTokenTypes: AccessTokenType[] = [ - AccessTokenType.ACCESS_TOKEN_TYPE_BEARER, - AccessTokenType.ACCESS_TOKEN_TYPE_JWT, - ]; + public machineForm: ReturnType; - private sub: Subscription = new Subscription(); + @Output() public submitData = new EventEmitter>(); - constructor(private fb: UntypedFormBuilder) { - this.machineForm = this.fb.group({ - userName: [{ value: '', disabled: true }, [requiredValidator]], - name: [{ value: '', disabled: this.disabled }, requiredValidator], - description: [{ value: '', disabled: this.disabled }], - accessTokenType: [AccessTokenType.ACCESS_TOKEN_TYPE_BEARER, [requiredValidator]], + public accessTokenTypes: AccessTokenType[] = [AccessTokenType.BEARER, AccessTokenType.JWT]; + + constructor( + private readonly fb: FormBuilder, + private readonly destroyRef: DestroyRef, + ) { + this.machineForm = this.buildForm(); + } + + private buildForm() { + const form = this.fb.group({ + username: new FormControl('', { nonNullable: true, validators: [requiredValidator] }), + name: new FormControl('', { nonNullable: true, validators: [requiredValidator] }), + description: new FormControl('', { nonNullable: true, validators: [requiredValidator] }), + accessTokenType: new FormControl(AccessTokenType.BEARER, { nonNullable: true, validators: [requiredValidator] }), }); + + form.controls.username.disable(); + this.disabled$ + .pipe(startWith(false), distinctUntilChanged(), takeUntilDestroyed(this.destroyRef)) + .subscribe((disabled) => { + this.toggleFormControl(form.controls.name, disabled); + this.toggleFormControl(form.controls.description, disabled); + this.toggleFormControl(form.controls.accessTokenType, disabled); + }); + + this.username$.pipe(combineLatestWith(this.user$), takeUntilDestroyed(this.destroyRef)).subscribe(([username, user]) => { + this.machineForm.patchValue({ ...user, username }); + }); + + return form; } - public ngOnInit(): void { - this.machineForm.patchValue({ ...this.user, userName: this.username }); - } - - public ngOnDestroy(): void { - this.sub.unsubscribe(); + public toggleFormControl(control: FormControl, disabled: boolean) { + if (disabled) { + control.disable(); + return; + } + control.enable(); } public submitForm(): void { - this.submitData.emit(this.machineForm.value); - } - - public get name(): AbstractControl | null { - return this.machineForm.get('name'); - } - - public get userName(): AbstractControl | null { - return this.machineForm.get('userName'); + this.submitData.emit(this.machineForm.getRawValue()); } } diff --git a/console/src/app/pages/users/user-detail/detail-form/detail-form.component.html b/console/src/app/pages/users/user-detail/detail-form/detail-form.component.html index c802cf5cf4..00d5c9cf42 100644 --- a/console/src/app/pages/users/user-detail/detail-form/detail-form.component.html +++ b/console/src/app/pages/users/user-detail/detail-form/detail-form.component.html @@ -1,20 +1,20 @@ - +
@@ -34,11 +34,11 @@
{{ 'USER.PROFILE.FIRSTNAME' | translate }} - + {{ 'USER.PROFILE.LASTNAME' | translate }} - + {{ 'USER.PROFILE.NICKNAME' | translate }} @@ -67,7 +67,7 @@
-
diff --git a/console/src/app/pages/users/user-detail/detail-form/detail-form.component.ts b/console/src/app/pages/users/user-detail/detail-form/detail-form.component.ts index 052f5b642f..ce72f00271 100644 --- a/console/src/app/pages/users/user-detail/detail-form/detail-form.component.ts +++ b/console/src/app/pages/users/user-detail/detail-form/detail-form.component.ts @@ -1,116 +1,138 @@ -import { Component, EventEmitter, Input, OnChanges, OnDestroy, Output } from '@angular/core'; -import { AbstractControl, UntypedFormBuilder, UntypedFormGroup } from '@angular/forms'; +import { Component, DestroyRef, EventEmitter, Input, OnInit, Output } from '@angular/core'; +import { FormBuilder, FormControl } from '@angular/forms'; import { MatDialog } from '@angular/material/dialog'; -import { Subscription } from 'rxjs'; +import { combineLatestWith, distinctUntilChanged, ReplaySubject } from 'rxjs'; import { requiredValidator } from 'src/app/modules/form-field/validators/validators'; -import { Gender, Human, Profile } from 'src/app/proto/generated/zitadel/user_pb'; - import { ProfilePictureComponent } from './profile-picture/profile-picture.component'; +import { Gender, HumanProfile, HumanProfileSchema } from '@zitadel/proto/zitadel/user/v2/user_pb'; +import { filter, startWith } from 'rxjs/operators'; +import { takeUntilDestroyed } from '@angular/core/rxjs-interop'; +import { Profile } from '@zitadel/proto/zitadel/user_pb'; +import { create } from '@bufbuild/protobuf'; + +function toHumanProfile(profile: HumanProfile | Profile): HumanProfile { + if (profile.$typeName === 'zitadel.user.v2.HumanProfile') { + return profile; + } + return create(HumanProfileSchema, { + givenName: profile.firstName, + familyName: profile.lastName, + nickName: profile.nickName, + displayName: profile.displayName, + preferredLanguage: profile.preferredLanguage, + gender: profile.gender, + avatarUrl: profile.avatarUrl, + }); +} @Component({ selector: 'cnsl-detail-form', templateUrl: './detail-form.component.html', styleUrls: ['./detail-form.component.scss'], }) -export class DetailFormComponent implements OnDestroy, OnChanges { +export class DetailFormComponent implements OnInit { @Input() public showEditImage: boolean = false; @Input() public preferredLoginName: string = ''; - @Input() public username!: string; - @Input() public user!: Human.AsObject; - @Input() public disabled: boolean = true; + @Input({ required: true }) public set username(username: string) { + this.username$.next(username); + } + @Input({ required: true }) public set profile(profile: HumanProfile | Profile) { + this.profile$.next(toHumanProfile(profile)); + } + @Input() public set disabled(disabled: boolean) { + this.disabled$.next(disabled); + } @Input() public genders: Gender[] = []; @Input() public languages: string[] = ['de', 'en']; - @Output() public submitData: EventEmitter = new EventEmitter(); @Output() public changedLanguage: EventEmitter = new EventEmitter(); @Output() public changeUsernameClicked: EventEmitter = new EventEmitter(); @Output() public avatarChanged: EventEmitter = new EventEmitter(); - public profileForm!: UntypedFormGroup; - - private sub: Subscription = new Subscription(); + private username$ = new ReplaySubject(1); + public profile$ = new ReplaySubject(1); + public profileForm!: ReturnType; + public disabled$ = new ReplaySubject(1); + @Output() public submitData = new EventEmitter(); constructor( - private fb: UntypedFormBuilder, - private dialog: MatDialog, + private readonly fb: FormBuilder, + private readonly dialog: MatDialog, + private readonly destroyRef: DestroyRef, ) { - this.profileForm = this.fb.group({ - userName: [{ value: '', disabled: true }, [requiredValidator]], - firstName: [{ value: '', disabled: this.disabled }, requiredValidator], - lastName: [{ value: '', disabled: this.disabled }, requiredValidator], - nickName: [{ value: '', disabled: this.disabled }], - displayName: [{ value: '', disabled: this.disabled }, requiredValidator], - gender: [{ value: 0, disabled: this.disabled }], - preferredLanguage: [{ value: '', disabled: this.disabled }], - }); + this.profileForm = this.buildForm(); } - public ngOnChanges(): void { - this.profileForm = this.fb.group({ - userName: [{ value: '', disabled: true }, [requiredValidator]], - firstName: [{ value: '', disabled: this.disabled }, requiredValidator], - lastName: [{ value: '', disabled: this.disabled }, requiredValidator], - nickName: [{ value: '', disabled: this.disabled }], - displayName: [{ value: '', disabled: this.disabled }, requiredValidator], - gender: [{ value: 0, disabled: this.disabled }], - preferredLanguage: [{ value: '', disabled: this.disabled }], + ngOnInit(): void { + this.profileForm.controls.preferredLanguage.valueChanges + .pipe(takeUntilDestroyed(this.destroyRef)) + .subscribe((value) => this.changedLanguage.emit(value)); + } + + private buildForm() { + const form = this.fb.group({ + username: new FormControl('', { nonNullable: true, validators: [requiredValidator] }), + givenName: new FormControl('', { nonNullable: true, validators: [requiredValidator] }), + familyName: new FormControl('', { nonNullable: true, validators: [requiredValidator] }), + nickName: new FormControl('', { nonNullable: true }), + displayName: new FormControl('', { nonNullable: true, validators: [requiredValidator] }), + preferredLanguage: new FormControl('', { nonNullable: true }), + gender: new FormControl(Gender.UNSPECIFIED, { nonNullable: true }), }); - this.profileForm.patchValue({ userName: this.username, ...this.user.profile }); - - if (this.preferredLanguage) { - this.sub = this.preferredLanguage.valueChanges.subscribe((value) => { - this.changedLanguage.emit(value); + form.controls.username.disable(); + this.disabled$ + .pipe(startWith(true), distinctUntilChanged(), takeUntilDestroyed(this.destroyRef)) + .subscribe((disabled) => { + this.toggleFormControl(form.controls.givenName, disabled); + this.toggleFormControl(form.controls.familyName, disabled); + this.toggleFormControl(form.controls.nickName, disabled); + this.toggleFormControl(form.controls.displayName, disabled); + this.toggleFormControl(form.controls.gender, disabled); + this.toggleFormControl(form.controls.preferredLanguage, disabled); }); - } + + this.username$ + .pipe(combineLatestWith(this.profile$), takeUntilDestroyed(this.destroyRef)) + .subscribe(([username, profile]) => { + form.patchValue({ + username: username, + ...profile, + }); + }); + + return form; } - public ngOnDestroy(): void { - this.sub.unsubscribe(); - } - - public submitForm(): void { - this.submitData.emit(this.profileForm.value); + public submitForm(profile: HumanProfile): void { + this.submitData.emit({ ...profile, ...this.profileForm.getRawValue() }); } public changeUsername(): void { this.changeUsernameClicked.emit(); } - public openUploadDialog(): void { - const dialogRef = this.dialog.open(ProfilePictureComponent, { - data: { - profilePic: this.user.profile?.avatarUrl, - }, + public openUploadDialog(profile: HumanProfile): void { + const data = { + profilePic: profile.avatarUrl, + }; + + const dialogRef = this.dialog.open(ProfilePictureComponent, { width: '400px', }); - dialogRef.afterClosed().subscribe((shouldReload) => { - if (shouldReload) { + dialogRef + .afterClosed() + .pipe(filter(Boolean)) + .subscribe(() => { this.avatarChanged.emit(); - } - }); + }); } - public get userName(): AbstractControl | null { - return this.profileForm.get('userName'); - } - - public get firstName(): AbstractControl | null { - return this.profileForm.get('firstName'); - } - public get lastName(): AbstractControl | null { - return this.profileForm.get('lastName'); - } - public get nickName(): AbstractControl | null { - return this.profileForm.get('nickName'); - } - public get displayName(): AbstractControl | null { - return this.profileForm.get('displayName'); - } - public get gender(): AbstractControl | null { - return this.profileForm.get('gender'); - } - public get preferredLanguage(): AbstractControl | null { - return this.profileForm.get('preferredLanguage'); + public toggleFormControl(control: FormControl, disabled: boolean) { + if (disabled) { + control.disable(); + return; + } + control.enable(); } } diff --git a/console/src/app/pages/users/user-detail/external-idps/external-idps.component.ts b/console/src/app/pages/users/user-detail/external-idps/external-idps.component.ts index dddeb1627b..26f5b4235d 100644 --- a/console/src/app/pages/users/user-detail/external-idps/external-idps.component.ts +++ b/console/src/app/pages/users/user-detail/external-idps/external-idps.component.ts @@ -3,14 +3,14 @@ import { Component, Input, OnDestroy, OnInit, ViewChild } from '@angular/core'; import { MatDialog } from '@angular/material/dialog'; import { MatTableDataSource } from '@angular/material/table'; import { Timestamp } from 'google-protobuf/google/protobuf/timestamp_pb'; -import { BehaviorSubject, Observable } from 'rxjs'; +import { BehaviorSubject, firstValueFrom, Observable } from 'rxjs'; import { PageEvent, PaginatorComponent } from 'src/app/modules/paginator/paginator.component'; import { WarnDialogComponent } from 'src/app/modules/warn-dialog/warn-dialog.component'; import { IDPUserLink } from 'src/app/proto/generated/zitadel/idp_pb'; -import { GrpcAuthService } from '../../../../services/grpc-auth.service'; -import { ManagementService } from '../../../../services/mgmt.service'; -import { ToastService } from '../../../../services/toast.service'; +import { GrpcAuthService } from 'src/app/services/grpc-auth.service'; +import { ManagementService } from 'src/app/services/mgmt.service'; +import { ToastService } from 'src/app/services/toast.service'; @Component({ selector: 'cnsl-external-idps', @@ -18,7 +18,7 @@ import { ToastService } from '../../../../services/toast.service'; styleUrls: ['./external-idps.component.scss'], }) export class ExternalIdpsComponent implements OnInit, OnDestroy { - @Input() service!: GrpcAuthService | ManagementService; + @Input({ required: true }) service!: GrpcAuthService | ManagementService; @Input() userId!: string; @ViewChild(PaginatorComponent) public paginator!: PaginatorComponent; public totalResult: number = 0; @@ -41,7 +41,7 @@ export class ExternalIdpsComponent implements OnInit, OnDestroy { ) {} ngOnInit(): void { - this.getData(10, 0); + this.getData(10, 0).then(); } ngOnDestroy(): void { @@ -65,39 +65,37 @@ export class ExternalIdpsComponent implements OnInit, OnDestroy { private async getData(limit: number, offset: number): Promise { this.loadingSubject.next(true); - let promise; - if (this.service instanceof ManagementService) { - promise = (this.service as ManagementService).listHumanLinkedIDPs(this.userId, limit, offset); - } else if (this.service instanceof GrpcAuthService) { - promise = (this.service as GrpcAuthService).listMyLinkedIDPs(limit, offset); + const promise = + this.service instanceof ManagementService + ? (this.service as ManagementService).listHumanLinkedIDPs(this.userId, limit, offset) + : (this.service as GrpcAuthService).listMyLinkedIDPs(limit, offset); + + let resp; + try { + resp = await promise; + } catch (error) { + this.toast.showError(error); + this.loadingSubject.next(false); + return; } - if (promise) { - promise - .then((resp) => { - this.dataSource.data = resp.resultList; - if (resp.details?.viewTimestamp) { - this.viewTimestamp = resp.details.viewTimestamp; - } - if (resp.details?.totalResult) { - this.totalResult = resp.details?.totalResult; - } else { - this.totalResult = 0; - } - this.loadingSubject.next(false); - }) - .catch((error: any) => { - this.toast.showError(error); - this.loadingSubject.next(false); - }); + this.dataSource.data = resp.resultList; + if (resp.details?.viewTimestamp) { + this.viewTimestamp = resp.details.viewTimestamp; } + if (resp.details?.totalResult) { + this.totalResult = resp.details?.totalResult; + } else { + this.totalResult = 0; + } + this.loadingSubject.next(false); } public refreshPage(): void { - this.getData(this.paginator.pageSize, this.paginator.pageIndex * this.paginator.pageSize); + this.getData(this.paginator.pageSize, this.paginator.pageIndex * this.paginator.pageSize).then(); } - public removeExternalIdp(idp: IDPUserLink.AsObject): void { + public async removeExternalIdp(idp: IDPUserLink.AsObject): Promise { const dialogRef = this.dialog.open(WarnDialogComponent, { data: { confirmKey: 'ACTIONS.REMOVE', @@ -108,27 +106,23 @@ export class ExternalIdpsComponent implements OnInit, OnDestroy { width: '400px', }); - dialogRef.afterClosed().subscribe((resp) => { - if (resp) { - let promise; - if (this.service instanceof ManagementService) { - promise = (this.service as ManagementService).removeHumanLinkedIDP(idp.idpId, idp.providedUserId, idp.userId); - } else if (this.service instanceof GrpcAuthService) { - promise = (this.service as GrpcAuthService).removeMyLinkedIDP(idp.idpId, idp.providedUserId); - } + const resp = await firstValueFrom(dialogRef.afterClosed()); + if (!resp) { + return; + } - if (promise) { - promise - .then((_) => { - setTimeout(() => { - this.refreshPage(); - }, 1000); - }) - .catch((error: any) => { - this.toast.showError(error); - }); - } - } - }); + const promise = + this.service instanceof ManagementService + ? (this.service as ManagementService).removeHumanLinkedIDP(idp.idpId, idp.providedUserId, idp.userId) + : (this.service as GrpcAuthService).removeMyLinkedIDP(idp.idpId, idp.providedUserId); + + try { + await promise; + setTimeout(() => { + this.refreshPage(); + }, 1000); + } catch (error) { + this.toast.showError(error); + } } } diff --git a/console/src/app/pages/users/user-detail/password/password.component.html b/console/src/app/pages/users/user-detail/password/password.component.html index 43cca85fd9..10f3064f0d 100644 --- a/console/src/app/pages/users/user-detail/password/password.component.html +++ b/console/src/app/pages/users/user-detail/password/password.component.html @@ -1,9 +1,9 @@ - +

{{ 'USER.PASSWORD.DESCRIPTION' | translate }}

- - + +
-
- +
+ +
-
- -
+ + -
- +
+ +
@@ -74,9 +76,9 @@
- -
+ diff --git a/console/src/app/pages/users/user-detail/password/password.component.ts b/console/src/app/pages/users/user-detail/password/password.component.ts index 904981047a..b37d79c39b 100644 --- a/console/src/app/pages/users/user-detail/password/password.component.ts +++ b/console/src/app/pages/users/user-detail/password/password.component.ts @@ -1,7 +1,18 @@ -import { Component, OnDestroy } from '@angular/core'; +import { Component, DestroyRef, OnInit } from '@angular/core'; import { AbstractControl, UntypedFormBuilder, UntypedFormGroup, Validators } from '@angular/forms'; import { ActivatedRoute } from '@angular/router'; -import { Subject, Subscription, take, takeUntil } from 'rxjs'; +import { + take, + map, + switchMap, + firstValueFrom, + mergeWith, + Observable, + defer, + of, + shareReplay, + combineLatestWith, +} from 'rxjs'; import { containsLowerCaseValidator, containsNumberValidator, @@ -14,161 +25,200 @@ import { import { PasswordComplexityPolicy } from 'src/app/proto/generated/zitadel/policy_pb'; import { Breadcrumb, BreadcrumbService, BreadcrumbType } from 'src/app/services/breadcrumb.service'; import { GrpcAuthService } from 'src/app/services/grpc-auth.service'; -import { ManagementService } from 'src/app/services/mgmt.service'; import { ToastService } from 'src/app/services/toast.service'; +import { catchError, filter } from 'rxjs/operators'; +import { User } from 'src/app/proto/generated/zitadel/user_pb'; +import { takeUntilDestroyed } from '@angular/core/rxjs-interop'; +import { UserService } from '../../../../services/user.service'; @Component({ selector: 'cnsl-password', templateUrl: './password.component.html', styleUrls: ['./password.component.scss'], }) -export class PasswordComponent implements OnDestroy { - userId: string = ''; - public username: string = ''; - - public policy!: PasswordComplexityPolicy.AsObject; - public passwordForm!: UntypedFormGroup; - - private formSub: Subscription = new Subscription(); - private destroy$: Subject = new Subject(); +export class PasswordComponent implements OnInit { + private readonly breadcrumb$: Observable; + protected readonly username$: Observable; + protected readonly id$: Observable; + protected readonly form$: Observable; + protected readonly passwordPolicy$: Observable; + protected readonly user$: Observable; constructor( activatedRoute: ActivatedRoute, - private fb: UntypedFormBuilder, - private authService: GrpcAuthService, - private mgmtUserService: ManagementService, - private toast: ToastService, - private breadcrumbService: BreadcrumbService, + private readonly fb: UntypedFormBuilder, + private readonly authService: GrpcAuthService, + private readonly userService: UserService, + private readonly toast: ToastService, + private readonly breadcrumbService: BreadcrumbService, + private readonly destroyRef: DestroyRef, ) { - activatedRoute.queryParams.pipe(takeUntil(this.destroy$)).subscribe((data) => { - const { username } = data; - this.username = username; - }); - activatedRoute.params.pipe(takeUntil(this.destroy$)).subscribe((data) => { - const { id } = data; - if (id) { - this.userId = id; - breadcrumbService.setBreadcrumb([ + const usernameParam$ = activatedRoute.queryParamMap.pipe( + map((params) => params.get('username')), + filter(Boolean), + ); + this.id$ = activatedRoute.paramMap.pipe(map((params) => params.get('id') ?? undefined)); + + this.user$ = this.authService.user.pipe(take(1), filter(Boolean)); + this.username$ = usernameParam$.pipe(mergeWith(this.user$.pipe(map((user) => user.preferredLoginName)))); + + this.breadcrumb$ = this.getBreadcrumb$(this.id$, this.user$); + this.passwordPolicy$ = this.getPasswordPolicy$().pipe(shareReplay({ refCount: true, bufferSize: 1 })); + const validators$ = this.getValidators$(this.passwordPolicy$); + this.form$ = this.getForm$(this.id$, validators$); + } + + private getBreadcrumb$(id$: Observable, user$: Observable): Observable { + return id$.pipe( + switchMap(async (id) => { + if (id) { + return [ + new Breadcrumb({ + type: BreadcrumbType.ORG, + routerLink: ['/org'], + }), + ]; + } + const user = await firstValueFrom(user$); + if (!user) { + return []; + } + return [ new Breadcrumb({ - type: BreadcrumbType.ORG, - routerLink: ['/org'], + type: BreadcrumbType.AUTHUSER, + name: user.human?.profile?.displayName, + routerLink: ['/users', 'me'], }), - ]); - } else { - this.authService.user.pipe(take(1)).subscribe((user) => { - if (user) { - this.username = user.preferredLoginName; - this.breadcrumbService.setBreadcrumb([ - new Breadcrumb({ - type: BreadcrumbType.AUTHUSER, - name: user.human?.profile?.displayName, - routerLink: ['/users', 'me'], - }), - ]); - } - }); - } + ]; + }), + ); + } - const validators: Validators[] = [requiredValidator]; - this.authService - .getMyPasswordComplexityPolicy() - .then((resp) => { - if (resp.policy) { - this.policy = resp.policy; - } - if (this.policy.minLength) { - validators.push(minLengthValidator(this.policy.minLength)); - } - if (this.policy.hasLowercase) { - validators.push(containsLowerCaseValidator); - } - if (this.policy.hasUppercase) { - validators.push(containsUpperCaseValidator); - } - if (this.policy.hasNumber) { - validators.push(containsNumberValidator); - } - if (this.policy.hasSymbol) { - validators.push(containsSymbolValidator); - } + private getValidators$( + passwordPolicy$: Observable, + ): Observable { + return passwordPolicy$.pipe( + map((policy) => { + const validators: Validators[] = [requiredValidator]; + if (!policy) { + return validators; + } + if (policy.minLength) { + validators.push(minLengthValidator(policy.minLength)); + } + if (policy.hasLowercase) { + validators.push(containsLowerCaseValidator); + } + if (policy.hasUppercase) { + validators.push(containsUpperCaseValidator); + } + if (policy.hasNumber) { + validators.push(containsNumberValidator); + } + if (policy.hasSymbol) { + validators.push(containsSymbolValidator); + } + return validators; + }), + ); + } - this.setupForm(validators); - }) - .catch((error) => { - this.setupForm(validators); - }); + private getForm$( + id$: Observable, + validators$: Observable, + ): Observable { + return id$.pipe( + combineLatestWith(validators$), + map(([id, validators]) => { + if (id) { + return this.fb.group({ + password: ['', validators], + confirmPassword: ['', [requiredValidator, passwordConfirmValidator()]], + }); + } else { + return this.fb.group({ + currentPassword: ['', requiredValidator], + newPassword: ['', validators], + confirmPassword: ['', [requiredValidator, passwordConfirmValidator()]], + }); + } + }), + ); + } + + private getPasswordPolicy$(): Observable { + return defer(() => this.authService.getMyPasswordComplexityPolicy()).pipe( + map((resp) => resp.policy), + catchError(() => of(undefined)), + ); + } + + ngOnInit() { + this.breadcrumb$.pipe(takeUntilDestroyed(this.destroyRef)).subscribe((breadcrumbs) => { + this.breadcrumbService.setBreadcrumb(breadcrumbs); }); } - ngOnDestroy(): void { - this.destroy$.next(); - this.destroy$.complete(); - this.formSub.unsubscribe(); - } + public async setInitialPassword(userId: string, form: UntypedFormGroup): Promise { + const password = this.password(form)?.value; - setupForm(validators: Validators[]): void { - if (this.userId) { - this.passwordForm = this.fb.group({ - password: ['', validators], - confirmPassword: ['', [requiredValidator, passwordConfirmValidator()]], + if (form.invalid || !password) { + return; + } + + try { + await this.userService.setPassword({ + userId, + newPassword: { + password, + changeRequired: false, + }, }); - } else { - this.passwordForm = this.fb.group({ - currentPassword: ['', requiredValidator], - newPassword: ['', validators], - confirmPassword: ['', [requiredValidator, passwordConfirmValidator()]], + } catch (error) { + this.toast.showError(error); + return; + } + this.toast.showInfo('USER.TOAST.INITIALPASSWORDSET', true); + window.history.back(); + } + + public async setPassword(form: UntypedFormGroup, user: User.AsObject): Promise { + const currentPassword = this.currentPassword(form); + const newPassword = this.newPassword(form); + + if (form.invalid || !currentPassword?.value || !newPassword?.value || newPassword?.invalid) { + return; + } + + try { + await this.userService.setPassword({ + userId: user.id, + newPassword: { + password: newPassword.value, + changeRequired: false, + }, + verification: { + case: 'currentPassword', + value: currentPassword.value, + }, }); + } catch (error) { + this.toast.showError(error); + return; } + this.toast.showInfo('USER.TOAST.PASSWORDCHANGED', true); + window.history.back(); } - public setInitialPassword(userId: string): void { - if (this.passwordForm.valid && this.password && this.password.value) { - this.mgmtUserService - .setHumanInitialPassword(userId, this.password.value) - .then((data: any) => { - this.toast.showInfo('USER.TOAST.INITIALPASSWORDSET', true); - window.history.back(); - }) - .catch((error) => { - this.toast.showError(error); - }); - } + public password(form: UntypedFormGroup): AbstractControl | null { + return form.get('password'); } - public setPassword(): void { - if ( - this.passwordForm.valid && - this.currentPassword && - this.currentPassword.value && - this.newPassword && - this.newPassword.value && - this.newPassword.valid - ) { - this.authService - .updateMyPassword(this.currentPassword.value, this.newPassword.value) - .then((data: any) => { - this.toast.showInfo('USER.TOAST.PASSWORDCHANGED', true); - window.history.back(); - }) - .catch((error) => { - this.toast.showError(error); - }); - } + public newPassword(form: UntypedFormGroup): AbstractControl | null { + return form.get('newPassword'); } - public get password(): AbstractControl | null { - return this.passwordForm.get('password'); - } - - public get newPassword(): AbstractControl | null { - return this.passwordForm.get('newPassword'); - } - - public get currentPassword(): AbstractControl | null { - return this.passwordForm.get('currentPassword'); - } - - public get confirmPassword(): AbstractControl | null { - return this.passwordForm.get('confirmPassword'); + public currentPassword(form: UntypedFormGroup): AbstractControl | null { + return form.get('currentPassword'); } } diff --git a/console/src/app/pages/users/user-detail/user-detail/passwordless/passwordless.component.html b/console/src/app/pages/users/user-detail/user-detail/passwordless/passwordless.component.html index 6726f98f98..507c0b929f 100644 --- a/console/src/app/pages/users/user-detail/user-detail/passwordless/passwordless.component.html +++ b/console/src/app/pages/users/user-detail/user-detail/passwordless/passwordless.component.html @@ -14,7 +14,7 @@ - - - - - - + + + + + + + + - - - + + -
-
- -
-
- -
-

{{ 'USER.PAGES.NOUSER' | translate }}

-
- -
- - -
-

{{ error }}

-
- -
- - {{ 'USER.PAGES.LOCKEDDESCRIPTION' | translate }} - {{ 'USER.PAGES.NOUSER' | translate }} - -
- -
- {{ 'USER.ISINITIAL' | translate }} - -
- -
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
-
-
- {{ 'USER.PASSWORD.LABEL' | translate }} - ********* - - -
- -
- - - -
-
-
- - - - - - - - - - - - - - - - - - - - - - - - -
- -
- - +
+
+
- -
+
+ +
+

{{ 'USER.PAGES.NOUSER' | translate }}

+
+ + +
+ + +
+ + {{ 'USER.PAGES.LOCKEDDESCRIPTION' | translate }} +
+ +
+ {{ 'USER.ISINITIAL' | translate }} + +
+ +
+ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
+
+
+ {{ 'USER.PASSWORD.LABEL' | translate }} + ********* + + +
+ +
+ + + +
+
+
+ + + + + + + + + + + + + + + + + + + + + + + + +
+ +
+ + +
+ +
+ + diff --git a/console/src/app/pages/users/user-detail/user-detail/user-detail.component.ts b/console/src/app/pages/users/user-detail/user-detail/user-detail.component.ts index 2418baafc4..5e2d5fd041 100644 --- a/console/src/app/pages/users/user-detail/user-detail/user-detail.component.ts +++ b/console/src/app/pages/users/user-detail/user-detail/user-detail.component.ts @@ -1,32 +1,61 @@ import { MediaMatcher } from '@angular/cdk/layout'; import { Location } from '@angular/common'; -import { Component, EventEmitter, OnInit } from '@angular/core'; +import { Component, DestroyRef, EventEmitter, OnInit } from '@angular/core'; import { Validators } from '@angular/forms'; import { MatDialog } from '@angular/material/dialog'; import { ActivatedRoute, Params, Router } from '@angular/router'; import { TranslateService } from '@ngx-translate/core'; import { Buffer } from 'buffer'; -import { take } from 'rxjs/operators'; +import { catchError, filter, map, startWith, tap, withLatestFrom } from 'rxjs/operators'; import { ChangeType } from 'src/app/modules/changes/changes.component'; import { phoneValidator, requiredValidator } from 'src/app/modules/form-field/validators/validators'; import { InfoSectionType } from 'src/app/modules/info-section/info-section.component'; -import { MetadataDialogComponent } from 'src/app/modules/metadata/metadata-dialog/metadata-dialog.component'; +import { + MetadataDialogComponent, + MetadataDialogData, +} from 'src/app/modules/metadata/metadata-dialog/metadata-dialog.component'; import { SidenavSetting } from 'src/app/modules/sidenav/sidenav.component'; import { UserGrantContext } from 'src/app/modules/user-grants/user-grants-datasource'; import { WarnDialogComponent } from 'src/app/modules/warn-dialog/warn-dialog.component'; -import { SendHumanResetPasswordNotificationRequest, UnlockUserRequest } from 'src/app/proto/generated/zitadel/management_pb'; -import { Metadata } from 'src/app/proto/generated/zitadel/metadata_pb'; -import { LoginPolicy } from 'src/app/proto/generated/zitadel/policy_pb'; -import { Email, Gender, Machine, Phone, Profile, User, UserState } from 'src/app/proto/generated/zitadel/user_pb'; import { Breadcrumb, BreadcrumbService, BreadcrumbType } from 'src/app/services/breadcrumb.service'; -import { ManagementService } from 'src/app/services/mgmt.service'; import { ToastService } from 'src/app/services/toast.service'; import { formatPhone } from 'src/app/utils/formatPhone'; -import { EditDialogComponent, EditDialogType } from '../auth-user-detail/edit-dialog/edit-dialog.component'; -import { ResendEmailDialogComponent } from '../auth-user-detail/resend-email-dialog/resend-email-dialog.component'; +import { + EditDialogData, + EditDialogResult, + EditDialogComponent, + EditDialogType, +} from '../auth-user-detail/edit-dialog/edit-dialog.component'; +import { + ResendEmailDialogComponent, + ResendEmailDialogData, + ResendEmailDialogResult, +} from '../auth-user-detail/resend-email-dialog/resend-email-dialog.component'; import { MachineSecretDialogComponent } from './machine-secret-dialog/machine-secret-dialog.component'; -import { Observable } from 'rxjs'; -import { LanguagesService } from '../../../../services/languages.service'; +import { LanguagesService } from 'src/app/services/languages.service'; +import { UserService } from 'src/app/services/user.service'; +import { Gender, HumanProfile, HumanUser, User as UserV2, UserState } from '@zitadel/proto/zitadel/user/v2/user_pb'; +import { + combineLatestWith, + defer, + EMPTY, + fromEvent, + mergeWith, + Observable, + ObservedValueOf, + of, + shareReplay, + Subject, + switchMap, +} from 'rxjs'; +import { takeUntilDestroyed } from '@angular/core/rxjs-interop'; +import { DetailFormMachineComponent } from '../detail-form-machine/detail-form-machine.component'; +import { NewMgmtService } from 'src/app/services/new-mgmt.service'; +import { LoginPolicy } from '@zitadel/proto/zitadel/policy_pb'; +import { SendHumanResetPasswordNotificationRequest_Type } from '@zitadel/proto/zitadel/management_pb'; +import { pairwiseStartWith } from 'src/app/utils/pairwiseStartWith'; +import { Metadata } from '@zitadel/proto/zitadel/metadata_pb'; +import { ManagementService } from 'src/app/services/mgmt.service'; const GENERAL: SidenavSetting = { id: 'general', i18nKey: 'USER.SETTINGS.GENERAL' }; const GRANTS: SidenavSetting = { id: 'grants', i18nKey: 'USER.SETTINGS.USERGRANTS' }; @@ -37,22 +66,31 @@ const PERSONALACCESSTOKEN: SidenavSetting = { id: 'pat', i18nKey: 'USER.SETTINGS const KEYS: SidenavSetting = { id: 'keys', i18nKey: 'USER.SETTINGS.KEYS' }; const MEMBERSHIPS: SidenavSetting = { id: 'memberships', i18nKey: 'USER.SETTINGS.MEMBERSHIPS' }; +type UserQuery = + | { state: 'success'; value: UserV2 } + | { state: 'error'; value: string } + | { state: 'loading'; value?: UserV2 } + | { state: 'notfound' }; + +type MetadataQuery = + | { state: 'success'; value: Metadata[] } + | { state: 'loading'; value: Metadata[] } + | { state: 'error'; value: string }; + +type UserWithHumanType = Omit & { type: { case: 'human'; value: HumanUser } }; + @Component({ selector: 'cnsl-user-detail', templateUrl: './user-detail.component.html', styleUrls: ['./user-detail.component.scss'], }) export class UserDetailComponent implements OnInit { - public user!: User.AsObject; - public metadata: Metadata.AsObject[] = []; - public genders: Gender[] = [Gender.GENDER_MALE, Gender.GENDER_FEMALE, Gender.GENDER_DIVERSE]; + public user$: Observable; + public genders: Gender[] = [Gender.MALE, Gender.FEMALE, Gender.DIVERSE]; public ChangeType: any = ChangeType; - public loading: boolean = true; - public loadingMetadata: boolean = true; - - public UserState: any = UserState; + public UserState = UserState; public copied: string = ''; public USERGRANTCONTEXT: UserGrantContext = UserGrantContext.USER; @@ -60,32 +98,27 @@ export class UserDetailComponent implements OnInit { public refreshChanges$: EventEmitter = new EventEmitter(); public InfoSectionType: any = InfoSectionType; - public error: string = ''; - - public settingsList: SidenavSetting[] = [GENERAL, GRANTS, MEMBERSHIPS, METADATA]; - public currentSetting: string | undefined = 'general'; - public loginPolicy?: LoginPolicy.AsObject; + public currentSetting$: Observable; + public settingsList$: Observable; + public metadata$: Observable; + public loginPolicy$: Observable; + public refreshMetadata$ = new Subject(); constructor( public translate: TranslateService, - private route: ActivatedRoute, + private readonly route: ActivatedRoute, private toast: ToastService, - public mgmtUserService: ManagementService, private _location: Location, private dialog: MatDialog, private router: Router, - activatedRoute: ActivatedRoute, private mediaMatcher: MediaMatcher, public langSvc: LanguagesService, + private readonly userService: UserService, + private readonly newMgmtService: NewMgmtService, + public readonly mgmtService: ManagementService, breadcrumbService: BreadcrumbService, + private readonly destroyRef: DestroyRef, ) { - activatedRoute.queryParams.pipe(take(1)).subscribe((params: Params) => { - const { id } = params; - if (id) { - this.currentSetting = id; - } - }); - breadcrumbService.setBreadcrumb([ new Breadcrumb({ type: BreadcrumbType.ORG, @@ -93,63 +126,127 @@ export class UserDetailComponent implements OnInit { }), ]); + this.currentSetting$ = this.getCurrentSetting$().pipe(shareReplay({ refCount: true, bufferSize: 1 })); + this.user$ = this.getUser$().pipe(shareReplay({ refCount: true, bufferSize: 1 })); + this.settingsList$ = this.getSettingsList$(this.user$); + this.metadata$ = this.getMetadata$(this.user$).pipe(shareReplay({ refCount: true, bufferSize: 1 })); + + this.loginPolicy$ = defer(() => this.newMgmtService.getLoginPolicy()).pipe( + catchError(() => EMPTY), + map(({ policy }) => policy), + filter(Boolean), + ); + } + + private getId$(): Observable { + return this.route.paramMap.pipe( + map((params) => params.get('id')), + filter(Boolean), + ); + } + + private getUser$(): Observable { + return this.getId$().pipe( + combineLatestWith(this.refreshChanges$.pipe(startWith(undefined))), + switchMap(([id]) => this.getUserById(id)), + pairwiseStartWith(undefined), + map(([prev, curr]) => { + if (prev?.state === 'success' && curr.state === 'loading') { + return { state: 'loading', value: prev.value } as const; + } + return curr; + }), + ); + } + + private getSettingsList$(user$: Observable): Observable { + return user$.pipe( + switchMap((user) => { + if (user.state !== 'success') { + return EMPTY; + } + + if (user.value.type.case === 'human') { + return of([GENERAL, SECURITY, IDP, GRANTS, MEMBERSHIPS, METADATA]); + } else if (user.value.type.case === 'machine') { + return of([GENERAL, GRANTS, MEMBERSHIPS, PERSONALACCESSTOKEN, KEYS, METADATA]); + } + return EMPTY; + }), + startWith([GENERAL, GRANTS, MEMBERSHIPS, METADATA]), + ); + } + + private getCurrentSetting$(): Observable { const mediaq: string = '(max-width: 500px)'; - const small = this.mediaMatcher.matchMedia(mediaq).matches; - if (small) { - this.changeSelection(small); - } - this.mediaMatcher.matchMedia(mediaq).onchange = (small) => { - this.changeSelection(small.matches); - }; + const matcher = this.mediaMatcher.matchMedia(mediaq); + const small$ = fromEvent(matcher, 'change', ({ matches }: MediaQueryListEvent) => matches).pipe( + startWith(matcher.matches), + ); + + return this.route.queryParamMap.pipe( + map((params) => params.get('id')), + filter(Boolean), + startWith('general'), + withLatestFrom(small$), + map(([id, small]) => (small ? undefined : id)), + ); } - private changeSelection(small: boolean): void { - if (small) { - this.currentSetting = undefined; - } else { - this.currentSetting = this.currentSetting === undefined ? 'general' : this.currentSetting; - } - } - - refreshUser(): void { - this.refreshChanges$.emit(); - this.route.params.pipe(take(1)).subscribe((params) => { - this.loading = true; - const { id } = params; - this.mgmtUserService - .getUserByID(id) - .then((resp) => { - this.loadMetadata(id); - this.loading = false; - if (resp.user) { - this.user = resp.user; - - if (this.user.human) { - this.settingsList = [GENERAL, SECURITY, IDP, GRANTS, MEMBERSHIPS, METADATA]; - } else if (this.user.machine) { - this.settingsList = [GENERAL, GRANTS, MEMBERSHIPS, PERSONALACCESSTOKEN, KEYS, METADATA]; - } - } - }) - .catch((err) => { - this.error = err.message ?? ''; - this.loading = false; - this.toast.showError(err); - }); + public async goToSetting(setting: string) { + await this.router.navigate([], { + relativeTo: this.route, + queryParams: { id: setting }, + queryParamsHandling: 'merge', + skipLocationChange: true, }); } - public ngOnInit(): void { - this.refreshUser(); + private getUserById(userId: string): Observable { + return defer(() => this.userService.getUserById(userId)).pipe( + map(({ user }) => { + if (user) { + return { state: 'success', value: user } as const; + } + return { state: 'notfound' } as const; + }), + catchError((error) => of({ state: 'error', value: error.message ?? '' } as const)), + startWith({ state: 'loading' } as const), + ); + } - this.mgmtUserService.getLoginPolicy().then((policy) => { - if (policy.policy) { - this.loginPolicy = policy.policy; + getMetadata$(user$: Observable): Observable { + return this.refreshMetadata$.pipe( + startWith(true), + combineLatestWith(user$), + switchMap(([_, user]) => { + if (!(user.state === 'success' || user.state === 'loading')) { + return EMPTY; + } + if (!user.value) { + return EMPTY; + } + return this.getMetadataById(user.value.userId); + }), + pairwiseStartWith(undefined), + map(([prev, curr]) => { + if (prev?.state === 'success' && curr.state === 'loading') { + return { state: 'loading', value: prev.value } as const; + } + return curr; + }), + ); + } + + public ngOnInit(): void { + this.user$.pipe(mergeWith(this.metadata$), takeUntilDestroyed(this.destroyRef)).subscribe((query) => { + if (query.state == 'error') { + this.toast.showError(query.value); } }); } - public changeUsername(): void { + public changeUsername(user: UserV2): void { const dialogRef = this.dialog.open(EditDialogComponent, { data: { confirmKey: 'ACTIONS.CHANGE', @@ -157,43 +254,45 @@ export class UserDetailComponent implements OnInit { labelKey: 'ACTIONS.NEWVALUE', titleKey: 'USER.PROFILE.CHANGEUSERNAME_TITLE', descriptionKey: 'USER.PROFILE.CHANGEUSERNAME_DESC', - value: this.user.userName, + value: user.username, }, width: '400px', }); - dialogRef.afterClosed().subscribe((resp: { value: string }) => { - if (resp.value && resp.value !== this.user.userName) { - this.mgmtUserService - .updateUserName(this.user.id, resp.value) - .then(() => { - this.toast.showInfo('USER.TOAST.USERNAMECHANGED', true); - this.refreshUser(); - }) - .catch((error) => { - this.toast.showError(error); - }); - } - }); + dialogRef + .afterClosed() + .pipe( + map(({ value }: { value?: string }) => value), + filter(Boolean), + filter((value) => user.username != value), + switchMap((username) => this.userService.updateUser({ userId: user.userId, username })), + ) + .subscribe({ + next: () => { + this.toast.showInfo('USER.TOAST.USERNAMECHANGED', true); + this.refreshChanges$.emit(); + }, + error: (error) => { + this.toast.showError(error); + }, + }); } - public unlockUser(): void { - const req = new UnlockUserRequest(); - req.setId(this.user.id); - this.mgmtUserService - .unlockUser(req) + public unlockUser(user: UserV2): void { + this.userService + .unlockUser(user.userId) .then(() => { this.toast.showInfo('USER.TOAST.UNLOCKED', true); - this.refreshUser(); + this.refreshChanges$.emit(); }) .catch((error) => { this.toast.showError(error); }); } - public generateMachineSecret(): void { - this.mgmtUserService - .generateMachineSecret(this.user.id) + public generateMachineSecret(user: UserV2): void { + this.newMgmtService + .generateMachineSecret(user.userId) .then((resp) => { this.toast.showInfo('USER.TOAST.SECRETGENERATED', true); this.dialog.open(MachineSecretDialogComponent, { @@ -203,64 +302,41 @@ export class UserDetailComponent implements OnInit { }, width: '400px', }); - this.refreshUser(); + this.refreshChanges$.emit(); }) .catch((error) => { this.toast.showError(error); }); } - public removeMachineSecret(): void { - this.mgmtUserService - .removeMachineSecret(this.user.id) - .then((resp) => { + public removeMachineSecret(user: UserV2): void { + this.newMgmtService + .removeMachineSecret(user.userId) + .then(() => { this.toast.showInfo('USER.TOAST.SECRETREMOVED', true); - this.refreshUser(); + this.refreshChanges$.emit(); }) .catch((error) => { this.toast.showError(error); }); } - public changeState(newState: UserState): void { - if (newState === UserState.USER_STATE_ACTIVE) { - this.mgmtUserService - .reactivateUser(this.user.id) + public changeState(user: UserV2, newState: UserState): void { + if (newState === UserState.ACTIVE) { + this.userService + .reactivateUser(user.userId) .then(() => { this.toast.showInfo('USER.TOAST.REACTIVATED', true); - this.user.state = newState; + this.refreshChanges$.emit(); }) .catch((error) => { this.toast.showError(error); }); - } else if (newState === UserState.USER_STATE_INACTIVE) { - this.mgmtUserService - .deactivateUser(this.user.id) + } else if (newState === UserState.INACTIVE) { + this.userService + .deactivateUser(user.userId) .then(() => { this.toast.showInfo('USER.TOAST.DEACTIVATED', true); - this.user.state = newState; - }) - .catch((error) => { - this.toast.showError(error); - }); - } - } - - public saveProfile(profileData: Profile.AsObject): void { - if (this.user.human) { - this.user.human.profile = profileData; - this.mgmtUserService - .updateHumanProfile( - this.user.id, - this.user.human.profile.firstName, - this.user.human.profile.lastName, - this.user.human.profile.nickName, - this.user.human.profile.displayName, - this.user.human.profile.preferredLanguage, - this.user.human.profile.gender, - ) - .then(() => { - this.toast.showInfo('USER.TOAST.SAVED', true); this.refreshChanges$.emit(); }) .catch((error) => { @@ -269,32 +345,48 @@ export class UserDetailComponent implements OnInit { } } - public saveMachine(machineData: Machine.AsObject): void { - if (this.user.machine) { - this.user.machine.name = machineData.name; - this.user.machine.description = machineData.description; - this.user.machine.accessTokenType = machineData.accessTokenType; - - this.mgmtUserService - .updateMachine( - this.user.id, - this.user.machine.name, - this.user.machine.description, - this.user.machine.accessTokenType, - ) - .then(() => { - this.toast.showInfo('USER.TOAST.SAVED', true); - this.refreshChanges$.emit(); - }) - .catch((error) => { - this.toast.showError(error); - }); - } + public saveProfile(user: UserV2, profile: HumanProfile): void { + this.userService + .updateUser({ + userId: user.userId, + profile: { + givenName: profile.givenName, + familyName: profile.familyName, + nickName: profile.nickName, + displayName: profile.displayName, + preferredLanguage: profile.preferredLanguage, + gender: profile.gender, + }, + }) + .then(() => { + this.toast.showInfo('USER.TOAST.SAVED', true); + this.refreshChanges$.emit(); + }) + .catch((error) => { + this.toast.showError(error); + }); } - public resendEmailVerification(): void { - this.mgmtUserService - .resendHumanEmailVerification(this.user.id) + public saveMachine(user: UserV2, form: ObservedValueOf): void { + this.newMgmtService + .updateMachine({ + userId: user.userId, + name: form.name, + description: form.description, + accessTokenType: form.accessTokenType, + }) + .then(() => { + this.toast.showInfo('USER.TOAST.SAVED', true); + this.refreshChanges$.emit(); + }) + .catch((error) => { + this.toast.showError(error); + }); + } + + public resendEmailVerification(user: UserV2): void { + this.newMgmtService + .resendHumanEmailVerification(user.userId) .then(() => { this.toast.showInfo('USER.TOAST.EMAILVERIFICATIONSENT', true); this.refreshChanges$.emit(); @@ -304,9 +396,9 @@ export class UserDetailComponent implements OnInit { }); } - public resendPhoneVerification(): void { - this.mgmtUserService - .resendHumanPhoneVerification(this.user.id) + public resendPhoneVerification(user: UserV2): void { + this.newMgmtService + .resendHumanPhoneVerification(user.userId) .then(() => { this.toast.showInfo('USER.TOAST.PHONEVERIFICATIONSENT', true); this.refreshChanges$.emit(); @@ -316,79 +408,25 @@ export class UserDetailComponent implements OnInit { }); } - public deletePhone(): void { - this.mgmtUserService - .removeHumanPhone(this.user.id) + public deletePhone(user: UserV2): void { + this.userService + .removePhone(user.userId) .then(() => { this.toast.showInfo('USER.TOAST.PHONEREMOVED', true); - if (this.user.human) { - this.user.human.phone = new Phone().setPhone('').toObject(); - this.refreshUser(); - } + this.refreshChanges$.emit(); }) .catch((error) => { this.toast.showError(error); }); } - public saveEmail(email: string, isVerified: boolean): void { - if (this.user.id && email) { - this.mgmtUserService - .updateHumanEmail(this.user.id, email, isVerified) - .then(() => { - this.toast.showInfo('USER.TOAST.EMAILSAVED', true); - if (this.user.state === UserState.USER_STATE_INITIAL) { - this.mgmtUserService - .resendHumanInitialization(this.user.id, email ?? '') - .then(() => { - this.toast.showInfo('USER.TOAST.INITEMAILSENT', true); - this.refreshChanges$.emit(); - }) - .catch((error) => { - this.toast.showError(error); - }); - } - if (this.user.human) { - this.user.human.email = new Email().setEmail(email).toObject(); - this.refreshUser(); - } - }) - .catch((error) => { - this.toast.showError(error); - }); - } - } - - public savePhone(phone: string): void { - if (this.user.id && phone) { - // Format phone before save (add +) - const formattedPhone = formatPhone(phone); - if (formattedPhone) { - phone = formattedPhone.phone; - } - - this.mgmtUserService - .updateHumanPhone(this.user.id, phone) - .then(() => { - this.toast.showInfo('USER.TOAST.PHONESAVED', true); - if (this.user.human) { - this.user.human.phone = new Phone().setPhone(phone).toObject(); - this.refreshUser(); - } - }) - .catch((error) => { - this.toast.showError(error); - }); - } - } - public navigateBack(): void { this._location.back(); } - public sendSetPasswordNotification(): void { - this.mgmtUserService - .sendHumanResetPasswordNotification(this.user.id, SendHumanResetPasswordNotificationRequest.Type.TYPE_EMAIL) + public sendSetPasswordNotification(user: UserV2): void { + this.newMgmtService + .sendHumanResetPasswordNotification(user.userId, SendHumanResetPasswordNotificationRequest_Type.EMAIL) .then(() => { this.toast.showInfo('USER.TOAST.PASSWORDNOTIFICATIONSENT', true); this.refreshChanges$.emit(); @@ -398,143 +436,190 @@ export class UserDetailComponent implements OnInit { }); } - public deleteUser(): void { - const dialogRef = this.dialog.open(WarnDialogComponent, { - data: { - confirmKey: 'ACTIONS.DELETE', - cancelKey: 'ACTIONS.CANCEL', - titleKey: 'USER.DIALOG.DELETE_TITLE', - descriptionKey: 'USER.DIALOG.DELETE_DESCRIPTION', - }, + public deleteUser(user: UserV2): void { + const data = { + confirmKey: 'ACTIONS.DELETE', + cancelKey: 'ACTIONS.CANCEL', + titleKey: 'USER.DIALOG.DELETE_TITLE', + descriptionKey: 'USER.DIALOG.DELETE_DESCRIPTION', + }; + + const dialogRef = this.dialog.open(WarnDialogComponent, { + data, width: '400px', }); - dialogRef.afterClosed().subscribe((resp) => { - if (resp) { - this.mgmtUserService - .removeUser(this.user.id) - .then(() => { - const params: Params = { - deferredReload: true, - type: this.user.human ? 'humans' : 'machines', - }; - this.router.navigate(['/users'], { queryParams: params }); - this.toast.showInfo('USER.TOAST.DELETED', true); - }) - .catch((error) => { - this.toast.showError(error); - }); - } - }); + dialogRef + .afterClosed() + .pipe( + filter(Boolean), + switchMap(() => this.userService.deleteUser(user.userId)), + ) + .subscribe({ + next: () => { + const params: Params = { + deferredReload: true, + type: user.type.case === 'human' ? 'humans' : 'machines', + }; + this.router.navigate(['/users'], { queryParams: params }).then(); + this.toast.showInfo('USER.TOAST.DELETED', true); + }, + error: (error) => this.toast.showError(error), + }); } - public resendInitEmail(): void { - const dialogRef = this.dialog.open(ResendEmailDialogComponent, { - width: '400px', - data: { - email: this.user.human?.email?.email ?? '', + public resendInitEmail(user: UserV2): void { + const dialogRef = this.dialog.open( + ResendEmailDialogComponent, + { + width: '400px', + data: { + email: user.type.case === 'human' ? (user.type.value.email?.email ?? '') : '', + }, }, - }); + ); - dialogRef.afterClosed().subscribe((resp) => { - if (resp.send && this.user.id) { - this.mgmtUserService - .resendHumanInitialization(this.user.id, resp.email ?? '') - .then(() => { - this.toast.showInfo('USER.TOAST.INITEMAILSENT', true); - this.refreshChanges$.emit(); - }) - .catch((error) => { - this.toast.showError(error); - }); - } - }); + dialogRef + .afterClosed() + .pipe( + filter((resp): resp is { send: true; email: string } => !!resp?.send && !!user.userId), + switchMap(({ email }) => this.newMgmtService.resendHumanInitialization(user.userId, email)), + ) + .subscribe({ + next: () => { + this.toast.showInfo('USER.TOAST.INITEMAILSENT', true); + this.refreshChanges$.emit(); + }, + error: (error) => this.toast.showError(error), + }); } - public openEditDialog(type: EditDialogType): void { + public openEditDialog(user: UserWithHumanType, type: EditDialogType): void { switch (type) { case EditDialogType.PHONE: - const dialogRefPhone = this.dialog.open(EditDialogComponent, { - data: { - confirmKey: 'ACTIONS.SAVE', - cancelKey: 'ACTIONS.CANCEL', - labelKey: 'ACTIONS.NEWVALUE', - titleKey: 'USER.LOGINMETHODS.PHONE.EDITTITLE', - descriptionKey: 'USER.LOGINMETHODS.PHONE.EDITDESC', - value: this.user.human?.phone?.phone, - type: EditDialogType.PHONE, - validator: Validators.compose([phoneValidator, requiredValidator]), - }, - width: '400px', - }); - - dialogRefPhone.afterClosed().subscribe((resp: { value: string; isVerified: boolean }) => { - if (resp && resp.value) { - this.savePhone(resp.value); - } - }); - break; + this.openEditPhoneDialog(user); + return; case EditDialogType.EMAIL: - const dialogRefEmail = this.dialog.open(EditDialogComponent, { - data: { - confirmKey: 'ACTIONS.SAVE', - cancelKey: 'ACTIONS.CANCEL', - labelKey: 'ACTIONS.NEWVALUE', - titleKey: 'USER.LOGINMETHODS.EMAIL.EDITTITLE', - descriptionKey: 'USER.LOGINMETHODS.EMAIL.EDITDESC', - isVerifiedTextKey: 'USER.LOGINMETHODS.EMAIL.ISVERIFIED', - isVerifiedTextDescKey: 'USER.LOGINMETHODS.EMAIL.ISVERIFIEDDESC', - value: this.user.human?.email?.email, - type: EditDialogType.EMAIL, - }, - width: '400px', - }); - - dialogRefEmail.afterClosed().subscribe((resp: { value: string; isVerified: boolean }) => { - if (resp && resp.value) { - this.saveEmail(resp.value, resp.isVerified); - } - }); - break; + this.openEditEmailDialog(user); + return; } } - public loadMetadata(id: string): Promise | void { - this.loadingMetadata = true; - return this.mgmtUserService - .listUserMetadata(id) - .then((resp) => { - this.loadingMetadata = false; - this.metadata = resp.resultList.map((md) => { - return { - key: md.key, - value: Buffer.from(md.value as string, 'base64').toString('utf-8'), - }; - }); - }) - .catch((error) => { - this.loadingMetadata = false; - this.toast.showError(error); + private openEditEmailDialog(user: UserWithHumanType) { + const data: EditDialogData = { + confirmKey: 'ACTIONS.SAVE', + cancelKey: 'ACTIONS.CANCEL', + labelKey: 'ACTIONS.NEWVALUE', + titleKey: 'USER.LOGINMETHODS.EMAIL.EDITTITLE', + descriptionKey: 'USER.LOGINMETHODS.EMAIL.EDITDESC', + isVerifiedTextKey: 'USER.LOGINMETHODS.EMAIL.ISVERIFIED', + isVerifiedTextDescKey: 'USER.LOGINMETHODS.EMAIL.ISVERIFIEDDESC', + value: user.type.value?.email?.email, + type: EditDialogType.EMAIL, + } as const; + + const dialogRefEmail = this.dialog.open(EditDialogComponent, { + data, + width: '400px', + }); + + dialogRefEmail + .afterClosed() + .pipe( + filter((resp): resp is Required => !!resp?.value), + switchMap(({ value, isVerified }) => + this.userService.setEmail({ + userId: user.userId, + email: value, + verification: isVerified ? { case: 'isVerified', value: isVerified } : { case: undefined }, + }), + ), + switchMap(() => { + this.toast.showInfo('USER.TOAST.EMAILSAVED', true); + this.refreshChanges$.emit(); + if (user.state !== UserState.INITIAL) { + return EMPTY; + } + return this.userService.resendInviteCode(user.userId); + }), + ) + .subscribe({ + next: () => this.toast.showInfo('USER.TOAST.INITEMAILSENT', true), + error: (error) => this.toast.showError(error), }); } - public editMetadata(): void { - if (this.user) { - const setFcn = (key: string, value: string): Promise => - this.mgmtUserService.setUserMetadata(key, Buffer.from(value).toString('base64'), this.user.id); - const removeFcn = (key: string): Promise => this.mgmtUserService.removeUserMetadata(key, this.user.id); + private openEditPhoneDialog(user: UserWithHumanType) { + const data = { + confirmKey: 'ACTIONS.SAVE', + cancelKey: 'ACTIONS.CANCEL', + labelKey: 'ACTIONS.NEWVALUE', + titleKey: 'USER.LOGINMETHODS.PHONE.EDITTITLE', + descriptionKey: 'USER.LOGINMETHODS.PHONE.EDITDESC', + value: user.type.value.phone?.phone, + type: EditDialogType.PHONE, + validator: Validators.compose([phoneValidator, requiredValidator]), + }; + const dialogRefPhone = this.dialog.open( + EditDialogComponent, + { data, width: '400px' }, + ); - const dialogRef = this.dialog.open(MetadataDialogComponent, { - data: { - metadata: this.metadata, - setFcn: setFcn, - removeFcn: removeFcn, + dialogRefPhone + .afterClosed() + .pipe( + map((resp) => formatPhone(resp?.value)), + filter(Boolean), + switchMap(({ phone }) => this.userService.setPhone({ userId: user.userId, phone })), + ) + .subscribe({ + next: () => { + this.toast.showInfo('USER.TOAST.PHONESAVED', true); + this.refreshChanges$.emit(); + }, + error: (error) => { + this.toast.showError(error); }, }); + } - dialogRef.afterClosed().subscribe(() => { - this.loadMetadata(this.user.id); + private getMetadataById(userId: string): Observable { + return defer(() => this.newMgmtService.listUserMetadata(userId)).pipe( + map((metadata) => ({ state: 'success', value: metadata.result }) as const), + startWith({ state: 'loading', value: [] as Metadata[] } as const), + catchError((err) => of({ state: 'error', value: err.message ?? '' } as const)), + ); + } + + public editMetadata(user: UserV2, metadata: Metadata[]): void { + const setFcn = (key: string, value: string) => + this.newMgmtService.setUserMetadata({ + key, + value: Buffer.from(value), + id: user.userId, }); + const removeFcn = (key: string): Promise => this.newMgmtService.removeUserMetadata({ key, id: user.userId }); + + const dialogRef = this.dialog.open(MetadataDialogComponent, { + data: { + metadata: [...metadata], + setFcn: setFcn, + removeFcn: removeFcn, + }, + }); + + dialogRef + .afterClosed() + .pipe(takeUntilDestroyed(this.destroyRef)) + .subscribe(() => { + this.refreshMetadata$.next(true); + }); + } + + public humanUser(user: UserV2): UserWithHumanType | undefined { + if (user.type.case === 'human') { + return { ...user, type: user.type }; } + return undefined; } } diff --git a/console/src/app/pages/users/user-detail/user-detail/user-mfa/user-mfa.component.html b/console/src/app/pages/users/user-detail/user-detail/user-mfa/user-mfa.component.html index a6d0bf652f..eca556e91d 100644 --- a/console/src/app/pages/users/user-detail/user-detail/user-mfa/user-mfa.component.html +++ b/console/src/app/pages/users/user-detail/user-detail/user-mfa/user-mfa.component.html @@ -1,8 +1,12 @@ - + - +
@@ -40,8 +44,8 @@ {{ 'USER.MFA.STATE.' + mfa.state | translate }} @@ -58,7 +62,7 @@ matTooltip="{{ 'ACTIONS.REMOVE' | translate }}" color="warn" mat-icon-button - (click)="deleteMFA(mfa)" + (click)="deleteMFA(mfaQuery.user, mfa)" > @@ -69,13 +73,13 @@
{{ 'USER.MFA.TABLETYPE' | translate }} - TOTP (Time-based One-Time Password) - U2F (Universal 2nd Factor) - One-Time Password SMS - One-Time Password Email + TOTP (Time-based One-Time Password) + U2F (Universal 2nd Factor) + One-Time Password SMS + One-Time Password Email {{ 'USER.MFA.NAME' | translate }} - - {{ mfa.u2f.name }} + + {{ mfa.type.value.name }}
-
+
{{ 'USER.MFA.EMPTY' | translate }}
- diff --git a/console/src/app/pages/users/user-detail/user-detail/user-mfa/user-mfa.component.ts b/console/src/app/pages/users/user-detail/user-detail/user-mfa/user-mfa.component.ts index 106c6697d0..1a0bbf0ae1 100644 --- a/console/src/app/pages/users/user-detail/user-detail/user-mfa/user-mfa.component.ts +++ b/console/src/app/pages/users/user-detail/user-detail/user-mfa/user-mfa.component.ts @@ -1,65 +1,104 @@ -import { Component, Input, OnDestroy, OnInit, ViewChild } from '@angular/core'; +import { Component, Input, ViewChild } from '@angular/core'; import { MatDialog } from '@angular/material/dialog'; import { MatSort } from '@angular/material/sort'; -import { MatTable, MatTableDataSource } from '@angular/material/table'; -import { BehaviorSubject, Observable } from 'rxjs'; +import { MatTableDataSource } from '@angular/material/table'; +import { combineLatestWith, defer, EMPTY, Observable, ReplaySubject, Subject, switchMap } from 'rxjs'; import { WarnDialogComponent } from 'src/app/modules/warn-dialog/warn-dialog.component'; -import { AuthFactor, AuthFactorState, User } from 'src/app/proto/generated/zitadel/user_pb'; -import { ManagementService } from 'src/app/services/mgmt.service'; import { ToastService } from 'src/app/services/toast.service'; +import { UserService } from 'src/app/services/user.service'; +import { AuthFactor, AuthFactorState, User } from '@zitadel/proto/zitadel/user/v2/user_pb'; +import { catchError, filter, map, startWith } from 'rxjs/operators'; +import { pairwiseStartWith } from 'src/app/utils/pairwiseStartWith'; export interface MFAItem { name: string; verified: boolean; } +type MFAQuery = + | { state: 'success'; value: MatTableDataSource; user: User } + | { state: 'loading'; value: MatTableDataSource; user: User }; + @Component({ selector: 'cnsl-user-mfa', templateUrl: './user-mfa.component.html', styleUrls: ['./user-mfa.component.scss'], }) -export class UserMfaComponent implements OnInit, OnDestroy { - public displayedColumns: string[] = ['type', 'name', 'state', 'actions']; - @Input() public user!: User.AsObject; - public mfaSubject: BehaviorSubject = new BehaviorSubject([]); - private loadingSubject: BehaviorSubject = new BehaviorSubject(false); - public loading$: Observable = this.loadingSubject.asObservable(); +export class UserMfaComponent { + @Input({ required: true }) public set user(user: User) { + this.user$.next(user); + } - @ViewChild(MatTable) public table!: MatTable; @ViewChild(MatSort) public sort!: MatSort; - public dataSource: MatTableDataSource = new MatTableDataSource([]); + public dataSource = new MatTableDataSource([]); - public AuthFactorState: any = AuthFactorState; + public displayedColumns: string[] = ['type', 'name', 'state', 'actions']; + private user$ = new ReplaySubject(1); + public mfaQuery$: Observable; + public refresh$ = new Subject(); + public AuthFactorState = AuthFactorState; - public error: string = ''; constructor( - private mgmtUserService: ManagementService, - private dialog: MatDialog, - private toast: ToastService, - ) {} - - public ngOnInit(): void { - this.getMFAs(); + private readonly dialog: MatDialog, + private readonly toast: ToastService, + private readonly userService: UserService, + ) { + this.mfaQuery$ = this.user$.pipe( + combineLatestWith(this.refresh$.pipe(startWith(true))), + switchMap(([user]) => this.listAuthenticationFactors(user)), + pairwiseStartWith(undefined), + map(([prev, curr]) => { + if (prev?.state === 'success' && curr.state === 'loading') { + return { ...prev, state: 'loading' } as const; + } + return curr; + }), + catchError((error) => { + this.toast.showError(error); + return EMPTY; + }), + ); } - ngOnDestroy(): void { - this.mfaSubject.complete(); - this.loadingSubject.complete(); + private listAuthenticationFactors(user: User): Observable { + return defer(() => this.userService.listAuthenticationFactors({ userId: user.userId })).pipe( + map( + ({ result }) => + ({ + state: 'success', + value: new MatTableDataSource(result), + user, + }) as const, + ), + startWith({ + state: 'loading', + value: new MatTableDataSource([]), + user, + } as const), + ); } - public getMFAs(): void { - this.mgmtUserService - .listHumanMultiFactors(this.user.id) - .then((mfas) => { - this.dataSource = new MatTableDataSource(mfas.resultList); - this.dataSource.sort = this.sort; - }) - .catch((error) => { - this.error = error.message; - }); + private async removeTOTP(user: User) { + await this.userService.removeTOTP(user.userId); + return ['USER.TOAST.OTPREMOVED', 'otp'] as const; } - public deleteMFA(factor: AuthFactor.AsObject): void { + private async removeU2F(user: User, u2fId: string) { + await this.userService.removeU2F(user.userId, u2fId); + return ['USER.TOAST.U2FREMOVED', 'u2f'] as const; + } + + private async removeOTPEmail(user: User) { + await this.userService.removeOTPEmail(user.userId); + return ['USER.TOAST.OTPREMOVED', 'otpEmail'] as const; + } + + private async removeOTPSMS(user: User) { + await this.userService.removeOTPSMS(user.userId); + return ['USER.TOAST.OTPREMOVED', 'otpSms'] as const; + } + + public deleteMFA(user: User, factor: AuthFactor): void { const dialogRef = this.dialog.open(WarnDialogComponent, { data: { confirmKey: 'ACTIONS.DELETE', @@ -70,70 +109,35 @@ export class UserMfaComponent implements OnInit, OnDestroy { width: '400px', }); - dialogRef.afterClosed().subscribe((resp) => { - if (resp) { - if (factor.otp) { - this.mgmtUserService - .removeHumanMultiFactorOTP(this.user.id) - .then(() => { - this.toast.showInfo('USER.TOAST.OTPREMOVED', true); - - const index = this.dataSource.data.findIndex((mfa) => !!mfa.otp); - if (index > -1) { - this.dataSource.data.splice(index, 1); - } - this.getMFAs(); - }) - .catch((error) => { - this.toast.showError(error); - }); - } else if (factor.u2f) { - this.mgmtUserService - .removeHumanAuthFactorU2F(this.user.id, factor.u2f.id) - .then(() => { - this.toast.showInfo('USER.TOAST.U2FREMOVED', true); - - const index = this.dataSource.data.findIndex((mfa) => !!mfa.u2f); - if (index > -1) { - this.dataSource.data.splice(index, 1); - } - this.getMFAs(); - }) - .catch((error) => { - this.toast.showError(error); - }); - } else if (factor.otpEmail) { - this.mgmtUserService - .removeHumanAuthFactorOTPEmail(this.user.id) - .then(() => { - this.toast.showInfo('USER.TOAST.OTPREMOVED', true); - - const index = this.dataSource.data.findIndex((mfa) => !!mfa.otpEmail); - if (index > -1) { - this.dataSource.data.splice(index, 1); - } - this.getMFAs(); - }) - .catch((error) => { - this.toast.showError(error); - }); - } else if (factor.otpSms) { - this.mgmtUserService - .removeHumanAuthFactorOTPSMS(this.user.id) - .then(() => { - this.toast.showInfo('USER.TOAST.OTPREMOVED', true); - - const index = this.dataSource.data.findIndex((mfa) => !!mfa.otpSms); - if (index > -1) { - this.dataSource.data.splice(index, 1); - } - this.getMFAs(); - }) - .catch((error) => { - this.toast.showError(error); - }); - } - } - }); + dialogRef + .afterClosed() + .pipe( + filter(Boolean), + switchMap(() => { + switch (factor.type.case) { + case 'otp': + return this.removeTOTP(user); + case 'u2f': + return this.removeU2F(user, factor.type.value.id); + case 'otpEmail': + return this.removeOTPEmail(user); + case 'otpSms': + return this.removeOTPSMS(user); + default: + throw new Error('Unknown MFA type'); + } + }), + ) + .subscribe({ + next: ([translation, caseId]) => { + this.toast.showInfo(translation, true); + const index = this.dataSource.data.findIndex((mfa) => mfa.type.case === caseId); + if (index > -1) { + this.dataSource.data.splice(index, 1); + } + this.refresh$.next(true); + }, + error: (error) => this.toast.showError(error), + }); } } diff --git a/console/src/app/pages/users/user-list/user-list.component.html b/console/src/app/pages/users/user-list/user-list.component.html index b7d2110245..132b5b7942 100644 --- a/console/src/app/pages/users/user-list/user-list.component.html +++ b/console/src/app/pages/users/user-list/user-list.component.html @@ -1,5 +1,5 @@
-
+

{{ 'DESCRIPTIONS.USERS.TITLE' | translate }}

@@ -7,21 +7,6 @@

{{ 'DESCRIPTIONS.USERS.DESCRIPTION' | translate }}

- - - - - - - - +
diff --git a/console/src/app/pages/users/user-list/user-list.component.ts b/console/src/app/pages/users/user-list/user-list.component.ts index 9773f89dd6..ffb0b96b64 100644 --- a/console/src/app/pages/users/user-list/user-list.component.ts +++ b/console/src/app/pages/users/user-list/user-list.component.ts @@ -1,8 +1,5 @@ import { Component } from '@angular/core'; -import { ActivatedRoute, Params } from '@angular/router'; import { TranslateService } from '@ngx-translate/core'; -import { take } from 'rxjs/operators'; -import { Type } from 'src/app/proto/generated/zitadel/user_pb'; import { Breadcrumb, BreadcrumbService, BreadcrumbType } from 'src/app/services/breadcrumb.service'; @Component({ @@ -11,23 +8,10 @@ import { Breadcrumb, BreadcrumbService, BreadcrumbType } from 'src/app/services/ styleUrls: ['./user-list.component.scss'], }) export class UserListComponent { - public Type: any = Type; - public type: Type = Type.TYPE_HUMAN; - constructor( - public translate: TranslateService, - activatedRoute: ActivatedRoute, + protected readonly translate: TranslateService, breadcrumbService: BreadcrumbService, ) { - activatedRoute.queryParams.pipe(take(1)).subscribe((params: Params) => { - const { type } = params; - if (type && type === 'human') { - this.type = Type.TYPE_HUMAN; - } else if (type && type === 'machine') { - this.type = Type.TYPE_MACHINE; - } - }); - const bread: Breadcrumb = { type: BreadcrumbType.ORG, routerLink: ['/org'], diff --git a/console/src/app/pages/users/user-list/user-table/user-table.component.html b/console/src/app/pages/users/user-list/user-table/user-table.component.html index cc81a4d4c0..07583b5626 100644 --- a/console/src/app/pages/users/user-list/user-table/user-table.component.html +++ b/console/src/app/pages/users/user-list/user-table/user-table.component.html @@ -1,31 +1,30 @@

{{ - (type === Type.TYPE_HUMAN ? 'DESCRIPTIONS.USERS.HUMANS.DESCRIPTION' : 'DESCRIPTIONS.USERS.MACHINES.DESCRIPTION') - | translate + (type === Type.HUMAN ? 'DESCRIPTIONS.USERS.HUMANS.DESCRIPTION' : 'DESCRIPTIONS.USERS.MACHINES.DESCRIPTION') | translate }}

@@ -61,12 +60,12 @@
@@ -86,7 +85,7 @@
- +
- - - - - - - - - - @@ -242,27 +221,25 @@ - +
@@ -115,10 +114,10 @@ [checked]="selection.isSelected(user)" > @@ -134,87 +133,67 @@ -
+ {{ 'USER.PROFILE.DISPLAYNAME' | translate }} - {{ user.human.profile?.displayName }} - {{ user.machine.name }} + + {{ user.type.value?.profile?.displayName }} + {{ user.type.value.name }} + {{ 'USER.PROFILE.PREFERREDLOGINNAME' | translate }} - {{ user.preferredLoginName }} + + {{ user.preferredLoginName }} + {{ 'USER.PROFILE.USERNAME' | translate }} - {{ user.userName }} + + {{ user.username }} + {{ 'USER.EMAIL' | translate }} - {{ user.human?.email.email }} + + {{ user.type.value.email.email }} {{ 'USER.DATA.STATE' | translate }} + - {{ 'USER.DATA.STATE' + user.state | translate }} + {{ 'USER.STATEV2.' + user.state | translate }} {{ 'USER.TABLE.CREATIONDATE' | translate }} + {{ user.details.creationDate | timestampToDate | localizedDate: 'regular' }} {{ 'USER.TABLE.CHANGEDATE' | translate }} + {{ user.details.changeDate | timestampToDate | localizedDate: 'regular' }}
-
+
{{ 'USER.TABLE.EMPTY' | translate }}
+ diff --git a/console/src/app/pages/users/user-list/user-table/user-table.component.ts b/console/src/app/pages/users/user-list/user-table/user-table.component.ts index 2eb694866e..79481de63d 100644 --- a/console/src/app/pages/users/user-list/user-table/user-table.component.ts +++ b/console/src/app/pages/users/user-list/user-table/user-table.component.ts @@ -1,30 +1,45 @@ -import { LiveAnnouncer } from '@angular/cdk/a11y'; import { SelectionModel } from '@angular/cdk/collections'; -import { Component, EventEmitter, Input, OnInit, Output, ViewChild } from '@angular/core'; +import { Component, DestroyRef, EventEmitter, Input, OnInit, Output, signal, Signal, ViewChild } from '@angular/core'; import { MatDialog } from '@angular/material/dialog'; -import { MatSort, Sort } from '@angular/material/sort'; +import { MatSort, SortDirection } from '@angular/material/sort'; import { MatTableDataSource } from '@angular/material/table'; import { ActivatedRoute, Router } from '@angular/router'; import { TranslateService } from '@ngx-translate/core'; -import { BehaviorSubject, Observable, of } from 'rxjs'; -import { take } from 'rxjs/operators'; +import { + combineLatestWith, + defer, + delay, + distinctUntilChanged, + EMPTY, + from, + Observable, + of, + ReplaySubject, + shareReplay, + switchMap, + toArray, +} from 'rxjs'; +import { catchError, filter, finalize, map, startWith, take } from 'rxjs/operators'; import { enterAnimations } from 'src/app/animations'; import { ActionKeysType } from 'src/app/modules/action-keys/action-keys.component'; -import { PageEvent, PaginatorComponent } from 'src/app/modules/paginator/paginator.component'; +import { PaginatorComponent } from 'src/app/modules/paginator/paginator.component'; import { WarnDialogComponent } from 'src/app/modules/warn-dialog/warn-dialog.component'; -import { Timestamp } from 'src/app/proto/generated/google/protobuf/timestamp_pb'; -import { SearchQuery, Type, TypeQuery, User, UserFieldName, UserState } from 'src/app/proto/generated/zitadel/user_pb'; -import { GrpcAuthService } from 'src/app/services/grpc-auth.service'; -import { ManagementService } from 'src/app/services/mgmt.service'; import { ToastService } from 'src/app/services/toast.service'; +import { UserService } from 'src/app/services/user.service'; +import { takeUntilDestroyed, toSignal } from '@angular/core/rxjs-interop'; +import { SearchQuery as UserSearchQuery } from 'src/app/proto/generated/zitadel/user_pb'; +import { Type, UserFieldName } from '@zitadel/proto/zitadel/user/v2/query_pb'; +import { UserState, User } from '@zitadel/proto/zitadel/user/v2/user_pb'; +import { MessageInitShape } from '@bufbuild/protobuf'; +import { ListUsersRequestSchema, ListUsersResponse } from '@zitadel/proto/zitadel/user/v2/user_service_pb'; +import { AuthenticationService } from 'src/app/services/authentication.service'; +import { GrpcAuthService } from 'src/app/services/grpc-auth.service'; +import { UserState as UserStateV1 } from 'src/app/proto/generated/zitadel/user_pb'; -enum UserListSearchKey { - FIRST_NAME, - LAST_NAME, - DISPLAY_NAME, - USER_NAME, - EMAIL, -} +type Query = Exclude< + Exclude['queries'], undefined>[number]['query'], + undefined +>; @Component({ selector: 'cnsl-user-table', @@ -33,23 +48,33 @@ enum UserListSearchKey { animations: [enterAnimations], }) export class UserTableComponent implements OnInit { - public userSearchKey: UserListSearchKey | undefined = undefined; - public Type: any = Type; - @Input() public type: Type = Type.TYPE_HUMAN; - @Input() refreshOnPreviousRoutes: string[] = []; + protected readonly Type = Type; + protected readonly refresh$ = new ReplaySubject(1); + @Input() public canWrite$: Observable = of(false); @Input() public canDelete$: Observable = of(false); - @ViewChild(PaginatorComponent) public paginator!: PaginatorComponent; - @ViewChild(MatSort) public sort!: MatSort; - public INITIAL_PAGE_SIZE: number = 20; + protected readonly dataSize: Signal; + protected readonly loading = signal(false); + + private readonly paginator$ = new ReplaySubject(1); + @ViewChild(PaginatorComponent) public set paginator(paginator: PaginatorComponent) { + this.paginator$.next(paginator); + } + private readonly sort$ = new ReplaySubject(1); + @ViewChild(MatSort) public set sort(sort: MatSort) { + this.sort$.next(sort); + } + + protected readonly INITIAL_PAGE_SIZE = 20; + + protected readonly dataSource: MatTableDataSource = new MatTableDataSource(); + protected readonly selection: SelectionModel = new SelectionModel(true, []); + protected readonly users$: Observable; + protected readonly type$: Observable; + protected readonly searchQueries$ = new ReplaySubject(1); + protected readonly myUser: Signal; - public viewTimestamp!: Timestamp.AsObject; - public totalResult: number = 0; - public dataSource: MatTableDataSource = new MatTableDataSource(); - public selection: SelectionModel = new SelectionModel(true, []); - private loadingSubject: BehaviorSubject = new BehaviorSubject(false); - public loading$: Observable = this.loadingSubject.asObservable(); @Input() public displayedColumnsHuman: string[] = [ 'select', 'displayName', @@ -70,56 +95,256 @@ export class UserTableComponent implements OnInit { 'actions', ]; - @Output() public changedSelection: EventEmitter> = new EventEmitter(); + @Output() public changedSelection: EventEmitter> = new EventEmitter(); - public UserState: any = UserState; - public UserListSearchKey: any = UserListSearchKey; + protected readonly UserState = UserState; - public ActionKeysType: any = ActionKeysType; - public filterOpen: boolean = false; + protected ActionKeysType = ActionKeysType; + protected filterOpen: boolean = false; - private searchQueries: SearchQuery[] = []; constructor( - private router: Router, - public translate: TranslateService, - private authService: GrpcAuthService, - private userService: ManagementService, - private toast: ToastService, - private dialog: MatDialog, - private route: ActivatedRoute, - private _liveAnnouncer: LiveAnnouncer, + protected readonly router: Router, + public readonly translate: TranslateService, + private readonly userService: UserService, + private readonly toast: ToastService, + private readonly dialog: MatDialog, + private readonly route: ActivatedRoute, + private readonly destroyRef: DestroyRef, + private readonly authenticationService: AuthenticationService, + private readonly authService: GrpcAuthService, ) { - this.selection.changed.subscribe(() => { - this.changedSelection.emit(this.selection.selected); - }); + this.type$ = this.getType$().pipe(shareReplay({ refCount: true, bufferSize: 1 })); + this.users$ = this.getUsers(this.type$).pipe(shareReplay({ refCount: true, bufferSize: 1 })); + this.myUser = toSignal(this.getMyUser()); + + this.dataSize = toSignal( + this.users$.pipe( + map((users) => users.result.length), + distinctUntilChanged(), + ), + { initialValue: 0 }, + ); } ngOnInit(): void { - this.route.queryParams.pipe(take(1)).subscribe((params) => { - if (!params['filter']) { - this.getData(this.INITIAL_PAGE_SIZE, 0, this.type, this.searchQueries); - } - - if (params['deferredReload']) { - setTimeout(() => { - this.getData(this.paginator.pageSize, this.paginator.pageIndex * this.paginator.pageSize, this.type); - }, 2000); - } + this.selection.changed.pipe(takeUntilDestroyed(this.destroyRef)).subscribe(() => { + this.changedSelection.emit(this.selection.selected); }); + + this.users$.pipe(takeUntilDestroyed(this.destroyRef)).subscribe((users) => (this.dataSource.data = users.result)); + + this.route.queryParamMap + .pipe( + map((params) => params.get('deferredReload')), + filter(Boolean), + take(1), + delay(2000), + takeUntilDestroyed(this.destroyRef), + ) + .subscribe(() => this.refresh$.next(true)); } - public setType(type: Type): void { - this.type = type; - this.router.navigate([], { - relativeTo: this.route, - queryParams: { - type: type === Type.TYPE_HUMAN ? 'human' : type === Type.TYPE_MACHINE ? 'machine' : 'human', - }, - replaceUrl: true, - queryParamsHandling: 'merge', - skipLocationChange: false, - }); - this.getData(this.paginator.pageSize, this.paginator.pageIndex * this.paginator.pageSize, this.type, this.searchQueries); + setType(type: Type) { + this.router + .navigate([], { + relativeTo: this.route, + queryParams: { + type: type === Type.HUMAN ? 'human' : type === Type.MACHINE ? 'machine' : 'human', + }, + replaceUrl: true, + queryParamsHandling: 'merge', + skipLocationChange: false, + }) + .then(); + } + + private getMyUser() { + return defer(() => this.userService.getMyUser()).pipe( + catchError((error) => { + this.toast.showError(error); + return EMPTY; + }), + ); + } + + private getType$(): Observable { + return this.route.queryParamMap.pipe( + map((params) => params.get('type')), + filter(Boolean), + map((type) => (type === 'machine' ? Type.MACHINE : Type.HUMAN)), + startWith(Type.HUMAN), + distinctUntilChanged(), + ); + } + + private getDirection$() { + return this.sort$.pipe( + switchMap((sort) => + sort.sortChange.pipe( + map(({ direction }) => direction), + startWith(sort.direction), + ), + ), + distinctUntilChanged(), + ); + } + + private getSortingColumn$() { + return this.sort$.pipe( + switchMap((sort) => + sort.sortChange.pipe( + map(({ active }) => active), + startWith(sort.active), + ), + ), + map((active) => { + switch (active) { + case 'displayName': + return UserFieldName.DISPLAY_NAME; + case 'username': + return UserFieldName.USER_NAME; + case 'preferredLoginName': + // TODO: replace with preferred username sorting once implemented + return UserFieldName.USER_NAME; + case 'email': + return UserFieldName.EMAIL; + case 'state': + return UserFieldName.STATE; + case 'creationDate': + return UserFieldName.CREATION_DATE; + default: + return undefined; + } + }), + distinctUntilChanged(), + ); + } + + private getQueries(type$: Observable): Observable { + const activeOrgId$ = this.getActiveOrgId(); + + return this.searchQueries$.pipe( + startWith([]), + combineLatestWith(type$, activeOrgId$), + switchMap(([queries, type, organizationId]) => + from(queries).pipe( + map((query) => this.searchQueryToV2(query.toObject())), + startWith({ case: 'typeQuery' as const, value: { type } }), + startWith(organizationId ? { case: 'organizationIdQuery' as const, value: { organizationId } } : undefined), + filter(Boolean), + toArray(), + ), + ), + ); + } + + private searchQueryToV2(query: UserSearchQuery.AsObject): Query | undefined { + if (query.userNameQuery) { + return { + case: 'userNameQuery' as const, + value: { + userName: query.userNameQuery.userName, + method: query.userNameQuery.method as unknown as any, + }, + }; + } else if (query.displayNameQuery) { + return { + case: 'displayNameQuery' as const, + value: { + displayName: query.displayNameQuery.displayName, + method: query.displayNameQuery.method as unknown as any, + }, + }; + } else if (query.emailQuery) { + return { + case: 'emailQuery' as const, + value: { + emailAddress: query.emailQuery.emailAddress, + method: query.emailQuery.method as unknown as any, + }, + }; + } else if (query.stateQuery) { + return { + case: 'stateQuery' as const, + value: { + state: this.toV2State(query.stateQuery.state), + }, + }; + } else { + return undefined; + } + } + + private toV2State(state: UserStateV1) { + switch (state) { + case UserStateV1.USER_STATE_ACTIVE: + return UserState.ACTIVE; + case UserStateV1.USER_STATE_INACTIVE: + return UserState.INACTIVE; + case UserStateV1.USER_STATE_DELETED: + return UserState.DELETED; + case UserStateV1.USER_STATE_LOCKED: + return UserState.LOCKED; + case UserStateV1.USER_STATE_INITIAL: + return UserState.INITIAL; + default: + throw new Error(`Invalid UserState ${state}`); + } + } + + private getUsers(type$: Observable) { + const queries$ = this.getQueries(type$); + const direction$ = this.getDirection$(); + const sortingColumn$ = this.getSortingColumn$(); + + const page$ = this.paginator$.pipe(switchMap((paginator) => paginator.page)); + const pageSize$ = page$.pipe( + map(({ pageSize }) => pageSize), + startWith(this.INITIAL_PAGE_SIZE), + distinctUntilChanged(), + ); + const pageIndex$ = page$.pipe( + map(({ pageIndex }) => pageIndex), + startWith(0), + distinctUntilChanged(), + ); + + return this.refresh$.pipe( + startWith(true), + combineLatestWith(queries$, direction$, sortingColumn$, pageSize$, pageIndex$), + switchMap(([_, queries, direction, sortingColumn, pageSize, pageIndex]) => { + return this.fetchUsers(queries, direction, sortingColumn, pageSize, pageIndex); + }), + ); + } + + private fetchUsers( + queries: Query[], + direction: SortDirection, + sortingColumn: UserFieldName | undefined, + pageSize: number, + pageIndex: number, + ) { + return defer(() => { + const req = { + query: { + limit: pageSize, + offset: BigInt(pageIndex * pageSize), + asc: direction === 'asc', + }, + sortingColumn, + queries: queries.map((query) => ({ query })), + }; + + this.loading.set(true); + return this.userService.listUsers(req); + }).pipe( + catchError((error) => { + this.toast.showError(error); + return EMPTY; + }), + finalize(() => this.loading.set(false)), + ); } public isAllSelected(): boolean { @@ -132,138 +357,49 @@ export class UserTableComponent implements OnInit { this.isAllSelected() ? this.selection.clear() : this.dataSource.data.forEach((row) => this.selection.select(row)); } - public changePage(event: PageEvent): void { - this.selection.clear(); - this.getData(event.pageSize, event.pageIndex * event.pageSize, this.type, this.searchQueries); - } - - public deactivateSelectedUsers(): void { - Promise.all( - this.selection.selected - .filter((u) => u.state === UserState.USER_STATE_ACTIVE) - .map((value) => { - return this.userService.deactivateUser(value.id); - }), - ) - .then(() => { - this.toast.showInfo('USER.TOAST.SELECTEDDEACTIVATED', true); - this.selection.clear(); - setTimeout(() => { - this.refreshPage(); - }, 1000); - }) - .catch((error) => { - this.toast.showError(error); + public async deactivateSelectedUsers(): Promise { + const usersToDeactivate = this.selection.selected + .filter((u) => u.state === UserState.ACTIVE) + .map((value) => { + return this.userService.deactivateUser(value.userId); }); - } - public reactivateSelectedUsers(): void { - Promise.all( - this.selection.selected - .filter((u) => u.state === UserState.USER_STATE_INACTIVE) - .map((value) => { - return this.userService.reactivateUser(value.id); - }), - ) - .then(() => { - this.toast.showInfo('USER.TOAST.SELECTEDREACTIVATED', true); - this.selection.clear(); - setTimeout(() => { - this.refreshPage(); - }, 1000); - }) - .catch((error) => { - this.toast.showError(error); - }); - } - - public gotoRouterLink(rL: any): void { - this.router.navigate(rL); - } - - private async getData(limit: number, offset: number, type: Type, searchQueries?: SearchQuery[]): Promise { - this.loadingSubject.next(true); - - let queryT = new SearchQuery(); - const typeQuery = new TypeQuery(); - typeQuery.setType(type); - queryT.setTypeQuery(typeQuery); - - let sortingField: UserFieldName | undefined = undefined; - if (this.sort?.active && this.sort?.direction) - switch (this.sort.active) { - case 'displayName': - sortingField = UserFieldName.USER_FIELD_NAME_DISPLAY_NAME; - break; - case 'username': - sortingField = UserFieldName.USER_FIELD_NAME_USER_NAME; - break; - case 'preferredLoginName': - // TODO: replace with preferred username sorting once implemented - sortingField = UserFieldName.USER_FIELD_NAME_USER_NAME; - break; - case 'email': - sortingField = UserFieldName.USER_FIELD_NAME_EMAIL; - break; - case 'state': - sortingField = UserFieldName.USER_FIELD_NAME_STATE; - break; - case 'creationDate': - sortingField = UserFieldName.USER_FIELD_NAME_CREATION_DATE; - break; - } - - this.userService - .listUsers( - limit, - offset, - searchQueries?.length ? [queryT, ...searchQueries] : [queryT], - sortingField, - this.sort?.direction, - ) - .then((resp) => { - if (resp.details?.totalResult) { - this.totalResult = resp.details?.totalResult; - } else { - this.totalResult = 0; - } - if (resp.details?.viewTimestamp) { - this.viewTimestamp = resp.details?.viewTimestamp; - } - this.dataSource.data = resp.resultList; - this.loadingSubject.next(false); - }) - .catch((error) => { - this.toast.showError(error); - this.loadingSubject.next(false); - }); - } - - public refreshPage(): void { - this.getData(this.paginator.pageSize, this.paginator.pageIndex * this.paginator.pageSize, this.type, this.searchQueries); - } - - public sortChange(sortState: Sort) { - if (sortState.direction && sortState.active) { - this._liveAnnouncer.announce(`Sorted ${sortState.direction} ending`); - this.refreshPage(); - } else { - this._liveAnnouncer.announce('Sorting cleared'); + try { + await Promise.all(usersToDeactivate); + } catch (error) { + this.toast.showError(error); + return; } - } - public applySearchQuery(searchQueries: SearchQuery[]): void { + this.toast.showInfo('USER.TOAST.SELECTEDDEACTIVATED', true); this.selection.clear(); - this.searchQueries = searchQueries; - this.getData( - this.paginator ? this.paginator.pageSize : this.INITIAL_PAGE_SIZE, - this.paginator ? this.paginator.pageIndex * this.paginator.pageSize : 0, - this.type, - searchQueries, - ); + setTimeout(() => { + this.refresh$.next(true); + }, 1000); } - public deleteUser(user: User.AsObject): void { + public async reactivateSelectedUsers(): Promise { + const usersToReactivate = this.selection.selected + .filter((u) => u.state === UserState.INACTIVE) + .map((value) => { + return this.userService.reactivateUser(value.userId); + }); + + try { + await Promise.all(usersToReactivate); + } catch (error) { + this.toast.showError(error); + return; + } + + this.toast.showInfo('USER.TOAST.SELECTEDREACTIVATED', true); + this.selection.clear(); + setTimeout(() => { + this.refresh$.next(true); + }, 1000); + } + + public deleteUser(user: User): void { const authUserData = { confirmKey: 'ACTIONS.DELETE', cancelKey: 'ACTIONS.CANCEL', @@ -286,9 +422,10 @@ export class UserTableComponent implements OnInit { confirmation: user.preferredLoginName, }; - if (user && user.id) { - const authUser = this.authService.userSubject.getValue(); - const isMe = authUser?.id === user.id; + if (user?.userId) { + const authUser = this.myUser(); + console.log('my user', authUser); + const isMe = authUser?.userId === user.userId; let dialogRef; @@ -304,32 +441,48 @@ export class UserTableComponent implements OnInit { }); } - dialogRef.afterClosed().subscribe((resp) => { - if (resp) { - this.userService - .removeUser(user.id) - .then(() => { - setTimeout(() => { - this.refreshPage(); - }, 1000); - this.selection.clear(); - this.toast.showInfo('USER.TOAST.DELETED', true); - }) - .catch((error) => { - this.toast.showError(error); - }); - } - }); + dialogRef + .afterClosed() + .pipe( + filter(Boolean), + switchMap(() => this.userService.deleteUser(user.userId)), + ) + .subscribe({ + next: () => { + setTimeout(() => { + this.refresh$.next(true); + }, 1000); + this.selection.clear(); + this.toast.showInfo('USER.TOAST.DELETED', true); + }, + error: (err) => this.toast.showError(err), + }); } } public get multipleActivatePossible(): boolean { const selected = this.selection.selected; - return selected ? selected.findIndex((user) => user.state !== UserState.USER_STATE_ACTIVE) > -1 : false; + return selected ? selected.findIndex((user) => user.state !== UserState.ACTIVE) > -1 : false; } public get multipleDeactivatePossible(): boolean { const selected = this.selection.selected; - return selected ? selected.findIndex((user) => user.state !== UserState.USER_STATE_INACTIVE) > -1 : false; + return selected ? selected.findIndex((user) => user.state !== UserState.INACTIVE) > -1 : false; + } + + private getActiveOrgId() { + return this.authenticationService.authenticationChanged.pipe( + startWith(true), + filter(Boolean), + switchMap(() => + from(this.authService.getActiveOrg()).pipe( + catchError((err) => { + this.toast.showError(err); + return of(undefined); + }), + ), + ), + map((org) => org?.id), + ); } } diff --git a/console/src/app/pipes/timestamp-to-date-pipe/timestamp-to-date.pipe.ts b/console/src/app/pipes/timestamp-to-date-pipe/timestamp-to-date.pipe.ts index 19fe058c34..8ec703230d 100644 --- a/console/src/app/pipes/timestamp-to-date-pipe/timestamp-to-date.pipe.ts +++ b/console/src/app/pipes/timestamp-to-date-pipe/timestamp-to-date.pipe.ts @@ -1,18 +1,18 @@ import { Pipe, PipeTransform } from '@angular/core'; -import { Timestamp } from 'google-protobuf/google/protobuf/timestamp_pb'; +import { Timestamp as ConnectTimestamp } from '@bufbuild/protobuf/wkt'; +import { Timestamp } from 'src/app/proto/generated/google/protobuf/timestamp_pb'; @Pipe({ name: 'timestampToDate', }) export class TimestampToDatePipe implements PipeTransform { - transform(value: Timestamp.AsObject, ...args: unknown[]): unknown { + transform(value: ConnectTimestamp | Timestamp.AsObject, ...args: unknown[]): unknown { return this.dateFromTimestamp(value); } - private dateFromTimestamp(date: Timestamp.AsObject): any { + private dateFromTimestamp(date: ConnectTimestamp | Timestamp.AsObject): any { if (date?.seconds !== undefined && date?.nanos !== undefined) { - const ts: Date = new Date(date.seconds * 1000 + date.nanos / 1000 / 1000); - return ts; + return new Date(Number(date.seconds) * 1000 + date.nanos / 1000 / 1000); } } } diff --git a/console/src/app/services/feature.service.ts b/console/src/app/services/feature.service.ts index b991971bba..f009f165d4 100644 --- a/console/src/app/services/feature.service.ts +++ b/console/src/app/services/feature.service.ts @@ -1,19 +1,19 @@ import { Injectable } from '@angular/core'; import { GrpcService } from './grpc.service'; -import { - GetInstanceFeaturesRequest, - GetInstanceFeaturesResponse, - ResetInstanceFeaturesRequest, - SetInstanceFeaturesRequest, - SetInstanceFeaturesResponse, -} from '../proto/generated/zitadel/feature/v2beta/instance_pb'; import { GetOrganizationFeaturesRequest, GetOrganizationFeaturesResponse, } from '../proto/generated/zitadel/feature/v2beta/organization_pb'; import { GetUserFeaturesRequest, GetUserFeaturesResponse } from '../proto/generated/zitadel/feature/v2beta/user_pb'; import { GetSystemFeaturesRequest, GetSystemFeaturesResponse } from '../proto/generated/zitadel/feature/v2beta/system_pb'; +import { + GetInstanceFeaturesRequest, + GetInstanceFeaturesResponse, + ResetInstanceFeaturesRequest, + SetInstanceFeaturesRequest, + SetInstanceFeaturesResponse, +} from '../proto/generated/zitadel/feature/v2/instance_pb'; @Injectable({ providedIn: 'root', diff --git a/console/src/app/services/grpc-auth.service.ts b/console/src/app/services/grpc-auth.service.ts index 24feee0ad1..3967f1df06 100644 --- a/console/src/app/services/grpc-auth.service.ts +++ b/console/src/app/services/grpc-auth.service.ts @@ -1,8 +1,8 @@ import { Injectable } from '@angular/core'; import { SortDirection } from '@angular/material/sort'; import { OAuthService } from 'angular-oauth2-oidc'; -import { BehaviorSubject, forkJoin, from, Observable, of, Subject } from 'rxjs'; -import { catchError, distinctUntilChanged, filter, finalize, map, switchMap, timeout, withLatestFrom } from 'rxjs/operators'; +import { BehaviorSubject, combineLatestWith, EMPTY, mergeWith, NEVER, Observable, of, shareReplay, Subject } from 'rxjs'; +import { catchError, distinctUntilChanged, filter, finalize, map, startWith, switchMap, tap, timeout } from 'rxjs/operators'; import { AddMyAuthFactorOTPEmailRequest, @@ -110,41 +110,17 @@ const ORG_LIMIT = 10; }) export class GrpcAuthService { private _activeOrgChanged: Subject = new Subject(); - public user!: Observable; - public userSubject: BehaviorSubject = new BehaviorSubject(undefined); + public user: Observable; private triggerPermissionsRefresh: Subject = new Subject(); - public zitadelPermissions$: Observable = this.triggerPermissionsRefresh.pipe( - switchMap(() => - from(this.listMyZitadelPermissions()).pipe( - map((rolesResp) => rolesResp.resultList), - filter((roles) => !!roles.length), - catchError((_) => { - return of([]); - }), - distinctUntilChanged((a, b) => { - return JSON.stringify(a.sort()) === JSON.stringify(b.sort()); - }), - finalize(() => { - this.fetchedZitadelPermissions.next(true); - }), - ), - ), - ); + public zitadelPermissions: Observable; public labelpolicy$!: Observable; - public labelpolicy: BehaviorSubject = new BehaviorSubject< - LabelPolicy.AsObject | undefined - >(undefined); labelPolicyLoading$: BehaviorSubject = new BehaviorSubject(true); - public privacypolicy$!: Observable; + public privacypolicy$: Observable; public privacypolicy: BehaviorSubject = new BehaviorSubject< PrivacyPolicy.AsObject | undefined >(undefined); - privacyPolicyLoading$: BehaviorSubject = new BehaviorSubject(true); - - public zitadelPermissions: BehaviorSubject = new BehaviorSubject([]); - public readonly fetchedZitadelPermissions: BehaviorSubject = new BehaviorSubject(false); public cachedOrgs: BehaviorSubject = new BehaviorSubject([]); private cachedLabelPolicies: { [orgId: string]: LabelPolicy.AsObject } = {}; @@ -155,74 +131,52 @@ export class GrpcAuthService { private oauthService: OAuthService, private storage: StorageService, ) { - this.zitadelPermissions$.subscribe(this.zitadelPermissions); - this.labelpolicy$ = this.activeOrgChanged.pipe( - switchMap((org) => { - this.labelPolicyLoading$.next(true); - return from(this.getMyLabelPolicy(org ? org.id : '')); - }), + tap(() => this.labelPolicyLoading$.next(true)), + switchMap((org) => this.getMyLabelPolicy(org ? org.id : '')), + tap(() => this.labelPolicyLoading$.next(false)), + finalize(() => this.labelPolicyLoading$.next(false)), filter((policy) => !!policy), + shareReplay({ refCount: true, bufferSize: 1 }), ); - this.labelpolicy$.subscribe({ - next: (policy) => { - this.labelpolicy.next(policy); - this.labelPolicyLoading$.next(false); - }, - error: (error) => { - console.error(error); - this.labelPolicyLoading$.next(false); - }, - }); - this.privacypolicy$ = this.activeOrgChanged.pipe( - switchMap((org) => { - this.privacyPolicyLoading$.next(true); - return from(this.getMyPrivacyPolicy(org ? org.id : '')); - }), + switchMap((org) => this.getMyPrivacyPolicy(org ? org.id : '')), filter((policy) => !!policy), + catchError((err) => { + console.error(err); + return EMPTY; + }), + shareReplay({ refCount: true, bufferSize: 1 }), ); - this.privacypolicy$.subscribe({ - next: (policy) => { - this.privacypolicy.next(policy); - this.privacyPolicyLoading$.next(false); - }, - error: (error) => { - console.error(error); - this.privacyPolicyLoading$.next(false); - }, - }); - - this.user = forkJoin([ - of(this.oauthService.getAccessToken()), - this.oauthService.events.pipe( - filter((e) => e.type === 'token_received'), - timeout(this.oauthService.waitForTokenInMsec || 0), - catchError((_) => of(null)), // timeout is not an error - map((_) => this.oauthService.getAccessToken()), - ), - ]).pipe( - filter((token) => (token ? true : false)), + this.user = this.oauthService.events.pipe( + filter((e) => e.type === 'token_received'), + map(() => this.oauthService.getAccessToken()), + startWith(this.oauthService.getAccessToken()), + filter(Boolean), distinctUntilChanged(), - switchMap(() => { - return from( - this.getMyUser().then((resp) => { - return resp.user; - }), - ); - }), - finalize(() => { - this.loadPermissions(); - }), + switchMap(() => this.getMyUser()), + map((user) => user.user), + shareReplay({ refCount: true, bufferSize: 1 }), ); - this.user.subscribe(this.userSubject); - - this.activeOrgChanged.subscribe(() => { - this.loadPermissions(); - }); + this.zitadelPermissions = this.user.pipe( + combineLatestWith(this.activeOrgChanged), + // ignore errors from observables + catchError(() => of(true)), + // make sure observable never completes + mergeWith(NEVER), + switchMap(() => + this.listMyZitadelPermissions() + .then((resp) => resp.resultList) + .catch(() => []), + ), + distinctUntilChanged((a, b) => { + return JSON.stringify(a.sort()) === JSON.stringify(b.sort()); + }), + shareReplay({ refCount: true, bufferSize: 1 }), + ); } public listMyMetadata( @@ -309,7 +263,7 @@ export class GrpcAuthService { } public get activeOrgChanged(): Observable { - return this._activeOrgChanged; + return this._activeOrgChanged.asObservable(); } public setActiveOrg(org: Org.AsObject): void { @@ -328,18 +282,14 @@ export class GrpcAuthService { * @param roles roles of the user */ public isAllowed(roles: string[] | RegExp[], requiresAll: boolean = false): Observable { - if (roles && roles.length > 0) { - return this.fetchedZitadelPermissions.pipe( - withLatestFrom(this.zitadelPermissions), - filter(([hL, p]) => { - return hL === true && !!p.length; - }), - map(([_, zroles]) => this.hasRoles(zroles, roles, requiresAll)), - distinctUntilChanged(), - ); - } else { + if (!roles?.length) { return of(false); } + + return this.zitadelPermissions.pipe( + map((permissions) => this.hasRoles(permissions, roles, requiresAll)), + distinctUntilChanged(), + ); } /** @@ -353,17 +303,14 @@ export class GrpcAuthService { mapper: (attr: any) => string[] | RegExp[], requiresAll: boolean = false, ): Observable { - return this.fetchedZitadelPermissions.pipe( - withLatestFrom(this.zitadelPermissions), - filter(([hL, p]) => { - return hL === true && !!p.length; - }), - map(([_, zroles]) => { - return objects.filter((obj) => { + return this.zitadelPermissions.pipe( + filter((permissions) => !!permissions.length), + map((permissions) => + objects.filter((obj) => { const roles = mapper(obj); - return this.hasRoles(zroles, roles, requiresAll); - }); - }), + return this.hasRoles(permissions, roles, requiresAll); + }), + ), ); } @@ -395,19 +342,6 @@ export class GrpcAuthService { .then((resp) => resp.toObject()); } - public loadMyUser(): void { - from(this.getMyUser()) - .pipe( - map((resp) => resp.user), - catchError((_) => { - return of(undefined); - }), - ) - .subscribe((user) => { - this.userSubject.next(user); - }); - } - public getMyUser(): Promise { return this.grpcService.auth.getMyUser(new GetMyUserRequest(), null).then((resp) => resp.toObject()); } @@ -728,40 +662,39 @@ export class GrpcAuthService { public getMyLabelPolicy(orgIdForCache?: string): Promise { if (orgIdForCache && this.cachedLabelPolicies[orgIdForCache]) { return Promise.resolve(this.cachedLabelPolicies[orgIdForCache]); - } else { - return this.grpcService.auth - .getMyLabelPolicy(new GetMyLabelPolicyRequest(), null) - .then((resp) => resp.toObject()) - .then((resp) => { - if (resp.policy) { - if (orgIdForCache) { - this.cachedLabelPolicies[orgIdForCache] = resp.policy; - } - return Promise.resolve(resp.policy); - } else { - return Promise.reject(); - } - }); } + + return this.grpcService.auth + .getMyLabelPolicy(new GetMyLabelPolicyRequest(), null) + .then((resp) => resp.toObject()) + .then((resp) => { + if (!resp.policy) { + return Promise.reject(); + } + if (orgIdForCache) { + this.cachedLabelPolicies[orgIdForCache] = resp.policy; + } + return resp.policy; + }); } public getMyPrivacyPolicy(orgIdForCache?: string): Promise { if (orgIdForCache && this.cachedPrivacyPolicies[orgIdForCache]) { return Promise.resolve(this.cachedPrivacyPolicies[orgIdForCache]); - } else { - return this.grpcService.auth - .getMyPrivacyPolicy(new GetMyPrivacyPolicyRequest(), null) - .then((resp) => resp.toObject()) - .then((resp) => { - if (resp.policy) { - if (orgIdForCache) { - this.cachedPrivacyPolicies[orgIdForCache] = resp.policy; - } - return Promise.resolve(resp.policy); - } else { - return Promise.reject(); - } - }); } + + return this.grpcService.auth + .getMyPrivacyPolicy(new GetMyPrivacyPolicyRequest(), null) + .then((resp) => resp.toObject()) + .then((resp) => { + if (!resp.policy) { + return Promise.reject(); + } + + if (orgIdForCache) { + this.cachedPrivacyPolicies[orgIdForCache] = resp.policy; + } + return resp.policy; + }); } } diff --git a/console/src/app/services/grpc.service.ts b/console/src/app/services/grpc.service.ts index 5c4c0fd510..e554e2b647 100644 --- a/console/src/app/services/grpc.service.ts +++ b/console/src/app/services/grpc.service.ts @@ -1,9 +1,8 @@ import { PlatformLocation } from '@angular/common'; import { Injectable } from '@angular/core'; -import { MatDialog } from '@angular/material/dialog'; import { TranslateService } from '@ngx-translate/core'; import { AuthConfig } from 'angular-oauth2-oidc'; -import { catchError, switchMap, tap, throwError } from 'rxjs'; +import { catchError, firstValueFrom, switchMap, tap } from 'rxjs'; import { AdminServiceClient } from '../proto/generated/zitadel/AdminServiceClientPb'; import { AuthServiceClient } from '../proto/generated/zitadel/AuthServiceClientPb'; @@ -12,13 +11,18 @@ import { fallbackLanguage, supportedLanguagesRegexp } from '../utils/language'; import { AuthenticationService } from './authentication.service'; import { EnvironmentService } from './environment.service'; import { ExhaustedService } from './exhausted.service'; -import { AuthInterceptor } from './interceptors/auth.interceptor'; +import { AuthInterceptor, AuthInterceptorProvider, NewConnectWebAuthInterceptor } from './interceptors/auth.interceptor'; import { ExhaustedGrpcInterceptor } from './interceptors/exhausted.grpc.interceptor'; import { I18nInterceptor } from './interceptors/i18n.interceptor'; import { OrgInterceptor } from './interceptors/org.interceptor'; import { StorageService } from './storage.service'; -import { FeatureServiceClient } from '../proto/generated/zitadel/feature/v2beta/Feature_serviceServiceClientPb'; -import { GrpcAuthService } from './grpc-auth.service'; +import { UserServiceClient } from '../proto/generated/zitadel/user/v2/User_serviceServiceClientPb'; +//@ts-ignore +import { createUserServiceClient } from '@zitadel/client/v2'; +//@ts-ignore +import { createAuthServiceClient, createManagementServiceClient } from '@zitadel/client/v1'; +import { createGrpcWebTransport } from '@connectrpc/connect-web'; +import { FeatureServiceClient } from '../proto/generated/zitadel/feature/v2/Feature_serviceServiceClientPb'; @Injectable({ providedIn: 'root', @@ -28,15 +32,20 @@ export class GrpcService { public mgmt!: ManagementServiceClient; public admin!: AdminServiceClient; public feature!: FeatureServiceClient; + public user!: UserServiceClient; + public userNew!: ReturnType; + public mgmtNew!: ReturnType; + public authNew!: ReturnType; constructor( - private envService: EnvironmentService, - private platformLocation: PlatformLocation, - private authenticationService: AuthenticationService, - private storageService: StorageService, - private dialog: MatDialog, - private translate: TranslateService, - private exhaustedService: ExhaustedService, + private readonly envService: EnvironmentService, + private readonly platformLocation: PlatformLocation, + private readonly authenticationService: AuthenticationService, + private readonly storageService: StorageService, + private readonly translate: TranslateService, + private readonly exhaustedService: ExhaustedService, + private readonly authInterceptor: AuthInterceptor, + private readonly authInterceptorProvider: AuthInterceptorProvider, ) {} public loadAppEnvironment(): Promise { @@ -44,66 +53,79 @@ export class GrpcService { const browserLanguage = this.translate.getBrowserLang(); const language = browserLanguage?.match(supportedLanguagesRegexp) ? browserLanguage : fallbackLanguage; - return this.translate - .use(language || this.translate.defaultLang) - .pipe( - switchMap(() => this.envService.env), - tap((env) => { - if (!env?.api || !env?.issuer) { - return; - } - const interceptors = { - unaryInterceptors: [ - new ExhaustedGrpcInterceptor(this.exhaustedService, this.envService), - new OrgInterceptor(this.storageService), - new AuthInterceptor(this.authenticationService, this.storageService, this.dialog), - new I18nInterceptor(this.translate), - ], - }; + const init = this.translate.use(language || this.translate.defaultLang).pipe( + switchMap(() => this.envService.env), + tap((env) => { + if (!env?.api || !env?.issuer) { + return; + } + const interceptors = { + unaryInterceptors: [ + new ExhaustedGrpcInterceptor(this.exhaustedService, this.envService), + new OrgInterceptor(this.storageService), + this.authInterceptor, + new I18nInterceptor(this.translate), + ], + }; - this.auth = new AuthServiceClient( - env.api, - null, - // @ts-ignore - interceptors, - ); - this.mgmt = new ManagementServiceClient( - env.api, - null, - // @ts-ignore - interceptors, - ); - this.admin = new AdminServiceClient( - env.api, - null, - // @ts-ignore - interceptors, - ); - this.feature = new FeatureServiceClient( - env.api, - null, - // @ts-ignore - interceptors, - ); + this.auth = new AuthServiceClient( + env.api, + null, + // @ts-ignore + interceptors, + ); + this.mgmt = new ManagementServiceClient( + env.api, + null, + // @ts-ignore + interceptors, + ); + this.admin = new AdminServiceClient( + env.api, + null, + // @ts-ignore + interceptors, + ); + this.feature = new FeatureServiceClient( + env.api, + null, + // @ts-ignore + interceptors, + ); + this.user = new UserServiceClient( + env.api, + null, + // @ts-ignore + interceptors, + ); - const authConfig: AuthConfig = { - scope: 'openid profile email', - responseType: 'code', - oidc: true, - clientId: env.clientid, - issuer: env.issuer, - redirectUri: window.location.origin + this.platformLocation.getBaseHrefFromDOM() + 'auth/callback', - postLogoutRedirectUri: window.location.origin + this.platformLocation.getBaseHrefFromDOM() + 'signedout', - requireHttps: false, - }; + const transport = createGrpcWebTransport({ + baseUrl: env.api, + interceptors: [NewConnectWebAuthInterceptor(this.authInterceptorProvider)], + }); + this.userNew = createUserServiceClient(transport); + this.mgmtNew = createManagementServiceClient(transport); + this.authNew = createAuthServiceClient(transport); - this.authenticationService.initConfig(authConfig); - }), - catchError((err) => { - console.error('Failed to load environment from assets', err); - return throwError(() => err); - }), - ) - .toPromise(); + const authConfig: AuthConfig = { + scope: 'openid profile email', + responseType: 'code', + oidc: true, + clientId: env.clientid, + issuer: env.issuer, + redirectUri: window.location.origin + this.platformLocation.getBaseHrefFromDOM() + 'auth/callback', + postLogoutRedirectUri: window.location.origin + this.platformLocation.getBaseHrefFromDOM() + 'signedout', + requireHttps: false, + }; + + this.authenticationService.initConfig(authConfig); + }), + catchError((err) => { + console.error('Failed to load environment from assets', err); + throw err; + }), + ); + + return firstValueFrom(init); } } diff --git a/console/src/app/services/interceptors/auth.interceptor.ts b/console/src/app/services/interceptors/auth.interceptor.ts index 4ccdc768c7..72c1670bce 100644 --- a/console/src/app/services/interceptors/auth.interceptor.ts +++ b/console/src/app/services/interceptors/auth.interceptor.ts @@ -1,59 +1,53 @@ -import { Injectable } from '@angular/core'; +import { DestroyRef, Injectable } from '@angular/core'; import { MatDialog } from '@angular/material/dialog'; -import { Request, UnaryInterceptor, UnaryResponse } from 'grpc-web'; -import { Subject } from 'rxjs'; -import { debounceTime, filter, first, map, take, tap } from 'rxjs/operators'; +import { Request, RpcError, UnaryInterceptor, UnaryResponse } from 'grpc-web'; +import { firstValueFrom, identity, lastValueFrom, Observable, Subject } from 'rxjs'; +import { debounceTime, filter, map } from 'rxjs/operators'; import { WarnDialogComponent } from 'src/app/modules/warn-dialog/warn-dialog.component'; import { AuthenticationService } from '../authentication.service'; import { StorageService } from '../storage.service'; import { AuthConfig } from 'angular-oauth2-oidc'; -import { GrpcAuthService } from '../grpc-auth.service'; +import { takeUntilDestroyed } from '@angular/core/rxjs-interop'; +import { ConnectError, Interceptor } from '@connectrpc/connect'; const authorizationKey = 'Authorization'; const bearerPrefix = 'Bearer'; const accessTokenStorageKey = 'access_token'; + @Injectable({ providedIn: 'root' }) -/** - * Set the authentication token - */ -export class AuthInterceptor implements UnaryInterceptor { +export class AuthInterceptorProvider { public triggerDialog: Subject = new Subject(); + constructor( private authenticationService: AuthenticationService, private storageService: StorageService, private dialog: MatDialog, + private destroyRef: DestroyRef, ) { - this.triggerDialog.pipe(debounceTime(1000)).subscribe(() => { - this.openDialog(); - }); + this.triggerDialog.pipe(debounceTime(1000), takeUntilDestroyed(this.destroyRef)).subscribe(() => this.openDialog()); } - public async intercept(request: Request, invoker: any): Promise> { - await this.authenticationService.authenticationChanged - .pipe( - filter((authed) => !!authed), - first(), - ) - .toPromise(); - - const metadata = request.getMetadata(); - const accessToken = this.storageService.getItem(accessTokenStorageKey); - metadata[authorizationKey] = `${bearerPrefix} ${accessToken}`; - - return invoker(request) - .then((response: any) => { - return response; - }) - .catch(async (error: any) => { - if (error.code === 16 || (error.code === 7 && error.message === 'mfa required (AUTHZ-Kl3p0)')) { - this.triggerDialog.next(true); - } - return Promise.reject(error); - }); + getToken(): Observable { + return this.authenticationService.authenticationChanged.pipe( + filter(identity), + map(() => this.storageService.getItem(accessTokenStorageKey)), + map((token) => `${bearerPrefix} ${token}`), + ); } - private openDialog(): void { + handleError = (error: any): never => { + if (!(error instanceof RpcError) && !(error instanceof ConnectError)) { + throw error; + } + + if (error.code === 16 || (error.code === 7 && error.message === 'mfa required (AUTHZ-Kl3p0)')) { + this.triggerDialog.next(true); + } + throw error; + }; + + private async openDialog(): Promise { const dialogRef = this.dialog.open(WarnDialogComponent, { data: { confirmKey: 'ACTIONS.LOGIN', @@ -64,19 +58,47 @@ export class AuthInterceptor implements UnaryIn width: '400px', }); - dialogRef - .afterClosed() - .pipe(take(1)) - .subscribe((resp) => { - if (resp) { - const idToken = this.authenticationService.getIdToken(); - const configWithPrompt: Partial = { - customQueryParams: { - id_token_hint: idToken, - }, - }; - this.authenticationService.authenticate(configWithPrompt, true); - } - }); + const resp = await lastValueFrom(dialogRef.afterClosed()); + if (!resp) { + return; + } + + const idToken = this.authenticationService.getIdToken(); + const configWithPrompt: Partial = { + customQueryParams: { + id_token_hint: idToken, + }, + }; + + await this.authenticationService.authenticate(configWithPrompt, true); } } + +@Injectable({ providedIn: 'root' }) +/** + * Set the authentication token + */ +export class AuthInterceptor implements UnaryInterceptor { + constructor(private readonly authInterceptorProvider: AuthInterceptorProvider) {} + + public async intercept( + request: Request, + invoker: (request: Request) => Promise>, + ): Promise> { + const metadata = request.getMetadata(); + metadata[authorizationKey] = await firstValueFrom(this.authInterceptorProvider.getToken()); + + return invoker(request).catch(this.authInterceptorProvider.handleError); + } +} + +export function NewConnectWebAuthInterceptor(authInterceptorProvider: AuthInterceptorProvider): Interceptor { + return (next) => async (req) => { + if (!req.header.get('Authorization')) { + const token = await firstValueFrom(authInterceptorProvider.getToken()); + req.header.set('Authorization', token); + } + + return next(req).catch(authInterceptorProvider.handleError); + }; +} diff --git a/console/src/app/services/interceptors/exhausted.grpc.interceptor.ts b/console/src/app/services/interceptors/exhausted.grpc.interceptor.ts index 446e7aa8dd..d1b15060c4 100644 --- a/console/src/app/services/interceptors/exhausted.grpc.interceptor.ts +++ b/console/src/app/services/interceptors/exhausted.grpc.interceptor.ts @@ -1,7 +1,8 @@ import { Injectable } from '@angular/core'; -import { Request, StatusCode, UnaryInterceptor, UnaryResponse } from 'grpc-web'; +import { Request, RpcError, StatusCode, UnaryInterceptor, UnaryResponse } from 'grpc-web'; import { EnvironmentService } from '../environment.service'; import { ExhaustedService } from '../exhausted.service'; +import { lastValueFrom } from 'rxjs'; /** * ExhaustedGrpcInterceptor shows the exhausted dialog after receiving a gRPC response status 8. @@ -17,16 +18,13 @@ export class ExhaustedGrpcInterceptor implement request: Request, invoker: (request: Request) => Promise>, ): Promise> { - return invoker(request).catch((error: any) => { - if (error.code === StatusCode.RESOURCE_EXHAUSTED) { - return this.exhaustedSvc - .showExhaustedDialog(this.envSvc.env) - .toPromise() - .then(() => { - throw error; - }); + try { + return await invoker(request); + } catch (error: any) { + if (error instanceof RpcError && error.code === StatusCode.RESOURCE_EXHAUSTED) { + await lastValueFrom(this.exhaustedSvc.showExhaustedDialog(this.envSvc.env)); } throw error; - }); + } } } diff --git a/console/src/app/services/interceptors/i18n.interceptor.ts b/console/src/app/services/interceptors/i18n.interceptor.ts index af2bb049d1..566508d178 100644 --- a/console/src/app/services/interceptors/i18n.interceptor.ts +++ b/console/src/app/services/interceptors/i18n.interceptor.ts @@ -10,7 +10,7 @@ const i18nHeader = 'Accept-Language'; export class I18nInterceptor implements UnaryInterceptor { constructor(private translate: TranslateService) {} - public async intercept(request: Request, invoker: any): Promise> { + public intercept(request: Request, invoker: any): Promise> { const metadata = request.getMetadata(); const navLang = this.translate.currentLang ?? navigator.language; @@ -18,12 +18,6 @@ export class I18nInterceptor implements UnaryIn metadata[i18nHeader] = navLang; } - return invoker(request) - .then((response: any) => { - return response; - }) - .catch((error: any) => { - return Promise.reject(error); - }); + return invoker(request); } } diff --git a/console/src/app/services/interceptors/org.interceptor.ts b/console/src/app/services/interceptors/org.interceptor.ts index 22d468edd5..2e85b8f4b9 100644 --- a/console/src/app/services/interceptors/org.interceptor.ts +++ b/console/src/app/services/interceptors/org.interceptor.ts @@ -1,5 +1,5 @@ import { Injectable } from '@angular/core'; -import { Request, UnaryInterceptor, UnaryResponse } from 'grpc-web'; +import { Request, RpcError, StatusCode, UnaryInterceptor, UnaryResponse } from 'grpc-web'; import { Org } from 'src/app/proto/generated/zitadel/org_pb'; import { StorageKey, StorageLocation, StorageService } from '../storage.service'; @@ -9,7 +9,7 @@ const ORG_HEADER_KEY = 'x-zitadel-orgid'; export class OrgInterceptor implements UnaryInterceptor { constructor(private readonly storageService: StorageService) {} - public intercept(request: Request, invoker: any): Promise> { + public async intercept(request: Request, invoker: any): Promise> { const metadata = request.getMetadata(); const org: Org.AsObject | null = this.storageService.getItem(StorageKey.organization, StorageLocation.session); @@ -18,15 +18,17 @@ export class OrgInterceptor implements UnaryInt metadata[ORG_HEADER_KEY] = `${org.id}`; } - return invoker(request) - .then((response: any) => { - return response; - }) - .catch((error: any) => { - if (error.code === 7 && error.message.startsWith("Organisation doesn't exist")) { - this.storageService.removeItem(StorageKey.organization, StorageLocation.session); - } - return Promise.reject(error); - }); + try { + return await invoker(request); + } catch (error: any) { + if ( + error instanceof RpcError && + error.code === StatusCode.PERMISSION_DENIED && + error.message.startsWith("Organisation doesn't exist") + ) { + this.storageService.removeItem(StorageKey.organization, StorageLocation.session); + } + throw error; + } } } diff --git a/console/src/app/services/new-auth.service.ts b/console/src/app/services/new-auth.service.ts new file mode 100644 index 0000000000..34b12bb90f --- /dev/null +++ b/console/src/app/services/new-auth.service.ts @@ -0,0 +1,31 @@ +import { Injectable } from '@angular/core'; +import { GrpcService } from './grpc.service'; +import { + AddMyAuthFactorOTPSMSResponse, + GetMyUserResponse, + ListMyMetadataResponse, + VerifyMyPhoneResponse, +} from '@zitadel/proto/zitadel/auth_pb'; + +@Injectable({ + providedIn: 'root', +}) +export class NewAuthService { + constructor(private readonly grpcService: GrpcService) {} + + public getMyUser(): Promise { + return this.grpcService.authNew.getMyUser({}); + } + + public verifyMyPhone(code: string): Promise { + return this.grpcService.authNew.verifyMyPhone({}); + } + + public addMyAuthFactorOTPSMS(): Promise { + return this.grpcService.authNew.addMyAuthFactorOTPSMS({}); + } + + public listMyMetadata(): Promise { + return this.grpcService.authNew.listMyMetadata({}); + } +} diff --git a/console/src/app/services/new-mgmt.service.ts b/console/src/app/services/new-mgmt.service.ts new file mode 100644 index 0000000000..21019f8c73 --- /dev/null +++ b/console/src/app/services/new-mgmt.service.ts @@ -0,0 +1,92 @@ +import { Injectable } from '@angular/core'; +import { GrpcService } from './grpc.service'; +import { + GenerateMachineSecretRequestSchema, + GenerateMachineSecretResponse, + GetLoginPolicyRequestSchema, + GetLoginPolicyResponse, + ListUserMetadataRequestSchema, + ListUserMetadataResponse, + RemoveMachineSecretRequestSchema, + RemoveMachineSecretResponse, + RemoveUserMetadataRequestSchema, + RemoveUserMetadataResponse, + ResendHumanEmailVerificationRequestSchema, + ResendHumanEmailVerificationResponse, + ResendHumanInitializationRequestSchema, + ResendHumanInitializationResponse, + ResendHumanPhoneVerificationRequestSchema, + ResendHumanPhoneVerificationResponse, + SendHumanResetPasswordNotificationRequest_Type, + SendHumanResetPasswordNotificationRequestSchema, + SendHumanResetPasswordNotificationResponse, + SetUserMetadataRequestSchema, + SetUserMetadataResponse, + UpdateMachineRequestSchema, + UpdateMachineResponse, +} from '@zitadel/proto/zitadel/management_pb'; +import { MessageInitShape, create } from '@bufbuild/protobuf'; + +@Injectable({ + providedIn: 'root', +}) +export class NewMgmtService { + constructor(private readonly grpcService: GrpcService) {} + + public getLoginPolicy(): Promise { + return this.grpcService.mgmtNew.getLoginPolicy(create(GetLoginPolicyRequestSchema)); + } + + public generateMachineSecret(userId: string): Promise { + return this.grpcService.mgmtNew.generateMachineSecret(create(GenerateMachineSecretRequestSchema, { userId })); + } + + public removeMachineSecret(userId: string): Promise { + return this.grpcService.mgmtNew.removeMachineSecret(create(RemoveMachineSecretRequestSchema, { userId })); + } + + public updateMachine(req: MessageInitShape): Promise { + return this.grpcService.mgmtNew.updateMachine(create(UpdateMachineRequestSchema, req)); + } + + public resendHumanEmailVerification(userId: string): Promise { + return this.grpcService.mgmtNew.resendHumanEmailVerification( + create(ResendHumanEmailVerificationRequestSchema, { userId }), + ); + } + + public resendHumanPhoneVerification(userId: string): Promise { + return this.grpcService.mgmtNew.resendHumanPhoneVerification( + create(ResendHumanPhoneVerificationRequestSchema, { userId }), + ); + } + + public sendHumanResetPasswordNotification( + userId: string, + type: SendHumanResetPasswordNotificationRequest_Type, + ): Promise { + return this.grpcService.mgmtNew.sendHumanResetPasswordNotification( + create(SendHumanResetPasswordNotificationRequestSchema, { userId, type }), + ); + } + + public resendHumanInitialization(userId: string, email: string = ''): Promise { + return this.grpcService.mgmtNew.resendHumanInitialization( + create(ResendHumanInitializationRequestSchema, { userId, email }), + ); + } + + public listUserMetadata(id: string): Promise { + return this.grpcService.mgmtNew.listUserMetadata(create(ListUserMetadataRequestSchema, { id })); + } + + public setUserMetadata(req: MessageInitShape): Promise { + return this.grpcService.mgmtNew.setUserMetadata(create(SetUserMetadataRequestSchema, req)); + } + + public removeUserMetadata( + req: MessageInitShape, + ): Promise { + return this.grpcService.mgmtNew.removeUserMetadata(create(RemoveUserMetadataRequestSchema, req)); + } +} diff --git a/console/src/app/services/user.service.ts b/console/src/app/services/user.service.ts new file mode 100644 index 0000000000..d0388571d3 --- /dev/null +++ b/console/src/app/services/user.service.ts @@ -0,0 +1,328 @@ +import { DestroyRef, Injectable } from '@angular/core'; +import { GrpcService } from './grpc.service'; +import { + AddHumanUserRequestSchema, + AddHumanUserResponse, + CreateInviteCodeRequestSchema, + CreateInviteCodeResponse, + CreatePasskeyRegistrationLinkRequestSchema, + CreatePasskeyRegistrationLinkResponse, + DeactivateUserRequestSchema, + DeactivateUserResponse, + DeleteUserRequestSchema, + DeleteUserResponse, + GetUserByIDResponse, + ListAuthenticationFactorsRequestSchema, + ListAuthenticationFactorsResponse, + ListPasskeysRequestSchema, + ListPasskeysResponse, + ListUsersRequestSchema, + ListUsersResponse, + LockUserRequestSchema, + LockUserResponse, + PasswordResetRequestSchema, + ReactivateUserRequestSchema, + ReactivateUserResponse, + RemoveOTPEmailRequestSchema, + RemoveOTPEmailResponse, + RemoveOTPSMSRequestSchema, + RemoveOTPSMSResponse, + RemovePasskeyRequestSchema, + RemovePasskeyResponse, + RemovePhoneRequestSchema, + RemovePhoneResponse, + RemoveTOTPRequestSchema, + RemoveTOTPResponse, + RemoveU2FRequestSchema, + RemoveU2FResponse, + ResendInviteCodeRequestSchema, + ResendInviteCodeResponse, + SetEmailRequestSchema, + SetEmailResponse, + SetPasswordRequestSchema, + SetPasswordResponse, + SetPhoneRequestSchema, + SetPhoneResponse, + UnlockUserRequestSchema, + UnlockUserResponse, + UpdateHumanUserRequestSchema, + UpdateHumanUserResponse, +} from '@zitadel/proto/zitadel/user/v2/user_service_pb'; +import type { MessageInitShape } from '@bufbuild/protobuf'; +import { + AccessTokenType, + Gender, + HumanProfile, + HumanProfileSchema, + HumanUser, + HumanUserSchema, + MachineUser, + MachineUserSchema, + User as UserV2, + UserSchema, + UserState, +} from '@zitadel/proto/zitadel/user/v2/user_pb'; +import { create } from '@bufbuild/protobuf'; +import { Timestamp as TimestampV2, TimestampSchema } from '@bufbuild/protobuf/wkt'; +import { Details, DetailsSchema } from '@zitadel/proto/zitadel/object/v2/object_pb'; +import { Human, Machine, Phone, Profile, User } from '../proto/generated/zitadel/user_pb'; +import { ObjectDetails } from '../proto/generated/zitadel/object_pb'; +import { Timestamp } from '../proto/generated/google/protobuf/timestamp_pb'; +import { HumanPhone, HumanPhoneSchema } from '@zitadel/proto/zitadel/user/v2/phone_pb'; +import { OAuthService } from 'angular-oauth2-oidc'; +import { firstValueFrom, Observable, shareReplay } from 'rxjs'; +import { filter, map, startWith, tap, timeout } from 'rxjs/operators'; +import { takeUntilDestroyed } from '@angular/core/rxjs-interop'; + +@Injectable({ + providedIn: 'root', +}) +export class UserService { + private readonly userId$: Observable; + private user: UserV2 | undefined; + + constructor( + private readonly grpcService: GrpcService, + private readonly oauthService: OAuthService, + destroyRef: DestroyRef, + ) { + this.userId$ = this.getUserId().pipe(shareReplay({ refCount: true, bufferSize: 1 })); + + // this preloads the userId and deletes the cache everytime the userId changes + this.userId$.pipe(takeUntilDestroyed(destroyRef)).subscribe(async () => { + this.user = undefined; + try { + await this.getMyUser(); + } catch (error) { + console.warn(error); + } + }); + } + + private getUserId() { + return this.oauthService.events.pipe( + filter((event) => event.type === 'token_received'), + startWith(this.oauthService.getIdToken), + map(() => this.oauthService.getIdToken()), + filter(Boolean), + // split jwt and get base64 encoded payload + map((token) => token.split('.')[1]), + // decode payload + map(atob), + // parse payload + map((payload) => JSON.parse(payload)), + map((payload: unknown) => { + // check if sub is in payload and is a string + if (payload && typeof payload === 'object' && 'sub' in payload && typeof payload.sub === 'string') { + return payload.sub; + } + throw new Error('Invalid payload'); + }), + ); + } + + public addHumanUser(req: MessageInitShape): Promise { + return this.grpcService.userNew.addHumanUser(create(AddHumanUserRequestSchema, req)); + } + + public listUsers(req: MessageInitShape): Promise { + return this.grpcService.userNew.listUsers(req); + } + + public async getMyUser(): Promise { + const userId = await firstValueFrom(this.userId$.pipe(timeout(2000))); + if (this.user) { + return this.user; + } + const resp = await this.getUserById(userId); + if (!resp.user) { + throw new Error("Couldn't find user"); + } + + this.user = resp.user; + return resp.user; + } + + public getUserById(userId: string): Promise { + return this.grpcService.userNew.getUserByID({ userId }); + } + + public deactivateUser(userId: string): Promise { + return this.grpcService.userNew.deactivateUser(create(DeactivateUserRequestSchema, { userId })); + } + + public reactivateUser(userId: string): Promise { + return this.grpcService.userNew.reactivateUser(create(ReactivateUserRequestSchema, { userId })); + } + + public deleteUser(userId: string): Promise { + return this.grpcService.userNew.deleteUser(create(DeleteUserRequestSchema, { userId })); + } + + public updateUser(req: MessageInitShape): Promise { + return this.grpcService.userNew.updateHumanUser(create(UpdateHumanUserRequestSchema, req)); + } + + public lockUser(userId: string): Promise { + return this.grpcService.userNew.lockUser(create(LockUserRequestSchema, { userId })); + } + + public unlockUser(userId: string): Promise { + return this.grpcService.userNew.unlockUser(create(UnlockUserRequestSchema, { userId })); + } + + public listAuthenticationFactors( + req: MessageInitShape, + ): Promise { + return this.grpcService.userNew.listAuthenticationFactors(create(ListAuthenticationFactorsRequestSchema, req)); + } + + public listPasskeys(req: MessageInitShape): Promise { + return this.grpcService.userNew.listPasskeys(create(ListPasskeysRequestSchema, req)); + } + + public removePasskeys(req: MessageInitShape): Promise { + return this.grpcService.userNew.removePasskey(create(RemovePasskeyRequestSchema, req)); + } + + public createPasskeyRegistrationLink( + req: MessageInitShape, + ): Promise { + return this.grpcService.userNew.createPasskeyRegistrationLink(create(CreatePasskeyRegistrationLinkRequestSchema, req)); + } + + public removePhone(userId: string): Promise { + return this.grpcService.userNew.removePhone(create(RemovePhoneRequestSchema, { userId })); + } + + public setPhone(req: MessageInitShape): Promise { + return this.grpcService.userNew.setPhone(create(SetPhoneRequestSchema, req)); + } + + public setEmail(req: MessageInitShape): Promise { + return this.grpcService.userNew.setEmail(create(SetEmailRequestSchema, req)); + } + + public removeTOTP(userId: string): Promise { + return this.grpcService.userNew.removeTOTP(create(RemoveTOTPRequestSchema, { userId })); + } + + public removeU2F(userId: string, u2fId: string): Promise { + return this.grpcService.userNew.removeU2F(create(RemoveU2FRequestSchema, { userId, u2fId })); + } + + public removeOTPSMS(userId: string): Promise { + return this.grpcService.userNew.removeOTPSMS(create(RemoveOTPSMSRequestSchema, { userId })); + } + + public removeOTPEmail(userId: string): Promise { + return this.grpcService.userNew.removeOTPEmail(create(RemoveOTPEmailRequestSchema, { userId })); + } + + public resendInviteCode(userId: string): Promise { + return this.grpcService.userNew.resendInviteCode(create(ResendInviteCodeRequestSchema, { userId })); + } + + public createInviteCode(req: MessageInitShape): Promise { + return this.grpcService.userNew.createInviteCode(create(CreateInviteCodeRequestSchema, req)); + } + + public passwordReset(req: MessageInitShape) { + return this.grpcService.userNew.passwordReset(create(PasswordResetRequestSchema, req)); + } + + public setPassword(req: MessageInitShape): Promise { + return this.grpcService.userNew.setPassword(create(SetPasswordRequestSchema, req)); + } +} + +function userToV2(user: User): UserV2 { + const details = user.getDetails(); + return create(UserSchema, { + userId: user.getId(), + details: details && detailsToV2(details), + state: user.getState() as number as UserState, + username: user.getUserName(), + loginNames: user.getLoginNamesList(), + preferredLoginName: user.getPreferredLoginName(), + type: typeToV2(user), + }); +} + +function detailsToV2(details: ObjectDetails): Details { + const changeDate = details.getChangeDate(); + return create(DetailsSchema, { + sequence: BigInt(details.getSequence()), + changeDate: changeDate && timestampToV2(changeDate), + resourceOwner: details.getResourceOwner(), + }); +} + +function timestampToV2(timestamp: Timestamp): TimestampV2 { + return create(TimestampSchema, { + seconds: BigInt(timestamp.getSeconds()), + nanos: timestamp.getNanos(), + }); +} + +function typeToV2(user: User): UserV2['type'] { + const human = user.getHuman(); + if (human) { + return { case: 'human', value: humanToV2(user, human) }; + } + + const machine = user.getMachine(); + if (machine) { + return { case: 'machine', value: machineToV2(machine) }; + } + + return { case: undefined }; +} + +function humanToV2(user: User, human: Human): HumanUser { + const profile = human.getProfile(); + const email = human.getEmail()?.getEmail(); + const phone = human.getPhone(); + const passwordChanged = human.getPasswordChanged(); + + return create(HumanUserSchema, { + userId: user.getId(), + state: user.getState() as number as UserState, + username: user.getUserName(), + loginNames: user.getLoginNamesList(), + preferredLoginName: user.getPreferredLoginName(), + profile: profile && humanProfileToV2(profile), + email: { email }, + phone: phone && humanPhoneToV2(phone), + passwordChangeRequired: false, + passwordChanged: passwordChanged && timestampToV2(passwordChanged), + }); +} + +function humanProfileToV2(profile: Profile): HumanProfile { + return create(HumanProfileSchema, { + givenName: profile.getFirstName(), + familyName: profile.getLastName(), + nickName: profile.getNickName(), + displayName: profile.getDisplayName(), + preferredLanguage: profile.getPreferredLanguage(), + gender: profile.getGender() as number as Gender, + avatarUrl: profile.getAvatarUrl(), + }); +} + +function humanPhoneToV2(phone: Phone): HumanPhone { + return create(HumanPhoneSchema, { + phone: phone.getPhone(), + isVerified: phone.getIsPhoneVerified(), + }); +} + +function machineToV2(machine: Machine): MachineUser { + return create(MachineUserSchema, { + name: machine.getName(), + description: machine.getDescription(), + hasSecret: machine.getHasSecret(), + accessTokenType: machine.getAccessTokenType() as number as AccessTokenType, + }); +} diff --git a/console/src/app/utils/formatPhone.ts b/console/src/app/utils/formatPhone.ts index d5a246667c..a55adc23bf 100644 --- a/console/src/app/utils/formatPhone.ts +++ b/console/src/app/utils/formatPhone.ts @@ -1,6 +1,6 @@ import { CountryCode, parsePhoneNumber } from 'libphonenumber-js'; -export function formatPhone(phone: string): { phone: string; country: CountryCode } | null { +export function formatPhone(phone?: string): { phone: string; country: CountryCode } | null { const defaultCountry = 'US'; if (phone) { diff --git a/console/src/app/utils/pairwiseStartWith.ts b/console/src/app/utils/pairwiseStartWith.ts new file mode 100644 index 0000000000..359394d14b --- /dev/null +++ b/console/src/app/utils/pairwiseStartWith.ts @@ -0,0 +1,11 @@ +import { Observable } from 'rxjs'; +import { map, pairwise, startWith } from 'rxjs/operators'; + +export function pairwiseStartWith(start: T) { + return (source: Observable) => + source.pipe( + startWith(start), + pairwise(), + map(([prev, curr]) => [prev, curr] as [T | R, R]), + ); +} diff --git a/console/src/app/utils/withLatestFromSynchronousFix.ts b/console/src/app/utils/withLatestFromSynchronousFix.ts new file mode 100644 index 0000000000..d2e362731e --- /dev/null +++ b/console/src/app/utils/withLatestFromSynchronousFix.ts @@ -0,0 +1,19 @@ +import { combineLatestWith, distinctUntilChanged, Observable, ObservableInput, ObservableInputTuple } from 'rxjs'; +import { map } from 'rxjs/operators'; + +// withLatestFrom does not work in this case, so we use +// combineLatestWith + distinctUntilChanged +// here the problem is described in more detail +// https://github.com/ReactiveX/rxjs/issues/7068 +export const withLatestFromSynchronousFix = + (...secondaries$: [...ObservableInputTuple]) => + (primary$: Observable) => + primary$.pipe( + // we add the index, so we can distinguish + // primary submissions from each other, + // and then we can only emit when primary changes + map((primary, i) => [primary, i]), + combineLatestWith(...secondaries$), + distinctUntilChanged(undefined!, ([[_, i]]) => i), + map(([[primary], ...secondaries]) => [primary, ...secondaries]), + ); diff --git a/console/src/assets/i18n/bg.json b/console/src/assets/i18n/bg.json index 7c39fb22b2..8a723d3207 100644 --- a/console/src/assets/i18n/bg.json +++ b/console/src/assets/i18n/bg.json @@ -511,11 +511,13 @@ "ORG_OWNER": "Има разрешение за цялата организация", "ORG_USER_MANAGER": "Има разрешение да създава и управлява потребители на организацията", "ORG_OWNER_VIEWER": "Има разрешение за преглед на цялата организация", + "ORG_SETTINGS_MANAGER": "Има разрешение за управление на настройките на организацията", "ORG_USER_PERMISSION_EDITOR": "Има разрешение за управление на потребителски безвъзмездни средства", "ORG_PROJECT_PERMISSION_EDITOR": "Има разрешение за управление на грантове по проекти", "ORG_PROJECT_CREATOR": "Има разрешение да създава свои собствени проекти и основни настройки", "ORG_ADMIN_IMPERSONATOR": "Има разрешение да се представя за администратор и крайни потребители от организацията", "ORG_END_USER_IMPERSONATOR": "Има разрешение да се представя за крайни потребители от организацията", + "ORG_USER_SELF_MANAGER": "Има разрешение да управлява собствените си потребители", "PROJECT_OWNER": "Има разрешение върху целия проект", "PROJECT_OWNER_VIEWER": "Има разрешение за преглед на целия проект", "PROJECT_OWNER_GLOBAL": "Има разрешение върху целия проект", @@ -808,6 +810,9 @@ "EMAIL": "Електронна поща", "PHONE": "Телефонен номер", "PHONE_HINT": "Използвайте символа +, последван от кода на държавата, на която се обаждате, или изберете държавата от падащото меню и накрая въведете телефонния номер", + "PHONE_VERIFIED": "Телефонният номер е потвърден", + "SEND_SMS": "Изпрати SMS за потвърждение", + "SEND_EMAIL": "Изпрати имейл", "USERNAME": "Потребителско име", "CHANGEUSERNAME": "променям", "CHANGEUSERNAME_TITLE": "Промяна на потребителското име", @@ -948,6 +953,14 @@ "5": "Спряно", "6": "Първоначално" }, + "STATEV2": { + "0": "неизвестен", + "1": "Активен", + "2": "Неактивен", + "3": "Изтрито", + "4": "Заключено", + "5": "Първоначално" + }, "SEARCH": { "ADDITIONAL": "Име за вход (текуща организация)", "ADDITIONAL-EXTERNAL": "Име за вход (външна организация)" @@ -1485,7 +1498,9 @@ "ENABLED": "„Активирано“ се наследява", "DISABLED": "„Деактивирано“ се наследява" }, - "RESET": "Задай всички на наследено" + "RESET": "Задай всички на наследено", + "CONSOLEUSEV2USERAPI": "Използвайте V2 API в конзолата за създаване на потребител", + "CONSOLEUSEV2USERAPI_DESCRIPTION": "Когато този флаг е активиран, конзолата използва V2 User API за създаване на нови потребители. С V2 API новосъздадените потребители започват без начален статус." }, "DIALOG": { "RESET": { @@ -2187,7 +2202,9 @@ "REMOVED": "Премахнато успешно." }, "ISIDTOKENMAPPING": "Съответствие от ID токен", - "ISIDTOKENMAPPING_DESC": "Ако е избрано, информацията на доставчика се съответства от ID токена, а не от userinfo крайната точка." + "ISIDTOKENMAPPING_DESC": "Ако е избрано, информацията на доставчика се съответства от ID токена, а не от userinfo крайната точка.", + "USEPKCE": "Използвайте PKCE", + "USEPKCE_DESC": "Определя дали параметрите code_challenge и code_challenge_method са включени в заявката за удостоверяване" }, "MFA": { "LIST": { diff --git a/console/src/assets/i18n/cs.json b/console/src/assets/i18n/cs.json index 09b9ac2b9f..aa543939c4 100644 --- a/console/src/assets/i18n/cs.json +++ b/console/src/assets/i18n/cs.json @@ -512,11 +512,13 @@ "ORG_OWNER": "Má oprávnění nad celou organizací", "ORG_USER_MANAGER": "Má oprávnění vytvářet a spravovat uživatele organizace", "ORG_OWNER_VIEWER": "Má oprávnění prohlížet celou organizaci", + "ORG_SETTINGS_MANAGER": "Má oprávnění spravovat nastavení organizace", "ORG_USER_PERMISSION_EDITOR": "Má oprávnění spravovat uživatelská pověření", "ORG_PROJECT_PERMISSION_EDITOR": "Má oprávnění spravovat pověření projektu", "ORG_PROJECT_CREATOR": "Má oprávnění vytvářet své vlastní projekty a podřízená nastavení", "ORG_ADMIN_IMPERSONATOR": "Má oprávnění vydávat se za správce a koncové uživatele z organizace", "ORG_END_USER_IMPERSONATOR": "Má oprávnění vydávat se za koncové uživatele z organizace", + "ORG_USER_SELF_MANAGER": "Má oprávnění spravovat svůj vlastní uživatelský účet", "PROJECT_OWNER": "Má oprávnění nad celým projektem", "PROJECT_OWNER_VIEWER": "Má oprávnění prohlížet celý projekt", "PROJECT_OWNER_GLOBAL": "Má oprávnění nad celým projektem", @@ -809,6 +811,9 @@ "EMAIL": "E-mail", "PHONE": "Telefonní číslo", "PHONE_HINT": "Použijte symbol + následovaný mezinárodním kódem země, nebo ze seznamu vyberte zemi a nakonec zadejte telefonní číslo", + "PHONE_VERIFIED": "Telefonní číslo ověřeno", + "SEND_SMS": "Odeslat ověřovací SMS", + "SEND_EMAIL": "Odeslat E-mail", "USERNAME": "Uživatelské jméno", "CHANGEUSERNAME": "upravit", "CHANGEUSERNAME_TITLE": "Změna uživatelského jména", @@ -949,6 +954,14 @@ "5": "Pozastavený", "6": "Počáteční" }, + "STATEV2": { + "0": "Neznámý", + "1": "Aktivní", + "2": "Neaktivní", + "3": "Smazaný", + "4": "Uzamčený", + "5": "Počáteční" + }, "SEARCH": { "ADDITIONAL": "Přihlašovací jméno (současná organizace)", "ADDITIONAL-EXTERNAL": "Přihlašovací jméno (externí organizace)" @@ -1486,7 +1499,9 @@ "ENABLED": "„Povoleno“ je zděděno", "DISABLED": "„Zakázáno“ je zděděno" }, - "RESET": "Nastavit vše na děděné" + "RESET": "Nastavit vše na děděné", + "CONSOLEUSEV2USERAPI": "Použijte V2 API v konzoli pro vytvoření uživatele", + "CONSOLEUSEV2USERAPI_DESCRIPTION": "Když je tato příznak povolen, konzole používá V2 User API k vytvoření nových uživatelů. S V2 API nově vytvoření uživatelé začínají bez počátečního stavu." }, "DIALOG": { "RESET": { @@ -2200,7 +2215,9 @@ "REMOVED": "Úspěšně odebráno." }, "ISIDTOKENMAPPING": "Mapování z ID tokenu", - "ISIDTOKENMAPPING_DESC": "Pokud je vybráno, informace o poskytovateli jsou mapovány z ID tokenu, nikoli z koncového bodu userinfo." + "ISIDTOKENMAPPING_DESC": "Pokud je vybráno, informace o poskytovateli jsou mapovány z ID tokenu, nikoli z koncového bodu userinfo.", + "USEPKCE": "Použijte PKCE", + "USEPKCE_DESC": "Určuje, zda jsou v požadavku na ověření zahrnuty parametry code_challenge a code_challenge_method" }, "MFA": { "LIST": { diff --git a/console/src/assets/i18n/de.json b/console/src/assets/i18n/de.json index 1a9efe8c97..8f5c2e7f80 100644 --- a/console/src/assets/i18n/de.json +++ b/console/src/assets/i18n/de.json @@ -512,11 +512,13 @@ "ORG_OWNER": "Hat die Berechtigung für die gesamte Organisation", "ORG_USER_MANAGER": "Hat die Berechtigung, Benutzer der Organisation zu erstellen und zu verwalten", "ORG_OWNER_VIEWER": "Hat die Leseberechtigung, die gesamte Organisation zu überprüfen", + "ORG_SETTINGS_MANAGER": "Hat die Berechtigung, die Einstellungen der Organisation zu verwalten", "ORG_USER_PERMISSION_EDITOR": "Verfügt über die Berechtigung zum Verwalten von User grants", "ORG_PROJECT_PERMISSION_EDITOR": "Hat die Berechtigung, Projektberechtigungen für externe Organisationen zu verwalten", "ORG_PROJECT_CREATOR": "Hat die Berechtigung, seine eigenen Projekte und dessen Einstellungen zu erstellen", "ORG_ADMIN_IMPERSONATOR": "Hat die Berechtigung, sich als Administrator und Endbenutzer der Organisation auszugeben", "ORG_END_USER_IMPERSONATOR": "Hat die Berechtigung, sich als Endbenutzer der Organisation auszugeben", + "ORG_USER_SELF_MANAGER": "Hat die Berechtigung, seinen eigenen Benutzer zu verwalten", "PROJECT_OWNER": "Hat die Berechtigung für das gesamte Projekt", "PROJECT_OWNER_VIEWER": "Hat die Leseberechtigung, das gesamte Projekt zu überprüfen", "PROJECT_OWNER_GLOBAL": "Hat die Berechtigung für das gesamte Projekt", @@ -809,6 +811,9 @@ "EMAIL": "E-Mail", "PHONE": "Telefonnummer", "PHONE_HINT": "Verwenden das Symbol + gefolgt von der Landesvorwahl des Anrufers oder wähle das Land aus der Dropdown-Liste aus und gebe anschließend die Telefonnummer ein.", + "PHONE_VERIFIED": "Telefonnummer verifiziert", + "SEND_SMS": "Bestätigungs-SMS senden", + "SEND_EMAIL": "E-Mail senden", "USERNAME": "Benutzername", "CHANGEUSERNAME": "bearbeiten", "CHANGEUSERNAME_TITLE": "Benutzername ändern", @@ -949,6 +954,14 @@ "5": "Suspendiert", "6": "Initialisiert" }, + "STATEV2": { + "0": "Unbekannt", + "1": "Aktiv", + "2": "Inaktiv", + "3": "Gelöscht", + "4": "Gesperrt", + "5": "Initialisiert" + }, "SEARCH": { "ADDITIONAL": "Benutzer Name (eigene Organisation)", "ADDITIONAL-EXTERNAL": "Loginname (externe Organisation)" @@ -1486,7 +1499,9 @@ "ENABLED": "„Aktiviert“ wird vererbt", "DISABLED": "„Deaktiviert“ wird vererbt" }, - "RESET": "Alle auf Erben setzen" + "RESET": "Alle auf Erben setzen", + "CONSOLEUSEV2USERAPI": "Verwende die V2-API in der Konsole zur Erstellung von Benutzern", + "CONSOLEUSEV2USERAPI_DESCRIPTION": "Wenn diese Option aktiviert ist, verwendet die Konsole die V2 User API, um neue Benutzer zu erstellen. Mit der V2 API starten neu erstellte Benutzer nicht im Initial Zustand." }, "DIALOG": { "RESET": { @@ -2191,7 +2206,9 @@ "REMOVED": "Erfolgreich entfernt." }, "ISIDTOKENMAPPING": "Zuordnung vom ID-Token", - "ISIDTOKENMAPPING_DESC": "Legt fest, ob für das Mapping der Provider Informationen das ID-Token verwendet werden soll, anstatt des Userinfo-Endpoints." + "ISIDTOKENMAPPING_DESC": "Legt fest, ob für das Mapping der Provider Informationen das ID-Token verwendet werden soll, anstatt des Userinfo-Endpoints.", + "USEPKCE": "Verwenden Sie PKCE", + "USEPKCE_DESC": "Bestimmt, ob die Parameter code_challenge und code_challenge_method in der Authentifizierungsanforderung enthalten sind" }, "MFA": { "LIST": { diff --git a/console/src/assets/i18n/en.json b/console/src/assets/i18n/en.json index 488ae68d7c..6cdf6a73de 100644 --- a/console/src/assets/i18n/en.json +++ b/console/src/assets/i18n/en.json @@ -512,11 +512,13 @@ "ORG_OWNER": "Has permission over the whole organization", "ORG_USER_MANAGER": "Has permission to create and manage users of the organization", "ORG_OWNER_VIEWER": "Has permission to review the whole organization", + "ORG_SETTINGS_MANAGER": "Has permission to manage organization settings", "ORG_USER_PERMISSION_EDITOR": "Has permission to manage user grants", "ORG_PROJECT_PERMISSION_EDITOR": "Has permission to manage project grants", "ORG_PROJECT_CREATOR": "Has permission to create his own projects and underlying settings", "ORG_ADMIN_IMPERSONATOR": "Has permission to impersonate admin and end users from the organization", "ORG_END_USER_IMPERSONATOR": "Has permission to impersonate end users from the organization", + "ORG_USER_SELF_MANAGER": "Has permission to manage their own user", "PROJECT_OWNER": "Has permission over the whole project", "PROJECT_OWNER_VIEWER": "Has permission to review the whole project", "PROJECT_OWNER_GLOBAL": "Has permission over the whole project", @@ -809,6 +811,9 @@ "EMAIL": "E-mail", "PHONE": "Phone number", "PHONE_HINT": "Use the + symbol followed by the calling country code, or select the country from the dropdown and finally enter the phone number", + "PHONE_VERIFIED": "Phone Number Verified", + "SEND_SMS": "Send Verification SMS", + "SEND_EMAIL": "Send E-Mail", "USERNAME": "User Name", "CHANGEUSERNAME": "modify", "CHANGEUSERNAME_TITLE": "Change username", @@ -949,6 +954,14 @@ "5": "Suspended", "6": "Initial" }, + "STATEV2": { + "0": "Unknown", + "1": "Active", + "2": "Inactive", + "3": "Deleted", + "4": "Locked", + "5": "Initial" + }, "SEARCH": { "ADDITIONAL": "Loginname (current organization)", "ADDITIONAL-EXTERNAL": "Loginname (external organization)" @@ -1486,7 +1499,9 @@ "ENABLED": "\"Enabled\" is inherited", "DISABLED": "\"Disabled\" is inherited" }, - "RESET": "Set all to inherit" + "RESET": "Set all to inherit", + "CONSOLEUSEV2USERAPI": "Use V2 Api in Console for User creation", + "CONSOLEUSEV2USERAPI_DESCRIPTION": "When this flag is enabled, the console uses the V2 User API to create new users. With the V2 API, newly created users start without an initial state." }, "DIALOG": { "RESET": { @@ -2212,7 +2227,9 @@ "REMOVED": "Removed successfully." }, "ISIDTOKENMAPPING": "Map from the ID token", - "ISIDTOKENMAPPING_DESC": "If selected, provider information gets mapped from the ID token, not from the userinfo endpoint." + "ISIDTOKENMAPPING_DESC": "If selected, provider information gets mapped from the ID token, not from the userinfo endpoint.", + "USEPKCE": "Use PKCE", + "USEPKCE_DESC": "Determines whether the code_challenge and code_challenge_method params are included in the auth request" }, "MFA": { "LIST": { diff --git a/console/src/assets/i18n/es.json b/console/src/assets/i18n/es.json index 09cb87a5e6..85caa90152 100644 --- a/console/src/assets/i18n/es.json +++ b/console/src/assets/i18n/es.json @@ -512,11 +512,13 @@ "ORG_OWNER": "Tiene permisos sobre toda la organización", "ORG_USER_MANAGER": "Tiene permiso para crear y gestionar usuarios de la organización", "ORG_OWNER_VIEWER": "TIene permiso para revisar toda la organización", + "ORG_SETTINGS_MANAGER": "Tiene permiso para gestionar las configuraciones de la organización", "ORG_USER_PERMISSION_EDITOR": "Tiene permiso para gestionar concesiones de usuario", "ORG_PROJECT_PERMISSION_EDITOR": "Tiene permiso para gestionar concesiones de proyecto", "ORG_PROJECT_CREATOR": "Tiene permiso para crear sus propios proyectos y ajustes subyacentes", "ORG_ADMIN_IMPERSONATOR": "Tiene permiso para hacerse pasar por administradores y usuarios finales de la organización", "ORG_END_USER_IMPERSONATOR": "Tiene permiso para hacerse pasar por usuarios finales de la organización", + "ORG_USER_SELF_MANAGER": "Tiene permiso para gestionar su propio usuario", "PROJECT_OWNER": "Tiene permiso sobre todo el proyecto", "PROJECT_OWNER_VIEWER": "Tiene permiso para revisar todo el proyecto", "PROJECT_OWNER_GLOBAL": "Tiene permiso sobre todo el proyecto", @@ -809,6 +811,9 @@ "EMAIL": "Email", "PHONE": "Número de teléfono", "PHONE_HINT": "Usa el símbolo + seguido del prefijo del país o selecciona el país del menú desplegable y finalmente introduce el número de teléfono", + "PHONE_VERIFIED": "Número de teléfono verificado", + "SEND_SMS": "Enviar SMS de verificación", + "SEND_EMAIL": "Enviar correo electrónico", "USERNAME": "Nombre de usuario", "CHANGEUSERNAME": "modificar", "CHANGEUSERNAME_TITLE": "Cambiar nombre de usuario", @@ -949,6 +954,14 @@ "5": "Suspendido", "6": "Inicial" }, + "STATEV2": { + "0": "Desconocido", + "1": "Activo", + "2": "Inactivo", + "3": "Borrado", + "4": "Bloqueado", + "5": "Inicial" + }, "SEARCH": { "ADDITIONAL": "Nombre de inicio de sesión (organización actual)", "ADDITIONAL-EXTERNAL": "Nombre de inicio de sesión (organización externa)" @@ -1487,7 +1500,9 @@ "ENABLED": "\"Habilitado\" se hereda", "DISABLED": "\"Deshabilitado\" se hereda" }, - "RESET": "Establecer todo a heredado" + "RESET": "Establecer todo a heredado", + "CONSOLEUSEV2USERAPI": "Utilice la API V2 en la consola para la creación de usuarios", + "CONSOLEUSEV2USERAPI_DESCRIPTION": "Cuando esta opción está habilitada, la consola utiliza la API V2 de usuario para crear nuevos usuarios. Con la API V2, los usuarios recién creados comienzan sin un estado inicial." }, "DIALOG": { "RESET": { @@ -2188,7 +2203,9 @@ "REMOVED": "Eliminado con éxito." }, "ISIDTOKENMAPPING": "Asignación del ID token", - "ISIDTOKENMAPPING_DESC": "Si se selecciona, la información del proveedor se asigna desde el ID token, no desde el punto final de userinfo." + "ISIDTOKENMAPPING_DESC": "Si se selecciona, la información del proveedor se asigna desde el ID token, no desde el punto final de userinfo.", + "USEPKCE": "Usa PKCE", + "USEPKCE_DESC": "Determina si los parámetros code_challenge y code_challenge_method son incluidos en la solicitud de autenticación." }, "MFA": { "LIST": { diff --git a/console/src/assets/i18n/fr.json b/console/src/assets/i18n/fr.json index c5ae8d767c..e068ebb069 100644 --- a/console/src/assets/i18n/fr.json +++ b/console/src/assets/i18n/fr.json @@ -512,11 +512,13 @@ "ORG_OWNER": "A le droit de contrôler l'ensemble de l'organisation", "ORG_USER_MANAGER": "A le droit de créer et de gérer les utilisateurs de l'organisation", "ORG_OWNER_VIEWER": "A le droit de passer en revue l'ensemble de l'organisation", + "ORG_SETTINGS_MANAGER": "A le droit de gérer les paramètres de l'organisation", "ORG_USER_PERMISSION_EDITOR": "A le droit d'octroyer des droits aux utilisateurs", "ORG_PROJECT_PERMISSION_EDITOR": "A le droit d'octroyer des droits aux projets", "ORG_PROJECT_CREATOR": "A le droit de créer ses propres projets et leurs paramètres sous-jacents.", "ORG_ADMIN_IMPERSONATOR": "A l'autorisation de se faire passer pour l'administrateur et les utilisateurs finaux de l'organisation", "ORG_END_USER_IMPERSONATOR": "Est autorisé à usurper l'identité des utilisateurs finaux de l'organisation", + "ORG_USER_SELF_MANAGER": "A le droit de gérer ses propres utilisateurs", "PROJECT_OWNER": "A le droit de gérer l'ensemble du projet", "PROJECT_OWNER_VIEWER": "A le droit de passer en revue l'ensemble du projet", "PROJECT_OWNER_GLOBAL": "A le droit d'accéder à l'ensemble du projet", @@ -809,6 +811,9 @@ "EMAIL": "Courriel", "PHONE": "Numéro de téléphone", "PHONE_HINT": "Utilisez le symbole + suivi de l'indicatif du pays de l'appelant, ou sélectionnez le pays dans la liste déroulante et saisissez enfin le numéro de téléphone.", + "PHONE_VERIFIED": "Numéro de téléphone vérifié", + "SEND_SMS": "Envoyer un SMS de vérification", + "SEND_EMAIL": "Envoyer un Courriel", "USERNAME": "Nom de l'utilisateur", "CHANGEUSERNAME": "modifier", "CHANGEUSERNAME_TITLE": "Modifier le nom d'utilisateur", @@ -949,6 +954,14 @@ "5": "Suspendu", "6": "Initial" }, + "STATEV2": { + "0": "Inconnu", + "1": "Actif", + "2": "Inactif", + "3": "Supprimé", + "4": "Verrouillé", + "5": "Initial" + }, "SEARCH": { "ADDITIONAL": "Nom de connexion (organisation actuelle)", "ADDITIONAL-EXTERNAL": "Nom de connexion (organisation externe)" @@ -1486,7 +1499,9 @@ "ENABLED": "\"Activé\" est hérité", "DISABLED": "\"Désactivé\" est hérité" }, - "RESET": "Réinitialiser tout sur hérité" + "RESET": "Réinitialiser tout sur hérité", + "CONSOLEUSEV2USERAPI": "Utilisez l'API V2 dans la console pour la création d'utilisateurs", + "CONSOLEUSEV2USERAPI_DESCRIPTION": "Lorsque ce drapeau est activé, la console utilise l'API V2 User pour créer de nouveaux utilisateurs. Avec l'API V2, les nouveaux utilisateurs commencent sans état initial." }, "DIALOG": { "RESET": { @@ -2192,7 +2207,9 @@ "REMOVED": "Suppression réussie." }, "ISIDTOKENMAPPING": "Mappage depuis le jeton ID", - "ISIDTOKENMAPPING_DESC": "Si sélectionné, les informations du fournisseur sont mappées à partir du jeton ID, et non à partir du point d'extrémité userinfo." + "ISIDTOKENMAPPING_DESC": "Si sélectionné, les informations du fournisseur sont mappées à partir du jeton ID, et non à partir du point d'extrémité userinfo.", + "USEPKCE": "Utiliser PKCE", + "USEPKCE_DESC": "Détermine si les paramètres code_challenge et code_challenge_method sont inclus dans la demande d'authentification" }, "MFA": { "LIST": { diff --git a/console/src/assets/i18n/hu.json b/console/src/assets/i18n/hu.json index e74e9eab32..921f962dfa 100644 --- a/console/src/assets/i18n/hu.json +++ b/console/src/assets/i18n/hu.json @@ -512,11 +512,13 @@ "ORG_OWNER": "Engedélye van az egész szervezet fölött", "ORG_USER_MANAGER": "Engedélye van a szervezet felhasználóinak létrehozására és kezelésére", "ORG_OWNER_VIEWER": "Engedélye van az egész szervezet áttekintésére", + "ORG_SETTINGS_MANAGER": "Engedélye van a szervezet beállításainak kezelésére", "ORG_USER_PERMISSION_EDITOR": "Engedélye van a felhasználói jogok kezelésére", "ORG_PROJECT_PERMISSION_EDITOR": "Engedélye van a projektjogosultságok kezelésére", "ORG_PROJECT_CREATOR": "Engedélye van saját projektek és alapbeállítások létrehozására", "ORG_ADMIN_IMPERSONATOR": "Engedélye van a szervezet adminisztrátorainak és véghasználóinak megszemélyesítésére", "ORG_END_USER_IMPERSONATOR": "Engedélye van a szervezet véghasználóinak megszemélyesítésére", + "ORG_USER_SELF_MANAGER": "Engedélye van a saját felhasználói fiókjaidat kezelésére", "PROJECT_OWNER": "Engedélye van az egész projekt fölött", "PROJECT_OWNER_VIEWER": "Jogosultságod van a teljes projekt átnézésére.", "PROJECT_OWNER_GLOBAL": "Jogosultságod van a teljes projektre.", @@ -809,6 +811,9 @@ "EMAIL": "E-mail", "PHONE": "Telefonszám", "PHONE_HINT": "Használd a + szimbólumot az ország hívókódja előtt, vagy válaszd ki az országot a legördülő menüből, és végül add meg a telefonszámot", + "PHONE_VERIFIED": "Telefonszám ellenőrizve", + "SEND_SMS": "Ellenőrző SMS küldése", + "SEND_EMAIL": "E-mail küldése", "USERNAME": "Felhasználónév", "CHANGEUSERNAME": "módosít", "CHANGEUSERNAME_TITLE": "Felhasználónév megváltoztatása", @@ -949,6 +954,14 @@ "5": "Felfüggesztett", "6": "Kezdeti" }, + "STATEV2": { + "0": "Ismeretlen", + "1": "Aktív", + "2": "Inaktív", + "3": "Törölt", + "4": "Zárolt", + "5": "Kezdeti" + }, "SEARCH": { "ADDITIONAL": "Belépési név (jelenlegi szervezet)", "ADDITIONAL-EXTERNAL": "Belépési név (külső szervezet)" @@ -1484,7 +1497,9 @@ "ENABLED": "\"Engedélyezve\" öröklődik", "DISABLED": "\"Letiltva\" öröklődik" }, - "RESET": "Mindent állíts öröklésre" + "RESET": "Mindent állíts öröklésre", + "CONSOLEUSEV2USERAPI": "Használja a V2 API-t a konzolban felhasználók létrehozásához", + "CONSOLEUSEV2USERAPI_DESCRIPTION": "Ha ez a jelző engedélyezve van, a konzol a V2 User API-t használja új felhasználók létrehozásához. A V2 API-val az újonnan létrehozott felhasználók kezdeti állapot nélkül indulnak." }, "DIALOG": { "RESET": { @@ -2210,7 +2225,9 @@ "REMOVED": "Sikeresen eltávolítva." }, "ISIDTOKENMAPPING": "Hozzárendelés az ID token alapján", - "ISIDTOKENMAPPING_DESC": "Ha ezt választod, a szolgáltatói információkat az ID token alapján rendeljük hozzá, nem a userinfo végpontból." + "ISIDTOKENMAPPING_DESC": "Ha ezt választod, a szolgáltatói információkat az ID token alapján rendeljük hozzá, nem a userinfo végpontból.", + "USEPKCE": "PKCE használata", + "USEPKCE_DESC": "Meghatározza, hogy a code_challenge és a code_challenge_method paraméterek szerepeljenek-e a hitelesítési kérelemben" }, "MFA": { "LIST": { diff --git a/console/src/assets/i18n/id.json b/console/src/assets/i18n/id.json index d5dbd48128..5109fbea04 100644 --- a/console/src/assets/i18n/id.json +++ b/console/src/assets/i18n/id.json @@ -479,11 +479,13 @@ "ORG_OWNER": "Memiliki izin atas seluruh organisasi", "ORG_USER_MANAGER": "Memiliki izin untuk membuat dan mengelola pengguna organisasi", "ORG_OWNER_VIEWER": "Memiliki izin untuk meninjau seluruh organisasi", + "ORG_SETTINGS_MANAGER": "Memiliki izin untuk mengelola pengaturan organisasi", "ORG_USER_PERMISSION_EDITOR": "Memiliki izin untuk mengelola izin pengguna", "ORG_PROJECT_PERMISSION_EDITOR": "Memiliki izin untuk mengelola hibah proyek", "ORG_PROJECT_CREATOR": "Memiliki izin untuk membuat proyeknya sendiri dan pengaturan yang mendasarinya", "ORG_ADMIN_IMPERSONATOR": "Memiliki izin untuk menyamar sebagai admin dan pengguna akhir dari organisasi", "ORG_END_USER_IMPERSONATOR": "Memiliki izin untuk meniru identitas pengguna akhir dari organisasi", + "ORG_USER_SELF_MANAGER": "Memiliki izin untuk mengelola pengguna sendiri", "PROJECT_OWNER": "Memiliki izin atas keseluruhan proyek", "PROJECT_OWNER_VIEWER": "Memiliki izin untuk meninjau keseluruhan proyek", "PROJECT_OWNER_GLOBAL": "Memiliki izin atas keseluruhan proyek", @@ -749,6 +751,9 @@ "EMAIL": "E-mail", "PHONE": "Nomor telepon", "PHONE_HINT": "Gunakan simbol + diikuti dengan kode negara pemanggil, atau pilih negara dari dropdown dan terakhir masukkan nomor telepon", + "PHONE_VERIFIED": "Nomor telepon terverifikasi", + "SEND_SMS": "Kirim SMS verifikasi", + "SEND_EMAIL": "Kirim E-mail", "USERNAME": "Nama belakang", "CHANGEUSERNAME": "memodifikasi", "CHANGEUSERNAME_TITLE": "Ubah nama pengguna", @@ -878,6 +883,14 @@ "5": "Tergantung", "6": "Awal" }, + "STATEV2": { + "0": "Tidak dikenal", + "1": "Aktif", + "2": "Tidak aktif", + "3": "Dihapus", + "4": "Terkunci", + "5": "Awal" + }, "SEARCH": { "ADDITIONAL": "Nama login (organisasi saat ini)", "ADDITIONAL-EXTERNAL": "Nama login (organisasi eksternal)" @@ -1354,7 +1367,9 @@ "ENABLED": "\"Diaktifkan\" diwariskan", "DISABLED": "\"Dinonaktifkan\" diwariskan" }, - "RESET": "Tetapkan semua untuk diwarisi" + "RESET": "Tetapkan semua untuk diwarisi", + "CONSOLEUSEV2USERAPI": "Gunakan API V2 di konsol untuk pembuatan pengguna", + "CONSOLEUSEV2USERAPI_DESCRIPTION": "Ketika flag ini diaktifkan, konsol menggunakan API Pengguna V2 untuk membuat pengguna baru. Dengan API V2, pengguna yang baru dibuat dimulai tanpa keadaan awal." }, "DIALOG": { "RESET": { @@ -1993,7 +2008,9 @@ "REMOVED": "Berhasil dihapus." }, "ISIDTOKENMAPPING": "Peta dari token ID", - "ISIDTOKENMAPPING_DESC": "Jika dipilih, informasi penyedia akan dipetakan dari token ID, bukan dari titik akhir info pengguna." + "ISIDTOKENMAPPING_DESC": "Jika dipilih, informasi penyedia akan dipetakan dari token ID, bukan dari titik akhir info pengguna.", + "USEPKCE": "Gunakan PKCE", + "USEPKCE_DESC": "Menentukan apakah parameter code_challenge dan code_challenge_method disertakan dalam permintaan autentikasi" }, "MFA": { "LIST": { diff --git a/console/src/assets/i18n/it.json b/console/src/assets/i18n/it.json index 1910146698..58b49167db 100644 --- a/console/src/assets/i18n/it.json +++ b/console/src/assets/i18n/it.json @@ -511,11 +511,13 @@ "ORG_OWNER": "Ha il permesso su tutta l'organizzazione", "ORG_USER_MANAGER": "Ha l'autorizzazione per creare e gestire gli utenti dell'organizzazione", "ORG_OWNER_VIEWER": "Ha il permesso di esaminare l'intera organizzazione", + "ORG_SETTINGS_MANAGER": "Ha il permesso di gestire le impostazioni dell'organizzazione", "ORG_USER_PERMISSION_EDITOR": "Ha l'autorizzazione per gestire le autorizzazioni degli utenti", "ORG_PROJECT_PERMISSION_EDITOR": "Ha il permesso di gestire le sovvenzioni di progetto (Project Grant)", "ORG_PROJECT_CREATOR": "Ha il permesso di creare propri progetti e le impostazioni sottostanti", "ORG_ADMIN_IMPERSONATOR": "Ha il permesso per rappresentare l'amministratore e gli utenti finali dell'organizzazione", "ORG_END_USER_IMPERSONATOR": "Ha il permesso per rappresentare gli utenti finali dell'organizzazione", + "ORG_USER_SELF_MANAGER": "Ha il permesso per gestire il proprio account utente", "PROJECT_OWNER": "Ha il permesso per l'intero progetto", "PROJECT_OWNER_VIEWER": "Ha il permesso di esaminare l'intero progetto", "PROJECT_OWNER_GLOBAL": "Ha il permesso per l'intero progetto", @@ -808,6 +810,9 @@ "EMAIL": "E-mail", "PHONE": "Numero di telefono", "PHONE_HINT": "Utilizza il simbolo + seguito dal prefisso del paese, o seleziona il paese ed inserisci il numero di telefono", + "PHONE_VERIFIED": "Numero di telefono verificato", + "SEND_SMS": "Invia SMS di verifica", + "SEND_EMAIL": "Invia E-mail", "USERNAME": "Nome utente", "CHANGEUSERNAME": "cambia", "CHANGEUSERNAME_TITLE": "Cambia nome utente", @@ -948,6 +953,14 @@ "5": "Sospeso", "6": "Initializzato" }, + "STATEV2": { + "0": "Sconosciuto", + "1": "Attivo", + "2": "Inattivo", + "3": "Rimosso", + "4": "Bloccato", + "5": "Initializzato" + }, "SEARCH": { "ADDITIONAL": "Nome (organizzazione corrente)", "ADDITIONAL-EXTERNAL": "Loginname (organizzazione esterna)" @@ -1486,7 +1499,9 @@ "ENABLED": "\"Abilitato\" viene ereditato", "DISABLED": "\"Disabilitato\" viene ereditato" }, - "RESET": "Imposta tutto su predefinito" + "RESET": "Imposta tutto su predefinito", + "CONSOLEUSEV2USERAPI": "Utilizza l'API V2 nella console per la creazione degli utenti", + "CONSOLEUSEV2USERAPI_DESCRIPTION": "Quando questa opzione è abilitata, la console utilizza l'API V2 User per creare nuovi utenti. Con l'API V2, i nuovi utenti creati iniziano senza uno stato iniziale." }, "DIALOG": { "RESET": { @@ -2192,7 +2207,9 @@ "REMOVED": "Rimosso con successo." }, "ISIDTOKENMAPPING": "Mappatura dal token ID", - "ISIDTOKENMAPPING_DESC": "Se selezionato, le informazioni del provider vengono mappate dal token ID, non dal punto finale userinfo." + "ISIDTOKENMAPPING_DESC": "Se selezionato, le informazioni del provider vengono mappate dal token ID, non dal punto finale userinfo.", + "USEPKCE": "Usa PKCE", + "USEPKCE_DESC": "Determina se i parametri code_challenge e code_challenge_method sono inclusi nella richiesta di autenticazione" }, "MFA": { "LIST": { diff --git a/console/src/assets/i18n/ja.json b/console/src/assets/i18n/ja.json index 3e75cd94a2..f848995c91 100644 --- a/console/src/assets/i18n/ja.json +++ b/console/src/assets/i18n/ja.json @@ -512,11 +512,13 @@ "ORG_OWNER": "組織全体に対する権限を持ちます", "ORG_USER_MANAGER": "組織のユーザーを作成および管理する権限を持ちます", "ORG_OWNER_VIEWER": "組織全体を閲覧する権限を持ちます", + "ORG_SETTINGS_MANAGER": "組織の設定を管理する権限を持ちます", "ORG_USER_PERMISSION_EDITOR": "ユーザーグラントを管理する権限を持ちます", "ORG_PROJECT_PERMISSION_EDITOR": "プロジェクトグラントを管理する権限を持ちます", "ORG_PROJECT_CREATOR": "所有するプロジェクトと配下の設定を作成する権限を持ちます", "ORG_ADMIN_IMPERSONATOR": "組織の管理者およびエンドユーザーになりすます権限がある", "ORG_END_USER_IMPERSONATOR": "組織のエンドユーザーになりすます権限がある", + "ORG_USER_SELF_MANAGER": "自身を管理する権限がある", "PROJECT_OWNER": "特定のプロジェクト全体を管理する権限を持ちます", "PROJECT_OWNER_VIEWER": "特定のプロジェクト全体を閲覧する権限を持ちます", "PROJECT_OWNER_GLOBAL": "全てのプロジェクトを管理する権限を持ちます", @@ -809,6 +811,9 @@ "EMAIL": "Eメール", "PHONE": "電話番号", "PHONE_HINT": "+ マークに続いて電話をかけたい国コードを入力するか、ドロップダウンから国を選択して電話番号を入力します。", + "PHONE_VERIFIED": "電話番号が確認されました", + "SEND_SMS": "認証SMSを送信", + "SEND_EMAIL": "メールを送信", "USERNAME": "ユーザー名", "CHANGEUSERNAME": "変更", "CHANGEUSERNAME_TITLE": "ユーザー名の変更", @@ -949,6 +954,14 @@ "5": "停止", "6": "初期化待ち" }, + "STATEV2": { + "0": "不明", + "1": "アクティブ", + "2": "非アクティブ", + "3": "削除", + "4": "ロック", + "5": "初期化待ち" + }, "SEARCH": { "ADDITIONAL": "ログインネーム(現在の組織)", "ADDITIONAL-EXTERNAL": "ログインネーム(外部の組織)" @@ -1486,7 +1499,9 @@ "ENABLED": "有効は継承されます", "DISABLED": "無効は継承されます" }, - "RESET": "すべて継承に設定" + "RESET": "すべて継承に設定", + "CONSOLEUSEV2USERAPI": "コンソールでユーザー作成のためにV2 APIを使用してください。", + "CONSOLEUSEV2USERAPI_DESCRIPTION": "このフラグが有効化されると、コンソールはV2ユーザーAPIを使用して新しいユーザーを作成します。V2 APIでは、新しく作成されたユーザーは初期状態なしで開始します。" }, "DIALOG": { "RESET": { @@ -1534,6 +1549,10 @@ "MAXSIZEEXCEEDED": "最大サイズの524KBを超えました。", "NOSVGSUPPORTED": "SVGはサポートされていません!", "FONTINLOGINONLY": "フォントは現在、ログインインターフェイスにのみ表示されます。", + "BACKGROUNDCOLOR": "背景色", + "PRIMARYCOLOR": "プライマリカラー", + "WARNCOLOR": "警告色", + "FONTCOLOR": "フォントカラー", "VIEWS": { "PREVIEW": "プレビュー", "CURRENT": "現在の構成" @@ -1669,7 +1688,8 @@ "PR": "パスワードのリセット", "DC": "ドメインクレーム", "PL": "パスワードレス", - "PC": "パスワードの変更" + "PC": "パスワードの変更", + "IU": "ユーザーの招待" }, "CHIPS": { "firstname": "名", @@ -2051,6 +2071,14 @@ "LDAP": { "TITLE": "LDAPプロバイダー", "DESCRIPTION": "LDAPプロバイダーのクレデンシャルを入力してください。" + }, + "APPLE": { + "TITLE": "Appleプロバイダー", + "DESCRIPTION": "Appleプロバイダーのクレデンシャルを入力してください。" + }, + "SAML": { + "TITLE": "SAMLプロバイダー", + "DESCRIPTION": "SAMLプロバイダーのクレデンシャルを入力してください。" } }, "DETAIL": { @@ -2170,6 +2198,23 @@ "JWTENDPOINT": "JWTエンドポイント", "JWTKEYSENDPOINT": "JWTキーエンドポイント" }, + "APPLE": { + "TEAMID": "チームID", + "KEYID": "キーID", + "PRIVATEKEY": "秘密鍵", + "UPDATEPRIVATEKEY": "秘密鍵の更新", + "UPLOADPRIVATEKEY": "秘密鍵のアップロード", + "KEYMAXSIZEEXCEEDED": "最大サイズの5kBを超えています" + }, + "SAML": { + "METADATAXML": "Metadata XML", + "METADATAURL": "Metadata URL", + "BINDING": "Binding", + "SIGNEDREQUEST": "署名付きリクエスト", + "NAMEIDFORMAT": "NameIDフォーマット", + "TRANSIENTMAPPINGATTRIBUTENAME": "カスタム属性名", + "TRANSIENTMAPPINGATTRIBUTENAME_DESC": "NameIDフォーマットが`transient`の場合にユーザーをマッピングするためのカスタム属性名 (例: `http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress`)" + }, "TOAST": { "SAVED": "正常に保存されました。", "REACTIVATED": "IDPがアクティブになりました。", @@ -2182,7 +2227,9 @@ "REMOVED": "正常に削除されました。" }, "ISIDTOKENMAPPING": "IDトークンからのマッピング", - "ISIDTOKENMAPPING_DESC": "選択された場合、プロバイダ情報はIDトークンからマッピングされ、userinfoエンドポイントからではありません。" + "ISIDTOKENMAPPING_DESC": "選択された場合、プロバイダ情報はIDトークンからマッピングされ、userinfoエンドポイントからではありません。", + "USEPKCE": "PKCEを使用する", + "USEPKCE_DESC": "code_challenge パラメータと code_challenge_method パラメータが認証リクエストに含まれるかどうかを決定します。" }, "MFA": { "LIST": { @@ -2254,7 +2301,11 @@ "DELETE_TITLE": "SMTP設定を削除する", "DELETE_DESCRIPTION": "構成を削除しようとしています。送信者名を入力してこのアクションを確認します", "DELETED": "SMTP設定が削除されました", - "SENDER": "この SMTP 構成を削除するには、「{{ value }}」と入力します。" + "SENDER": "この SMTP 構成を削除するには、「{{ value }}」と入力します。", + "TEST_TITLE": "SMTP設定をテストする", + "TEST_DESCRIPTION": "テスト用のメールアドレスを指定してください", + "TEST_EMAIL": "メールアドレス", + "TEST_RESULT": "テスト結果" } }, "CREATE": { diff --git a/console/src/assets/i18n/ko.json b/console/src/assets/i18n/ko.json index 79fe95324a..9dcf05f4ac 100644 --- a/console/src/assets/i18n/ko.json +++ b/console/src/assets/i18n/ko.json @@ -512,11 +512,13 @@ "ORG_OWNER": "조직에 대한 전체 권한이 있습니다", "ORG_USER_MANAGER": "조직의 사용자를 생성하고 관리할 수 있는 권한이 있습니다", "ORG_OWNER_VIEWER": "조직 전체를 검토할 수 있는 권한이 있습니다", + "ORG_SETTINGS_MANAGER": "조직 설정을 관리할 수 있는 권한이 있습니다", "ORG_USER_PERMISSION_EDITOR": "사용자 권한을 관리할 수 있는 권한이 있습니다", "ORG_PROJECT_PERMISSION_EDITOR": "프로젝트 권한을 관리할 수 있는 권한이 있습니다", "ORG_PROJECT_CREATOR": "자신의 프로젝트와 하위 설정을 생성할 수 있는 권한이 있습니다", "ORG_ADMIN_IMPERSONATOR": "조직의 관리자 및 최종 사용자를 대리할 수 있는 권한이 있습니다", "ORG_END_USER_IMPERSONATOR": "조직의 최종 사용자를 대리할 수 있는 권한이 있습니다", + "ORG_USER_SELF_MANAGER": "자신의 사용자 계정을 관리할 수 있는 권한이 있습니다", "PROJECT_OWNER": "프로젝트에 대한 전체 권한이 있습니다", "PROJECT_OWNER_VIEWER": "프로젝트 전체를 검토할 수 있는 권한이 있습니다", "PROJECT_OWNER_GLOBAL": "프로젝트에 대한 전체 권한이 있습니다", @@ -809,6 +811,9 @@ "EMAIL": "이메일", "PHONE": "전화번호", "PHONE_HINT": "+ 기호 다음에 국가 코드를 입력하거나 드롭다운에서 국가를 선택한 후 전화번호를 입력하세요.", + "PHONE_VERIFIED": "전화번호 확인됨", + "SEND_SMS": "인증 SMS 보내기", + "SEND_EMAIL": "이메일 보내기", "USERNAME": "사용자 이름", "CHANGEUSERNAME": "수정", "CHANGEUSERNAME_TITLE": "사용자 이름 변경", @@ -949,6 +954,14 @@ "5": "일시 중단됨", "6": "초기" }, + "STATEV2": { + "0": "알 수 없음", + "1": "활성", + "2": "비활성", + "3": "삭제됨", + "4": "잠김", + "5": "초기" + }, "SEARCH": { "ADDITIONAL": "로그인 이름 (현재 조직)", "ADDITIONAL-EXTERNAL": "로그인 이름 (외부 조직)" @@ -1486,7 +1499,9 @@ "ENABLED": "\"활성화됨\"은 상속되었습니다.", "DISABLED": "\"비활성화됨\"은 상속되었습니다." }, - "RESET": "모두 상속으로 설정" + "RESET": "모두 상속으로 설정", + "CONSOLEUSEV2USERAPI": "콘솔에서 사용자 생성을 위해 V2 API를 사용하세요", + "CONSOLEUSEV2USERAPI_DESCRIPTION": "이 플래그가 활성화되면 콘솔은 V2 사용자 API를 사용하여 새 사용자를 생성합니다. V2 API를 사용하면 새로 생성된 사용자는 초기 상태 없이 시작합니다." }, "DIALOG": { "RESET": { @@ -2212,7 +2227,9 @@ "REMOVED": "성공적으로 제거되었습니다." }, "ISIDTOKENMAPPING": "ID 토큰에서 매핑", - "ISIDTOKENMAPPING_DESC": "선택 시, 사용자 정보 엔드포인트가 아닌 ID 토큰에서 제공자 정보를 매핑합니다." + "ISIDTOKENMAPPING_DESC": "선택 시, 사용자 정보 엔드포인트가 아닌 ID 토큰에서 제공자 정보를 매핑합니다.", + "USEPKCE": "PKCE 사용", + "USEPKCE_DESC": "code_challenge 및 code_challenge_method 매개변수가 인증 요청에 포함되는지 여부를 결정합니다" }, "MFA": { "LIST": { diff --git a/console/src/assets/i18n/mk.json b/console/src/assets/i18n/mk.json index 78d231ade7..74f6a10270 100644 --- a/console/src/assets/i18n/mk.json +++ b/console/src/assets/i18n/mk.json @@ -512,11 +512,13 @@ "ORG_OWNER": "Има дозвола врз целата организација", "ORG_USER_MANAGER": "Има дозвола за креирање и менаџирање на корисници во организацијата", "ORG_OWNER_VIEWER": "Има дозвола за преглед на целата организација", + "ORG_SETTINGS_MANAGER": "Има дозвола за менаџирање на подесувањата на организацијата", "ORG_USER_PERMISSION_EDITOR": "Има дозвола за менаџирање на овластувања на корисници", "ORG_PROJECT_PERMISSION_EDITOR": "Има дозвола за менаџирање на овластувања на проекти", "ORG_PROJECT_CREATOR": "Има дозвола за креирање на сопствени проекти и нивни подесувања", "ORG_ADMIN_IMPERSONATOR": "Има дозвола да имитира администратор и крајни корисници од организацијата", "ORG_END_USER_IMPERSONATOR": "Има дозвола да ги имитира крајните корисници од организацијата", + "ORG_USER_SELF_MANAGER": "Има дозвола за менаџирање на своите корисници", "PROJECT_OWNER": "Има дозвола врз целиот проект", "PROJECT_OWNER_VIEWER": "Има дозвола за преглед на целиот проект", "PROJECT_OWNER_GLOBAL": "Има дозвола врз целиот проект", @@ -809,6 +811,9 @@ "EMAIL": "Е-пошта", "PHONE": "Телефонски број", "PHONE_HINT": "Користете + и потоа дополнителниот број на земјата, или изберете ја земјата од листата и на крај внесете го телефонскиот број", + "PHONE_VERIFIED": "Телефонскиот број е потврден", + "SEND_SMS": "Испрати СМС за верификација", + "SEND_EMAIL": "Испрати е-пошта", "USERNAME": "Корисничко име", "CHANGEUSERNAME": "промени", "CHANGEUSERNAME_TITLE": "Промени корисничко име", @@ -949,6 +954,14 @@ "5": "Суспендирано", "6": "Иницијално" }, + "STATEV2": { + "0": "Непознато", + "1": "Активно", + "2": "Неактивно", + "3": "Избришано", + "4": "Заклучено", + "5": "Иницијално" + }, "SEARCH": { "ADDITIONAL": "Корисничко име (тековна организација)", "ADDITIONAL-EXTERNAL": "Корисничко име (надворешна организација)" @@ -1487,7 +1500,9 @@ "ENABLED": "„Овозможено“ е наследено", "DISABLED": "„Оневозможено“ е наследено" }, - "RESET": "Поставете ги сите да наследат" + "RESET": "Поставете ги сите да наследат", + "CONSOLEUSEV2USERAPI": "Користете V2 API во конзолата за креирање на корисници", + "CONSOLEUSEV2USERAPI_DESCRIPTION": "Кога ова знаме е овозможено, конзолата го користи V2 User API за креирање на нови корисници. Со V2 API, новосоздадените корисници започнуваат без почетна состојба." }, "DIALOG": { "RESET": { @@ -2188,7 +2203,9 @@ "REMOVED": "Успешно отстрането." }, "ISIDTOKENMAPPING": "Совпаѓање од ID токен", - "ISIDTOKENMAPPING_DESC": "Ако е избрано, информациите од провајдерот се мапираат од ID токенот, а не од userinfo крајната точка." + "ISIDTOKENMAPPING_DESC": "Ако е избрано, информациите од провајдерот се мапираат од ID токенот, а не од userinfo крајната точка.", + "USEPKCE": "Користете PKCE", + "USEPKCE_DESC": "Определува дали параметрите code_challenge и code_challenge_method се вклучени во барањето за авторизација" }, "MFA": { "LIST": { diff --git a/console/src/assets/i18n/nl.json b/console/src/assets/i18n/nl.json index cb1a66469a..abc53b24d3 100644 --- a/console/src/assets/i18n/nl.json +++ b/console/src/assets/i18n/nl.json @@ -512,11 +512,13 @@ "ORG_OWNER": "Heeft toestemming over de hele organisatie", "ORG_USER_MANAGER": "Heeft toestemming om gebruikers van de organisatie aan te maken en te beheren", "ORG_OWNER_VIEWER": "Heeft toestemming om de hele organisatie te bekijken", + "ORG_SETTINGS_MANAGER": "Heeft toestemming om de instellingen van de organisatie te beheren", "ORG_USER_PERMISSION_EDITOR": "Heeft toestemming om gebruikerstoegang te beheren", "ORG_PROJECT_PERMISSION_EDITOR": "Heeft toestemming om projecttoegang te beheren", "ORG_PROJECT_CREATOR": "Heeft toestemming om zijn eigen projecten en onderliggende instellingen aan te maken", "ORG_ADMIN_IMPERSONATOR": "Heeft toestemming om de beheerder en eindgebruikers van de organisatie na te bootsen", "ORG_END_USER_IMPERSONATOR": "Heeft toestemming om eindgebruikers van de organisatie na te bootsen", + "ORG_USER_SELF_MANAGER": "Heeft toestemming om zijn eigen gebruiker te beheren", "PROJECT_OWNER": "Heeft toestemming over het hele project", "PROJECT_OWNER_VIEWER": "Heeft toestemming om het hele project te bekijken", "PROJECT_OWNER_GLOBAL": "Heeft toestemming over het hele project", @@ -809,6 +811,9 @@ "EMAIL": "E-mail", "PHONE": "Telefoonnummer", "PHONE_HINT": "Gebruik het + symbool gevolgd door de landcode, of selecteer het land uit de dropdown en voer ten slotte het telefoonnummer in", + "PHONE_VERIFIED": "Telefoonnummer geverifieerd", + "SEND_SMS": "Verificatie-SMS verzenden", + "SEND_EMAIL": "E-mail verzenden", "USERNAME": "Gebruikersnaam", "CHANGEUSERNAME": "wijzigen", "CHANGEUSERNAME_TITLE": "Gebruikersnaam wijzigen", @@ -949,6 +954,14 @@ "5": "Opgeschort", "6": "Initieel" }, + "STATEV2": { + "0": "Onbekend", + "1": "Actief", + "2": "Inactief", + "3": "Verwijderd", + "4": "Vergrendeld", + "5": "Initieel" + }, "SEARCH": { "ADDITIONAL": "Loginnaam (huidige organisatie)", "ADDITIONAL-EXTERNAL": "Loginnaam (externe organisatie)" @@ -1484,7 +1497,9 @@ "ENABLED": "\"Ingeschakeld\" wordt overgenomen", "DISABLED": "\"Uitgeschakeld\" wordt overgenomen" }, - "RESET": "Alles instellen op overgenomen" + "RESET": "Alles instellen op overgenomen", + "CONSOLEUSEV2USERAPI": "Gebruik de V2 API in de console voor het aanmaken van gebruikers", + "CONSOLEUSEV2USERAPI_DESCRIPTION": "Wanneer deze vlag is ingeschakeld, gebruikt de console de V2 User API om nieuwe gebruikers aan te maken. Met de V2 API beginnen nieuw aangemaakte gebruikers zonder een initiële status." }, "DIALOG": { "RESET": { @@ -2207,7 +2222,9 @@ "REMOVED": "Succesvol verwijderd." }, "ISIDTOKENMAPPING": "Kaart van de ID token", - "ISIDTOKENMAPPING_DESC": "Als geselecteerd, wordt provider informatie in kaart gebracht van de ID token, niet van de userinfo eindpunt." + "ISIDTOKENMAPPING_DESC": "Als geselecteerd, wordt provider informatie in kaart gebracht van de ID token, niet van de userinfo eindpunt.", + "USEPKCE": "Gebruik PKCE", + "USEPKCE_DESC": "Bepaalt of de parameters code_challenge en code_challenge_method zijn opgenomen in het verificatieverzoek" }, "MFA": { "LIST": { diff --git a/console/src/assets/i18n/pl.json b/console/src/assets/i18n/pl.json index 934e569d9a..caf69fbbdf 100644 --- a/console/src/assets/i18n/pl.json +++ b/console/src/assets/i18n/pl.json @@ -511,11 +511,13 @@ "ORG_OWNER": "Ma uprawnienie nad całą organizacją", "ORG_USER_MANAGER": "Ma uprawnienie do tworzenia i zarządzania użytkownikami organizacji", "ORG_OWNER_VIEWER": "Ma uprawnienie do przeglądania całej organizacji", + "ORG_SETTINGS_MANAGER": "Ma uprawnienie do zarządzania ustawieniami organizacji", "ORG_USER_PERMISSION_EDITOR": "Ma uprawnienie do zarządzania uprawnieniami użytkowników", "ORG_PROJECT_PERMISSION_EDITOR": "Ma uprawnienie do zarządzania uprawnieniami projektu", "ORG_PROJECT_CREATOR": "Ma uprawnienie do tworzenia własnych projektów i podstawowych ustawień", "ORG_ADMIN_IMPERSONATOR": "Ma uprawnienia do podszywania się pod administratora i użytkowników końcowych z organizacji", "ORG_END_USER_IMPERSONATOR": "Ma uprawnienia do podszywania się pod użytkowników końcowych z organizacji", + "ORG_USER_SELF_MANAGER": "Ma uprawnienie do zarządzania swoim własnym kontem użytkownika", "PROJECT_OWNER": "Ma uprawnienie nad całym projektem", "PROJECT_OWNER_VIEWER": "Ma uprawnienie do przeglądania całego projektu", "PROJECT_OWNER_GLOBAL": "Ma uprawnienia do całego projektu", @@ -808,6 +810,9 @@ "EMAIL": "E-mail", "PHONE": "Numer telefonu", "PHONE_HINT": "Użyj symbolu +, a następnie kodu kraju, z którego dzwonisz, lub wybierz kraj z listy rozwijanej i wprowadź numer telefonu.", + "PHONE_VERIFIED": "Numer telefonu zweryfikowany", + "SEND_SMS": "Wyślij SMS weryfikacyjny", + "SEND_EMAIL": "Wyślij E-mail", "USERNAME": "Nazwa użytkownika", "CHANGEUSERNAME": "modyfikuj", "CHANGEUSERNAME_TITLE": "Zmień nazwę użytkownika", @@ -948,6 +953,14 @@ "5": "Zawieszony", "6": "Początkowy" }, + "STATEV2": { + "0": "Nieznany", + "1": "Aktywny", + "2": "Nieaktywny", + "3": "Usunięty", + "4": "Zablokowany", + "5": "Początkowy" + }, "SEARCH": { "ADDITIONAL": "Nazwa użytkownika (obecna organizacja)", "ADDITIONAL-EXTERNAL": "Nazwa użytkownika (organizacja zewnętrzna)" @@ -1485,7 +1498,9 @@ "ENABLED": "„Włączony” jest dziedziczone", "DISABLED": "„Wyłączony” jest dziedziczone" }, - "RESET": "Ustaw wszystko na dziedziczone" + "RESET": "Ustaw wszystko na dziedziczone", + "CONSOLEUSEV2USERAPI": "Użyj API V2 w konsoli do tworzenia użytkowników", + "CONSOLEUSEV2USERAPI_DESCRIPTION": "Gdy ta flaga jest włączona, konsola używa API V2 User do tworzenia nowych użytkowników. W przypadku API V2 nowo utworzeni użytkownicy rozpoczynają bez stanu początkowego." }, "DIALOG": { "RESET": { @@ -2191,7 +2206,9 @@ "REMOVED": "Usunięto pomyślnie." }, "ISIDTOKENMAPPING": "Mapowanie z tokena ID", - "ISIDTOKENMAPPING_DESC": "Jeśli wybrane, informacje dostawcy są mapowane z tokena ID, a nie z punktu końcowego userinfo." + "ISIDTOKENMAPPING_DESC": "Jeśli wybrane, informacje dostawcy są mapowane z tokena ID, a nie z punktu końcowego userinfo.", + "USEPKCE": "Skorzystaj z PKCE", + "USEPKCE_DESC": "Określa, czy parametry code_challenge i code_challenge_method są uwzględnione w żądaniu uwierzytelnienia" }, "MFA": { "LIST": { diff --git a/console/src/assets/i18n/pt.json b/console/src/assets/i18n/pt.json index f6fbc826dd..09097a3de4 100644 --- a/console/src/assets/i18n/pt.json +++ b/console/src/assets/i18n/pt.json @@ -512,11 +512,13 @@ "ORG_OWNER": "Tem permissão sobre toda a organização", "ORG_USER_MANAGER": "Tem permissão para criar e gerenciar usuários da organização", "ORG_OWNER_VIEWER": "Tem permissão para revisar toda a organização", + "ORG_SETTINGS_MANAGER": "Tem permissão para gerenciar as configurações da organização", "ORG_USER_PERMISSION_EDITOR": "Tem permissão para gerenciar concessões de usuários", "ORG_PROJECT_PERMISSION_EDITOR": "Tem permissão para gerenciar concessões de projetos", "ORG_PROJECT_CREATOR": "Tem permissão para criar seus próprios projetos e configurações subjacentes", "ORG_ADMIN_IMPERSONATOR": "Tem permissão para se passar por administradores e usuários finais da organização", "ORG_END_USER_IMPERSONATOR": "Tem permissão para se passar por usuários finais da organização", + "ORG_USER_SELF_MANAGER": "Tem permissão para gerenciar seu próprio usuário", "PROJECT_OWNER": "Tem permissão sobre todo o projeto", "PROJECT_OWNER_VIEWER": "Tem permissão para revisar todo o projeto", "PROJECT_OWNER_GLOBAL": "Tem permissão sobre todo o projeto", @@ -809,6 +811,9 @@ "EMAIL": "E-mail", "PHONE": "Número de Telefone", "PHONE_HINT": "Use o símbolo + seguido do código de chamada do país, ou selecione o país na lista suspensa e, em seguida, insira o número de telefone", + "PHONE_VERIFIED": "Número de telefone verificado", + "SEND_SMS": "Enviar SMS de verificação", + "SEND_EMAIL": "Enviar E-mail", "USERNAME": "Nome de Usuário", "CHANGEUSERNAME": "modificar", "CHANGEUSERNAME_TITLE": "Alterar nome de usuário", @@ -949,6 +954,14 @@ "5": "Suspenso", "6": "Inicial" }, + "STATEV2": { + "0": "Desconhecido", + "1": "Ativo", + "2": "Inativo", + "3": "Excluído", + "4": "Bloqueado", + "5": "Inicial" + }, "SEARCH": { "ADDITIONAL": "Nome de usuário (organização atual)", "ADDITIONAL-EXTERNAL": "Nome de usuário (organização externa)" @@ -1487,7 +1500,9 @@ "ENABLED": "\"Habilitado\" é herdado", "DISABLED": "\"Desabilitado\" é herdado" }, - "RESET": "Definir tudo para herdar" + "RESET": "Definir tudo para herdar", + "CONSOLEUSEV2USERAPI": "Use a API V2 no console para criação de usuários", + "CONSOLEUSEV2USERAPI_DESCRIPTION": "Quando esta opção está ativada, o console utiliza a API V2 de Usuários para criar novos usuários. Com a API V2, os novos usuários criados começam sem um estado inicial." }, "DIALOG": { "RESET": { @@ -2187,7 +2202,9 @@ "REMOVED": "Removido com sucesso." }, "ISIDTOKENMAPPING": "Mapeamento do token ID", - "ISIDTOKENMAPPING_DESC": "Se selecionado, as informações do provedor são mapeadas a partir do token ID, e não do ponto final userinfo." + "ISIDTOKENMAPPING_DESC": "Se selecionado, as informações do provedor são mapeadas a partir do token ID, e não do ponto final userinfo.", + "USEPKCE": "Usar PKCE", + "USEPKCE_DESC": "Determina se os parâmetros code_challenge e code_challenge_method estão incluídos na solicitação de autenticação" }, "MFA": { "LIST": { diff --git a/console/src/assets/i18n/ru.json b/console/src/assets/i18n/ru.json index 8a3ca0c1de..b4d35ad832 100644 --- a/console/src/assets/i18n/ru.json +++ b/console/src/assets/i18n/ru.json @@ -511,11 +511,13 @@ "ORG_OWNER": "Имеет разрешение на всю организацию", "ORG_USER_MANAGER": "Имеет разрешение на создание и управление пользователями организации", "ORG_OWNER_VIEWER": "Имеет разрешение на просмотр всей организации", + "ORG_SETTINGS_MANAGER": "Имеет разрешение на управление настройками организации", "ORG_USER_PERMISSION_EDITOR": "Имеет разрешение на управление допусками пользователей", "ORG_PROJECT_PERMISSION_EDITOR": "Имеет разрешение на управление допусками проекта", "ORG_PROJECT_CREATOR": "Имеет разрешение на создание собственных проектов и базовых настроек", "ORG_ADMIN_IMPERSONATOR": "Имеет разрешение выдавать себя за администратора и конечных пользователей организации", "ORG_END_USER_IMPERSONATOR": "Имеет разрешение выдавать себя за конечных пользователей организации", + "ORG_USER_SELF_MANAGER": "Имеет разрешение на управление своим собственным пользователем", "PROJECT_OWNER": "Имеет разрешение на весь проект", "PROJECT_OWNER_VIEWER": "Имеет разрешение на просмотр всего проекта", "PROJECT_OWNER_GLOBAL": "Имеет разрешение на весь проект", @@ -816,6 +818,9 @@ "EMAIL": "Электронная почта", "PHONE": "Номер телефона", "PHONE_HINT": "Используйте 00 или символ +, за которым следует код страны вызываемого абонента, или выберите страну из раскрывающегося списка и введите номер телефона.", + "PHONE_VERIFIED": "Номер телефона подтвержден", + "SEND_SMS": "Отправить проверочный SMS", + "SEND_EMAIL": "Отправить e-mail", "USERNAME": "Имя пользователя", "CHANGEUSERNAME": "Изменить", "CHANGEUSERNAME_TITLE": "Изменить имя пользователя", @@ -967,6 +972,14 @@ "5": "Приостановлен", "6": "Начальный" }, + "STATEV2": { + "0": "Неизвестен", + "1": "Активен", + "2": "Неактивен", + "3": "Удалён", + "4": "Заблокирован", + "5": "Начальный" + }, "SEARCH": { "ADDITIONAL": "Логин (текущая организация)", "ADDITIONAL-EXTERNAL": "Логин (внешняя организация)" @@ -1538,7 +1551,9 @@ "ENABLED": "«Включено» наследуется", "DISABLED": "«Выключено» передается по наследству" }, - "RESET": "Установить все по умолчанию" + "RESET": "Установить все по умолчанию", + "CONSOLEUSEV2USERAPI": "Используйте V2 API в консоли для создания пользователей", + "CONSOLEUSEV2USERAPI_DESCRIPTION": "Когда этот флаг включен, консоль использует V2 User API для создания новых пользователей. С API V2 новые пользователи создаются без начального состояния." }, "DIALOG": { "RESET": { @@ -2303,7 +2318,9 @@ "REMOVED": "Удалено успешно." }, "ISIDTOKENMAPPING": "Карта из ID-токена", - "ISIDTOKENMAPPING_DESC": "Если этот флажок установлен, информация о поставщике сопоставляется с маркером идентификатора, а не с конечной точкой информации о пользователе." + "ISIDTOKENMAPPING_DESC": "Если этот флажок установлен, информация о поставщике сопоставляется с маркером идентификатора, а не с конечной точкой информации о пользователе.", + "USEPKCE": "Используйте ПКСЕ", + "USEPKCE_DESC": "Определяет, включены ли параметры code_challenge и code_challenge_method в запрос аутентификации." }, "MFA": { "LIST": { diff --git a/console/src/assets/i18n/sv.json b/console/src/assets/i18n/sv.json index fd698478fb..365c7e13e2 100644 --- a/console/src/assets/i18n/sv.json +++ b/console/src/assets/i18n/sv.json @@ -512,11 +512,13 @@ "ORG_OWNER": "Har behörighet över hela organisationen", "ORG_USER_MANAGER": "Har behörighet att skapa och hantera användare i organisationen", "ORG_OWNER_VIEWER": "Har behörighet att granska hela organisationen", + "ORG_SETTINGS_MANAGER": "Har behörighet att hantera organisationens inställningar", "ORG_USER_PERMISSION_EDITOR": "Har behörighet att hantera användarbehörigheter", "ORG_PROJECT_PERMISSION_EDITOR": "Har behörighet att hantera projektbehörigheter", "ORG_PROJECT_CREATOR": "Har behörighet att skapa egna projekt och underliggande inställningar", "ORG_ADMIN_IMPERSONATOR": "Har behörighet att imitera administratörer och slutanvändare från organisationen", "ORG_END_USER_IMPERSONATOR": "Har behörighet att imitera slutanvändare från organisationen", + "ORG_USER_SELF_MANAGER": "Har behörighet att hantera sin egen användare", "PROJECT_OWNER": "Har behörighet över hela projektet", "PROJECT_OWNER_VIEWER": "Har behörighet att granska hela projektet", "PROJECT_OWNER_GLOBAL": "Har behörighet över hela projektet", @@ -809,6 +811,9 @@ "EMAIL": "E-post", "PHONE": "Telefonnummer", "PHONE_HINT": "Använd + symbolen följt av landskoden, eller välj landet från rullgardinsmenyn och ange sedan telefonnumret", + "PHONE_VERIFIED": "Telefonnummer verifierat", + "SEND_SMS": "Skicka verifierings-SMS", + "SEND_EMAIL": "Skicka E-post", "USERNAME": "Användarnamn", "CHANGEUSERNAME": "ändra", "CHANGEUSERNAME_TITLE": "Ändra användarnamn", @@ -949,6 +954,14 @@ "5": "Suspenderad", "6": "Initial" }, + "STATEV2": { + "0": "Okänd", + "1": "Aktiv", + "2": "Inaktiv", + "3": "Raderad", + "4": "Låst", + "5": "Initial" + }, "SEARCH": { "ADDITIONAL": "Inloggningsnamn (nuvarande organisation)", "ADDITIONAL-EXTERNAL": "Inloggningsnamn (extern organisation)" @@ -1490,7 +1503,9 @@ "ENABLED": "\"Aktiverad\" ärvs", "DISABLED": "\"Inaktiverad\" ärvs" }, - "RESET": "Återställ allt till arv" + "RESET": "Återställ allt till arv", + "CONSOLEUSEV2USERAPI": "Använd V2 API i konsolen för att skapa användare", + "CONSOLEUSEV2USERAPI_DESCRIPTION": "När denna flagga är aktiverad använder konsolen V2 User API för att skapa nya användare. Med V2 API startar nyligen skapade användare utan ett initialt tillstånd." }, "DIALOG": { "RESET": { @@ -2216,7 +2231,9 @@ "REMOVED": "Borttagen framgångsrikt." }, "ISIDTOKENMAPPING": "Mappa från ID-token", - "ISIDTOKENMAPPING_DESC": "Om valt, mappas leverantörsinformation från ID-token, inte från användarinfo-slutpunkten." + "ISIDTOKENMAPPING_DESC": "Om valt, mappas leverantörsinformation från ID-token, inte från användarinfo-slutpunkten.", + "USEPKCE": "Använd PKCE", + "USEPKCE_DESC": "Avgör om parametrarna code_challenge och code_challenge_method ingår i autentiseringsbegäran" }, "MFA": { "LIST": { diff --git a/console/src/assets/i18n/zh.json b/console/src/assets/i18n/zh.json index 99bf053225..bf46283c4e 100644 --- a/console/src/assets/i18n/zh.json +++ b/console/src/assets/i18n/zh.json @@ -512,11 +512,13 @@ "ORG_OWNER": "拥有整个组织的权限", "ORG_USER_MANAGER": "有权创建和管理组织的用户", "ORG_OWNER_VIEWER": "有权审查整个组织", + "ORG_SETTINGS_MANAGER": "有权管理组织的设置", "ORG_USER_PERMISSION_EDITOR": "有权管理用户授权", "ORG_PROJECT_PERMISSION_EDITOR": "有权管理项目授权", "ORG_PROJECT_CREATOR": "有权创建自己的项目和基础设置", "ORG_ADMIN_IMPERSONATOR": "有权模拟组织的管理员和最终用户", "ORG_END_USER_IMPERSONATOR": "有权模拟组织的最终用户", + "ORG_USER_SELF_MANAGER": "有权管理自己的用户", "PROJECT_OWNER": "拥有整个项目的权限", "PROJECT_OWNER_VIEWER": "有权审查整个项目", "PROJECT_OWNER_GLOBAL": "拥有整个项目的权限", @@ -809,6 +811,9 @@ "EMAIL": "电子邮件", "PHONE": "手机号码", "PHONE_HINT": "使用+号,后跟呼叫者的国家/地区代码,或从下拉列表中选择国家/地区,最后输入电话号码", + "PHONE_VERIFIED": "电话号码已验证", + "SEND_SMS": "发送验证短信", + "SEND_EMAIL": "发送电子邮件", "USERNAME": "用户名", "CHANGEUSERNAME": "修改", "CHANGEUSERNAME_TITLE": "修改用户名称", @@ -949,6 +954,14 @@ "5": "已暂停", "6": "初始化" }, + "STATEV2": { + "0": "未知", + "1": "启用", + "2": "停用", + "3": "已删除", + "4": "已锁定", + "5": "初始化" + }, "SEARCH": { "ADDITIONAL": "登录名 (当前组织)", "ADDITIONAL-EXTERNAL": "登录名 (外部组织)" @@ -1486,7 +1499,9 @@ "ENABLED": "“已启用” 是继承的", "DISABLED": "“已禁用” 是继承的" }, - "RESET": "全部设置为继承" + "RESET": "全部设置为继承", + "CONSOLEUSEV2USERAPI": "在控制台中使用V2 API创建用户。", + "CONSOLEUSEV2USERAPI_DESCRIPTION": "启用此标志时,控制台使用V2用户API创建新用户。使用V2 API,新创建的用户将以无初始状态开始。" }, "DIALOG": { "RESET": { @@ -2191,7 +2206,9 @@ "REMOVED": "成功删除。" }, "ISIDTOKENMAPPING": "从ID令牌映射", - "ISIDTOKENMAPPING_DESC": "如果选中,提供商信息将从ID令牌映射,而不是从userinfo端点。" + "ISIDTOKENMAPPING_DESC": "如果选中,提供商信息将从ID令牌映射,而不是从userinfo端点。", + "USEPKCE": "使用PKCE", + "USEPKCE_DESC": "确定 auth 请求中是否包含 code_challenge 和 code_challenge_method 参数" }, "MFA": { "LIST": { diff --git a/console/yarn.lock b/console/yarn.lock index 73512cb091..67aef4201a 100644 --- a/console/yarn.lock +++ b/console/yarn.lock @@ -1501,11 +1501,31 @@ "@bufbuild/buf-win32-arm64" "1.43.0" "@bufbuild/buf-win32-x64" "1.43.0" +"@bufbuild/protobuf@^2.2.2": + version "2.2.3" + resolved "https://registry.yarnpkg.com/@bufbuild/protobuf/-/protobuf-2.2.3.tgz#9cd136f6b687e63e9b517b3a54211ece942897ee" + integrity sha512-tFQoXHJdkEOSwj5tRIZSPNUuXK3RaR7T1nUrPgbYX1pUbvqqaaZAsfo+NXBPsz5rZMSKVFrgK1WL8Q/MSLvprg== + "@colors/colors@1.5.0": version "1.5.0" resolved "https://registry.yarnpkg.com/@colors/colors/-/colors-1.5.0.tgz#bb504579c1cae923e6576a4f5da43d25f97bdbd9" integrity sha512-ooWCrlZP11i8GImSjTHYHLkvFDP48nS4+204nGb1RiX/WXYHmJA2III9/e2DWVabCESdW7hBAEzHRqUn9OUVvQ== +"@connectrpc/connect-node@^2.0.0": + version "2.0.0" + resolved "https://registry.yarnpkg.com/@connectrpc/connect-node/-/connect-node-2.0.0.tgz#1ea4eff7f2633fbe3d80378e1420bd213d9d83a4" + integrity sha512-DoI5T+SUvlS/8QBsxt2iDoUg15dSxqhckegrgZpWOtADtmGohBIVbx1UjtWmjLBrP4RdD0FeBw+XyRUSbpKnJQ== + +"@connectrpc/connect-web@^2.0.0": + version "2.0.0" + resolved "https://registry.yarnpkg.com/@connectrpc/connect-web/-/connect-web-2.0.0.tgz#14055c933bfe846e75856bce49ecd0250cbec3b2" + integrity sha512-oeCxqHXLXlWJdmcvp9L3scgAuK+FjNSn+twyhUxc8yvDbTumnt5Io+LnBzSYxAdUdYqTw5yHfTSCJ4hj0QID0g== + +"@connectrpc/connect@^2.0.0": + version "2.0.0" + resolved "https://registry.yarnpkg.com/@connectrpc/connect/-/connect-2.0.0.tgz#0a34d934bdce5fd3723f79b70aa843d4c1213df8" + integrity sha512-Usm8jgaaULANJU8vVnhWssSA6nrZ4DJEAbkNtXSoZay2YD5fDyMukCxu8NEhCvFzfHvrhxhcjttvgpyhOM7xAQ== + "@ctrl/ngx-codemirror@^6.1.0": version "6.1.0" resolved "https://registry.yarnpkg.com/@ctrl/ngx-codemirror/-/ngx-codemirror-6.1.0.tgz#9324a56e4b709be9c515364d21e05e1d7589f009" @@ -3496,6 +3516,25 @@ js-yaml "^3.10.0" tslib "^2.4.0" +"@zitadel/client@^1.0.6": + version "1.0.6" + resolved "https://registry.yarnpkg.com/@zitadel/client/-/client-1.0.6.tgz#9fe44ff7c757e8f38fa08d25083dc036afebf5cb" + integrity sha512-MG6RAApoI2Y3QGRfKByISOqGTSFsMr5YtKQYPFDAJhivYK32d7hUiMEv+WzShfGHEI38336FbKz9vg/4M961Lg== + dependencies: + "@bufbuild/protobuf" "^2.2.2" + "@connectrpc/connect" "^2.0.0" + "@connectrpc/connect-node" "^2.0.0" + "@connectrpc/connect-web" "^2.0.0" + "@zitadel/proto" "1.0.3" + jose "^5.3.0" + +"@zitadel/proto@1.0.3", "@zitadel/proto@^1.0.3": + version "1.0.3" + resolved "https://registry.yarnpkg.com/@zitadel/proto/-/proto-1.0.3.tgz#28721710d9e87009adf14f90e0c8cb9bae5275ec" + integrity sha512-95XPGgFgfTwU1A3oQYxTv4p+Qy/9yMO/o21VRtPBfVhPusFFCW0ddg4YoKTKpQl9FbIG7VYMLmRyuJBPuf3r+g== + dependencies: + "@bufbuild/protobuf" "^2.2.2" + "@zkochan/js-yaml@0.0.6": version "0.0.6" resolved "https://registry.yarnpkg.com/@zkochan/js-yaml/-/js-yaml-0.0.6.tgz#975f0b306e705e28b8068a07737fa46d3fc04826" @@ -6538,6 +6577,11 @@ jiti@^1.18.2: resolved "https://registry.yarnpkg.com/jiti/-/jiti-1.21.6.tgz#6c7f7398dd4b3142767f9a168af2f317a428d268" integrity sha512-2yTgeWTWzMWkHu6Jp9NKgePDaYHbntiwvYuuJLbbN9vl7DC9DvXKOB2BC3ZZ92D3cvV/aflH0osDfwpHepQ53w== +jose@^5.3.0: + version "5.9.6" + resolved "https://registry.yarnpkg.com/jose/-/jose-5.9.6.tgz#77f1f901d88ebdc405e57cce08d2a91f47521883" + integrity sha512-AMlnetc9+CV9asI19zHmrgS/WYsWUwCn2R7RzlbJWD7F9eWYUTGyBmU9o6PxngtLGOiDGPRu+Uc4fhKzbpteZQ== + js-tokens@^4.0.0: version "4.0.0" resolved "https://registry.yarnpkg.com/js-tokens/-/js-tokens-4.0.0.tgz#19203fb59991df98e3a287050d4647cdeaf32499" diff --git a/docs/docs/apis/_v3_action_execution.proto b/docs/docs/apis/_v3_action_execution.proto deleted file mode 100644 index 80a93b1606..0000000000 --- a/docs/docs/apis/_v3_action_execution.proto +++ /dev/null @@ -1,123 +0,0 @@ -syntax = "proto3"; - -package zitadel.resources.action.v3alpha; - -import "google/api/annotations.proto"; -import "google/api/field_behavior.proto"; -import "google/protobuf/duration.proto"; -import "google/protobuf/struct.proto"; -import "protoc-gen-openapiv2/options/annotations.proto"; -import "validate/validate.proto"; -import "zitadel/protoc_gen_zitadel/v2/options.proto"; - -import "zitadel/resources/object/v3alpha/object.proto"; - -option go_package = "github.com/zitadel/zitadel/pkg/grpc/resources/action/v3alpha;action"; - -message Execution { - Condition condition = 1; - // Target IDs which are called when the defined conditions trigger. - repeated string targets = 2; - // Included executions with the same condition-types. - repeated string includes = 3; -} - -message GetExecution { - zitadel.resources.object.v3alpha.Details details = 1; - Execution execution = 2; -} - -message Condition { - // Condition-types under which conditions the execution should trigger. Only one is possible. - oneof condition_type { - option (validate.required) = true; - - // Condition-type to execute after a request on the defined API point is received. - RequestExecution request = 1; - // Condition-type to execute before a response on the defined API point is returned. - ResponseExecution response = 2; - // Condition-type to execute when a function is used, replaces actions v1. - string function = 3; - // Condition-type to execute after an event is created in the system. - EventExecution event = 4; - } -} - -message RequestExecution { - // Condition for the request execution. Only one is possible. - oneof condition{ - // GRPC-method as condition. - string method = 1 [ - (validate.rules).string = {min_len: 1, max_len: 1000}, - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - min_length: 1, - max_length: 1000, - example: "\"/zitadel.session.v2.SessionService/ListSessions\""; - } - ]; - // GRPC-service as condition. - string service = 2 [ - (validate.rules).string = {min_len: 1, max_len: 1000}, - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - min_length: 1, - max_length: 1000, - example: "\"zitadel.session.v2.SessionService\""; - } - ]; - // All calls to any available services and methods as condition. - bool all = 3; - } -} - -message ResponseExecution { - // Condition for the response execution. Only one is possible. - oneof condition{ - // GRPC-method as condition. - string method = 1 [ - (validate.rules).string = {min_len: 1, max_len: 1000}, - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - min_length: 1, - max_length: 1000, - example: "\"/zitadel.session.v2.SessionService/ListSessions\""; - } - ]; - // GRPC-service as condition. - string service = 2 [ - (validate.rules).string = {min_len: 1, max_len: 1000}, - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - min_length: 1, - max_length: 1000, - example: "\"zitadel.session.v2.SessionService\""; - } - ]; - // All calls to any available services and methods as condition. - bool all = 3; - } -} - -message EventExecution{ - // Condition for the event execution. Only one is possible. - oneof condition{ - // Event name as condition. - string event = 1 [ - (validate.rules).string = {min_len: 1, max_len: 1000}, - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - min_length: 1, - max_length: 1000, - example: "\"user.human.added\""; - } - ]; - // Event group as condition, all events under this group. - string group = 2 [ - (validate.rules).string = {min_len: 1, max_len: 1000}, - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - min_length: 1, - max_length: 1000, - example: "\"user.human\""; - } - ]; - // all events as condition. - bool all = 3; - } -} - diff --git a/docs/docs/apis/_v3_action_search.proto b/docs/docs/apis/_v3_action_search.proto deleted file mode 100644 index 59ead05364..0000000000 --- a/docs/docs/apis/_v3_action_search.proto +++ /dev/null @@ -1,111 +0,0 @@ -syntax = "proto3"; - -package zitadel.resources.action.v3alpha; - -option go_package = "github.com/zitadel/zitadel/pkg/grpc/resources/action/v3alpha;action"; - -import "google/api/field_behavior.proto"; -import "protoc-gen-openapiv2/options/annotations.proto"; -import "validate/validate.proto"; - -import "zitadel/resources/object/v3alpha/object.proto"; -import "zitadel/resources/action/v3alpha/execution.proto"; - -message ExecutionSearchFilter { - oneof filter { - option (validate.required) = true; - - InConditionsFilter in_conditions = 1; - ExecutionTypeFilter execution_type = 2; - TargetFilter target = 3; - IncludeFilter include = 4; - } -} - -message InConditionsFilter { - // Defines the conditions to query for. - repeated Condition conditions = 1; -} - -message ExecutionTypeFilter { - // Defines the type to query for. - ExecutionType type = 1; -} - -message TargetFilter { - // Defines the id to query for. - string id = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - description: "the id of the targets to include" - example: "\"69629023906488334\""; - } - ]; -} - -message IncludeFilter { - // Defines the include to query for. - string include = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - description: "the id of the include" - example: "\"request.zitadel.session.v2.SessionService\""; - } - ]; -} - -message TargetSearchFilter { - oneof query { - option (validate.required) = true; - - TargetNameFilter name = 1; - InTargetIDsFilter in_ids = 2; - } -} - -message TargetNameFilter { - // Defines the name of the target to query for. - string name = 1 [ - (validate.rules).string = {max_len: 200}, - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - max_length: 200; - example: "\"ip_allow_list\""; - } - ]; - // Defines which text comparison method used for the name query. - zitadel.resources.object.v3alpha.TextFilterMethod method = 2 [ - (validate.rules).enum.defined_only = true, - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - description: "defines which text equality method is used"; - } - ]; -} - -message InTargetIDsFilter { - // Defines the ids to query for. - repeated string ids = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - description: "the ids of the targets to include" - example: "[\"69629023906488334\",\"69622366012355662\"]"; - } - ]; -} - -enum ExecutionType { - EXECUTION_TYPE_UNSPECIFIED = 0; - EXECUTION_TYPE_REQUEST = 1; - EXECUTION_TYPE_RESPONSE = 2; - EXECUTION_TYPE_EVENT = 3; - EXECUTION_TYPE_FUNCTION = 4; -} - -enum TargetFieldName { - TARGET_FIELD_NAME_UNSPECIFIED = 0; - TARGET_FIELD_NAME_ID = 1; - TARGET_FIELD_NAME_CREATION_DATE = 2; - TARGET_FIELD_NAME_CHANGE_DATE = 3; - TARGET_FIELD_NAME_NAME = 4; - TARGET_FIELD_NAME_TARGET_TYPE = 5; - TARGET_FIELD_NAME_URL = 6; - TARGET_FIELD_NAME_TIMEOUT = 7; - TARGET_FIELD_NAME_ASYNC = 8; - TARGET_FIELD_NAME_INTERRUPT_ON_ERROR = 9; -} diff --git a/docs/docs/apis/_v3_action_service.proto b/docs/docs/apis/_v3_action_service.proto deleted file mode 100644 index 1e62ddd7d7..0000000000 --- a/docs/docs/apis/_v3_action_service.proto +++ /dev/null @@ -1,554 +0,0 @@ -syntax = "proto3"; - -package zitadel.resources.action.v3alpha; - -import "google/api/annotations.proto"; -import "google/api/field_behavior.proto"; -import "google/protobuf/duration.proto"; -import "google/protobuf/struct.proto"; -import "protoc-gen-openapiv2/options/annotations.proto"; -import "validate/validate.proto"; -import "zitadel/protoc_gen_zitadel/v2/options.proto"; - -import "zitadel/resources/action/v3alpha/target.proto"; -import "zitadel/resources/action/v3alpha/execution.proto"; -import "zitadel/resources/action/v3alpha/search.proto"; -import "zitadel/resources/object/v3alpha/object.proto"; - -option go_package = "github.com/zitadel/zitadel/pkg/grpc/resources/action/v3alpha;action"; - -option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_swagger) = { - info: { - title: "Action Service"; - version: "3.0-alpha"; - description: "This API is intended to manage custom executions (previously known as actions) in a ZITADEL instance. It is behind the feature flag \"multitenancy_resources_api\". It will continue breaking as long as it is in alpha state."; - contact:{ - name: "ZITADEL" - url: "https://zitadel.com" - email: "hi@zitadel.com" - } - license: { - name: "Apache 2.0", - url: "https://github.com/zitadel/zitadel/blob/main/LICENSE"; - }; - }; - schemes: HTTPS; - schemes: HTTP; - - consumes: "application/json"; - consumes: "application/grpc"; - - produces: "application/json"; - produces: "application/grpc"; - - consumes: "application/grpc-web+proto"; - produces: "application/grpc-web+proto"; - - host: "$ZITADEL_DOMAIN"; - base_path: "/resources/v3alpha"; - - external_docs: { - description: "Detailed information about ZITADEL", - url: "https://zitadel.com/docs" - } - security_definitions: { - security: { - key: "OAuth2"; - value: { - type: TYPE_OAUTH2; - flow: FLOW_ACCESS_CODE; - authorization_url: "$CUSTOM-DOMAIN/oauth/v2/authorize"; - token_url: "$CUSTOM-DOMAIN/oauth/v2/token"; - scopes: { - scope: { - key: "openid"; - value: "openid"; - } - scope: { - key: "urn:zitadel:iam:org:project:id:zitadel:aud"; - value: "urn:zitadel:iam:org:project:id:zitadel:aud"; - } - } - } - } - } - security: { - security_requirement: { - key: "OAuth2"; - value: { - scope: "openid"; - scope: "urn:zitadel:iam:org:project:id:zitadel:aud"; - } - } - } - responses: { - key: "403"; - value: { - description: "Returned when the user does not have permission to access the resource."; - schema: { - json_schema: { - ref: "#/definitions/rpcStatus"; - } - } - } - } - responses: { - key: "404"; - value: { - description: "Returned when the resource does not exist."; - schema: { - json_schema: { - ref: "#/definitions/rpcStatus"; - } - } - } - } -}; - -service ZITADELActions { - - // Create a target - // - // Create a new target, which can be used in executions. - rpc CreateTarget (CreateTargetRequest) returns (CreateTargetResponse) { - option (google.api.http) = { - post: "/targets" - body: "target" - }; - - option (zitadel.protoc_gen_zitadel.v2.options) = { - auth_option: { - permission: "action.target.write" - } - http_response: { - success_code: 201 - } - }; - - option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = { - responses: { - key: "201"; - value: { - description: "Target successfully created"; - schema: { - json_schema: { - ref: "#/definitions/v2CreateTargetResponse"; - } - } - }; - }; - }; - } - - // Patch a target - // - // Patch an existing target. - rpc PatchTarget (PatchTargetRequest) returns (PatchTargetResponse) { - option (google.api.http) = { - patch: "/targets/{id}" - body: "target" - }; - - option (zitadel.protoc_gen_zitadel.v2.options) = { - auth_option: { - permission: "action.target.write" - } - }; - - option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = { - responses: { - key: "200"; - value: { - description: "Target successfully updated"; - }; - }; - }; - } - - // Delete a target - // - // Delete an existing target. This will remove it from any configured execution as well. - rpc DeleteTarget (DeleteTargetRequest) returns (DeleteTargetResponse) { - option (google.api.http) = { - delete: "/targets/{id}" - }; - - option (zitadel.protoc_gen_zitadel.v2.options) = { - auth_option: { - permission: "action.target.delete" - } - }; - - option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = { - responses: { - key: "200"; - value: { - description: "Target successfully deleted"; - }; - }; - }; - } - - // Target by ID - // - // Returns the target identified by the requested ID. - rpc GetTarget (GetTargetRequest) returns (GetTargetResponse) { - option (google.api.http) = { - get: "/targets/{id}" - }; - - option (zitadel.protoc_gen_zitadel.v2.options) = { - auth_option: { - permission: "action.target.read" - } - }; - - option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = { - responses: { - key: "200" - value: { - description: "Target successfully retrieved"; - } - }; - }; - } - - // Search targets - // - // Search all matching targets. By default, we will return all targets of your instance. - // Make sure to include a limit and sorting for pagination. - rpc SearchTargets (SearchTargetsRequest) returns (SearchTargetsResponse) { - option (google.api.http) = { - post: "/targets/_search", - body: "filters" - }; - - option (zitadel.protoc_gen_zitadel.v2.options) = { - auth_option: { - permission: "action.target.read" - } - }; - - option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = { - responses: { - key: "200"; - value: { - description: "A list of all targets matching the query"; - }; - }; - responses: { - key: "400"; - value: { - description: "invalid list query"; - schema: { - json_schema: { - ref: "#/definitions/rpcStatus"; - }; - }; - }; - }; - }; - } - - // Put an execution to call a target or include the targets of another execution. - // - // Creates an execution for the given condition if it doesn't exists. - // Otherwise, the existing execution is updated. - rpc PutExecution (PutExecutionRequest) returns (PutExecutionResponse) { - option (google.api.http) = { - post: "/executions" - body: "execution" - }; - - option (zitadel.protoc_gen_zitadel.v2.options) = { - auth_option: { - permission: "action.execution.write" - } - http_response: { - success_code: 201 - } - }; - - option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = { - responses: { - key: "201"; - value: { - description: "Execution successfully created"; - schema: { - json_schema: { - ref: "#/definitions/v2CreateExecutionResponse"; - } - } - }; - }; - responses: { - key: "200"; - value: { - description: "Execution successfully updated"; - }; - }; - }; - } - - // Delete an execution - // - // Delete an existing execution. - rpc DeleteExecution (DeleteExecutionRequest) returns (DeleteExecutionResponse) { - option (google.api.http) = { - delete: "/executions/{id}" - }; - - option (zitadel.protoc_gen_zitadel.v2.options) = { - auth_option: { - permission: "action.execution.delete" - } - }; - - option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = { - responses: { - key: "200"; - value: { - description: "Execution successfully deleted"; - }; - }; - }; - } - - // Search executions - // - // Search all matching executions. By default, we will return all executions of your instance. - // Depending on the ZITADEL configuration, the number of returned resources is most probably limited. - // To make sure you get deterministic results, sort and paginate by the resources creation dates. - rpc SearchExecutions (SearchExecutionsRequest) returns (SearchExecutionsResponse) { - option (google.api.http) = { - post: "/executions/_search" - body: "filters" - }; - - option (zitadel.protoc_gen_zitadel.v2.options) = { - auth_option: { - permission: "execution.read" - } - }; - - option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = { - responses: { - key: "200"; - value: { - description: "A list of all executions matching the query"; - }; - }; - responses: { - key: "400"; - value: { - description: "invalid list query"; - schema: { - json_schema: { - ref: "#/definitions/rpcStatus"; - }; - }; - }; - }; - }; - } - - // List all available functions - // - // List all available functions which can be used as condition for executions. - rpc ListAvailableExecutionFunctions (ListAvailableExecutionFunctionsRequest) returns (ListAvailableExecutionFunctionsResponse) { - option (google.api.http) = { - get: "/executions/functions" - }; - - option (zitadel.protoc_gen_zitadel.v2.options) = { - auth_option: { - permission: "execution.read" - } - }; - - option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = { - responses: { - key: "200"; - value: { - description: "List all functions successfully"; - }; - }; - }; - } - // List all available methods - // - // List all available methods which can be used as condition for executions. - rpc ListAvailableExecutionMethods (ListAvailableExecutionMethodsRequest) returns (ListAvailableExecutionMethodsResponse) { - option (google.api.http) = { - get: "/executions/methods" - }; - - option (zitadel.protoc_gen_zitadel.v2.options) = { - auth_option: { - permission: "execution.read" - } - }; - - option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = { - responses: { - key: "200"; - value: { - description: "List all methods successfully"; - }; - }; - }; - } - // List all available service - // - // List all available services which can be used as condition for executions. - rpc ListAvailableExecutionServices (ListAvailableExecutionServicesRequest) returns (ListAvailableExecutionServicesResponse) { - option (google.api.http) = { - get: "/executions/services" - }; - - option (zitadel.protoc_gen_zitadel.v2.options) = { - auth_option: { - permission: "execution.read" - } - }; - - option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = { - responses: { - key: "200"; - value: { - description: "List all services successfully"; - }; - }; - }; - } -} - -message CreateTargetRequest { - Target target = 2; -} - -message CreateTargetResponse { - zitadel.resources.object.v3alpha.Details details = 2; -} - -message PatchTargetRequest { - string id = 1 [ - (validate.rules).string = {min_len: 1, max_len: 200}, - (google.api.field_behavior) = REQUIRED, - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - min_length: 1, - max_length: 200, - example: "\"69629026806489455\""; - } - ]; - PatchTarget target = 2; -} - -message PatchTargetResponse { - zitadel.resources.object.v3alpha.Details details = 1; -} - -message DeleteTargetRequest { - string id = 1 [ - (validate.rules).string = {min_len: 1, max_len: 200}, - (google.api.field_behavior) = REQUIRED, - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - min_length: 1, - max_length: 200, - example: "\"69629026806489455\""; - } - ]; -} - -message DeleteTargetResponse { - zitadel.resources.object.v3alpha.Details details = 1; -} - -message SearchTargetsRequest { - // list limitations and ordering. - zitadel.resources.object.v3alpha.SearchQuery query = 2; - // the field the result is sorted. - zitadel.resources.action.v3alpha.TargetFieldName sorting_column = 3 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"FIELD_NAME_SCHEMA_TYPE\"" - } - ]; - // Define the criteria to query for. - repeated zitadel.resources.action.v3alpha.TargetSearchFilter filters = 4; -} - -message SearchTargetsResponse { - zitadel.resources.object.v3alpha.ListDetails details = 1; - zitadel.resources.action.v3alpha.TargetFieldName sorting_column = 2; - repeated zitadel.resources.action.v3alpha.GetTarget result = 3; -} - -message GetTargetRequest { - // unique identifier of the target. - string id = 1 [ - (validate.rules).string = {min_len: 1, max_len: 200}, - (google.api.field_behavior) = REQUIRED, - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - min_length: 1, - max_length: 200, - example: "\"69629026806489455\""; - } - ]; -} - -message GetTargetResponse { - zitadel.resources.action.v3alpha.GetTarget target = 1; -} - -message PutExecutionRequest { - Execution execution = 2; -} - -message PutExecutionResponse { - zitadel.resources.object.v3alpha.Details details = 2; -} - -message DeleteExecutionRequest { - string id = 1 [ - (validate.rules).string = {min_len: 1, max_len: 200}, - (google.api.field_behavior) = REQUIRED, - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - min_length: 1, - max_length: 200, - example: "\"69629026806489455\""; - } - ]; -} - -message DeleteExecutionResponse { - zitadel.resources.object.v3alpha.Details details = 1; -} - -message SearchExecutionsRequest { - // list limitations and ordering. - zitadel.resources.object.v3alpha.SearchQuery query = 1; - // Define the criteria to query for. - repeated zitadel.resources.action.v3alpha.ExecutionSearchFilter filters = 2; -} - -message SearchExecutionsResponse { - zitadel.resources.object.v3alpha.ListDetails details = 1; - repeated zitadel.resources.action.v3alpha.GetExecution result = 2; -} - -message ListAvailableExecutionFunctionsRequest{} -message ListAvailableExecutionFunctionsResponse{ - // All available functions - repeated string functions = 1; -} -message ListAvailableExecutionMethodsRequest{} -message ListAvailableExecutionMethodsResponse{ - // All available methods - repeated string methods = 1; -} - -message ListAvailableExecutionServicesRequest{} -message ListAvailableExecutionServicesResponse{ - // All available services - repeated string services = 1; -} \ No newline at end of file diff --git a/docs/docs/apis/_v3_action_target.proto b/docs/docs/apis/_v3_action_target.proto deleted file mode 100644 index 217301d679..0000000000 --- a/docs/docs/apis/_v3_action_target.proto +++ /dev/null @@ -1,94 +0,0 @@ -syntax = "proto3"; - -package zitadel.resources.action.v3alpha; - -import "google/api/annotations.proto"; -import "google/api/field_behavior.proto"; -import "google/protobuf/duration.proto"; -import "google/protobuf/struct.proto"; -import "protoc-gen-openapiv2/options/annotations.proto"; -import "validate/validate.proto"; -import "zitadel/protoc_gen_zitadel/v2/options.proto"; - -import "zitadel/resources/object/v3alpha/object.proto"; - -option go_package = "github.com/zitadel/zitadel/pkg/grpc/resources/action/v3alpha;action"; - -message Target { - string name = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"ip_allow_list\""; - } - ]; - // Defines the target type and how the response of the target is treated. - oneof target_type { - SetRESTWebhook rest_webhook = 4; - SetRESTRequestResponse rest_request_response = 5; - } - // Timeout defines the duration until ZITADEL cancels the execution. - google.protobuf.Duration timeout = 6 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"10s\""; - } - ]; - oneof execution_type { - // Set the execution to run asynchronously. - bool is_async = 7; - // Define if any error stops the whole execution. By default the process continues as normal. - bool interrupt_on_error = 8; - } -} - -message GetTarget { - zitadel.resources.object.v3alpha.Details details = 1; - Target target = 2; -} - -message PatchTarget { - optional string name = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"ip_allow_list\""; - } - ]; - // Defines the target type and how the response of the target is treated. - oneof target_type { - SetRESTWebhook rest_webhook = 3; - SetRESTRequestResponse rest_request_response = 4; - } - // Timeout defines the duration until ZITADEL cancels the execution. - optional google.protobuf.Duration timeout = 5 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"10s\""; - } - ]; - oneof execution_type { - // Set the execution to run asynchronously. - bool is_async = 6; - // Define if any error stops the whole execution. By default the process continues as normal. - bool interrupt_on_error = 7; - } -} - -message SetRESTWebhook { - string url = 1 [ - (validate.rules).string = {min_len: 1, max_len: 1000, uri: true}, - (google.api.field_behavior) = REQUIRED, - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - min_length: 1, - max_length: 1000, - example: "\"https://example.com/hooks/ip_check\""; - } - ]; -} - -message SetRESTRequestResponse { - string url = 1 [ - (validate.rules).string = {min_len: 1, max_len: 1000, uri: true}, - (google.api.field_behavior) = REQUIRED, - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - min_length: 1, - max_length: 1000, - example: "\"https://example.com/hooks/ip_check\""; - } - ]; -} diff --git a/docs/docs/apis/_v3_idp.proto b/docs/docs/apis/_v3_idp.proto deleted file mode 100644 index bb2ed741aa..0000000000 --- a/docs/docs/apis/_v3_idp.proto +++ /dev/null @@ -1,94 +0,0 @@ -syntax = "proto3"; - -package zitadel.resources.idp.v3alpha; - -option go_package = "github.com/zitadel/zitadel/pkg/grpc/resources/idp/v3alpha;idp"; - -import "protoc-gen-openapiv2/options/annotations.proto"; -import "validate/validate.proto"; - -import "zitadel/resources/object/v3alpha/object.proto"; - -message IDP { - string name = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"GitLab\""; - } - ]; - zitadel.resources.object.v3alpha.StatePolicy state_policy = 2; - Options options = 3; -} - -message PatchIDP { - optional string name = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"GitLab\""; - } - ]; - optional zitadel.resources.object.v3alpha.StatePolicy state_policy = 2; - optional Options options = 3; -} - - -message GetIDP { - zitadel.resources.object.v3alpha.Details details = 1; - optional zitadel.resources.object.v3alpha.Parent parent = 2; - zitadel.resources.object.v3alpha.State state = 3; - ProviderType type = 4; - IDP idp = 5; -} - -enum ProviderType { - PROVIDER_TYPE_UNSPECIFIED = 0; - PROVIDER_TYPE_OIDC = 1; - PROVIDER_TYPE_JWT = 2; - PROVIDER_TYPE_LDAP = 3; - PROVIDER_TYPE_OAUTH = 4; - PROVIDER_TYPE_AZURE_AD = 5; - PROVIDER_TYPE_GITHUB = 6; - PROVIDER_TYPE_GITHUB_ES = 7; - PROVIDER_TYPE_GITLAB = 8; - PROVIDER_TYPE_GITLAB_SELF_HOSTED = 9; - PROVIDER_TYPE_GOOGLE = 10; - PROVIDER_TYPE_APPLE = 11; - PROVIDER_TYPE_SAML = 12; -} - - -enum AutoLinkingOption { - // AUTO_LINKING_OPTION_UNSPECIFIED disables the auto linking prompt. - AUTO_LINKING_OPTION_UNSPECIFIED = 0; - // AUTO_LINKING_OPTION_USERNAME will use the username of the external user to check for a corresponding ZITADEL user. - AUTO_LINKING_OPTION_USERNAME = 1; - // AUTO_LINKING_OPTION_EMAIL will use the email of the external user to check for a corresponding ZITADEL user with the same verified email - // Note that in case multiple users match, no prompt will be shown. - AUTO_LINKING_OPTION_EMAIL = 2; -} - -message Options { - bool is_manual_linking_allowed = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - description: "Enable if users should be able to link an existing ZITADEL user with an external account. Disable if users should only be allowed to link the proposed account in case of active auto_linking."; - } - ]; - bool is_manual_creation_allowed = 2 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - description: "Enable if users should be able to create a new account in ZITADEL when using an external account. Disable if users should not be able to edit account information when auto_creation is enabled."; - } - ]; - bool is_auto_creation = 3 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - description: "Enable if a new account in ZITADEL should be created automatically when login with an external account."; - } - ]; - bool is_auto_update = 4 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - description: "Enable if a the ZITADEL account fields should be updated automatically on each login."; - } - ]; - AutoLinkingOption auto_linking = 5 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - description: "Enable if users should get prompted to link an existing ZITADEL user to an external account if the selected attribute matches."; - } - ]; -} diff --git a/docs/docs/apis/_v3_idp_gitlab.proto b/docs/docs/apis/_v3_idp_gitlab.proto deleted file mode 100644 index 9c7ed47a78..0000000000 --- a/docs/docs/apis/_v3_idp_gitlab.proto +++ /dev/null @@ -1,59 +0,0 @@ -syntax = "proto3"; - -package zitadel.resources.idp.v3alpha; - -option go_package = "github.com/zitadel/zitadel/pkg/grpc/resources/idp/v3alpha;idp"; - -import "protoc-gen-openapiv2/options/annotations.proto"; -import "validate/validate.proto"; - -import "zitadel/resources/object/v3alpha/object.proto"; -import "zitadel/resources/idp/v3alpha/idp.proto"; - -message GetGitLabIDP { - zitadel.resources.object.v3alpha.Details details = 1; - optional zitadel.resources.object.v3alpha.Parent parent = 2; - zitadel.resources.object.v3alpha.State state = 3; - ProviderType type = 4; - GitLabIDP idp = 5; -} - -message GitLabIDP { - IDP idp = 1; - GitLabConfig config = 2; -} - -message PatchGitLabIDP { - optional PatchIDP idp = 1; - optional PatchGitLabConfig config = 2; -} - -message GitLabConfig { - string client_id = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"client-id\""; - description: "client id of the GitLab application"; - } - ]; - repeated string scopes = 2 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "[\"openid\", \"profile\", \"email\"]"; - description: "the scopes requested by ZITADEL during the request to GitLab"; - } - ]; -} - -message PatchGitLabConfig { - optional string client_id = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"client-id\""; - description: "client id of the GitLab application"; - } - ]; - repeated string scopes = 2 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "[\"openid\", \"profile\", \"email\"]"; - description: "the scopes requested by ZITADEL during the request to GitLab"; - } - ]; -} \ No newline at end of file diff --git a/docs/docs/apis/_v3_idp_search.proto b/docs/docs/apis/_v3_idp_search.proto deleted file mode 100644 index dbc75e2d20..0000000000 --- a/docs/docs/apis/_v3_idp_search.proto +++ /dev/null @@ -1,47 +0,0 @@ -syntax = "proto3"; - -package zitadel.resources.idp.v3alpha; - -option go_package = "github.com/zitadel/zitadel/pkg/grpc/resources/idp/v3alpha;idp"; - -import "protoc-gen-openapiv2/options/annotations.proto"; -import "validate/validate.proto"; - -import "zitadel/resources/object/v3alpha/object.proto"; - -enum IDPFieldName { - IDP_FIELD_NAME_UNSPECIFIED = 0; - IDP_FIELD_NAME_NAME = 1; -} - -message IDPSearchFilter { - oneof filter { - IDPIDFilter id = 1; - IDPNameFilter name = 2; - resources.object.v3alpha.StateFilter state = 3; - } -} - -message IDPIDFilter { - string id = 1 [ - (validate.rules).string = {max_len: 200}, - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"69629023906488334\""; - } - ]; -} - -message IDPNameFilter { - string name = 1 [ - (validate.rules).string = {max_len: 200}, - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"google\""; - } - ]; - zitadel.resources.object.v3alpha.TextFilterMethod method = 2 [ - (validate.rules).enum.defined_only = true, - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - description: "defines which text equality method is used"; - } - ]; -} diff --git a/docs/docs/apis/_v3_idp_service.proto b/docs/docs/apis/_v3_idp_service.proto deleted file mode 100644 index 26f734f68d..0000000000 --- a/docs/docs/apis/_v3_idp_service.proto +++ /dev/null @@ -1,325 +0,0 @@ -syntax = "proto3"; - -package zitadel.resources.idp.v3alpha; - -import "google/api/annotations.proto"; -import "google/api/field_behavior.proto"; -import "google/protobuf/duration.proto"; -import "google/protobuf/struct.proto"; -import "protoc-gen-openapiv2/options/annotations.proto"; -import "validate/validate.proto"; -import "zitadel/protoc_gen_zitadel/v2/options.proto"; - -import "zitadel/resources/object/v3alpha/object.proto"; -import "zitadel/resources/idp/v3alpha/search.proto"; -import "zitadel/resources/idp/v3alpha/idp.proto"; -import "zitadel/resources/idp/v3alpha/gitlab.proto"; -import "zitadel/object/v3alpha/object.proto"; - -option go_package = "github.com/zitadel/zitadel/pkg/grpc/resources/idp/v3alpha;idp"; - -option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_swagger) = { - info: { - title: "Identity Provider Service"; - version: "3.0-alpha"; - description: "This API is intended to manage identity providers (IDPs). IDPs can be created for specific organizations or for an instance. IDPs created on an instance can be activated (reused) or deactivated in organizations. It is behind the feature flag \"multitenancy_resources_api\". It will continue breaking as long as it is in alpha state."; - contact:{ - name: "ZITADEL" - url: "https://zitadel.com" - email: "hi@zitadel.com" - } - license: { - name: "Apache 2.0", - url: "https://github.com/zitadel/zitadel/blob/main/LICENSE"; - }; - }; - schemes: HTTPS; - schemes: HTTP; - - consumes: "application/json"; - consumes: "application/grpc"; - - produces: "application/json"; - produces: "application/grpc"; - - consumes: "application/grpc-web+proto"; - produces: "application/grpc-web+proto"; - - host: "$ZITADEL_DOMAIN"; - base_path: "/resources/v3alpha"; - - external_docs: { - description: "Detailed information about ZITADEL", - url: "https://zitadel.com/docs" - } - security_definitions: { - security: { - key: "OAuth2"; - value: { - type: TYPE_OAUTH2; - flow: FLOW_ACCESS_CODE; - authorization_url: "$CUSTOM-DOMAIN/oauth/v2/authorize"; - token_url: "$CUSTOM-DOMAIN/oauth/v2/token"; - scopes: { - scope: { - key: "openid"; - value: "openid"; - } - scope: { - key: "urn:zitadel:iam:org:project:id:zitadel:aud"; - value: "urn:zitadel:iam:org:project:id:zitadel:aud"; - } - } - } - } - } - security: { - security_requirement: { - key: "OAuth2"; - value: { - scope: "openid"; - scope: "urn:zitadel:iam:org:project:id:zitadel:aud"; - } - } - } - responses: { - key: "403"; - value: { - description: "Returned when the user does not have permission to access the resource."; - schema: { - json_schema: { - ref: "#/definitions/rpcStatus"; - } - } - } - } - responses: { - key: "404"; - value: { - description: "Returned when the resource does not exist."; - schema: { - json_schema: { - ref: "#/definitions/rpcStatus"; - } - } - } - } -}; - -service ZITADELIdentityProviders { - - // Create a GitLab IDP - rpc CreateGitLabIDP (CreateGitLabIDPRequest) returns (CreateGitLabIDPResponse) { - option (google.api.http) = { - post: "/idps/gitlab" - body: "idp" - }; - - option (zitadel.protoc_gen_zitadel.v2.options) = { - auth_option: { - permission: "idp.write" - } - http_response: { - success_code: 201 - } - }; - - option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = { - responses: { - key: "201"; - value: { - description: "GitLabIDP successfully created"; - schema: { - json_schema: { - ref: "#/definitions/v2CreateGitLabIDPResponse"; - } - } - }; - }; - }; - } - - // Patch a GitLab IDP - rpc PatchGitLabIDP (PatchGitLabIDPRequest) returns (PatchGitLabIDPResponse) { - option (google.api.http) = { - patch: "/idps/gitlab/{id}" - body: "idp" - }; - - option (zitadel.protoc_gen_zitadel.v2.options) = { - auth_option: { - permission: "idp.write" - } - }; - - option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = { - responses: { - key: "200"; - value: { - description: "GitLabIDP successfully updated"; - }; - }; - }; - } - - // Find a GitLab IDP by ID - rpc GetGitLabIDP (GetGitLabIDPRequest) returns (GetGitLabIDPResponse) { - option (google.api.http) = { - get: "/idps/gitlab/{id}" - }; - - option (zitadel.protoc_gen_zitadel.v2.options) = { - auth_option: { - permission: "idp.read" - } - }; - - option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = { - responses: { - key: "200" - value: { - description: "GitLabIDP successfully retrieved"; - } - }; - }; - } - - // Delete an IDP of any type - rpc DeleteIDP (DeleteIDPRequest) returns (DeleteIDPResponse) { - option (google.api.http) = { - delete: "/idps/{id}" - }; - - option (zitadel.protoc_gen_zitadel.v2.options) = { - auth_option: { - permission: "idp.delete" - } - }; - - option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = { - responses: { - key: "200"; - value: { - description: "Identity provider successfully deleted"; - }; - }; - }; - } - - // Search IDPs - // - // Search all matching IDPs. By default, all instance-level and organization-level providers of all types are returned. - // Only type-agnostic properties are returned in the response. - // To get the full details of a specific IDP, use the specific types Get method. - // If you search by passing an organization context, the state and the state policy might be different than if you search within the default instance-level context. - // Make sure to include a limit and sorting for pagination. - rpc SearchIDPs (SearchIDPsRequest) returns (SearchIDPsResponse) { - option (google.api.http) = { - post: "/idps/_search", - body: "filters" - }; - - option (zitadel.protoc_gen_zitadel.v2.options) = { - auth_option: { - permission: "idp.read" - } - }; - - option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = { - responses: { - key: "200"; - value: { - description: "A list of all IDPs matching the query"; - }; - }; - responses: { - key: "400"; - value: { - description: "invalid list query"; - schema: { - json_schema: { - ref: "#/definitions/rpcStatus"; - }; - }; - }; - }; - }; - } -} - -message CreateGitLabIDPRequest { - optional zitadel.object.v3alpha.RequestContext ctx = 1; - GitLabIDP idp = 2; -} - -message CreateGitLabIDPResponse { - zitadel.resources.object.v3alpha.Details details = 2; -} - -message PatchGitLabIDPRequest { - string id = 1 [ - (validate.rules).string = {min_len: 1, max_len: 200}, - (google.api.field_behavior) = REQUIRED, - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - min_length: 1, - max_length: 200, - example: "\"69629026806489455\""; - } - ]; - PatchGitLabIDP idp = 2; -} - -message PatchGitLabIDPResponse { - zitadel.resources.object.v3alpha.Details details = 1; -} - -message DeleteIDPRequest { - string id = 1 [ - (validate.rules).string = {min_len: 1, max_len: 200}, - (google.api.field_behavior) = REQUIRED, - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - min_length: 1, - max_length: 200, - example: "\"69629026806489455\""; - } - ]; -} - -message DeleteIDPResponse { - zitadel.resources.object.v3alpha.Details details = 1; -} - -message SearchIDPsRequest { - optional zitadel.object.v3alpha.RequestContext ctx = 1; - // list limitations and ordering. - zitadel.resources.object.v3alpha.SearchQuery query = 2; - // the field the result is sorted. - zitadel.resources.idp.v3alpha.IDPFieldName sorting_column = 3 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"FIELD_NAME_SCHEMA_TYPE\"" - } - ]; - repeated zitadel.resources.idp.v3alpha.IDPSearchFilter filters = 4; -} - -message SearchIDPsResponse { - zitadel.resources.object.v3alpha.ListDetails details = 1; - zitadel.resources.idp.v3alpha.IDPFieldName sorting_column = 2; - repeated zitadel.resources.idp.v3alpha.GetIDP result = 3; -} - -message GetGitLabIDPRequest { - string id = 1 [ - (validate.rules).string = {min_len: 1, max_len: 200}, - (google.api.field_behavior) = REQUIRED, - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - min_length: 1, - max_length: 200, - example: "\"69629026806489455\""; - } - ]; -} - -message GetGitLabIDPResponse { - zitadel.resources.idp.v3alpha.GetGitLabIDP idp = 1; -} diff --git a/docs/docs/apis/_v3_language.proto b/docs/docs/apis/_v3_language.proto deleted file mode 100644 index 269bb4b0a0..0000000000 --- a/docs/docs/apis/_v3_language.proto +++ /dev/null @@ -1,69 +0,0 @@ -syntax = "proto3"; - -package zitadel.settings.language.v3alpha; -option go_package = "github.com/zitadel/zitadel/pkg/grpc/settings/language/v3alpha;language"; - -import "validate/validate.proto"; -import "protoc-gen-openapiv2/options/annotations.proto"; - -import "zitadel/settings/object/v3alpha/object.proto"; -import "zitadel/object/v3alpha/object.proto"; - -message SetLanguageSettings { - optional zitadel.settings.object.v3alpha.Language default_language = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - description: "default language for the current context" - example: "\"en\"" - } - ]; - optional SetLanguages restricted_languages = 2 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - description: "To these languages, message texts and default login UI labels are translated to. Also, the discovery endpoint only lists these languages." - example: "[\"en\", \"de\"]" - } - ]; -} - -message ResolvedLanguageSettings { - zitadel.settings.object.v3alpha.ResolvedString default_language = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - description: "default language for the current context" - example: "\"en\"" - } - ]; - ResolvedLanguages restricted_languages = 2 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - description: "To these languages, message texts and default login UI labels are translated to. Also, the discovery endpoint only lists these languages." - example: "[\"en\", \"de\"]" - } - ]; - ResolvedLanguages supported_languages = 3 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - description: "These languages are supported by the system. For simplicity, the field is of type ResolvedLanguages, even though the list is immutable and the owner is always of OWNER_TYPE_SYSTEM." - example: "[\"en\", \"de\", \"it\"]" - } - ]; -} - -message SetLanguages { - repeated zitadel.settings.object.v3alpha.Language languages = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - description: "List of languages to set" - example: "[\"en\", \"de\"]" - } - ]; -} - -message ResolvedLanguages { - repeated zitadel.settings.object.v3alpha.Language value = 1[ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - description: "List of languages" - example: "[\"en\", \"de\"]" - } - ]; - optional zitadel.object.v3alpha.Owner owner = 2 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - description: "If the value is inherited, the value is inherited from this owner."; - } - ]; -} diff --git a/docs/docs/apis/_v3_language_service.proto b/docs/docs/apis/_v3_language_service.proto deleted file mode 100644 index f282aa2f9b..0000000000 --- a/docs/docs/apis/_v3_language_service.proto +++ /dev/null @@ -1,158 +0,0 @@ -syntax = "proto3"; - -package zitadel.settings.language.v3alpha; -option go_package = "github.com/zitadel/zitadel/pkg/grpc/settings/language/v3alpha;language"; - -import "google/api/annotations.proto"; -import "protoc-gen-openapiv2/options/annotations.proto"; - -import "zitadel/object/v3alpha/object.proto"; -import "zitadel/settings/object/v3alpha/object.proto"; -import "zitadel/settings/language/v3alpha/language.proto"; -import "zitadel/protoc_gen_zitadel/v2/options.proto"; - -option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_swagger) = { - info: { - title: "Language Settings Service"; - version: "3.0-alpha"; - description: "Language Service is intended to manage languages for ZITADEL. Enable the feature flag \"multitenancy_settings\" in order to activate it. Languages are settings, and are therefore inherited through the context hierarchy system -> instance -> org. It will continue breaking as long as it is in alpha state."; - contact:{ - name: "ZITADEL" - url: "https://zitadel.com" - email: "hi@zitadel.com" - } - license: { - name: "Apache 2.0", - url: "https://github.com/zitadel/zitadel/blob/main/LICENSE"; - }; - }; - schemes: HTTPS; - schemes: HTTP; - - consumes: "application/json"; - consumes: "application/grpc"; - consumes: "application/grpc-web+proto"; - - produces: "application/json"; - produces: "application/grpc"; - produces: "application/grpc-web+proto"; - - host: "$ZITADEL_DOMAIN"; - base_path: "/settings/v3alpha"; - - external_docs: { - description: "Detailed information about ZITADEL", - url: "https://zitadel.com/docs" - } - security_definitions: { - security: { - key: "OAuth2"; - value: { - type: TYPE_OAUTH2; - flow: FLOW_ACCESS_CODE; - authorization_url: "$ZITADEL_DOMAIN/oauth/v2/authorize"; - token_url: "$ZITADEL_DOMAIN/oauth/v2/token"; - scopes: { - scope: { - key: "openid"; - value: "openid"; - } - scope: { - key: "urn:zitadel:iam:org:project:id:zitadel:aud"; - value: "urn:zitadel:iam:org:project:id:zitadel:aud"; - } - } - } - } - } - security: { - security_requirement: { - key: "OAuth2"; - value: { - scope: "openid"; - scope: "urn:zitadel:iam:org:project:id:zitadel:aud"; - } - } - } - responses: { - key: "403"; - value: { - description: "Returned when the user does not have permission to access the settings in the given context."; - schema: { - json_schema: { - ref: "#/definitions/rpcStatus"; - } - } - } - } -}; - -// ZITADELLanguageSettings is intended to manage languages for ZITADEL. -// Enable the feature flag \"multitenancy_settings\" in order to activate it. -// Languages are settings, and are therefore inherited through the context hierarchy system -> instance -> org. -service ZITADELLanguageSettings { - rpc SetLanguages (SetLanguageSettingsRequest) returns (SetLanguageSettingsResponse) { - option (google.api.http) = { - patch: "/languages" - body: "settings" - }; - - option (zitadel.protoc_gen_zitadel.v2.options) = { - auth_option: { - permission: "authenticated" - } - }; - - option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = { - summary: "Set languages for a given context"; - description: "Configure and set languages for a given context. Only fields present in the request are set or unset." - responses: { - key: "200" - value: { - description: "OK"; - } - }; - }; - }; - - rpc ResolveLanguages (ResolveLanguageSettingsRequest) returns (ResolveLanguageSettingsResponse) { - option (google.api.http) = { - get: "/languages" - }; - - option (zitadel.protoc_gen_zitadel.v2.options) = { - auth_option: { - permission: "authenticated" - } - }; - - option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = { - summary: "Get the languages in the given context"; - description: "Returns all configured and inherited languages for the given context." - responses: { - key: "200" - value: { - description: "OK"; - } - }; - }; - }; -} - -message SetLanguageSettingsRequest{ - optional zitadel.object.v3alpha.RequestContext ctx = 1; - SetLanguageSettings settings = 2; -} - -message SetLanguageSettingsResponse{ - zitadel.settings.object.v3alpha.Details details = 1; -} - -message ResolveLanguageSettingsRequest{ - optional zitadel.object.v3alpha.RequestContext ctx = 1; -} - -message ResolveLanguageSettingsResponse{ - zitadel.settings.object.v3alpha.Details details = 1; - ResolvedLanguageSettings settings = 2; -} diff --git a/docs/docs/apis/_v3_object.proto b/docs/docs/apis/_v3_object.proto deleted file mode 100644 index dc018c4ee7..0000000000 --- a/docs/docs/apis/_v3_object.proto +++ /dev/null @@ -1,33 +0,0 @@ -syntax = "proto3"; - -package zitadel.object.v3alpha; - -option go_package = "github.com/zitadel/zitadel/pkg/grpc/object/v3alpha;object"; - -import "google/protobuf/timestamp.proto"; -import "protoc-gen-openapiv2/options/annotations.proto"; -import "validate/validate.proto"; - -message RequestContext { - // By default, the request context is set to the instance discovered by the domain from the requests host header. - oneof owner { - bool system = 1 [(validate.rules).bool = {const: true}]; // TODO: move the source of truth from the defaults.yaml into the database - string instance_id = 2; - string instance_domain = 3; - string org_id = 4; - string org_domain = 5; - } -} - -enum OwnerType { - OWNER_TYPE_UNSPECIFIED = 0; - OWNER_TYPE_SYSTEM = 1; // TODO: move the source of truth from the defaults.yaml into the database - OWNER_TYPE_INSTANCE = 2; - OWNER_TYPE_ORG = 3; -} - -message Owner { - OwnerType type = 1; - string id = 2; -} - diff --git a/docs/docs/apis/_v3_resource_object.proto b/docs/docs/apis/_v3_resource_object.proto deleted file mode 100644 index 7bd5e60a9b..0000000000 --- a/docs/docs/apis/_v3_resource_object.proto +++ /dev/null @@ -1,155 +0,0 @@ -syntax = "proto3"; - -package zitadel.resources.object.v3alpha; - -option go_package = "github.com/zitadel/zitadel/pkg/grpc/resources/object/v3alpha;object"; - -import "google/api/field_behavior.proto"; -import "google/protobuf/timestamp.proto"; -import "protoc-gen-openapiv2/options/annotations.proto"; -import "validate/validate.proto"; - -import "zitadel/object/v3alpha/object.proto"; - -message Organization { - oneof org { - string org_id = 1; - string org_domain = 2; - } -} - -message Details { - string id = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"69629012906488334\""; - } - ]; - - //sequence represents the order of events. It's always counting - // - // on read: the sequence of the last event reduced by the projection - // - // on manipulation: the timestamp of the event(s) added by the manipulation - uint64 sequence = 2 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"2\""; - } - ]; - //change_date is the timestamp when the object was changed - // - // on read: the timestamp of the last event reduced by the projection - // - // on manipulation: the timestamp of the event(s) added by the manipulation - google.protobuf.Timestamp change_date = 3; - //resource_owner represents the context an object belongs to - zitadel.object.v3alpha.Owner resource_owner = 4 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"69629023906488334\""; - } - ]; -} - -enum State { - EFFECTIVE_STATE_UNSPECIFIED = 0; - EFFECTIVE_STATE_ACTIVE = 1; - EFFECTIVE_STATE_INACTIVE = 2; -} - -enum StatePolicy { - STATE_POLICY_UNSPECIFIED = 0; - STATE_POLICY_ACTIVATE = 1; - STATE_POLICY_DEACTIVATE = 2; - STATE_POLICY_INHERIT = 3; -} - -message StateFilter { - // Defines the state to query for. - resources.object.v3alpha.State state = 1 [ - (validate.rules).enum.defined_only = true, - (google.api.field_behavior) = REQUIRED, - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"STATE_ACTIVE\"" - } - ]; -} - -message Parent { - zitadel.object.v3alpha.Owner parent = 1; - State state = 2; -} - -message ListQuery { - option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_schema) = { - json_schema: { - title: "General List Query" - description: "Object unspecific list filters like offset, limit and asc/desc." - } - }; - uint64 offset = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"0\""; - } - ]; - uint32 limit = 2 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "100"; - description: "Maximum amount of events returned. The default is 100, the maximum is 1000. If the limit exceeds the maximum, ZITADEL throws an error."; - } - ]; - bool asc = 3 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - description: "default is descending" - } - ]; -} - -message ListDetails { - uint32 applied_limit = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "100"; - } - ]; - bool end_of_list = 2 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "true"; - } - ]; - uint64 total_result = 3 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"2\""; - } - ]; - uint64 processed_sequence = 4 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"267831\""; - } - ]; - google.protobuf.Timestamp timestamp = 5 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - description: "the last time the projection got updated" - } - ]; -} - -enum TextFilterMethod { - TEXT_FILTER_METHOD_EQUALS = 0; - TEXT_FILTER_METHOD_EQUALS_IGNORE_CASE = 1; - TEXT_FILTER_METHOD_STARTS_WITH = 2; - TEXT_FILTER_METHOD_STARTS_WITH_IGNORE_CASE = 3; - TEXT_FILTER_METHOD_CONTAINS = 4; - TEXT_FILTER_METHOD_CONTAINS_IGNORE_CASE = 5; - TEXT_FILTER_METHOD_ENDS_WITH = 6; - TEXT_FILTER_METHOD_ENDS_WITH_IGNORE_CASE = 7; -} - -enum ListFilterMethod { - LIST_FILTER_METHOD_IN = 0; -} - -enum TimestampFilterMethod { - TIMESTAMP_Filter_METHOD_EQUALS = 0; - TIMESTAMP_Filter_METHOD_GREATER = 1; - TIMESTAMP_Filter_METHOD_GREATER_OR_EQUALS = 2; - TIMESTAMP_Filter_METHOD_LESS = 3; - TIMESTAMP_Filter_METHOD_LESS_OR_EQUALS = 4; -} \ No newline at end of file diff --git a/docs/docs/apis/_v3_settings_object.proto b/docs/docs/apis/_v3_settings_object.proto deleted file mode 100644 index 5a1fab69a8..0000000000 --- a/docs/docs/apis/_v3_settings_object.proto +++ /dev/null @@ -1,193 +0,0 @@ -syntax = "proto3"; - -package zitadel.settings.object.v3alpha; - -option go_package = "github.com/zitadel/zitadel/pkg/grpc/settings/object/v3alpha;object"; - -import "google/protobuf/timestamp.proto"; -import "protoc-gen-openapiv2/options/annotations.proto"; -import "validate/validate.proto"; -import "google/protobuf/duration.proto"; - -import "zitadel/object/v3alpha/object.proto"; - -message Details { - //sequence represents the order of events. It's always counting - // - // on read: the sequence of the last event reduced by the projection - // - // on manipulation: the timestamp of the event(s) added by the manipulation - uint64 sequence = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"2\""; - } - ]; - //change_date is the timestamp when the object was changed - // - // on read: the timestamp of the last event reduced by the projection - // - // on manipulation: the timestamp of the event(s) added by the manipulation - google.protobuf.Timestamp change_date = 2; - //resource_owner represents the context an object belongs to - zitadel.object.v3alpha.Owner owner = 3 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"69629023906488334\""; - } - ]; -} - - -message ResolvedBool { - bool value = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "false"; - description: "The resolved value is valid for the given context. Either the value was explicitly set for the given context or it is inherited from a higher-level context."; - } - ]; - optional zitadel.object.v3alpha.Owner owner = 2 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - description: "If the value is inherited, the value is inherited from this owner."; - } - ]; -} - -message SetBool { - oneof value { - bool set = 1; - bool reset = 2 [(validate.rules).bool = { - const: true - }]; - } -} - -message ResolvedString { - string value = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"a resolved string\""; - description: "The resolved value is valid for the given context. Either the value was explicitly set for the given context or it is inherited from a higher-level context."; - } - ]; - optional zitadel.object.v3alpha.Owner owner = 2 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - description: "If the value is inherited, the value is inherited from this owner."; - } - ]; -} - -message SetString { - oneof value { - string set = 1 [ - (validate.rules).string = { - max_len: 256 - } - ]; - bool reset = 2 [(validate.rules).bool = { - const: true - }]; - } -} - -message SetStringLong { - oneof value { - string set = 1 [ - (validate.rules).string = { - max_len: 2048 - } - ]; - bool reset = 2 [(validate.rules).bool = { - const: true - }]; - } -} - - -message SetStringShort { - oneof value { - string set = 1 [ - (validate.rules).string = { - max_len: 64 - } - ]; - bool reset = 2 [(validate.rules).bool = { - const: true - }]; - } -} - -message Language { - string key = 1 [(validate.rules).string = {pattern: "^[a-z]{2}$"}]; -} - -message ResolvedStrings { - repeated string value = 1[ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "[\"a\", \"resolved\", \"list\", \"of\", \"strings\"]"; - description: "The resolved value is valid for the given context. Either the value was explicitly set for the given context or it is inherited from a higher-level context."; - } - ]; - optional zitadel.object.v3alpha.Owner owner = 2 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - description: "If the value is inherited, the value is inherited from this owner."; - } - ]; -} - -message SetStrings { - oneof value { - SetStringsValue set = 1; - bool reset = 2 [(validate.rules).bool = { - const: true - }]; - } -} - -message SetStringsValue { - repeated string value = 1; -} - -message ResolvedUInt64 { - uint64 value = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "1000"; - description: "The resolved value is valid for the given context. Either the value was explicitly set for the given context or it is inherited from a higher-level context."; - } - ]; - optional zitadel.object.v3alpha.Owner owner = 2 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - description: "If the value is inherited, the value is inherited from this owner."; - } - ]; -} - -message SetUInt64 { - oneof value { - uint64 set = 1; - bool reset = 2 [(validate.rules).bool = { - const: true - }]; - } -} - - -message ResolvedDuration { - google.protobuf.Duration value = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"5s\""; - description: "The resolved value is valid for the given context. Either the value was explicitly set for the given context or it is inherited from a higher-level context."; - } - ]; - optional zitadel.object.v3alpha.Owner owner = 2 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - description: "If the value is inherited, the value is inherited from this owner."; - } - ]; -} - -message SetDuration { - oneof value { - google.protobuf.Duration set = 1; - bool reset = 2 [(validate.rules).bool = { - const: true - }]; - } -} diff --git a/docs/docs/apis/benchmarks/_template.mdx b/docs/docs/apis/benchmarks/_template.mdx index a6a9109309..4bbb9e0b74 100644 --- a/docs/docs/apis/benchmarks/_template.mdx +++ b/docs/docs/apis/benchmarks/_template.mdx @@ -12,9 +12,11 @@ copy (SELECT , approx_quantile(metric_value, 0.95) AS p95 , approx_quantile(metric_value, 0.99) AS p99 FROM - read_csv('/path/to/k6-output.csv', auto_detect=false, delim=',', quote='"', escape='"', new_line='\n', skip=0, comment='', header=true, columns={'metric_name': 'VARCHAR', 'timestamp': 'BIGINT', 'metric_value': 'DOUBLE', 'check': 'VARCHAR', 'error': 'VARCHAR', 'error_code': 'VARCHAR', 'expected_response': 'BOOLEAN', 'group': 'VARCHAR', 'method': 'VARCHAR', 'name': 'VARCHAR', 'proto': 'VARCHAR', 'scenario': 'VARCHAR', 'service': 'VARCHAR', 'status': 'BIGINT', 'subproto': 'VARCHAR', 'tls_version': 'VARCHAR', 'url': 'VARCHAR', 'extra_tags': 'VARCHAR', 'metadata': 'VARCHAR'}) + read_csv('result.csv', auto_detect=false, null_padding=true, delim=',', quote='"', escape='"', new_line='\n', skip=0, comment='', header=true, columns={'metric_name': 'VARCHAR', 'timestamp': 'BIGINT', 'metric_value': 'DOUBLE', 'check': 'VARCHAR', 'error': 'VARCHAR', 'error_code': 'VARCHAR', 'expected_response': 'BOOLEAN', 'group': 'VARCHAR', 'method': 'VARCHAR', 'name': 'VARCHAR', 'proto': 'VARCHAR', 'scenario': 'VARCHAR', 'service': 'VARCHAR', 'status': 'BIGINT', 'subproto': 'VARCHAR', 'tls_version': 'VARCHAR', 'url': 'VARCHAR', 'extra_tags': 'VARCHAR', 'metadata': 'VARCHAR'}) WHERE - metric_name LIKE '%_duration' + metric_name <> 'http_req_duration' + AND metric_name <> 'iteration_duration' + AND metric_name LIKE '%_duration' GROUP BY metric_name , timestamp @@ -26,8 +28,6 @@ copy (SELECT --> -## Summary - TODO: describe the outcome of the test? ## Performance test results diff --git a/docs/docs/apis/benchmarks/v2.65.0/machine_jwt_profile_grant/index.mdx b/docs/docs/apis/benchmarks/v2.65.0/machine_jwt_profile_grant/index.mdx index f2e198c510..4c2809feb4 100644 --- a/docs/docs/apis/benchmarks/v2.65.0/machine_jwt_profile_grant/index.mdx +++ b/docs/docs/apis/benchmarks/v2.65.0/machine_jwt_profile_grant/index.mdx @@ -3,8 +3,6 @@ title: machine jwt profile grant benchmark of zitadel v2.65.0 sidebar_label: machine jwt profile grant --- -## Summary - Tests are halted after this test run because of too many [client read events](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/wait-event.clientread.html) on the database. ## Performance test results diff --git a/docs/docs/apis/benchmarks/v2.66.0/machine_jwt_profile_grant/index.mdx b/docs/docs/apis/benchmarks/v2.66.0/machine_jwt_profile_grant/index.mdx index 50dd7dc7ec..881e7a38ee 100644 --- a/docs/docs/apis/benchmarks/v2.66.0/machine_jwt_profile_grant/index.mdx +++ b/docs/docs/apis/benchmarks/v2.66.0/machine_jwt_profile_grant/index.mdx @@ -3,8 +3,6 @@ title: machine jwt profile grant benchmark of zitadel v2.66.0 sidebar_label: machine jwt profile grant --- -## Summary - The tests showed heavy database load by time by the first two database queries. These queries need to be analyzed further. ## Performance test results diff --git a/docs/docs/apis/benchmarks/v2.70.0/machine_jwt_profile_grant/index.mdx b/docs/docs/apis/benchmarks/v2.70.0/machine_jwt_profile_grant/index.mdx new file mode 100644 index 0000000000..fa8c84bc7e --- /dev/null +++ b/docs/docs/apis/benchmarks/v2.70.0/machine_jwt_profile_grant/index.mdx @@ -0,0 +1,102 @@ +--- +title: machine jwt profile grant benchmark of zitadel v2.70.0 +sidebar_label: machine jwt profile grant +--- + +The performance goals of [this issue](https://github.com/zitadel/zitadel/issues/8352) are reached. Next we will test linear scalability. + +## Performance test results + +| Metric | Value | +|:--------------------------------------|:------| +| Baseline | none | +| Purpose | Test current performance | +| Test start | 09:48 UTC | +| Test duration | 30min | +| Executed test | machine\_jwt\_profile\_grant | +| k6 version | v0.57.0 | +| VUs | 600 | +| Client location | US1 | +| ZITADEL location | US1 | +| ZITADEL container specification | vCPU: 6
Memory: 6 Gi
Container min scale: 2
Container max scale: 7 | +| ZITADEL Version | v2.70.0 | +| ZITADEL feature flags | webKey: true, improvedPerformance: \[\"IMPROVED\_PERFORMANCE\_ORG\_BY\_ID\", \"IMPROVED\_PERFORMANCE\_PROJECT\", \"IMPROVED\_PERFORMANCE\_USER\_GRANT\", \"IMPROVED\_PERFORMANCE\_ORG\_DOMAIN\_VERIFIED\", \"IMPROVED\_PERFORMANCE\_PROJECT\_GRANT\"\] | +| Database | type: psql
version: v17.2 | +| Database location | US1 | +| Database specification | vCPU: 8
memory: 32Gib | +| ZITADEL metrics during test | | +| Observed errors | | +| Top 3 most expensive database queries | 1: Write events using eventstore.push function
2: Query user
3: Query events by instance id, aggregate type, aggregate id, event types, owner
| +| k6 Iterations per second | 1806 | +| k6 output | [output](#k6-output) | +| flowchart outcome | Scale out | + +## Endpoint latencies + +import OutputSource from "!!raw-loader!./output.json"; + +import { BenchmarkChart } from '/src/components/benchmark_chart'; + + + +## k6 output {#k6-output} + +```bash + ✓ openid configuration + ✗ token status ok + ↳ 99% — ✓ 3289559 / ✗ 5 + ✗ access token returned + ↳ 99% — ✓ 3289559 / ✗ 5 + + █ setup + + ✓ user defined + ✓ authorize status ok + ✓ login name status ok + ✓ login shows password page + ✓ password status ok + ✓ password callback + ✓ code set + ✓ token status ok + ✓ access token created + ✓ id token created + ✓ info created + ✓ org created + ✓ create user is status ok + ✓ generate machine key status ok + + █ teardown + + ✓ org removed + + checks...............................: 99.99% 6580931 out of 6580941 + data_received........................: 4.8 GB 2.6 MB/s + data_sent............................: 2.8 GB 1.5 MB/s + http_req_blocked.....................: min=110ns avg=53.66µs max=937.62ms p(50)=420ns p(95)=660ns p(99)=989ns + http_req_connecting..................: min=0s avg=22.26µs max=532.7ms p(50)=0s p(95)=0s p(99)=0s + http_req_duration....................: min=16.42ms avg=323.71ms max=3.4s p(50)=209.85ms p(95)=903.86ms p(99)=1.01s + { expected_response:true }.........: min=16.42ms avg=323.71ms max=3.4s p(50)=209.85ms p(95)=903.85ms p(99)=1.01s + http_req_failed......................: 0.00% 5 out of 3291974 + http_req_receiving...................: min=18.23µs avg=1.73ms max=913.21ms p(50)=73.15µs p(95)=8.73ms p(99)=29.35ms + http_req_sending.....................: min=17.54µs avg=53.13µs max=501.66ms p(50)=46.07µs p(95)=75.92µs p(99)=120.24µs + http_req_tls_handshaking.............: min=0s avg=29.45µs max=657.29ms p(50)=0s p(95)=0s p(99)=0s + http_req_waiting.....................: min=3.84ms avg=321.92ms max=3.4s p(50)=206.45ms p(95)=901.97ms p(99)=1.01s + http_reqs............................: 3291974 1807.469453/s + iteration_duration...................: min=18.62ms avg=328.21ms max=3.41s p(50)=215.77ms p(95)=907.48ms p(99)=1.01s + iterations...........................: 3289564 1806.146234/s + login_ui_enter_login_name_duration...: min=131.65ms avg=131.65ms max=131.65ms p(50)=131.65ms p(95)=131.65ms p(99)=131.65ms + login_ui_enter_password_duration.....: min=18.55ms avg=18.55ms max=18.55ms p(50)=18.55ms p(95)=18.55ms p(99)=18.55ms + login_ui_init_login_duration.........: min=68.72ms avg=68.72ms max=68.72ms p(50)=68.72ms p(95)=68.72ms p(99)=68.72ms + login_ui_token_duration..............: min=77.56ms avg=77.56ms max=77.56ms p(50)=77.56ms p(95)=77.56ms p(99)=77.56ms + oidc_token_duration..................: min=16.42ms avg=323.79ms max=3.4s p(50)=209.87ms p(95)=903.91ms p(99)=1.01s + org_create_org_duration..............: min=38.42ms avg=38.42ms max=38.42ms p(50)=38.42ms p(95)=38.42ms p(99)=38.42ms + user_add_machine_key_duration........: min=23.47ms avg=280.32ms max=851.94ms p(50)=304.18ms p(95)=437.53ms p(99)=443.37ms + user_create_machine_duration.........: min=63.91ms avg=406.02ms max=663.96ms p(50)=437.61ms p(95)=518.85ms p(99)=521.88ms + vus..................................: 425 min=0 max=600 + vus_max..............................: 600 min=600 max=600 + + +running (30m21.3s), 000/600 VUs, 3289564 complete and 0 interrupted iterations +default ✓ [======================================] 600 VUs 30m0s +``` + diff --git a/docs/docs/apis/benchmarks/v2.70.0/machine_jwt_profile_grant/output.json b/docs/docs/apis/benchmarks/v2.70.0/machine_jwt_profile_grant/output.json new file mode 100644 index 0000000000..f03567d44a --- /dev/null +++ b/docs/docs/apis/benchmarks/v2.70.0/machine_jwt_profile_grant/output.json @@ -0,0 +1,1572 @@ +[ + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:12+00","p50":226.80441216,"p95":292.2581226923254,"p99":325.5444011804323}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:13+00","p50":303.4329753749999,"p95":530.6733049414297,"p99":567.30927307371}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:14+00","p50":302.74891633396584,"p95":604.7013469500243,"p99":614.6893857158778}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:15+00","p50":325.100155,"p95":606.6103585921124,"p99":609.8550800478059}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:16+00","p50":361.64220778124997,"p95":682.5986029211113,"p99":3295.896356099604}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:17+00","p50":311.9510276616327,"p95":795.2728765153314,"p99":808.5238720090455}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:18+00","p50":330.943432175,"p95":904.2621740605202,"p99":917.8023852704073}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:19+00","p50":394.07251646875005,"p95":876.7589186742251,"p99":883.9929505850307}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:20+00","p50":431.46734833710815,"p95":786.1183312083676,"p99":843.129903600502}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:21+00","p50":551.3915481388889,"p95":992.6629004539294,"p99":1017.6792653328623}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:22+00","p50":497.87218064347826,"p95":989.0976041999207,"p99":1001.9454134977383}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:23+00","p50":442.64701572592594,"p95":814.4198630706968,"p99":841.4281979419711}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:24+00","p50":411.5698667705882,"p95":749.5986867027285,"p99":760.7061443220067}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:25+00","p50":412.1297083766916,"p95":800.8400148923031,"p99":811.2535669033024}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:26+00","p50":507.8750002152381,"p95":850.039875055058,"p99":860.0256743397883}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:27+00","p50":465.25835430555554,"p95":792.79890057003,"p99":798.9528485138085}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:28+00","p50":500.7428103402778,"p95":799.9773754569674,"p99":805.3877535663701}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:29+00","p50":416.9319790435898,"p95":756.4934249753344,"p99":782.3338328457231}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:30+00","p50":409.446729,"p95":704.4358527261671,"p99":707.8622070821856}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:31+00","p50":431.10160412975705,"p95":742.780703663499,"p99":747.7094352509105}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:32+00","p50":438.8698693074792,"p95":723.874841749524,"p99":731.2911996430813}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:33+00","p50":460.77788237119114,"p95":736.802596085751,"p99":743.5967629006125}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:34+00","p50":457.8682860137363,"p95":781.8816769842254,"p99":787.9976388695852}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:35+00","p50":426.41345278947375,"p95":727.9498678832771,"p99":742.652598833263}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:36+00","p50":448.77417509418274,"p95":735.4066735172622,"p99":743.7479522655925}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:37+00","p50":428.2517828503759,"p95":728.8862330633025,"p99":733.758870425374}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:38+00","p50":492.0898813209876,"p95":785.8078790933473,"p99":795.2371716580127}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:39+00","p50":458.9457820831025,"p95":751.6501070733834,"p99":757.6296614049812}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:40+00","p50":412.6279474444445,"p95":720.0410543170241,"p99":725.3562274485259}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:41+00","p50":407.57438946541356,"p95":742.5514249260323,"p99":748.2140684291002}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:42+00","p50":415.9983718947368,"p95":754.795421153356,"p99":766.0024560400469}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:43+00","p50":428.1456869722222,"p95":759.0551689784448,"p99":768.3684850425636}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:44+00","p50":406.7604713939271,"p95":709.5277752653984,"p99":717.318463612515}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:45+00","p50":398.53694925,"p95":699.5980130596854,"p99":706.324271665933}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:46+00","p50":406.98302810526314,"p95":732.5767573436967,"p99":738.3985069516829}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:47+00","p50":433.37312517378916,"p95":745.2997198794175,"p99":753.5465345212392}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:48+00","p50":466.7073398229166,"p95":759.3042805307299,"p99":774.0043747179759}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:49+00","p50":401.19711447487185,"p95":708.7456584052499,"p99":721.3277307832102}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:50+00","p50":396.5683705333333,"p95":667.4736412516669,"p99":675.7801769646821}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:51+00","p50":435.5378857076024,"p95":709.7029266004154,"p99":731.2463297780371}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:52+00","p50":437.8546534166666,"p95":762.1523561613566,"p99":773.2566024162713}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:53+00","p50":402.36380296675895,"p95":735.6936697803411,"p99":767.8827300526118}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:54+00","p50":451.13125700864197,"p95":773.9584202721741,"p99":780.4959714461845}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:55+00","p50":451.77078472916673,"p95":762.2362345091318,"p99":769.1737047272173}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:56+00","p50":452.0772762576177,"p95":768.6665505212662,"p99":773.4509180908385}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:57+00","p50":443.1847585941358,"p95":858.6454454338701,"p99":874.375683597584}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:58+00","p50":447.6983186979167,"p95":847.6724164430321,"p99":857.2664667741503}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:48:59+00","p50":418.4935931745153,"p95":730.5123063135688,"p99":738.1423389611704}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:00+00","p50":410.84399471875,"p95":764.7363219285716,"p99":773.4497338869613}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:01+00","p50":415.41657381904764,"p95":737.5325494811408,"p99":748.9399632428275}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:02+00","p50":466.01099731944447,"p95":761.4918326233187,"p99":766.9979002530667}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:03+00","p50":420.8552623804714,"p95":755.2787398956343,"p99":762.4985182154425}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:04+00","p50":405.9713657708333,"p95":759.570963791907,"p99":772.0976435848588}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:05+00","p50":402.7055746527778,"p95":706.1553378323953,"p99":722.2648563290651}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:06+00","p50":603.9557779183502,"p95":882.9703191068454,"p99":896.0559822955025}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:07+00","p50":402.5235207282051,"p95":862.3186145463072,"p99":889.93196379501}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:08+00","p50":393.4791417612456,"p95":731.5256073816882,"p99":743.1763081727805}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:09+00","p50":421.79881482986116,"p95":742.14615406054,"p99":751.04443863171}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:10+00","p50":420.6259693653846,"p95":705.4855544442712,"p99":716.4504865600358}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:11+00","p50":424.8325983780864,"p95":716.2789417504985,"p99":723.4834368266775}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:12+00","p50":435.4987450416667,"p95":773.5136575421407,"p99":780.2459295902951}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:13+00","p50":397.34567678316324,"p95":728.7907058256036,"p99":737.519459765432}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:14+00","p50":404.8808237225,"p95":692.777211887369,"p99":700.265988128355}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:15+00","p50":410.788577341191,"p95":701.0943421127412,"p99":714.4601140642878}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:16+00","p50":411.32723394999994,"p95":687.8336204221143,"p99":700.6725694407385}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:17+00","p50":408.99720575303644,"p95":679.4106909582944,"p99":689.8313078634046}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:18+00","p50":420.90671505937917,"p95":696.2748467342478,"p99":709.5156723615902}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:19+00","p50":396.52008641176474,"p95":689.14304392858,"p99":696.0544223822286}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:20+00","p50":409.11422203,"p95":658.048629596464,"p99":667.2933994905724}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:21+00","p50":420.5113891553846,"p95":687.1677377225075,"p99":694.380941531006}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:22+00","p50":406.59691041124995,"p95":706.1960777471577,"p99":711.303240210816}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:23+00","p50":412.3075669327731,"p95":684.0290388795277,"p99":693.241049372172}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:24+00","p50":415.04967436617403,"p95":714.3118028306739,"p99":723.9417155101575}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:25+00","p50":550.6359299404432,"p95":718.7707048242565,"p99":728.2596685739746}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:26+00","p50":435.52909985114707,"p95":732.6213797765392,"p99":740.0437298251054}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:27+00","p50":402.13344296992483,"p95":710.5131414091744,"p99":726.6235718155953}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:28+00","p50":474.6721017916666,"p95":699.925626567794,"p99":707.1889199872609}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:29+00","p50":384.2069827687075,"p95":668.5948432548201,"p99":676.0194770475656}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:30+00","p50":412.5647846275,"p95":663.7107297831785,"p99":668.5755362201933}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:31+00","p50":407.8855693393818,"p95":676.9562713320016,"p99":687.5940798977341}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:32+00","p50":413.5626399730769,"p95":684.7764753432077,"p99":694.1630295202605}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:33+00","p50":409.66369116558445,"p95":683.7996788790921,"p99":689.077903628318}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:34+00","p50":372.45029607200007,"p95":717.1024892719398,"p99":729.5915745728115}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:35+00","p50":283.854023012755,"p95":654.0173563248285,"p99":675.8447505172043}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:36+00","p50":228.199990481118,"p95":625.1471177713042,"p99":634.5417552311715}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:37+00","p50":343.7394301213992,"p95":643.3884457395465,"p99":655.0087388927066}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:38+00","p50":370.30616374485595,"p95":614.9821599007743,"p99":620.0343778239428}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:39+00","p50":347.4672139655172,"p95":619.4346667558254,"p99":624.4213321331309}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:40+00","p50":372.59909436747495,"p95":606.0382469108029,"p99":622.4495622318841}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:41+00","p50":442.96595134989644,"p95":743.1566572614927,"p99":748.2620603947355}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:42+00","p50":371.69758059839995,"p95":603.7830400610445,"p99":608.7138792060418}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:43+00","p50":360.5478799744897,"p95":623.5477211780434,"p99":632.7596498567217}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:44+00","p50":376.95264344770413,"p95":573.689466427619,"p99":578.4262014759428}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:45+00","p50":397.75282972595284,"p95":572.1549721155669,"p99":578.7018986697082}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:46+00","p50":364.7357128252551,"p95":613.7408748421282,"p99":620.6733771638262}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:47+00","p50":358.09714828927537,"p95":622.191458574817,"p99":630.3467183918447}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:48+00","p50":382.4554115328,"p95":664.856074918337,"p99":675.0328361906207}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:49+00","p50":375.9703518077274,"p95":643.2956012472607,"p99":654.0688099045517}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:50+00","p50":425.386544896,"p95":592.2911675545159,"p99":605.1470735457043}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:51+00","p50":489.9446529338374,"p95":711.8262238083043,"p99":719.2038440433616}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:52+00","p50":459.93697411708996,"p95":704.239300320098,"p99":709.1139587590538}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:53+00","p50":365.85698195200007,"p95":647.4872552974532,"p99":657.4827430688334}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:54+00","p50":388.5069847892208,"p95":630.7325238001844,"p99":637.3880403778438}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:55+00","p50":419.01836264852614,"p95":752.4206307011402,"p99":792.6405464470555}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:56+00","p50":430.1625064453125,"p95":682.2026101071048,"p99":694.9236202583082}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:57+00","p50":432.8853055670034,"p95":680.3210663578649,"p99":691.0093505166683}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:58+00","p50":416.58995791587904,"p95":645.0579354559917,"p99":684.3778562265795}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:49:59+00","p50":418.5376514627926,"p95":827.8902854139619,"p99":836.5218520212316}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:00+00","p50":421.3051377208164,"p95":685.2291942709033,"p99":690.4942341890377}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:01+00","p50":452.24706221815114,"p95":588.1298611939612,"p99":593.5040999219483}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:02+00","p50":492.29989137499996,"p95":561.5653214087486,"p99":571.8263091848127}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:03+00","p50":489.75885080219786,"p95":548.676679153853,"p99":556.5360223434325}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:04+00","p50":497.8745409031065,"p95":544.6851644578139,"p99":560.2248442819322}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:05+00","p50":455.005084376734,"p95":532.6513155047435,"p99":539.1782925826661}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:06+00","p50":471.8711070784314,"p95":523.6144292166545,"p99":527.9102150556016}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:07+00","p50":475.6684936034043,"p95":538.5408071817833,"p99":554.3136487866366}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:08+00","p50":467.84446866666667,"p95":575.3951181532308,"p99":584.2008117071358}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:09+00","p50":483.77599231049464,"p95":716.9601926080331,"p99":738.7715975835289}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:10+00","p50":407.53128594619795,"p95":784.5176354622466,"p99":795.3790297865568}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:11+00","p50":386.58089762637354,"p95":613.4513847183345,"p99":624.38416028813}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:12+00","p50":415.75270722427985,"p95":617.5989623086884,"p99":625.0056494347009}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:13+00","p50":456.88584258093283,"p95":532.8469605844557,"p99":550.5269924744819}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:14+00","p50":458.7571697816667,"p95":524.7027316138111,"p99":534.4257825778341}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:15+00","p50":408.414303157828,"p95":560.9345056709991,"p99":564.6428887877922}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:16+00","p50":355.4627526747287,"p95":625.2451536126129,"p99":639.0737019252313}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:17+00","p50":376.02686017497666,"p95":592.039029793558,"p99":597.5785386275004}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:18+00","p50":360.4339312513733,"p95":638.4051154633739,"p99":644.9174099114705}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:19+00","p50":402.4932366642442,"p95":587.1922239152481,"p99":596.8850157460435}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:20+00","p50":339.4875431888,"p95":584.7793447289755,"p99":595.4732819799212}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:21+00","p50":360.1301634992993,"p95":608.2131779405853,"p99":612.3811162113724}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:22+00","p50":362.6070534592,"p95":623.389586216422,"p99":640.5476464675612}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:23+00","p50":389.492971963843,"p95":801.6569322353624,"p99":821.2886842968358}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:24+00","p50":384.83197409890107,"p95":787.157922307184,"p99":799.6211665164639}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:25+00","p50":412.5013164788462,"p95":650.8541302249788,"p99":662.3041114946258}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:26+00","p50":432.72368526879995,"p95":690.163423154622,"p99":697.9938324145056}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:27+00","p50":403.35415059602195,"p95":636.7729564404534,"p99":641.8302764846309}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:28+00","p50":362.52661583539094,"p95":657.4501476911913,"p99":666.0768459543287}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:29+00","p50":369.1248249978437,"p95":609.4057586098606,"p99":618.1865465091861}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:30+00","p50":365.356377839599,"p95":755.0509182986417,"p99":761.3410626697373}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:31+00","p50":365.0124088251028,"p95":636.9401989987583,"p99":642.6335300001899}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:32+00","p50":342.8897912445888,"p95":622.8535101833877,"p99":627.1928946555191}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:33+00","p50":348.45082306377554,"p95":613.1249073529467,"p99":626.9968191756367}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:34+00","p50":372.3294066874237,"p95":598.407435238691,"p99":605.3392929242073}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:35+00","p50":375.22492713296407,"p95":538.9610458027179,"p99":557.432847575857}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:36+00","p50":433.311659312049,"p95":528.364489958729,"p99":532.193407268551}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:37+00","p50":449.1878734861111,"p95":704.5159645699721,"p99":715.8511747609227}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:38+00","p50":360.3587457794157,"p95":643.2928279478427,"p99":712.205293690036}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:39+00","p50":348.3788961377551,"p95":640.9216019297016,"p99":645.3072949592598}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:40+00","p50":353.49914694238686,"p95":621.6028064393785,"p99":636.8406522121663}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:41+00","p50":373.3167136357142,"p95":570.0019849209796,"p99":573.7581773026569}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:42+00","p50":357.56970956071433,"p95":601.0993670590935,"p99":611.8615478315987}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:43+00","p50":346.90371787662343,"p95":623.8681150172232,"p99":636.5749566754863}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:44+00","p50":349.3732869132883,"p95":596.8119444327375,"p99":600.9540392173474}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:45+00","p50":374.78892053846164,"p95":575.9818225168664,"p99":583.7270876409517}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:46+00","p50":345.8713620841466,"p95":596.5350100201861,"p99":603.3445251167043}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:47+00","p50":332.87316409136724,"p95":609.8015500667195,"p99":614.2479382538163}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:48+00","p50":356.7742658069498,"p95":622.6198995116966,"p99":627.6185368149004}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:49+00","p50":367.2529607624224,"p95":588.0421102113482,"p99":606.2699005604563}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:50+00","p50":383.26963749652776,"p95":747.2060991746678,"p99":771.0356866865832}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:51+00","p50":385.21009446880004,"p95":781.9330828095312,"p99":788.9278110613296}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:52+00","p50":416.4767072585522,"p95":611.7101305110978,"p99":617.7196325104279}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:53+00","p50":385.5045756047619,"p95":577.7149616069698,"p99":583.3101596800002}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:54+00","p50":381.0876974738501,"p95":614.5928472955281,"p99":624.2782485847113}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:55+00","p50":368.74362815384615,"p95":609.7233401324729,"p99":623.6787107992614}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:56+00","p50":422.29352957500004,"p95":708.2417862980911,"p99":735.3426397477824}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:57+00","p50":386.01071919748523,"p95":677.7615183618117,"p99":686.7920626195282}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:58+00","p50":407.3174838275862,"p95":554.6910483694928,"p99":579.1602405119359}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:50:59+00","p50":438.6231846927083,"p95":532.5737698967428,"p99":539.9698709620852}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:00+00","p50":428.97383684166664,"p95":547.8944812838633,"p99":551.3247466169955}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:01+00","p50":444.2833721041666,"p95":731.0742241239658,"p99":738.3359239254429}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:02+00","p50":370.3705239948347,"p95":591.2026930531902,"p99":730.9656601837193}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:03+00","p50":352.04607326112904,"p95":603.8700184627457,"p99":610.2750540140328}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:04+00","p50":339.49542862121217,"p95":771.6459411170196,"p99":791.3737546773045}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:05+00","p50":371.82738073214284,"p95":769.8806482653571,"p99":778.1739162617818}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:06+00","p50":356.5057894672269,"p95":611.9300986130737,"p99":618.9226640695754}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:07+00","p50":341.18530891676573,"p95":613.37846476256,"p99":630.6470278822236}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:08+00","p50":377.62977518783066,"p95":600.9564006724934,"p99":606.0066757214088}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:09+00","p50":400.06201106818185,"p95":588.9921278127359,"p99":597.6219048073037}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:10+00","p50":469.6124728501276,"p95":507.8713022845163,"p99":512.2391160591155}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:11+00","p50":465.3915782011966,"p95":508.5869999165645,"p99":513.0594066214951}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:12+00","p50":462.35022011764704,"p95":538.7994547087422,"p99":545.4097272502327}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:13+00","p50":453.65880751785716,"p95":516.1190879170532,"p99":520.8977409879834}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:14+00","p50":417.9012554795918,"p95":557.4726026769633,"p99":561.0861971045294}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:15+00","p50":404.88177406700856,"p95":586.764306585883,"p99":604.438477984477}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:16+00","p50":388.2280703899999,"p95":596.2949647427317,"p99":602.7544623026857}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:17+00","p50":367.10503423299235,"p95":622.4129193282848,"p99":630.9093686193967}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:18+00","p50":473.7472404122807,"p95":883.5598795878536,"p99":888.337911482343}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:19+00","p50":412.3995760147657,"p95":707.0983933417726,"p99":722.1561369373877}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:20+00","p50":402.4538933333333,"p95":658.4392603642766,"p99":664.7490158447865}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:21+00","p50":598.2525035470086,"p95":719.0397146329078,"p99":723.4454094811298}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:22+00","p50":525.8519025381945,"p95":695.5202750158933,"p99":708.4994033057125}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:23+00","p50":462.3782369373085,"p95":625.4916643704968,"p99":632.2910380481025}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:24+00","p50":379.417122388986,"p95":678.4516896246773,"p99":697.153082430985}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:25+00","p50":400.450619127601,"p95":671.869069295031,"p99":676.716201042439}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:26+00","p50":455.5205367051091,"p95":731.9166373745966,"p99":743.4956424242522}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:27+00","p50":416.37770459979754,"p95":708.9723608958608,"p99":717.6966751609726}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:28+00","p50":410.63015204212854,"p95":708.831857154851,"p99":717.1280823339698}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:29+00","p50":440.64005200021853,"p95":625.5249167863112,"p99":657.84483175196}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:30+00","p50":445.01255220221606,"p95":564.4336190548449,"p99":570.4892565588441}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:31+00","p50":398.1348405102975,"p95":672.937984109596,"p99":686.0778438709597}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:32+00","p50":425.3150955138462,"p95":780.3791668114394,"p99":785.2051680906916}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:33+00","p50":394.23512121088424,"p95":811.3280014119114,"p99":816.0192819123373}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:34+00","p50":417.21185435999996,"p95":833.6738196784024,"p99":843.961383004479}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:35+00","p50":478.0564773195266,"p95":577.5856883993237,"p99":587.9627369951706}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:36+00","p50":465.5578047019323,"p95":587.418898572271,"p99":593.8787683069947}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:37+00","p50":421.8139999101852,"p95":595.0740281829999,"p99":599.7325618613144}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:38+00","p50":384.5595757693548,"p95":684.1259072964981,"p99":696.8635033723716}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:39+00","p50":406.800125125,"p95":693.3090683629177,"p99":708.1508995154521}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:40+00","p50":369.6137988088975,"p95":687.7424862741206,"p99":703.2106915179589}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:41+00","p50":374.30102730328815,"p95":631.9047757410954,"p99":644.2292020367616}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:42+00","p50":372.2715728284023,"p95":655.4377074018795,"p99":661.85242508289}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:43+00","p50":358.9827671530612,"p95":639.4918758388802,"p99":652.8116377957891}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:44+00","p50":395.4490450133136,"p95":633.4140875866071,"p99":645.4730888888424}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:45+00","p50":443.510389592711,"p95":663.4555903849742,"p99":669.0866838478254}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:46+00","p50":374.11618639273235,"p95":636.4176351861709,"p99":653.166355654519}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:47+00","p50":403.08515472319993,"p95":611.009638203096,"p99":622.3788845307844}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:48+00","p50":395.5242461388889,"p95":863.4966024185178,"p99":870.9960908577087}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:49+00","p50":382.04343696800004,"p95":678.8660665771786,"p99":687.0687892165099}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:50+00","p50":378.3448406249999,"p95":664.7654633614364,"p99":669.8300200358219}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:51+00","p50":392.9853373117761,"p95":685.1706183667212,"p99":694.748059358522}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:52+00","p50":422.38154359199996,"p95":686.1398069218685,"p99":704.5876044317861}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:53+00","p50":417.3495001096667,"p95":634.4525951371139,"p99":643.8174067770236}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:54+00","p50":482.88150330606067,"p95":678.7300956813724,"p99":684.5747324147272}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:55+00","p50":465.68952853825914,"p95":614.91557734119,"p99":628.8289935754028}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:56+00","p50":520.8761767394958,"p95":731.3535124604737,"p99":744.4433378233707}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:57+00","p50":445.9754837881944,"p95":683.9369895756907,"p99":689.6404164612092}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:58+00","p50":446.54599991666663,"p95":666.4240210925274,"p99":675.1943436964067}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:51:59+00","p50":452.08607134375,"p95":570.7820723958048,"p99":574.3075128966129}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:00+00","p50":418.13952315135134,"p95":581.8387637917692,"p99":589.0830006667024}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:01+00","p50":405.02116921119995,"p95":605.472942482645,"p99":612.2958597429852}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:02+00","p50":409.54392618137257,"p95":679.9712996029536,"p99":686.2727312252081}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:03+00","p50":493.22685321481475,"p95":934.1493669128434,"p99":951.3018140389062}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:04+00","p50":374.9218868502564,"p95":636.9359168552304,"p99":714.8766348354679}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:05+00","p50":357.73509516542833,"p95":594.1236690621718,"p99":601.8233755845675}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:06+00","p50":385.1197415457071,"p95":575.3490096624965,"p99":581.8756687547401}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:07+00","p50":357.2927178761688,"p95":567.5443225154715,"p99":594.8088705652061}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:08+00","p50":342.6088031269841,"p95":693.3756196960678,"p99":756.171762371769}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:09+00","p50":164.274631500821,"p95":474.7572392383728,"p99":505.73527372643144}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:10+00","p50":255.5011276847196,"p95":588.1954560547108,"p99":637.1430391830091}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:11+00","p50":301.1834004927083,"p95":761.8532123774597,"p99":834.3536907588781}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:12+00","p50":251.23248290045248,"p95":635.4677202939808,"p99":654.3610577415475}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:13+00","p50":244.07354622235434,"p95":662.1529033688068,"p99":678.9184336156438}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:14+00","p50":300.03227843999997,"p95":777.3799199541058,"p99":831.4321709016666}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:15+00","p50":126.34014755176534,"p95":464.4302259185243,"p99":663.7810136536917}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:16+00","p50":155.4125526722153,"p95":440.7519443465454,"p99":472.49471414904906}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:17+00","p50":396.857280410124,"p95":637.2544978755471,"p99":678.2911184449491}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:18+00","p50":195.00826330873312,"p95":552.4894607225327,"p99":635.5806166694384}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:19+00","p50":263.9401334471879,"p95":351.2534324163608,"p99":368.8502524036613}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:20+00","p50":286.6611157494824,"p95":428.77245018209567,"p99":492.6384062530812}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:21+00","p50":176.67858865156796,"p95":447.70365700823646,"p99":510.7445058338642}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:22+00","p50":163.08070574898989,"p95":266.02626973784004,"p99":306.99897413412623}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:23+00","p50":214.14509651277137,"p95":462.3455325004555,"p99":505.51126746284626}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:24+00","p50":257.8253682568,"p95":612.4873631391632,"p99":619.9281115673249}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:25+00","p50":362.7117153703703,"p95":627.6623020161541,"p99":633.7193049835988}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:26+00","p50":404.4138936936,"p95":660.2189380065778,"p99":676.5585505878367}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:27+00","p50":361.5943798171653,"p95":660.9586459241847,"p99":667.9959168182934}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:28+00","p50":363.35087883298263,"p95":626.7875418584379,"p99":632.035047176714}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:29+00","p50":365.38408870020226,"p95":618.9002705755073,"p99":629.6239317327271}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:30+00","p50":380.10578646924813,"p95":726.6445653426207,"p99":742.2880040484048}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:31+00","p50":377.2878279600001,"p95":768.9167348360896,"p99":786.6005625172917}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:32+00","p50":347.4075065749761,"p95":625.9266753254818,"p99":636.7086272154684}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:33+00","p50":359.96400332080003,"p95":623.8085246868693,"p99":628.8405018270073}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:34+00","p50":396.9040130161702,"p95":680.4320052316542,"p99":687.2059590439226}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:35+00","p50":375.3446913357227,"p95":602.0119405320027,"p99":617.613106475734}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:36+00","p50":370.7746549230769,"p95":610.5042268945297,"p99":617.1611862451742}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:37+00","p50":342.71319194382977,"p95":621.4797224856018,"p99":626.0313314140433}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:38+00","p50":355.74100981242236,"p95":647.4644474769898,"p99":668.4408809828594}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:39+00","p50":375.17325135972817,"p95":603.8964705429031,"p99":610.8943889449291}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:40+00","p50":382.0582485484163,"p95":631.4683007437576,"p99":641.9588050748137}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:41+00","p50":369.0162769695999,"p95":630.6992709493747,"p99":640.2285279046243}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:42+00","p50":351.4925819392,"p95":617.0336495186227,"p99":638.2860098500935}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:43+00","p50":285.6001157316738,"p95":610.4324939255001,"p99":615.2426353728499}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:44+00","p50":322.30777599338376,"p95":785.2269342387959,"p99":793.4643356911257}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:45+00","p50":349.8626594226659,"p95":630.5552253217204,"p99":637.3865722996599}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:46+00","p50":338.3902687866515,"p95":613.3403546781292,"p99":622.2850355860581}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:47+00","p50":329.20043878666667,"p95":630.7322607952085,"p99":636.014993685452}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:48+00","p50":307.3182582095442,"p95":661.0490589558112,"p99":667.0619627316141}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:49+00","p50":355.53915351265925,"p95":636.8142857547188,"p99":647.5494135579846}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:50+00","p50":356.38252284479995,"p95":634.7825503678318,"p99":643.0242592849719}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:51+00","p50":356.6316700256411,"p95":663.9519691298738,"p99":670.4871114375591}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:52+00","p50":349.2092897708333,"p95":663.2086453174261,"p99":668.8362132572612}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:53+00","p50":338.6763881048889,"p95":668.9006435058178,"p99":677.966159503477}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:54+00","p50":351.87312590689027,"p95":653.0851346078426,"p99":657.7467503982956}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:55+00","p50":332.9488453248,"p95":645.5752964984646,"p99":658.1544685905751}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:56+00","p50":369.78285532341465,"p95":692.5060559667758,"p99":701.1046231800774}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:57+00","p50":356.79106254166663,"p95":677.1752809707662,"p99":680.5580656843603}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:58+00","p50":320.432187298,"p95":781.1398428529683,"p99":786.3505499954185}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:52:59+00","p50":329.156786433432,"p95":626.5256524481316,"p99":640.7170072422556}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:00+00","p50":328.8153335326388,"p95":626.409337027074,"p99":635.6224405160048}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:01+00","p50":332.85542062193366,"p95":605.4878439803398,"p99":621.1739930662453}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:02+00","p50":309.6742276313912,"p95":638.1285552234777,"p99":650.2090760276666}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:03+00","p50":313.3502051594203,"p95":607.7836876136743,"p99":617.244895795074}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:04+00","p50":325.77003914005377,"p95":662.3678224945129,"p99":667.8322137970546}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:05+00","p50":318.3702340357143,"p95":663.5431215109098,"p99":678.4491160045898}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:06+00","p50":315.25020473543395,"p95":638.4336660928927,"p99":655.2059054488805}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:07+00","p50":301.0933725952382,"p95":634.6598086210747,"p99":647.0606034084377}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:08+00","p50":318.3032956826923,"p95":683.3647817434493,"p99":687.9348285562647}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:09+00","p50":331.66922423529405,"p95":663.8678781628323,"p99":669.016371442879}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:10+00","p50":321.26857333125,"p95":643.691318744505,"p99":649.358272380354}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:11+00","p50":348.6460315931911,"p95":819.9454270889114,"p99":837.6328219895953}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:12+00","p50":310.7112166172619,"p95":815.2995748503038,"p99":843.001807831867}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:13+00","p50":298.3131429881448,"p95":636.0441370744395,"p99":643.8477532160954}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:14+00","p50":310.03954834951156,"p95":637.2070634947132,"p99":656.7840341436945}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:15+00","p50":294.91974056853337,"p95":606.091997160328,"p99":612.395805462838}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:16+00","p50":303.25969799682036,"p95":615.8764175661828,"p99":621.6841779629956}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:17+00","p50":295.5506302640306,"p95":649.7997413311195,"p99":663.1509075583609}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:18+00","p50":296.90483919999997,"p95":652.9598375887939,"p99":660.4511199634256}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:19+00","p50":299.23584535297624,"p95":632.6199377873718,"p99":636.5717473390979}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:20+00","p50":299.4118923051021,"p95":637.2818326454079,"p99":650.814083588255}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:21+00","p50":312.7747940887574,"p95":686.4318958643673,"p99":702.6907062311808}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:22+00","p50":264.12437636263735,"p95":700.9194072800915,"p99":709.2881517662963}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:23+00","p50":290.821740178726,"p95":666.0563433013799,"p99":674.0873617480472}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:24+00","p50":303.2561826384,"p95":690.8693138778905,"p99":696.2771982186091}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:25+00","p50":351.81318538642654,"p95":936.406513003771,"p99":949.3505965263339}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:26+00","p50":319.33129211465507,"p95":731.5330931474365,"p99":961.226134281539}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:27+00","p50":303.6451651555556,"p95":690.5479372066707,"p99":696.8915747376066}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:28+00","p50":323.51722734027777,"p95":681.3859653282356,"p99":685.3632883283954}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:29+00","p50":298.15773897325096,"p95":647.1526161497069,"p99":656.1373772377183}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:30+00","p50":305.572436173913,"p95":655.8304550115962,"p99":668.4998585991116}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:31+00","p50":297.06561033509155,"p95":642.9820389538041,"p99":647.8591559138214}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:32+00","p50":292.6476819622078,"p95":643.3949921836866,"p99":651.0039663210882}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:33+00","p50":292.88619784879035,"p95":612.1451386576246,"p99":627.832207408565}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:34+00","p50":304.4478905206349,"p95":640.3877508255373,"p99":645.1248536675301}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:35+00","p50":300.6705247854545,"p95":679.9338071744055,"p99":688.3793757144471}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:36+00","p50":282.42214934693874,"p95":647.2805326941217,"p99":685.3124483070312}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:37+00","p50":263.85116531520003,"p95":615.0436495332355,"p99":623.8560762490455}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:38+00","p50":296.46612922559177,"p95":696.1862251666557,"p99":702.0301262851709}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:39+00","p50":319.58374738888887,"p95":843.3647878001722,"p99":861.9868619975499}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:40+00","p50":302.62902569078955,"p95":818.8502470660511,"p99":830.2112044227189}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:41+00","p50":309.8049117476923,"p95":687.334147928736,"p99":699.113329749843}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:42+00","p50":313.0739105504202,"p95":713.0917765917924,"p99":717.8062390625516}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:43+00","p50":300.4779708380342,"p95":689.3546673757392,"p99":693.2867748922246}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:44+00","p50":281.16354708824406,"p95":656.2379988605295,"p99":665.8852016420578}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:45+00","p50":280.5616689768889,"p95":639.9132649943256,"p99":644.6847547653447}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:46+00","p50":266.361508154321,"p95":672.8594011896118,"p99":689.9105531431943}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:47+00","p50":279.92702474720005,"p95":658.1996494244787,"p99":675.236689083622}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:48+00","p50":291.42704209171603,"p95":694.0865137496633,"p99":702.3238066020883}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:49+00","p50":287.39434861224487,"p95":682.1183832908195,"p99":691.5131418065803}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:50+00","p50":291.0341432905983,"p95":699.0299344247107,"p99":722.9502988323719}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:51+00","p50":290.3077052477811,"p95":665.9200186653989,"p99":691.2419730130747}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:52+00","p50":289.64802978630195,"p95":671.5918464115982,"p99":677.0420445862854}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:53+00","p50":275.56653485,"p95":668.2699517022523,"p99":684.7573509427801}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:54+00","p50":297.1023152942386,"p95":715.5816342824744,"p99":721.3246603464507}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:55+00","p50":289.62048778498604,"p95":647.7767691140784,"p99":661.2631727436885}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:56+00","p50":294.0458508848001,"p95":722.7601232487775,"p99":738.9325955041343}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:57+00","p50":284.17493866442584,"p95":693.6386176826015,"p99":706.0548224236105}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:58+00","p50":282.61690152666677,"p95":698.9903217245018,"p99":703.3532038255767}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:53:59+00","p50":285.2980837516991,"p95":662.4802889536685,"p99":667.3059553139794}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:00+00","p50":283.571914424,"p95":670.42912501643,"p99":676.9185654580272}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:01+00","p50":292.9302036988304,"p95":673.8804127000661,"p99":681.8145599218227}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:02+00","p50":282.2703726693742,"p95":690.8990538964705,"p99":703.7295584679285}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:03+00","p50":280.0802174979424,"p95":685.1101699794355,"p99":694.0205898866071}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:04+00","p50":277.46401249599995,"p95":655.5665967746236,"p99":662.1209854829482}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:05+00","p50":272.9045880272,"p95":663.9712726511856,"p99":675.7449514218553}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:06+00","p50":287.6282553353909,"p95":679.388089252062,"p99":695.6612493125804}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:07+00","p50":262.6406955803571,"p95":638.8424688755766,"p99":649.3238526811122}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:08+00","p50":295.8836518543956,"p95":693.7499185591283,"p99":702.0300513304205}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:09+00","p50":274.0410787394694,"p95":667.9172125909963,"p99":678.1473233969523}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:10+00","p50":269.77943247160493,"p95":672.0414363366071,"p99":677.4842293049255}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:11+00","p50":272.23194673533163,"p95":664.0070718566487,"p99":672.1771786204057}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:12+00","p50":259.4638945079051,"p95":665.4851705760117,"p99":670.2403764485686}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:13+00","p50":243.76441329033187,"p95":658.0080070990135,"p99":664.3569611031443}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:14+00","p50":264.41482071933655,"p95":640.9894626976096,"p99":647.6222632399524}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:15+00","p50":242.31905302234847,"p95":624.7477457150846,"p99":636.2856108117535}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:16+00","p50":262.8225203980548,"p95":622.7520511943692,"p99":629.6073372544602}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:17+00","p50":270.7257813264746,"p95":671.5792752259343,"p99":680.0005540703684}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:18+00","p50":273.0466552163743,"p95":702.2551194857155,"p99":710.5093586101434}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:19+00","p50":262.64552123182443,"p95":665.5621630095869,"p99":672.5648912502667}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:20+00","p50":268.09675005710164,"p95":642.5712108394072,"p99":655.0510840565609}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:21+00","p50":318.6219786190476,"p95":793.8495922908361,"p99":813.6266728253286}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:22+00","p50":351.07352785941043,"p95":846.0802414828537,"p99":858.4029383038148}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:23+00","p50":287.2998321712,"p95":768.6478425095518,"p99":803.8408422806278}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:24+00","p50":275.2570886153191,"p95":705.0033462655473,"p99":715.5233667560323}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:25+00","p50":279.5222225295858,"p95":678.1155322757082,"p99":700.557279490558}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:26+00","p50":307.8247607977315,"p95":771.3450923635511,"p99":781.8084637635963}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:27+00","p50":274.03487122989515,"p95":721.5225230402683,"p99":732.0983889731456}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:28+00","p50":292.2846523744,"p95":745.3726260759754,"p99":750.8578240255183}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:29+00","p50":272.225401954142,"p95":683.5298947183196,"p99":688.8700566241619}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:30+00","p50":270.92377943909463,"p95":640.0135102387355,"p99":653.9840734500049}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:31+00","p50":250.2492111789941,"p95":633.6156162294865,"p99":639.8015166451185}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:32+00","p50":246.28922130500004,"p95":625.1218177236534,"p99":635.1986205668351}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:33+00","p50":238.7422096598865,"p95":639.8887803416238,"p99":654.0826766549405}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:34+00","p50":246.27259926738878,"p95":613.7584682597028,"p99":617.89009266799}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:35+00","p50":247.95113328249155,"p95":636.0299732694082,"p99":653.6369440095942}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:36+00","p50":242.32258594463767,"p95":655.349893067326,"p99":682.7039280331256}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:37+00","p50":239.9111089553333,"p95":681.0343292542955,"p99":689.9018559273668}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:38+00","p50":243.8699973807398,"p95":633.8326593166854,"p99":639.2036816555584}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:39+00","p50":238.82185397222221,"p95":639.2467795113897,"p99":649.595518381766}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:40+00","p50":241.73935877504107,"p95":624.3212632302875,"p99":631.7395465323078}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:41+00","p50":238.35479853210464,"p95":641.9266069387892,"p99":664.3314986847726}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:42+00","p50":234.78879448632577,"p95":671.112694058261,"p99":688.3151707763683}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:43+00","p50":231.4698275974663,"p95":654.1892065084556,"p99":660.8917181047884}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:44+00","p50":242.54090641545218,"p95":642.1412865293581,"p99":649.6031418724416}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:45+00","p50":241.28275902923076,"p95":682.8164110527035,"p99":692.3135558791889}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:46+00","p50":237.0770091914329,"p95":666.5249303754576,"p99":689.0999907000663}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:47+00","p50":240.64463510499996,"p95":662.9252172387578,"p99":668.4643593951571}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:48+00","p50":238.0080571478167,"p95":686.2493926558727,"p99":707.9315894053622}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:49+00","p50":247.1695555204082,"p95":749.2801544876793,"p99":755.3653963422298}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:50+00","p50":243.5687278525036,"p95":676.965571696419,"p99":687.6871071086476}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:51+00","p50":249.14525932005498,"p95":721.1249923870673,"p99":736.0123024452805}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:52+00","p50":238.9201514833333,"p95":703.162220618004,"p99":709.0099134603381}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:53+00","p50":242.849972628,"p95":721.764883288584,"p99":747.7929210711366}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:54+00","p50":232.7721265178571,"p95":772.5907327866541,"p99":796.9833656082537}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:55+00","p50":256.4294420121795,"p95":698.487584675351,"p99":712.396876590846}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:56+00","p50":274.089313602071,"p95":826.6122733176485,"p99":835.898947620243}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:57+00","p50":292.36599254640004,"p95":817.6060353836177,"p99":831.5225533782772}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:58+00","p50":258.4740387639715,"p95":771.9142958157206,"p99":782.1315777711926}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:54:59+00","p50":242.12705497711366,"p95":691.4840919884089,"p99":704.3464223648309}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:00+00","p50":232.97405207333335,"p95":701.8029744946218,"p99":721.5540898158315}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:01+00","p50":244.82735258986017,"p95":695.2966150903005,"p99":702.0943572690699}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:02+00","p50":248.4652205379932,"p95":726.7178498503798,"p99":742.1682170352701}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:03+00","p50":229.32590207166666,"p95":709.9264097962136,"p99":732.527628929032}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:04+00","p50":243.47572288333333,"p95":711.7839882213822,"p99":722.4893102523118}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:05+00","p50":247.08061551055124,"p95":702.7643541701316,"p99":712.3316519410257}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:06+00","p50":237.03117753333333,"p95":692.0418170862577,"p99":705.0981327885218}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:07+00","p50":249.9135775679293,"p95":772.2929395932864,"p99":781.731680622897}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:08+00","p50":243.5706487121053,"p95":768.5529959067401,"p99":782.4497198986277}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:09+00","p50":244.37127118656056,"p95":719.4867558109702,"p99":729.2180710528072}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:10+00","p50":251.9824111158217,"p95":738.6562266913782,"p99":754.9880389892362}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:11+00","p50":262.14502351785717,"p95":743.8834328082988,"p99":757.2525385716966}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:12+00","p50":264.452808815126,"p95":765.3046968813628,"p99":775.9489665570092}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:13+00","p50":255.74714583035717,"p95":763.0658507349609,"p99":768.649354729896}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:14+00","p50":243.1528526190476,"p95":761.1304856794345,"p99":775.0081769723434}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:15+00","p50":261.94032211209054,"p95":800.5162115905329,"p99":809.1471898139939}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:16+00","p50":250.99279472093025,"p95":761.6495503668931,"p99":790.674611022946}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:17+00","p50":224.9328364084423,"p95":756.0531455814463,"p99":777.9395171602923}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:18+00","p50":252.45311942361113,"p95":764.9938522369454,"p99":774.5727910088247}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:19+00","p50":247.09727205555555,"p95":751.4514608371553,"p99":758.4908630765798}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:20+00","p50":235.7388346140056,"p95":721.4527893256536,"p99":733.1931677769236}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:21+00","p50":250.16639446551724,"p95":730.5955149651177,"p99":737.7045854336993}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:22+00","p50":252.84084534324325,"p95":734.4346385985481,"p99":742.6080628574495}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:23+00","p50":240.35358650522645,"p95":711.9069209488265,"p99":723.2774345165004}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:24+00","p50":250.3239189463709,"p95":737.4804686358243,"p99":751.7088402050593}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:25+00","p50":244.5364812688,"p95":749.7515964322056,"p99":764.9318111497946}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:26+00","p50":259.81013830019987,"p95":831.4412302978195,"p99":845.1024340798117}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:27+00","p50":255.15114776000001,"p95":812.9676785565771,"p99":821.3279261162941}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:28+00","p50":275.3796407390476,"p95":878.8695568276495,"p99":885.3851973887414}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:29+00","p50":279.4027654046639,"p95":825.637755314743,"p99":844.8376435073235}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:30+00","p50":245.74855809770116,"p95":712.0954913423433,"p99":724.7946684734795}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:31+00","p50":253.46724091759998,"p95":734.0042748735713,"p99":738.8637176973417}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:32+00","p50":255.92581115204425,"p95":728.3988044658856,"p99":737.6780319995992}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:33+00","p50":250.42883529591836,"p95":724.7984553125199,"p99":732.370983261198}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:34+00","p50":260.4380270095999,"p95":718.6143731128219,"p99":724.6715958288457}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:35+00","p50":201.33019831914893,"p95":752.5778907369753,"p99":769.7572387384106}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:36+00","p50":169.20643144570707,"p95":730.5435508545249,"p99":782.7229349845966}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:37+00","p50":183.05674777777782,"p95":724.1677655350303,"p99":742.4839430966168}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:38+00","p50":158.56625155555557,"p95":766.3065459049078,"p99":777.3544557038597}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:39+00","p50":485.0751572298137,"p95":677.0424665374495,"p99":759.1486301941786}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:40+00","p50":201.3733420920635,"p95":836.9592618539845,"p99":846.7103280634542}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:41+00","p50":232.39705721521992,"p95":862.2756585942573,"p99":877.758485503507}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:42+00","p50":128.2625035855227,"p95":895.2264001792801,"p99":900.292680323524}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:43+00","p50":226.5870678980843,"p95":898.5049960998175,"p99":906.6912407893841}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:44+00","p50":262.7600405711111,"p95":832.2745774361233,"p99":849.2510660361518}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:45+00","p50":84.549608028,"p95":777.9105285699915,"p99":798.0791236794763}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:46+00","p50":350.6869881555555,"p95":698.6492300859114,"p99":709.1626367998631}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:47+00","p50":116.99418901984129,"p95":615.4465244944244,"p99":623.0617059646535}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:48+00","p50":499.84596038165677,"p95":707.1909228488768,"p99":713.6849456412924}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:49+00","p50":318.1893151428571,"p95":826.7673550655554,"p99":847.2425123798881}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:50+00","p50":204.4552942547619,"p95":878.5898380204894,"p99":904.5446883332165}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:51+00","p50":292.54369039583327,"p95":1063.051127271449,"p99":1089.80124037696}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:52+00","p50":215.86772523918367,"p95":1139.9798625612364,"p99":1151.461168179974}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:53+00","p50":121.0732930801347,"p95":988.1247487201446,"p99":1061.9745296637977}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:54+00","p50":165.4251362172549,"p95":928.4294835343946,"p99":942.6991447938342}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:55+00","p50":211.54403094618056,"p95":866.8777721974446,"p99":876.0741287995039}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:56+00","p50":148.39759754547617,"p95":1021.2213105553435,"p99":1040.6437717656609}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:57+00","p50":202.440413042906,"p95":1032.3409208176577,"p99":1063.3210063817955}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:58+00","p50":126.1553333929845,"p95":952.7591246429703,"p99":959.3141497077312}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:55:59+00","p50":106.04003464074076,"p95":912.8526685361825,"p99":931.6941608565618}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:00+00","p50":175.20829748903174,"p95":902.5486815882707,"p99":921.7826411930952}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:01+00","p50":123.46824211458333,"p95":913.9455413368282,"p99":946.1337241536828}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:02+00","p50":99.97574845833333,"p95":895.5412103050807,"p99":918.4313967901328}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:03+00","p50":119.80208308584808,"p95":896.4513558697473,"p99":913.2645265252166}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:04+00","p50":136.08803774999998,"p95":890.009967151612,"p99":902.0250404852159}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:05+00","p50":113.95570694711539,"p95":823.8663076288238,"p99":846.5872217292182}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:06+00","p50":258.37817738327266,"p95":853.3923024078364,"p99":870.9319858717784}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:07+00","p50":72.19650545777777,"p95":849.4139139104005,"p99":875.0250962306997}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:08+00","p50":161.45053325079363,"p95":919.9695436057938,"p99":927.0848874578335}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:09+00","p50":200.71569911760355,"p95":1004.786501879834,"p99":1012.6923325638595}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:10+00","p50":192.25228730500456,"p95":982.7831853085806,"p99":1003.2136844006201}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:11+00","p50":190.42256489002693,"p95":889.4916020107272,"p99":906.7136873276917}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:12+00","p50":180.53186151909722,"p95":946.1449973251665,"p99":959.1240089580954}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:13+00","p50":104.36899926020409,"p95":969.4872270957368,"p99":996.1314499955076}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:14+00","p50":183.29227608486983,"p95":945.2271272888844,"p99":993.2516379678341}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:15+00","p50":176.37477620889894,"p95":936.0834071160306,"p99":967.4712838606898}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:16+00","p50":186.42903416409038,"p95":916.8379949791525,"p99":928.6747990717902}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:17+00","p50":156.57689333179488,"p95":871.2586082098647,"p99":887.7203504018418}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:18+00","p50":114.64162365451388,"p95":895.2971975759209,"p99":903.0477690164037}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:19+00","p50":235.04740077333332,"p95":872.8779647409461,"p99":889.7656913739562}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:20+00","p50":153.74384801754388,"p95":843.9760518628112,"p99":852.5872082839335}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:21+00","p50":152.23202133854167,"p95":955.1071589400915,"p99":962.5511349698356}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:22+00","p50":126.83337179833332,"p95":909.9633355668569,"p99":923.81586669412}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:23+00","p50":158.1827645,"p95":888.7884191575698,"p99":895.8356720055508}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:24+00","p50":132.48452823305593,"p95":921.8749021593354,"p99":939.1610657758614}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:25+00","p50":121.51101007747747,"p95":849.422576869619,"p99":872.3421843770702}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:26+00","p50":116.48542109270834,"p95":997.8603419677481,"p99":1017.5134794563093}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:27+00","p50":165.8858623706235,"p95":964.9446332949128,"p99":980.6782928025386}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:28+00","p50":168.84646393124999,"p95":880.7891151854892,"p99":895.442993368261}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:29+00","p50":138.04189809602042,"p95":888.5264704938068,"p99":911.4266876194215}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:30+00","p50":109.6970434037461,"p95":872.5494232015429,"p99":892.2464995572557}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:31+00","p50":134.31282517701152,"p95":870.289858334569,"p99":883.4895910759373}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:32+00","p50":152.40456505381945,"p95":860.0831595744012,"p99":867.8893086808172}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:33+00","p50":246.33952829737729,"p95":785.8311239026597,"p99":808.1832017985204}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:34+00","p50":124.7573568802297,"p95":849.61527544969,"p99":856.7323384005792}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:35+00","p50":179.17429046191407,"p95":808.104439822826,"p99":816.7052037120468}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:36+00","p50":151.33991941434422,"p95":817.3983090804626,"p99":840.6604697154046}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:37+00","p50":122.39671626583335,"p95":842.4354749725806,"p99":851.0335445852234}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:38+00","p50":183.35875861830064,"p95":873.9560709972175,"p99":896.2622264609871}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:39+00","p50":171.60858856770835,"p95":886.9345350021864,"p99":898.9414649667574}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:40+00","p50":117.65405300676376,"p95":826.1091767647613,"p99":838.5779546571117}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:41+00","p50":250.26664968761906,"p95":886.4128486206162,"p99":895.130060287492}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:42+00","p50":116.53911178472224,"p95":870.8469275792831,"p99":884.6443679268099}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:43+00","p50":133.97024570814816,"p95":866.175323951934,"p99":876.7401782512936}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:44+00","p50":211.89453912666664,"p95":871.0439476787909,"p99":879.2490609106138}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:45+00","p50":165.48187257772713,"p95":858.5737040917704,"p99":875.2543664990842}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:46+00","p50":190.08682299002447,"p95":870.6147952286188,"p99":877.347770909992}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:47+00","p50":157.52544811215304,"p95":824.7689720100651,"p99":846.0025277634237}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:48+00","p50":143.09608598000003,"p95":884.9612304658546,"p99":916.741796155164}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:49+00","p50":164.6824527998047,"p95":845.8190653579314,"p99":855.5177646531343}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:50+00","p50":180.08528551300816,"p95":795.4304536331525,"p99":822.7067233357036}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:51+00","p50":155.5996369375,"p95":826.8112501900187,"p99":846.7379960078048}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:52+00","p50":197.06135132823619,"p95":833.4034900426662,"p99":843.5824958454839}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:53+00","p50":160.95806635652278,"p95":825.121729910877,"p99":836.7425346373199}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:54+00","p50":190.7185328839286,"p95":951.2571217422601,"p99":963.5951839026613}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:55+00","p50":191.6159233537415,"p95":881.0169029542449,"p99":896.757137292236}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:56+00","p50":202.76030510559997,"p95":978.8576153465106,"p99":987.2800546537131}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:57+00","p50":177.64472133928572,"p95":983.7039414734202,"p99":991.7613911467065}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:58+00","p50":197.72491880999996,"p95":958.7936988208291,"p99":965.8986660894025}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:56:59+00","p50":192.40619392,"p95":942.6542469350187,"p99":954.2171187332382}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:00+00","p50":209.00942781789794,"p95":846.7592319056391,"p99":876.5895930640573}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:01+00","p50":226.35854317948716,"p95":773.7326322991071,"p99":783.8758123231243}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:02+00","p50":196.09093422096188,"p95":846.4099964046095,"p99":867.3811477254403}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:03+00","p50":149.61345480208334,"p95":884.0632741746203,"p99":903.5188660699201}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:04+00","p50":176.3433206612903,"p95":858.37015681649,"p99":865.9472774573711}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:05+00","p50":169.27651598632653,"p95":838.1024160095966,"p99":854.8060181197125}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:06+00","p50":167.86956283018867,"p95":843.737486599003,"p99":865.4133259899307}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:07+00","p50":119.87128898090278,"p95":830.5845048423324,"p99":848.8686716651413}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:08+00","p50":194.78137441452992,"p95":854.4761718368759,"p99":861.1286121662312}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:09+00","p50":183.47015151195012,"p95":840.9179911538796,"p99":858.5101744739287}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:10+00","p50":173.78004015037592,"p95":912.5501245376392,"p99":939.0030638039458}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:11+00","p50":220.35982033230994,"p95":1020.8147795245387,"p99":1079.2313312269969}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:12+00","p50":205.478724265928,"p95":495.73268096338603,"p99":650.28912377063}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:13+00","p50":136.91599256,"p95":275.66034282469826,"p99":342.84942917316}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:14+00","p50":176.59797973898134,"p95":338.3322017870227,"p99":445.15826012586734}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:15+00","p50":294.95172765140484,"p95":579.9882105626388,"p99":588.0058521373022}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:16+00","p50":269.7881536822917,"p95":593.5481800906277,"p99":623.3601852068497}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:17+00","p50":191.61235888489796,"p95":680.1936659421061,"p99":690.4271267899786}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:18+00","p50":127.62022661284722,"p95":821.4532480339763,"p99":838.8462437732536}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:19+00","p50":255.8771398249578,"p95":806.8402045638529,"p99":817.0139567688144}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:20+00","p50":108.71228258333333,"p95":741.8602089435624,"p99":758.3475018707709}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:21+00","p50":254.48344459612244,"p95":752.503049122378,"p99":758.8613864332516}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:22+00","p50":422.8563147959184,"p95":734.8527514590472,"p99":747.9503598134165}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:23+00","p50":162.60151670833332,"p95":763.5756034414821,"p99":785.115600406538}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:24+00","p50":116.28094488133335,"p95":882.4578937072927,"p99":895.3161305167309}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:25+00","p50":170.92700816748768,"p95":907.2997351931609,"p99":930.5189453282621}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:26+00","p50":200.76954549759998,"p95":957.9189092632095,"p99":974.0073712633152}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:27+00","p50":180.30882015933415,"p95":954.8774422871943,"p99":963.6324726340258}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:28+00","p50":190.29681368560003,"p95":913.0914094180407,"p99":925.369113491051}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:29+00","p50":209.59770553846153,"p95":841.5732106839988,"p99":870.3409822032706}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:30+00","p50":125.04656907237762,"p95":836.6642267289651,"p99":843.5996865760193}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:31+00","p50":214.58123212666666,"p95":861.6391432572482,"p99":875.3648603105014}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:32+00","p50":139.17308868749998,"p95":855.1284989433086,"p99":863.9141369260052}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:33+00","p50":175.98525805098856,"p95":861.2041798930019,"p99":869.2832591140433}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:34+00","p50":154.026684078125,"p95":862.3629626903114,"p99":874.901503602491}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:35+00","p50":122.2275562606305,"p95":819.6602614730248,"p99":837.7289479879579}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:36+00","p50":175.77455474246648,"p95":847.8733144722669,"p99":853.4903827631224}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:37+00","p50":145.39856163599995,"p95":877.2027876840642,"p99":885.1823409265546}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:38+00","p50":138.2663230025271,"p95":916.6997914615837,"p99":939.5589644648153}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:39+00","p50":153.74529620000007,"p95":918.2758165777407,"p99":942.8847859748977}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:40+00","p50":186.88589289197282,"p95":840.6811296202233,"p99":851.6739178813743}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:41+00","p50":167.5479781168,"p95":884.2164359735932,"p99":892.9634028791384}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:42+00","p50":158.18577194776023,"p95":874.82629078687,"p99":893.6050623009086}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:43+00","p50":152.59206525390627,"p95":833.2465667532628,"p99":844.582977924428}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:44+00","p50":144.18717206399998,"p95":811.7708844612529,"p99":821.6937596285651}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:45+00","p50":88.59937552256945,"p95":841.6914485754058,"p99":849.8090939927498}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:46+00","p50":125.47696279063362,"p95":871.3211072251275,"p99":888.080922826032}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:47+00","p50":130.5801814575657,"p95":766.5967676926804,"p99":788.2749662900662}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:48+00","p50":122.30350392,"p95":817.5356144203738,"p99":827.2611394484458}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:49+00","p50":197.54994611520004,"p95":837.75174851437,"p99":855.250270595908}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:50+00","p50":149.92793068965514,"p95":896.8628763791648,"p99":909.4217881651276}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:51+00","p50":119.29048119120002,"p95":870.7710199900783,"p99":878.2678004304773}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:52+00","p50":133.0596855935374,"p95":898.3808490170554,"p99":906.3611578563001}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:53+00","p50":78.1036478768,"p95":876.9940212008638,"p99":888.5417221689404}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:54+00","p50":239.85090760512318,"p95":890.0534791850829,"p99":900.7907516783876}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:55+00","p50":322.2759638616,"p95":835.2476039414776,"p99":847.5490980254204}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:56+00","p50":233.57189477777777,"p95":891.309223294257,"p99":905.8114425563447}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:57+00","p50":169.87541429119045,"p95":903.5470123792835,"p99":916.1445691046008}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:58+00","p50":230.2200012382019,"p95":950.1423541921979,"p99":963.3216403252123}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:57:59+00","p50":158.77989038157892,"p95":882.9414618849436,"p99":920.4623596481201}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:00+00","p50":205.47255604756242,"p95":864.7277724766088,"p99":875.8033505347252}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:01+00","p50":182.19201718186338,"p95":970.4912706228339,"p99":978.899355041014}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:02+00","p50":146.54740160132474,"p95":982.1943984687033,"p99":997.9344947708964}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:03+00","p50":145.79797560831642,"p95":931.4359231342376,"p99":941.364305348619}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:04+00","p50":178.9156280873303,"p95":852.6668826484529,"p99":884.3968046420513}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:05+00","p50":186.98989780000002,"p95":855.6845672966872,"p99":865.4199532000429}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:06+00","p50":183.8177053804511,"p95":881.6532832001445,"p99":890.7612112305958}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:07+00","p50":136.82893600454844,"p95":890.4584673262835,"p99":903.8645662256082}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:08+00","p50":163.81014588612842,"p95":901.2985902214198,"p99":907.6775247981661}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:09+00","p50":197.11993265329272,"p95":879.4619425179798,"p99":894.737848644577}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:10+00","p50":125.97342526340579,"p95":883.2473868068271,"p99":897.6481999101736}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:11+00","p50":108.39121463258027,"p95":864.0428543421314,"p99":896.6223967749221}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:12+00","p50":215.04603716666665,"p95":934.2043241575767,"p99":939.2503676995491}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:13+00","p50":194.0505863819444,"p95":850.2607882541355,"p99":863.7357129003115}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:14+00","p50":207.4327120133929,"p95":763.3101262636,"p99":793.2583906605608}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:15+00","p50":187.63962730697193,"p95":787.2009096089149,"p99":822.3540363000163}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:16+00","p50":188.7290316278033,"p95":860.569369492955,"p99":869.2586306507238}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:17+00","p50":163.88265877638406,"p95":756.953459420196,"p99":816.4881557530148}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:18+00","p50":178.28135543652448,"p95":794.0716570072933,"p99":818.3780319736439}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:19+00","p50":184.0868202393162,"p95":786.0849312154867,"p99":799.1293262856591}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:20+00","p50":136.04033266560344,"p95":819.1361490242815,"p99":832.3235076869158}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:21+00","p50":139.0703959883333,"p95":831.7969277173427,"p99":840.3361013864928}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:22+00","p50":147.6799558290344,"p95":869.4908928305643,"p99":883.4328006645358}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:23+00","p50":162.77030735839847,"p95":831.118559624686,"p99":840.4751780910248}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:24+00","p50":170.9109675,"p95":818.0868503546485,"p99":834.5299188729825}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:25+00","p50":150.24318677567666,"p95":855.5146162084574,"p99":889.6101004106955}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:26+00","p50":148.4900774981685,"p95":908.3268351238542,"p99":921.9338256317518}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:27+00","p50":156.5845943836937,"p95":895.5094812551873,"p99":904.904236611205}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:28+00","p50":209.91834743277778,"p95":895.2443964638712,"p99":915.8609933364766}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:29+00","p50":201.18523922727275,"p95":732.7740082200005,"p99":790.2765379351217}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:30+00","p50":168.22008065867348,"p95":787.0791975608491,"p99":805.5778842861208}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:31+00","p50":170.62990430555556,"p95":811.4747320580408,"p99":827.4329608339763}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:32+00","p50":164.7955307677871,"p95":893.2400488897391,"p99":901.840320710366}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:33+00","p50":186.6143432916667,"p95":816.0849116355928,"p99":842.157773888579}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:34+00","p50":245.47030793482443,"p95":792.9606383549976,"p99":807.4970388454868}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:35+00","p50":86.64443295312499,"p95":748.1502222607772,"p99":766.7270593315138}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:36+00","p50":184.0029771568,"p95":795.4702404007363,"p99":802.8528177571917}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:37+00","p50":193.74370665624997,"p95":816.1850115301278,"p99":839.9968683440061}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:38+00","p50":117.46164822916667,"p95":806.5076188906088,"p99":814.6575669835253}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:39+00","p50":93.6755528734568,"p95":780.6095743153526,"p99":809.7917936112352}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:40+00","p50":202.41578812799165,"p95":851.4989380451063,"p99":865.4644753697632}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:41+00","p50":175.23996636083984,"p95":810.3523624125195,"p99":817.7454747586603}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:42+00","p50":178.30670065219977,"p95":873.3742811842861,"p99":896.8632570604782}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:43+00","p50":169.30451451220702,"p95":897.1472470179737,"p99":920.8346847103531}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:44+00","p50":169.70924694220506,"p95":806.7907398891178,"p99":829.2907950970688}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:45+00","p50":141.05337964583333,"p95":842.3391232886923,"p99":849.7472760466477}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:46+00","p50":174.42800192039542,"p95":832.8985566732122,"p99":844.6474988681371}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:47+00","p50":158.91901319281527,"p95":819.9688427197042,"p99":832.3769665671491}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:48+00","p50":187.39900745089287,"p95":889.8685494240916,"p99":915.7365428901035}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:49+00","p50":198.8938386181536,"p95":899.445367401646,"p99":907.588925046711}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:50+00","p50":151.03853918758062,"p95":850.5373120098733,"p99":857.5200552733079}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:51+00","p50":190.30611564646463,"p95":945.1492518236959,"p99":952.7547030836496}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:52+00","p50":187.2169048148148,"p95":946.4519159507673,"p99":955.293379503597}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:53+00","p50":175.90747164086955,"p95":873.6018164776292,"p99":943.9422805913607}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:54+00","p50":129.1028387429761,"p95":872.7295716829356,"p99":884.3039437253153}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:55+00","p50":173.21547338836368,"p95":835.6733723349938,"p99":853.8553608019085}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:56+00","p50":137.58425940921055,"p95":950.7241558504247,"p99":963.8412872506565}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:57+00","p50":141.60105837062196,"p95":930.3812511059479,"p99":961.1611363871963}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:58+00","p50":128.86066387424643,"p95":873.9101534742111,"p99":888.1607073235281}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:58:59+00","p50":145.30552528564456,"p95":833.5805109523371,"p99":874.1262407595099}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:00+00","p50":193.2733399301758,"p95":797.6968331355337,"p99":805.0915330568716}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:01+00","p50":179.48874559044287,"p95":844.6777408906374,"p99":863.2847411684404}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:02+00","p50":183.09237122222223,"p95":880.7160970357564,"p99":893.8124545879597}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:03+00","p50":167.00132923725286,"p95":898.4135355837287,"p99":911.4005361591181}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:04+00","p50":102.07949337147934,"p95":844.984319999935,"p99":855.2633889723281}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:05+00","p50":203.67906000141065,"p95":884.4545690916589,"p99":895.8763134296615}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:06+00","p50":178.7640719927584,"p95":841.6313163885368,"p99":848.4726919600242}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:07+00","p50":126.54731406436012,"p95":828.4113244449186,"p99":839.730397782313}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:08+00","p50":184.83625472500003,"p95":847.6811902639579,"p99":858.0294077421712}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:09+00","p50":162.7282378758329,"p95":813.1278536521816,"p99":823.941843023924}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:10+00","p50":184.09187397222226,"p95":826.9066767554041,"p99":835.8755076233817}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:11+00","p50":143.30316259342825,"p95":839.9979488016279,"p99":864.4450456742356}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:12+00","p50":145.26779916190478,"p95":870.1439908023989,"p99":880.2305444206679}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:13+00","p50":183.17740040160004,"p95":827.0452374428324,"p99":837.4688403663146}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:14+00","p50":157.51727664080002,"p95":864.0707099732838,"p99":875.4966159079574}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:15+00","p50":86.98427658941799,"p95":862.0429723665591,"p99":869.2428887539352}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:16+00","p50":98.44034057591037,"p95":789.1675527030794,"p99":798.5008939785268}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:17+00","p50":341.1590634348958,"p95":767.9068714420106,"p99":788.4525194337514}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:18+00","p50":241.82289973566958,"p95":848.1582413059695,"p99":856.098864116317}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:19+00","p50":203.01533237632657,"p95":834.5234562518876,"p99":839.7597485047926}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:20+00","p50":167.318747591453,"p95":875.6351779696748,"p99":914.3276564083385}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:21+00","p50":159.73527463319456,"p95":805.3486562910022,"p99":818.734330477255}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:22+00","p50":172.9648792369792,"p95":834.7903505782507,"p99":848.68350778252}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:23+00","p50":203.42755129726518,"p95":863.1568438167423,"p99":877.8075717720233}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:24+00","p50":119.76454815833333,"p95":819.3168912744645,"p99":854.7370891484218}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:25+00","p50":105.67013907881774,"p95":844.1550114371091,"p99":850.7362793500367}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:26+00","p50":148.80390642857142,"p95":926.2793256835982,"p99":935.4577087710404}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:27+00","p50":142.56052870880382,"p95":931.8305482115695,"p99":941.5639298426314}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:28+00","p50":110.54339103855445,"p95":880.2988504818796,"p99":885.424539604326}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:29+00","p50":119.34372194833334,"p95":842.9952818366511,"p99":861.7519902090243}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:30+00","p50":153.36206650555556,"p95":849.5015131749806,"p99":859.5135552050888}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:31+00","p50":165.24902673841643,"p95":787.0533032587646,"p99":797.0238449536274}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:32+00","p50":115.31395963324063,"p95":825.1446394616305,"p99":836.6648275119625}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:33+00","p50":112.281932736,"p95":817.3780170918726,"p99":847.4041249760129}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:34+00","p50":302.5280567333334,"p95":842.198347323976,"p99":856.9588916265504}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:35+00","p50":247.92020849218753,"p95":803.3848005731365,"p99":820.2798167367154}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:36+00","p50":232.8413877106383,"p95":814.7907499701146,"p99":822.386154287454}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:37+00","p50":101.47158743229166,"p95":816.2272667660048,"p99":829.8157160039689}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:38+00","p50":246.95254437270737,"p95":868.3457715635427,"p99":885.4114586917528}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:39+00","p50":193.32054050000002,"p95":877.615584096091,"p99":887.8130802712661}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:40+00","p50":212.28628286812003,"p95":787.5661364529963,"p99":802.7144315908237}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:41+00","p50":182.5573922013889,"p95":811.030653572247,"p99":822.308468364398}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:42+00","p50":103.2344727317073,"p95":920.5319954097365,"p99":936.2681185472651}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:43+00","p50":114.68404620268734,"p95":880.5047412017004,"p99":916.0964171762315}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:44+00","p50":168.25517569323114,"p95":872.8371361305415,"p99":882.6285299837574}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:45+00","p50":175.12033912434964,"p95":845.75189753443,"p99":859.2601783423245}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:46+00","p50":134.3313430982456,"p95":829.3129302591901,"p99":839.0924018305377}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:47+00","p50":122.07750859408536,"p95":819.4737569617585,"p99":836.3736084941319}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:48+00","p50":317.67966964816713,"p95":807.61641441701,"p99":817.785603950816}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:49+00","p50":186.39362001345455,"p95":804.5687614234264,"p99":819.6361225594361}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:50+00","p50":230.02951356593408,"p95":784.9809581777502,"p99":793.7321683183965}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:51+00","p50":191.20990977764566,"p95":786.1663352210547,"p99":797.8370661570744}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:52+00","p50":318.8493388704475,"p95":798.9786475373273,"p99":805.1812458698506}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:53+00","p50":296.95293434,"p95":804.0860942388537,"p99":827.7717379127273}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:54+00","p50":225.11894616683088,"p95":849.6645626382929,"p99":864.2483351395965}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:55+00","p50":260.5254097216,"p95":844.8522431216563,"p99":852.3921021334133}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:56+00","p50":310.87405158680554,"p95":806.7351666863606,"p99":819.4636672896631}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:57+00","p50":220.30600520911565,"p95":835.1535979836284,"p99":871.4866122278152}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:58+00","p50":109.63955068749999,"p95":881.565866809257,"p99":892.0055733020889}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 09:59:59+00","p50":198.15537455999998,"p95":840.69227094511,"p99":851.283663608774}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:00+00","p50":166.11430560215948,"p95":918.7865475653692,"p99":930.2192566115667}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:01+00","p50":162.17676441095236,"p95":1014.2086430172969,"p99":1033.2057017093318}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:02+00","p50":192.16365939188898,"p95":986.4037805080756,"p99":1008.7898510850499}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:03+00","p50":190.39577933107557,"p95":900.6057002146898,"p99":908.2778550839284}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:04+00","p50":183.4991067015458,"p95":911.0205149664984,"p99":926.8962829827192}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:05+00","p50":176.6736173312808,"p95":902.8057805813105,"p99":931.6929749787251}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:06+00","p50":198.79067889886034,"p95":969.3768985383729,"p99":981.7203422413281}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:07+00","p50":135.07101200404762,"p95":927.1700270743127,"p99":949.1835467930374}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:08+00","p50":153.75789837279999,"p95":1045.8361207445917,"p99":1068.6121666014935}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:09+00","p50":116.56865983636364,"p95":1024.874783253324,"p99":1039.080510576409}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:10+00","p50":71.38067071740959,"p95":919.5608822553487,"p99":932.3591493821476}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:11+00","p50":105.28218102503402,"p95":874.0818799082451,"p99":909.2175779759668}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:12+00","p50":295.20931178819444,"p95":899.5845465791394,"p99":908.0865533985705}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:13+00","p50":262.1222675892857,"p95":911.4484009817276,"p99":918.3550241717003}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:14+00","p50":271.0996091909722,"p95":846.6616170113145,"p99":885.2126554358765}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:15+00","p50":242.57055588217054,"p95":879.5132677591273,"p99":887.6251390450956}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:16+00","p50":204.53184430227267,"p95":861.735739463106,"p99":870.2040405410114}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:17+00","p50":112.33673290480002,"p95":873.6258303480015,"p99":881.3585451542325}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:18+00","p50":96.9542270883117,"p95":930.0219748612698,"p99":935.802161594565}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:19+00","p50":103.952930185,"p95":935.1480798663462,"p99":942.7340183543563}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:20+00","p50":180.64690076275505,"p95":922.654272329541,"p99":938.0034936966453}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:21+00","p50":228.76896540057973,"p95":1026.513287539627,"p99":1036.598872175405}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:22+00","p50":218.84027590471496,"p95":983.9368617904506,"p99":995.4888339378841}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:23+00","p50":175.81498074149656,"p95":860.5604616109833,"p99":879.7731037697635}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:24+00","p50":168.4712555361328,"p95":809.311412737604,"p99":833.2062403127438}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:25+00","p50":179.84735103389832,"p95":821.5306782239012,"p99":837.5939285539642}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:26+00","p50":161.72503458823527,"p95":985.9087405614333,"p99":1007.433809488121}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:27+00","p50":144.51572759680005,"p95":936.8913438227207,"p99":971.7632364394567}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:28+00","p50":138.00443167498375,"p95":899.2940352987945,"p99":912.3564448851894}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:29+00","p50":120.8564962326389,"p95":867.3194896030179,"p99":880.5656574688746}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:30+00","p50":137.36096495959595,"p95":817.186764840102,"p99":826.8676097650881}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:31+00","p50":166.37622804578854,"p95":857.6917881250985,"p99":862.788531857689}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:32+00","p50":183.61637246632657,"p95":868.1809439607903,"p99":879.5642906291596}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:33+00","p50":138.0065252050781,"p95":833.2213823105787,"p99":869.0135340903515}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:34+00","p50":179.82331476133464,"p95":892.3295770416847,"p99":896.728501797911}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:35+00","p50":153.62195281836054,"p95":884.2548940876987,"p99":909.0003183440796}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:36+00","p50":150.7200812099419,"p95":850.0443118929558,"p99":883.3695515053863}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:37+00","p50":160.727275975026,"p95":848.3011523341111,"p99":855.9132755139594}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:38+00","p50":141.9466246206597,"p95":876.2962226369677,"p99":891.7115419506276}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:39+00","p50":140.82421233120002,"p95":921.5521378388069,"p99":932.0296096747934}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:40+00","p50":141.5397631806667,"p95":876.3638062240569,"p99":893.7116229276454}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:41+00","p50":178.89385325713593,"p95":853.3393173404262,"p99":865.0178381588537}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:42+00","p50":188.30476236236564,"p95":849.6291273746075,"p99":862.054568195266}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:43+00","p50":160.40736885294115,"p95":860.240026136246,"p99":866.392405582463}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:44+00","p50":203.333769375,"p95":822.9328197547151,"p99":866.7030102276223}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:45+00","p50":193.9950418562271,"p95":773.1466798052774,"p99":784.9713832936586}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:46+00","p50":287.89926485432784,"p95":723.839274095176,"p99":735.9406335057557}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:47+00","p50":150.6347909192708,"p95":742.6267299572794,"p99":766.8737555409022}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:48+00","p50":209.65199923873305,"p95":840.1415456347434,"p99":851.4754367493546}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:49+00","p50":136.9707566947349,"p95":843.7665734303041,"p99":849.3933329273966}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:50+00","p50":94.12378794579399,"p95":825.1858070932616,"p99":835.2019341712507}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:51+00","p50":197.6621836195006,"p95":899.9844136965373,"p99":907.4373899918642}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:52+00","p50":174.8607532465278,"p95":941.8060756854726,"p99":959.7602340379493}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:53+00","p50":296.42514584895827,"p95":928.7739933253129,"p99":936.2445124620166}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:54+00","p50":227.17513267823858,"p95":926.5112004296053,"p99":939.9419139842147}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:55+00","p50":196.72351287691328,"p95":818.5751321330375,"p99":880.4050721598891}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:56+00","p50":235.05400658159724,"p95":1035.7073773303491,"p99":1048.329461471053}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:57+00","p50":163.96600068842366,"p95":990.1467022744823,"p99":1003.1244354150537}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:58+00","p50":153.19319234566325,"p95":914.5330726429173,"p99":938.0433091333896}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:00:59+00","p50":162.92828870138888,"p95":820.2416148921276,"p99":830.9539077754177}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:00+00","p50":159.83601,"p95":844.7629886336921,"p99":856.5085628993781}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:01+00","p50":116.63129795525495,"p95":882.609295516597,"p99":896.6406561951694}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:02+00","p50":187.72468612637638,"p95":853.7046334776056,"p99":863.324613534769}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:03+00","p50":172.05119118836808,"p95":793.8851101734182,"p99":808.6299718432786}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:04+00","p50":126.1386016752,"p95":844.7611095208542,"p99":857.6965635541605}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:05+00","p50":99.36498687854542,"p95":835.5188055285263,"p99":845.966431916355}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:06+00","p50":151.7226567620945,"p95":908.23365320242,"p99":926.0945411584297}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:07+00","p50":151.07609695600001,"p95":856.0808087424689,"p99":874.1529205263485}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:08+00","p50":143.52825936753982,"p95":858.4406746239306,"p99":880.4231490434425}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:09+00","p50":126.25606673958333,"p95":880.0814778097607,"p99":890.6881999509126}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:10+00","p50":168.56095862339637,"p95":837.7860569285593,"p99":851.7639510759705}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:11+00","p50":151.42913555808082,"p95":834.3154321234775,"p99":850.9892860555507}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:12+00","p50":197.67394795370367,"p95":895.1241188123616,"p99":906.9121400381731}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:13+00","p50":146.8564646670135,"p95":857.6746972414066,"p99":876.7153556077046}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:14+00","p50":173.7467032181436,"p95":851.6507518743263,"p99":874.503578248196}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:15+00","p50":181.02385869044988,"p95":817.9801352288806,"p99":826.4891468908093}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:16+00","p50":163.7463807126736,"p95":861.7405327012272,"p99":871.7777113740863}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:17+00","p50":150.61434848232489,"p95":848.1660619164966,"p99":860.7749507194861}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:18+00","p50":274.1729599806094,"p95":1048.388899568616,"p99":1122.1540471736728}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:19+00","p50":276.63421335566034,"p95":772.6997212332265,"p99":983.6065466612949}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:20+00","p50":244.382824505042,"p95":536.6031154590626,"p99":551.4653246493314}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:21+00","p50":296.0571388454221,"p95":592.5330621953955,"p99":603.0409826372255}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:22+00","p50":300.7055617161172,"p95":581.9584651852905,"p99":596.9479401912281}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:23+00","p50":252.690763941736,"p95":615.6074920214504,"p99":693.8182505832008}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:24+00","p50":197.34981401809523,"p95":848.7858471430435,"p99":872.9305040788779}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:25+00","p50":139.41271283860516,"p95":886.0077513376368,"p99":897.4945708632462}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:26+00","p50":86.10661713585434,"p95":964.0182443360743,"p99":979.5888408579325}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:27+00","p50":105.15804421485412,"p95":973.5923539102548,"p99":983.8275524321679}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:28+00","p50":125.04745997600001,"p95":904.1082631772285,"p99":926.4747735242744}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:29+00","p50":100.63362903540668,"p95":918.3684092371317,"p99":925.5224549313008}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:30+00","p50":286.29109053499997,"p95":863.5388040811893,"p99":873.2606452301026}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:31+00","p50":296.3668361626518,"p95":812.9605303177253,"p99":831.4795828648829}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:32+00","p50":128.38823052333333,"p95":904.5687262525835,"p99":911.3207109309974}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:33+00","p50":131.09207954239997,"p95":889.8076267234786,"p99":914.7728421893523}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:34+00","p50":136.70096529947918,"p95":903.2217258891269,"p99":924.4831817087618}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:35+00","p50":171.84946997222224,"p95":947.1508902771726,"p99":955.7933080648321}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:36+00","p50":104.0070751611111,"p95":897.4921456905136,"p99":949.3497791284091}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:37+00","p50":139.86422258777174,"p95":850.712282487331,"p99":865.5232610244515}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:38+00","p50":200.15644740714285,"p95":908.2005096783304,"p99":915.1984964564455}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:39+00","p50":169.9142976598959,"p95":902.9373398899021,"p99":908.3350897891681}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:40+00","p50":165.06718408333336,"p95":845.6421121253114,"p99":865.7776205245923}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:41+00","p50":112.46411188341695,"p95":842.2324015774147,"p99":849.1387556997344}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:42+00","p50":115.29476190239998,"p95":874.7358942472237,"p99":889.6599273632157}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:43+00","p50":194.60808470833334,"p95":863.2310296919175,"p99":873.5266265561834}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:44+00","p50":162.18725555293068,"p95":835.390795330403,"p99":848.9965164217439}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:45+00","p50":154.93717521198155,"p95":825.9405708597988,"p99":837.4292871431062}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:46+00","p50":108.10904065442178,"p95":831.6093827216499,"p99":851.3649594390047}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:47+00","p50":137.03825264739436,"p95":885.4721382976873,"p99":899.724042890026}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:48+00","p50":180.46832732758622,"p95":912.9927034540376,"p99":920.8621061893286}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:49+00","p50":159.5275636968,"p95":918.1454139500954,"p99":925.7259328867649}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:50+00","p50":122.16703512490001,"p95":912.8453897204832,"p99":954.8069171410622}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:51+00","p50":227.77388282100588,"p95":1019.0018436019933,"p99":1041.292964826922}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:52+00","p50":220.1572919344,"p95":973.156459517609,"p99":984.2698333321151}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:53+00","p50":166.7768944736,"p95":908.9079800448225,"p99":925.1644327057546}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:54+00","p50":123.56298205954452,"p95":898.3022433690035,"p99":911.7325732858723}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:55+00","p50":159.849025725327,"p95":852.2952049075841,"p99":875.5115848493364}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:56+00","p50":188.12265944822482,"p95":1016.8605849140257,"p99":1041.6096746759044}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:57+00","p50":183.74680940317458,"p95":1014.7667152046969,"p99":1030.1115887943802}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:58+00","p50":191.03585399107143,"p95":1016.27459908152,"p99":1037.7787280171804}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:01:59+00","p50":169.99458024,"p95":907.8590383908859,"p99":951.8549436244683}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:00+00","p50":193.26178703015873,"p95":909.5027932532522,"p99":918.4499019041493}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:01+00","p50":190.49572352184381,"p95":933.7192719066219,"p99":940.0362954966869}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:02+00","p50":148.1944754114583,"p95":884.78498460134,"p99":912.0111781699621}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:03+00","p50":174.81503957368423,"p95":869.2746602184376,"p99":877.9269009095797}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:04+00","p50":168.10735484258768,"p95":881.3677300578006,"p99":895.6804625326466}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:05+00","p50":153.46120382079997,"p95":835.9406996298186,"p99":842.6451251293204}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:06+00","p50":162.6076224810402,"p95":881.059172603003,"p99":900.7386347860162}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:07+00","p50":151.88297088351646,"p95":896.8716963471205,"p99":916.2068329394014}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:08+00","p50":170.5102113051948,"p95":904.3017320631044,"p99":918.0505297390706}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:09+00","p50":185.04685686802722,"p95":872.8469072901004,"p99":883.2415676645073}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:10+00","p50":87.77273757632653,"p95":832.1637463920467,"p99":861.9307853038163}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:11+00","p50":310.49525700591715,"p95":829.440018856914,"p99":845.7490791495942}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:12+00","p50":102.61586903956042,"p95":817.2945834821236,"p99":833.203292625105}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:13+00","p50":229.4896077787047,"p95":843.7609774101055,"p99":860.7073175104742}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:14+00","p50":314.80678006936813,"p95":803.8028747423801,"p99":825.6630890226468}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:15+00","p50":82.41043383142856,"p95":867.5250060241204,"p99":876.7177022046893}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:16+00","p50":150.47148308085613,"p95":942.8140688354988,"p99":958.2866953739406}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:17+00","p50":155.7839442147847,"p95":833.4488585474522,"p99":887.587683554968}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:18+00","p50":100.9913765833333,"p95":872.1365243566116,"p99":883.3598888816058}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:19+00","p50":178.39304114444445,"p95":867.6117278561477,"p99":888.1925782782798}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:20+00","p50":151.8507375655769,"p95":783.8065772469182,"p99":810.5022761433102}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:21+00","p50":195.24753836608835,"p95":878.4994051102573,"p99":890.3637391389911}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:22+00","p50":163.63956541200952,"p95":910.9270911369466,"p99":922.2417381108133}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:23+00","p50":164.1877043121693,"p95":919.2270811614468,"p99":937.6262951172872}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:24+00","p50":127.7617623178862,"p95":944.0016841170265,"p99":972.8023039054885}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:25+00","p50":149.38074771700357,"p95":897.0265983509571,"p99":921.4845638812955}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:26+00","p50":244.97296553846152,"p95":898.4242808546873,"p99":936.5195142885536}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:27+00","p50":232.38026350951247,"p95":433.12515928521617,"p99":852.0792953501236}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:28+00","p50":172.3792037368421,"p95":301.40428674418183,"p99":347.62403543694074}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:29+00","p50":214.24099974982383,"p95":338.3528162475791,"p99":390.2594943625112}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:30+00","p50":418.2676236887755,"p95":597.5387754903724,"p99":744.7510864515519}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:31+00","p50":195.33941077806654,"p95":475.43554808602903,"p99":727.1423783208013}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:32+00","p50":221.65672155902777,"p95":598.0075381423155,"p99":609.3296569384065}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:33+00","p50":208.89651680145454,"p95":671.3071511502324,"p99":716.5039968436406}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:34+00","p50":114.81087264828305,"p95":791.0735256491943,"p99":817.6135529578929}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:35+00","p50":312.2080416244898,"p95":815.8439277841259,"p99":821.9153911498925}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:36+00","p50":281.34518132520805,"p95":820.0229808277415,"p99":840.0244576244454}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:37+00","p50":224.7577575712,"p95":851.0569414221504,"p99":863.2371527265549}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:38+00","p50":126.18491128000001,"p95":994.906050004869,"p99":1006.6767866526637}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:39+00","p50":160.27178630266937,"p95":970.6418437953681,"p99":1028.6779868023664}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:40+00","p50":129.28942839710407,"p95":876.0172597238575,"p99":896.6430675198844}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:41+00","p50":135.38810061588921,"p95":846.8487237049632,"p99":860.2510844307991}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:42+00","p50":92.91651636571429,"p95":889.463610041541,"p99":895.4463582454009}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:43+00","p50":104.15306932954545,"p95":870.0730674690545,"p99":878.2959397112976}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:44+00","p50":148.13785909311738,"p95":847.825427756708,"p99":859.4788230123806}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:45+00","p50":305.31134219757575,"p95":806.7053629610222,"p99":814.6163518680726}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:46+00","p50":274.760432584,"p95":799.4464475326027,"p99":823.4159073273785}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:47+00","p50":170.43918342514473,"p95":759.6282456654477,"p99":770.8109150501434}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:48+00","p50":228.67506637312945,"p95":751.1357782350208,"p99":757.9211683429842}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:49+00","p50":247.39521268166666,"p95":796.8003708406038,"p99":808.0777206419979}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:50+00","p50":71.95871031521739,"p95":851.4837643643057,"p99":863.0178567888167}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:51+00","p50":276.0358977329207,"p95":927.4869498040491,"p99":948.5766827600402}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:52+00","p50":92.96512248979592,"p95":958.2283383171816,"p99":978.6588916961688}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:53+00","p50":145.1813215030612,"p95":910.1184245023719,"p99":922.0425842349254}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:54+00","p50":292.70394327321424,"p95":895.4310942582346,"p99":913.5015485279479}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:55+00","p50":234.62894498800003,"p95":876.2759218531195,"p99":890.4247694156574}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:56+00","p50":99.53173216149068,"p95":1006.406793118706,"p99":1019.2086175818768}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:57+00","p50":340.10923925000003,"p95":947.4780001100912,"p99":965.0017143855654}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:58+00","p50":173.10884350487964,"p95":948.4195902042351,"p99":958.6355515503711}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:02:59+00","p50":133.5418786936102,"p95":884.1060314246583,"p99":901.6520684472365}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:00+00","p50":141.55644969959184,"p95":864.408010214092,"p99":874.425644606236}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:01+00","p50":130.46476850569377,"p95":988.1508854588895,"p99":1001.0893359296256}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:02+00","p50":141.48032447187927,"p95":1003.9474243657202,"p99":1009.9227158047997}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:03+00","p50":224.84583393910253,"p95":970.9113662847631,"p99":981.1308367691953}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:04+00","p50":192.78437462414263,"p95":973.172706024828,"p99":981.0666329842071}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:05+00","p50":186.93758796313915,"p95":928.9101315643018,"p99":947.0785502868301}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:06+00","p50":192.28184117003568,"p95":849.8637650377967,"p99":859.183244273796}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:07+00","p50":165.99276272569443,"p95":842.9926038506067,"p99":853.8836793816182}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:08+00","p50":173.09219820833334,"p95":968.4838752197277,"p99":1020.187609003779}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:09+00","p50":258.8496288333333,"p95":1056.1929971835634,"p99":1078.6969743246457}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:10+00","p50":211.9976353368056,"p95":944.5261879346649,"p99":956.364750284663}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:11+00","p50":169.1321328769728,"p95":883.4521334429955,"p99":894.263673265587}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:12+00","p50":128.64856468315972,"p95":876.7808633864831,"p99":882.7078971963919}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:13+00","p50":112.37337164462475,"p95":901.0310591847541,"p99":907.251405933084}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:14+00","p50":141.7946055326992,"p95":858.4254487800384,"p99":864.7971665242408}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:15+00","p50":208.85838206498084,"p95":849.4494675446998,"p99":859.3484745142731}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:16+00","p50":177.00135001442314,"p95":820.9889206170634,"p99":834.2865775464849}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:17+00","p50":175.9751774453125,"p95":885.4040462577453,"p99":892.3801483598402}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:18+00","p50":182.36291554239997,"p95":983.2330308080255,"p99":992.7433582526724}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:19+00","p50":253.41396019679996,"p95":1048.8213948840335,"p99":1058.2537654512428}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:20+00","p50":205.37926259260504,"p95":982.4137742199104,"p99":1018.9771433058169}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:21+00","p50":245.37304404813665,"p95":1041.9753787815944,"p99":1072.173609376647}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:22+00","p50":270.9472887009544,"p95":1068.444428020198,"p99":1081.322118370169}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:23+00","p50":219.3294581024,"p95":995.2890075863078,"p99":1004.8104113778741}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:24+00","p50":158.64078509375,"p95":1000.5851677772287,"p99":1011.046867790829}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:25+00","p50":134.30698569898885,"p95":936.7819268845432,"p99":958.7325013516953}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:26+00","p50":258.38619600879997,"p95":1012.9050302797722,"p99":1024.0639228883372}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:27+00","p50":254.51196537037035,"p95":929.3693892152722,"p99":959.3743782533484}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:28+00","p50":201.06333244444446,"p95":924.7578869597477,"p99":942.5362672310771}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:29+00","p50":187.86875107168737,"p95":929.0999319342017,"p99":936.414465574292}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:30+00","p50":193.8412544069317,"p95":905.5093446235935,"p99":925.2411994540195}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:31+00","p50":173.3479526584362,"p95":952.0201525772984,"p99":960.3930257425358}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:32+00","p50":179.5856648837209,"p95":953.0067878208844,"p99":973.4172354177185}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:33+00","p50":149.08312984375002,"p95":914.0971382130773,"p99":923.0711663391144}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:34+00","p50":231.62325369230769,"p95":974.3078081482352,"p99":989.3992107317554}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:35+00","p50":154.03314741145832,"p95":967.0832757022091,"p99":985.3361319287429}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:36+00","p50":127.80538507668118,"p95":981.4431058227528,"p99":990.05779714146}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:37+00","p50":108.73846880995475,"p95":954.0974545635856,"p99":966.8645034434672}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:38+00","p50":134.6252481990493,"p95":956.4189533201409,"p99":969.1062920474345}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:39+00","p50":162.63700930357143,"p95":957.3742065256375,"p99":966.8714038205532}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:40+00","p50":149.20997152256945,"p95":878.267058277296,"p99":918.7897698956596}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:41+00","p50":186.40341534911244,"p95":939.8879300867202,"p99":967.4674490571539}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:42+00","p50":169.95962970375456,"p95":998.2421924635918,"p99":1015.3642434044551}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:43+00","p50":107.57319514311686,"p95":879.0863165909961,"p99":886.9891254924684}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:44+00","p50":224.56639096730083,"p95":885.6019170524817,"p99":892.7491755234258}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:45+00","p50":194.22262114567673,"p95":879.5335813167306,"p99":886.863599378329}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:46+00","p50":205.7546216097436,"p95":904.9386220665613,"p99":911.3508582073085}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:47+00","p50":209.23550293666665,"p95":896.5684389798416,"p99":904.0733712780292}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:48+00","p50":193.35127931770833,"p95":951.2769555960755,"p99":965.730481044821}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:49+00","p50":182.1561385940171,"p95":985.5001195023889,"p99":995.5946205675023}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:50+00","p50":177.65264614583336,"p95":976.3168087130532,"p99":982.5726902734426}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:51+00","p50":160.18095674015424,"p95":976.5649679583014,"p99":986.0586683236081}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:52+00","p50":204.7120302018633,"p95":1062.7176580072903,"p99":1105.3566407063154}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:53+00","p50":182.12277178124998,"p95":1085.5990803267287,"p99":1101.585922747551}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:54+00","p50":161.88833861458332,"p95":1016.6041104890302,"p99":1023.1347571974816}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:55+00","p50":224.1995122032,"p95":972.4807652942657,"p99":982.254077234656}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:56+00","p50":112.72764324159999,"p95":1021.1596308677192,"p99":1034.954396231489}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:57+00","p50":123.68548815509692,"p95":995.1421693875045,"p99":1011.8594779703202}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:58+00","p50":110.46435114285714,"p95":988.3930815796926,"p99":999.49619827619}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:03:59+00","p50":111.23262519696395,"p95":875.4643364413648,"p99":910.5437768644919}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:00+00","p50":116.76834400986395,"p95":884.3310604246352,"p99":891.1197488559299}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:01+00","p50":150.38940723346943,"p95":913.3484174377658,"p99":947.3352900740754}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:02+00","p50":164.41859290449472,"p95":956.7746802103353,"p99":965.6958495107867}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:03+00","p50":148.53115804366374,"p95":916.0274975615379,"p99":924.9837716808776}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:04+00","p50":111.95279779815127,"p95":1014.1248942003959,"p99":1025.8983820682568}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:05+00","p50":119.31108032342658,"p95":967.5325576260001,"p99":1002.6784837033617}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:06+00","p50":172.25874897244447,"p95":859.6120768057773,"p99":883.2215528138079}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:07+00","p50":137.94197588918658,"p95":930.7868428188794,"p99":941.9507963726143}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:08+00","p50":133.4010138448,"p95":934.9220287737123,"p99":940.6645350700142}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:09+00","p50":103.11510803512573,"p95":941.2534887842132,"p99":947.9488683383596}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:10+00","p50":91.96103240640001,"p95":898.1018552500914,"p99":904.6339703836537}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:11+00","p50":180.3135502,"p95":888.0364606479837,"p99":906.5303159146384}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:12+00","p50":161.44655935204082,"p95":951.2117182863581,"p99":964.4816501748162}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:13+00","p50":139.061802457793,"p95":865.5405732792343,"p99":939.4155952435468}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:14+00","p50":164.90762919200003,"p95":845.3745126467409,"p99":876.6690966425689}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:15+00","p50":115.38199389863946,"p95":904.9112794132648,"p99":914.3180408120573}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:16+00","p50":166.5875607808,"p95":806.3492211791872,"p99":835.3906772872444}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:17+00","p50":131.87528018611113,"p95":841.3200211557304,"p99":848.4375712414321}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:18+00","p50":219.3531823555555,"p95":873.541558836053,"p99":885.0876886073328}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:19+00","p50":160.1175126671775,"p95":866.9071950594604,"p99":886.1454005992489}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:20+00","p50":162.35637656925286,"p95":804.5556653134045,"p99":823.5494711727778}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:21+00","p50":155.04343263839752,"p95":803.8871619956741,"p99":821.3600367462096}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:22+00","p50":152.90894784025045,"p95":903.9134915834957,"p99":929.4413325427205}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:23+00","p50":170.4570016186557,"p95":818.8339662388455,"p99":873.9409254911559}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:24+00","p50":172.68020002083333,"p95":845.3830045688368,"p99":854.8383360386773}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:25+00","p50":152.23743731666661,"p95":857.904825760919,"p99":865.2502107066938}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:26+00","p50":183.20789638285711,"p95":940.3095347901968,"p99":948.898699955673}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:27+00","p50":192.72122318130081,"p95":925.9054584633344,"p99":934.848886929167}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:28+00","p50":77.46190369010415,"p95":847.590966023124,"p99":866.0596553487301}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:29+00","p50":274.661046925,"p95":828.2035798139921,"p99":846.9866758195132}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:30+00","p50":123.40815575860995,"p95":820.2020626034622,"p99":825.9075731050762}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:31+00","p50":183.96436892564103,"p95":815.6051421804187,"p99":823.6086093492614}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:32+00","p50":140.67197896264366,"p95":851.6226462746481,"p99":871.9888784199641}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:33+00","p50":114.08151120138889,"p95":823.5685527860032,"p99":833.328630097261}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:34+00","p50":104.32196763059312,"p95":819.8494468170704,"p99":827.5609066651635}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:35+00","p50":225.72746272916666,"p95":811.8394493557644,"p99":818.4716249476314}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:36+00","p50":179.83959070896162,"p95":817.0405515842854,"p99":823.3596686035834}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:37+00","p50":191.7147423132154,"p95":801.2187701105119,"p99":811.0423971277019}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:38+00","p50":149.00381205635964,"p95":872.817377843378,"p99":895.3343173069369}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:39+00","p50":166.11590631770835,"p95":875.4359382710836,"p99":891.9732490807093}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:40+00","p50":179.47959301144638,"p95":835.527584006252,"p99":850.5662877712923}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:41+00","p50":184.00181869506173,"p95":825.2261374310511,"p99":855.9909098241889}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:42+00","p50":182.0279213,"p95":888.0606953566664,"p99":913.5113460817098}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:43+00","p50":129.6805893454861,"p95":876.4754347001206,"p99":895.0417583974049}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:44+00","p50":190.72440746080002,"p95":819.9556809389252,"p99":833.6203002224335}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:45+00","p50":193.3540100860215,"p95":845.5025058028335,"p99":864.7419217468744}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:46+00","p50":154.1853162814815,"p95":832.7288888664054,"p99":844.6462435467676}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:47+00","p50":191.87694016618286,"p95":841.5191597021891,"p99":849.6675349502274}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:48+00","p50":172.0618102832579,"p95":872.6316472328068,"p99":881.6051022509204}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:49+00","p50":118.64551917219512,"p95":891.9253846479108,"p99":897.3085948922086}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:50+00","p50":140.9357480478668,"p95":844.6269497257568,"p99":895.4212799655477}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:51+00","p50":180.96675250066667,"p95":915.436884182983,"p99":926.145337921917}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:52+00","p50":182.60440423882326,"p95":862.6707706808812,"p99":873.4398874402524}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:53+00","p50":94.19840458316499,"p95":879.1465363652595,"p99":885.9903438584475}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:54+00","p50":281.421298252551,"p95":896.0380751278549,"p99":908.0285198328431}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:55+00","p50":151.0533884284004,"p95":834.040434524423,"p99":888.8463721520937}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:56+00","p50":186.31885230581634,"p95":993.4565772833157,"p99":1006.485988768995}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:57+00","p50":129.9460913107823,"p95":972.6340722274103,"p99":981.0739459591472}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:58+00","p50":200.48370275,"p95":933.3977241433656,"p99":956.022705667761}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:04:59+00","p50":197.4871758656,"p95":843.2186144237969,"p99":869.5832064366061}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:00+00","p50":107.3915481941924,"p95":849.1166180816022,"p99":860.7183430700242}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:01+00","p50":142.8716569285714,"p95":877.7212447899188,"p99":889.0832020152066}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:02+00","p50":213.51936688499026,"p95":884.8529600235786,"p99":896.9564586420423}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:03+00","p50":122.0763227465278,"p95":839.5891034400511,"p99":857.3971063863174}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:04+00","p50":129.50813146363637,"p95":838.45111324854,"p99":847.3936020367389}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:05+00","p50":152.71266851250485,"p95":819.1587348950327,"p99":827.5261625258656}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:06+00","p50":192.3731175525792,"p95":836.3770732209238,"p99":853.0784123982688}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:07+00","p50":141.53706735999998,"p95":863.6779031890835,"p99":877.7524627511517}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:08+00","p50":150.29622478867438,"p95":883.448551324836,"p99":895.3153187908673}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:09+00","p50":166.97223737220844,"p95":888.8596368541516,"p99":907.4631847607508}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:10+00","p50":168.14903360416665,"p95":836.7020059641211,"p99":842.6018494223188}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:11+00","p50":161.44474604624423,"p95":843.6477612890842,"p99":850.0584010756967}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:12+00","p50":134.8340068731973,"p95":883.7097845518987,"p99":899.4763029331075}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:13+00","p50":146.48330126857002,"p95":880.5503852341052,"p99":893.7131090192627}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:14+00","p50":148.97041208688864,"p95":882.0733252448327,"p99":892.6639732366282}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:15+00","p50":188.74677950141557,"p95":847.8840677035021,"p99":860.4342265109735}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:16+00","p50":168.74620900609753,"p95":853.2454907497357,"p99":863.4284157735605}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:17+00","p50":146.11253602256943,"p95":812.5305088152713,"p99":833.2500078782138}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:18+00","p50":132.00140046006945,"p95":859.7655308567181,"p99":869.7588902066301}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:19+00","p50":138.80293983333334,"p95":907.526780548504,"p99":934.1281860940505}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:20+00","p50":139.87628454570157,"p95":891.048569500218,"p99":921.1187058316094}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:21+00","p50":140.1979240633333,"p95":840.97996561889,"p99":847.8145740474141}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:22+00","p50":198.90589620095122,"p95":909.8853588031607,"p99":924.4919901618598}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:23+00","p50":184.77680234693875,"p95":820.833960539598,"p99":860.804364216038}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:24+00","p50":170.11590695572917,"p95":834.0140575928192,"p99":841.3142495561751}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:25+00","p50":152.06705004837804,"p95":867.6596708856902,"p99":888.849981078496}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:26+00","p50":163.73232836419754,"p95":955.6284881550899,"p99":969.4899485513339}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:27+00","p50":160.49244882089923,"p95":946.1397630557085,"p99":961.329233185197}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:28+00","p50":171.36047114044297,"p95":863.3397951197086,"p99":873.3484213171623}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:29+00","p50":174.98410024245575,"p95":817.7546987438155,"p99":831.8507173073291}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:30+00","p50":125.55656867417581,"p95":847.9341209712131,"p99":856.4512946739384}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:31+00","p50":177.6434368971088,"p95":802.5671538721213,"p99":817.0953374670335}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:32+00","p50":189.70806530242587,"p95":901.729172989922,"p99":916.5937888871649}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:33+00","p50":150.4833363888889,"p95":813.0173956254675,"p99":889.3513372021614}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:34+00","p50":122.04424042183622,"p95":802.2271582787143,"p99":807.7741341994122}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:35+00","p50":341.9106411937415,"p95":770.9941586335539,"p99":783.3869970573517}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:36+00","p50":335.82002696480004,"p95":746.5177738208878,"p99":763.8672478751107}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:37+00","p50":458.1015817265625,"p95":599.1254437775463,"p99":607.1927945710612}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:38+00","p50":258.9196548805555,"p95":661.6916260039709,"p99":678.5705793731781}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:39+00","p50":328.23025735171694,"p95":674.0927366052783,"p99":683.0621881832118}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:40+00","p50":179.2275500130612,"p95":636.5371593075872,"p99":645.2843875661497}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:41+00","p50":185.6950034771072,"p95":590.7294421625011,"p99":605.0131187773453}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:42+00","p50":322.346815241432,"p95":631.5183783101332,"p99":641.6835554316442}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:43+00","p50":135.3548357485366,"p95":632.1075382865163,"p99":640.192861615467}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:44+00","p50":260.0389664470868,"p95":816.6905537319011,"p99":831.0769471117806}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:45+00","p50":283.5578886840001,"p95":804.5768434482991,"p99":826.9554999763552}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:46+00","p50":196.2779368576389,"p95":806.6067533162607,"p99":830.4651415380974}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:47+00","p50":104.87109549074076,"p95":833.9636702858843,"p99":838.6670371823305}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:48+00","p50":173.22605064775854,"p95":832.618332443579,"p99":839.9133747691769}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:49+00","p50":214.73754851921186,"p95":828.9682704645428,"p99":851.2501085848703}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:50+00","p50":150.80225555224456,"p95":808.3786789971215,"p99":833.0671200588665}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:51+00","p50":173.908721226087,"p95":865.9056723616602,"p99":876.5186923963797}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:52+00","p50":185.36504035565216,"p95":891.9269155197624,"p99":902.5161164552254}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:53+00","p50":196.33771104111113,"p95":880.3202213392066,"p99":909.0578918998153}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:54+00","p50":189.26141954399998,"p95":870.5828449015429,"p99":886.4967480701769}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:55+00","p50":218.5570775390071,"p95":808.5295165447588,"p99":840.9662854646947}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:56+00","p50":275.7165370346021,"p95":942.1340431241915,"p99":954.3732600148936}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:57+00","p50":198.61435225000002,"p95":937.6633734625623,"p99":952.6139766026736}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:58+00","p50":157.76123945833334,"p95":919.2899651256057,"p99":925.5849828712401}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:05:59+00","p50":182.95862393940882,"p95":870.8557939714607,"p99":878.9871486913752}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:00+00","p50":141.32525285253908,"p95":851.0409201405515,"p99":868.09872412629}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:01+00","p50":107.57274975520833,"p95":839.7470789091428,"p99":849.0125394489106}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:02+00","p50":122.00681259090909,"p95":829.1260181997429,"p99":835.0841027198225}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:03+00","p50":152.47291779121244,"p95":899.4875990820124,"p99":916.7468151209271}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:04+00","p50":142.09549878311967,"p95":843.2210050285286,"p99":849.6521120060152}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:05+00","p50":159.64177131250003,"p95":821.7211610919572,"p99":831.1726534922168}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:06+00","p50":117.46127604129033,"p95":845.3085856225742,"p99":866.8034888236348}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:07+00","p50":153.8493180954861,"p95":810.5903981406843,"p99":829.4838218790253}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:08+00","p50":151.44196150694444,"p95":878.3598685598062,"p99":895.2653950316252}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:09+00","p50":80.46332879310344,"p95":891.5284475983667,"p99":900.214580177584}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:10+00","p50":99.27196940451387,"p95":878.2504103501036,"p99":898.8800232576583}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:11+00","p50":145.30588924193552,"p95":834.7488084411623,"p99":843.6140024256306}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:12+00","p50":141.39370970000007,"p95":872.358400453881,"p99":881.7194287904596}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:13+00","p50":135.05293786801428,"p95":877.5958177076849,"p99":900.218742982496}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:14+00","p50":155.99773729179273,"p95":817.9543655553961,"p99":826.7090539721554}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:15+00","p50":161.41396590625004,"p95":828.9572689682824,"p99":839.4417460503992}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:16+00","p50":181.72705512830183,"p95":829.1701377083015,"p99":843.8705648227862}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:17+00","p50":156.15259033152176,"p95":810.009023174813,"p99":821.8229018733906}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:18+00","p50":203.74004233962265,"p95":902.405142612815,"p99":911.6710367658736}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:19+00","p50":222.92661695999996,"p95":895.4473994186825,"p99":909.9098163684412}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:20+00","p50":155.4374491152,"p95":890.9781440088942,"p99":905.5089575465074}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:21+00","p50":151.1133701986825,"p95":922.0058330167215,"p99":932.9621112307574}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:22+00","p50":180.18373729846942,"p95":924.4423993199435,"p99":940.2614376946437}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:23+00","p50":192.94474238287756,"p95":866.1837719217657,"p99":889.0176447175877}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:24+00","p50":105.6382134745578,"p95":870.434761376513,"p99":893.5471376983903}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:25+00","p50":107.89911800347221,"p95":838.1235074807208,"p99":857.4694506042819}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:26+00","p50":138.01928438265307,"p95":906.229693226538,"p99":916.6829046084447}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:27+00","p50":124.35965741340138,"p95":890.5532258417895,"p99":909.9889361694977}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:28+00","p50":100.52768965348594,"p95":851.0604469979017,"p99":862.7802309410746}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:29+00","p50":67.22237695805556,"p95":837.9830239860305,"p99":853.2633361830394}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:30+00","p50":126.99094629687502,"p95":832.0627577004603,"p99":847.1064091260996}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:31+00","p50":133.94317067215363,"p95":828.4506078998609,"p99":839.115035907801}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:32+00","p50":160.3778032208,"p95":835.7837551165144,"p99":853.8817000392868}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:33+00","p50":153.83455269333334,"p95":872.8117593149381,"p99":892.7757373123518}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:34+00","p50":145.7967649952031,"p95":859.5958394422315,"p99":868.1680034805274}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:35+00","p50":121.27946326736111,"p95":844.610243059293,"p99":855.2671421693121}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:36+00","p50":169.7355412561794,"p95":830.7717871870956,"p99":844.4441607912775}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:37+00","p50":106.35374383641974,"p95":823.2788269930013,"p99":844.2322007787341}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:38+00","p50":136.26873930492425,"p95":835.1196865300786,"p99":845.6271297810973}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:39+00","p50":142.209114784,"p95":839.3400342879867,"p99":851.1243195119146}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:40+00","p50":184.15720095679998,"p95":837.4893090305309,"p99":860.7417074193781}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:41+00","p50":179.9909550214534,"p95":833.3675549463413,"p99":840.4379954888823}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:42+00","p50":175.7529329760666,"p95":836.0509372981903,"p99":845.017752447741}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:43+00","p50":144.44677240985575,"p95":854.4870822800311,"p99":874.6723709965837}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:44+00","p50":142.1307243125,"p95":858.2855717562261,"p99":870.9355916620007}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:45+00","p50":112.85989301791855,"p95":843.362781874958,"p99":856.051467242243}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:46+00","p50":160.80131303376808,"p95":848.8830472922502,"p99":869.5373092129303}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:47+00","p50":169.07398805567118,"p95":844.0324042362133,"p99":855.036505647307}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:48+00","p50":188.2702191377551,"p95":828.0999145178714,"p99":856.5236696306731}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:49+00","p50":176.61449457777778,"p95":835.3213487836317,"p99":874.6627016886429}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:50+00","p50":125.8550488489026,"p95":859.5257986372243,"p99":911.1747673327988}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:51+00","p50":157.71621254861114,"p95":868.4787277852541,"p99":890.2335295346035}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:52+00","p50":126.2046562109375,"p95":912.8839405155943,"p99":924.473734679956}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:53+00","p50":229.79014606122448,"p95":891.5954764658277,"p99":902.8474215219877}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:54+00","p50":130.021756389378,"p95":907.408449443192,"p99":916.795416582843}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:55+00","p50":154.78921833211854,"p95":920.9965613112541,"p99":958.0468899362029}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:56+00","p50":150.13482995238095,"p95":1026.3279199498188,"p99":1037.7145626136964}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:57+00","p50":170.96890766758506,"p95":958.1773285307609,"p99":985.4937783821645}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:58+00","p50":122.08066436284723,"p95":959.0200199835149,"p99":970.3053189972574}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:06:59+00","p50":171.84472884558664,"p95":920.1171047884113,"p99":931.4256133445858}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:00+00","p50":174.99185420562398,"p95":924.9397580594557,"p99":942.7213833548636}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:01+00","p50":177.9066445835668,"p95":817.138424450561,"p99":832.061204869453}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:02+00","p50":119.43115156527207,"p95":875.5225984204892,"p99":895.8237609765812}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:03+00","p50":187.4149137954545,"p95":872.3575949473724,"p99":890.9880670752362}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:04+00","p50":183.8981345317378,"p95":830.4770125488456,"p99":847.2705703136091}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:05+00","p50":137.95978750086803,"p95":821.5833477387006,"p99":829.7543390264059}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:06+00","p50":97.48673016912879,"p95":870.7752721492491,"p99":880.3384775713034}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:07+00","p50":175.263430844,"p95":865.8098528732603,"p99":891.995503250428}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:08+00","p50":142.67212664095706,"p95":894.9192960395326,"p99":903.2366994402992}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:09+00","p50":125.97986903809525,"p95":894.5155005873121,"p99":906.0029393268068}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:10+00","p50":152.54004705555556,"p95":875.7114135471285,"p99":884.9548846478233}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:11+00","p50":157.7046710206335,"p95":877.7040892602992,"p99":900.7094262792905}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:12+00","p50":164.39097716319444,"p95":908.6744261054542,"p99":915.6355940711767}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:13+00","p50":284.7095186460606,"p95":898.3151636160475,"p99":917.0375236029803}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:14+00","p50":213.03792012573925,"p95":749.1985433668476,"p99":763.766683781034}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:15+00","p50":205.98285457999998,"p95":785.7817052120582,"p99":799.5526294006397}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:16+00","p50":211.7603389921875,"p95":793.0057471682643,"p99":816.6120188770315}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:17+00","p50":174.18426664211162,"p95":754.1159916667813,"p99":792.6925114743254}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:18+00","p50":179.2047711603128,"p95":872.838082858378,"p99":877.4244200486241}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:19+00","p50":171.46971292222221,"p95":845.9903450696264,"p99":858.9792886168863}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:20+00","p50":139.22590992805038,"p95":808.8359739343567,"p99":825.248686739155}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:21+00","p50":190.35605077098154,"p95":819.7416415341316,"p99":826.5747291442092}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:22+00","p50":215.35823348072395,"p95":820.5884039275185,"p99":833.0751775190319}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:23+00","p50":215.5791993912,"p95":827.9944940936318,"p99":843.8151916440856}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:24+00","p50":173.66170294979395,"p95":865.8284303524565,"p99":878.8791011460606}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:25+00","p50":223.06623384320002,"p95":886.1519178884164,"p99":904.6845428379652}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:26+00","p50":164.09400109743592,"p95":919.8721243591662,"p99":934.1257135227352}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:27+00","p50":187.35874202218474,"p95":929.6443846587513,"p99":947.0928570580205}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:28+00","p50":165.516768375,"p95":833.027553444034,"p99":855.2181947699839}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:29+00","p50":136.31270867361113,"p95":815.0575312822376,"p99":830.64018129213}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:30+00","p50":176.938902894065,"p95":820.6060925855465,"p99":834.0696043369943}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:31+00","p50":177.06076098557693,"p95":811.3342447303145,"p99":819.2631865897106}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:32+00","p50":184.30300594408607,"p95":790.2555388643713,"p99":796.6814616933741}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:33+00","p50":204.49080381052633,"p95":825.5172701699977,"p99":843.3632020569371}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:34+00","p50":153.77613428358976,"p95":751.1909940446617,"p99":789.248395382599}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:35+00","p50":114.54377559579771,"p95":825.9143976222314,"p99":837.8769394790485}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:36+00","p50":247.47375248535158,"p95":789.876427124331,"p99":798.3889681670313}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:37+00","p50":172.73232440277778,"p95":806.6449977119463,"p99":816.1910754363853}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:38+00","p50":325.398099,"p95":792.2691494821295,"p99":805.9173635179769}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:39+00","p50":93.70890329685312,"p95":789.0943503013455,"p99":800.2168825172714}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:40+00","p50":204.56434037870372,"p95":834.1482735117671,"p99":847.8106218886784}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:41+00","p50":130.39035763735393,"p95":729.0027139269567,"p99":757.3720691801841}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:42+00","p50":126.93971052441404,"p95":822.2740745356435,"p99":828.1600827047412}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:43+00","p50":186.31530989013675,"p95":805.1994792905608,"p99":815.4766477084686}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:44+00","p50":131.958055109375,"p95":782.3304271742662,"p99":795.3120056817778}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:45+00","p50":283.69244049084244,"p95":779.4847170462791,"p99":788.9455284836392}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:46+00","p50":144.8195580128,"p95":730.2671791043707,"p99":742.1600403851279}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:47+00","p50":233.8856215599374,"p95":786.3020844201052,"p99":810.56854603422}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:48+00","p50":137.61986164175144,"p95":730.2251913916592,"p99":751.561282982829}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:49+00","p50":115.63770049652777,"p95":834.4170401223254,"p99":858.4096711135629}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:50+00","p50":277.37367407291663,"p95":807.6329182179355,"p99":837.9062920357043}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:51+00","p50":287.6548706631515,"p95":801.0087704469422,"p99":812.8283146900594}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:52+00","p50":196.6059070642948,"p95":844.4221826444647,"p99":852.6863916745668}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:53+00","p50":108.2624109032258,"p95":837.2047611834575,"p99":847.0441391934694}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:54+00","p50":254.35990261530503,"p95":828.9909491223203,"p99":844.2431132804402}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:55+00","p50":243.96176963833332,"p95":775.8911544442304,"p99":793.3971573531561}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:56+00","p50":291.059954,"p95":863.369279167034,"p99":875.6499854588768}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:57+00","p50":118.48303570731709,"p95":880.989835708958,"p99":893.8563512992562}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:58+00","p50":134.69762048,"p95":908.3543602514915,"p99":935.2729659314009}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:07:59+00","p50":159.51573318939396,"p95":774.7984025494883,"p99":787.8519464922028}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:00+00","p50":132.5374775147569,"p95":811.6646636639717,"p99":819.2798330214346}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:01+00","p50":154.83727492154244,"p95":829.8926885812377,"p99":844.404753005495}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:02+00","p50":137.09910627083332,"p95":826.1869154720674,"p99":832.2116044636093}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:03+00","p50":119.82633751947395,"p95":798.7530535757585,"p99":805.1853546832689}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:04+00","p50":179.58680110833336,"p95":822.2517363193624,"p99":840.3355586332464}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:05+00","p50":140.49727524450677,"p95":793.3923456879351,"p99":845.6200748597755}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:06+00","p50":92.239490921875,"p95":801.9111034237285,"p99":816.6921848320376}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:07+00","p50":164.86558792285155,"p95":790.8018642219823,"p99":796.2994825770851}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:08+00","p50":147.91428722525347,"p95":836.6661536879933,"p99":859.951300117742}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:09+00","p50":96.8338336656,"p95":835.4646435186899,"p99":841.455774904582}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:10+00","p50":141.39275824471997,"p95":790.0044652435289,"p99":798.9681150866879}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:11+00","p50":189.0163824326543,"p95":808.4377594585421,"p99":820.2099867701414}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:12+00","p50":148.95533943434344,"p95":745.4517380558287,"p99":753.5271859490356}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:13+00","p50":200.22043302705512,"p95":754.8854817906715,"p99":765.9465170839632}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:14+00","p50":179.3480331592663,"p95":755.2599911140188,"p99":768.6816938221807}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:15+00","p50":146.79876352559998,"p95":738.0021462563208,"p99":765.7426607790699}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:16+00","p50":148.22170313020834,"p95":750.7971054477822,"p99":758.4167452952031}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:17+00","p50":158.82188277250674,"p95":738.0247322961284,"p99":771.0450949015465}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:18+00","p50":141.35479228701737,"p95":814.7980724699559,"p99":836.234756732638}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:19+00","p50":177.77512096602564,"p95":782.9126407028248,"p99":790.7081046791676}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:20+00","p50":167.55360489761907,"p95":764.3369895335101,"p99":772.4445925343172}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:21+00","p50":161.19875176549021,"p95":827.0744201001902,"p99":837.3763378016707}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:22+00","p50":108.59934394791667,"p95":853.1787799990241,"p99":863.8886851681983}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:23+00","p50":165.86117635894428,"p95":850.6935301706155,"p99":856.3128832328475}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:24+00","p50":150.6563847633333,"p95":831.1178533441479,"p99":841.4003079275906}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:25+00","p50":79.87625581913042,"p95":892.2581449218308,"p99":959.7820640087539}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:26+00","p50":352.38895382274256,"p95":1020.5813153486818,"p99":1032.9922865051162}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:27+00","p50":308.1781168768993,"p95":963.2583324062543,"p99":972.0616888514495}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:28+00","p50":306.60339943112245,"p95":880.2871106654773,"p99":889.7536685674718}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:29+00","p50":102.10667625309091,"p95":852.7468620829264,"p99":859.804272218557}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:30+00","p50":106.73244325499999,"p95":841.29974704302,"p99":852.8204710066244}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:31+00","p50":321.27973864579184,"p95":800.4802991511845,"p99":815.8964421284564}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:32+00","p50":257.2825462662722,"p95":765.2597599540073,"p99":779.4251556515004}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:33+00","p50":117.1543098289855,"p95":800.214465088744,"p99":810.7740819919127}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:34+00","p50":302.4475485432,"p95":833.9859642841504,"p99":842.6462564449073}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:35+00","p50":246.95489917567642,"p95":794.5601211796804,"p99":806.9333227371661}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:36+00","p50":173.4931907763265,"p95":747.7596851817788,"p99":770.7683577086774}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:37+00","p50":143.39463413423516,"p95":795.3996531250689,"p99":801.4254779834108}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:38+00","p50":178.8215507355442,"p95":843.3704430013532,"p99":853.103654267444}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:39+00","p50":326.7416939528735,"p95":851.0260335509452,"p99":868.0524042703017}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:40+00","p50":273.75606001879703,"p95":742.9697219073711,"p99":755.1988105288436}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:41+00","p50":163.6017847906667,"p95":761.5427756520533,"p99":776.307463291584}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:42+00","p50":188.77106168112246,"p95":880.2353590326077,"p99":916.9919280625141}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:43+00","p50":157.59157576649304,"p95":926.6714959521993,"p99":933.2029208649777}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:44+00","p50":183.21288769321268,"p95":867.5303671657156,"p99":875.4152709046724}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:45+00","p50":172.58899126060606,"p95":870.0274403956568,"p99":878.1639216817588}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:46+00","p50":136.56726848271495,"p95":887.5704041545144,"p99":908.0241472114212}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:47+00","p50":122.21778811875,"p95":883.8204975849013,"p99":901.6188352780869}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:48+00","p50":117.90681488541667,"p95":965.0791290914364,"p99":972.0437182757062}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:49+00","p50":166.133769264,"p95":956.5017124201373,"p99":968.381952799801}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:50+00","p50":156.1362717826087,"p95":913.6774881187687,"p99":923.0467272075073}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:51+00","p50":182.91901600160253,"p95":977.4117052932439,"p99":998.238896513396}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:52+00","p50":221.6446938076923,"p95":971.0413254832799,"p99":981.029716571432}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:53+00","p50":204.66321311243905,"p95":949.1028103463277,"p99":976.848530159485}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:54+00","p50":134.3446034791667,"p95":1013.3629291164572,"p99":1023.6935573351959}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:55+00","p50":176.99315628689658,"p95":873.6158796141603,"p99":909.0246995574494}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:56+00","p50":187.62995227083334,"p95":988.9558215975462,"p99":1003.8324746383641}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:57+00","p50":419.5135298645833,"p95":954.8864993630551,"p99":978.1137520724482}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:58+00","p50":360.7198704580499,"p95":1115.579169416203,"p99":1133.0257532518403}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:08:59+00","p50":132.8904335837912,"p95":1035.4947424301918,"p99":1065.8775668192766}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:00+00","p50":207.94988857,"p95":1023.6225219825213,"p99":1031.9716993169816}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:01+00","p50":92.92581579012345,"p95":986.5000283152684,"p99":998.4529732855301}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:02+00","p50":240.27886289431817,"p95":980.5087290152647,"p99":989.1441424989534}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:03+00","p50":211.86449798109638,"p95":1036.5129554345745,"p99":1055.5936941271857}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:04+00","p50":165.98759580555557,"p95":1061.2468185533182,"p99":1077.8474626889326}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:05+00","p50":202.64146762844703,"p95":970.3902405155532,"p99":999.2682586459133}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:06+00","p50":164.67191985937498,"p95":926.4004704440948,"p99":933.1060915909721}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:07+00","p50":229.37524920233196,"p95":923.3430567615446,"p99":939.6936660642805}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:08+00","p50":395.5790240530303,"p95":1001.4622257344301,"p99":1008.014763439697}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:09+00","p50":348.7548057951388,"p95":1041.0793781617176,"p99":1053.8630586854047}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:10+00","p50":330.64562607481855,"p95":910.1581524212788,"p99":981.201424566279}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:11+00","p50":122.51356805104072,"p95":874.9676435039926,"p99":934.533404202676}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:12+00","p50":284.64822443630817,"p95":1001.5030864290636,"p99":1010.147976504706}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:13+00","p50":131.90820698492738,"p95":895.5356105548518,"p99":910.2151579304515}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:14+00","p50":156.27504727343754,"p95":883.3884247818806,"p99":897.8318793304602}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:15+00","p50":213.09676487200832,"p95":821.6040067564068,"p99":839.0098718815977}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:16+00","p50":148.00018924224491,"p95":836.8263725581286,"p99":842.0758055745646}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:17+00","p50":216.97690333333333,"p95":841.4191748727916,"p99":857.1826109781853}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:18+00","p50":110.81297658007206,"p95":870.9784739412257,"p99":888.5048857968324}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:19+00","p50":232.56279648765434,"p95":932.747943678068,"p99":941.6033641988787}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:20+00","p50":174.90163273263886,"p95":853.0830003029971,"p99":891.9499810374264}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:21+00","p50":197.82891518724202,"p95":982.2083995796822,"p99":1004.6279243257801}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:22+00","p50":188.1176668139456,"p95":1047.1851475610003,"p99":1059.156943218619}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:23+00","p50":187.59935938090905,"p95":973.7805985331205,"p99":1028.0082248582726}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:24+00","p50":188.19978416351648,"p95":945.1158830352678,"p99":956.3432570486177}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:25+00","p50":194.079518125,"p95":916.7715002782151,"p99":926.6647193529532}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:26+00","p50":171.807471828125,"p95":975.3143047601363,"p99":995.7264173628159}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:27+00","p50":215.9826261779337,"p95":938.5525203764395,"p99":950.5548861658468}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:28+00","p50":202.3234710176,"p95":972.5082403886812,"p99":1034.2565435258214}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:29+00","p50":168.05932265666664,"p95":835.5191745670895,"p99":849.1273971236337}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:30+00","p50":124.981233590379,"p95":861.3794505190368,"p99":872.7274967310702}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:31+00","p50":162.0610556242173,"p95":869.1633688181888,"p99":874.4879434530678}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:32+00","p50":107.18443183333333,"p95":873.2807993804741,"p99":880.4240872087767}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:33+00","p50":387.9451670740741,"p95":876.2834293559375,"p99":885.7712936414973}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:34+00","p50":317.15956802612334,"p95":824.027211231282,"p99":828.7586825205548}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:35+00","p50":296.67659196799997,"p95":825.2404098583359,"p99":834.4684458496907}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:36+00","p50":202.24116183388887,"p95":849.3757727475789,"p99":859.451061439056}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:37+00","p50":125.38386835084175,"p95":846.6801238458123,"p99":856.7119313559897}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:38+00","p50":111.24819899652778,"p95":910.9217984351507,"p99":923.2873402298192}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:39+00","p50":193.58472444984045,"p95":869.2287711750304,"p99":883.6450729343849}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:40+00","p50":179.11243579631338,"p95":808.1279261349066,"p99":819.8973995055549}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:41+00","p50":163.45019937499998,"p95":818.7858223591192,"p99":832.2873394601266}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:42+00","p50":154.14760645054943,"p95":867.0242086263185,"p99":892.8478135799802}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:43+00","p50":187.43728446440971,"p95":850.2504187882936,"p99":860.0196165170319}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:44+00","p50":220.9440701808086,"p95":915.8030228126722,"p99":932.2156839993386}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:45+00","p50":160.03511016719577,"p95":922.8189448520278,"p99":936.5241384139482}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:46+00","p50":120.34242616646848,"p95":915.8226468851482,"p99":930.0328075187457}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:47+00","p50":113.60138448415657,"p95":874.2721442081835,"p99":897.4510779067537}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:48+00","p50":191.86672659808485,"p95":930.8260887541295,"p99":943.0054520962824}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:49+00","p50":189.15229458263968,"p95":938.4633609682277,"p99":963.0073211340334}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:50+00","p50":177.031243636,"p95":840.6384409823049,"p99":874.1999570827032}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:51+00","p50":170.96667820714285,"p95":850.1573622938108,"p99":861.2461128623148}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:52+00","p50":191.738515226601,"p95":880.5103567704699,"p99":890.4381478972114}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:53+00","p50":156.63287782499998,"p95":864.8865806230847,"p99":885.7164055835507}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:54+00","p50":164.36694672115382,"p95":854.3391238032689,"p99":862.2920887671402}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:55+00","p50":177.2212240911111,"p95":844.513401494492,"p99":870.6330323383246}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:56+00","p50":214.61505149362247,"p95":882.1149001267972,"p99":904.7307901644227}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:57+00","p50":184.67699114482758,"p95":904.2405884345732,"p99":913.2518789987126}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:58+00","p50":173.76448632291667,"p95":896.0261988255711,"p99":912.1697403997156}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:09:59+00","p50":197.31992795074913,"p95":875.1500356517146,"p99":895.5424505337578}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:00+00","p50":163.56090163020409,"p95":765.3218828804653,"p99":786.0973245100863}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:01+00","p50":94.07016503560725,"p95":853.3220445096204,"p99":873.6185410867232}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:02+00","p50":197.7397381032356,"p95":868.9970602267358,"p99":877.9719478223939}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:03+00","p50":177.25506081666668,"p95":847.120467312767,"p99":856.0560337740568}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:04+00","p50":137.13245549333337,"p95":852.197606403841,"p99":858.4422876319645}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:05+00","p50":165.99926910812428,"p95":844.938458156285,"p99":853.1762635590443}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:06+00","p50":182.01431349739855,"p95":853.1545409248797,"p99":862.6554423544384}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:07+00","p50":176.45414991883456,"p95":840.9445652114963,"p99":855.4048047598965}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:08+00","p50":171.23971045061728,"p95":963.3841835088584,"p99":975.3357453895511}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:09+00","p50":153.9903397669775,"p95":977.3760339944135,"p99":988.4870111269}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:10+00","p50":200.99544390582375,"p95":872.5305877935219,"p99":891.6282298050946}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:11+00","p50":162.8197212117347,"p95":888.9681668182017,"p99":912.1772142584937}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:12+00","p50":172.76009902386554,"p95":936.0413173568354,"p99":949.8255237300045}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:13+00","p50":187.3331094294862,"p95":888.9521226836594,"p99":902.411018103393}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:14+00","p50":188.34354261447808,"p95":832.2854849634587,"p99":847.5369146788208}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:15+00","p50":149.1403953283038,"p95":840.5614472034306,"p99":848.2252575414409}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:16+00","p50":160.58630235416666,"p95":835.2589295476068,"p99":844.1790329531406}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:17+00","p50":169.92507091025638,"p95":815.966821391961,"p99":833.3199464153097}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:18+00","p50":124.1631464375,"p95":853.0767238692497,"p99":863.3597467488605}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:19+00","p50":146.0937446314611,"p95":862.9221623470866,"p99":872.2214198684363}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:20+00","p50":121.46128107040818,"p95":840.6713698088469,"p99":851.1471098683835}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:21+00","p50":266.23263089298456,"p95":847.7736574589732,"p99":865.907572981422}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:22+00","p50":167.77067444693878,"p95":875.3627235459031,"p99":884.7950117067304}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:23+00","p50":142.4297070792,"p95":888.4226343158474,"p99":903.1257126532295}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:24+00","p50":328.6672529875,"p95":934.892167494363,"p99":948.2912934344624}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:25+00","p50":214.26317070577784,"p95":878.7871477416882,"p99":894.3978168366898}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:26+00","p50":159.68408152153847,"p95":971.0352644238192,"p99":977.6419470007986}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:27+00","p50":150.1629603938992,"p95":977.0155990187691,"p99":991.7435979842298}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:28+00","p50":136.6727594367816,"p95":876.0869645325334,"p99":891.8145658595572}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:29+00","p50":180.8011044459111,"p95":854.9526814707937,"p99":863.1758217384589}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:30+00","p50":176.6464631146612,"p95":873.5461433089163,"p99":883.1445556609705}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:31+00","p50":224.64859416640004,"p95":798.1204278359847,"p99":822.2126508985306}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:32+00","p50":193.13077186666663,"p95":701.3637078919089,"p99":714.2025665074731}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:33+00","p50":99.1200232377267,"p95":799.9277325783372,"p99":814.9225848540075}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:34+00","p50":307.82025886924527,"p95":822.9180081845253,"p99":828.6089869373529}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:35+00","p50":209.54083736000004,"p95":828.1798231364445,"p99":839.661051257603}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:36+00","p50":186.44532877073624,"p95":860.1641673910867,"p99":878.0229933549709}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:37+00","p50":181.60759278125,"p95":901.3681442106541,"p99":909.4838294164404}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:38+00","p50":129.72080746400002,"p95":909.6799378096706,"p99":926.9622529268079}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:39+00","p50":194.6133341735254,"p95":973.9936750197922,"p99":985.6948396596385}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:40+00","p50":152.5924657204861,"p95":844.1275166277625,"p99":908.7581246712443}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:41+00","p50":161.24503925277773,"p95":784.8714894243392,"p99":802.6239265977845}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:42+00","p50":138.0946943998457,"p95":836.134645481657,"p99":860.4909837626376}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:43+00","p50":148.89154697048613,"p95":863.067582648499,"p99":887.4380642228174}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:44+00","p50":107.01574622754579,"p95":831.6326211966106,"p99":836.7883841018688}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:45+00","p50":243.8516694734651,"p95":841.0826528425268,"p99":862.3088225565806}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:46+00","p50":217.45439516,"p95":843.1506454871429,"p99":856.7169393826788}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:47+00","p50":191.13240648762132,"p95":837.9980486626528,"p99":854.5630091880058}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:48+00","p50":191.6013597503326,"p95":849.9791348857685,"p99":857.5287814026972}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:49+00","p50":207.03783684102024,"p95":881.3869508335943,"p99":894.5235042109763}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:50+00","p50":125.93004647409806,"p95":847.3091082330133,"p99":867.5659536457434}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:51+00","p50":242.989556555795,"p95":844.9876300143916,"p99":859.2599289070151}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:52+00","p50":193.36248114715218,"p95":876.4414313411031,"p99":881.2559201688811}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:53+00","p50":178.1297149323308,"p95":869.3623821178912,"p99":888.6297849649841}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:54+00","p50":190.21099331902585,"p95":872.3728924329929,"p99":880.1174727892901}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:55+00","p50":170.66481297993903,"p95":822.4447861818904,"p99":880.9187764708138}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:56+00","p50":147.18192818439027,"p95":1024.4772189818966,"p99":1040.1213357407912}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:57+00","p50":99.31671955519998,"p95":971.2676735418329,"p99":1006.937375249338}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:58+00","p50":101.63772614108844,"p95":921.4866354397145,"p99":937.2991035375838}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:10:59+00","p50":166.230971306288,"p95":872.7449632003343,"p99":882.1211070864763}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:00+00","p50":171.89506431269845,"p95":859.7998689238482,"p99":875.2822884428181}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:01+00","p50":151.64859563789116,"p95":798.9371321533121,"p99":816.5684739618705}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:02+00","p50":152.45507022592153,"p95":873.3668439535194,"p99":885.3945788212352}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:03+00","p50":116.44094672136055,"p95":904.3510756070987,"p99":922.3467428529924}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:04+00","p50":135.23882057279997,"p95":880.3051326311489,"p99":890.767191570479}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:05+00","p50":135.50346683333333,"p95":870.1438959715019,"p99":879.1564858108558}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:06+00","p50":110.00825342739019,"p95":946.606922975158,"p99":979.6823366872615}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:07+00","p50":113.06676714625445,"p95":970.7575281248357,"p99":978.8567681204873}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:08+00","p50":115.75154096145303,"p95":970.1982304204655,"p99":993.4021494786172}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:09+00","p50":154.88526217968752,"p95":996.0948834897014,"p99":1002.3160169579613}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:10+00","p50":154.2971809617225,"p95":983.7316551865226,"p99":1000.9446543327615}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:11+00","p50":160.21968615364582,"p95":960.3200601401472,"p99":970.1679501772646}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:12+00","p50":184.7616652830688,"p95":1054.7665742701777,"p99":1060.5565761907292}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:13+00","p50":211.61125352958578,"p95":988.347312078945,"p99":1040.6930893614922}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:14+00","p50":153.33471510000882,"p95":941.2694182528642,"p99":949.9365416841824}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:15+00","p50":153.1774247558476,"p95":894.4181080184442,"p99":909.4589553663452}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:16+00","p50":119.5056003482143,"p95":917.7142359122331,"p99":925.3398293620251}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:17+00","p50":145.28837761522635,"p95":895.3045610517221,"p99":927.5254465965048}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:18+00","p50":192.62708938886564,"p95":1064.76435955482,"p99":1097.319677465073}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:19+00","p50":272.90998545857985,"p95":1071.4004026849277,"p99":1090.1369392661159}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:20+00","p50":135.06642139583334,"p95":932.0835913073817,"p99":943.5523403880779}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:21+00","p50":151.34831890844723,"p95":952.3497728006504,"p99":959.4193800218912}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:22+00","p50":156.90832212499996,"p95":973.0640328306124,"p99":983.5040944868518}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:23+00","p50":168.71239393707484,"p95":943.3584196855387,"p99":967.7196470735879}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:24+00","p50":174.65328041645407,"p95":932.0815484663663,"p99":950.2783714826015}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:25+00","p50":150.31283015410145,"p95":932.5670135256786,"p99":938.4557964059144}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:26+00","p50":175.5939092792683,"p95":959.5806446925089,"p99":969.2619396943062}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:27+00","p50":238.42462058874463,"p95":892.1922514098281,"p99":916.9030247294769}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:28+00","p50":176.22756258817734,"p95":872.4350747465959,"p99":880.7247694181568}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:29+00","p50":175.67740075199998,"p95":901.2176802123216,"p99":908.3727602749134}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:30+00","p50":220.2904310486111,"p95":905.8261410479981,"p99":921.8519416753666}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:31+00","p50":234.34014240903687,"p95":787.7232057231653,"p99":793.1561143971799}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:32+00","p50":198.3342561206597,"p95":761.0007040620085,"p99":772.4927070614962}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:33+00","p50":217.5451108574219,"p95":769.7352407673627,"p99":782.5767544892922}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:34+00","p50":75.77212170904762,"p95":810.0876589894979,"p99":819.3601233074359}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:35+00","p50":146.05269533333336,"p95":796.4657528570968,"p99":808.4455695693895}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:36+00","p50":147.4019875789474,"p95":793.2937309405194,"p99":808.9293780171743}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:37+00","p50":116.47999470437405,"p95":824.802272002862,"p99":838.3714291738158}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:38+00","p50":160.93683846291208,"p95":831.692065454275,"p99":847.8802012906016}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:39+00","p50":162.61176531560022,"p95":858.7309830591663,"p99":876.5246451317278}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:40+00","p50":167.85274653609022,"p95":803.7985487810143,"p99":841.9492614244322}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:41+00","p50":195.49130067333334,"p95":845.6801240551719,"p99":856.0813435336237}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:42+00","p50":153.03157367439704,"p95":903.7474331152988,"p99":912.4517476887833}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:43+00","p50":128.97416448098008,"p95":892.338008125421,"p99":905.1434799806143}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:44+00","p50":151.508229824,"p95":815.6881297274264,"p99":823.5263541287617}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:45+00","p50":251.08404782291663,"p95":819.7828872825337,"p99":826.7838209971704}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:46+00","p50":123.05238415660375,"p95":838.1926180824704,"p99":850.9479638170691}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:47+00","p50":85.97893206510417,"p95":856.0561587034073,"p99":868.5477893461904}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:48+00","p50":89.90268073813954,"p95":870.3688951019693,"p99":886.4443832501291}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:49+00","p50":130.2606377762747,"p95":837.013389724972,"p99":847.4560089361693}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:50+00","p50":264.10521205463056,"p95":756.601415105787,"p99":771.9440873693303}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:51+00","p50":134.8368815096,"p95":830.1538964170584,"p99":851.8741183468301}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:52+00","p50":107.73757826639999,"p95":898.7922832942147,"p99":907.4230255254377}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:53+00","p50":167.85568099703704,"p95":837.3211568114643,"p99":843.996996953336}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:54+00","p50":244.9579556223907,"p95":839.8380977840637,"p99":850.7782102327152}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:55+00","p50":120.32408820833334,"p95":831.3844944967532,"p99":837.7835879033361}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:56+00","p50":189.06630808653847,"p95":906.9573108598827,"p99":921.1952591579208}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:57+00","p50":178.87932789285713,"p95":871.6791203076076,"p99":896.8697347445618}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:58+00","p50":137.53577148275863,"p95":894.9068849931532,"p99":911.6242372730751}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:11:59+00","p50":146.77376470646283,"p95":822.737283892796,"p99":840.4725975660258}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:00+00","p50":152.2565715328,"p95":818.937618893155,"p99":823.6658696460473}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:01+00","p50":180.4925367786458,"p95":814.7693117985966,"p99":827.1064605103194}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:02+00","p50":173.21156870600004,"p95":793.2962787663178,"p99":815.5747687904093}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:03+00","p50":175.709220248925,"p95":799.9829250406608,"p99":809.6611395335331}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:04+00","p50":196.74260295189504,"p95":782.2717043651278,"p99":800.9171513356547}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:05+00","p50":153.03618598830695,"p95":807.1243873598579,"p99":823.0264730749618}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:06+00","p50":76.77042728553792,"p95":797.7796690333925,"p99":806.5494952931116}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:07+00","p50":206.1038641925078,"p95":812.8454149081391,"p99":818.492905617795}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:08+00","p50":155.70031246930282,"p95":817.0086137099997,"p99":840.0536793729091}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:09+00","p50":113.43740190666668,"p95":828.490060390545,"p99":850.6972366327445}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:10+00","p50":113.08813453124999,"p95":798.1952301956919,"p99":805.9733666813413}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:11+00","p50":120.90239966521932,"p95":803.6998514344579,"p99":817.7640593754758}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:12+00","p50":234.44476295941723,"p95":816.4826719375952,"p99":830.8888692728224}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:13+00","p50":108.53925146648301,"p95":793.4580789526455,"p99":807.9570781699463}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:14+00","p50":94.40171745241301,"p95":774.5454579891942,"p99":781.5572883823908}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:15+00","p50":98.28205131221306,"p95":793.4014109024016,"p99":799.2534518847268}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:16+00","p50":149.91546381812498,"p95":818.7116649059312,"p99":845.8361067641156}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:17+00","p50":162.89186179166666,"p95":803.6888343996565,"p99":810.5711855771729}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:18+00","p50":114.44044262847223,"p95":850.9718695329565,"p99":878.191189075036}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:19+00","p50":112.27033090880002,"p95":884.9754953020279,"p99":893.1236864657036}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:20+00","p50":161.21657911683005,"p95":841.6200995233787,"p99":865.948623174376}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:21+00","p50":180.35841637602715,"p95":817.6500646699495,"p99":824.2686367378893}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:22+00","p50":184.16409523100936,"p95":823.204692636629,"p99":836.0479917125042}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:23+00","p50":151.29578651564628,"p95":825.2432267539327,"p99":843.5267358139216}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:24+00","p50":110.97868717621527,"p95":826.3428380570258,"p99":842.0019171795883}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:25+00","p50":124.76928563541667,"p95":814.4811531519808,"p99":830.4135864103738}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:26+00","p50":225.27264182758623,"p95":883.8346308824498,"p99":910.5547355746456}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:27+00","p50":145.7032308088954,"p95":884.2412410911751,"p99":898.6401220696649}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:28+00","p50":116.0750307967816,"p95":809.2419479355714,"p99":825.2028744525676}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:29+00","p50":88.61578418840138,"p95":773.9941811351388,"p99":780.3125210279703}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:30+00","p50":94.8484117890909,"p95":779.1257129434073,"p99":784.3368507415931}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:31+00","p50":87.88571630564104,"p95":793.8754665123143,"p99":804.206183968791}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:32+00","p50":209.25331669433598,"p95":782.7107842707007,"p99":789.6125400994349}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:33+00","p50":215.91457235680002,"p95":813.1666002687467,"p99":844.5037317605697}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:34+00","p50":306.00793250969525,"p95":998.7529788117207,"p99":1067.9282760886383}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:35+00","p50":249.67026980473378,"p95":638.016708325821,"p99":911.2827780391508}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:36+00","p50":154.381544626,"p95":252.50252235650564,"p99":310.132031204578}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:37+00","p50":183.3190920321739,"p95":319.4291874815696,"p99":365.06061010392233}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:38+00","p50":193.3142105008837,"p95":331.3361056195248,"p99":364.94288503852346}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:39+00","p50":149.37000596483517,"p95":263.24119990902614,"p99":295.262341940949}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:40+00","p50":253.95013613352242,"p95":392.0113868329774,"p99":403.8299803498166}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:41+00","p50":278.3650190621302,"p95":447.13465519822154,"p99":463.50688994675903}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:42+00","p50":327.0675881866667,"p95":549.1849150711822,"p99":565.908925497427}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:43+00","p50":154.346571625,"p95":663.960345165517,"p99":706.9689967292829}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:44+00","p50":142.91409854166668,"p95":749.0730854814415,"p99":753.605473168343}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:45+00","p50":212.90242085431842,"p95":794.5524503349382,"p99":807.668241748757}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:46+00","p50":146.10984501562498,"p95":740.2374836591185,"p99":788.7512185492161}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:47+00","p50":189.65458442424244,"p95":774.2880752316104,"p99":780.569189327636}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:48+00","p50":190.8069592512,"p95":746.8294023643793,"p99":757.9097181891154}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:49+00","p50":187.45036650499998,"p95":773.9806903844272,"p99":791.3742670580145}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:50+00","p50":160.58134735677086,"p95":748.4141391268612,"p99":776.1378920374683}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:51+00","p50":179.41724981944444,"p95":825.4117816150371,"p99":833.5722586341839}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:52+00","p50":193.8692579,"p95":817.4541948257579,"p99":838.3905615840354}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:53+00","p50":133.3131022506667,"p95":804.6272161971661,"p99":843.6754997437189}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:54+00","p50":215.23493519042972,"p95":820.1622156114123,"p99":836.576944936775}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:55+00","p50":195.98512836360152,"p95":829.5217399000771,"p99":846.9766035206576}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:56+00","p50":211.93463141326532,"p95":876.5158796463933,"p99":884.2941403455017}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:57+00","p50":194.95848175023127,"p95":889.8955760447503,"p99":898.061570316032}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:58+00","p50":174.8257035572917,"p95":836.983750345916,"p99":854.174595180014}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:12:59+00","p50":185.01765345281865,"p95":783.8091730162283,"p99":797.3781692199141}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:00+00","p50":181.49168468333332,"p95":854.0320286526222,"p99":876.3932843094778}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:01+00","p50":192.18683911134235,"p95":824.9003508866109,"p99":831.1554130373821}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:02+00","p50":212.040370654,"p95":760.2966647454697,"p99":775.1488676473422}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:03+00","p50":184.89962020105767,"p95":778.9522806104602,"p99":807.6623481844343}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:04+00","p50":180.41237994399998,"p95":875.1674407458381,"p99":885.0226158260291}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:05+00","p50":171.98483225868054,"p95":858.9723216030018,"p99":870.5855148745923}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:06+00","p50":174.83685631032387,"p95":834.8199987253341,"p99":846.0965595950023}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:07+00","p50":186.8001122653846,"p95":816.1589552005863,"p99":825.4137529974375}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:08+00","p50":134.82532062916667,"p95":894.2661401022333,"p99":903.7043637640378}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:09+00","p50":113.36263017777777,"p95":845.1683774860837,"p99":855.5202630538935}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:10+00","p50":111.29340879200001,"p95":863.6189820058019,"p99":868.6671017242558}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:11+00","p50":225.37168237602629,"p95":884.7661394545567,"p99":896.6839950083884}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:12+00","p50":109.51758659114581,"p95":907.8580082817858,"p99":915.461794684116}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:13+00","p50":133.42983011652422,"p95":913.161860423019,"p99":921.1865673666289}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:14+00","p50":160.99329049555553,"p95":868.8041385549701,"p99":899.1782039783062}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:15+00","p50":202.4228764336395,"p95":893.1561515892249,"p99":910.3530598796934}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:16+00","p50":113.26978362294315,"p95":873.8870630017905,"p99":887.9472598491782}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:17+00","p50":108.6087689952,"p95":905.1818828463887,"p99":919.0142638150488}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:18+00","p50":287.01552126415095,"p95":903.4711276134784,"p99":916.9875559992626}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:19+00","p50":197.20778676954737,"p95":943.9238810856001,"p99":958.6116163509146}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:20+00","p50":197.70403797110694,"p95":934.0908648802676,"p99":965.6466132295819}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:21+00","p50":182.26686428125,"p95":1122.0433041215838,"p99":1129.854995711439}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:22+00","p50":197.2527251426612,"p95":1063.0263271302263,"p99":1086.3412157802093}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:23+00","p50":258.81527862449053,"p95":882.4282529989281,"p99":896.4062585567303}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:24+00","p50":223.7080757692308,"p95":973.8024866058047,"p99":981.3237478547493}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:25+00","p50":192.59624074866306,"p95":926.3267635122235,"p99":960.2205222258593}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:26+00","p50":223.49669833680557,"p95":980.451540501403,"p99":1003.7237713220721}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:27+00","p50":195.43374572320005,"p95":1002.504648327415,"p99":1012.1461317605053}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:28+00","p50":166.28767430121528,"p95":963.0450437290514,"p99":974.2506227082052}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:29+00","p50":109.22427010377358,"p95":922.0160317599069,"p99":940.8509435786722}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:30+00","p50":105.85944407986112,"p95":890.5540513317512,"p99":903.7965199588152}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:31+00","p50":168.5451570805555,"p95":880.6942051721605,"p99":891.9372543461677}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:32+00","p50":166.77281305714286,"p95":854.7274366194209,"p99":872.8147343070067}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:33+00","p50":94.68549759712879,"p95":860.4162385056004,"p99":872.5838758471324}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:34+00","p50":133.48558659114585,"p95":927.8115824928457,"p99":937.2450700094437}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:35+00","p50":148.00545480851065,"p95":936.7433436246174,"p99":951.7217930557334}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:36+00","p50":162.989015019025,"p95":892.3388913348158,"p99":909.3859890199684}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:37+00","p50":180.40886922916147,"p95":900.0711100712679,"p99":916.2045711060756}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:38+00","p50":213.84058113333336,"p95":915.4224442869833,"p99":928.1269335484774}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:39+00","p50":241.36179240405798,"p95":854.0588794755464,"p99":879.4906479933715}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:40+00","p50":199.34068382639717,"p95":768.4692310106907,"p99":788.1794723503616}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:41+00","p50":187.43929888962583,"p95":809.9771460473406,"p99":834.5269188823062}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:42+00","p50":150.09477063234175,"p95":979.7069035564311,"p99":996.1765742936883}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:43+00","p50":157.27042085904762,"p95":967.9962700082426,"p99":1000.4057535846172}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:44+00","p50":133.57194086367346,"p95":946.5850482184725,"p99":953.629504281393}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:45+00","p50":159.42861509173787,"p95":934.7365016626865,"p99":946.8824579610449}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:46+00","p50":144.57733303030614,"p95":869.3214662252736,"p99":895.928362893282}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:47+00","p50":98.46951927701149,"p95":869.5757770250385,"p99":878.7699234011335}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:48+00","p50":275.77091145204173,"p95":939.9071615722406,"p99":950.0976703158276}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:49+00","p50":142.62724698350695,"p95":937.5853970026625,"p99":947.7411572172937}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:50+00","p50":186.5093194656,"p95":867.5459989119223,"p99":883.340993894637}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:51+00","p50":131.9369158515625,"p95":919.5471422079828,"p99":928.3176480177804}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:52+00","p50":111.77957655058825,"p95":984.2688748745799,"p99":993.8474432821193}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:53+00","p50":128.8260136753472,"p95":980.089137234283,"p99":1005.059262160181}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:54+00","p50":254.9861186135204,"p95":936.9383579013178,"p99":947.6925752817033}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:55+00","p50":197.0524846817559,"p95":893.9124456530994,"p99":949.0384812054104}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:56+00","p50":187.25692384190478,"p95":1054.843230726243,"p99":1071.1621746016642}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:57+00","p50":213.7206880740741,"p95":989.9125916148835,"p99":1025.40229471707}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:58+00","p50":139.2349521473684,"p95":1000.0495933011092,"p99":1010.0121380885872}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:13:59+00","p50":129.64639687500002,"p95":887.1540335826011,"p99":906.074784751306}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:14:00+00","p50":224.03850179886734,"p95":885.9223116361939,"p99":893.901546526556}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:14:01+00","p50":188.04045054166667,"p95":978.6861392026756,"p99":1007.200004677414}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:14:02+00","p50":125.36578821991903,"p95":1049.6987448359057,"p99":1060.9283521509722}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:14:03+00","p50":147.87167803472224,"p95":1014.8820879320615,"p99":1037.8197620287287}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:14:04+00","p50":164.2058836345486,"p95":1092.966333034545,"p99":1107.0748144059226}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:14:05+00","p50":222.24574280729166,"p95":1088.531539004985,"p99":1108.914955792625}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:14:06+00","p50":222.01065337573965,"p95":998.8524727065662,"p99":1009.2822465554979}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:14:07+00","p50":140.61986369432591,"p95":974.7979972075143,"p99":985.3659569811534}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:14:08+00","p50":191.32144759306124,"p95":997.6377500531552,"p99":1014.5865792375795}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:14:09+00","p50":229.7060846448,"p95":1036.9521699995291,"p99":1046.5717303484882}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:14:10+00","p50":223.822341648,"p95":987.7172072965918,"p99":1018.9593176868979}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:14:11+00","p50":174.3609642760417,"p95":1020.6294799501393,"p99":1030.6623873431547}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:14:12+00","p50":223.40259965919998,"p95":1024.2735574818262,"p99":1032.5917014920585}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:14:13+00","p50":192.94038563384615,"p95":1038.164579771017,"p99":1051.5459744437533}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:14:14+00","p50":163.56867076215278,"p95":1020.0403446379291,"p99":1036.5058942436958}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:14:15+00","p50":229.70329971556126,"p95":974.1025138264212,"p99":983.959001484522}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:14:16+00","p50":196.93356957546217,"p95":869.9085920611881,"p99":877.1828192817828}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:14:17+00","p50":174.43753960479998,"p95":880.3302723340369,"p99":887.9148995787999}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:14:18+00","p50":174.76491027024457,"p95":849.2061477959595,"p99":854.6386850625306}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:14:19+00","p50":218.6515476477366,"p95":907.0436274283328,"p99":924.7967792118858}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:14:20+00","p50":143.91287824382718,"p95":884.6718403451007,"p99":896.2685535886466}, + {"metric_name":"oidc_token_duration","timestamp":"2025-02-25 10:14:21+00","p50":188.35536131952665,"p95":861.5028502415789,"p99":885.7419178204723} +] diff --git a/docs/docs/apis/benchmarks/v2.70.0/oidc_session/index.mdx b/docs/docs/apis/benchmarks/v2.70.0/oidc_session/index.mdx new file mode 100644 index 0000000000..4615413d2b --- /dev/null +++ b/docs/docs/apis/benchmarks/v2.70.0/oidc_session/index.mdx @@ -0,0 +1,109 @@ +--- +title: oidc session benchmark of Zitadel v2.70.0 +sidebar_label: oidc session +--- + +The test implementats [Support for (OIDC) Standard in a Custom Login UI flow](https://zitadel.com/docs/guides/integrate/login-ui/oidc-standard). + +The tests showed that querying the user takes too much time because Zitadel ensures the projection is up to date. This performance bottleneck must be resolved. + +## Performance test results + +| Metric | Value | +|:--------------------------------------|:------| +| Baseline | none | +| Purpose | Test current performance | +| Test start | 14:24 UTC | +| Test duration | 30min | +| Executed test | oidc\_session | +| k6 version | v0.57.0 | +| VUs | 600 | +| Client location | US1 | +| ZITADEL location | US1 | +| ZITADEL container specification | vCPU: 6
Memory: 6 Gi
Container min scale: 2
Container max scale: 7 | +| ZITADEL Version | v2.70.0 | +| ZITADEL feature flags | webKey: true, improvedPerformance: \[\"IMPROVED\_PERFORMANCE\_ORG\_BY\_ID\", \"IMPROVED\_PERFORMANCE\_PROJECT\", \"IMPROVED\_PERFORMANCE\_USER\_GRANT\", \"IMPROVED\_PERFORMANCE\_ORG\_DOMAIN\_VERIFIED\", \"IMPROVED\_PERFORMANCE\_PROJECT\_GRANT\"\] | +| Database | type: psql
version: v17.2 | +| Database location | US1 | +| Database specification | vCPU: 8
memory: 32Gib | +| ZITADEL metrics during test | | +| Observed errors | | +| Top 3 most expensive database queries | 1: lock current\_states table
2: write events
3: get events for projection
| +| k6 Iterations per second | 153 | +| k6 output | [output](#k6-output) | +| flowchart outcome | Resolve locking issue | + +## Endpoint latencies + +import OutputSource from "!!raw-loader!./output.json"; + +import { BenchmarkChart } from '/src/components/benchmark_chart'; + + + +## k6 output {#k6-output} + +```bash + ✓ authorize status ok + ✓ auth request id returned + ✓ add Session status ok + ✓ finalize auth request status ok + + █ setup + + ✓ user defined + ✓ authorize status ok + ✓ login name status ok + ✓ login shows password page + ✓ password status ok + ✓ password callback + ✓ code set + ✓ token status ok + ✓ access token created + ✓ id token created + ✓ info created + ✓ org created + ✓ create user is status ok + ✓ generate machine key status ok + ✓ member added successful + ✓ openid configuration + ✓ access token returned + + █ teardown + + ✓ org removed + + checks...............................: 100.00% 1097103 out of 1097103 + data_received........................: 482 MB 267 kB/s + data_sent............................: 206 MB 114 kB/s + http_req_blocked.....................: min=150ns avg=185.63µs max=639.06ms p(50)=360ns p(95)=790ns p(99)=1.11µs + http_req_connecting..................: min=0s avg=76.84µs max=394.03ms p(50)=0s p(95)=0s p(99)=0s + http_req_duration....................: min=2.27ms avg=1.31s max=6.57s p(50)=326.44ms p(95)=3.94s p(99)=4.28s + { expected_response:true }.........: min=2.27ms avg=1.31s max=6.57s p(50)=326.44ms p(95)=3.94s p(99)=4.28s + http_req_failed......................: 0.00% 0 out of 823429 + http_req_receiving...................: min=22.92µs avg=143.73µs max=245.98ms p(50)=105.17µs p(95)=188.26µs p(99)=260.56µs + http_req_sending.....................: min=22.37µs avg=67.8µs max=41.57ms p(50)=63.65µs p(95)=104.8µs p(99)=138.46µs + http_req_tls_handshaking.............: min=0s avg=106.12µs max=580.5ms p(50)=0s p(95)=0s p(99)=0s + http_req_waiting.....................: min=2.11ms avg=1.31s max=6.57s p(50)=326.17ms p(95)=3.94s p(99)=4.28s + http_reqs............................: 823429 456.440453/s + iteration_duration...................: min=713.37ms avg=3.94s max=8.94s p(50)=3.92s p(95)=4.98s p(99)=5.44s + iterations...........................: 274271 152.032998/s + login_ui_enter_login_name_duration...: min=113.75ms avg=113.75ms max=113.75ms p(50)=113.75ms p(95)=113.75ms p(99)=113.75ms + login_ui_enter_password_duration.....: min=2.27ms avg=2.27ms max=2.27ms p(50)=2.27ms p(95)=2.27ms p(99)=2.27ms + login_ui_init_login_duration.........: min=20.48ms avg=156.67ms max=6.57s p(50)=126.64ms p(95)=280.16ms p(99)=675.36ms + login_ui_token_duration..............: min=68.53ms avg=68.53ms max=68.53ms p(50)=68.53ms p(95)=68.53ms p(99)=68.53ms + membership_iam_member................: min=34.16ms avg=34.16ms max=34.16ms p(50)=34.16ms p(95)=34.16ms p(99)=34.16ms + oidc_auth_requst_by_id_duration......: min=20.59ms avg=370.56ms max=2.87s p(50)=294.12ms p(95)=911.42ms p(99)=1.08s + oidc_session_duration................: min=713ms avg=3.94s max=8.94s p(50)=3.92s p(95)=4.98s p(99)=5.44s + oidc_token_duration..................: min=40.67ms avg=40.67ms max=40.67ms p(50)=40.67ms p(95)=40.67ms p(99)=40.67ms + org_create_org_duration..............: min=48.92ms avg=48.92ms max=48.92ms p(50)=48.92ms p(95)=48.92ms p(99)=48.92ms + session_add_session_duration.........: min=92.04ms avg=3.4s max=6.16s p(50)=3.46s p(95)=4.18s p(99)=4.48s + user_add_machine_key_duration........: min=32.08ms avg=32.08ms max=32.08ms p(50)=32.08ms p(95)=32.08ms p(99)=32.08ms + user_create_machine_duration.........: min=91.73ms avg=91.73ms max=91.73ms p(50)=91.73ms p(95)=91.73ms p(99)=91.73ms + vus..................................: 82 min=0 max=600 + vus_max..............................: 600 min=600 max=600 + + +running (30m04.0s), 000/600 VUs, 274271 complete and 0 interrupted iterations +default ✓ [======================================] 600 VUs 30m0s +``` diff --git a/docs/docs/apis/benchmarks/v2.70.0/oidc_session/output.json b/docs/docs/apis/benchmarks/v2.70.0/oidc_session/output.json new file mode 100644 index 0000000000..89e85dcb68 --- /dev/null +++ b/docs/docs/apis/benchmarks/v2.70.0/oidc_session/output.json @@ -0,0 +1,7213 @@ +[ + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:23:57+00","p50":62.339445,"p95":62.339445,"p99":62.339445}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:23:58+00","p50":258.77074200000004,"p95":304.8193776022043,"p99":307.750769}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:23:59+00","p50":612.5886873333334,"p95":1051.252312772991,"p99":1150.3667293036326}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:00+00","p50":1466.34658,"p95":1890.521405622621,"p99":1966.6285925087814}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:01+00","p50":2229.766913,"p95":2858.042111162243,"p99":3013.352476644381}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:02+00","p50":2936.8253113749997,"p95":3723.0829172441677,"p99":3864.348713233706}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:03+00","p50":2722.70931,"p95":4551.176884346697,"p99":4884.324276698396}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:04+00","p50":2403.494922875,"p95":4134.315002882077,"p99":5349.750400102871}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:05+00","p50":2425.6356775,"p95":4596.048507064533,"p99":6478.252107770193}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:06+00","p50":1809.1544685000001,"p95":3456.0459715700836,"p99":4211.548926564352}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:07+00","p50":2300.46873375,"p95":3778.969410980997,"p99":5132.441662292213}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:08+00","p50":2022.036871625,"p95":4286.522664230069,"p99":4978.1999302477}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:09+00","p50":1763.95020875,"p95":3942.855478062964,"p99":5376.54929871872}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:10+00","p50":1497.416847125,"p95":2532.823232301905,"p99":3163.63542474717}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:11+00","p50":1510.00130775,"p95":2443.4107665183856,"p99":3815.048016467437}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:12+00","p50":1423.3122075,"p95":2403.431203517892,"p99":2933.722435813967}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:13+00","p50":1093.10377325,"p95":1735.8192317266098,"p99":2462.717855297638}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:14+00","p50":988.92042625,"p95":1677.5313742469152,"p99":2136.529088371923}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:15+00","p50":774.25359525,"p95":1330.24933740759,"p99":1585.9313650582524}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:16+00","p50":671.99325975,"p95":1165.0208613960456,"p99":1302.1564326984715}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:17+00","p50":339.485701,"p95":697.3261753768692,"p99":843.3945306105576}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:18+00","p50":201.913483375,"p95":405.01662332725147,"p99":493.8774995468173}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:19+00","p50":80.622624,"p95":176.80868078289902,"p99":209.23326252017404}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:20+00","p50":94.54975825,"p95":166.80380294345045,"p99":229.63215406687831}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:21+00","p50":134.84770025,"p95":249.96121227380942,"p99":304.6364869858971}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:22+00","p50":135.851149625,"p95":243.7183858047975,"p99":271.48962011084393}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:23+00","p50":158.864069,"p95":300.3324957839335,"p99":361.86525808865025}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:24+00","p50":153.24412925,"p95":271.6212738847816,"p99":410.62831231663944}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:25+00","p50":102.7337625,"p95":189.38235534318898,"p99":216.43320800002382}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:26+00","p50":112.08041475,"p95":199.91836140540218,"p99":258.29287847357557}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:27+00","p50":147.3408945,"p95":301.40192853005624,"p99":367.25708713191847}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:28+00","p50":249.730147,"p95":437.3320270258285,"p99":476.21646201493314}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:29+00","p50":155.48859487500002,"p95":307.8827681803662,"p99":434.3487465989096}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:30+00","p50":81.205484875,"p95":160.0606962501876,"p99":194.8828979206083}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:31+00","p50":99.88190674999998,"p95":174.38744338783283,"p99":197.63848377611234}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:32+00","p50":122.605796,"p95":220.9572788749256,"p99":250.8256070917764}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:33+00","p50":132.900805375,"p95":233.9873465163738,"p99":278.4107434359565}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:34+00","p50":116.745638625,"p95":205.99698638853226,"p99":272.9563828046458}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:35+00","p50":120.912261,"p95":210.90340303533114,"p99":224.24648841782954}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:36+00","p50":121.429260125,"p95":205.73814434296582,"p99":223.5805043241348}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:37+00","p50":133.60109187499998,"p95":222.34477844290518,"p99":312.3835695351458}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:38+00","p50":138.033385125,"p95":245.3691680875998,"p99":306.79640918104025}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:39+00","p50":98.761413,"p95":208.16198174989222,"p99":253.05098553597642}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:40+00","p50":128.428046,"p95":239.9824594242184,"p99":269.22985423001865}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:41+00","p50":128.3695035,"p95":245.3018024707196,"p99":319.29224956482983}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:42+00","p50":163.64383049999998,"p95":268.6600551537396,"p99":294.01614245344115}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:43+00","p50":139.71572725,"p95":254.93232634073448,"p99":303.9782826224594}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:44+00","p50":104.160599125,"p95":189.62585153889592,"p99":216.47245810448385}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:45+00","p50":71.68220725,"p95":143.28919135566616,"p99":177.8357330769234}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:46+00","p50":145.61508175,"p95":258.58472171387615,"p99":301.66242926791097}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:47+00","p50":122.6830735,"p95":255.11650307970416,"p99":297.04778025715683}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:48+00","p50":148.91887175,"p95":275.2239237879314,"p99":316.5770543267822}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:49+00","p50":88.96301712500001,"p95":161.57574872134887,"p99":187.1681947913649}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:50+00","p50":81.3965965,"p95":147.8346919073019,"p99":201.03919433998107}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:51+00","p50":120.65103400000001,"p95":265.45174884270523,"p99":296.96692228469277}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:52+00","p50":127.27438849999999,"p95":307.58304463195014,"p99":425.0258861029873}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:53+00","p50":113.021582,"p95":219.83732407803558,"p99":316.9884570452313}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:54+00","p50":113.07502837499999,"p95":204.1461799367106,"p99":255.23649308430933}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:55+00","p50":131.36962599999998,"p95":215.36513332501673,"p99":260.0590691196408}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:56+00","p50":165.88236575,"p95":330.7391823178491,"p99":425.51631017698384}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:57+00","p50":162.9484785,"p95":300.4033115443126,"p99":352.63109168887996}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:58+00","p50":209.762295,"p95":337.76112798572564,"p99":402.5020439606638}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:24:59+00","p50":154.950731125,"p95":357.53976211221806,"p99":410.1808560318742}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:00+00","p50":95.46575175,"p95":165.9329520700996,"p99":193.19430885511733}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:01+00","p50":110.32243199999999,"p95":205.02609343541116,"p99":238.3471862522974}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:02+00","p50":108.69780775000001,"p95":180.4847667307223,"p99":211.47397537223412}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:03+00","p50":126.999021,"p95":220.27880752573287,"p99":275.1039267062788}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:04+00","p50":103.47961987500001,"p95":198.3098625562466,"p99":255.211529183651}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:05+00","p50":97.769744,"p95":157.10999089385137,"p99":185.0256985644598}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:06+00","p50":120.41201725,"p95":209.90686408629654,"p99":243.03370417965172}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:07+00","p50":100.90729775,"p95":186.82457776383313,"p99":239.67428486025477}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:08+00","p50":108.608282,"p95":205.69547052944756,"p99":235.1612237323804}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:09+00","p50":98.440318,"p95":166.9628958964776,"p99":190.1057014537153}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:10+00","p50":121.45391112499999,"p95":201.66206300973536,"p99":244.47408824865295}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:11+00","p50":169.99164150000001,"p95":306.78302976255185,"p99":369.4129249820883}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:12+00","p50":173.96470475,"p95":314.173019101388,"p99":360.68249911093517}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:13+00","p50":90.248065125,"p95":193.93462233031963,"p99":223.7667799232671}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:14+00","p50":117.284639,"p95":283.2187083831297,"p99":312.54090032681324}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:15+00","p50":209.89915975000002,"p95":357.8105314326649,"p99":458.3502724096184}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:16+00","p50":175.668555,"p95":408.30996491104725,"p99":454.3367659646912}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:17+00","p50":126.53598225,"p95":244.5066677826625,"p99":284.96427947670486}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:18+00","p50":182.585486,"p95":300.4480899116068,"p99":415.43282852241134}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:19+00","p50":85.036164,"p95":194.0201562075404,"p99":257.17420427080987}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:20+00","p50":110.99374399999999,"p95":182.93796673325633,"p99":210.99211090101625}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:21+00","p50":158.27253075,"p95":280.8447603797603,"p99":406.3895710498381}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:22+00","p50":131.073961,"p95":306.1104988804932,"p99":390.5669742125015}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:23+00","p50":120.18386774999999,"p95":225.6113125841849,"p99":266.6700864262009}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:24+00","p50":83.811248125,"p95":153.91033095073067,"p99":229.97063926745008}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:25+00","p50":104.288765375,"p95":265.04793333687,"p99":781.361796479462}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:26+00","p50":87.991764625,"p95":192.72405145385153,"p99":277.11009253364773}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:27+00","p50":79.24215650000001,"p95":140.30139122265007,"p99":181.44180362664295}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:28+00","p50":141.91416325,"p95":221.03828344602192,"p99":258.52044517297696}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:29+00","p50":115.37705625,"p95":234.6432947635988,"p99":271.933878975307}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:30+00","p50":109.40425950000001,"p95":209.50474681511835,"p99":259.56671240850136}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:31+00","p50":136.66431624999998,"p95":242.32203516944003,"p99":291.9124370187953}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:32+00","p50":104.87810250000001,"p95":215.7881174466953,"p99":359.04249330302906}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:33+00","p50":121.87192825,"p95":236.49695988608073,"p99":336.3721206654472}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:34+00","p50":175.74734125,"p95":323.71743514348844,"p99":409.43231308774614}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:35+00","p50":166.974268875,"p95":305.019184363189,"p99":353.04063514338225}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:36+00","p50":200.39391525000002,"p95":319.16844496324785,"p99":389.91729644082903}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:37+00","p50":103.06974724999999,"p95":395.2213094524536,"p99":433.94111075871274}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:38+00","p50":145.86402950000002,"p95":255.59114736909297,"p99":353.3783478235779}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:39+00","p50":121.8788085,"p95":208.96086631138468,"p99":235.55708836210346}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:40+00","p50":112.94661,"p95":205.92689588133533,"p99":246.81114772996378}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:41+00","p50":118.36935562499998,"p95":199.87209803065448,"p99":242.7695993302276}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:42+00","p50":93.162139375,"p95":154.2165233394804,"p99":169.03084851870108}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:43+00","p50":172.78262425,"p95":329.82226271698124,"p99":451.04865585016825}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:44+00","p50":170.502716,"p95":328.0731294097156,"p99":372.06686009350176}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:45+00","p50":108.1077565,"p95":187.81222636979376,"p99":216.76844491746806}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:46+00","p50":124.531436,"p95":202.42340565270806,"p99":226.85033417475128}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:47+00","p50":147.61186650000002,"p95":246.20052270657277,"p99":288.1365970182802}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:48+00","p50":155.049870125,"p95":261.5078678293365,"p99":322.147174874124}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:49+00","p50":162.05682325,"p95":280.1764878707628,"p99":325.851279985611}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:50+00","p50":162.02391825,"p95":272.60000720487113,"p99":358.81135469753934}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:51+00","p50":203.6982145,"p95":349.5975435165336,"p99":454.6759331243286}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:52+00","p50":236.5626475,"p95":429.5447336779504,"p99":454.5021117719574}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:53+00","p50":233.40121375,"p95":394.48415033848266,"p99":487.2311414028055}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:54+00","p50":104.500477375,"p95":225.8710205311589,"p99":339.7188048663127}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:55+00","p50":84.47709825000001,"p95":200.53741230225086,"p99":252.3193293331108}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:56+00","p50":176.535817,"p95":305.1437717488809,"p99":327.8969502522719}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:57+00","p50":124.00651074999999,"p95":207.40135342886614,"p99":274.86053937365244}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:58+00","p50":121.298443625,"p95":202.67407245358348,"p99":275.77927709895374}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:25:59+00","p50":164.774263625,"p95":252.70300307483052,"p99":314.27873929903694}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:00+00","p50":146.396086,"p95":266.84947615611566,"p99":287.55821154191403}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:01+00","p50":121.873736,"p95":213.2060694931152,"p99":278.46537486591717}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:02+00","p50":135.90665475,"p95":247.38943783265447,"p99":323.91765247279835}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:03+00","p50":115.51458525,"p95":230.91915040398175,"p99":303.65039661653475}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:04+00","p50":137.90411,"p95":239.5515597439022,"p99":301.0728532459335}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:05+00","p50":121.81873925,"p95":189.82104425847388,"p99":275.1509595048299}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:06+00","p50":117.64341350000001,"p95":185.63193928801275,"p99":221.3588303736348}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:07+00","p50":135.37097925,"p95":205.95409413840676,"p99":246.17206610061265}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:08+00","p50":129.892028,"p95":247.24903646966757,"p99":336.33620865296837}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:09+00","p50":161.538913,"p95":267.4152007579935,"p99":342.07675686108877}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:10+00","p50":80.07702925000001,"p95":164.80643884602736,"p99":196.44627083702088}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:11+00","p50":128.1238875,"p95":230.56911746719354,"p99":259.92257737622043}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:12+00","p50":131.93008375,"p95":237.19878021039668,"p99":265.17925049911497}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:13+00","p50":80.92376875,"p95":166.19935815821123,"p99":218.63094601485633}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:14+00","p50":107.20864575,"p95":183.9416062268815,"p99":218.68593009438493}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:15+00","p50":118.849626,"p95":211.47769716343677,"p99":227.38683597412373}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:16+00","p50":161.23569500000002,"p95":286.204805217598,"p99":343.8168104247828}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:17+00","p50":190.55114075,"p95":328.5241270366991,"p99":398.16121423104954}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:18+00","p50":152.96415100000002,"p95":288.0607910135304,"p99":333.71225881917735}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:19+00","p50":114.50825375,"p95":199.46055038071154,"p99":342.020087477211}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:20+00","p50":122.31746225,"p95":238.2758807797658,"p99":348.1809812281346}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:21+00","p50":145.187960375,"p95":312.02423999221065,"p99":373.39085369808436}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:22+00","p50":104.4269945,"p95":216.50670777161824,"p99":250.691692627326}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:23+00","p50":93.854250125,"p95":180.63569997648548,"p99":195.76191512520884}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:24+00","p50":162.52621299999998,"p95":305.1106610165293,"p99":421.2744577359433}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:25+00","p50":90.46220875,"p95":155.03327919440764,"p99":191.43126126426125}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:26+00","p50":121.42907225,"p95":259.0407722422349,"p99":300.4013097425168}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:27+00","p50":191.489638,"p95":338.46886518697704,"p99":409.9304658424754}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:28+00","p50":254.091921,"p95":498.5261794089118,"p99":652.4870352712064}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:29+00","p50":195.65243262499996,"p95":359.5853661030371,"p99":434.67802980742096}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:30+00","p50":104.37752474999999,"p95":189.11078112564564,"p99":226.1139453166275}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:31+00","p50":128.52471275,"p95":275.020431605122,"p99":337.4948282176714}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:32+00","p50":111.99377387499999,"p95":205.45506149177308,"p99":283.90608798797416}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:33+00","p50":92.952551125,"p95":178.08582774648798,"p99":217.53181213558767}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:34+00","p50":128.96273975000003,"p95":216.26248524941136,"p99":255.0496386518245}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:35+00","p50":80.92732125,"p95":196.68805005272628,"p99":275.4611588623581}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:36+00","p50":130.0291,"p95":280.3884509568725,"p99":328.3164207868519}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:37+00","p50":152.59994375,"p95":263.5131926977873,"p99":292.10753289325}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:38+00","p50":90.19333325,"p95":185.97320981996154,"p99":219.97406425438024}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:39+00","p50":133.452378375,"p95":239.92717295034717,"p99":305.6644703736977}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:40+00","p50":126.000802625,"p95":229.96900222730343,"p99":279.7686764251833}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:41+00","p50":157.95002825,"p95":282.8278621401409,"p99":338.0009739066853}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:42+00","p50":155.87846575,"p95":282.81779471820755,"p99":319.075486067091}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:43+00","p50":84.791211875,"p95":201.00873207962212,"p99":265.1927523357043}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:44+00","p50":131.13657,"p95":232.9998295103712,"p99":267.1778742193985}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:45+00","p50":69.03678837499999,"p95":123.14367056466914,"p99":146.17256146747852}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:46+00","p50":71.84918975,"p95":125.29048634898186,"p99":161.22569621515655}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:47+00","p50":108.3962715,"p95":189.21288241272092,"p99":250.43372209188507}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:48+00","p50":173.589551625,"p95":340.32142986462975,"p99":435.0298410092254}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:49+00","p50":145.074171375,"p95":278.80661311543963,"p99":322.5748526054079}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:50+00","p50":109.930184875,"p95":205.2679639904865,"p99":234.0642826333468}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:51+00","p50":79.708421875,"p95":150.68225488877206,"p99":190.87135977002572}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:52+00","p50":113.259191,"p95":216.83242306798743,"p99":260.34773490463255}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:53+00","p50":144.34075025,"p95":264.9229432889909,"p99":292.3955839349995}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:54+00","p50":129.49980950000003,"p95":228.63573991439424,"p99":270.81280549609704}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:55+00","p50":161.749598,"p95":266.27565269464526,"p99":298.95324273064807}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:56+00","p50":161.51081775,"p95":289.8261035301765,"p99":312.44927181175444}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:57+00","p50":144.680062375,"p95":251.73008695947266,"p99":319.2730107494321}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:58+00","p50":103.74432949999999,"p95":234.07673280859632,"p99":262.35760736007114}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:26:59+00","p50":98.359315875,"p95":171.64733912472855,"p99":205.86780048810624}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:00+00","p50":224.19412749999998,"p95":430.5284287400694,"p99":472.500818028223}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:01+00","p50":214.94447825,"p95":332.4069813295262,"p99":491.1537392900348}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:02+00","p50":87.151083,"p95":149.74296313370849,"p99":276.8641602423944}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:03+00","p50":103.007207,"p95":179.4887288067106,"p99":216.45315720721055}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:04+00","p50":181.669376,"p95":327.77605005206107,"p99":393.2713689738388}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:05+00","p50":129.611630125,"p95":338.52021778444407,"p99":413.33721826308704}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:06+00","p50":135.57536050000002,"p95":241.09002528889812,"p99":263.1779390573251}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:07+00","p50":117.5742735,"p95":225.33277177588855,"p99":284.7057558166418}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:08+00","p50":106.05203699999998,"p95":203.89150652199532,"p99":264.5495631084714}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:09+00","p50":140.008549125,"p95":246.17656151906877,"p99":296.20616681778927}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:10+00","p50":170.39995750000003,"p95":314.5208791921652,"p99":449.7122427047903}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:11+00","p50":148.487858625,"p95":237.55055619155775,"p99":263.07055659813665}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:12+00","p50":97.5083895,"p95":237.45036286930443,"p99":311.6070163106155}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:13+00","p50":95.2986335,"p95":182.7446142193631,"p99":223.1338157649808}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:14+00","p50":134.70301325,"p95":238.70017526986868,"p99":274.75862380349946}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:15+00","p50":155.4862305,"p95":286.4197492095982,"p99":330.7174139394374}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:16+00","p50":157.2371905,"p95":344.28687604996253,"p99":436.2257932693644}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:17+00","p50":182.28017849999998,"p95":337.41122012631547,"p99":422.3947210080943}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:18+00","p50":280.8489555,"p95":465.9044066284709,"p99":534.709425199831}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:19+00","p50":212.039927,"p95":412.8942489033137,"p99":487.0306148927772}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:20+00","p50":85.27730825,"p95":161.17831913523864,"p99":218.57807443371962}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:21+00","p50":146.1264885,"p95":280.43152174114454,"p99":328.1703315011897}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:22+00","p50":154.2236105,"p95":287.3407274379973,"p99":343.0989736846919}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:23+00","p50":106.63604199999999,"p95":214.39217658339106,"p99":254.3369112411437}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:24+00","p50":133.998239,"p95":250.71500307920837,"p99":314.97762923251344}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:25+00","p50":160.1628925,"p95":274.95658198348247,"p99":325.88719703962994}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:26+00","p50":191.39069775000002,"p95":304.87406217246627,"p99":372.72260921007535}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:27+00","p50":158.012422875,"p95":243.3969006114224,"p99":288.9334179496391}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:28+00","p50":139.386489,"p95":252.27419602433568,"p99":280.0468905361411}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:29+00","p50":123.69265375,"p95":208.1789062341764,"p99":244.88187368466947}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:30+00","p50":113.095934875,"p95":182.65724506324804,"p99":225.4004828125377}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:31+00","p50":108.2514075,"p95":201.32596045630282,"p99":279.4491642193556}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:32+00","p50":151.30075025000002,"p95":338.3215411476516,"p99":435.7161857847447}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:33+00","p50":169.178243125,"p95":276.7689444595258,"p99":341.75094073169754}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:34+00","p50":126.728785,"p95":276.16515665615873,"p99":378.9622413867683}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:35+00","p50":113.951581,"p95":236.23333125094842,"p99":252.57109136116028}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:36+00","p50":118.91571724999999,"p95":224.42526988624024,"p99":272.2253195049958}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:37+00","p50":117.97213550000001,"p95":239.48008170637888,"p99":283.9768771665761}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:38+00","p50":98.715278,"p95":161.3067124477978,"p99":224.08999260514832}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:39+00","p50":104.3048115,"p95":191.47667405479314,"p99":230.81905961741165}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:40+00","p50":128.67685999999998,"p95":224.3690010760014,"p99":296.6125738251982}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:41+00","p50":184.1455805,"p95":319.0163887965636,"p99":388.34378445272733}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:42+00","p50":167.557597,"p95":303.76941795591677,"p99":373.23217727749966}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:43+00","p50":148.56774475,"p95":266.6482720201388,"p99":308.3764299881537}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:44+00","p50":138.6539045,"p95":242.81603112916923,"p99":326.60747415434736}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:45+00","p50":140.51406425,"p95":252.37621297669028,"p99":274.260405402298}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:46+00","p50":117.606172625,"p95":177.0593152675221,"p99":220.58356091637634}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:47+00","p50":144.1524865,"p95":253.8820211348152,"p99":285.6416172647114}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:48+00","p50":134.8931645,"p95":214.73377863118662,"p99":271.803070198863}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:49+00","p50":84.747053,"p95":183.7514163944516,"p99":231.84371373550127}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:50+00","p50":91.97071425,"p95":161.16665137580287,"p99":184.45860150095393}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:51+00","p50":129.00125575,"p95":253.52428303538733,"p99":287.5147433752444}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:52+00","p50":120.75225075,"p95":238.12202377890952,"p99":289.0132848020582}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:53+00","p50":72.8180925,"p95":275.5048755232887,"p99":333.01630285324524}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:54+00","p50":166.813467,"p95":287.252265096695,"p99":425.6935347129059}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:55+00","p50":152.11969925,"p95":275.6256685159703,"p99":408.3138829792819}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:56+00","p50":125.68134875000001,"p95":219.99952303352313,"p99":283.80332375073743}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:57+00","p50":103.59044450000002,"p95":206.80742811902303,"p99":240.64250724737047}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:58+00","p50":142.747529,"p95":247.2968077442006,"p99":304.6619194760995}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:27:59+00","p50":145.04037812500002,"p95":259.3552853584927,"p99":322.3908203913068}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:00+00","p50":116.896941,"p95":253.69721873492634,"p99":327.36586049640084}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:01+00","p50":117.491841,"p95":200.16130201312328,"p99":249.40491876453018}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:02+00","p50":141.10933625,"p95":292.7466525136427,"p99":360.57083601154807}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:03+00","p50":101.56465937499999,"p95":196.6713329223383,"p99":212.75610551703264}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:04+00","p50":184.04186912499995,"p95":278.9518956062697,"p99":331.1907442709555}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:05+00","p50":166.034122,"p95":302.49065924267984,"p99":337.1064949128821}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:06+00","p50":125.5577355,"p95":221.68361882716155,"p99":294.68616576544287}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:07+00","p50":79.27365387500001,"p95":170.1143819094808,"p99":215.02191827812314}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:08+00","p50":189.48967449999998,"p95":313.0046311657138,"p99":372.2441024757123}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:09+00","p50":175.61609937499998,"p95":261.3699798656588,"p99":352.30132371636347}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:10+00","p50":151.69483925,"p95":275.3367951394992,"p99":301.64116372481203}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:11+00","p50":97.3218975,"p95":186.81788814242665,"p99":240.16954303669954}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:12+00","p50":192.67417062500002,"p95":292.60155422256656,"p99":340.9740105527825}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:13+00","p50":176.3939085,"p95":328.8460191401305,"p99":453.8221228941927}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:14+00","p50":132.0770625,"p95":245.69620103810072,"p99":287.5159258611154}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:15+00","p50":96.6422825,"p95":162.57929904904304,"p99":203.58991057710074}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:16+00","p50":107.85360812500001,"p95":194.7230699357515,"p99":230.92471614653158}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:17+00","p50":119.388885875,"p95":198.01640603724988,"p99":248.92444979705883}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:18+00","p50":106.84148637500002,"p95":196.41971112324367,"p99":237.10626086190558}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:19+00","p50":94.3971075,"p95":177.6103008411679,"p99":222.30656479013538}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:20+00","p50":85.44688049999999,"p95":150.8254637445855,"p99":169.5895655597744}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:21+00","p50":90.70992799999999,"p95":169.6062778058667,"p99":205.73066347210215}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:22+00","p50":121.1873585,"p95":217.12619933547782,"p99":263.40825334547424}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:23+00","p50":157.61027575,"p95":272.4139090822719,"p99":347.0562172099047}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:24+00","p50":79.1193135,"p95":171.703820723088,"p99":214.20058660788345}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:25+00","p50":199.418836375,"p95":337.0903869744407,"p99":382.6705857383341}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:26+00","p50":197.83513837499999,"p95":413.3557164345593,"p99":524.2143513585806}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:27+00","p50":129.1172775,"p95":236.02128140383456,"p99":324.30315063636544}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:28+00","p50":143.00698975,"p95":278.94960529228064,"p99":311.65795859507443}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:29+00","p50":101.42420175,"p95":162.23032102305604,"p99":191.75841195425988}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:30+00","p50":123.37847375,"p95":233.42535071152943,"p99":297.9504201772401}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:31+00","p50":107.955679,"p95":187.4649409562993,"p99":218.78511079152847}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:32+00","p50":85.30807075,"p95":147.12308162440465,"p99":170.7508150957675}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:33+00","p50":96.79359475,"p95":184.35878904683113,"p99":243.53863540313722}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:34+00","p50":125.06368125,"p95":249.4197935131814,"p99":328.9112866527493}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:35+00","p50":129.223492,"p95":229.83890892393063,"p99":313.8353336180143}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:36+00","p50":122.01853,"p95":226.84750504872548,"p99":263.09705869331026}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:37+00","p50":98.948057,"p95":178.37118210773087,"p99":213.47674875252773}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:38+00","p50":144.52986900000002,"p95":232.26404542651392,"p99":267.00160386983396}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:39+00","p50":91.19648124999999,"p95":217.44530391093855,"p99":307.066786078295}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:40+00","p50":86.31139125000001,"p95":153.99202094052487,"p99":191.9769022891071}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:41+00","p50":122.12291775,"p95":194.36299235924577,"p99":230.74981155183028}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:42+00","p50":84.67345175,"p95":153.66712516805995,"p99":207.4707485197773}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:43+00","p50":107.5286885,"p95":187.94218008179664,"p99":216.05675935889053}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:44+00","p50":91.386695375,"p95":176.7614089843783,"p99":223.6953505829129}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:45+00","p50":94.26895875,"p95":165.36120567740028,"p99":190.0989624462712}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:46+00","p50":140.12817375,"p95":294.557461591749,"p99":314.8331035929489}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:47+00","p50":83.27134325,"p95":141.18936033415127,"p99":159.48423490322875}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:48+00","p50":100.56725812500001,"p95":210.11579954620709,"p99":260.94590228436255}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:49+00","p50":169.055963625,"p95":301.5246726097504,"p99":393.6182446898877}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:50+00","p50":189.70676874999998,"p95":358.15270057301683,"p99":409.6520169406807}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:51+00","p50":146.7766985,"p95":288.81404874374994,"p99":314.1154399872408}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:52+00","p50":148.01201175,"p95":280.3084735530743,"p99":304.9361293612933}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:53+00","p50":144.27042849999998,"p95":252.99522648699985,"p99":335.75158685156487}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:54+00","p50":118.56673275,"p95":220.60333793239033,"p99":290.3112148919711}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:55+00","p50":127.88203362499999,"p95":226.9018506400673,"p99":263.55477784556984}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:56+00","p50":135.095340375,"p95":247.99795177745585,"p99":283.1354580115335}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:57+00","p50":118.788546375,"p95":202.9921249502286,"p99":247.6886837669313}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:58+00","p50":111.937216,"p95":186.10904270538214,"p99":233.25000319811343}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:28:59+00","p50":137.43512275,"p95":267.40894726768363,"p99":326.5315515065327}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:00+00","p50":107.745891125,"p95":176.6703956931873,"p99":234.48687078047442}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:01+00","p50":108.948009875,"p95":198.71243050037288,"p99":227.46675437707827}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:02+00","p50":134.658324,"p95":224.14865123099756,"p99":251.88450463898278}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:03+00","p50":187.209733625,"p95":311.0892797334904,"p99":361.0140368406591}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:04+00","p50":102.32390125,"p95":186.5861975439346,"p99":254.97673778805446}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:05+00","p50":91.9990925,"p95":169.1640546961567,"p99":223.23189777210186}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:06+00","p50":95.3258525,"p95":164.91076562355232,"p99":179.5392866664276}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:07+00","p50":101.52308275000001,"p95":189.81198168373115,"p99":221.04319105974864}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:08+00","p50":113.37405825,"p95":212.58137224085783,"p99":261.703685465714}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:09+00","p50":112.163341,"p95":196.3774321120682,"p99":238.18226578650953}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:10+00","p50":169.51515375,"p95":332.054849600981,"p99":353.63174300643254}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:11+00","p50":171.0175385,"p95":278.9449999355333,"p99":303.030006034503}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:12+00","p50":109.27713875,"p95":213.07570373858684,"p99":248.68207259891986}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:13+00","p50":109.30497875,"p95":247.0847239415872,"p99":339.7349968072023}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:14+00","p50":103.506105375,"p95":180.40844785259398,"p99":214.81278446597173}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:15+00","p50":141.51360825,"p95":240.46166829774677,"p99":281.0931983415356}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:16+00","p50":135.746889,"p95":217.23297700920426,"p99":281.7314135155401}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:17+00","p50":162.64720950000003,"p95":272.3121158818294,"p99":307.08627023656345}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:18+00","p50":173.244071,"p95":305.5436752984572,"p99":384.3586763511896}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:19+00","p50":147.00583924999998,"p95":262.7795125512412,"p99":302.3056161814046}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:20+00","p50":123.155491375,"p95":238.8820221819256,"p99":350.34427757199643}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:21+00","p50":146.54138575,"p95":256.9378296471801,"p99":293.3194825697508}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:22+00","p50":181.59883,"p95":322.2476052710166,"p99":362.8304313739882}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:23+00","p50":119.9760205,"p95":195.42988882607423,"p99":263.340930191}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:24+00","p50":166.022541625,"p95":251.22756778456534,"p99":309.2453509117308}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:25+00","p50":111.136131375,"p95":188.680955581707,"p99":217.4910119656749}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:26+00","p50":154.613173,"p95":265.73202318982413,"p99":306.6141612308178}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:27+00","p50":171.64337225,"p95":314.9374033931488,"p99":397.1171208631456}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:28+00","p50":158.3884395,"p95":304.8563426973292,"p99":339.7822106557975}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:29+00","p50":92.627467,"p95":202.0216888137951,"p99":280.90554138609605}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:30+00","p50":96.61781825,"p95":157.9654235613621,"p99":186.83731457728626}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:31+00","p50":123.43314362500001,"p95":199.3941166258743,"p99":245.45484031698942}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:32+00","p50":124.135185,"p95":220.18840280805207,"p99":307.5864315479431}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:33+00","p50":140.19246900000002,"p95":229.95685554513193,"p99":284.8045222781925}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:34+00","p50":170.89651500000002,"p95":296.9922443745279,"p99":373.8279744532552}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:35+00","p50":153.95292999999998,"p95":273.0253852019741,"p99":321.88157072990987}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:36+00","p50":116.791720375,"p95":239.27738784291387,"p99":300.4744579807956}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:37+00","p50":127.94282950000002,"p95":236.97901388224858,"p99":327.179691118208}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:38+00","p50":105.85115675,"p95":186.5823645810992,"p99":274.30453295752267}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:39+00","p50":96.74238075,"p95":175.41507650993736,"p99":208.9679198589525}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:40+00","p50":97.870805625,"p95":172.275364745659,"p99":201.6971528060169}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:41+00","p50":145.6703235,"p95":254.6114526171267,"p99":296.82222953919984}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:42+00","p50":193.5103525,"p95":336.3785704780355,"p99":387.57975299882554}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:43+00","p50":220.64773574999998,"p95":403.4065592694748,"p99":449.6418732563763}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:44+00","p50":119.84416999999999,"p95":295.6309464197681,"p99":396.337261710165}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:45+00","p50":153.03005225,"p95":273.1666237380255,"p99":345.72557337760685}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:46+00","p50":127.57828725,"p95":256.893004685591,"p99":289.8162797670803}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:47+00","p50":111.580409625,"p95":203.82922388112414,"p99":261.35195212518715}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:48+00","p50":216.393405,"p95":375.25428619803426,"p99":453.76364603817603}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:49+00","p50":152.94896525,"p95":283.33596944424914,"p99":336.73562894160085}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:50+00","p50":127.08926425,"p95":221.00235614622642,"p99":262.39391229211236}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:51+00","p50":120.027496,"p95":250.44809182697068,"p99":296.46660237570285}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:52+00","p50":208.19365549999998,"p95":333.84489628812776,"p99":385.3186423182583}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:53+00","p50":133.24839425,"p95":289.755634198976,"p99":336.5386512031822}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:54+00","p50":103.00979025000001,"p95":185.00440500332434,"p99":233.78304482841588}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:55+00","p50":119.260761375,"p95":302.3292177795595,"p99":339.6823966917932}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:56+00","p50":171.5847955,"p95":283.52003666019885,"p99":338.9246723470902}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:57+00","p50":210.90060975,"p95":357.92389919369606,"p99":451.1805926516762}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:58+00","p50":197.74463350000002,"p95":420.3640920281507,"p99":475.54871186478806}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:29:59+00","p50":116.13341187500001,"p95":216.05566825794946,"p99":258.6462742256367}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:00+00","p50":150.502252,"p95":236.99798954159232,"p99":277.9683100395851}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:01+00","p50":129.45309675,"p95":243.01425622196734,"p99":263.2717654624682}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:02+00","p50":140.40493125,"p95":244.6623756164837,"p99":293.2006867225514}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:03+00","p50":140.72530325000002,"p95":266.3681622788145,"p99":314.5436941961575}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:04+00","p50":117.9053805,"p95":236.25603219293595,"p99":291.05249448661044}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:05+00","p50":98.568882,"p95":188.8854632627058,"p99":262.0676099577932}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:06+00","p50":132.206959375,"p95":218.22767605911855,"p99":254.24492835280157}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:07+00","p50":152.504794625,"p95":260.0884505841782,"p99":314.5586549095628}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:08+00","p50":124.92891800000001,"p95":226.26183568808176,"p99":261.7090193795609}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:09+00","p50":163.63329149999998,"p95":311.59877173680616,"p99":394.78992070520303}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:10+00","p50":208.2068475,"p95":368.13115528785085,"p99":419.1755257724094}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:11+00","p50":123.78249262499999,"p95":296.04961330785375,"p99":338.4488425894005}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:12+00","p50":95.495242125,"p95":148.29508863492148,"p99":177.30971520834305}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:13+00","p50":107.90742599999999,"p95":190.8493691335392,"p99":242.4437651493988}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:14+00","p50":112.8262655,"p95":189.02962614134216,"p99":233.83208174513533}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:15+00","p50":129.43901200000002,"p95":222.55574918017626,"p99":265.85857962914633}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:16+00","p50":111.507611,"p95":251.323296742464,"p99":326.25064225217744}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:17+00","p50":145.8751935,"p95":261.9316979401115,"p99":287.29736789018676}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:18+00","p50":140.98935925,"p95":219.09282268333135,"p99":252.7970128424511}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:19+00","p50":103.66248149999998,"p95":196.7206822273125,"p99":245.7875742989993}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:20+00","p50":108.628296,"p95":214.60698472325123,"p99":269.06154806882523}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:21+00","p50":136.149549,"p95":255.86972806917476,"p99":332.67014772443395}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:22+00","p50":197.93880687499998,"p95":381.502435144323,"p99":588.6820270814882}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:23+00","p50":155.857772,"p95":267.31127404588386,"p99":341.7845688213129}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:24+00","p50":121.2367075,"p95":230.69728676805232,"p99":309.2485743088274}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:25+00","p50":115.092376625,"p95":217.68924514860404,"p99":295.46614822230623}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:26+00","p50":104.975132375,"p95":196.17456882825775,"p99":270.3656087240508}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:27+00","p50":109.05953600000001,"p95":212.36383694926678,"p99":264.33129210214855}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:28+00","p50":71.796504,"p95":134.5068019675878,"p99":147.5120745979662}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:29+00","p50":106.43898575,"p95":194.79783965432463,"p99":225.63208004748202}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:30+00","p50":137.46628987499997,"p95":225.69145738857168,"p99":292.93187633087496}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:31+00","p50":214.83264099999997,"p95":346.9228359460459,"p99":415.6551393588102}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:32+00","p50":133.481192625,"p95":301.53098885368274,"p99":474.0881293052933}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:33+00","p50":132.69280350000002,"p95":234.10646878798485,"p99":263.2966781649246}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:34+00","p50":106.864666,"p95":174.25787302286147,"p99":205.7175736684494}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:35+00","p50":103.110114875,"p95":177.08113088051854,"p99":192.95483759117724}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:36+00","p50":128.914074,"p95":243.58446722036265,"p99":271.0209191268463}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:37+00","p50":122.67461,"p95":245.05329255421358,"p99":333.7442105880328}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:38+00","p50":100.9746515,"p95":173.47282376597977,"p99":221.09815979568864}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:39+00","p50":154.003629875,"p95":287.3173631577436,"p99":369.43251293130015}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:40+00","p50":146.8971305,"p95":251.92130827648484,"p99":291.40066258055305}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:41+00","p50":151.8076725,"p95":282.6784084142944,"p99":328.939611905571}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:42+00","p50":149.10895899999997,"p95":256.15891355442113,"p99":316.8641798551555}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:43+00","p50":188.96112225,"p95":353.2331218520702,"p99":382.0589271104278}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:44+00","p50":105.42887637499999,"p95":195.13140718747843,"p99":224.0785774883292}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:45+00","p50":101.91120699999999,"p95":166.9423531193254,"p99":222.36277018176125}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:46+00","p50":121.87638712500001,"p95":220.37070360914117,"p99":276.06403395931005}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:47+00","p50":108.74720350000001,"p95":219.51700998232008,"p99":275.2252684501667}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:48+00","p50":93.153455,"p95":151.74555846118363,"p99":181.83308822772503}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:49+00","p50":112.29081587499999,"p95":204.4243987085814,"p99":237.5612214038899}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:50+00","p50":148.8138005,"p95":248.82397409293438,"p99":289.9684980177193}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:51+00","p50":149.66555962500001,"p95":297.56756080056897,"p99":350.7251047181592}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:52+00","p50":145.37337025,"p95":230.90831475004887,"p99":253.95216025196981}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:53+00","p50":117.05370775,"p95":210.9270279865246,"p99":230.78916404208755}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:54+00","p50":87.1349905,"p95":199.58254975250549,"p99":269.7982071014629}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:55+00","p50":84.445145375,"p95":174.8095905966679,"p99":224.31852516622257}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:56+00","p50":162.824442,"p95":290.1118759925517,"p99":358.80143425187447}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:57+00","p50":164.86294875,"p95":277.7016547873936,"p99":326.2230259840393}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:58+00","p50":175.636123,"p95":287.96937075817937,"p99":355.6185225502338}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:30:59+00","p50":150.038473875,"p95":252.2978227349552,"p99":300.730214680809}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:00+00","p50":128.66758900000002,"p95":214.68781069859946,"p99":286.44018709812354}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:01+00","p50":128.1123915,"p95":222.11258651795723,"p99":264.97585152214816}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:02+00","p50":105.31138775000001,"p95":172.40821545982874,"p99":200.62516225891375}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:03+00","p50":130.089294125,"p95":212.50929469829094,"p99":334.07392903572133}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:04+00","p50":127.4692995,"p95":210.03156893045616,"p99":267.3158943193741}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:05+00","p50":124.12707212499998,"p95":206.27348324430156,"p99":273.6812023887224}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:06+00","p50":114.39556999999999,"p95":216.97375798055268,"p99":264.0877355136185}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:07+00","p50":99.448616375,"p95":184.96942576062798,"p99":205.90453483523345}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:08+00","p50":171.676611375,"p95":291.3521424865109,"p99":380.8211314464147}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:09+00","p50":101.6901615,"p95":176.22343908884048,"p99":201.53023230511474}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:10+00","p50":103.82912900000001,"p95":191.72203332268143,"p99":212.09726031407547}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:11+00","p50":165.89840875,"p95":332.89048460847096,"p99":367.4451517877708}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:12+00","p50":119.054623375,"p95":271.49086032681515,"p99":370.2199425715115}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:13+00","p50":112.88282125,"p95":209.73930696244759,"p99":261.1041244435084}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:14+00","p50":126.00579475,"p95":188.01621412764,"p99":247.65884071391585}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:15+00","p50":124.52331475,"p95":317.90755742074407,"p99":406.3813968398581}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:16+00","p50":109.03048712500001,"p95":196.21054002123554,"p99":238.74807661986733}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:17+00","p50":90.9006375,"p95":139.70213585222933,"p99":178.89033774899198}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:18+00","p50":133.20292899999998,"p95":252.13865144739617,"p99":334.3060690541854}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:19+00","p50":182.47337875,"p95":388.51738978338915,"p99":481.33885515605544}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:20+00","p50":200.02103775,"p95":380.6488631596406,"p99":505.64067757334544}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:21+00","p50":142.2534555,"p95":244.77796356592177,"p99":305.4332737325897}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:22+00","p50":93.26102975,"p95":183.74352975703098,"p99":221.36483379478076}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:23+00","p50":96.7112195,"p95":170.64173087076998,"p99":205.3115922099886}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:24+00","p50":182.41513,"p95":304.1554060275163,"p99":470.23418123118444}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:25+00","p50":107.133741,"p95":283.87971806412753,"p99":333.2628895482388}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:26+00","p50":146.30091775,"p95":298.11623706274673,"p99":346.4917418987236}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:27+00","p50":94.27910700000001,"p95":174.53994674142575,"p99":228.0240196648221}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:28+00","p50":116.094989,"p95":206.6467516277365,"p99":245.66344650732017}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:29+00","p50":72.352633875,"p95":127.79524663746197,"p99":144.08114570358322}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:30+00","p50":105.882624875,"p95":185.42919072380667,"p99":240.22683089604402}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:31+00","p50":132.1897915,"p95":234.17223494993186,"p99":279.2885025061626}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:32+00","p50":105.253751,"p95":180.89204505133415,"p99":257.22610878321314}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:33+00","p50":85.311459125,"p95":174.77236335982323,"p99":206.10641941095756}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:34+00","p50":131.713477625,"p95":239.26062745615036,"p99":275.05193150050525}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:35+00","p50":78.08752312499999,"p95":143.3597636767404,"p99":195.5654004745698}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:36+00","p50":141.59339425,"p95":237.79552032503491,"p99":292.4438382544732}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:37+00","p50":116.728553,"p95":235.73840350087522,"p99":288.31137631500053}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:38+00","p50":161.1288965,"p95":286.2833288930545,"p99":325.9958004062338}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:39+00","p50":142.132838,"p95":298.41372608770445,"p99":383.3481538692069}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:40+00","p50":82.19294775,"p95":259.5134540716391,"p99":329.1845178000543}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:41+00","p50":192.369893875,"p95":342.4390612479822,"p99":437.8914614013498}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:42+00","p50":142.40547637500003,"p95":249.99869662591362,"p99":276.40473861436675}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:43+00","p50":115.655135125,"p95":229.15395159425157,"p99":255.3132673618655}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:44+00","p50":98.39828524999999,"p95":180.54260905758446,"p99":230.59197629774192}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:45+00","p50":83.187268,"p95":143.84027024919862,"p99":197.0350250535693}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:46+00","p50":95.00053199999999,"p95":168.239280681592,"p99":190.79333302597047}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:47+00","p50":105.25111125000001,"p95":169.702421905602,"p99":181.13400749610423}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:48+00","p50":100.675961,"p95":180.47359538495363,"p99":225.03751616834424}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:49+00","p50":149.31501775,"p95":254.13259542648188,"p99":303.69875910796475}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:50+00","p50":131.956781,"p95":238.34048604075312,"p99":288.58045255291273}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:51+00","p50":137.081439625,"p95":242.76159943214202,"p99":348.1319630319319}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:52+00","p50":128.550900625,"p95":304.49830668660553,"p99":418.9931111537857}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:53+00","p50":113.432842875,"p95":207.30350411016087,"p99":272.14124509863547}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:54+00","p50":92.045899625,"p95":157.18261061900532,"p99":183.07132557156112}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:55+00","p50":121.734187125,"p95":207.5546754412605,"p99":246.67373636486053}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:56+00","p50":140.65304175,"p95":232.28193527760607,"p99":286.8730073162615}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:57+00","p50":137.850933,"p95":228.62296795999146,"p99":260.72006399337766}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:58+00","p50":112.27431712499998,"p95":220.46518146997607,"p99":260.3620207610254}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:31:59+00","p50":82.67948799999999,"p95":360.23146170482016,"p99":398.9918931486969}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:00+00","p50":86.90940225,"p95":158.23311998827646,"p99":200.37656756777955}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:01+00","p50":123.76849200000001,"p95":208.02569298310027,"p99":236.88757799383976}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:02+00","p50":111.959362625,"p95":191.38780734815316,"p99":215.81521757097363}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:03+00","p50":145.8964775,"p95":223.0613097268436,"p99":241.46586528538083}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:04+00","p50":107.172940875,"p95":193.5446881791165,"p99":272.19900877614333}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:05+00","p50":151.58030200000002,"p95":271.3545077958731,"p99":341.0796747550945}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:06+00","p50":124.9742315,"p95":247.65959759302604,"p99":312.5631921222915}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:07+00","p50":161.23117825,"p95":299.3136786651933,"p99":395.0948306106245}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:08+00","p50":101.39191525,"p95":173.38602668127538,"p99":194.33212311404063}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:09+00","p50":108.5149455,"p95":189.76618764198923,"p99":257.21958497325323}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:10+00","p50":186.05221650000001,"p95":303.3886631053319,"p99":390.5604375602221}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:11+00","p50":192.94315225,"p95":351.44012321469,"p99":395.4634256011743}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:12+00","p50":134.618117,"p95":231.5193473509258,"p99":285.5411902005575}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:13+00","p50":128.685649,"p95":214.19918122306908,"p99":250.87769240809203}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:14+00","p50":76.36108625,"p95":148.526741802287,"p99":181.20134408114671}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:15+00","p50":67.19718524999999,"p95":125.55531013336198,"p99":154.58911684265348}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:16+00","p50":114.42459025,"p95":197.34831910622728,"p99":224.35313192522668}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:17+00","p50":97.26033925,"p95":186.9463952725586,"p99":226.53538178850508}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:18+00","p50":154.234702,"p95":257.78904323379743,"p99":309.2634639996348}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:19+00","p50":89.865234875,"p95":194.70757852958704,"p99":254.24742956245254}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:20+00","p50":141.04095812499997,"p95":248.75033183114076,"p99":287.16187705317617}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:21+00","p50":132.46721250000002,"p95":269.21060446316676,"p99":322.2473977469425}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:22+00","p50":121.54987225,"p95":219.82430763507486,"p99":266.94648113744637}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:23+00","p50":109.96988325000001,"p95":210.29696443055713,"p99":257.5379662758779}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:24+00","p50":128.87029374999997,"p95":223.84370127555226,"p99":268.6310206921792}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:25+00","p50":132.44363125,"p95":232.90757436558246,"p99":259.72644852773476}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:26+00","p50":116.18927637499999,"p95":199.00330712602562,"p99":234.83804375148225}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:27+00","p50":85.932075,"p95":162.45912678770637,"p99":192.2755196891861}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:28+00","p50":123.77242075,"p95":238.85725559116884,"p99":320.52498529224204}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:29+00","p50":132.682416,"p95":239.48273816366486,"p99":292.2031849994033}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:30+00","p50":98.13990824999999,"p95":208.4430295585929,"p99":297.3711427686527}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:31+00","p50":81.74755675,"p95":144.36437531812751,"p99":184.41029792012452}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:32+00","p50":109.766641875,"p95":186.01520823519493,"p99":253.3463953382125}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:33+00","p50":111.24209074999999,"p95":188.48749389847183,"p99":223.45380387124635}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:34+00","p50":73.9090515,"p95":128.46959014384055,"p99":160.96053139662362}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:35+00","p50":146.60734250000002,"p95":276.5788107211896,"p99":326.3968412678018}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:36+00","p50":177.80567675,"p95":325.34464427588046,"p99":342.38701714505817}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:37+00","p50":133.549765875,"p95":224.52639736927665,"p99":260.706587498024}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:38+00","p50":135.187723375,"p95":243.5794123138162,"p99":273.6018945712824}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:39+00","p50":103.708696,"p95":193.05857363887185,"p99":227.22884904382968}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:40+00","p50":168.0875605,"p95":288.32557100474133,"p99":429.4105909170537}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:41+00","p50":113.044901,"p95":204.66593179067422,"p99":248.80736430322028}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:42+00","p50":106.138461,"p95":199.81239802513886,"p99":247.1777182748711}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:43+00","p50":107.3592585,"p95":192.49416815036332,"p99":224.8814767806611}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:44+00","p50":99.18897625,"p95":174.70940486153,"p99":237.11470528038262}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:45+00","p50":95.84890150000001,"p95":161.41773575798928,"p99":219.890401485641}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:46+00","p50":103.0340435,"p95":191.71927127210122,"p99":231.2024288434174}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:47+00","p50":120.54642625000001,"p95":216.0881204954477,"p99":256.4036516719635}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:48+00","p50":166.69941799999998,"p95":268.5081619204737,"p99":318.18447506379647}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:49+00","p50":192.62847900000003,"p95":324.60369583223536,"p99":461.1589813419571}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:50+00","p50":131.20099274999998,"p95":261.35673138289144,"p99":302.75657998520495}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:51+00","p50":123.651792125,"p95":210.23242448413325,"p99":246.3328844222181}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:52+00","p50":131.9947435,"p95":231.40216184965848,"p99":285.17395579256873}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:53+00","p50":78.83826049999999,"p95":148.90721440765452,"p99":173.81949700158404}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:54+00","p50":125.987029,"p95":264.2961238741703,"p99":355.7167631486969}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:55+00","p50":91.7448945,"p95":175.53598506476308,"p99":255.90322352300262}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:56+00","p50":159.301579,"p95":351.84188328943253,"p99":389.8347058511143}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:57+00","p50":187.98843125000002,"p95":340.9330024263749,"p99":475.7749451908893}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:58+00","p50":93.300342,"p95":176.6299474837494,"p99":204.57259773898315}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:32:59+00","p50":154.010657,"p95":268.27781002858546,"p99":351.9433132745383}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:00+00","p50":89.591733375,"p95":197.85621017018903,"p99":286.63712836794735}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:01+00","p50":144.52407725,"p95":260.72149573640036,"p99":350.88902211560537}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:02+00","p50":167.78390574999997,"p95":261.1920397860639,"p99":308.44339777837183}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:03+00","p50":110.457206375,"p95":232.94494782296835,"p99":310.952956860805}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:04+00","p50":130.58692025,"p95":232.94350894737363,"p99":262.5543511986141}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:05+00","p50":132.6726885,"p95":274.8975297670839,"p99":305.89513347542663}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:06+00","p50":138.21469925000002,"p95":229.24087746859925,"p99":272.87511199417753}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:07+00","p50":121.148952125,"p95":206.83780719944411,"p99":280.29341221235273}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:08+00","p50":136.28463349999998,"p95":233.30969393610476,"p99":262.1581118301449}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:09+00","p50":139.2178705,"p95":262.7049547678597,"p99":306.15073195677854}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:10+00","p50":93.3006045,"p95":158.67369987372612,"p99":211.49455500391838}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:11+00","p50":121.19626,"p95":215.20547866883504,"p99":239.91287958024455}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:12+00","p50":117.82031975000001,"p95":243.7224320210201,"p99":298.88462132959245}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:13+00","p50":97.39294425,"p95":193.14224585835888,"p99":274.1118376800118}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:14+00","p50":126.019774125,"p95":216.64769596165985,"p99":247.57431191786193}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:15+00","p50":110.28737849999999,"p95":207.9735082817216,"p99":258.7438023121443}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:16+00","p50":151.769137,"p95":271.2666339292557,"p99":324.4723331002159}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:17+00","p50":108.65530050000001,"p95":248.16915056245446,"p99":276.4589559216995}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:18+00","p50":102.02753899999999,"p95":190.30595644983174,"p99":216.97046380724905}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:19+00","p50":171.95970400000004,"p95":325.80248962108226,"p99":391.3254006926124}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:20+00","p50":129.030809125,"p95":234.70576515157012,"p99":333.13880387933284}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:21+00","p50":142.003728625,"p95":259.38421134843156,"p99":276.98313699413274}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:22+00","p50":135.99274687500002,"p95":231.98935542941453,"p99":266.1397871506088}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:23+00","p50":130.761799,"p95":239.40395889858198,"p99":275.6459304371319}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:24+00","p50":160.697157625,"p95":308.61707404364756,"p99":381.15502791236713}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:25+00","p50":158.024736625,"p95":278.77260017359885,"p99":328.49168184143736}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:26+00","p50":114.71008275,"p95":218.13452320170498,"p99":272.1544344899063}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:27+00","p50":140.559158,"p95":249.47429859301414,"p99":326.64463440939664}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:28+00","p50":111.771714125,"p95":207.278551033642,"p99":245.6814544792559}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:29+00","p50":114.24286012499999,"p95":200.80320238073097,"p99":254.4697853079252}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:30+00","p50":135.1836505,"p95":217.6982606517795,"p99":254.974771001374}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:31+00","p50":153.135532875,"p95":277.50303641609884,"p99":355.2305931752739}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:32+00","p50":136.95915825,"p95":224.5368081892381,"p99":267.11966566760253}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:33+00","p50":132.29825575,"p95":239.57585468849206,"p99":314.60056932971}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:34+00","p50":103.399906,"p95":172.11769942860485,"p99":213.15400028454636}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:35+00","p50":175.490225,"p95":284.89367610841134,"p99":315.35000088033013}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:36+00","p50":109.953139,"p95":219.09903000609307,"p99":301.08569529499914}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:37+00","p50":165.88423212499998,"p95":260.63896857591743,"p99":313.8628484955995}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:38+00","p50":101.93700100000001,"p95":213.01136650430917,"p99":245.1802027982273}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:39+00","p50":108.51960975,"p95":202.73559789456934,"p99":277.46021133806397}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:40+00","p50":142.54735749999998,"p95":228.79483657287597,"p99":246.43256146665954}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:41+00","p50":157.663866375,"p95":282.3046626167348,"p99":371.38470887483095}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:42+00","p50":103.76186637500001,"p95":212.9482790310916,"p99":244.19946417914989}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:43+00","p50":137.08775550000001,"p95":218.11688260544997,"p99":256.1722065202479}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:44+00","p50":87.19501025,"p95":170.508156930151,"p99":196.0298240378456}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:45+00","p50":105.60156825,"p95":179.86273027825283,"p99":242.1840284773283}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:46+00","p50":126.435669,"p95":221.10153320637858,"p99":274.56351550732353}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:47+00","p50":160.789563625,"p95":266.25205245555117,"p99":304.50109863255807}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:48+00","p50":194.456216875,"p95":339.3783954876421,"p99":397.76490635657404}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:49+00","p50":171.189518,"p95":363.8666234660058,"p99":391.60687616126177}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:50+00","p50":119.11517475,"p95":216.62137560765362,"p99":274.90732011648754}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:51+00","p50":172.479413,"p95":371.08197138914727,"p99":436.8373595098934}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:52+00","p50":209.34127925,"p95":412.8800077645817,"p99":524.2879604627418}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:53+00","p50":108.457824375,"p95":194.35176210737097,"p99":260.60692312551595}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:54+00","p50":96.7310435,"p95":194.81557172022556,"p99":217.31256000707768}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:55+00","p50":93.200077,"p95":165.1387342724762,"p99":238.9854731506958}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:56+00","p50":142.599244625,"p95":237.38065401918053,"p99":314.6896877325849}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:57+00","p50":121.9096795,"p95":215.98683936081864,"p99":268.30810155489877}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:58+00","p50":154.69943625,"p95":280.98262648235084,"p99":341.8890496463246}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:33:59+00","p50":199.37045137500002,"p95":343.2554753140477,"p99":389.8407251554308}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:00+00","p50":178.971035,"p95":357.6685898514217,"p99":383.0474701989002}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:01+00","p50":108.24118,"p95":211.56502163815497,"p99":253.66431989964295}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:02+00","p50":112.951525375,"p95":209.58080252835285,"p99":257.68494610107945}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:03+00","p50":126.61733275,"p95":270.69568282047254,"p99":297.6661016650088}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:04+00","p50":129.74679237499998,"p95":207.89669193858487,"p99":234.7650246639769}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:05+00","p50":113.205066625,"p95":222.64535708457143,"p99":286.5436205269561}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:06+00","p50":158.845006,"p95":272.6981570798247,"p99":311.22377243093683}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:07+00","p50":104.269959375,"p95":186.26893955622936,"p99":257.13570341709277}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:08+00","p50":82.7810755,"p95":158.64511222286438,"p99":181.98047218651055}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:09+00","p50":130.39636025,"p95":264.983896109309,"p99":321.7425447593372}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:10+00","p50":181.28793312499997,"p95":342.4388419570696,"p99":419.3970190465395}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:11+00","p50":108.2284715,"p95":211.1396561140374,"p99":287.32048669470544}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:12+00","p50":90.75315950000001,"p95":147.6862662737088,"p99":183.43829499481583}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:13+00","p50":129.70711475,"p95":225.37225429627068,"p99":255.92971481642866}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:14+00","p50":96.686889125,"p95":201.59629984932673,"p99":231.71299279920603}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:15+00","p50":156.83113012500002,"p95":253.60921267468444,"p99":302.6166148413315}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:16+00","p50":91.41997925,"p95":222.71644634844162,"p99":250.9376056548529}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:17+00","p50":90.17032687499999,"p95":183.64460838993273,"p99":207.08017901870681}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:18+00","p50":167.765525125,"p95":280.3460425070659,"p99":363.823567006599}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:19+00","p50":100.856831375,"p95":234.378799980344,"p99":364.5741734524064}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:20+00","p50":96.920702,"p95":186.43524481054914,"p99":210.78910242640828}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:21+00","p50":146.608061,"p95":263.1426511173795,"p99":366.08512019191}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:22+00","p50":129.79841375,"p95":234.75451710481312,"p99":279.89254948362634}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:23+00","p50":113.31917762500001,"p95":204.2847229782487,"p99":230.81283798620152}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:24+00","p50":95.22748787500001,"p95":179.70511902539852,"p99":211.31660937055995}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:25+00","p50":131.932868875,"p95":246.5846490138291,"p99":296.77279765726877}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:26+00","p50":134.8642885,"p95":237.88675587452542,"p99":315.2661447682567}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:27+00","p50":113.56584537500001,"p95":211.6464750063566,"p99":258.8126012360246}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:28+00","p50":96.39151675,"p95":204.11704643050504,"p99":234.51858652154112}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:29+00","p50":85.31185950000001,"p95":149.92995711764468,"p99":175.2174036983316}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:30+00","p50":104.6222635,"p95":234.7705419496284,"p99":275.8478079417207}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:31+00","p50":171.117827875,"p95":272.7976127010844,"p99":303.0287115965159}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:32+00","p50":168.08565525,"p95":255.63354273508656,"p99":310.89784066886284}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:33+00","p50":125.60047025,"p95":255.60529882844438,"p99":371.2388122660852}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:34+00","p50":80.927663,"p95":180.48101032611038,"p99":213.6153891947932}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:35+00","p50":111.1060105,"p95":194.52131252360152,"p99":246.75163256098173}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:36+00","p50":127.591422375,"p95":287.72788504626834,"p99":304.1742515809479}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:37+00","p50":111.77776,"p95":222.28883277152394,"p99":246.4496057113104}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:38+00","p50":123.21690575,"p95":203.3015751411889,"p99":224.77546342928912}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:39+00","p50":61.298322999999996,"p95":130.8376594201172,"p99":158.07295036492326}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:40+00","p50":109.12991550000001,"p95":198.45098782836126,"p99":240.51228300533674}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:41+00","p50":119.636812125,"p95":223.49270004305305,"p99":271.2792305754044}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:42+00","p50":136.165448125,"p95":269.09324422772914,"p99":329.6001543707435}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:43+00","p50":83.66977875,"p95":175.86070786282778,"p99":206.28558013973262}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:44+00","p50":141.644276375,"p95":276.3125038332239,"p99":2714.0188136444194}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:45+00","p50":92.90529825,"p95":400.0358297394864,"p99":2680.65359600007}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:46+00","p50":103.66558599999999,"p95":200.01841377174986,"p99":230.39338538344907}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:47+00","p50":112.409372625,"p95":193.13745166308456,"p99":237.46652794846202}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:48+00","p50":73.83905100000001,"p95":126.76489645875716,"p99":167.26468065236187}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:49+00","p50":87.221907,"p95":145.52034115621473,"p99":180.85200492792322}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:50+00","p50":130.782604,"p95":219.41988529901056,"p99":285.541460149041}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:51+00","p50":195.28480574999998,"p95":326.0018023254571,"p99":373.34627889115905}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:52+00","p50":106.6144605,"p95":169.45471065255182,"p99":243.70530942599464}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:53+00","p50":93.39250650000001,"p95":156.9634457514476,"p99":178.2786364682007}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:54+00","p50":90.598717,"p95":148.46863580962133,"p99":186.4363788593211}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:55+00","p50":118.172082375,"p95":208.0808623812211,"p99":258.67128908991475}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:56+00","p50":83.566433,"p95":194.41415692042833,"p99":231.49819592396497}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:57+00","p50":105.006986,"p95":202.96383503430675,"p99":234.14788155763148}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:58+00","p50":162.067145875,"p95":279.4822295971695,"p99":310.82483102614924}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:34:59+00","p50":169.45675,"p95":329.4382836908407,"p99":345.91755786689424}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:00+00","p50":166.500713875,"p95":279.0223933728053,"p99":294.4110626556824}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:01+00","p50":107.515719375,"p95":190.58503886516323,"p99":284.9832490318682}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:02+00","p50":118.99001924999999,"p95":208.83248951508372,"p99":224.4868183647139}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:03+00","p50":153.991842875,"p95":331.00365691033943,"p99":398.79504665015696}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:04+00","p50":121.6693395,"p95":211.38797440596198,"p99":247.40738793343544}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:05+00","p50":111.77233412500001,"p95":199.6812506939835,"p99":223.45671930504415}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:06+00","p50":82.6729975,"p95":150.67689882769298,"p99":175.77364763083457}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:07+00","p50":107.557526,"p95":201.11227422222532,"p99":231.84727361766434}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:08+00","p50":66.266209,"p95":141.25337486676025,"p99":193.79314652908133}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:09+00","p50":164.94543575,"p95":330.9845541875801,"p99":386.4475589318237}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:10+00","p50":183.5891835,"p95":301.78170202836503,"p99":339.57459430127307}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:11+00","p50":109.875771375,"p95":229.88328048201143,"p99":314.20519106488535}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:12+00","p50":90.54347974999999,"p95":162.44295664938545,"p99":174.23847641368008}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:13+00","p50":125.342369125,"p95":211.7711552228204,"p99":292.7087673110201}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:14+00","p50":139.79976999999997,"p95":237.32373536660933,"p99":303.4027288497977}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:15+00","p50":111.83360462499999,"p95":179.0283804484157,"p99":289.8403239086296}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:16+00","p50":106.7065,"p95":189.64294040120888,"p99":213.0033925261383}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:17+00","p50":98.95059874999998,"p95":182.04198939775986,"p99":219.79354853570342}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:18+00","p50":74.783671,"p95":139.38796541724872,"p99":175.566532658432}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:19+00","p50":130.7210235,"p95":221.81972287425995,"p99":240.96419853359032}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:20+00","p50":145.00668724999997,"p95":261.9174239511622,"p99":286.089030662014}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:21+00","p50":153.838682,"p95":272.5404138289604,"p99":323.2369829031449}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:22+00","p50":122.223364625,"p95":238.23110339961977,"p99":368.38718381865243}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:23+00","p50":162.310989625,"p95":262.4874787790148,"p99":293.1220457818482}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:24+00","p50":125.672744,"p95":228.834117063434,"p99":300.69801505506183}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:25+00","p50":100.214716,"p95":211.75717983390211,"p99":272.17507607588095}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:26+00","p50":101.04452025,"p95":245.69881332390523,"p99":331.91489407186367}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:27+00","p50":111.960121,"p95":190.03785640707778,"p99":217.72857811685657}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:28+00","p50":97.04044925,"p95":221.86339509644938,"p99":305.54954175209235}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:29+00","p50":130.712100625,"p95":229.55412405702597,"p99":320.45543533930805}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:30+00","p50":157.77975600000002,"p95":270.5441781738374,"p99":328.65896650134135}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:31+00","p50":196.70007750000002,"p95":348.0615820548358,"p99":426.0200593051596}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:32+00","p50":192.89058437499997,"p95":318.9880148114973,"p99":368.06064510008764}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:33+00","p50":185.264564,"p95":365.25417587183165,"p99":432.176320351829}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:34+00","p50":133.7000965,"p95":284.4834116264355,"p99":345.56122470449804}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:35+00","p50":84.80136974999999,"p95":159.84577253030898,"p99":193.07529147513296}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:36+00","p50":130.104786,"p95":215.77668530763603,"p99":244.13811818882513}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:37+00","p50":150.7244015,"p95":277.5214597349701,"p99":314.3206531936665}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:38+00","p50":192.87258300000002,"p95":294.449891230029,"p99":338.93015122969626}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:39+00","p50":165.072821375,"p95":311.3453248371123,"p99":426.97387214368536}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:40+00","p50":154.464597,"p95":295.15971093502424,"p99":332.91260871096466}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:41+00","p50":135.8931455,"p95":233.624761005939,"p99":260.5115031151123}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:42+00","p50":135.18295024999998,"p95":244.3717553656875,"p99":300.2150756749728}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:43+00","p50":119.91235475,"p95":224.3114507049048,"p99":307.1051734783702}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:44+00","p50":137.148140375,"p95":259.6874207851501,"p99":289.1676174127986}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:45+00","p50":147.97824462499997,"p95":260.3007213891845,"p99":324.2455354255281}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:46+00","p50":147.1479335,"p95":241.8578711938247,"p99":280.00141094697403}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:47+00","p50":150.817367625,"p95":248.70500563243021,"p99":277.4436327296431}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:48+00","p50":144.171619125,"p95":251.37096323751678,"p99":298.17490467755624}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:49+00","p50":123.89109400000001,"p95":204.1136985168762,"p99":243.7539701242161}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:50+00","p50":122.72740062499999,"p95":193.95676649233684,"p99":241.66564591236522}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:51+00","p50":153.94507875,"p95":265.17707475493455,"p99":305.60247756110095}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:52+00","p50":144.988382,"p95":312.44177368438767,"p99":363.26797275389765}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:53+00","p50":109.40713274999999,"p95":197.46090179334794,"p99":240.15491899285365}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:54+00","p50":139.35138024999998,"p95":225.2924647808224,"p99":277.5620172876086}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:55+00","p50":113.9832725,"p95":186.40617246659897,"p99":215.05913817651629}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:56+00","p50":156.15925600000003,"p95":287.82816145174536,"p99":354.85521886894867}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:57+00","p50":115.40843,"p95":239.05164655578875,"p99":316.59567401850416}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:58+00","p50":197.7765975,"p95":416.1175502186935,"p99":466.469045107173}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:35:59+00","p50":202.89194087500002,"p95":349.63866622645145,"p99":404.56312846058034}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:00+00","p50":198.94459774999999,"p95":353.76308783153826,"p99":395.96712162325196}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:01+00","p50":168.26020775,"p95":338.2364929774536,"p99":431.77628162248186}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:02+00","p50":109.2120755,"p95":205.0478798957319,"p99":242.13469274016762}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:03+00","p50":111.39407274999999,"p95":225.32265645215057,"p99":260.76947847130964}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:04+00","p50":94.35447425,"p95":141.59536676037325,"p99":163.48037051701021}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:05+00","p50":85.93396899999999,"p95":164.1230775428853,"p99":200.39024120283173}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:06+00","p50":98.885102625,"p95":185.8311925714839,"p99":210.4537069738741}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:07+00","p50":135.672643,"p95":222.0119241550026,"p99":283.4617929186172}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:08+00","p50":113.2663525,"p95":214.0534211434422,"p99":291.64135837551856}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:09+00","p50":159.1084185,"p95":269.92863143183604,"p99":358.1646831907215}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:10+00","p50":124.89934487500001,"p95":272.9495371308676,"p99":305.1021259294107}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:11+00","p50":122.506887875,"p95":234.41378886583172,"p99":296.42496434015055}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:12+00","p50":97.03467649999999,"p95":186.96049977567483,"p99":214.87227854773332}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:13+00","p50":83.69016125,"p95":133.79155361695814,"p99":147.42286262998772}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:14+00","p50":130.5168435,"p95":244.42995428340376,"p99":287.8777712488985}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:15+00","p50":167.95122425,"p95":278.0970642771322,"p99":317.7929958541353}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:16+00","p50":129.245699,"p95":252.42383743934357,"p99":310.9987554197951}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:17+00","p50":78.2792805,"p95":172.27121964769685,"p99":206.29942634598444}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:18+00","p50":115.9353545,"p95":229.6513937435913,"p99":252.0692335944824}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:19+00","p50":119.738077,"p95":226.624743089056,"p99":284.0741550035629}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:20+00","p50":120.81787162500001,"p95":224.35831306344093,"p99":297.32047582475377}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:21+00","p50":85.363958,"p95":142.83517089303862,"p99":171.71341252891827}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:22+00","p50":134.00057525,"p95":216.843783870425,"p99":268.0313999511449}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:23+00","p50":98.6495615,"p95":182.48137120181943,"p99":262.2612174592514}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:24+00","p50":86.41287137500001,"p95":159.28913771681565,"p99":217.95837422172664}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:25+00","p50":134.01032049999998,"p95":245.95001014836467,"p99":361.8789543562465}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:26+00","p50":181.01417225,"p95":288.14156706132604,"p99":319.9939622148242}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:27+00","p50":135.16686425,"p95":307.87106987401677,"p99":383.53602118434645}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:28+00","p50":142.205300625,"p95":313.0249734783502,"p99":377.02644868763946}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:29+00","p50":69.2453515,"p95":121.54252194107394,"p99":151.53891622078373}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:30+00","p50":108.191655,"p95":168.83107644189835,"p99":181.91957352425385}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:31+00","p50":91.42895200000001,"p95":163.39289189515924,"p99":193.32464757740473}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:32+00","p50":90.0382545,"p95":249.16111319746202,"p99":303.62188973125313}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:33+00","p50":122.363962875,"p95":241.11004143307892,"p99":275.80107516279816}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:34+00","p50":200.63016199999998,"p95":376.5515149010711,"p99":469.57317266088575}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:35+00","p50":122.65467775,"p95":222.1144769690965,"p99":246.10754225512196}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:36+00","p50":83.41168250000001,"p95":148.39955767729424,"p99":173.0133945137272}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:37+00","p50":91.794072,"p95":225.73530261131526,"p99":249.3132758702774}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:38+00","p50":154.7425085,"p95":250.6296928667202,"p99":312.40248126313116}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:39+00","p50":146.96510325,"p95":252.00715420247792,"p99":359.4976896411841}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:40+00","p50":111.192498,"p95":215.14796805219206,"p99":379.8821966365991}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:41+00","p50":158.5585935,"p95":292.3135766531309,"p99":320.2295283362978}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:42+00","p50":161.097306,"p95":372.4042890376837,"p99":422.32530508206486}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:43+00","p50":136.26324925,"p95":248.30755557928353,"p99":276.07229633098007}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:44+00","p50":132.17403175,"p95":314.0603097902488,"p99":360.81791175970574}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:45+00","p50":117.29861975,"p95":207.4477901520593,"p99":264.78193243250513}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:46+00","p50":127.744155,"p95":238.2121539305147,"p99":323.25874396489}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:47+00","p50":190.568953,"p95":321.52582331122613,"p99":403.9289674833584}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:48+00","p50":99.7234065,"p95":207.22368128198957,"p99":254.226341035182}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:49+00","p50":98.641797,"p95":170.39114444601012,"p99":209.21078709609222}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:50+00","p50":122.901254,"p95":236.46562268026614,"p99":349.6224602184286}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:51+00","p50":104.45667975,"p95":194.1477523933963,"p99":253.03547350740934}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:52+00","p50":114.95926725,"p95":219.06154841279363,"p99":251.95791725042534}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:53+00","p50":123.33415900000001,"p95":228.89528802697737,"p99":276.87857231985424}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:54+00","p50":179.009459,"p95":290.68070136162305,"p99":350.9395721945848}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:55+00","p50":120.13862175,"p95":235.68645373643875,"p99":286.35661302008435}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:56+00","p50":180.159685125,"p95":326.4572230714569,"p99":378.7087647571618}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:57+00","p50":235.578550375,"p95":380.6533190040628,"p99":414.50522828462243}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:58+00","p50":143.79758700000002,"p95":324.7384422801498,"p99":389.4072344903188}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:36:59+00","p50":119.07728924999998,"p95":223.149479398237,"p99":268.5456194129334}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:00+00","p50":133.12108475000002,"p95":219.15535152035147,"p99":251.53222348471667}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:01+00","p50":126.401039,"p95":242.26672297551443,"p99":279.5303177937584}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:02+00","p50":98.77711625,"p95":178.23476360726022,"p99":238.0362208637867}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:03+00","p50":117.43199075000001,"p95":192.11312790276992,"p99":212.01266422225808}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:04+00","p50":121.842190875,"p95":211.48700198306136,"p99":245.13858803551483}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:05+00","p50":128.44979425,"p95":222.07060683716495,"p99":249.12957749786904}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:06+00","p50":122.4439915,"p95":219.71387070132232,"p99":260.2719310353298}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:07+00","p50":105.01807099999999,"p95":192.89904914893864,"p99":228.09868004408077}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:08+00","p50":104.4691985,"p95":189.39088806279773,"p99":203.21527427568603}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:09+00","p50":96.351120125,"p95":150.88635408946882,"p99":177.30809496843958}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:10+00","p50":110.18914025000001,"p95":190.68050397718574,"p99":227.6492692492771}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:11+00","p50":155.3924105,"p95":257.6423159232403,"p99":286.6859072352004}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:12+00","p50":113.85714974999999,"p95":182.66569936267996,"p99":236.19490624672792}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:13+00","p50":150.649172875,"p95":258.9491673927281,"p99":317.4485613568304}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:14+00","p50":103.501193375,"p95":182.95739514124494,"p99":218.8111909035335}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:15+00","p50":125.908109,"p95":204.2527886215515,"p99":232.78885572620393}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:16+00","p50":130.657651875,"p95":206.25095609042953,"p99":233.61657293560742}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:17+00","p50":125.705275875,"p95":235.80634378492098,"p99":310.62447555340646}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:18+00","p50":191.381823,"p95":317.48981830126957,"p99":356.76570325650977}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:19+00","p50":77.895692,"p95":152.72282339270984,"p99":207.69731312943435}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:20+00","p50":149.289238,"p95":248.07458405307943,"p99":307.47401335983585}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:21+00","p50":162.321503,"p95":287.58862617272075,"p99":385.2868963209281}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:22+00","p50":94.476598,"p95":185.57725078226375,"p99":263.5700692414077}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:23+00","p50":126.8891835,"p95":212.52231472796785,"p99":282.6330093034568}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:24+00","p50":131.050623,"p95":245.01467374515806,"p99":304.28327870152236}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:25+00","p50":69.42449925,"p95":124.21130118484534,"p99":167.64549530899046}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:26+00","p50":141.440584125,"p95":292.85425696256783,"p99":363.6918490143297}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:27+00","p50":147.211423125,"p95":244.72929734618515,"p99":286.551358223305}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:28+00","p50":275.253966,"p95":474.39848426730356,"p99":546.3293572800286}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:29+00","p50":195.212622625,"p95":348.1170160236915,"p99":417.15105364123986}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:30+00","p50":131.156309875,"p95":218.6912256927759,"p99":237.44728682025098}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:31+00","p50":106.5761555,"p95":167.93664632811115,"p99":208.44386363696862}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:32+00","p50":116.456810875,"p95":194.59143006930142,"p99":231.62115326274417}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:33+00","p50":149.73172399999999,"p95":247.33003887072994,"p99":276.1448720705767}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:34+00","p50":175.44678075,"p95":284.36739915214383,"p99":380.7072540231259}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:35+00","p50":163.2328035,"p95":317.52868034062334,"p99":374.0800314037256}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:36+00","p50":116.24778125,"p95":211.65749028611637,"p99":235.97099018767813}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:37+00","p50":89.81987287500002,"p95":165.79688502524732,"p99":210.03703287565253}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:38+00","p50":97.795146,"p95":187.79941965014717,"p99":214.77224904475878}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:39+00","p50":175.165541625,"p95":291.1765228825621,"p99":339.39456672389935}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:40+00","p50":147.255911625,"p95":289.83857934598376,"p99":340.22948025997806}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:41+00","p50":131.28603850000002,"p95":237.17462068119428,"p99":295.76463757920646}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:42+00","p50":111.650405,"p95":180.8847583403759,"p99":207.64809259333802}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:43+00","p50":82.17003249999999,"p95":156.53934601291408,"p99":204.47241660359097}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:44+00","p50":96.872796,"p95":165.40618394574878,"p99":195.32532775290537}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:45+00","p50":180.015092125,"p95":312.71220842525526,"p99":358.7691954125016}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:46+00","p50":142.636812,"p95":250.49383239089045,"p99":327.24641677913377}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:47+00","p50":96.14335775,"p95":178.7440084525564,"p99":214.38605269567944}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:48+00","p50":184.41511975,"p95":300.4471896945189,"p99":354.805821339009}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:49+00","p50":171.02239237499998,"p95":314.1624889789952,"p99":357.3474065763829}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:50+00","p50":105.16791275,"p95":191.5759042878704,"p99":214.29767983418657}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:51+00","p50":147.996707,"p95":276.0175499015216,"p99":384.23864371620465}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:52+00","p50":115.80518475,"p95":232.8862228398266,"p99":253.5778423838196}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:53+00","p50":87.23289725000001,"p95":149.03163327731204,"p99":170.53616269704818}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:54+00","p50":119.68473575,"p95":213.0709135022924,"p99":242.93984516308592}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:55+00","p50":108.0745905,"p95":194.03301945002482,"p99":211.26841771390582}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:56+00","p50":101.41877025000001,"p95":195.54323051563514,"p99":228.38321312101698}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:57+00","p50":116.79396725000001,"p95":205.7719977117629,"p99":247.67006311397554}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:58+00","p50":80.770152,"p95":150.22897106720364,"p99":216.14457589048362}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:37:59+00","p50":98.29248100000001,"p95":179.1964538175776,"p99":201.22965990165542}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:00+00","p50":157.384051,"p95":320.6814985833535,"p99":373.09811382052516}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:01+00","p50":128.019699375,"p95":229.18827506115895,"p99":255.86604447982026}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:02+00","p50":109.63739375,"p95":242.72557263293137,"p99":276.71883558958075}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:03+00","p50":111.981652375,"p95":201.38065179999847,"p99":244.41134998157787}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:04+00","p50":132.793183375,"p95":216.99146058347557,"p99":266.9090574541638}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:05+00","p50":157.21303875,"p95":269.9945019802091,"p99":342.0042388296108}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:06+00","p50":175.18496274999995,"p95":350.12975082989476,"p99":421.98619505743596}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:07+00","p50":105.312126,"p95":189.14019930692956,"p99":259.3069154403515}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:08+00","p50":127.56426725,"p95":244.00530773908392,"p99":361.7236573760495}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:09+00","p50":142.02786237499998,"p95":288.61047230990437,"p99":371.3689625707383}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:10+00","p50":109.7959075,"p95":188.5847839292388,"p99":236.34858379190445}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:11+00","p50":116.56841424999999,"p95":217.56630235861303,"p99":260.05164910248567}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:12+00","p50":142.30677225,"p95":263.0059346732714,"p99":275.8890333088398}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:13+00","p50":161.75018075,"p95":284.73364983792663,"p99":311.5944037821121}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:14+00","p50":171.84754675,"p95":294.4199457015176,"p99":321.69177510556057}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:15+00","p50":156.19394599999998,"p95":276.80442813266524,"p99":348.67450439680954}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:16+00","p50":144.459568375,"p95":286.5490297591179,"p99":443.21586828348853}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:17+00","p50":214.95977425,"p95":356.23461776314247,"p99":457.9976417575541}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:18+00","p50":145.12581475,"p95":268.8889596198616,"p99":414.3302505994777}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:19+00","p50":119.647234,"p95":240.94366961338937,"p99":294.3237708484001}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:20+00","p50":88.61654962499999,"p95":189.93821073548486,"p99":230.43501553102374}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:21+00","p50":68.93937925,"p95":123.39788667756461,"p99":152.12221119464587}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:22+00","p50":88.76832575,"p95":162.19610377661581,"p99":178.59644478589271}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:23+00","p50":156.868095625,"p95":282.9431760813897,"p99":322.0722005459201}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:24+00","p50":116.38581425,"p95":200.80604728334475,"p99":226.04021254393575}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:25+00","p50":105.797815875,"p95":219.0622379974478,"p99":260.2667714965382}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:26+00","p50":155.00674325,"p95":274.8196609322705,"p99":356.56062448851776}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:27+00","p50":89.6418045,"p95":159.7206555500952,"p99":257.5273081861329}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:28+00","p50":119.5514195,"p95":230.8847993352294,"p99":267.09787791530226}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:29+00","p50":193.92154250000002,"p95":344.52580453241814,"p99":399.3071383861542}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:30+00","p50":164.9921675,"p95":334.9185573452664,"p99":394.6430098304405}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:31+00","p50":81.31760299999999,"p95":157.53159496760452,"p99":177.4120462759304}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:32+00","p50":97.07947775,"p95":166.8663954790479,"p99":195.0732926832838}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:33+00","p50":125.24715175,"p95":232.58842642834784,"p99":325.3389226729326}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:34+00","p50":164.3582925,"p95":331.88579669996506,"p99":403.6713947985246}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:35+00","p50":95.830977875,"p95":177.53012450034197,"p99":205.16646072687794}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:36+00","p50":133.762878,"p95":231.507992026371,"p99":273.4392972690663}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:37+00","p50":140.984448,"p95":257.54953185575295,"p99":298.9030405855026}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:38+00","p50":116.04505725,"p95":209.0724994069035,"p99":285.54292219386053}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:39+00","p50":115.18310825,"p95":211.76646621474367,"p99":280.14397268795085}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:40+00","p50":128.209574,"p95":221.70396525622368,"p99":266.4485832419243}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:41+00","p50":135.96651300000002,"p95":231.12703025049592,"p99":285.30022971929935}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:42+00","p50":129.87082800000002,"p95":242.43311196051405,"p99":310.0377630815096}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:43+00","p50":115.39353925,"p95":214.86192382279825,"p99":283.20476032525636}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:44+00","p50":269.6602055,"p95":490.0686567670713,"p99":583.7279589563927}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:45+00","p50":165.718715,"p95":274.7752261819267,"p99":338.69792182459645}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:46+00","p50":78.995895,"p95":147.53709822068882,"p99":183.66642818162344}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:47+00","p50":100.93827350000001,"p95":209.17176368838943,"p99":279.28723225231886}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:48+00","p50":125.89869062499999,"p95":221.74652522287136,"p99":317.32564305049567}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:49+00","p50":86.61710225,"p95":175.25406527274632,"p99":269.6674786756325}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:50+00","p50":94.071422,"p95":167.61452989153716,"p99":205.6392519209919}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:51+00","p50":157.336746,"p95":254.04876768485855,"p99":306.8280231831565}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:52+00","p50":130.119493,"p95":239.48676846222807,"p99":266.5166707879028}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:53+00","p50":116.552433125,"p95":204.79932182898236,"p99":253.0685399610014}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:54+00","p50":108.01502500000001,"p95":180.03520455768967,"p99":230.13701778236438}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:55+00","p50":167.273475625,"p95":288.1032794164529,"p99":328.0803702562049}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:56+00","p50":123.7301165,"p95":266.9685049782615,"p99":323.5508001217613}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:57+00","p50":127.84831324999999,"p95":215.2154351335504,"p99":236.61160927377225}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:58+00","p50":166.4400925,"p95":325.4469590378056,"p99":411.0278646277256}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:38:59+00","p50":93.9567395,"p95":160.12777325641608,"p99":207.03029004441834}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:00+00","p50":158.816675625,"p95":265.6884139388046,"p99":342.05307690256666}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:01+00","p50":119.45094425,"p95":220.00037047199166,"p99":366.10421831206224}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:02+00","p50":81.019938,"p95":148.32895758781504,"p99":177.5303808744755}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:03+00","p50":115.75609499999999,"p95":210.29741413554407,"p99":238.30444040025472}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:04+00","p50":157.10300475,"p95":257.0113071153836,"p99":300.6690418710308}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:05+00","p50":110.425505,"p95":225.27433839600565,"p99":263.12026974116515}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:06+00","p50":106.71820825,"p95":177.67733633260156,"p99":209.20356568726731}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:07+00","p50":136.435218875,"p95":237.54521272549675,"p99":280.3884134637701}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:08+00","p50":178.97299925,"p95":296.0107112075931,"p99":353.7363075149946}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:09+00","p50":215.38753175,"p95":383.170363000046,"p99":503.776831837729}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:10+00","p50":179.663254,"p95":331.93580173315036,"p99":397.9382579293719}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:11+00","p50":114.34505225,"p95":211.1344582837316,"p99":304.95808749518204}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:12+00","p50":94.593472625,"p95":169.4423209139353,"p99":201.4786516809943}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:13+00","p50":98.204631,"p95":168.52762744386553,"p99":203.00935856868696}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:14+00","p50":105.5908305,"p95":236.8744668058853,"p99":274.75333379815675}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:15+00","p50":169.011895875,"p95":313.8821628307917,"p99":357.2500342359381}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:16+00","p50":162.959905,"p95":266.0841158557624,"p99":339.7923102951741}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:17+00","p50":148.2075105,"p95":261.2696554036134,"p99":319.141071872968}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:18+00","p50":154.6020785,"p95":261.6235915164013,"p99":362.27227886553953}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:19+00","p50":161.016098,"p95":315.321939769021,"p99":381.51819341354656}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:20+00","p50":97.599695125,"p95":174.84293228680474,"p99":231.1634136826098}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:21+00","p50":84.6162285,"p95":166.83585770184047,"p99":206.10468629347204}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:22+00","p50":76.54884287499999,"p95":151.52602226316398,"p99":202.29478558343433}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:23+00","p50":113.653263375,"p95":215.04774452052206,"p99":261.7995499510407}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:24+00","p50":168.7110685,"p95":283.58843705799245,"p99":407.64179766249686}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:25+00","p50":102.669922125,"p95":202.09300246134174,"p99":228.1710120564277}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:26+00","p50":145.949444,"p95":238.8437588694563,"p99":256.5654590339699}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:27+00","p50":116.15533225000001,"p95":284.5696164251221,"p99":330.83835112877154}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:28+00","p50":142.24849475000002,"p95":242.83337129561127,"p99":298.6948471150866}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:29+00","p50":150.76128675,"p95":273.51786629226706,"p99":320.6731338662481}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:30+00","p50":132.604157625,"p95":268.1816924857012,"p99":322.43363177689173}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:31+00","p50":118.4946865,"p95":250.32331985789037,"p99":302.69888880470086}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:32+00","p50":187.8202725,"p95":348.14839207104967,"p99":457.76583795787377}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:33+00","p50":228.88544075,"p95":435.97177667357045,"p99":501.6744154932394}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:34+00","p50":237.896961125,"p95":393.9221971383552,"p99":429.74436165743685}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:35+00","p50":191.82601,"p95":330.3927649985856,"p99":371.1023099483657}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:36+00","p50":191.301383,"p95":346.09559907913115,"p99":429.26723940540313}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:37+00","p50":118.135744125,"p95":239.23381828582836,"p99":277.4311397770903}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:38+00","p50":78.402838,"p95":144.3401245979807,"p99":177.43481047470118}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:39+00","p50":150.270681,"p95":298.6487632392571,"p99":370.1201082821303}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:40+00","p50":152.889489375,"p95":263.37989626350856,"p99":280.8063712001801}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:41+00","p50":158.97943625,"p95":271.3836715359949,"p99":354.32582066359856}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:42+00","p50":84.74546199999999,"p95":155.07489208613754,"p99":179.15980976470854}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:43+00","p50":154.106132625,"p95":280.58177096361027,"p99":319.342891528214}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:44+00","p50":115.3737745,"p95":292.30592330775454,"p99":330.901533852787}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:45+00","p50":89.88674075,"p95":178.1409816361093,"p99":249.78166880996582}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:46+00","p50":106.02971425,"p95":189.5308688347207,"p99":237.3148701986451}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:47+00","p50":131.56561837499999,"p95":229.67714850340718,"p99":286.40063484539655}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:48+00","p50":145.24898975000002,"p95":237.09845579933884,"p99":294.1401854216461}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:49+00","p50":117.06487475,"p95":223.43742898313457,"p99":245.90819812082552}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:50+00","p50":86.69827825,"p95":144.27156606635583,"p99":166.36591920491503}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:51+00","p50":78.35722525,"p95":157.9748019956591,"p99":186.6180366848326}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:52+00","p50":114.09070224999999,"p95":207.85965996786067,"p99":285.85239738043265}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:53+00","p50":138.325375,"p95":263.8737629048869,"p99":334.1221168493645}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:54+00","p50":124.36423350000001,"p95":221.57588228176357,"p99":268.5598757210502}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:55+00","p50":118.9322165,"p95":212.25863084412134,"p99":261.84161603287504}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:56+00","p50":138.65754750000002,"p95":270.94869400470077,"p99":297.88881496250247}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:57+00","p50":129.256927375,"p95":256.862614773632,"p99":392.65722463039685}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:58+00","p50":142.73963924999998,"p95":264.7615829337102,"p99":317.56304596755217}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:39:59+00","p50":113.9991225,"p95":197.81528142398668,"p99":223.93890778758575}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:00+00","p50":153.55616375,"p95":257.3364567136954,"p99":284.0229803385486}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:01+00","p50":142.707433375,"p95":259.66936513709277,"p99":288.2119835221596}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:02+00","p50":151.79964375,"p95":252.99461313460196,"p99":294.9758321716347}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:03+00","p50":188.02394062500002,"p95":330.3276249718827,"p99":414.2409095767899}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:04+00","p50":136.324777875,"p95":278.4569952069595,"p99":309.08886271493867}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:05+00","p50":160.71154775000002,"p95":315.2857112544304,"p99":368.36009770668886}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:06+00","p50":124.53456987499999,"p95":230.2398862773242,"p99":296.48867495933126}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:07+00","p50":125.93848125000001,"p95":246.79585859784746,"p99":296.53599465173147}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:08+00","p50":127.9006285,"p95":241.25823193374566,"p99":259.125909350246}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:09+00","p50":136.89435999999998,"p95":243.93110475185156,"p99":294.84599808761027}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:10+00","p50":167.95576925,"p95":309.07879370406295,"p99":363.6150852314015}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:11+00","p50":115.08279999999999,"p95":210.5753342336676,"p99":293.54615774502133}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:12+00","p50":118.99420412500001,"p95":203.68084789462247,"p99":234.43616921296262}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:13+00","p50":107.749965125,"p95":193.3872992321776,"p99":233.77608004095484}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:14+00","p50":109.36223000000001,"p95":220.82020862037885,"p99":280.07972102473593}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:15+00","p50":217.2089805,"p95":364.8063659352888,"p99":420.002347819149}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:16+00","p50":102.56427550000001,"p95":182.27378840435838,"p99":269.46092169107055}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:17+00","p50":206.67791375000002,"p95":326.0141956956197,"p99":456.02548323781633}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:18+00","p50":287.46370375,"p95":513.077850400024,"p99":625.9606771918207}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:19+00","p50":168.20390112500002,"p95":384.417831829744,"p99":469.16666778052286}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:20+00","p50":129.522899375,"p95":240.12243243988854,"p99":305.1943563650992}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:21+00","p50":143.6340045,"p95":245.50342613468538,"p99":302.3971143024669}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:22+00","p50":127.55543375,"p95":214.7886721927762,"p99":394.8043606546564}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:23+00","p50":100.556007375,"p95":167.45564657041962,"p99":229.61460816024638}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:24+00","p50":121.613229,"p95":229.08943355795134,"p99":308.18553834750605}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:25+00","p50":105.00252187499999,"p95":180.9800296284135,"p99":200.88080119086695}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:26+00","p50":102.765521,"p95":200.30734406080413,"p99":262.18557051481815}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:27+00","p50":111.849952125,"p95":231.6851010928353,"p99":298.3390481798513}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:28+00","p50":101.990479375,"p95":169.27467502903642,"p99":220.0052073220446}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:29+00","p50":100.147446,"p95":238.01573534614147,"p99":275.8243869721141}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:30+00","p50":107.1040505,"p95":184.87893920354654,"p99":219.33649420207976}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:31+00","p50":95.88613525,"p95":174.90402370942383,"p99":190.95595056080606}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:32+00","p50":164.23609525,"p95":286.9506189156022,"p99":360.29427604351287}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:33+00","p50":110.56395524999999,"p95":214.90275192006277,"p99":252.88197259765244}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:34+00","p50":113.92090962500001,"p95":193.99303207190263,"p99":234.74683530870342}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:35+00","p50":112.6548425,"p95":216.59031873853422,"p99":246.86505759159374}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:36+00","p50":91.147389375,"p95":184.82094129256834,"p99":329.8295768367825}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:37+00","p50":105.842871,"p95":191.1376454884592,"p99":219.6415977798033}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:38+00","p50":155.93538825000002,"p95":290.31858307399654,"p99":388.3543847733536}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:39+00","p50":93.78006675,"p95":158.52210570715522,"p99":178.75658863690757}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:40+00","p50":123.722245125,"p95":216.42554067872703,"p99":242.46181425853538}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:41+00","p50":196.088489875,"p95":362.9173902305277,"p99":434.0001885584719}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:42+00","p50":195.6107395,"p95":367.056759721776,"p99":476.2307005814781}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:43+00","p50":174.395918,"p95":287.47821203861025,"p99":328.666862514132}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:44+00","p50":187.85767049999998,"p95":317.2496447828713,"p99":401.54113320951893}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:45+00","p50":86.856569875,"p95":163.2632546460998,"p99":196.7224465923624}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:46+00","p50":148.60648600000002,"p95":282.89838988150944,"p99":358.95263279684923}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:47+00","p50":128.513361125,"p95":252.15333940747215,"p99":305.6610352636974}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:48+00","p50":155.83048575,"p95":308.61699943636614,"p99":399.5821268372192}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:49+00","p50":140.31709949999998,"p95":250.92946075304044,"p99":300.5261323618193}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:50+00","p50":109.398330375,"p95":180.86474469071345,"p99":191.31641397058652}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:51+00","p50":158.34034824999998,"p95":269.4654572414587,"p99":347.68678327043057}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:52+00","p50":142.50908225,"p95":296.5661710421972,"p99":412.39040729521184}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:53+00","p50":130.020934125,"p95":224.39248462472617,"p99":349.1523652424174}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:54+00","p50":155.506500125,"p95":261.44828328318215,"p99":365.9786337066698}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:55+00","p50":179.42872275,"p95":287.7629081670361,"p99":308.92525543609094}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:56+00","p50":103.782803,"p95":275.1291470171785,"p99":345.1833288927403}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:57+00","p50":122.599288875,"p95":242.56221204672582,"p99":285.9382790940728}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:58+00","p50":120.437154125,"p95":229.84404559094477,"p99":293.46414220445394}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:40:59+00","p50":100.05537575,"p95":198.92141858212136,"p99":269.5841532649994}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:00+00","p50":130.92589575,"p95":263.8315689453469,"p99":313.4661788368912}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:01+00","p50":108.32031487500001,"p95":230.08234420584404,"p99":254.57832381085942}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:02+00","p50":100.53958575,"p95":166.8888770874113,"p99":181.6282890338881}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:03+00","p50":128.53746575,"p95":232.4962575568324,"p99":317.1890544362626}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:04+00","p50":90.9879015,"p95":158.7992009445629,"p99":218.94858399650573}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:05+00","p50":104.87180575,"p95":223.73225417292,"p99":301.7320167488422}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:06+00","p50":175.795699,"p95":338.6276557409801,"p99":365.77963417620856}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:07+00","p50":196.157982,"p95":315.9344449894712,"p99":354.93905467628144}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:08+00","p50":117.643074,"p95":229.25230252163786,"p99":323.58050640147997}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:09+00","p50":90.92689625,"p95":150.7711674618516,"p99":196.63711766590595}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:10+00","p50":75.1813405,"p95":140.15124137531328,"p99":173.1269488953705}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:11+00","p50":156.451581,"p95":276.43831520328763,"p99":363.9597981120539}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:12+00","p50":160.92065637500002,"p95":293.0797744702719,"p99":342.5378321988399}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:13+00","p50":217.340713875,"p95":382.96438556682443,"p99":437.78659930052254}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:14+00","p50":132.26165799999998,"p95":235.4813487486001,"p99":294.6244393530002}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:15+00","p50":206.158664875,"p95":320.7088760605945,"p99":380.5579964889343}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:16+00","p50":193.403914875,"p95":332.9161799297578,"p99":369.52557250214795}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:17+00","p50":111.50585812499999,"p95":246.38203906594296,"p99":281.16399441473675}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:18+00","p50":127.636673,"p95":246.87616745718933,"p99":295.2878712614231}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:19+00","p50":164.33276987500003,"p95":319.12710339501217,"p99":384.4240171266842}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:20+00","p50":172.69346787499998,"p95":330.2176174296149,"p99":386.8998323356483}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:21+00","p50":141.94067325,"p95":271.2542536793929,"p99":306.395979046833}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:22+00","p50":113.7751095,"p95":212.10920128783226,"p99":253.15501147991944}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:23+00","p50":111.92516549999999,"p95":185.1720142578249,"p99":209.81439910369514}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:24+00","p50":141.16989475,"p95":229.96755169853688,"p99":330.09901309271623}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:25+00","p50":92.559127375,"p95":156.5400930799685,"p99":173.18178255447316}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:26+00","p50":97.24964262499999,"p95":225.8561114328062,"p99":271.02163234794045}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:27+00","p50":166.594861125,"p95":343.63776181184494,"p99":390.76302464326955}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:28+00","p50":155.619994875,"p95":252.27508973195506,"p99":303.67756354698827}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:29+00","p50":93.8141725,"p95":143.90226724703206,"p99":195.4608362437477}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:30+00","p50":153.40750725,"p95":263.22854130478777,"p99":284.6552075698045}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:31+00","p50":135.97550624999997,"p95":238.28673647949296,"p99":323.78650061753706}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:32+00","p50":88.240857,"p95":162.35316689282953,"p99":271.5627696785057}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:33+00","p50":143.681407875,"p95":244.96253989875598,"p99":279.2041130050376}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:34+00","p50":106.81514387499999,"p95":185.74338418974625,"p99":215.34834177486755}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:35+00","p50":114.85868925,"p95":205.91564683816767,"p99":287.1981648783121}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:36+00","p50":135.407933,"p95":260.9935636860571,"p99":302.86616194302223}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:37+00","p50":231.690099,"p95":401.03046277614374,"p99":440.88506262365104}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:38+00","p50":230.8438985,"p95":422.4053428231901,"p99":487.98417427778764}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:39+00","p50":181.51957225,"p95":392.6831557293416,"p99":486.35841180217597}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:40+00","p50":147.257377,"p95":240.67118070982087,"p99":317.2897436104441}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:41+00","p50":122.85548837500001,"p95":247.9284942389388,"p99":310.3398465759432}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:42+00","p50":144.33150675000002,"p95":279.57424491165494,"p99":315.406764422842}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:43+00","p50":168.7359675,"p95":294.8348129202472,"p99":364.33766824459366}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:44+00","p50":189.537118625,"p95":307.7224384888626,"p99":360.8268662370203}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:45+00","p50":98.1843765,"p95":171.9302319903066,"p99":198.77335217667533}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:46+00","p50":144.3452045,"p95":298.6678791217855,"p99":345.62336735509496}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:47+00","p50":105.4388505,"p95":230.72285036005044,"p99":324.30582002457766}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:48+00","p50":106.31576237499999,"p95":235.91690982844153,"p99":276.0953223092077}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:49+00","p50":178.32235350000002,"p95":318.83427086260315,"p99":375.54812249487685}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:50+00","p50":122.470605,"p95":253.24354918482692,"p99":342.1366228244581}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:51+00","p50":102.15789625,"p95":205.69353675387973,"p99":244.53935265703893}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:52+00","p50":141.39000174999998,"p95":250.430393941365,"p99":299.85286956872653}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:53+00","p50":151.78941325,"p95":257.3216500399931,"p99":321.59512627494}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:54+00","p50":164.89939025,"p95":329.99344127040126,"p99":425.9760670131607}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:55+00","p50":143.30167725,"p95":245.44347580948906,"p99":262.70404818537094}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:56+00","p50":110.01073862499999,"p95":280.96064987996544,"p99":345.8144251350279}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:57+00","p50":141.53272725,"p95":241.59128897637535,"p99":294.45066305665233}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:58+00","p50":156.3382155,"p95":272.64634370367116,"p99":320.23479364907934}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:41:59+00","p50":148.07724762499998,"p95":264.4167006878803,"p99":278.3896774760377}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:00+00","p50":140.787592,"p95":322.7627679976897,"p99":372.25440489812473}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:01+00","p50":95.71082849999999,"p95":191.23092309812952,"p99":217.1293403185246}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:02+00","p50":110.80178925,"p95":184.94247150355596,"p99":222.06633525641084}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:03+00","p50":127.8753435,"p95":233.02334958903646,"p99":263.917859669796}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:04+00","p50":96.21209400000001,"p95":180.4118421812197,"p99":230.470033870584}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:05+00","p50":127.616092125,"p95":234.94939925549977,"p99":290.5120697148728}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:06+00","p50":122.448014,"p95":235.56948054654885,"p99":276.8066741812019}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:07+00","p50":101.99734325,"p95":246.3306087554867,"p99":306.4901524818268}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:08+00","p50":179.48170975,"p95":297.36307043819625,"p99":330.4799485638623}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:09+00","p50":154.48938099999998,"p95":240.95570073801565,"p99":278.2068274672165}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:10+00","p50":151.903418875,"p95":264.1781482331685,"p99":327.77701225334715}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:11+00","p50":105.19737549999999,"p95":178.96667670211576,"p99":222.43602816604087}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:12+00","p50":117.66714075,"p95":202.8416588660174,"p99":230.84688507774615}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:13+00","p50":210.326336,"p95":334.7969624487963,"p99":409.9795503330116}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:14+00","p50":145.336702875,"p95":285.3160289602604,"p99":364.9390115884519}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:15+00","p50":98.6081035,"p95":168.63798565464614,"p99":188.50792227329418}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:16+00","p50":68.82574349999999,"p95":122.52827270473277,"p99":153.60788358651732}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:17+00","p50":70.534524625,"p95":146.41988561759035,"p99":177.67083397401882}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:18+00","p50":158.299693875,"p95":261.4633548453215,"p99":373.6140856297176}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:19+00","p50":151.89453100000003,"p95":241.7410138901775,"p99":306.3774793957248}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:20+00","p50":141.546152,"p95":283.51168840125877,"p99":354.63138895826125}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:21+00","p50":181.24983462499998,"p95":311.5045031770151,"p99":372.62580057138064}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:22+00","p50":135.115877,"p95":247.25302402984985,"p99":295.9554203998105}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:23+00","p50":168.009402,"p95":346.5794267111067,"p99":400.0685648796325}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:24+00","p50":144.2002445,"p95":266.26512601330523,"p99":354.4671667764406}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:25+00","p50":114.10687999999999,"p95":197.95624934377338,"p99":236.48580868994713}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:26+00","p50":116.99417025,"p95":209.1492365504467,"p99":236.13013447836755}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:27+00","p50":127.724283875,"p95":191.30484734164565,"p99":244.04126736116456}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:28+00","p50":141.421897,"p95":236.0743603511213,"p99":286.0111772160733}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:29+00","p50":99.291600875,"p95":179.56632304613643,"p99":222.30805611932516}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:30+00","p50":80.09297649999999,"p95":144.36113495628905,"p99":185.46303933191277}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:31+00","p50":114.54049462500001,"p95":204.64329540967387,"p99":240.96238848944617}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:32+00","p50":67.421089,"p95":116.23495397450019,"p99":159.20688061552045}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:33+00","p50":151.75763137500002,"p95":275.93285470892397,"p99":334.22780055234125}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:34+00","p50":136.593133,"p95":275.2873060089636,"p99":327.5000914015083}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:35+00","p50":98.803046,"p95":178.91978888925135,"p99":234.68618458147574}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:36+00","p50":101.160566875,"p95":178.9719456482085,"p99":247.72400011359525}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:37+00","p50":133.64249775000002,"p95":212.2500193170936,"p99":254.21171353640844}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:38+00","p50":101.09957750000001,"p95":192.11722132946772,"p99":237.10030998756935}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:39+00","p50":97.2257985,"p95":176.2678358463016,"p99":218.38403702192832}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:40+00","p50":114.16709600000002,"p95":197.74192172777188,"p99":241.18630036014483}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:41+00","p50":110.19398749999999,"p95":215.94116323853433,"p99":262.61262896541456}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:42+00","p50":122.3616385,"p95":211.7527395085394,"p99":232.6224993485012}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:43+00","p50":108.54346,"p95":230.50310562212968,"p99":302.19922188510947}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:44+00","p50":149.11396487500002,"p95":259.89275098648386,"p99":295.85048340439795}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:45+00","p50":95.83802975,"p95":166.38250375804287,"p99":215.1018267629578}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:46+00","p50":90.05515700000001,"p95":164.27234395928383,"p99":179.53590618324088}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:47+00","p50":104.71407274999999,"p95":199.27098786404218,"p99":241.15705894620655}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:48+00","p50":144.948047,"p95":259.0869776833782,"p99":307.9825096678009}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:49+00","p50":130.45518175,"p95":250.78980639173938,"p99":290.7367378213613}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:50+00","p50":171.570303125,"p95":322.8860095414251,"p99":385.0372922422576}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:51+00","p50":101.71850549999999,"p95":190.32114798940205,"p99":282.30636498170855}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:52+00","p50":132.071278,"p95":259.4468439195464,"p99":309.8199570349955}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:53+00","p50":196.9161565,"p95":370.62781332494677,"p99":413.0886349140458}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:54+00","p50":166.14251775,"p95":274.9088496090621,"p99":320.36315466350675}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:55+00","p50":162.0083055,"p95":271.4109266959865,"p99":333.42131654803654}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:56+00","p50":168.677597875,"p95":322.6641363102864,"p99":428.8239863729813}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:57+00","p50":144.20317075000003,"p95":318.2990687422636,"p99":382.5951156477592}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:58+00","p50":154.177346,"p95":285.1249423620785,"p99":311.3991094238355}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:42:59+00","p50":121.25967399999999,"p95":242.51815689349937,"p99":281.93261933107755}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:00+00","p50":98.74610475,"p95":175.28721181880738,"p99":216.54953192986082}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:01+00","p50":106.9196525,"p95":185.28778224592375,"p99":212.69116978652954}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:02+00","p50":88.50364450000001,"p95":151.71149420102213,"p99":175.14325391744993}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:03+00","p50":90.08600437499999,"p95":226.8032655219506,"p99":267.3935036701837}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:04+00","p50":100.91928300000001,"p95":208.38050100937872,"p99":246.30503027765656}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:05+00","p50":144.16530175000003,"p95":283.29757053431655,"p99":338.51624933920476}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:06+00","p50":127.4885535,"p95":247.3411936690247,"p99":288.80225577584554}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:07+00","p50":84.36671462500001,"p95":157.6829206928162,"p99":194.05123172809698}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:08+00","p50":145.974749,"p95":260.3140321246738,"p99":350.51645582276296}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:09+00","p50":208.425216875,"p95":479.8464607752978,"p99":532.8743521381471}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:10+00","p50":216.8992325,"p95":389.9132560865905,"p99":445.14080665451905}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:11+00","p50":99.91466325,"p95":163.71042689219237,"p99":202.56403205495263}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:12+00","p50":126.8637235,"p95":250.46274618629383,"p99":305.9493906240511}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:13+00","p50":117.671779,"p95":221.832016447711,"p99":266.0157059769955}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:14+00","p50":101.695671,"p95":174.90136747725154,"p99":203.62020941742944}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:15+00","p50":90.8117115,"p95":196.58095317338538,"p99":240.67018908339787}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:16+00","p50":112.19624875,"p95":195.58741137052218,"p99":265.8970917029908}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:17+00","p50":117.66450075,"p95":211.91172119355738,"p99":242.03704786077284}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:18+00","p50":140.393042,"p95":215.46614418907998,"p99":258.3501643394842}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:19+00","p50":129.422758,"p95":253.56879691624783,"p99":274.30273072361564}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:20+00","p50":115.2284765,"p95":205.82220969689178,"p99":258.109011710639}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:21+00","p50":138.687999875,"p95":271.31773043971657,"p99":319.4237044712505}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:22+00","p50":124.114554,"p95":282.24134288862655,"p99":339.1857482997246}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:23+00","p50":111.800628625,"p95":211.25076196603783,"p99":256.59728326316906}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:24+00","p50":105.451098875,"p95":182.86894343742063,"p99":220.01734106959105}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:25+00","p50":120.41594125,"p95":262.4139085955248,"p99":309.3874269051442}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:26+00","p50":155.936527,"p95":259.7810648224366,"p99":296.67006924191924}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:27+00","p50":119.58099775,"p95":204.86731294597786,"p99":267.0491820517447}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:28+00","p50":133.89506849999998,"p95":210.75879367794562,"p99":301.0972166909142}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:29+00","p50":126.0275965,"p95":224.39143787002288,"p99":253.25708338815332}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:30+00","p50":99.454323,"p95":187.88091212300634,"p99":212.13534531074527}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:31+00","p50":94.30339137499999,"p95":179.2561887223585,"p99":212.16614303650425}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:32+00","p50":100.54634349999999,"p95":173.0199117983377,"p99":204.05976335522175}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:33+00","p50":121.166137625,"p95":225.657349642066,"p99":263.9755463127992}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:34+00","p50":99.764311875,"p95":171.02580764781177,"p99":192.2766165690465}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:35+00","p50":81.10258737500001,"p95":136.08788198367108,"p99":160.07931854304505}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:36+00","p50":144.052473,"p95":251.45445227487278,"p99":285.3806999911418}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:37+00","p50":103.25430525,"p95":186.42800463953307,"p99":213.44282404223347}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:38+00","p50":213.34675299999998,"p95":337.5314787986807,"p99":432.60918193550253}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:39+00","p50":231.029154,"p95":368.7317897096274,"p99":412.0217938202462}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:40+00","p50":123.39937900000001,"p95":300.8939314152922,"p99":368.5655765871384}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:41+00","p50":155.26636575,"p95":255.04183774945236,"p99":284.1115950855961}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:42+00","p50":103.300544125,"p95":169.09924493256264,"p99":213.65235053006984}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:43+00","p50":107.11964449999999,"p95":189.21814017299045,"p99":235.05201402496792}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:44+00","p50":111.62721250000001,"p95":204.17993328764487,"p99":229.12659485162735}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:45+00","p50":92.55482262500001,"p95":178.96202083255164,"p99":210.1036834380946}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:46+00","p50":102.18536025,"p95":179.21681411196613,"p99":214.1507333300781}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:47+00","p50":86.3876245,"p95":159.09844481367588,"p99":308.10585962104034}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:48+00","p50":138.48176725,"p95":222.3731437528806,"p99":267.9870061145076}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:49+00","p50":82.40877087499999,"p95":147.30258498278593,"p99":175.3692997468736}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:50+00","p50":102.31804325,"p95":159.3052272611103,"p99":190.46212463482667}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:51+00","p50":89.2117345,"p95":169.7192795382054,"p99":236.50584604976297}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:52+00","p50":150.55866250000003,"p95":265.9022331368868,"p99":365.93544949280067}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:53+00","p50":129.6061965,"p95":237.57086301064777,"p99":309.6121095512161}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:54+00","p50":135.92783137499998,"p95":246.1842087373398,"p99":279.74366551418734}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:55+00","p50":110.12261050000001,"p95":239.19525432550287,"p99":286.5456068910713}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:56+00","p50":99.236586,"p95":171.18650904216216,"p99":254.64027920075512}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:57+00","p50":154.73401325,"p95":255.52744732979227,"p99":283.95553653929426}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:58+00","p50":127.16723674999999,"p95":226.93460485981822,"p99":309.4578824070799}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:43:59+00","p50":114.37227337499999,"p95":212.99435112545908,"p99":307.8495307094693}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:00+00","p50":110.57957999999999,"p95":203.42232285920716,"p99":245.46689932424925}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:01+00","p50":91.2021435,"p95":156.8916889517758,"p99":179.37070115738774}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:02+00","p50":134.55258350000003,"p95":236.02471965083777,"p99":307.5775922805572}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:03+00","p50":151.04973712499998,"p95":262.2238551400672,"p99":294.0592836158151}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:04+00","p50":138.92280399999999,"p95":231.29003487895977,"p99":253.92683750426102}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:05+00","p50":125.102159,"p95":210.57695181701814,"p99":285.98050815102295}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:06+00","p50":94.14099725,"p95":174.32285289662283,"p99":233.8733605067291}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:07+00","p50":89.84799924999999,"p95":149.9514668417697,"p99":201.00474586262487}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:08+00","p50":159.505935375,"p95":298.01378981376206,"p99":336.7817176407025}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:09+00","p50":128.0984095,"p95":221.629567262249,"p99":291.15077149405573}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:10+00","p50":118.56984825,"p95":223.92029054681092,"p99":253.3344918672924}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:11+00","p50":147.0766885,"p95":278.97957026017855,"p99":354.65444686960694}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:12+00","p50":139.322213,"p95":232.46191676707602,"p99":274.0915827755108}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:13+00","p50":85.8706705,"p95":159.7854236907656,"p99":189.04863671471216}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:14+00","p50":77.640807125,"p95":136.51460178830885,"p99":150.0771253117924}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:15+00","p50":89.62026550000002,"p95":151.26294441092176,"p99":161.437068589005}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:16+00","p50":108.254706,"p95":203.3909229578966,"p99":264.41472613225244}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:17+00","p50":161.2212345,"p95":271.77463009681594,"p99":335.6336693782621}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:18+00","p50":176.58207149999998,"p95":307.5038041796062,"p99":409.13890873446985}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:19+00","p50":110.11551750000001,"p95":207.06174159773562,"p99":264.11776913065626}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:20+00","p50":91.19986300000001,"p95":160.70063218692852,"p99":177.88204351167582}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:21+00","p50":144.53578925,"p95":249.61031745475773,"p99":297.95023765572637}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:22+00","p50":141.723673125,"p95":263.3165445205465,"p99":336.07346288469313}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:23+00","p50":216.869627,"p95":368.43139441035197,"p99":412.9261176435046}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:24+00","p50":171.032509,"p95":370.8439584333666,"p99":479.2870731905567}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:25+00","p50":145.07655999999997,"p95":266.08702110801653,"p99":322.601401004633}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:26+00","p50":101.46408,"p95":187.64609417895173,"p99":249.33707759716796}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:27+00","p50":94.9844925,"p95":162.79663016263973,"p99":223.50950732928658}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:28+00","p50":91.478148,"p95":174.3863455980599,"p99":191.4736336963272}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:29+00","p50":96.08230275,"p95":170.83020717254138,"p99":219.35906099091196}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:30+00","p50":91.79307575,"p95":178.96728356297112,"p99":224.68024010671996}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:31+00","p50":131.817676,"p95":216.84978735293893,"p99":292.94693858100703}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:32+00","p50":223.6321795,"p95":410.73295489634035,"p99":515.0850010337754}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:33+00","p50":247.7949325,"p95":405.35100829550026,"p99":452.4405294550386}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:34+00","p50":109.969272125,"p95":231.82488188842737,"p99":307.15040329442337}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:35+00","p50":87.91177025,"p95":151.8676565254165,"p99":163.8369356883483}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:36+00","p50":115.69512925000001,"p95":186.06248317580676,"p99":227.20833044445516}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:37+00","p50":130.10904916666667,"p95":281.3871177530346,"p99":329.2653884988985}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:38+00","p50":130.9516855,"p95":241.4651282848912,"p99":308.18640571358657}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:39+00","p50":140.40034175,"p95":237.95262093512702,"p99":277.3618458281465}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:40+00","p50":114.47163975000001,"p95":225.0798534787502,"p99":269.1456775704689}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:41+00","p50":128.62674487499999,"p95":234.10959833487075,"p99":291.8265991073849}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:42+00","p50":133.74399175,"p95":227.22619892207706,"p99":330.5771852720468}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:43+00","p50":153.404875,"p95":253.31029230709981,"p99":289.22487938775686}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:44+00","p50":103.40916212500002,"p95":207.56793106595998,"p99":280.5059781116545}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:45+00","p50":77.044896,"p95":151.5907638802374,"p99":179.39354077498052}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:46+00","p50":72.569646,"p95":116.53805492147232,"p99":164.8607832717762}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:47+00","p50":82.03471562499999,"p95":186.37280567995506,"p99":246.52898615761328}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:48+00","p50":147.371935,"p95":288.8765640523837,"p99":349.0539718282461}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:49+00","p50":97.334225,"p95":174.92159978294205,"p99":214.32764247509957}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:50+00","p50":158.52224437499999,"p95":295.7939410250684,"p99":372.0809850978093}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:51+00","p50":142.38109137499998,"p95":329.0406198056769,"p99":392.6612817624831}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:52+00","p50":129.788458,"p95":248.62017183192282,"p99":336.97430313498216}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:53+00","p50":154.51512275000002,"p95":353.3550922488358,"p99":431.3406532626953}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:54+00","p50":164.1928395,"p95":352.719691712713,"p99":404.29913137688635}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:55+00","p50":111.89381175,"p95":207.6050741588974,"p99":242.8327057235031}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:56+00","p50":128.532712125,"p95":236.97746554740374,"p99":254.7880504129603}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:57+00","p50":273.34712625,"p95":502.0316772212541,"p99":588.0479301910161}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:58+00","p50":148.34029974999999,"p95":366.6159704474291,"p99":496.1870063027363}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:44:59+00","p50":141.85357299999998,"p95":239.14735477427638,"p99":325.68533352864074}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:00+00","p50":151.809842,"p95":270.53780604701615,"p99":323.4212838583221}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:01+00","p50":154.82157075,"p95":311.63859046577,"p99":401.3785004987259}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:02+00","p50":227.89166799999998,"p95":365.8333434975443,"p99":443.0647073951688}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:03+00","p50":128.864561875,"p95":268.71279197812385,"p99":351.5712776953185}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:04+00","p50":127.3448535,"p95":224.0622871636324,"p99":277.84009613737777}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:05+00","p50":98.02853049999999,"p95":179.23597599013902,"p99":215.67216550413514}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:06+00","p50":130.327724,"p95":226.66989375025295,"p99":276.6405706711841}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:07+00","p50":96.20616875,"p95":166.29557374678885,"p99":191.52573982815744}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:08+00","p50":93.097402125,"p95":207.361048133781,"p99":257.83394557287}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:09+00","p50":123.6092435,"p95":204.8431126177528,"p99":289.0762628391347}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:10+00","p50":102.13948575,"p95":171.34678935942148,"p99":223.42944805186795}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:11+00","p50":98.25140999999999,"p95":168.76778432369804,"p99":225.2021098369598}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:12+00","p50":114.81741425,"p95":238.32296920090246,"p99":356.84568921344567}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:13+00","p50":146.96959750000002,"p95":274.38840025495864,"p99":314.334443486598}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:14+00","p50":200.329405,"p95":295.70785536070247,"p99":335.0934206383057}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:15+00","p50":193.43503,"p95":303.40490909326456,"p99":382.14356417680835}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:16+00","p50":175.499666,"p95":296.93390429593717,"p99":327.4486573731547}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:17+00","p50":193.46678125,"p95":303.0033824256601,"p99":343.03695791005083}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:18+00","p50":162.3544865,"p95":288.8182284863353,"p99":365.32326485476824}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:19+00","p50":148.70781375,"p95":253.0540110355438,"p99":286.89337927136233}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:20+00","p50":111.9068135,"p95":211.6011632271887,"p99":266.1909768937964}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:21+00","p50":197.79366687500004,"p95":343.74937107047987,"p99":376.8854101760642}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:22+00","p50":154.48239725,"p95":281.7464615606017,"p99":344.1655974600611}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:23+00","p50":90.8063975,"p95":159.34523038991642,"p99":190.80784507170557}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:24+00","p50":92.81930249999999,"p95":198.04157685904025,"p99":226.58493774172592}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:25+00","p50":99.6580845,"p95":203.58530611493373,"p99":260.13748142213484}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:26+00","p50":127.838764375,"p95":228.45671809815713,"p99":285.51493860568837}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:27+00","p50":124.09808462499998,"p95":278.8036772153276,"p99":359.8171137292061}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:28+00","p50":156.98051625,"p95":299.9866025988537,"p99":344.5842577486973}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:29+00","p50":151.46376075,"p95":263.40569837267833,"p99":338.53329009361556}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:30+00","p50":144.84380449999998,"p95":285.52761328190206,"p99":354.54489235211275}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:31+00","p50":101.4277345,"p95":172.05395192488396,"p99":193.5401244422388}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:32+00","p50":161.95931275,"p95":276.1538104332579,"p99":383.2020282273085}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:33+00","p50":139.009254875,"p95":264.42480838616945,"p99":402.99496327359435}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:34+00","p50":83.27464275,"p95":167.3402137002728,"p99":214.63034933302544}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:35+00","p50":136.45699375,"p95":223.93174762700613,"p99":294.7746878282847}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:36+00","p50":79.981556375,"p95":134.36538536490607,"p99":179.0789823672087}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:37+00","p50":93.851133,"p95":153.08870559753544,"p99":175.0438742830405}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:38+00","p50":101.89264825000001,"p95":182.82700685251294,"p99":257.53797734140255}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:39+00","p50":148.88002450000002,"p95":281.6686623068929,"p99":316.8203752621622}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:40+00","p50":127.98199175000002,"p95":253.24299568858248,"p99":366.8163550254671}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:41+00","p50":139.69501449999998,"p95":237.8194111724909,"p99":317.2520162330665}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:42+00","p50":112.25914112500001,"p95":202.15612112838352,"p99":258.70530278486586}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:43+00","p50":193.06880825000002,"p95":335.0083985412396,"p99":389.2017109910836}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:44+00","p50":156.673806,"p95":297.06224389818607,"p99":349.9320082163853}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:45+00","p50":111.08392624999999,"p95":178.31011044504177,"p99":216.1123520808644}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:46+00","p50":113.29639800000001,"p95":218.7351682635733,"p99":284.82257813775686}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:47+00","p50":82.643023,"p95":150.83175167232346,"p99":195.16557317203092}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:48+00","p50":131.47161025,"p95":236.53559630877245,"p99":300.76197675224256}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:49+00","p50":193.201112,"p95":345.04748059004356,"p99":390.0549618068342}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:50+00","p50":174.250716,"p95":293.65703754790684,"p99":333.23204831179805}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:51+00","p50":148.96329925,"p95":285.099314589292,"p99":324.7075702625136}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:52+00","p50":72.89207125,"p95":231.48957953208637,"p99":313.6319255236435}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:53+00","p50":112.2935885,"p95":233.99653202728584,"p99":281.8582639525952}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:54+00","p50":216.46223387499998,"p95":355.2705244887665,"p99":449.2564780158556}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:55+00","p50":206.266161375,"p95":350.74124088832417,"p99":419.69320975022674}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:56+00","p50":200.45121775,"p95":390.42522717938704,"p99":475.3680017949486}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:57+00","p50":127.29120325,"p95":231.11788617517828,"p99":275.7034049391241}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:58+00","p50":124.33156699999999,"p95":220.39672803620368,"p99":245.58714174468113}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:45:59+00","p50":94.75080975,"p95":149.98064052131426,"p99":168.55727104488327}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:00+00","p50":81.96945775,"p95":148.16077856303426,"p99":168.0265698072965}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:01+00","p50":146.895323625,"p95":249.87923657840878,"p99":288.4859002938928}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:02+00","p50":114.017781,"p95":244.73301418479454,"p99":385.84544200403616}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:03+00","p50":99.19644675,"p95":182.48579130125998,"p99":214.40423439637945}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:04+00","p50":114.39084737499999,"p95":220.04751904256213,"p99":277.2714807418656}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:05+00","p50":101.5173695,"p95":188.00573005898858,"p99":240.05136404623414}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:06+00","p50":103.63723774999998,"p95":183.63698785679406,"p99":200.2796717285266}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:07+00","p50":138.52390524999998,"p95":244.04160464400744,"p99":289.16768993190243}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:08+00","p50":174.74991775,"p95":295.9402841974542,"p99":337.24571776889036}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:09+00","p50":100.52245537499999,"p95":181.42297499340944,"p99":187.69693039923334}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:10+00","p50":104.35289549999999,"p95":193.61413014909115,"p99":226.41523657711483}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:11+00","p50":159.86354525000002,"p95":309.99511890237096,"p99":374.6054399558416}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:12+00","p50":186.78027475,"p95":350.56610769185426,"p99":404.7614324710688}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:13+00","p50":127.5967225,"p95":243.89512809551812,"p99":345.65351358241276}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:14+00","p50":103.26010199999999,"p95":196.75917411392655,"p99":245.08809780254032}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:15+00","p50":84.95083025,"p95":143.43637181149413,"p99":176.50628817827513}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:16+00","p50":107.07618912499998,"p95":190.10611177007343,"p99":208.4306353850584}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:17+00","p50":125.90609524999999,"p95":213.51545625814092,"p99":257.5813049891863}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:18+00","p50":108.8234265,"p95":199.45036091024423,"p99":238.74948298450568}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:19+00","p50":116.30308575,"p95":243.4172888106686,"p99":295.6704910221381}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:20+00","p50":160.06577099999998,"p95":271.47067227475645,"p99":353.0827091058068}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:21+00","p50":130.95216025000002,"p95":215.33202362921168,"p99":298.4797049025736}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:22+00","p50":170.0615895,"p95":316.3868234962864,"p99":350.87721879409247}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:23+00","p50":160.0407085,"p95":259.4868257632861,"p99":344.54012697182515}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:24+00","p50":126.83937025,"p95":222.73997437062968,"p99":280.7996306646147}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:25+00","p50":210.03403075,"p95":354.0650150748729,"p99":378.9694853874054}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:26+00","p50":181.82181,"p95":360.6052567200076,"p99":548.8554881368403}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:27+00","p50":84.731615,"p95":145.25815029418038,"p99":154.78591671372985}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:28+00","p50":205.065407125,"p95":366.1823219022646,"p99":414.71976048528074}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:29+00","p50":119.3064105,"p95":229.92042764411522,"p99":288.32742882036615}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:30+00","p50":119.27640787499999,"p95":229.5146669968439,"p99":267.60432755031036}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:31+00","p50":155.09592099999998,"p95":271.6352583556115,"p99":313.7625307780881}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:32+00","p50":112.368894,"p95":257.87440330270863,"p99":312.20888283084105}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:33+00","p50":115.641684375,"p95":194.72834639408458,"p99":239.56081262937283}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:34+00","p50":126.57340025,"p95":225.54810577835167,"p99":279.574628439775}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:35+00","p50":163.42332712500001,"p95":280.4578620995911,"p99":394.80225048857113}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:36+00","p50":149.9994665,"p95":269.61896495110034,"p99":339.9599184973355}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:37+00","p50":119.04566712500001,"p95":203.02155494689273,"p99":219.94334861241697}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:38+00","p50":144.78784375,"p95":265.24966716060857,"p99":297.5737469482851}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:39+00","p50":86.826,"p95":136.67239254454327,"p99":189.0674115946102}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:40+00","p50":102.198232875,"p95":211.97671741222786,"p99":289.825193544127}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:41+00","p50":145.387030625,"p95":244.58986065586228,"p99":356.83691385336397}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:42+00","p50":219.695472,"p95":371.7757312220302,"p99":436.41890832040286}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:43+00","p50":232.72891925,"p95":398.0944623070617,"p99":529.2788928770761}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:44+00","p50":201.84708849999998,"p95":319.92407981682896,"p99":355.5796339894543}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:45+00","p50":153.890911,"p95":295.2765054924749,"p99":324.4775373170724}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:46+00","p50":120.8339605,"p95":219.04834395043028,"p99":289.0672029050767}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:47+00","p50":193.2531645,"p95":309.12280415643403,"p99":355.11686430462265}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:48+00","p50":131.584592,"p95":253.83492135650636,"p99":295.7105715129089}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:49+00","p50":123.89436025,"p95":233.16953991569673,"p99":279.6293415869789}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:50+00","p50":164.5324255,"p95":288.73135754275967,"p99":370.0955298803764}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:51+00","p50":162.48080575,"p95":316.02359783918,"p99":437.22611782495693}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:52+00","p50":142.87211150000002,"p95":239.3420650567231,"p99":325.86580151606273}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:53+00","p50":101.63947525,"p95":214.6544844113134,"p99":260.0387163752568}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:54+00","p50":108.73811387500001,"p95":180.8693438429191,"p99":209.15902539713193}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:55+00","p50":127.52550987500001,"p95":229.16561517444921,"p99":279.2028813717103}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:56+00","p50":104.18456850000001,"p95":181.83665102393485,"p99":265.942648975626}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:57+00","p50":125.570763,"p95":208.47589223571427,"p99":302.673523665636}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:58+00","p50":173.776108625,"p95":309.2445375267485,"p99":351.09571718380596}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:46:59+00","p50":148.349984875,"p95":268.2755163264241,"p99":314.7196049008124}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:00+00","p50":103.67545512500001,"p95":259.7884184819403,"p99":289.9082359485779}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:01+00","p50":106.30636974999999,"p95":195.6386908775877,"p99":224.4699936914058}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:02+00","p50":100.13808399999999,"p95":180.29646189564616,"p99":204.3091240020137}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:03+00","p50":119.81637775,"p95":194.5077057162744,"p99":239.1596881597023}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:04+00","p50":126.12755075000001,"p95":230.2102255648434,"p99":253.6696904222727}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:05+00","p50":112.44873974999999,"p95":205.0704338207363,"p99":229.15154012490225}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:06+00","p50":151.47872237500002,"p95":257.1450015248069,"p99":348.30733049414374}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:07+00","p50":140.54049650000002,"p95":251.71831160766232,"p99":301.01761637816145}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:08+00","p50":115.954155125,"p95":207.69182146457166,"p99":258.2960148813415}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:09+00","p50":126.65043,"p95":242.9393694898188,"p99":295.6696568109655}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:10+00","p50":186.10506900000001,"p95":337.97028937208125,"p99":396.7932612202835}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:11+00","p50":109.61577375,"p95":169.94996819668947,"p99":241.51055579355526}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:12+00","p50":99.009894,"p95":176.35112621205568,"p99":210.1656707166605}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:13+00","p50":114.915984625,"p95":213.15873340535057,"p99":273.6388327104201}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:14+00","p50":117.07201524999999,"p95":243.5826520811076,"p99":266.230870290369}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:15+00","p50":143.45611200000002,"p95":236.2174740643177,"p99":266.61686243955995}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:16+00","p50":146.922187625,"p95":295.67317037846345,"p99":335.34103148353984}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:17+00","p50":115.535618,"p95":219.92863704837453,"p99":273.92018721714544}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:18+00","p50":144.931917625,"p95":259.6348978439655,"p99":323.3420325335138}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:19+00","p50":165.023665,"p95":310.1715076363535,"p99":408.1780848467026}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:20+00","p50":100.447191625,"p95":216.2699708411653,"p99":241.50724525981903}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:21+00","p50":140.76204775,"p95":231.9101198104691,"p99":323.0569237442064}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:22+00","p50":129.617382,"p95":212.6963691984412,"p99":257.592035563437}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:23+00","p50":125.00705525000001,"p95":204.2636032351594,"p99":224.24053454949475}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:24+00","p50":108.884537,"p95":219.82776114234716,"p99":249.7907731136608}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:25+00","p50":173.446315,"p95":312.6675116532514,"p99":356.0896426826563}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:26+00","p50":97.4606095,"p95":174.3656844659461,"p99":231.18043530585385}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:27+00","p50":189.049236,"p95":343.8988204843871,"p99":382.3146383865435}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:28+00","p50":186.68699025,"p95":352.3641351917647,"p99":418.4105367978842}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:29+00","p50":98.68324900000002,"p95":162.16381607322097,"p99":193.75705866608428}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:30+00","p50":70.091701,"p95":166.10182599590777,"p99":201.91405564452936}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:31+00","p50":90.433844375,"p95":180.5099133841576,"p99":220.64199925866532}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:32+00","p50":119.92668937500001,"p95":243.5139929201196,"p99":318.44026849600885}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:33+00","p50":81.35050025,"p95":192.25256756661676,"p99":280.8548857368589}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:34+00","p50":165.5897295,"p95":307.0957378450988,"p99":366.52222070617483}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:35+00","p50":135.345382,"p95":288.3535589198947,"p99":357.0509297669507}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:36+00","p50":72.257410625,"p95":137.24092756063436,"p99":167.671653052516}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:37+00","p50":125.45103025,"p95":223.94546459160935,"p99":296.8866043176198}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:38+00","p50":151.4957185,"p95":259.38772247716287,"p99":357.3164632471161}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:39+00","p50":80.850338,"p95":152.23382641482462,"p99":183.2627876864257}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:40+00","p50":89.732975625,"p95":155.66651697890006,"p99":171.5909818804531}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:41+00","p50":111.365389375,"p95":228.4150861670974,"p99":268.67164048228665}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:42+00","p50":101.297550125,"p95":207.7675988990016,"p99":261.71886355362324}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:43+00","p50":158.973789625,"p95":246.3167629179031,"p99":327.9781784235101}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:44+00","p50":153.87151174999997,"p95":253.85119265312576,"p99":293.3733993349569}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:45+00","p50":119.4168475,"p95":216.34754491494547,"p99":254.49294624739122}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:46+00","p50":79.62130537499999,"p95":151.21946329128957,"p99":179.06034340946985}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:47+00","p50":110.28215925,"p95":178.4521833291817,"p99":207.07978707728887}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:48+00","p50":125.99117462500001,"p95":283.5430769330518,"p99":399.08318335847736}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:49+00","p50":115.34410787499999,"p95":224.1116938705213,"p99":281.6817227007041}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:50+00","p50":222.48016125,"p95":386.0301856834216,"p99":526.5229716894693}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:51+00","p50":220.2514165,"p95":406.35824003892543,"p99":496.2448071918445}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:52+00","p50":120.207693,"p95":251.99158698441505,"p99":319.2247447882614}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:53+00","p50":128.512327125,"p95":237.02073922059913,"p99":251.13989422816658}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:54+00","p50":109.696513125,"p95":194.239256824687,"p99":206.21201082844186}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:55+00","p50":130.665392,"p95":232.28797864113463,"p99":324.80650905060435}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:56+00","p50":204.48163,"p95":397.55466337186886,"p99":492.39878527940084}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:57+00","p50":235.07199025,"p95":427.12363942077224,"p99":467.3937595137558}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:58+00","p50":203.96837699999998,"p95":358.6587107278748,"p99":488.56959830869295}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:47:59+00","p50":192.25415425,"p95":364.17250509893887,"p99":411.8134100592759}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:00+00","p50":119.23407,"p95":209.48488538216304,"p99":234.0052297508559}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:01+00","p50":171.140021875,"p95":321.5045328702277,"p99":372.7999712751386}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:02+00","p50":119.28937375000001,"p95":256.9641438794949,"p99":335.7554776223082}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:03+00","p50":112.54241024999999,"p95":227.04854971467233,"p99":262.1845976902771}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:04+00","p50":189.655393,"p95":305.3411644798813,"p99":368.4413139127426}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:05+00","p50":162.28333987500002,"p95":304.77826085755623,"p99":347.97324985936206}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:06+00","p50":157.57393712500001,"p95":299.0422332019929,"p99":340.945367987499}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:07+00","p50":197.22465962499996,"p95":348.4032261016902,"p99":376.9117596460042}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:08+00","p50":120.9354125,"p95":240.57072478003738,"p99":275.8902450636096}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:09+00","p50":90.75474025,"p95":151.87280462502932,"p99":176.43251270116284}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:10+00","p50":116.773278,"p95":215.59808552930116,"p99":239.50228041238788}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:11+00","p50":97.52640099999999,"p95":195.7294668246715,"p99":264.2092767714319}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:12+00","p50":105.226463,"p95":192.82036787003804,"p99":216.07489888923166}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:13+00","p50":114.74559637499999,"p95":228.0915894401882,"p99":262.85628041826055}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:14+00","p50":77.801512,"p95":129.35629085421513,"p99":158.66147505569364}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:15+00","p50":84.58013687500001,"p95":160.30698757028998,"p99":174.41446144196416}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:16+00","p50":119.63030762500001,"p95":195.95116983887482,"p99":244.93045512882233}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:17+00","p50":84.94059075,"p95":144.44246646892853,"p99":196.845117347682}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:18+00","p50":95.36982275,"p95":159.31266557448865,"p99":183.6228256938827}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:19+00","p50":90.47498175,"p95":155.41825383879421,"p99":188.19613506901646}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:20+00","p50":154.866554625,"p95":275.1757444596352,"p99":320.10758409380554}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:21+00","p50":192.77049975,"p95":382.84073912148096,"p99":456.1590663652012}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:22+00","p50":172.684199,"p95":273.82849095250197,"p99":291.76658192851545}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:23+00","p50":77.349334125,"p95":164.6315947539091,"p99":217.74497885814333}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:24+00","p50":136.33481124999997,"p95":268.13097562302875,"p99":301.47499574422164}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:25+00","p50":111.7630275,"p95":208.5675628924989,"p99":246.8627640971558}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:26+00","p50":118.117255375,"p95":198.3906503164702,"p99":241.5595087475195}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:27+00","p50":84.57643475,"p95":169.85382740643405,"p99":232.07598728229524}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:28+00","p50":131.6372465,"p95":308.4863055378767,"p99":334.4099884776578}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:29+00","p50":195.06435299999998,"p95":345.84884438555525,"p99":408.5210983401051}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:30+00","p50":172.456024,"p95":299.1539311056702,"p99":361.0364903167076}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:31+00","p50":187.658683,"p95":328.58161559315585,"p99":437.94517637537194}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:32+00","p50":195.98734775,"p95":338.57030350411253,"p99":379.8266741465178}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:33+00","p50":67.911066875,"p95":151.74925286104792,"p99":214.33244606456924}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:34+00","p50":112.829188125,"p95":205.14536671550687,"p99":238.09364061297896}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:35+00","p50":118.69257975,"p95":211.63245172558194,"p99":230.34172917965387}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:36+00","p50":213.369049875,"p95":370.83680346451234,"p99":428.10711904918077}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:37+00","p50":171.915664,"p95":324.95000080962086,"p99":404.3369656036892}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:38+00","p50":94.7914515,"p95":178.3088233486929,"p99":203.75306774856568}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:39+00","p50":122.90329362499999,"p95":225.84800215345948,"p99":262.82832499983}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:40+00","p50":81.11874,"p95":146.975434843657,"p99":191.93503775610162}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:41+00","p50":77.06334225,"p95":172.44667276608277,"p99":233.7923764716797}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:42+00","p50":155.232269875,"p95":271.10978576326687,"p99":318.6952438457322}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:43+00","p50":95.44421399999999,"p95":161.0645313864994,"p99":198.1223385358639}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:44+00","p50":126.5642115,"p95":197.7667174037062,"p99":238.30415321547366}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:45+00","p50":224.1830465,"p95":357.49810249896115,"p99":397.73599232819583}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:46+00","p50":183.60946975000002,"p95":320.08706590544864,"p99":450.21918666022657}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:47+00","p50":198.033927375,"p95":329.51922549648947,"p99":374.69348892130114}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:48+00","p50":193.911937125,"p95":328.7849015878213,"p99":441.00926053497864}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:49+00","p50":182.81799275,"p95":328.8172208499136,"p99":387.04888753614046}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:50+00","p50":151.1433855,"p95":264.112782148159,"p99":310.14634120301156}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:51+00","p50":176.03035112499998,"p95":302.51729271481724,"p99":408.1084628826258}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:52+00","p50":214.949151,"p95":355.80821321688876,"p99":408.5701132212119}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:53+00","p50":183.38663587500002,"p95":297.250508663004,"p99":391.89707462702677}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:54+00","p50":120.04058987500001,"p95":203.94821230325422,"p99":240.99225547581196}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:55+00","p50":113.0905525,"p95":203.73093636490478,"p99":226.81731132236672}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:56+00","p50":155.13705,"p95":252.38153863984545,"p99":280.79138134726526}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:57+00","p50":115.20201500000002,"p95":214.57353205774103,"p99":251.4363846567497}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:58+00","p50":111.75302625,"p95":196.1925572291405,"p99":228.68420412065504}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:48:59+00","p50":167.9227565,"p95":286.7656297350428,"p99":309.4054061672588}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:00+00","p50":224.82924050000003,"p95":415.2437619785105,"p99":521.9959837867747}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:01+00","p50":141.41684099999998,"p95":260.5584576646181,"p99":319.0394320893049}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:02+00","p50":76.6780775,"p95":146.97312266774244,"p99":178.05853469419745}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:03+00","p50":181.739860625,"p95":308.6153627060426,"p99":352.76882108493544}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:04+00","p50":94.38307237500001,"p95":161.2207859351411,"p99":176.27598044379496}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:05+00","p50":140.59592849999999,"p95":261.5541838513689,"p99":298.1815471367612}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:06+00","p50":167.475838625,"p95":310.9194381740066,"p99":354.23008671012616}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:07+00","p50":136.74798875,"p95":245.3962663980248,"p99":298.6517000871954}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:08+00","p50":94.704063875,"p95":173.34224821417865,"p99":202.8080740893066}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:09+00","p50":84.1258795,"p95":134.26196577129818,"p99":153.5552569835806}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:10+00","p50":119.949077,"p95":239.03918058059477,"p99":276.9778963696089}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:11+00","p50":77.22426025,"p95":192.5384956073041,"p99":289.3393825964851}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:12+00","p50":102.67467300000001,"p95":182.34886675243544,"p99":239.58761844983482}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:13+00","p50":150.819112,"p95":233.7346517537465,"p99":265.10101910305286}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:14+00","p50":90.555367,"p95":162.997830820631,"p99":219.04837551709034}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:15+00","p50":110.9382025,"p95":193.06792611819685,"p99":228.6568239175172}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:16+00","p50":162.57729949999998,"p95":267.1019260265363,"p99":327.8019226284208}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:17+00","p50":122.66068250000001,"p95":231.20068586499093,"p99":277.3198436298952}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:18+00","p50":130.81855099999999,"p95":259.10035311904,"p99":312.3832365103016}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:19+00","p50":164.85576275000003,"p95":289.5224881659961,"p99":328.18444492549423}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:20+00","p50":122.597790625,"p95":223.57372248219193,"p99":341.17334275113654}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:21+00","p50":92.08586125000001,"p95":265.4554385921103,"p99":315.4545488016095}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:22+00","p50":122.325744125,"p95":207.15518508237176,"p99":253.51440682408546}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:23+00","p50":124.0804405,"p95":208.5275148345012,"p99":250.09135234294865}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:24+00","p50":120.3082995,"p95":202.97296703789567,"p99":256.5924304861489}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:25+00","p50":93.203564,"p95":196.1170885300679,"p99":220.8877699315989}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:26+00","p50":129.740024,"p95":247.2575082027154,"p99":282.55843793993233}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:27+00","p50":167.099231,"p95":281.95474493365,"p99":331.7936293168857}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:28+00","p50":217.60455962499998,"p95":421.7247401407291,"p99":508.8911503200922}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:29+00","p50":208.02830887500002,"p95":426.15195239398247,"p99":512.820775347744}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:30+00","p50":127.14468675,"p95":238.14140667675363,"p99":288.02457367893504}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:31+00","p50":110.206042875,"p95":206.55647263575588,"p99":230.3438397485981}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:32+00","p50":146.81646999999998,"p95":264.03500699996164,"p99":317.5231723753433}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:33+00","p50":118.475527,"p95":217.3786848686085,"p99":303.1002206551065}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:34+00","p50":151.24810775,"p95":254.28615024905014,"p99":304.19432314852855}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:35+00","p50":139.93294925,"p95":235.42863928045207,"p99":276.86699031813765}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:36+00","p50":185.62641962499998,"p95":333.2691891589634,"p99":377.97228938201357}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:37+00","p50":92.817038625,"p95":198.14066718595106,"p99":260.0275987819607}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:38+00","p50":128.9801665,"p95":246.05489074892688,"p99":335.2701839859982}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:39+00","p50":169.57002125,"p95":285.0563691501379,"p99":339.24941110331724}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:40+00","p50":142.164916375,"p95":277.20559349273026,"p99":302.16137845514777}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:41+00","p50":122.179940625,"p95":211.79875760471558,"p99":260.66948875296305}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:42+00","p50":124.5509395,"p95":246.70578463223507,"p99":277.9563138941815}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:43+00","p50":95.05171375,"p95":185.21594304929064,"p99":232.606277288023}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:44+00","p50":113.73814875,"p95":197.42266716766906,"p99":245.20485068198798}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:45+00","p50":121.842034125,"p95":207.4706034665075,"p99":243.5389221920166}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:46+00","p50":145.223165,"p95":278.4664416509681,"p99":364.1667859398136}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:47+00","p50":214.81870600000002,"p95":405.14995807418813,"p99":511.2080387875444}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:48+00","p50":178.8440205,"p95":296.3816158212631,"p99":397.0811726249294}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:49+00","p50":145.45170275,"p95":265.83911376829934,"p99":294.33542210741996}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:50+00","p50":153.515479875,"p95":243.4696005607425,"p99":300.56652680123995}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:51+00","p50":170.099188,"p95":292.67042164645727,"p99":365.5190332474301}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:52+00","p50":102.712198,"p95":197.0918927312405,"p99":266.6606889415236}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:53+00","p50":127.03653550000001,"p95":219.72031740333497,"p99":289.5474257745731}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:54+00","p50":88.312027625,"p95":157.61152782306738,"p99":203.33594262806605}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:55+00","p50":102.7510065,"p95":178.0299473281466,"p99":205.06328800445033}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:56+00","p50":177.268628,"p95":314.87519371836567,"p99":388.56729005886314}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:57+00","p50":176.7697255,"p95":318.8108334146526,"p99":392.3396298055153}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:58+00","p50":103.268483,"p95":247.5195731157218,"p99":300.77605382719446}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:49:59+00","p50":98.3880235,"p95":200.46048710468125,"p99":245.15390768143965}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:00+00","p50":146.90309474999998,"p95":258.3837046349163,"p99":307.3804545468025}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:01+00","p50":160.0529515,"p95":298.5677895518036,"p99":345.78969735470014}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:02+00","p50":150.128540875,"p95":329.02071908389263,"p99":531.6520238334601}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:03+00","p50":156.649613125,"p95":280.8244687110972,"p99":311.30939184340025}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:04+00","p50":99.58042225,"p95":205.33131582418952,"p99":248.3720814104178}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:05+00","p50":104.95082912500001,"p95":211.1258879247433,"p99":245.4109877830725}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:06+00","p50":100.86131925,"p95":177.74532394839514,"p99":203.38544704085706}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:07+00","p50":166.717813625,"p95":301.4464004139329,"p99":422.27069196440914}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:08+00","p50":183.122375,"p95":320.2672457518171,"p99":337.5414996871753}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:09+00","p50":97.1126915,"p95":168.9100202090468,"p99":221.52435799082065}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:10+00","p50":157.042794125,"p95":286.1850065083168,"p99":365.80392996135953}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:11+00","p50":175.701706875,"p95":293.9338822561189,"p99":330.85295726367525}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:12+00","p50":88.737670125,"p95":168.60583470118254,"p99":203.13561862069727}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:13+00","p50":133.26832124999999,"p95":219.04042586153864,"p99":262.71531470463657}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:14+00","p50":129.042876,"p95":224.137657865206,"p99":267.8677011634698}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:15+00","p50":130.056198875,"p95":272.8999871089746,"p99":297.60733383080384}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:16+00","p50":129.08648374999999,"p95":295.1839315693486,"p99":369.9986646130562}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:17+00","p50":148.86776500000002,"p95":236.155151247262,"p99":279.66531103663135}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:18+00","p50":101.831662,"p95":214.4762249565202,"p99":244.41268101225162}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:19+00","p50":123.8757715,"p95":205.94489188140608,"p99":275.1826857816892}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:20+00","p50":120.77973237500001,"p95":222.15841217891693,"p99":303.6909217581429}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:21+00","p50":75.2721225,"p95":135.00010428689956,"p99":152.01190308586501}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:22+00","p50":142.515475,"p95":237.75577908824337,"p99":255.26098916444016}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:23+00","p50":229.05779,"p95":406.399523632061,"p99":463.79293193337446}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:24+00","p50":183.48794475,"p95":301.6164604326537,"p99":348.5588254164195}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:25+00","p50":146.28048875,"p95":220.24426210923073,"p99":265.43960687419434}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:26+00","p50":112.3129395,"p95":206.35636717751538,"p99":251.96538080867958}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:27+00","p50":116.95516225,"p95":262.5124719971018,"p99":353.72607107038306}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:28+00","p50":122.60860525000001,"p95":231.62751081742525,"p99":292.3822842529438}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:29+00","p50":114.589837,"p95":194.2496299961059,"p99":264.8560597473068}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:30+00","p50":79.548655,"p95":142.62886833260654,"p99":179.5888004395504}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:31+00","p50":116.30000162500001,"p95":222.71003528821404,"p99":257.5645911491313}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:32+00","p50":90.505556125,"p95":163.7167971977871,"p99":212.71995809886624}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:33+00","p50":110.53585724999999,"p95":197.26180029928778,"p99":241.94576236033726}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:34+00","p50":119.95915175,"p95":207.5164353306854,"p99":232.09581205182647}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:35+00","p50":168.667465875,"p95":328.61260283776,"p99":402.5135138609762}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:36+00","p50":180.89536225,"p95":353.2266079673419,"p99":405.60131409118753}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:37+00","p50":95.97314600000001,"p95":201.23708436596726,"p99":245.47708789807032}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:38+00","p50":110.021550875,"p95":192.7480758854617,"p99":265.0225016271269}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:39+00","p50":183.5119125,"p95":364.8602129200367,"p99":403.3772781636033}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:40+00","p50":127.330326,"p95":229.20515150027168,"p99":266.8002532100673}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:41+00","p50":118.674792,"p95":206.78046656192885,"p99":229.86783207067873}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:42+00","p50":180.7894175,"p95":302.89422436608453,"p99":359.21675440356256}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:43+00","p50":143.47751,"p95":289.9611552879882,"p99":352.50293727325965}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:44+00","p50":130.887541,"p95":216.0389818101513,"p99":271.3052527049067}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:45+00","p50":119.14032875,"p95":196.9254226763699,"p99":225.5676313746543}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:46+00","p50":118.47727925,"p95":219.72585911291122,"p99":253.31050452684022}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:47+00","p50":157.538616875,"p95":296.2515551230171,"p99":455.93793386845635}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:48+00","p50":210.165097875,"p95":355.49922648230694,"p99":424.17380526396727}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:49+00","p50":119.03616149999999,"p95":236.0419699379651,"p99":288.5680091757014}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:50+00","p50":131.827156,"p95":233.77617902404978,"p99":274.03361541597934}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:51+00","p50":117.56609424999999,"p95":219.11308931945322,"p99":267.5331223156605}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:52+00","p50":100.389098,"p95":183.9928992499466,"p99":241.56227272518922}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:53+00","p50":171.8630655,"p95":290.7261397174173,"p99":344.7048438689754}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:54+00","p50":99.35622962500001,"p95":233.54207504769414,"p99":254.59255876947594}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:55+00","p50":121.206158125,"p95":212.3466707781859,"p99":250.96570182067228}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:56+00","p50":161.7219235,"p95":307.6132760159545,"p99":391.686095346138}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:57+00","p50":118.865662,"p95":195.68221622017933,"p99":267.5168934990549}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:58+00","p50":134.26175,"p95":231.75871150604033,"p99":266.3252995473752}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:50:59+00","p50":123.470201,"p95":237.86671347830728,"p99":270.27631510565567}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:00+00","p50":154.00722525,"p95":281.5003241502898,"p99":389.9820110855813}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:01+00","p50":129.7291185,"p95":213.47464407658876,"p99":262.62097807222915}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:02+00","p50":93.06392349999999,"p95":160.7843555688497,"p99":187.47902267387795}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:03+00","p50":151.83697562499998,"p95":280.21147077789027,"p99":356.24208264526743}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:04+00","p50":90.345341125,"p95":181.82349715326757,"p99":275.8178891571078}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:05+00","p50":104.729288,"p95":188.66138582846258,"p99":240.90825274350166}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:06+00","p50":160.840256375,"p95":309.89247545559795,"p99":378.0344772004645}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:07+00","p50":85.229369375,"p95":161.55322203660756,"p99":192.91834185984303}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:08+00","p50":143.271519125,"p95":245.0577006863131,"p99":309.7107219738107}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:09+00","p50":187.563281125,"p95":325.6732923283192,"p99":378.05493228439906}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:10+00","p50":107.2644335,"p95":225.85179870588146,"p99":249.48406465885114}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:11+00","p50":106.650567375,"p95":211.34638745335698,"p99":233.4311838638437}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:12+00","p50":114.00769700000001,"p95":203.3047071122192,"p99":287.2812678587418}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:13+00","p50":135.55943424999998,"p95":215.80626879198135,"p99":234.85129264763975}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:14+00","p50":100.503893,"p95":183.35932405695277,"p99":223.99793029223085}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:15+00","p50":94.84304625,"p95":206.92393512529674,"p99":329.1126737521343}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:16+00","p50":120.885145375,"p95":206.99291664177753,"p99":255.1351456957145}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:17+00","p50":116.53029362500001,"p95":186.629567002656,"p99":209.09682495160223}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:18+00","p50":82.964399875,"p95":144.27417768103106,"p99":180.5137818067434}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:19+00","p50":120.7923115,"p95":206.1640771978742,"p99":279.53199130701995}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:20+00","p50":179.56962199999998,"p95":325.45724340495013,"p99":346.95102908232684}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:21+00","p50":164.273868,"p95":307.5376546449261,"p99":390.1122033200645}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:22+00","p50":111.662962,"p95":208.1805942513585,"p99":236.2707117055986}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:23+00","p50":117.1332045,"p95":181.96947758981182,"p99":222.20426819460153}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:24+00","p50":124.3130085,"p95":267.1455348637066,"p99":327.39941019806673}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:25+00","p50":195.46493099999998,"p95":365.1929777199172,"p99":408.03205740565016}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:26+00","p50":196.8258355,"p95":411.72842267801144,"p99":535.1871792073679}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:27+00","p50":154.86725762499998,"p95":255.20607415540132,"p99":317.75992903017476}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:28+00","p50":152.896679,"p95":293.3784397256216,"p99":304.6741785511951}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:29+00","p50":155.0317435,"p95":263.3453652043408,"p99":307.2539843087988}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:30+00","p50":109.07427725,"p95":182.0128916178384,"p99":214.65147290107154}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:31+00","p50":74.95376225,"p95":151.85466803796317,"p99":173.29790198296402}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:32+00","p50":126.253039375,"p95":259.35468004291187,"p99":299.97295851230257}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:33+00","p50":106.782730375,"p95":204.73639574529153,"p99":230.2037609356697}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:34+00","p50":77.592853,"p95":149.073914495162,"p99":181.25237094677854}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:35+00","p50":117.59886125,"p95":213.06034566206716,"p99":249.66882168813515}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:36+00","p50":169.20732412499999,"p95":296.83574156857594,"p99":390.65112805267853}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:37+00","p50":83.40732025,"p95":182.429370852191,"p99":254.23594313975406}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:38+00","p50":146.371172,"p95":260.2307077156852,"p99":293.6660845240202}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:39+00","p50":136.6599085,"p95":266.9424442772744,"p99":326.5919648148446}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:40+00","p50":113.744263375,"p95":192.63153096754257,"p99":254.26214025607467}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:41+00","p50":85.820059875,"p95":226.23223968883954,"p99":270.71967096236847}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:42+00","p50":149.4080565,"p95":280.8059415548611,"p99":313.6195509385619}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:43+00","p50":152.051569,"p95":248.91104037124467,"p99":311.54247824412727}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:44+00","p50":130.52296074999998,"p95":232.36452114235448,"p99":274.7962563942003}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:45+00","p50":70.1395675,"p95":123.35066589601672,"p99":156.60205119753027}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:46+00","p50":96.625868125,"p95":183.39243869545888,"p99":212.7432642164514}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:47+00","p50":117.09850825000001,"p95":202.54137917712927,"p99":250.13275217692564}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:48+00","p50":168.49530425,"p95":319.15811539331565,"p99":388.41429543138673}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:49+00","p50":140.413608625,"p95":253.3503788783474,"p99":318.52861722436575}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:50+00","p50":91.66550575,"p95":212.2856313274133,"p99":318.068791436717}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:51+00","p50":81.49358475,"p95":172.40554114372063,"p99":208.20557141838836}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:52+00","p50":155.1393645,"p95":277.5231534315592,"p99":397.3598628490477}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:53+00","p50":132.7417735,"p95":239.64003198251243,"p99":290.4959346638098}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:54+00","p50":108.553943375,"p95":247.2682456126909,"p99":358.86615377725747}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:55+00","p50":101.3413005,"p95":188.21243710128286,"p99":218.86255514750673}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:56+00","p50":118.961154,"p95":198.20017657363,"p99":250.03312448099183}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:57+00","p50":99.79244425,"p95":181.5631235959376,"p99":202.5538525555277}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:58+00","p50":104.33326325,"p95":181.79779599586146,"p99":238.01424752856826}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:51:59+00","p50":168.283834125,"p95":278.8986466224676,"p99":380.633144924258}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:00+00","p50":126.13562825,"p95":282.45784046678546,"p99":346.628474314743}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:01+00","p50":111.53798425,"p95":185.94839395953275,"p99":245.19764505337906}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:02+00","p50":86.81748400000001,"p95":239.10644267528843,"p99":325.50113612338544}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:03+00","p50":87.97501299999999,"p95":165.06821366291106,"p99":219.27582761927175}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:04+00","p50":124.93196599999999,"p95":237.31974525656273,"p99":262.02568710580897}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:05+00","p50":123.711987125,"p95":228.4094063168304,"p99":274.8666600792418}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:06+00","p50":98.072877125,"p95":230.09177989653458,"p99":266.873102909143}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:07+00","p50":132.6589735,"p95":236.75743873051155,"p99":267.6254853911257}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:08+00","p50":144.38418925,"p95":265.3189291132889,"p99":327.9265653837242}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:09+00","p50":146.52195899999998,"p95":266.36128933518916,"p99":293.11751403433465}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:10+00","p50":137.33270249999998,"p95":245.85317999357903,"p99":283.8972081700087}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:11+00","p50":146.81632675000003,"p95":237.18059145020538,"p99":269.292118008702}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:12+00","p50":156.39164399999999,"p95":284.1061618011153,"p99":328.3944570183432}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:13+00","p50":150.806582625,"p95":297.43026819839884,"p99":473.9097886909747}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:14+00","p50":320.29789775,"p95":540.524811185647,"p99":605.4852741778469}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:15+00","p50":226.94066800000002,"p95":446.3928976948423,"p99":639.9215551901208}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:16+00","p50":166.71327187500003,"p95":298.10652295369346,"p99":386.7117500373597}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:17+00","p50":111.920357,"p95":215.35585461465584,"p99":266.88880515396215}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:18+00","p50":138.917835,"p95":241.31910431464573,"p99":325.2046773614538}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:19+00","p50":90.65563725000001,"p95":192.52264549704392,"p99":235.3077248107915}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:20+00","p50":115.35081125,"p95":189.27525507185555,"p99":217.1258047511549}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:21+00","p50":126.56002212499999,"p95":244.95850731101646,"p99":290.1303977500341}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:22+00","p50":144.029857875,"p95":241.73705388084758,"p99":309.7494202399132}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:23+00","p50":119.2352835,"p95":215.15636765691184,"p99":280.1774571783829}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:24+00","p50":103.5776725,"p95":195.32270777871705,"p99":249.45473508719635}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:25+00","p50":168.769308,"p95":300.1240431842201,"p99":342.4066091013217}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:26+00","p50":147.0156745,"p95":255.096405456769,"p99":364.603036187634}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:27+00","p50":143.19084487499998,"p95":266.08419577184577,"p99":358.64764975809004}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:28+00","p50":127.6609255,"p95":225.98080810222388,"p99":307.42457842840577}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:29+00","p50":174.039226375,"p95":290.6908228342428,"p99":323.44279019388773}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:30+00","p50":124.96149450000001,"p95":216.48245087079704,"p99":257.2035163484175}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:31+00","p50":163.81525675,"p95":263.3379526861093,"p99":302.96073392539694}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:32+00","p50":84.54048650000001,"p95":162.58883438706445,"p99":194.2747216799221}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:33+00","p50":108.98936425000001,"p95":198.51968096344686,"p99":227.04949217227076}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:34+00","p50":116.52611175000001,"p95":219.00267330736543,"p99":303.50417787607}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:35+00","p50":90.88516075,"p95":165.65721198175717,"p99":189.32268472167587}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:36+00","p50":165.93207800000002,"p95":276.54739244908046,"p99":326.96263984127427}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:37+00","p50":165.578486875,"p95":304.3416248746096,"p99":369.3812872410314}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:38+00","p50":165.5636275,"p95":318.6784747296823,"p99":442.54185876448537}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:39+00","p50":131.9669295,"p95":221.83727565478355,"p99":239.29759279992913}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:40+00","p50":155.30381699999998,"p95":270.62655694743216,"p99":332.57354560597724}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:41+00","p50":98.343100875,"p95":219.31609260253757,"p99":267.8947548812242}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:42+00","p50":103.235269625,"p95":190.48561052913757,"p99":268.8464940032773}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:43+00","p50":83.594595125,"p95":180.22228815123628,"p99":221.74870052820037}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:44+00","p50":119.44187600000001,"p95":198.73267990121602,"p99":252.53365634926223}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:45+00","p50":123.39206225,"p95":206.86911124046028,"p99":254.14775884353995}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:46+00","p50":175.4323175,"p95":287.1280740171566,"p99":320.8596715998764}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:47+00","p50":126.95785300000001,"p95":236.2430289919333,"p99":330.043723352679}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:48+00","p50":110.307762,"p95":196.52463128223883,"p99":261.20366756550357}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:49+00","p50":100.94030475,"p95":192.28229499746178,"p99":243.81540265726136}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:50+00","p50":93.03156437499999,"p95":187.31681875481374,"p99":219.2329354429028}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:51+00","p50":208.5059195,"p95":407.247762829814,"p99":471.3170308589935}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:52+00","p50":197.22009450000002,"p95":407.43791762805284,"p99":490.9483895758133}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:53+00","p50":85.005221,"p95":145.34607068533157,"p99":168.4000683345871}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:54+00","p50":183.38177275,"p95":334.41698259031716,"p99":417.8717258277242}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:55+00","p50":117.6200465,"p95":185.64741003220416,"p99":222.99019337348605}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:56+00","p50":135.2481975,"p95":252.49362606021262,"p99":282.5067917837944}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:57+00","p50":168.303939875,"p95":305.80189086629673,"p99":351.0019866665633}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:58+00","p50":134.09892,"p95":250.76849940422846,"p99":277.80129343396186}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:52:59+00","p50":163.6162775,"p95":294.31222897847937,"p99":387.4562411678009}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:00+00","p50":131.720675,"p95":245.93711948453736,"p99":302.98511350343324}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:01+00","p50":71.58291,"p95":145.77722574045563,"p99":183.94147398847724}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:02+00","p50":109.892257,"p95":182.71514545124734,"p99":227.5126410018134}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:03+00","p50":137.67564462500002,"p95":240.02062077103,"p99":274.04224269028236}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:04+00","p50":117.93918099999999,"p95":209.95260282921754,"p99":245.2308188142228}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:05+00","p50":123.99188325,"p95":211.05377992915487,"p99":258.05353511692044}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:06+00","p50":103.10748749999999,"p95":170.89863492273997,"p99":227.08697831586647}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:07+00","p50":199.341422125,"p95":333.83150373845814,"p99":395.2688375241308}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:08+00","p50":127.64809575,"p95":236.56410585796786,"p99":276.6294723583283}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:09+00","p50":217.855234,"p95":429.51657032219487,"p99":602.5529060169549}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:10+00","p50":171.59732874999997,"p95":420.97465439828125,"p99":495.6398960492558}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:11+00","p50":113.174409,"p95":182.79668626626585,"p99":218.1431058512287}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:12+00","p50":117.655407625,"p95":195.99780262472862,"p99":218.68925320661688}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:13+00","p50":84.919244,"p95":181.77757636352385,"p99":209.5801243482208}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:14+00","p50":96.19630825,"p95":198.4323302735982,"p99":230.9505951688986}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:15+00","p50":102.236762,"p95":164.03049672261045,"p99":195.12487519128226}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:16+00","p50":121.786966,"p95":267.8807147272338,"p99":348.1064134802561}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:17+00","p50":97.20524525,"p95":178.1615742626803,"p99":210.4522790867605}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:18+00","p50":147.44651900000002,"p95":257.7905376768967,"p99":311.13195824380585}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:19+00","p50":143.87416149999999,"p95":255.4682522036294,"p99":288.3889778533177}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:20+00","p50":117.091132125,"p95":210.62780327862228,"p99":231.355456420043}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:21+00","p50":101.397438,"p95":167.26811514437722,"p99":188.12762321937706}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:22+00","p50":119.577436,"p95":194.78064204113508,"p99":254.49614983953188}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:23+00","p50":120.2645035,"p95":207.5051592612064,"p99":255.90936522483037}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:24+00","p50":157.799546875,"p95":283.30800800036985,"p99":325.0002693955023}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:25+00","p50":116.344294875,"p95":204.78986157396614,"p99":230.40916692351126}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:26+00","p50":128.23026049999999,"p95":236.27942650394237,"p99":273.70131086306026}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:27+00","p50":110.92290575,"p95":216.3857756006696,"p99":237.8508319802327}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:28+00","p50":88.307181,"p95":157.88738628039144,"p99":182.00874847536468}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:29+00","p50":115.50933875000001,"p95":211.56972721835993,"p99":261.7515177608833}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:30+00","p50":107.74433675,"p95":228.3813131273538,"p99":361.4905189335232}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:31+00","p50":114.502713625,"p95":269.599796593049,"p99":311.7073022712738}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:32+00","p50":89.85264175,"p95":154.4912205238502,"p99":196.22627979261873}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:33+00","p50":137.62530075,"p95":259.7832489259487,"p99":291.9390314182644}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:34+00","p50":285.922503,"p95":442.8536779012476,"p99":688.8098935577111}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:35+00","p50":193.871565,"p95":356.32478476509465,"p99":424.53858306423473}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:36+00","p50":68.16457625,"p95":197.01251420711935,"p99":252.15860704356717}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:37+00","p50":92.05566637500002,"p95":162.30829423921853,"p99":203.07178867003418}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:38+00","p50":155.6708565,"p95":266.24145529667027,"p99":302.5513511829038}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:39+00","p50":154.714533375,"p95":291.40366085526637,"p99":322.55325491924594}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:40+00","p50":102.219995,"p95":173.65903901474667,"p99":193.9816556112261}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:41+00","p50":138.9728095,"p95":225.98884852322985,"p99":273.4696420383363}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:42+00","p50":107.745142,"p95":199.84412234244144,"p99":243.3159855037446}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:43+00","p50":150.103519,"p95":249.56462417661282,"p99":275.9483564173875}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:44+00","p50":109.52588575000001,"p95":195.94282094673292,"p99":241.3183397635279}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:45+00","p50":161.54639775,"p95":291.923245494941,"p99":348.51720574694394}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:46+00","p50":112.03695675,"p95":242.6844271712753,"p99":316.76976274487635}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:47+00","p50":196.86149749999998,"p95":318.35349088719084,"p99":372.8232505989418}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:48+00","p50":140.887495875,"p95":294.5654741458619,"p99":352.45711676727797}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:49+00","p50":126.93650274999999,"p95":212.5110348324349,"p99":231.78316493113996}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:50+00","p50":93.01092949999999,"p95":220.27748652256926,"p99":259.224393996696}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:51+00","p50":221.33150799999999,"p95":357.88941950179503,"p99":418.6976849957285}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:52+00","p50":193.90783512499996,"p95":357.08542957238694,"p99":469.6985823343909}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:53+00","p50":87.34625299999999,"p95":142.78101826847458,"p99":196.01997949695493}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:54+00","p50":98.849050375,"p95":159.2666017445391,"p99":185.8293930091355}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:55+00","p50":131.2583675,"p95":209.13301270854737,"p99":234.4567246685834}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:56+00","p50":164.010242,"p95":251.43579632584905,"p99":332.33864903721}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:57+00","p50":117.3083135,"p95":213.73942415053273,"p99":304.75950912980267}, + {"metric_name":"login_ui_init_login_duration","timestamp":"2025-02-25 14:53:58+00","p50":73.22265,"p95":122.60413838599837,"p99":136.7482057540102}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:23:59+00","p50":109.31481525000001,"p95":154.55452349393272,"p99":171.62406084524153}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:00+00","p50":108.55757700000001,"p95":138.64728572800004,"p99":154.35811999713323}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:01+00","p50":97.042144375,"p95":123.22991794083792,"p99":129.40205248136854}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:02+00","p50":97.00180925,"p95":134.2261342757446,"p99":145.2694474319651}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:03+00","p50":90.624956,"p95":126.907699397789,"p99":137.20140117649078}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:04+00","p50":97.97581325,"p95":142.00510327856088,"p99":160.34901856955906}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:05+00","p50":84.426014125,"p95":109.68051860609657,"p99":120.88638988336753}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:06+00","p50":101.417083,"p95":260.57809664189347,"p99":273.8161387157719}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:07+00","p50":93.940038125,"p95":121.30382673902488,"p99":130.0368920216451}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:08+00","p50":107.14581475,"p95":150.22358242681503,"p99":194.96894837445544}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:09+00","p50":96.56016825,"p95":135.6294432327325,"p99":145.37852832510663}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:10+00","p50":98.453850125,"p95":135.64106029146498,"p99":146.93523236865448}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:11+00","p50":96.422657125,"p95":132.176772258704,"p99":141.31724321748044}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:12+00","p50":82.240924,"p95":128.75242463836764,"p99":139.07629813593246}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:13+00","p50":85.94216375,"p95":122.789760730711,"p99":145.5798287668419}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:14+00","p50":91.084237125,"p95":120.47630946038913,"p99":129.68135244055676}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:15+00","p50":99.33266775000001,"p95":134.04981968679428,"p99":150.7337107786026}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:16+00","p50":110.213677125,"p95":229.33018690412368,"p99":254.47898817757297}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:17+00","p50":142.644020125,"p95":301.00222430050593,"p99":392.5541812414815}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:18+00","p50":153.573145,"p95":583.90950208447,"p99":738.8167869863802}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:19+00","p50":295.32104175,"p95":662.9313481183731,"p99":674.0107326062496}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:20+00","p50":519.16929325,"p95":643.8729357571335,"p99":1158.3483905691976}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:21+00","p50":568.56631825,"p95":630.1640343562138,"p99":661.8426647354489}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:22+00","p50":90.701657625,"p95":737.0587015206803,"p99":803.0726613079296}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:23+00","p50":112.88001324999999,"p95":636.0175031444794,"p99":650.0548105257914}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:24+00","p50":392.5179645,"p95":672.7162635679597,"p99":1091.2747110403}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:25+00","p50":114.082023125,"p95":587.3688026041335,"p99":606.5847784039886}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:26+00","p50":154.803429,"p95":619.6296934502325,"p99":668.8449814461961}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:27+00","p50":170.84798625,"p95":601.0918202072431,"p99":1116.3241579921098}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:28+00","p50":476.1491885,"p95":571.8759185447418,"p99":637.9821964281016}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:29+00","p50":485.96173387500005,"p95":550.9454050453671,"p99":604.972164511359}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:30+00","p50":522.1323768750001,"p95":588.385146508448,"p99":601.4335976871795}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:31+00","p50":372.64576962499996,"p95":615.1019359239099,"p99":630.4445595040999}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:32+00","p50":455.1879155,"p95":688.4440564632664,"p99":1186.2473438661495}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:33+00","p50":512.30537325,"p95":616.9509460128509,"p99":994.8566648591404}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:34+00","p50":436.87954987499995,"p95":663.1757735673757,"p99":1007.0286015171778}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:35+00","p50":90.70940337500002,"p95":661.1728569375961,"p99":942.5292599982727}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:36+00","p50":99.15016025,"p95":641.7848848824134,"p99":987.662908750966}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:37+00","p50":356.73008175,"p95":578.8645212039597,"p99":625.4316185402794}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:38+00","p50":205.536585,"p95":476.72402679023014,"p99":749.3904046382847}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:39+00","p50":398.22751600000004,"p95":472.64473172909356,"p99":792.5024176856595}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:40+00","p50":343.430345,"p95":495.1540912528609,"p99":871.0015097620516}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:41+00","p50":282.0802095,"p95":371.7838904712502,"p99":471.6887385451193}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:42+00","p50":301.994558,"p95":398.70560368940926,"p99":648.2878693106127}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:43+00","p50":350.42316774999995,"p95":417.31846196109535,"p99":453.0966475133228}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:44+00","p50":319.95318699999996,"p95":402.8307393414954,"p99":694.6087773167408}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:45+00","p50":322.58584225,"p95":398.1782243228741,"p99":596.6982763843326}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:46+00","p50":222.471095,"p95":517.2233907765482,"p99":806.7682427098858}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:47+00","p50":349.073912,"p95":540.5477308748589,"p99":892.4337269745083}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:48+00","p50":271.08276137499996,"p95":525.1984549786908,"p99":836.4152346160695}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:49+00","p50":299.49430812500003,"p95":422.48586700498623,"p99":458.9668971491797}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:50+00","p50":314.470497,"p95":387.22404108095236,"p99":576.7742278460888}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:51+00","p50":355.9981165,"p95":529.7834909034377,"p99":557.0609289183259}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:52+00","p50":181.40220950000003,"p95":453.8391078087528,"p99":461.5098329236059}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:53+00","p50":382.40290224999995,"p95":504.42110377608856,"p99":829.5782895816739}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:54+00","p50":294.64877475,"p95":462.2199622280524,"p99":692.6990517589093}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:55+00","p50":342.2092955,"p95":460.63826081108164,"p99":712.1092915929041}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:56+00","p50":381.69132975,"p95":427.9231688933774,"p99":536.4544763303418}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:57+00","p50":325.08059149999997,"p95":417.8733222703052,"p99":429.6819178217039}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:58+00","p50":257.135579,"p95":360.1802899619409,"p99":526.9504352320004}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:24:59+00","p50":286.28916425,"p95":361.4900207049391,"p99":515.2231766924925}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:00+00","p50":328.27501175,"p95":424.67096746628846,"p99":595.7954600015242}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:01+00","p50":314.914217,"p95":381.36479475844334,"p99":584.3127821415882}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:02+00","p50":324.076719875,"p95":416.90090067713624,"p99":597.9131760957471}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:03+00","p50":349.404782,"p95":474.7604815090523,"p99":685.0525788379249}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:04+00","p50":301.123802125,"p95":383.396410451621,"p99":405.41518389371015}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:05+00","p50":310.84967825,"p95":356.6716713831876,"p99":502.9027298169475}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:06+00","p50":325.05020375000004,"p95":460.0866143799211,"p99":570.5547340716067}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:07+00","p50":327.11590625,"p95":428.9635791250935,"p99":821.5910969551696}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:08+00","p50":421.88074674999996,"p95":493.9501436070838,"p99":564.5957618604288}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:09+00","p50":327.416399,"p95":428.4357147154179,"p99":771.524265211853}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:10+00","p50":274.419486375,"p95":441.0547050040045,"p99":459.06707104448276}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:11+00","p50":290.332530375,"p95":413.3220354888969,"p99":429.5895169247761}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:12+00","p50":275.100573375,"p95":419.94213993428434,"p99":473.43888495532036}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:13+00","p50":206.605547875,"p95":521.5125274839622,"p99":579.9140535798376}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:14+00","p50":381.6960395,"p95":503.37312462919374,"p99":791.0229590778491}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:15+00","p50":238.191700125,"p95":453.78385024592166,"p99":742.9149374380497}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:16+00","p50":136.650386875,"p95":492.80011221323036,"p99":815.0189173900511}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:17+00","p50":168.52574025,"p95":565.2720398068292,"p99":582.559903581808}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:18+00","p50":99.293683,"p95":712.1552034780095,"p99":1049.7506560666407}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:19+00","p50":74.9825345,"p95":833.0543036648455,"p99":989.3080257172184}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:20+00","p50":634.62676425,"p95":745.0865104454515,"p99":794.8671877924969}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:21+00","p50":577.3017175,"p95":694.8949612588336,"p99":712.038904883629}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:22+00","p50":481.787727,"p95":576.5188672781818,"p99":1085.5172199633082}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:23+00","p50":496.882085125,"p95":645.6561938021638,"p99":661.8306168333681}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:24+00","p50":76.303494,"p95":651.3446294204746,"p99":1049.2403308929127}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:25+00","p50":85.29985125,"p95":693.0575651677256,"p99":751.8067983734475}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:26+00","p50":83.78057925,"p95":747.574227383256,"p99":764.007034401702}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:27+00","p50":73.32362562499999,"p95":866.7760986507016,"p99":886.7007439117122}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:28+00","p50":278.913117875,"p95":806.1389870018271,"p99":1397.9924164147617}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:29+00","p50":111.78796137500001,"p95":838.3875741505765,"p99":1493.5750383296465}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:30+00","p50":708.281515,"p95":800.8660953024171,"p99":878.182707969471}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:31+00","p50":683.54794225,"p95":768.296300207732,"p99":1358.1964765058337}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:32+00","p50":710.374452375,"p95":805.1618837123597,"p99":1485.139700402976}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:33+00","p50":724.31706875,"p95":825.343924367875,"p99":1406.4376497668784}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:34+00","p50":726.2675987499999,"p95":884.0710607909591,"p99":1490.2753964487306}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:35+00","p50":109.890361625,"p95":874.4415897974745,"p99":891.9998961224616}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:36+00","p50":117.93634975,"p95":764.7478113918214,"p99":997.2901433636417}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:37+00","p50":72.57178325000001,"p95":1069.3798917623299,"p99":1190.9516234011862}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:38+00","p50":284.1733515,"p95":909.712190934455,"p99":947.7232591773023}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:39+00","p50":665.242015,"p95":870.3322596991449,"p99":1393.4111614628239}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:40+00","p50":503.57255,"p95":731.5069151026777,"p99":1209.343395166429}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:41+00","p50":109.502630875,"p95":704.7464490457003,"p99":709.570573319685}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:42+00","p50":602.53707,"p95":703.5683162750544,"p99":1262.1450156061273}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:43+00","p50":106.3891795,"p95":763.7859262719534,"p99":795.8717291013776}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:44+00","p50":111.4219705,"p95":717.6155453083556,"p99":749.340125447754}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:45+00","p50":609.3002322499999,"p95":760.8231321157707,"p99":1265.5796221658475}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:46+00","p50":604.7427475,"p95":784.386918238086,"p99":801.1440397261896}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:47+00","p50":533.97834125,"p95":634.0788463382303,"p99":1044.0398414862505}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:48+00","p50":171.416556375,"p95":702.0190137528176,"p99":1091.0705565179478}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:49+00","p50":661.4410855,"p95":755.2819769627883,"p99":763.9670211372265}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:50+00","p50":637.445357,"p95":734.3641043901413,"p99":776.8865326196683}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:51+00","p50":703.003802875,"p95":755.1927574672535,"p99":1327.120874227663}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:52+00","p50":138.0125885,"p95":756.1563954694016,"p99":1321.6494612479673}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:53+00","p50":126.196268,"p95":636.6694754173477,"p99":658.4620305417385}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:54+00","p50":138.17920212500002,"p95":623.5526520108621,"p99":1024.449381893333}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:55+00","p50":516.5169985,"p95":678.438787777709,"p99":1051.6861384170122}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:56+00","p50":685.046824,"p95":819.5570226161875,"p99":967.0053906356496}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:57+00","p50":510.146699375,"p95":745.6093420380134,"p99":1119.831744010305}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:58+00","p50":334.13669125,"p95":573.4472110342676,"p99":839.6189804343328}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:25:59+00","p50":298.82428525,"p95":358.24885109682486,"p99":554.2020926412106}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:00+00","p50":303.37607075,"p95":371.1084543289154,"p99":557.2149954344696}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:01+00","p50":334.2291,"p95":391.1643560256002,"p99":589.2727821883144}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:02+00","p50":276.9628415,"p95":351.20628986003425,"p99":618.9385668886175}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:03+00","p50":294.151058,"p95":464.47859935265683,"p99":475.1976795982342}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:04+00","p50":296.535407625,"p95":431.4931298290636,"p99":615.0044062695802}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:05+00","p50":302.029727,"p95":349.567741750622,"p99":508.4987073040342}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:06+00","p50":331.80417524999996,"p95":436.1539976350708,"p99":683.606131430214}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:07+00","p50":288.558766,"p95":392.96240698623564,"p99":536.5816777286195}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:08+00","p50":261.7724905,"p95":446.36652137352326,"p99":633.0469677051208}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:09+00","p50":201.16775725,"p95":486.66220026979255,"p99":499.7222875604296}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:10+00","p50":269.15578975,"p95":663.2524479404402,"p99":1070.612847433426}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:11+00","p50":571.3837263749999,"p95":651.7913210560391,"p99":1062.2597741716527}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:12+00","p50":108.475210375,"p95":549.1157049990305,"p99":939.324118679212}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:13+00","p50":514.5353525,"p95":633.2618554423149,"p99":642.567389617383}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:14+00","p50":552.64949525,"p95":726.0518601302927,"p99":1106.669356484809}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:15+00","p50":97.22883525,"p95":773.4029241632686,"p99":792.7198979583278}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:16+00","p50":76.209307,"p95":768.9567476320237,"p99":1329.1150077244893}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:17+00","p50":119.63799325000001,"p95":645.0540559136257,"p99":1149.6124788131551}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:18+00","p50":103.805427,"p95":755.2290762902447,"p99":780.7530385672083}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:19+00","p50":435.88685975,"p95":846.8390478671441,"p99":937.5019653829174}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:20+00","p50":680.7908935,"p95":814.0193439077196,"p99":926.1912245397067}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:21+00","p50":125.564724125,"p95":828.4046639811004,"p99":839.8737331290162}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:22+00","p50":554.2134707499999,"p95":833.9283846025248,"p99":1055.0322426671696}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:23+00","p50":603.780134,"p95":693.6877545737295,"p99":1111.9294112593823}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:24+00","p50":103.84965675000001,"p95":690.9574892974596,"p99":705.2779868713399}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:25+00","p50":225.79344100000003,"p95":742.0420279412167,"p99":1339.024918603162}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:26+00","p50":662.026627375,"p95":745.6842326301615,"p99":786.777857077372}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:27+00","p50":346.142374,"p95":714.506023285614,"p99":1262.3551606746519}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:28+00","p50":520.4640603749999,"p95":682.3646507255502,"p99":709.3648709923222}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:29+00","p50":107.95026425,"p95":542.187130415435,"p99":560.2418908862762}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:30+00","p50":79.80811675000001,"p95":741.1588434503177,"p99":766.0455162520843}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:31+00","p50":425.52645762500003,"p95":693.2495858676024,"p99":737.464574454315}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:32+00","p50":558.7392500000001,"p95":712.2336600888394,"p99":1208.7991951895847}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:33+00","p50":572.57975375,"p95":714.4115521707703,"p99":1196.2558492440198}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:34+00","p50":597.315957,"p95":700.9393339392907,"p99":708.948962196289}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:35+00","p50":74.775034125,"p95":786.2939005012583,"p99":1170.7169751265478}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:36+00","p50":482.60468325,"p95":855.3105324376652,"p99":865.0547892986104}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:37+00","p50":103.325025875,"p95":762.8809218629713,"p99":773.5232681256733}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:38+00","p50":96.02715475000001,"p95":734.5673009472516,"p99":1325.9662273045915}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:39+00","p50":531.4270469999999,"p95":693.1873841978748,"p99":1215.9816522836252}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:40+00","p50":499.970047125,"p95":583.4869961723638,"p99":595.0839591101184}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:41+00","p50":158.65949012500002,"p95":662.6412723807756,"p99":698.8580821419686}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:42+00","p50":92.59214800000001,"p95":643.5263749795054,"p99":658.747385132381}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:43+00","p50":599.966383875,"p95":691.7387086076952,"p99":705.8730442091093}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:44+00","p50":91.271568,"p95":639.3564529367218,"p99":652.8660350363923}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:45+00","p50":72.64803950000001,"p95":765.0695069014962,"p99":783.7044065581459}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:46+00","p50":224.60680525,"p95":859.4215893035519,"p99":1458.6823311002786}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:47+00","p50":657.0967882499999,"p95":784.0065696761841,"p99":1326.7111374227234}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:48+00","p50":126.792883,"p95":742.5032051712255,"p99":758.5321417113228}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:49+00","p50":203.55210949999997,"p95":670.5946055706313,"p99":687.2382871072836}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:50+00","p50":97.7980935,"p95":720.6916417479803,"p99":1111.55580376483}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:51+00","p50":73.046909125,"p95":935.6999261262755,"p99":946.3479210781944}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:52+00","p50":694.96197925,"p95":865.0090883561028,"p99":910.1249647789216}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:53+00","p50":100.6198375,"p95":707.6333333419562,"p99":1289.333569365059}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:54+00","p50":517.027441875,"p95":686.728940572446,"p99":1072.158082783736}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:55+00","p50":121.959923,"p95":712.907758918158,"p99":1141.545262716629}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:56+00","p50":542.58187075,"p95":707.5460854211758,"p99":711.7418915201309}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:57+00","p50":556.424347,"p95":694.8624562617243,"p99":716.4530680973148}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:58+00","p50":98.583142,"p95":806.6416844855868,"p99":1379.1959477137366}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:26:59+00","p50":516.355269,"p95":702.0596162831066,"p99":718.154682180567}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:00+00","p50":393.28232449999996,"p95":552.9596369988246,"p99":581.2818252043962}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:01+00","p50":81.917729,"p95":455.8028311031718,"p99":649.6888028255777}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:02+00","p50":79.451989875,"p95":680.8986336028872,"p99":721.836487117187}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:03+00","p50":647.997942375,"p95":774.5076503159564,"p99":787.172442624251}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:04+00","p50":142.98182125,"p95":675.8350102074389,"p99":692.5839469815502}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:05+00","p50":212.964159,"p95":887.287762673423,"p99":1019.7128285008297}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:06+00","p50":604.6771767500001,"p95":729.5672299975791,"p99":1423.219974054393}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:07+00","p50":107.01938287499999,"p95":714.1546282191473,"p99":729.557328433682}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:08+00","p50":332.53217537500007,"p95":899.275784804231,"p99":994.8214940501854}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:09+00","p50":765.5129744999999,"p95":830.0676186091438,"p99":1543.1534070887587}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:10+00","p50":693.2378915,"p95":772.8298751328527,"p99":817.2021842414136}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:11+00","p50":666.11038425,"p95":789.4391706845779,"p99":1394.6037561038431}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:12+00","p50":83.13976149999999,"p95":860.6034167384224,"p99":868.2937076715928}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:13+00","p50":99.34673749999999,"p95":914.9234765746536,"p99":920.257051748474}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:14+00","p50":98.6697925,"p95":753.7742659125057,"p99":1294.8243443101464}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:15+00","p50":103.63059337499999,"p95":777.5305177989511,"p99":1405.0587452407408}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:16+00","p50":244.242021,"p95":816.3927154008838,"p99":1369.2963718732424}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:17+00","p50":588.43056275,"p95":768.6886736777767,"p99":786.9882227389684}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:18+00","p50":122.510505,"p95":757.9856339647728,"p99":1321.6215642758502}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:19+00","p50":106.51882175,"p95":758.9188347464166,"p99":1378.5895233026417}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:20+00","p50":76.5514765,"p95":895.9968648170876,"p99":935.7477452465744}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:21+00","p50":874.0132995,"p95":956.1482694704553,"p99":963.6102988693333}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:22+00","p50":583.308837125,"p95":932.7638205420501,"p99":1731.0836550471195}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:23+00","p50":94.040583,"p95":1030.2745532629913,"p99":1764.519123798602}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:24+00","p50":1030.3372645,"p95":1108.2828734860352,"p99":1260.693057416773}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:25+00","p50":103.86066712499999,"p95":1085.444426796652,"p99":1233.8153267238442}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:26+00","p50":919.275018375,"p95":1111.4812926524155,"p99":1125.6446993848122}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:27+00","p50":119.8476195,"p95":971.4126486125461,"p99":1106.4061524656274}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:28+00","p50":968.58334,"p95":1168.4518755390586,"p99":1358.1867475091137}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:29+00","p50":102.438989125,"p95":1217.009810465365,"p99":1353.0945071358221}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:30+00","p50":101.38889225,"p95":1131.5497298590406,"p99":2020.1454294459138}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:31+00","p50":80.804464,"p95":1060.257456138572,"p99":1254.4997144694667}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:32+00","p50":385.442498,"p95":1066.2100670115292,"p99":1904.6921858442797}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:33+00","p50":113.4405375,"p95":978.5809758332618,"p99":1877.3110686937546}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:34+00","p50":88.6283905,"p95":966.5635357893524,"p99":1065.520693228097}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:35+00","p50":576.2953837499999,"p95":957.5156771426272,"p99":972.1814312082972}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:36+00","p50":98.75214475,"p95":929.791263505456,"p99":1694.7972558777542}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:37+00","p50":807.8431465000001,"p95":914.3748681403212,"p99":1610.418089717793}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:38+00","p50":832.97939,"p95":928.9984297004289,"p99":940.7791056735764}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:39+00","p50":816.164922,"p95":947.4170790241334,"p99":1631.989257620045}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:40+00","p50":887.2680105,"p95":968.906848407711,"p99":1745.2840178505173}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:41+00","p50":111.901184,"p95":1031.8637241821662,"p99":1132.8850016964293}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:42+00","p50":926.723417,"p95":1024.3723080627965,"p99":1981.2809690914787}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:43+00","p50":775.38384525,"p95":1088.34300961757,"p99":1884.03352134523}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:44+00","p50":736.02827725,"p95":1023.0859533357171,"p99":1779.0555973208043}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:45+00","p50":289.20240924999996,"p95":990.0248177881402,"p99":1595.8536812171496}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:46+00","p50":798.483592,"p95":990.311879826519,"p99":1010.6289923758884}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:47+00","p50":97.180647,"p95":856.2998693171922,"p99":1517.098223408784}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:48+00","p50":98.7199995,"p95":1013.7102589735126,"p99":1599.9516589650154}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:49+00","p50":87.65754575,"p95":996.5109195071532,"p99":1027.103319774629}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:50+00","p50":643.250057,"p95":937.378297479924,"p99":1608.05313230258}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:51+00","p50":525.994260125,"p95":876.4638860210255,"p99":957.4505987909615}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:52+00","p50":562.914557875,"p95":942.050058719255,"p99":1829.2124822401279}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:53+00","p50":80.3542635,"p95":972.81844213558,"p99":996.4979222620588}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:54+00","p50":815.708826,"p95":1037.4644463261823,"p99":1837.950471542036}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:55+00","p50":112.67524925000001,"p95":909.4475599672691,"p99":1679.7008236232184}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:56+00","p50":1025.629469,"p95":1150.1334853116646,"p99":1161.8491805762558}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:57+00","p50":91.570122875,"p95":1132.0007746294718,"p99":1140.7634780749222}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:58+00","p50":107.27536649999999,"p95":1133.4587083249144,"p99":2185.395419288411}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:27:59+00","p50":104.704461875,"p95":1112.5196729516513,"p99":1147.1165315940632}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:00+00","p50":91.41501275,"p95":978.0664178243392,"p99":1001.4748644775543}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:01+00","p50":776.468757125,"p95":991.2807402107552,"p99":1813.7729236607804}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:02+00","p50":115.84937575000001,"p95":965.8773235770826,"p99":1036.069734800213}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:03+00","p50":662.89768525,"p95":981.2580391458989,"p99":1752.1709236342706}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:04+00","p50":765.6738244999999,"p95":924.4387809170039,"p99":1781.220989877018}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:05+00","p50":638.659328375,"p95":849.4510381980281,"p99":959.4825463357122}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:06+00","p50":101.71833649999999,"p95":739.7282660718714,"p99":1251.1206507716631}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:07+00","p50":82.9917605,"p95":830.1088627197873,"p99":896.6756156647004}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:08+00","p50":108.31075625,"p95":947.3498507881308,"p99":1668.7987246968537}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:09+00","p50":116.41726075,"p95":802.8718029322288,"p99":814.5471862992873}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:10+00","p50":93.96898775,"p95":710.2515431279696,"p99":732.5808000129521}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:11+00","p50":583.832229,"p95":647.0270034990291,"p99":698.2923848297272}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:12+00","p50":468.71242862500003,"p95":690.8711957290751,"p99":1235.6856886711641}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:13+00","p50":433.384498125,"p95":625.2445689571507,"p99":976.3922321855681}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:14+00","p50":413.237292,"p95":526.6098000994245,"p99":812.456552921618}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:15+00","p50":299.205116,"p95":492.99117771912574,"p99":605.4214663078155}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:16+00","p50":293.22894325000004,"p95":365.03064595188835,"p99":595.5498045542579}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:17+00","p50":273.58605125,"p95":424.6200828516103,"p99":456.98528143046286}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:18+00","p50":397.24886300000003,"p95":473.96061450162296,"p99":833.4292691989756}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:19+00","p50":363.8672185,"p95":448.33183248900457,"p99":799.4152067023049}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:20+00","p50":310.29933525,"p95":406.6611501658363,"p99":679.5418687178612}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:21+00","p50":307.8665185,"p95":488.69493318445734,"p99":782.4062110497742}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:22+00","p50":190.9970545,"p95":524.673747246353,"p99":836.1219399856725}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:23+00","p50":148.47164650000002,"p95":545.1169729325951,"p99":599.014142115266}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:24+00","p50":500.193814125,"p95":558.0838640106618,"p99":592.4603017157865}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:25+00","p50":132.601594,"p95":541.8790366612682,"p99":562.5801480311355}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:26+00","p50":183.482924125,"p95":492.4559795706622,"p99":510.1869819281184}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:27+00","p50":493.6613305,"p95":621.8051593475675,"p99":781.6253891031222}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:28+00","p50":108.16506512500001,"p95":780.896107925974,"p99":791.7862830251296}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:29+00","p50":481.04981537500004,"p95":535.022067790534,"p99":610.2130178524488}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:30+00","p50":150.33052825,"p95":589.9329382093747,"p99":1010.4399517955069}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:31+00","p50":514.467907625,"p95":566.9836782232621,"p99":585.351502965852}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:32+00","p50":399.30092575,"p95":572.0785591933184,"p99":1107.888050076954}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:33+00","p50":500.723357375,"p95":649.4083852290695,"p99":1094.2158242862301}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:34+00","p50":441.76848475,"p95":615.9269104549694,"p99":916.1288012483005}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:35+00","p50":411.405637,"p95":568.8404731797257,"p99":586.812882208088}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:36+00","p50":274.80392299999994,"p95":427.85475161022305,"p99":460.85597907953354}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:37+00","p50":217.81966225000002,"p95":507.2652116675975,"p99":824.3345104699449}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:38+00","p50":374.3692605,"p95":484.64795786478857,"p99":739.751715242342}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:39+00","p50":353.97543199999996,"p95":476.15321125156737,"p99":500.5607186569462}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:40+00","p50":321.38123087499997,"p95":436.620606630187,"p99":737.7168685059305}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:41+00","p50":334.344746875,"p95":472.6961797190179,"p99":486.23900481155016}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:42+00","p50":231.41239424999998,"p95":514.5408225845756,"p99":535.1737293680535}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:43+00","p50":368.113885,"p95":505.7880404197874,"p99":889.8334835519614}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:44+00","p50":340.63093000000003,"p95":544.8569763792494,"p99":828.8173506260566}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:45+00","p50":296.380214875,"p95":378.73815953984615,"p99":558.369150114219}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:46+00","p50":291.46888349999995,"p95":373.3985210453704,"p99":529.0144844072361}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:47+00","p50":177.727575875,"p95":557.414201620124,"p99":581.4608462152462}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:48+00","p50":574.6727935,"p95":662.2411552613785,"p99":1076.9168335844022}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:49+00","p50":470.683455,"p95":612.487010847492,"p99":627.2532934879735}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:50+00","p50":326.6330375,"p95":469.84280251758463,"p99":689.9574557334238}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:51+00","p50":315.200124875,"p95":371.2283929650301,"p99":384.78383619911335}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:52+00","p50":292.49602350000004,"p95":402.942831904795,"p99":585.9282898422131}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:53+00","p50":286.16027975000003,"p95":402.0746194851122,"p99":422.49362438208436}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:54+00","p50":322.4719315,"p95":516.1939021260692,"p99":846.7920776983127}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:55+00","p50":273.330161625,"p95":422.97001303794184,"p99":611.6772065243349}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:56+00","p50":352.57128150000005,"p95":481.8978179492218,"p99":653.3062959934584}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:57+00","p50":366.17549275,"p95":427.8414219488874,"p99":505.7875161142175}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:58+00","p50":371.2665585,"p95":449.1092208319499,"p99":694.6950897383529}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:28:59+00","p50":313.42803775,"p95":388.76410427984206,"p99":668.335757728529}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:00+00","p50":308.09589662499997,"p95":393.98089357468456,"p99":554.1746526815509}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:01+00","p50":301.49741425,"p95":388.7773890446139,"p99":558.3527908905065}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:02+00","p50":318.0489745,"p95":424.09963221047855,"p99":581.058825194397}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:03+00","p50":291.13363125,"p95":357.9098582223619,"p99":377.9731512978969}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:04+00","p50":299.973048,"p95":404.4110048307919,"p99":425.68230290712853}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:05+00","p50":300.542361,"p95":520.8627458552901,"p99":541.9274344406562}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:06+00","p50":265.6211285,"p95":397.8386968083267,"p99":582.743722058033}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:07+00","p50":257.6187775,"p95":409.23158811707054,"p99":443.3994520927825}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:08+00","p50":412.63374175,"p95":495.96256497760413,"p99":506.0841993760782}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:09+00","p50":307.32069,"p95":462.1593208798552,"p99":467.22281637964704}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:10+00","p50":284.46366425,"p95":474.53203099570203,"p99":804.1426800626917}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:11+00","p50":124.46035,"p95":466.93506133871864,"p99":479.8391090049753}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:12+00","p50":111.40056575,"p95":511.67594430733703,"p99":530.131415666482}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:13+00","p50":87.495375625,"p95":662.2147893807326,"p99":708.1286504168324}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:14+00","p50":94.58070099999999,"p95":721.4809653327447,"p99":738.0518806467078}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:15+00","p50":110.69369474999999,"p95":697.9406068355538,"p99":716.1012612715118}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:16+00","p50":214.182195,"p95":648.2101292256464,"p99":1122.9949680869724}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:17+00","p50":464.7840175,"p95":599.5309848749612,"p99":962.2964103759233}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:18+00","p50":108.33515650000001,"p95":547.9686579641282,"p99":565.8499861125746}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:19+00","p50":118.51101275,"p95":618.5439435254287,"p99":650.5347307286626}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:20+00","p50":108.88563475,"p95":707.738598052118,"p99":1140.0871652598776}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:21+00","p50":417.44715325,"p95":741.7296833160117,"p99":1273.3881753587943}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:22+00","p50":458.258155,"p95":544.5307816511566,"p99":553.8897006293536}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:23+00","p50":400.896122,"p95":534.4165344767547,"p99":778.3830348178458}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:24+00","p50":315.16322212499995,"p95":413.1671699261234,"p99":615.8459712129714}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:25+00","p50":297.118819625,"p95":344.8425547570999,"p99":563.2760653819863}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:26+00","p50":361.63912562499996,"p95":432.88471496795984,"p99":483.95452079534147}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:27+00","p50":301.98233074999996,"p95":361.222400976325,"p99":382.8317680066695}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:28+00","p50":337.503261375,"p95":442.99795398707533,"p99":724.1136077360472}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:29+00","p50":295.72484599999996,"p95":344.7310441643686,"p99":529.1874844701595}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:30+00","p50":345.627269,"p95":436.6147759825027,"p99":697.8943254438}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:31+00","p50":342.04246950000004,"p95":487.65300836813543,"p99":508.1545541713824}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:32+00","p50":323.19168287499997,"p95":399.84883587244644,"p99":594.0784729259535}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:33+00","p50":453.7813405,"p95":549.1498529480175,"p99":558.5076483486686}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:34+00","p50":307.51298225,"p95":514.2466757777727,"p99":666.7000180785838}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:35+00","p50":301.221184125,"p95":387.3535105626967,"p99":622.5290427808254}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:36+00","p50":232.71837962499998,"p95":454.5980763726817,"p99":702.6635981985826}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:37+00","p50":231.672261,"p95":497.5113689446612,"p99":511.7336395207216}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:38+00","p50":198.55294400000002,"p95":720.7092577161918,"p99":964.760130788135}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:39+00","p50":78.991288,"p95":725.5082415911851,"p99":1297.0628517812581}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:40+00","p50":147.928437875,"p95":680.5333862088868,"p99":1328.9682207190892}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:41+00","p50":513.589759,"p95":646.990380516503,"p99":673.1244882682299}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:42+00","p50":386.29462349999994,"p95":748.241572607583,"p99":1291.3040825689543}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:43+00","p50":115.33369175000001,"p95":704.8046756852979,"p99":833.9373177035592}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:44+00","p50":112.44316425,"p95":785.8506324674299,"p99":801.8507996728999}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:45+00","p50":103.30397174999999,"p95":612.0029275582558,"p99":1176.7423896429302}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:46+00","p50":96.417393375,"p95":755.6565918666439,"p99":1209.4588884046623}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:47+00","p50":116.7464295,"p95":752.0327589556434,"p99":761.511522652132}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:48+00","p50":117.1047545,"p95":747.771399122712,"p99":781.069464781327}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:49+00","p50":115.716701,"p95":759.8051980054311,"p99":1282.0206517551017}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:50+00","p50":585.7797497500001,"p95":703.5664625092487,"p99":776.2472850594062}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:51+00","p50":546.2585755,"p95":682.2849118457456,"p99":1236.3202590403937}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:52+00","p50":98.1363345,"p95":672.1944294032095,"p99":687.8424220977345}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:53+00","p50":100.52997775,"p95":707.7494626125886,"p99":794.967826357368}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:54+00","p50":636.3010205,"p95":806.3914718424263,"p99":1279.5051727237521}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:55+00","p50":416.19971375,"p95":629.0603040131788,"p99":1184.173905051052}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:56+00","p50":627.1579207499999,"p95":784.0821171477079,"p99":825.0210780889511}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:57+00","p50":481.581891,"p95":558.1941509429123,"p99":1253.6357631273706}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:58+00","p50":115.24757550000001,"p95":744.8417998455575,"p99":1421.2091283077777}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:29:59+00","p50":611.209067,"p95":691.4554627651119,"p99":703.8131257151996}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:00+00","p50":99.4396145,"p95":689.3038127549735,"p99":714.3330902485809}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:01+00","p50":408.9566325,"p95":686.5244953501301,"p99":703.909123255583}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:02+00","p50":237.39411525,"p95":676.6801362047275,"p99":694.615920708498}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:03+00","p50":313.599139,"p95":615.6114951308132,"p99":637.8929248538379}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:04+00","p50":86.0213065,"p95":599.5818691169263,"p99":1057.567954730877}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:05+00","p50":550.9209195,"p95":661.2132394198402,"p99":1159.341655339312}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:06+00","p50":534.578246,"p95":617.5065957974733,"p99":1057.9586937787205}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:07+00","p50":157.533234875,"p95":585.7407479988997,"p99":606.0954177368872}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:08+00","p50":350.864196,"p95":522.3418001544569,"p99":536.5448669375954}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:09+00","p50":409.449096,"p95":480.4718389388963,"p99":494.4888448895302}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:10+00","p50":339.53418575,"p95":432.4196925290951,"p99":741.9198728590682}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:11+00","p50":317.17556325,"p95":450.00201321986424,"p99":472.2302861739409}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:12+00","p50":286.142209,"p95":478.08638824298004,"p99":700.8283486624346}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:13+00","p50":291.444990625,"p95":368.57707015885137,"p99":472.679397169678}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:14+00","p50":341.935481875,"p95":395.08219537397156,"p99":617.8745485655318}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:15+00","p50":310.01908225,"p95":385.2380344633442,"p99":410.9023974440346}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:16+00","p50":288.261132375,"p95":396.5231095519901,"p99":633.1741268593927}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:17+00","p50":320.18666375,"p95":409.7893208433111,"p99":537.6846012208935}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:18+00","p50":359.00353262500005,"p95":516.168460591249,"p99":575.2854240065988}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:19+00","p50":323.31296299999997,"p95":440.2101647076206,"p99":528.2344754516297}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:20+00","p50":368.81042225,"p95":435.46158995100404,"p99":712.7180345834504}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:21+00","p50":362.88992225000004,"p95":473.3297307802031,"p99":552.8927890752459}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:22+00","p50":310.691186875,"p95":444.68249651812073,"p99":690.3366700814033}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:23+00","p50":300.73757975,"p95":417.78582856867314,"p99":692.5521526330718}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:24+00","p50":307.24236587499996,"p95":395.51555889398355,"p99":627.7706716074367}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:25+00","p50":312.03190475,"p95":381.1990796466198,"p99":572.8658115201177}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:26+00","p50":346.764580625,"p95":425.20245016810776,"p99":588.9971993106979}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:27+00","p50":298.0104309999999,"p95":389.3145647260546,"p99":499.55299320039677}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:28+00","p50":337.47934687500003,"p95":403.3003098475722,"p99":546.7348175440104}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:29+00","p50":287.8908615,"p95":408.8412187108097,"p99":684.8793805816498}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:30+00","p50":393.32930225,"p95":483.0373246432078,"p99":498.229085264286}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:31+00","p50":314.74352124999996,"p95":423.25736828039766,"p99":459.5171218252048}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:32+00","p50":299.773615875,"p95":369.0792132911724,"p99":525.3008704806549}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:33+00","p50":277.757943125,"p95":384.22736396121576,"p99":557.925844491383}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:34+00","p50":354.94176725,"p95":471.7073641550181,"p99":750.6010599407978}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:35+00","p50":351.87466825,"p95":423.29796805440196,"p99":473.09707903350164}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:36+00","p50":242.1849935,"p95":476.7343967627237,"p99":500.17072462916997}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:37+00","p50":148.42390025,"p95":499.25939628421116,"p99":848.5317007869568}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:38+00","p50":413.44035325,"p95":625.9654236895065,"p99":1067.1681654909135}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:39+00","p50":143.711543,"p95":578.6534944861587,"p99":598.8595997899732}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:40+00","p50":423.35653125,"p95":498.8110309380304,"p99":528.5749382035949}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:41+00","p50":372.56555149999997,"p95":461.3074801156167,"p99":478.1567964097807}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:42+00","p50":307.86806212500005,"p95":432.73943338390075,"p99":724.1571321904701}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:43+00","p50":300.631595,"p95":386.6112577863945,"p99":593.7832817712379}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:44+00","p50":291.4311705,"p95":382.5101335448981,"p99":498.9160361147411}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:45+00","p50":267.390463375,"p95":429.51092221147684,"p99":452.8647156557419}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:46+00","p50":230.568806,"p95":450.1182795901612,"p99":697.1608596333027}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:47+00","p50":217.0977995,"p95":491.258409337956,"p99":529.1963211607766}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:48+00","p50":92.745808,"p95":593.1473796643402,"p99":627.0769989838343}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:49+00","p50":497.091359,"p95":641.8143507327231,"p99":793.4081528259659}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:50+00","p50":453.0923325,"p95":526.3796919830809,"p99":942.8876806219769}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:51+00","p50":386.17530024999996,"p95":472.7235243975116,"p99":813.071196943377}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:52+00","p50":157.0964505,"p95":607.9136308673823,"p99":619.861640270839}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:53+00","p50":148.728584625,"p95":573.9277241809675,"p99":593.3054633570433}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:54+00","p50":419.69580425000004,"p95":604.807328445215,"p99":1063.9356078717271}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:55+00","p50":382.35328300000003,"p95":533.6277949141693,"p99":563.6078893328729}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:56+00","p50":414.451975,"p95":538.9413428070492,"p99":570.3054218189757}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:57+00","p50":355.690895,"p95":450.5379486127597,"p99":462.5561714222522}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:58+00","p50":325.47515050000004,"p95":373.7734871582165,"p99":560.9831776804814}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:30:59+00","p50":324.15056775,"p95":440.4907055278759,"p99":735.01988380616}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:00+00","p50":284.972096,"p95":432.6445310364905,"p99":658.5378995677522}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:01+00","p50":300.86294475,"p95":411.1924618883133,"p99":422.2515594531355}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:02+00","p50":314.134273625,"p95":465.3561305560432,"p99":769.6732317750099}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:03+00","p50":296.33245775,"p95":378.7473063704317,"p99":558.3426892548732}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:04+00","p50":293.74119025,"p95":363.1842295404118,"p99":539.4583960588938}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:05+00","p50":280.8381965,"p95":364.04924415375615,"p99":380.8280181193695}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:06+00","p50":191.112059,"p95":492.998707584043,"p99":503.6418436920805}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:07+00","p50":498.8620985,"p95":584.5749428024765,"p99":984.5512861994338}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:08+00","p50":346.188769625,"p95":543.9500739004299,"p99":589.7287673037574}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:09+00","p50":353.95703149999997,"p95":427.79643270794537,"p99":674.6441027084105}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:10+00","p50":375.75863212499996,"p95":475.77642738966995,"p99":682.725939793021}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:11+00","p50":251.19148174999998,"p95":457.36930622498346,"p99":777.2196813921495}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:12+00","p50":368.123419,"p95":464.5813241138575,"p99":532.8249060032568}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:13+00","p50":357.308287125,"p95":421.57801872077107,"p99":765.9451731628224}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:14+00","p50":372.743040125,"p95":427.57039351449635,"p99":700.0927221233885}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:15+00","p50":348.02925575,"p95":523.7880856133686,"p99":774.3112111536456}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:16+00","p50":281.427765125,"p95":355.70976043162943,"p99":404.27031891217587}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:17+00","p50":252.39238375000002,"p95":542.1357308372716,"p99":845.6051372889705}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:18+00","p50":562.1608827499999,"p95":695.5763373555196,"p99":788.3857961967857}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:19+00","p50":508.64761587500004,"p95":646.8806613154826,"p99":1091.2108214632608}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:20+00","p50":116.7876,"p95":620.7749129295663,"p99":1015.463793528718}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:21+00","p50":275.50085825,"p95":610.4386295234549,"p99":1006.2025305319133}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:22+00","p50":128.5291215,"p95":608.2735621373046,"p99":621.4140643238406}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:23+00","p50":538.7569625,"p95":659.0088774462497,"p99":1116.8929979896998}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:24+00","p50":363.881751875,"p95":578.0055956370622,"p99":923.234330342449}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:25+00","p50":412.764432625,"p95":495.7872958712646,"p99":795.612540860806}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:26+00","p50":267.506242625,"p95":489.47627315608526,"p99":517.9756212236435}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:27+00","p50":257.40246325,"p95":522.7970951983716,"p99":665.1569913980532}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:28+00","p50":348.52530087499997,"p95":473.42758304925377,"p99":783.7132860706403}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:29+00","p50":293.5528005,"p95":383.5979386720409,"p99":605.1221796751938}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:30+00","p50":247.854784,"p95":434.6468275910549,"p99":458.53939133834075}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:31+00","p50":298.279185,"p95":431.19593869595076,"p99":762.9597934482526}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:32+00","p50":234.443263,"p95":439.70150432656595,"p99":452.6007795976419}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:33+00","p50":287.39025575000005,"p95":537.5397002401945,"p99":866.8851775758162}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:34+00","p50":492.04947625,"p95":543.8328578085185,"p99":578.5926157974014}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:35+00","p50":176.5241595,"p95":527.243412044997,"p99":550.0906449223094}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:36+00","p50":109.72676712500001,"p95":543.9328229950424,"p99":926.2037822769064}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:37+00","p50":94.090372,"p95":565.9757397015254,"p99":581.1957243987927}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:38+00","p50":524.68493925,"p95":673.3092784752541,"p99":1093.1171857362478}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:39+00","p50":101.10851925,"p95":620.1937874707521,"p99":1082.9081655621967}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:40+00","p50":474.33923000000004,"p95":641.8305727319897,"p99":1096.4400732876725}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:41+00","p50":308.730740125,"p95":443.35688185824296,"p99":635.3201971919223}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:42+00","p50":327.86958225,"p95":428.10708946388627,"p99":447.5705240249749}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:43+00","p50":339.19509625,"p95":392.57141001289216,"p99":621.7052937281843}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:44+00","p50":261.594142875,"p95":439.568011641957,"p99":471.1477694083342}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:45+00","p50":309.2020185,"p95":470.2912395624479,"p99":487.34812693356895}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:46+00","p50":324.08799999999997,"p95":428.56039164857185,"p99":546.5758104715767}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:47+00","p50":320.4764055,"p95":375.10805958656834,"p99":550.6386569826241}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:48+00","p50":309.91875,"p95":375.53607672029153,"p99":632.8729747108399}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:49+00","p50":322.631393,"p95":458.77154685538267,"p99":556.0413241189112}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:50+00","p50":380.15227300000004,"p95":472.3672493025517,"p99":488.8845633268681}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:51+00","p50":439.15993100000003,"p95":529.6466047935497,"p99":876.3041608084264}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:52+00","p50":466.37928550000004,"p95":639.3855993243734,"p99":1043.5931063064543}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:53+00","p50":466.435268,"p95":563.5566265684338,"p99":599.4925906010036}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:54+00","p50":365.1649085,"p95":542.7085171879758,"p99":989.5995722793407}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:55+00","p50":229.829948,"p95":518.0783655667695,"p99":531.1068458742476}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:56+00","p50":485.1299945,"p95":584.2879189153061,"p99":595.3736975677796}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:57+00","p50":351.003233125,"p95":516.9672430061252,"p99":811.1553906002435}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:58+00","p50":312.95492687499996,"p95":433.20641980959044,"p99":493.35111950058223}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:31:59+00","p50":424.909586,"p95":695.9461849605858,"p99":721.6060328860002}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:00+00","p50":341.218476,"p95":501.248308690537,"p99":769.6599460020867}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:01+00","p50":271.96628675,"p95":423.94321877250576,"p99":444.46629411647984}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:02+00","p50":447.1814395,"p95":548.4958269752302,"p99":868.202500224062}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:03+00","p50":439.08672924999996,"p95":504.09883756719546,"p99":916.9280163507939}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:04+00","p50":192.23417362499998,"p95":536.045076441408,"p99":809.0770049133674}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:05+00","p50":353.261318875,"p95":424.1995446635095,"p99":768.9572308676967}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:06+00","p50":285.559592125,"p95":405.38971282303027,"p99":545.413741818263}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:07+00","p50":279.610102375,"p95":330.07938116499895,"p99":546.3249663646507}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:08+00","p50":323.113545375,"p95":370.6518377209684,"p99":392.2155489433839}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:09+00","p50":308.287196375,"p95":420.7371608829656,"p99":442.49519228327705}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:10+00","p50":268.885768625,"p95":427.91410875084307,"p99":707.8988451844618}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:11+00","p50":278.95898975,"p95":356.8870967258965,"p99":543.9113869131385}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:12+00","p50":279.2976465,"p95":346.2591991795148,"p99":515.1550496906433}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:13+00","p50":300.5932595,"p95":383.9941672280284,"p99":472.5551886259122}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:14+00","p50":304.21824150000003,"p95":368.7228344283709,"p99":624.560558057874}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:15+00","p50":274.850634,"p95":422.39582571562585,"p99":456.9100162536664}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:16+00","p50":305.2588415,"p95":407.0219411112177,"p99":456.8899694818542}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:17+00","p50":230.31299425,"p95":447.63820591727983,"p99":789.0163592158855}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:18+00","p50":391.47631287499996,"p95":451.22589348530903,"p99":777.6613826088683}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:19+00","p50":333.75279375,"p95":473.7949723928201,"p99":493.12092977438067}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:20+00","p50":301.68841275,"p95":384.33193134267873,"p99":483.8762011613903}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:21+00","p50":327.34360225,"p95":391.9992934067838,"p99":560.6862817757788}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:22+00","p50":309.653553,"p95":364.87455726961394,"p99":565.0202160146675}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:23+00","p50":315.04539850000003,"p95":359.3832956257391,"p99":569.322975953743}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:24+00","p50":332.219772,"p95":448.3582440940798,"p99":727.4918375084358}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:25+00","p50":287.17576325,"p95":358.4708690754944,"p99":402.59527822151136}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:26+00","p50":331.38683425,"p95":516.4434341774283,"p99":939.766110316905}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:27+00","p50":188.41315487499998,"p95":547.6269311636248,"p99":958.2213809461651}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:28+00","p50":97.8494765,"p95":622.1047108641599,"p99":963.0461168638009}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:29+00","p50":101.766673625,"p95":621.5625484132321,"p99":1114.8994193952049}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:30+00","p50":64.093311875,"p95":658.6204891174566,"p99":678.1971480247546}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:31+00","p50":70.174247875,"p95":740.9207568690908,"p99":1261.9802260902866}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:32+00","p50":214.83365924999998,"p95":692.5214177911824,"p99":884.6448484023333}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:33+00","p50":92.371005,"p95":708.6121918195262,"p99":1206.819682772169}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:34+00","p50":647.278312125,"p95":742.1707665246682,"p99":1291.788576493063}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:35+00","p50":610.54552825,"p95":725.0168029808118,"p99":1345.604979949176}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:36+00","p50":546.00628375,"p95":626.7000802977072,"p99":636.050742123325}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:37+00","p50":573.935341,"p95":652.125319447588,"p99":668.1880451115875}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:38+00","p50":352.31891525000003,"p95":674.6778229426651,"p99":1182.5039944148064}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:39+00","p50":596.030959125,"p95":678.7282764765732,"p99":686.2222141329785}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:40+00","p50":505.7138265,"p95":593.7313760928154,"p99":1092.5954715810024}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:41+00","p50":327.86994712500007,"p95":584.331081029433,"p99":716.2379010117717}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:42+00","p50":84.589383,"p95":798.6891005879099,"p99":1085.711403771594}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:43+00","p50":74.274058875,"p95":797.6250187690569,"p99":1480.4792320582358}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:44+00","p50":589.5169195,"p95":679.3757608528501,"p99":699.2876051478281}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:45+00","p50":592.98948425,"p95":660.1392532174305,"p99":684.7251196469917}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:46+00","p50":590.4641395000001,"p95":734.1294259898824,"p99":1268.6126201946183}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:47+00","p50":681.2831445,"p95":754.3915183308685,"p99":770.9076515750542}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:48+00","p50":115.176395375,"p95":741.3373048239835,"p99":1376.0097368165025}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:49+00","p50":97.289263,"p95":737.1999233186228,"p99":762.5539317653661}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:50+00","p50":89.2915735,"p95":630.3884435240183,"p99":1076.3833174022373}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:51+00","p50":95.58731549999999,"p95":684.8227012003497,"p99":693.2764013657844}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:52+00","p50":109.318205,"p95":689.8686834191094,"p99":706.9523683444748}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:53+00","p50":81.9219855,"p95":727.7415513649491,"p99":740.9494691096139}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:54+00","p50":355.9083395,"p95":704.5030086573398,"p99":717.9617568602042}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:55+00","p50":645.61113775,"p95":777.133358936886,"p99":1273.208997334176}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:56+00","p50":635.012168875,"p95":791.3455757260747,"p99":1313.3756276965692}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:57+00","p50":117.538149875,"p95":657.9666585556859,"p99":1186.9241644449382}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:58+00","p50":537.720474,"p95":646.8902877618387,"p99":656.2713860176844}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:32:59+00","p50":455.76607325,"p95":581.8388907474032,"p99":1048.8181051360334}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:00+00","p50":90.6428275,"p95":647.1983947418489,"p99":1028.635221563118}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:01+00","p50":581.710327125,"p95":661.05293345636,"p99":1175.146830363749}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:02+00","p50":400.677326,"p95":484.8886079978738,"p99":936.9639014718532}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:03+00","p50":409.9375145,"p95":504.4964254512752,"p99":852.7572577133252}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:04+00","p50":268.92019225,"p95":459.93179207563196,"p99":474.2345246169868}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:05+00","p50":293.40624375,"p95":359.66026375972336,"p99":530.0859384081602}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:06+00","p50":281.548929625,"p95":342.8396534958023,"p99":517.6105613086855}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:07+00","p50":279.77069125,"p95":367.27445016520574,"p99":590.7985479938039}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:08+00","p50":304.41229649999997,"p95":507.2166044584451,"p99":546.5096269496127}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:09+00","p50":314.604929125,"p95":420.4997722836318,"p99":488.3864071298759}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:10+00","p50":258.28672274999997,"p95":410.12773756027343,"p99":421.64069110334924}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:11+00","p50":391.222739875,"p95":441.5732412527193,"p99":452.2020857769115}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:12+00","p50":371.789452875,"p95":446.2979834490837,"p99":741.187714920674}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:13+00","p50":387.628153,"p95":437.1328380488015,"p99":524.8879410009054}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:14+00","p50":316.25109275,"p95":398.8171124571905,"p99":643.7098309306359}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:15+00","p50":293.31932099999995,"p95":473.1623502270588,"p99":823.4109836659245}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:16+00","p50":338.87682725,"p95":497.59371901025366,"p99":769.8289370879814}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:17+00","p50":295.22596475,"p95":346.4864550695753,"p99":370.4801157009687}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:18+00","p50":249.155561875,"p95":447.62511845580354,"p99":739.0404626445603}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:19+00","p50":103.274179,"p95":521.5187171021605,"p99":542.1656854418736}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:20+00","p50":172.52262975,"p95":600.063880933915,"p99":613.9934400611255}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:21+00","p50":536.8205177499999,"p95":615.9651485625519,"p99":622.8438594687073}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:22+00","p50":327.2219615,"p95":457.37098634321484,"p99":661.4567234353943}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:23+00","p50":292.958465,"p95":374.1218990739746,"p99":536.6035539687119}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:24+00","p50":369.63376925,"p95":427.25764393210693,"p99":437.4027839655547}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:25+00","p50":336.90208325000003,"p95":461.2508458785353,"p99":752.3133720991449}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:26+00","p50":386.8671215,"p95":458.2507764644003,"p99":590.7763877113953}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:27+00","p50":317.922933,"p95":384.50814310816355,"p99":580.0774980966477}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:28+00","p50":342.31499775000003,"p95":425.68218415928646,"p99":647.9962974737358}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:29+00","p50":303.39275899999996,"p95":344.0644006168533,"p99":364.87416570699406}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:30+00","p50":278.88407099999995,"p95":365.3970934776669,"p99":513.9716591437569}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:31+00","p50":273.88478749999996,"p95":366.93335379087375,"p99":514.3888204215507}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:32+00","p50":267.7505165,"p95":352.5985428073902,"p99":508.04622137005276}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:33+00","p50":318.95476025,"p95":381.73581032357157,"p99":409.0456437353835}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:34+00","p50":292.157762375,"p95":431.04655097048925,"p99":444.8652370486748}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:35+00","p50":293.058522,"p95":412.3645071065651,"p99":639.7604883857326}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:36+00","p50":277.243241375,"p95":371.77799184252933,"p99":648.7843422275001}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:37+00","p50":285.412737875,"p95":363.93614718648934,"p99":386.19002453214}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:38+00","p50":276.1953935,"p95":446.1952410322352,"p99":475.1577159727783}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:39+00","p50":270.775513,"p95":446.64945931616637,"p99":588.9850086069083}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:40+00","p50":301.5173215,"p95":409.32661395959997,"p99":631.6025982975979}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:41+00","p50":99.832976875,"p95":581.7746723671468,"p99":871.4073769828606}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:42+00","p50":467.15671725,"p95":716.345179259606,"p99":1244.683550361834}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:43+00","p50":88.2673675,"p95":655.1747669724647,"p99":1259.5056679167853}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:44+00","p50":296.6939245,"p95":680.9213211464987,"p99":699.8088886441135}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:45+00","p50":85.14407475,"p95":758.3070702451467,"p99":773.4831749918613}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:46+00","p50":653.625363,"p95":773.8567862654995,"p99":1256.0157342506714}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:47+00","p50":555.31535675,"p95":693.79171219957,"p99":1076.8040288562552}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:48+00","p50":498.31183787500004,"p95":623.3567139229832,"p99":1107.9173518756995}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:49+00","p50":480.661848125,"p95":620.4707378870431,"p99":1021.9098897746314}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:50+00","p50":480.650861,"p95":550.9681621529357,"p99":934.4203922681589}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:51+00","p50":121.795594625,"p95":633.8980787074473,"p99":985.180884141729}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:52+00","p50":128.514814,"p95":603.8192071410336,"p99":880.6297100421295}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:53+00","p50":154.687293625,"p95":555.2047553341704,"p99":987.377979543756}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:54+00","p50":129.702719,"p95":658.1766383764797,"p99":714.0191199601702}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:55+00","p50":485.9368605,"p95":670.4893606270731,"p99":777.1199763592195}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:56+00","p50":620.753536125,"p95":678.9890339860875,"p99":1224.7398744773702}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:57+00","p50":503.0591965,"p95":650.5341099129214,"p99":776.2254235382252}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:58+00","p50":385.58545,"p95":539.9319269536101,"p99":834.2407343956365}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:33:59+00","p50":372.48103525,"p95":505.12970786003683,"p99":749.778420353931}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:00+00","p50":285.85806,"p95":415.0195060627165,"p99":623.4224483333969}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:01+00","p50":153.07872675,"p95":541.4674392474459,"p99":957.5327497406731}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:02+00","p50":214.15269375000003,"p95":545.8068903641696,"p99":923.3104201774835}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:03+00","p50":333.3182195,"p95":511.91031529526737,"p99":881.2662680824774}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:04+00","p50":365.28222325,"p95":518.8872319302529,"p99":530.4804534142198}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:05+00","p50":394.992568,"p95":532.8614690941992,"p99":606.960487602024}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:06+00","p50":100.6036555,"p95":674.3966775297029,"p99":717.9828388612327}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:07+00","p50":88.16352975,"p95":672.2164020451341,"p99":683.6131735954866}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:08+00","p50":112.73216,"p95":792.0188203104364,"p99":1186.1571805227356}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:09+00","p50":671.661158125,"p95":829.9781721992414,"p99":1543.766986325151}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:10+00","p50":93.70628925,"p95":679.6783475308223,"p99":702.621831426405}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:11+00","p50":80.440258,"p95":680.4999074715471,"p99":1225.2136750847035}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:12+00","p50":93.095777,"p95":794.1330463776599,"p99":808.7121465982857}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:13+00","p50":104.83630325,"p95":805.8806001291906,"p99":1447.3174762869153}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:14+00","p50":649.409621,"p95":758.5319423527208,"p99":1451.398615959631}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:15+00","p50":419.624189,"p95":688.072705941,"p99":1042.2826485103665}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:16+00","p50":81.9480055,"p95":735.1965770107691,"p99":958.4637423295775}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:17+00","p50":589.597714,"p95":755.3841258782342,"p99":1233.0684720262523}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:18+00","p50":553.290617,"p95":629.326693224828,"p99":1015.3594980035334}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:19+00","p50":114.28630287499999,"p95":657.7973895184779,"p99":1069.4661628373726}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:20+00","p50":599.072849125,"p95":694.0114389643534,"p99":707.7331935676413}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:21+00","p50":582.075689125,"p95":719.0825088023464,"p99":1260.9618261110652}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:22+00","p50":541.2646905,"p95":627.5543018996806,"p99":1029.013496379385}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:23+00","p50":104.171722,"p95":709.3918644827048,"p99":725.9460336650109}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:24+00","p50":578.1912195,"p95":690.7599427709308,"p99":1129.6648479358066}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:25+00","p50":492.685752,"p95":620.3268570252761,"p99":1008.8212484799806}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:26+00","p50":123.53550775,"p95":723.9493759322742,"p99":1055.3894847295878}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:27+00","p50":91.7655285,"p95":806.1282635593096,"p99":814.102062489387}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:28+00","p50":613.538083875,"p95":720.8123597820808,"p99":764.3350786934724}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:29+00","p50":614.731326125,"p95":662.8988629896934,"p99":1227.8573947460611}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:30+00","p50":621.791732125,"p95":696.624562337284,"p99":715.506502846263}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:31+00","p50":549.6374065,"p95":624.5914124293506,"p99":1154.1044335088739}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:32+00","p50":102.47358575,"p95":637.9317734804757,"p99":1004.2966977194667}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:33+00","p50":124.05706425,"p95":576.0194514134764,"p99":595.165404777973}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:34+00","p50":85.25917125000001,"p95":638.3156505565801,"p99":681.2916291698632}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:35+00","p50":505.5634205,"p95":622.9810555722818,"p99":643.5788913108339}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:36+00","p50":74.779258,"p95":613.2006093046531,"p99":1119.309327049797}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:37+00","p50":86.55985225,"p95":669.6068960181802,"p99":1181.612570842412}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:38+00","p50":103.82813949999999,"p95":805.9373531379005,"p99":1334.8893823292083}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:39+00","p50":645.46981125,"p95":745.0933163142205,"p99":1494.1058234586183}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:40+00","p50":594.844703125,"p95":714.6950073574632,"p99":732.8394257879648}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:41+00","p50":533.223393,"p95":616.9144891492467,"p99":1086.4599514262086}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:42+00","p50":537.202241125,"p95":648.9611983072465,"p99":1131.2637664911135}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:43+00","p50":581.5583965000001,"p95":696.3357432487526,"p99":1102.5415605218657}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:44+00","p50":456.01599,"p95":654.3193860273628,"p99":1085.8888821850549}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:45+00","p50":94.33578274999999,"p95":608.9387809547756,"p99":678.7328887469084}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:46+00","p50":93.499977,"p95":768.4415355223632,"p99":1288.237658033434}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:47+00","p50":91.3198145,"p95":872.6269834112885,"p99":1388.029557031032}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:48+00","p50":60.41880999999999,"p95":952.5750071030996,"p99":1452.1601389454263}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:49+00","p50":780.791269,"p95":886.8754741003198,"p99":910.0782603089524}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:50+00","p50":732.544784125,"p95":885.0438019791882,"p99":910.4515908622744}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:51+00","p50":124.45312775000001,"p95":847.8973667434102,"p99":1541.0308088792249}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:52+00","p50":86.02941537500001,"p95":918.6306058208055,"p99":1661.373236892053}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:53+00","p50":84.1101575,"p95":840.9286976704127,"p99":1564.154960381617}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:54+00","p50":103.12295825,"p95":798.9470615769899,"p99":1489.231111561822}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:55+00","p50":252.58040025000003,"p95":715.2177123532362,"p99":743.6085912542067}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:56+00","p50":773.380493,"p95":907.2502293037016,"p99":1415.9130837363466}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:57+00","p50":833.5380432500001,"p95":907.2729756545085,"p99":953.550206768718}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:58+00","p50":584.046921875,"p95":867.6832430181828,"p99":885.416747136107}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:34:59+00","p50":110.107866375,"p95":644.8281157235822,"p99":1039.0755586773412}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:00+00","p50":425.74892524999996,"p95":588.0194260165285,"p99":1076.8721552290983}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:01+00","p50":469.278957625,"p95":555.2223004511384,"p99":857.1078972687651}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:02+00","p50":389.720458,"p95":481.08777798117427,"p99":911.4645610509767}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:03+00","p50":137.479021625,"p95":495.00552934485205,"p99":754.8787150612095}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:04+00","p50":185.5130685,"p95":485.6496128878479,"p99":814.0175676143494}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:05+00","p50":148.46889175,"p95":492.74331900107916,"p99":782.6715986912078}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:06+00","p50":211.34229775,"p95":556.667877805702,"p99":906.682232929157}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:07+00","p50":135.78933825000001,"p95":497.8026034853474,"p99":518.7672694177046}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:08+00","p50":80.92779675,"p95":717.3204275538994,"p99":848.4559575993817}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:09+00","p50":473.54834825,"p95":755.3217135708935,"p99":1164.658677633602}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:10+00","p50":428.83147212499995,"p95":540.1414926211224,"p99":561.5375545941494}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:11+00","p50":171.05179025,"p95":516.2519162790467,"p99":862.6306547947102}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:12+00","p50":368.002391,"p95":501.3071583312634,"p99":831.4194998344456}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:13+00","p50":421.672267625,"p95":479.70088786608983,"p99":731.1625182427556}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:14+00","p50":137.3184455,"p95":514.1205199520181,"p99":541.4740582200318}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:15+00","p50":113.87528499999999,"p95":555.8570210576077,"p99":938.1959659566193}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:16+00","p50":520.560610375,"p95":588.8565526755432,"p99":608.7591614364715}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:17+00","p50":309.94249325,"p95":665.5557970739085,"p99":680.3174686750441}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:18+00","p50":489.07466450000004,"p95":816.0051908967728,"p99":849.2571836078454}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:19+00","p50":109.30075550000001,"p95":801.006493049178,"p99":811.2911150046149}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:20+00","p50":593.08445325,"p95":668.1072686278236,"p99":1163.3207710010747}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:21+00","p50":602.3603968749999,"p95":758.4634409470628,"p99":803.6030121515521}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:22+00","p50":94.96911037499999,"p95":652.3172440892879,"p99":1126.1947414385854}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:23+00","p50":93.81362525,"p95":693.6515256926282,"p99":706.817723192976}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:24+00","p50":403.03490825,"p95":598.872352389799,"p99":608.2141114378135}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:25+00","p50":73.7120285,"p95":712.611350968335,"p99":1199.1345775266805}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:26+00","p50":433.03269200000005,"p95":837.2271301220856,"p99":987.8462765574035}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:27+00","p50":84.18498274999999,"p95":999.8657878589376,"p99":1068.1057927211075}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:28+00","p50":881.317523625,"p95":1018.3415230647795,"p99":1812.254243621041}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:29+00","p50":836.7570559999999,"p95":975.6994369810669,"p99":1692.2784937373963}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:30+00","p50":118.06447812500001,"p95":976.9003218343123,"p99":1667.861339467525}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:31+00","p50":818.00626325,"p95":1007.08768432541,"p99":1030.8325874646087}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:32+00","p50":736.5193750000001,"p95":837.998918407093,"p99":865.7901910608292}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:33+00","p50":104.492662875,"p95":852.6955822397285,"p99":1339.0396551288964}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:34+00","p50":82.878078,"p95":774.6876308719272,"p99":1398.3327769881573}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:35+00","p50":83.08541025,"p95":867.1658334828631,"p99":895.2458363252412}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:36+00","p50":117.006145875,"p95":978.7986302419001,"p99":995.7785490484009}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:37+00","p50":309.16563075,"p95":1010.3974976423905,"p99":1836.2747511174355}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:38+00","p50":109.03253412499998,"p95":1075.6340962760967,"p99":1093.2558574401453}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:39+00","p50":87.584498625,"p95":1083.6887013420094,"p99":1092.0244905032794}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:40+00","p50":109.69323,"p95":982.9172719682549,"p99":999.69085716744}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:41+00","p50":301.720027,"p95":1017.8740555070275,"p99":1727.95737873438}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:42+00","p50":852.49094975,"p95":959.1174073714991,"p99":985.7905365296776}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:43+00","p50":113.22998025000001,"p95":959.2767822208037,"p99":1764.7726697948647}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:44+00","p50":715.76963825,"p95":991.4469288480931,"p99":1582.7754760771677}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:45+00","p50":770.237277,"p95":854.3502514542197,"p99":886.6452408565402}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:46+00","p50":783.4536204999999,"p95":842.5104282751183,"p99":1431.859746505747}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:47+00","p50":100.54401387499999,"p95":839.8334109177238,"p99":1455.0296714544381}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:48+00","p50":601.51657675,"p95":915.3847469339058,"p99":933.6893552181034}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:49+00","p50":80.14744499999999,"p95":1002.2288818216665,"p99":1007.621388224112}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:50+00","p50":516.214235625,"p95":904.3748059453919,"p99":924.0963283188255}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:51+00","p50":895.061251,"p95":1109.7869358812352,"p99":1127.3738091890336}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:52+00","p50":954.7937655000001,"p95":1069.3778942224194,"p99":1936.230636279879}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:53+00","p50":812.136060625,"p95":951.2137085753868,"p99":989.6338701658086}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:54+00","p50":796.72692125,"p95":933.4683460378277,"p99":1655.7160359783738}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:55+00","p50":765.550232,"p95":884.8039846203346,"p99":1663.9675207789}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:56+00","p50":123.089010625,"p95":1038.1255942239027,"p99":1051.9821533167333}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:57+00","p50":91.15691475,"p95":1006.5420905096886,"p99":1815.1006231395531}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:58+00","p50":149.32192650000002,"p95":1105.93513739564,"p99":1892.320165269265}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:35:59+00","p50":124.47152774999999,"p95":924.0151146774858,"p99":1707.3750749372648}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:00+00","p50":119.073389125,"p95":812.7615417340074,"p99":834.1082496265254}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:01+00","p50":100.41013262499999,"p95":811.6575031736268,"p99":1356.0981946750726}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:02+00","p50":686.76607975,"p95":766.0417892158933,"p99":811.5442926148474}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:03+00","p50":88.10902225000001,"p95":735.8354146880937,"p99":1286.1219684049393}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:04+00","p50":683.684494375,"p95":790.6031870393261,"p99":812.4657235555568}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:05+00","p50":733.1298455,"p95":798.8080281974305,"p99":1438.4329913750114}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:06+00","p50":686.830869,"p95":811.8748373426275,"p99":1392.7967470743667}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:07+00","p50":753.765411,"p95":844.7656576829481,"p99":864.9420944473305}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:08+00","p50":769.937153125,"p95":856.7467869077171,"p99":1556.45566678769}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:09+00","p50":114.716816125,"p95":817.6332793521921,"p99":842.5365234462103}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:10+00","p50":78.643387875,"p95":719.9645445179519,"p99":1220.8679172824575}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:11+00","p50":285.04781725,"p95":689.6000394081273,"p99":1228.5700558815681}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:12+00","p50":95.473532,"p95":822.2943844980289,"p99":1282.744476708851}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:13+00","p50":701.44034175,"p95":807.1291732607514,"p99":1332.82156703975}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:14+00","p50":729.258205,"p95":833.3123681337228,"p99":1414.9574581493184}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:15+00","p50":599.518685625,"p95":729.8177993689048,"p99":1375.4517066567787}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:16+00","p50":115.77295,"p95":672.5670642847642,"p99":1084.2144322446122}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:17+00","p50":69.712082375,"p95":796.9501758688107,"p99":1286.3543163674622}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:18+00","p50":95.661797,"p95":1053.0654501987437,"p99":1144.7220213320604}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:19+00","p50":299.5163735,"p95":1057.7569388924085,"p99":1105.1402624982854}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:20+00","p50":97.104582625,"p95":949.015182915322,"p99":1150.5403258990557}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:21+00","p50":137.469618,"p95":1222.277430211106,"p99":1398.379264503647}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:22+00","p50":121.48637149999999,"p95":1165.063952773287,"p99":1186.6006514239587}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:23+00","p50":92.517022,"p95":1167.948520913663,"p99":2201.5925970739127}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:24+00","p50":69.6811685,"p95":1085.98908957415,"p99":1106.786275514347}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:25+00","p50":106.44554175,"p95":1035.1499999459854,"p99":1039.0260858723764}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:26+00","p50":122.3544995,"p95":1076.5244117625823,"p99":1087.76407015211}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:27+00","p50":103.24258575,"p95":912.8627325642767,"p99":936.1917463672656}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:28+00","p50":90.77378825,"p95":1088.4335190828292,"p99":1600.6207609751432}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:29+00","p50":519.04723125,"p95":1081.9400353980575,"p99":1898.9399288745308}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:30+00","p50":75.996598,"p95":965.9648775850335,"p99":1785.8988318676454}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:31+00","p50":84.04475250000002,"p95":999.4342779396579,"p99":1855.726490518319}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:32+00","p50":75.03978575,"p95":943.1682399762211,"p99":963.2420997685718}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:33+00","p50":851.976989,"p95":965.6469020393399,"p99":1747.3262652490735}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:34+00","p50":108.43585912500001,"p95":978.1584536851531,"p99":1734.4671597523225}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:35+00","p50":68.85118349999999,"p95":859.0258748963814,"p99":876.9010494384842}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:36+00","p50":92.49565924999999,"p95":823.943350811553,"p99":835.8668299601445}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:37+00","p50":828.0638517499999,"p95":908.0583236637175,"p99":914.4165482597989}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:38+00","p50":870.60775275,"p95":939.2528125447436,"p99":1731.142982267748}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:39+00","p50":676.2734943749999,"p95":905.012034169172,"p99":1496.4329968638601}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:40+00","p50":809.85354575,"p95":939.6815485174498,"p99":1548.4477852376524}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:41+00","p50":756.534406375,"p95":861.0950653753637,"p99":1554.1079028043587}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:42+00","p50":724.210976,"p95":937.6279912232743,"p99":985.9527072384017}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:43+00","p50":424.4932620000001,"p95":1017.1794216305125,"p99":1033.1216741453734}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:44+00","p50":653.8618265,"p95":801.9299577416497,"p99":814.6067581982155}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:45+00","p50":606.633514125,"p95":690.1493138753826,"p99":1278.0254925675054}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:46+00","p50":223.0599325,"p95":664.7992883191798,"p99":1073.1166227337656}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:47+00","p50":114.2552775,"p95":676.635674827934,"p99":1230.4032845877925}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:48+00","p50":112.08877,"p95":744.6160188537182,"p99":770.6102571356406}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:49+00","p50":604.5285105,"p95":731.8133245462951,"p99":745.9417655367389}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:50+00","p50":446.39158549999996,"p95":670.2294601353908,"p99":1168.1223293346166}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:51+00","p50":640.26583325,"p95":814.1915744238506,"p99":1299.1156613307037}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:52+00","p50":356.16399375,"p95":745.7296818926944,"p99":765.8748525832958}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:53+00","p50":533.46609,"p95":707.4321812034268,"p99":730.0296894735432}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:54+00","p50":120.203265875,"p95":726.2696589246455,"p99":1228.2483684403392}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:55+00","p50":349.434848125,"p95":515.2810711769717,"p99":570.7093737481454}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:56+00","p50":450.83635725,"p95":567.6459090177964,"p99":964.6393090630727}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:57+00","p50":133.39139300000002,"p95":559.741550153971,"p99":589.5098808948217}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:58+00","p50":191.00141037500003,"p95":574.9091063413122,"p99":622.253142944567}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:36:59+00","p50":420.04886,"p95":523.4713704615287,"p99":535.881549294569}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:00+00","p50":333.16840049999996,"p95":487.58952467686413,"p99":752.3103612544498}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:01+00","p50":229.67522075,"p95":405.07264542918267,"p99":669.828275705548}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:02+00","p50":266.89019625000003,"p95":412.457719891732,"p99":425.0896710553398}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:03+00","p50":296.1095385,"p95":393.02935656935335,"p99":467.03356608371257}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:04+00","p50":307.29437800000005,"p95":377.8766090124174,"p99":476.07819042484573}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:05+00","p50":293.39131975000004,"p95":343.7287549255946,"p99":539.3554220039316}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:06+00","p50":257.4222995,"p95":441.71339882331665,"p99":640.4638683692737}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:07+00","p50":297.63833125,"p95":480.5110303432872,"p99":753.3292161722865}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:08+00","p50":444.1191405,"p95":618.3745670035374,"p99":697.2179083566475}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:09+00","p50":536.03091225,"p95":639.057003396405,"p99":1064.1123035158848}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:10+00","p50":489.1017115,"p95":546.6194361414076,"p99":1015.1320999376433}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:11+00","p50":336.736410125,"p95":543.7768979373167,"p99":589.9489470735381}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:12+00","p50":416.214908,"p95":649.6771132909565,"p99":668.5275161154328}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:13+00","p50":363.62848525000004,"p95":507.9102781576324,"p99":896.9002720494747}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:14+00","p50":430.6971815,"p95":513.9368698727365,"p99":806.6398490759717}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:15+00","p50":124.53986900000001,"p95":571.6499288996356,"p99":961.7245692922196}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:16+00","p50":214.091651,"p95":586.7324421985917,"p99":1056.4646440698966}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:17+00","p50":456.58848725,"p95":552.1996754824701,"p99":854.1232292604961}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:18+00","p50":197.889004625,"p95":651.3298450198652,"p99":1135.6079021403136}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:19+00","p50":519.355633625,"p95":618.6375449165475,"p99":629.552142739419}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:20+00","p50":435.28712125000004,"p95":548.5659840999366,"p99":1102.4138083196613}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:21+00","p50":98.79266137500001,"p95":589.5028515196823,"p99":908.273179608808}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:22+00","p50":124.8897605,"p95":592.8022814374608,"p99":605.8667231950078}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:23+00","p50":379.2651835,"p95":557.8386224320817,"p99":950.3731878794537}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:24+00","p50":116.39718975,"p95":631.4402117343524,"p99":642.2463238989973}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:25+00","p50":90.15358950000001,"p95":608.8874860355959,"p99":649.516391126278}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:26+00","p50":624.763379,"p95":727.3070853458023,"p99":1342.5810174799385}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:27+00","p50":596.44017325,"p95":744.6131740976455,"p99":765.6806131331632}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:28+00","p50":499.5969417499999,"p95":611.1000208881114,"p99":975.7094854023018}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:29+00","p50":157.824604625,"p95":527.3114365028431,"p99":535.5996853598955}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:30+00","p50":436.69188325,"p95":596.2601924559565,"p99":606.5567729262219}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:31+00","p50":407.4674435,"p95":502.30323843585256,"p99":516.0079254376402}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:32+00","p50":258.22911162500003,"p95":427.2476045597876,"p99":484.89207355789495}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:33+00","p50":301.2179105,"p95":446.88229905512213,"p99":462.11944747333865}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:34+00","p50":287.996123875,"p95":404.03180142760897,"p99":579.5345565519021}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:35+00","p50":265.7287715,"p95":310.31915771487905,"p99":318.11029455968236}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:36+00","p50":310.195787,"p95":453.00818127738194,"p99":526.124747677278}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:37+00","p50":296.9225835,"p95":376.4406422336453,"p99":424.73409052188583}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:38+00","p50":348.02028375000003,"p95":402.41910148300553,"p99":640.3291383437652}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:39+00","p50":264.84465312500004,"p95":450.1315074929082,"p99":696.2639074159937}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:40+00","p50":239.04906825,"p95":561.8555744218346,"p99":838.3821117369895}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:41+00","p50":155.5696465,"p95":495.16517457399704,"p99":799.2089674692517}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:42+00","p50":88.92640600000001,"p95":610.1714482202842,"p99":625.8775527869924}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:43+00","p50":597.2469415,"p95":693.5683701426493,"p99":1218.9459327402458}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:44+00","p50":574.346524,"p95":675.0430863930416,"p99":1171.730417598198}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:45+00","p50":477.42914499999995,"p95":614.0004201643216,"p99":1181.2165996472434}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:46+00","p50":85.94973025,"p95":583.6862095821848,"p99":639.7566537083437}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:47+00","p50":530.7572759999999,"p95":636.5561101682209,"p99":999.0852185899308}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:48+00","p50":508.81486674999996,"p95":554.1236487526307,"p99":566.5012467010293}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:49+00","p50":86.6075395,"p95":638.0414933918576,"p99":655.1350934621928}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:50+00","p50":112.228305,"p95":811.2070735281964,"p99":1250.1425130779662}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:51+00","p50":108.16584262500001,"p95":951.9993394020863,"p99":1135.3904935063722}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:52+00","p50":96.25899050000001,"p95":962.7569585072803,"p99":979.4471106491155}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:53+00","p50":647.46179075,"p95":760.4775782476916,"p99":786.9958591603411}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:54+00","p50":719.2680055,"p95":772.5902221648762,"p99":1257.8308814236077}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:55+00","p50":98.2301315,"p95":818.989865038845,"p99":834.5822578009415}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:56+00","p50":104.61052799999999,"p95":924.4785488920014,"p99":1539.0725971217257}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:57+00","p50":99.694986,"p95":980.7589960955257,"p99":1059.418663187481}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:58+00","p50":61.504565,"p95":1058.479534721055,"p99":1070.9729452640654}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:37:59+00","p50":909.8282682500001,"p95":1111.5286913990617,"p99":1137.7327557222552}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:00+00","p50":774.7994755,"p95":913.7009828912716,"p99":929.7066031492158}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:01+00","p50":113.39086575,"p95":945.1006787542151,"p99":973.2315788999944}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:02+00","p50":75.765308,"p95":1034.5690115415318,"p99":1148.136567425405}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:03+00","p50":98.37229875,"p95":1070.263497585764,"p99":1083.2940468365875}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:04+00","p50":825.631722125,"p95":1015.3121484996934,"p99":1895.6215106100456}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:05+00","p50":795.6490488750001,"p95":931.2383762050907,"p99":1548.115543459381}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:06+00","p50":106.98505575,"p95":886.8210728389788,"p99":910.8867352966671}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:07+00","p50":346.13834575000004,"p95":897.8427136996752,"p99":926.9380714217007}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:08+00","p50":719.3905279999999,"p95":818.1018957417997,"p99":1509.3688091795334}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:09+00","p50":589.8583625,"p95":896.4906350885154,"p99":1454.3793692658196}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:10+00","p50":96.428682875,"p95":914.3972950373376,"p99":1024.4915351656123}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:11+00","p50":845.4633080000001,"p95":964.1496298741596,"p99":1679.6018336226882}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:12+00","p50":845.97982925,"p95":914.0285118857183,"p99":1740.9849238446084}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:13+00","p50":343.06173262500005,"p95":861.0046328584576,"p99":872.3001151745365}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:14+00","p50":103.562157,"p95":754.6275892785616,"p99":1391.4898483359}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:15+00","p50":98.37739225,"p95":730.6101184296763,"p99":735.1548493528096}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:16+00","p50":117.23409062500001,"p95":650.4877518651274,"p99":1243.3172646605437}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:17+00","p50":157.58524325000002,"p95":546.856928750029,"p99":801.1770879716663}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:18+00","p50":189.364838,"p95":524.5230621719842,"p99":548.6224658881373}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:19+00","p50":157.12457525000002,"p95":444.97566323527576,"p99":739.4132090021286}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:20+00","p50":71.572584,"p95":706.8946008597503,"p99":753.4558328294889}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:21+00","p50":296.028162375,"p95":788.8211424646518,"p99":796.1695137529099}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:22+00","p50":715.6191130000001,"p95":784.6624266687562,"p99":1349.4721065910046}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:23+00","p50":581.8185555,"p95":717.3994755576508,"p99":1368.463815471132}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:24+00","p50":90.09506562499999,"p95":795.4647780056774,"p99":813.400252586853}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:25+00","p50":85.30998274999999,"p95":840.1604866148009,"p99":859.930356535739}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:26+00","p50":87.2175145,"p95":834.9254802809655,"p99":842.5905545924793}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:27+00","p50":427.315022,"p95":883.3206178359422,"p99":900.0620497901954}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:28+00","p50":885.501038875,"p95":968.5336293926786,"p99":1055.1805333195903}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:29+00","p50":111.47056,"p95":931.8513968834857,"p99":1784.818685262184}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:30+00","p50":100.59642400000001,"p95":815.958152922308,"p99":825.5577634318423}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:31+00","p50":85.41380225,"p95":870.2707284041352,"p99":894.7628286761337}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:32+00","p50":293.242117125,"p95":954.8251752106991,"p99":974.259486347814}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:33+00","p50":90.970407,"p95":933.7060204523812,"p99":1754.5324022259408}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:34+00","p50":87.66404075,"p95":952.0501074883964,"p99":1733.9434730536298}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:35+00","p50":96.16706125,"p95":964.6923717730849,"p99":971.4606551532584}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:36+00","p50":859.1124053750001,"p95":962.7361855997865,"p99":1631.4679321383735}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:37+00","p50":92.5456465,"p95":854.3034984981971,"p99":1622.8462222233713}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:38+00","p50":86.37186075,"p95":937.7674021457757,"p99":958.984447011303}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:39+00","p50":83.5138905,"p95":1039.2662649277768,"p99":1792.112264883081}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:40+00","p50":706.915246875,"p95":906.291260608279,"p99":1684.0650222206896}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:41+00","p50":94.859669,"p95":1056.9187156301855,"p99":1178.6304712027347}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:42+00","p50":194.565136375,"p95":1062.0975811589153,"p99":1828.0665326248813}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:43+00","p50":803.7479814999999,"p95":892.0954650792164,"p99":1574.3407535200743}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:44+00","p50":274.4749405,"p95":820.5271948277292,"p99":1524.0519352419271}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:45+00","p50":103.140468,"p95":726.9737100637527,"p99":1231.412364069321}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:46+00","p50":674.1626545,"p95":788.67795360929,"p99":1364.1583468696729}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:47+00","p50":100.62343924999999,"p95":792.9665882364164,"p99":806.4285009684949}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:48+00","p50":183.911331375,"p95":884.5337383284062,"p99":929.8999890067439}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:49+00","p50":96.95234625,"p95":926.3185145810052,"p99":1004.8245712713633}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:50+00","p50":475.0400115,"p95":964.0756729032927,"p99":980.0439234489426}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:51+00","p50":873.0028715,"p95":956.0454048320189,"p99":976.1192521752187}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:52+00","p50":117.708192,"p95":1012.9558315351186,"p99":1028.0209676373977}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:53+00","p50":90.68505549999999,"p95":979.0529092530443,"p99":1905.8924018707276}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:54+00","p50":891.943924875,"p95":1050.871471855961,"p99":1068.0251726075655}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:55+00","p50":194.81121762499998,"p95":971.819848769752,"p99":1772.4146971276807}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:56+00","p50":909.05071325,"p95":1047.185949220997,"p99":1136.1705824207081}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:57+00","p50":118.056470625,"p95":1039.8717229529962,"p99":1060.4440735127864}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:58+00","p50":498.23565099999996,"p95":969.4914416024153,"p99":1706.2904584602547}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:38:59+00","p50":91.015484125,"p95":937.6686048174495,"p99":946.9071051816189}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:00+00","p50":766.741661,"p95":875.1199453969047,"p99":891.9649304839372}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:01+00","p50":739.711209375,"p95":831.1111418506486,"p99":1448.1394564244401}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:02+00","p50":891.7840245,"p95":1073.4206334018104,"p99":1243.408632201959}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:03+00","p50":876.70282825,"p95":1031.3188191803301,"p99":1900.3308076154287}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:04+00","p50":90.31098675,"p95":887.8584887596334,"p99":914.5549503737421}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:05+00","p50":70.2265915,"p95":868.5244427680028,"p99":1600.3916058140621}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:06+00","p50":88.698342,"p95":1002.5636273961773,"p99":1029.3473880164795}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:07+00","p50":879.2056522499998,"p95":959.8852028702563,"p99":1761.68337341431}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:08+00","p50":735.5626528749999,"p95":879.1614583968365,"p99":1531.786919928326}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:09+00","p50":612.2355298749999,"p95":751.5791992061553,"p99":1413.4017765602466}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:10+00","p50":107.26308775,"p95":618.4065204620559,"p99":632.7162096298247}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:11+00","p50":148.067554,"p95":637.8406513086633,"p99":1125.214932985683}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:12+00","p50":592.090147625,"p95":688.8163638391231,"p99":1129.7614548940317}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:13+00","p50":108.013838625,"p95":737.5009304946574,"p99":1311.7743488123833}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:14+00","p50":340.63108875,"p95":697.9378120128014,"p99":708.2764662157974}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:15+00","p50":100.6430695,"p95":612.8912638966241,"p99":634.298298819459}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:16+00","p50":99.726873375,"p95":598.8724897756529,"p99":609.9180974139429}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:17+00","p50":93.4274115,"p95":607.4653731966982,"p99":649.8777687757158}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:18+00","p50":137.624438,"p95":694.0534044021721,"p99":722.424651175972}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:19+00","p50":114.29132324999999,"p95":718.6409816126144,"p99":1204.8961714799982}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:20+00","p50":357.88062525,"p95":713.7781306247771,"p99":769.8503853940191}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:21+00","p50":100.98101249999999,"p95":867.0105595674265,"p99":1042.6879241047961}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:22+00","p50":630.1604355,"p95":797.5644514115422,"p99":895.5911420034146}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:23+00","p50":421.539132,"p95":861.0494169724328,"p99":873.3038489508876}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:24+00","p50":100.16612125,"p95":857.0163265884777,"p99":1551.2592778760818}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:25+00","p50":511.87771612499995,"p95":849.7085432783102,"p99":864.5577270525334}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:26+00","p50":213.67927362499998,"p95":986.7358917921451,"p99":1002.1672866059174}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:27+00","p50":759.71462225,"p95":903.7412950486205,"p99":1002.6163386363261}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:28+00","p50":791.79892825,"p95":883.3815779101479,"p99":965.8990550358734}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:29+00","p50":102.51319662499999,"p95":765.1274926323499,"p99":789.7671089572547}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:30+00","p50":102.292002875,"p95":727.9270795949203,"p99":1330.8424420401848}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:31+00","p50":82.42538862500001,"p95":778.312744730081,"p99":793.5091432058912}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:32+00","p50":98.61641125,"p95":662.7054008139027,"p99":1230.572462200275}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:33+00","p50":170.42984975,"p95":660.751532451303,"p99":1101.940951575658}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:34+00","p50":131.89861075,"p95":623.385846058291,"p99":1123.3011249375313}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:35+00","p50":440.893735,"p95":537.2536202508087,"p99":571.9499639173088}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:36+00","p50":103.38452687499999,"p95":476.5830659255797,"p99":812.1698296573454}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:37+00","p50":86.9353715,"p95":580.3718235997601,"p99":806.0470457422728}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:38+00","p50":85.63201725,"p95":788.9073078976683,"p99":1293.5431586486498}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:39+00","p50":754.1297579999999,"p95":899.2237946438378,"p99":1442.7197048949108}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:40+00","p50":646.976766,"p95":811.6869808073517,"p99":837.0536069950427}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:41+00","p50":119.955019,"p95":627.9310120501403,"p99":654.4205059910736}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:42+00","p50":522.371338,"p95":591.664594624985,"p99":604.0424490330566}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:43+00","p50":353.56266075,"p95":582.8201635560711,"p99":735.6738940295905}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:44+00","p50":303.86587000000003,"p95":466.6720457244473,"p99":803.897168360486}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:45+00","p50":332.535225,"p95":434.70555391658644,"p99":598.9597567420988}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:46+00","p50":303.7878425,"p95":370.04426253336527,"p99":649.5819918751449}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:47+00","p50":320.7344425,"p95":409.29454245851144,"p99":641.4916128627461}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:48+00","p50":301.26090800000003,"p95":421.78633705974653,"p99":590.3962275585765}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:49+00","p50":324.20119687500005,"p95":429.93939698055334,"p99":521.647272708966}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:50+00","p50":299.822143,"p95":380.637354537878,"p99":540.1260354298173}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:51+00","p50":312.664357,"p95":464.7293501063444,"p99":600.3385639156589}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:52+00","p50":296.803679125,"p95":444.1316959409142,"p99":728.2334892014503}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:53+00","p50":218.336725,"p95":418.30587669073293,"p99":445.0886679139862}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:54+00","p50":124.78636399999999,"p95":504.48475855329946,"p99":843.318885751133}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:55+00","p50":393.18121675,"p95":562.9345412830785,"p99":920.6599593022189}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:56+00","p50":545.894659625,"p95":653.0274530332468,"p99":1032.967441090142}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:57+00","p50":400.32770912500007,"p95":578.0601017344889,"p99":626.9062340469761}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:58+00","p50":185.40420849999998,"p95":564.0331768429937,"p99":577.1804390344358}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:39:59+00","p50":457.6308285,"p95":536.0502643392679,"p99":860.4320773841238}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:00+00","p50":278.220596375,"p95":511.94754144079354,"p99":860.8366070906086}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:01+00","p50":262.7768315,"p95":462.88850963378906,"p99":760.457779694376}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:02+00","p50":331.2056645,"p95":463.0433312499099,"p99":554.2772626992479}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:03+00","p50":252.50770225000002,"p95":283.0309733622056,"p99":369.6404258692725}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:04+00","p50":266.628799375,"p95":397.4095962137111,"p99":414.81650568505813}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:05+00","p50":330.67919725,"p95":415.2450325253649,"p99":690.3202489379559}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:06+00","p50":246.81784325,"p95":376.2209517758865,"p99":652.2991932482677}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:07+00","p50":416.52285175,"p95":479.53250439438915,"p99":496.8082390563646}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:08+00","p50":446.805840375,"p95":537.1470679792274,"p99":909.495299447876}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:09+00","p50":131.751305125,"p95":552.4550750762158,"p99":576.0982285698111}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:10+00","p50":77.858141625,"p95":541.4977419760321,"p99":594.0171680423457}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:11+00","p50":81.73376487499999,"p95":704.0306966956904,"p99":1091.9826540233466}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:12+00","p50":575.8115593750001,"p95":686.9869810424202,"p99":705.5557887181029}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:13+00","p50":570.89191825,"p95":679.5402045564892,"p99":695.3771180634517}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:14+00","p50":601.5455360000001,"p95":710.4477593006754,"p99":1117.2767081823158}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:15+00","p50":643.2277515,"p95":768.3641348017192,"p99":1395.5645986989193}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:16+00","p50":641.61211675,"p95":711.3068697007058,"p99":1251.7459091525225}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:17+00","p50":583.514287,"p95":723.8259939392641,"p99":1231.477710545954}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:18+00","p50":588.939655,"p95":719.8919333463423,"p99":1196.1525994339927}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:19+00","p50":615.9682467499999,"p95":683.3305578580766,"p99":803.1131823384003}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:20+00","p50":597.5958807499999,"p95":682.1686386413043,"p99":1092.2766479724928}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:21+00","p50":601.7912253750001,"p95":664.0363008717762,"p99":1153.9587138070156}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:22+00","p50":604.043737375,"p95":722.8478474059584,"p99":1185.578500227452}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:23+00","p50":389.51912975,"p95":792.9191323957469,"p99":1282.2084513416175}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:24+00","p50":556.7526567499999,"p95":727.0468446332658,"p99":1369.303520861151}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:25+00","p50":497.756050125,"p95":639.1968087135364,"p99":653.4665139137471}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:26+00","p50":94.422911,"p95":982.2375234240288,"p99":1005.0770412358322}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:27+00","p50":581.9642332500001,"p95":938.2543182060244,"p99":951.5946107951705}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:28+00","p50":99.68781625,"p95":784.106864613209,"p99":1483.9674991772633}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:29+00","p50":654.09089425,"p95":801.9799210614162,"p99":1305.498405269099}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:30+00","p50":373.14820125,"p95":773.4166417118206,"p99":829.142973108099}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:31+00","p50":813.422108375,"p95":999.9629793233263,"p99":1017.8242135790924}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:32+00","p50":393.0872455,"p95":949.4447922513523,"p99":956.4429549742161}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:33+00","p50":81.8305415,"p95":970.4239269199749,"p99":1030.594924210781}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:34+00","p50":846.0709038749999,"p95":973.3527666405784,"p99":1809.4880825263128}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:35+00","p50":360.697055875,"p95":846.1808196110604,"p99":859.6189638533581}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:36+00","p50":265.9340335,"p95":892.8934920629164,"p99":1009.5777155805829}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:37+00","p50":98.237826,"p95":991.89272476434,"p99":1589.9973366204624}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:38+00","p50":87.52072025,"p95":1004.950602223821,"p99":1015.2407334012108}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:39+00","p50":921.252309,"p95":974.438664397151,"p99":1827.3710585418967}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:40+00","p50":777.10566925,"p95":922.1192570881174,"p99":951.1845596719894}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:41+00","p50":112.51931450000001,"p95":825.9173611637855,"p99":1333.9251791428194}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:42+00","p50":121.1026285,"p95":807.8775639635451,"p99":906.7205126886106}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:43+00","p50":431.7393415,"p95":799.5457661584769,"p99":813.444261327239}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:44+00","p50":118.597644,"p95":807.4388454307572,"p99":1410.3450504507798}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:45+00","p50":85.40065275,"p95":842.4558999213068,"p99":916.0273809171902}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:46+00","p50":353.34075800000005,"p95":773.7914096047211,"p99":1522.7789984515962}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:47+00","p50":90.91082675,"p95":687.4250664210653,"p99":1094.4905604440917}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:48+00","p50":131.82911437500002,"p95":754.5817561806366,"p99":1271.231513238905}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:49+00","p50":94.97586150000001,"p95":768.9278589075287,"p99":1340.721164815834}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:50+00","p50":584.4237315,"p95":687.7724928092986,"p99":1291.5855674805746}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:51+00","p50":519.8973100000001,"p95":737.3629511831494,"p99":1183.973762930472}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:52+00","p50":160.91687075,"p95":699.3948473911223,"p99":1315.5463248172075}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:53+00","p50":297.93870512500007,"p95":681.0371500318955,"p99":782.2903298008688}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:54+00","p50":582.654496,"p95":746.4213775416183,"p99":1224.7762475251488}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:55+00","p50":126.735852375,"p95":521.0717799914066,"p99":957.618485868108}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:56+00","p50":479.58236650000003,"p95":638.4813388174206,"p99":800.5922654839821}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:57+00","p50":355.8118775,"p95":579.6938917699166,"p99":1129.9632748797635}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:58+00","p50":447.12783924999997,"p95":599.7003829907987,"p99":1003.8008559374141}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:40:59+00","p50":137.6091025,"p95":609.5535375108551,"p99":620.5910106653719}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:00+00","p50":150.716965375,"p95":667.3144468618235,"p99":935.4251813267393}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:01+00","p50":69.918706125,"p95":671.2822277727553,"p99":677.9779777174579}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:02+00","p50":581.585975,"p95":657.8273134419703,"p99":1192.6034425643768}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:03+00","p50":100.91780675,"p95":682.5228755864279,"p99":704.1396846464233}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:04+00","p50":77.983688,"p95":701.402189865087,"p99":1231.1717065906123}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:05+00","p50":302.5025675,"p95":696.3999078534332,"p99":709.8458185415518}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:06+00","p50":418.66173425,"p95":664.0834259620606,"p99":693.5131603008242}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:07+00","p50":103.887275125,"p95":644.1927185822789,"p99":667.2248434237632}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:08+00","p50":535.02539875,"p95":627.2307238551359,"p99":637.929177284605}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:09+00","p50":78.3522975,"p95":759.9498682173153,"p99":1220.3284468625927}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:10+00","p50":652.9045040000001,"p95":751.1860923382998,"p99":762.032447897812}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:11+00","p50":609.6565069999999,"p95":684.7622107534536,"p99":1139.4462037672815}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:12+00","p50":602.95905525,"p95":671.8565358167997,"p99":1215.9905641932794}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:13+00","p50":102.81253725,"p95":725.8524760010423,"p99":750.7059497697444}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:14+00","p50":272.072921125,"p95":652.3353603429059,"p99":659.2718658819103}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:15+00","p50":388.59656425000003,"p95":508.6885314375206,"p99":728.4926112085063}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:16+00","p50":105.85802050000001,"p95":507.3300466084652,"p99":755.9929815375748}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:17+00","p50":93.810082,"p95":642.1958011430436,"p99":786.5905200933971}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:18+00","p50":522.154574625,"p95":736.7307622916884,"p99":1207.4557206533893}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:19+00","p50":112.438018,"p95":597.1381827892372,"p99":1087.1173515194448}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:20+00","p50":132.17251325,"p95":557.6404612375583,"p99":575.5622074757557}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:21+00","p50":232.277096625,"p95":518.2638282276816,"p99":532.9781717298932}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:22+00","p50":348.78299937500003,"p95":415.9079116078748,"p99":650.7977329512913}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:23+00","p50":231.044159,"p95":538.3411522716514,"p99":851.2776134944789}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:24+00","p50":501.70598400000006,"p95":566.6740140810912,"p99":582.2404865060565}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:25+00","p50":125.35225775,"p95":628.400235651935,"p99":717.0317053670385}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:26+00","p50":692.799644375,"p95":744.7097940349205,"p99":1239.9133474204932}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:27+00","p50":523.1742615000001,"p95":689.0583371387528,"p99":808.2828163339958}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:28+00","p50":555.41872425,"p95":737.8293431639873,"p99":1201.8130125038251}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:29+00","p50":313.615802625,"p95":681.076651277319,"p99":1220.5990041108168}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:30+00","p50":111.966755875,"p95":850.1052810737675,"p99":869.8244905008714}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:31+00","p50":99.33324825,"p95":731.9456400229149,"p99":757.5522333393344}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:32+00","p50":625.55909625,"p95":772.7443744964495,"p99":1350.5476009331435}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:33+00","p50":608.27816325,"p95":692.8783796616949,"p99":1204.1606742981128}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:34+00","p50":355.31799525,"p95":696.2993348459523,"p99":1233.3148014511805}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:35+00","p50":615.853769875,"p95":678.0538080354713,"p99":1235.5434003808105}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:36+00","p50":547.0280897499999,"p95":632.1835367735738,"p99":1184.7243831112205}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:37+00","p50":567.07488425,"p95":692.4259903974755,"p99":737.0170055786348}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:38+00","p50":540.827019875,"p95":716.0926005235124,"p99":760.6648021848314}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:39+00","p50":91.676317,"p95":700.5171004518687,"p99":1114.4867567970105}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:40+00","p50":178.69757525,"p95":645.3175592156575,"p99":662.9090221604877}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:41+00","p50":510.80603299999996,"p95":576.293848717546,"p99":984.2512814769107}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:42+00","p50":489.17318550000005,"p95":571.9527253482502,"p99":604.0912721293492}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:43+00","p50":494.704189625,"p95":577.9087491615333,"p99":586.9192647035507}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:44+00","p50":292.01512075,"p95":419.8984678603382,"p99":430.15284955071735}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:45+00","p50":293.297228,"p95":368.41083398309326,"p99":376.7022071171341}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:46+00","p50":298.661863,"p95":396.2608051658204,"p99":622.9135991037544}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:47+00","p50":298.89410025,"p95":470.42868819018327,"p99":722.8563866910515}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:48+00","p50":375.432709875,"p95":469.1789351388002,"p99":721.2579622634144}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:49+00","p50":365.09405475,"p95":441.4929394641447,"p99":470.95483930819415}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:50+00","p50":177.2672235,"p95":469.82052428082727,"p99":820.7436241534119}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:51+00","p50":166.220073375,"p95":650.1860085608402,"p99":913.4945891448085}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:52+00","p50":164.55982749999998,"p95":675.1325165675573,"p99":691.027193572279}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:53+00","p50":440.20904987499995,"p95":490.126788798986,"p99":865.7886639512839}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:54+00","p50":255.30816400000003,"p95":496.71493385834543,"p99":513.1290399321217}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:55+00","p50":244.13032525,"p95":435.4520309567732,"p99":657.4864091463509}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:56+00","p50":398.05524975000003,"p95":553.8029121169707,"p99":651.1291229852791}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:57+00","p50":316.135141,"p95":386.6330403865498,"p99":637.2612387500749}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:58+00","p50":256.0703565,"p95":418.63937928885076,"p99":438.947776653595}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:41:59+00","p50":388.431577,"p95":497.84506599587223,"p99":731.3956758715195}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:00+00","p50":347.77592025,"p95":441.3432252885878,"p99":699.8771724896569}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:01+00","p50":342.26103875,"p95":443.8019705883477,"p99":744.2210664480763}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:02+00","p50":380.41621775000004,"p95":463.7957751111137,"p99":702.14285753752}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:03+00","p50":175.99056912499998,"p95":506.9441309818415,"p99":874.852517836548}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:04+00","p50":205.4010415,"p95":471.7635042466602,"p99":799.0829832229309}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:05+00","p50":395.246619,"p95":502.72728631184486,"p99":862.2341359588452}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:06+00","p50":241.3264175,"p95":439.8521429593563,"p99":676.655908346634}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:07+00","p50":269.45191,"p95":436.81857404425625,"p99":774.786837385849}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:08+00","p50":310.11954125,"p95":395.0993383767023,"p99":555.9335430415421}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:09+00","p50":274.87881125,"p95":422.98373554597475,"p99":629.2655784257786}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:10+00","p50":127.409833625,"p95":507.7835483042841,"p99":548.1219844428437}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:11+00","p50":85.82727075,"p95":581.8706046327933,"p99":610.3071810688365}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:12+00","p50":461.13062412499994,"p95":624.5497536411673,"p99":978.8654028228087}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:13+00","p50":388.05106450000005,"p95":622.2374611560898,"p99":1129.74284875591}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:14+00","p50":111.486629875,"p95":515.4114408790315,"p99":531.6882900417919}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:15+00","p50":104.08347574999999,"p95":572.3453708929638,"p99":877.9943777894297}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:16+00","p50":60.781409625,"p95":638.9269557112557,"p99":670.1866636060261}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:17+00","p50":571.5319525,"p95":675.0714452929692,"p99":690.4449631936183}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:18+00","p50":682.9671907500001,"p95":788.2577114278994,"p99":1290.3770408297323}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:19+00","p50":155.8511985,"p95":787.2225689075856,"p99":806.8853236336003}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:20+00","p50":123.55665624999999,"p95":709.184460246296,"p99":754.9362648896847}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:21+00","p50":98.5199205,"p95":644.086141023056,"p99":1184.616580862573}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:22+00","p50":99.181009625,"p95":757.859096259973,"p99":789.3697877738709}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:23+00","p50":116.45557549999998,"p95":706.6016241157314,"p99":764.4780002739031}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:24+00","p50":529.8403412499999,"p95":620.6571123692876,"p99":1054.013055299844}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:25+00","p50":390.92585875,"p95":529.3831054400497,"p99":553.5651179911317}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:26+00","p50":362.165527,"p95":488.64172981225704,"p99":498.3419788258114}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:27+00","p50":337.20216512499996,"p95":412.4387678662996,"p99":509.96824086691163}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:28+00","p50":343.17089799999997,"p95":453.5341386786496,"p99":564.4847030900464}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:29+00","p50":296.50199299999997,"p95":391.2641547125664,"p99":490.94188533702084}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:30+00","p50":297.5637355,"p95":407.6023808442907,"p99":422.0883219411431}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:31+00","p50":301.27057249999996,"p95":378.7905963146374,"p99":534.073382950057}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:32+00","p50":318.3217705,"p95":383.47362892896655,"p99":444.5253650622253}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:33+00","p50":309.6437695,"p95":402.8811814281898,"p99":538.6379656667585}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:34+00","p50":266.117927,"p95":347.88802627715546,"p99":557.0639612257869}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:35+00","p50":271.453795,"p95":377.5706411838505,"p99":614.1780432585268}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:36+00","p50":299.894283,"p95":373.2629035923363,"p99":532.6508732361398}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:37+00","p50":263.32381225,"p95":383.4703171126944,"p99":403.1626735249851}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:38+00","p50":321.130054375,"p95":467.56678536297204,"p99":679.2235100588572}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:39+00","p50":304.5645025,"p95":370.3980582027921,"p99":601.9693522372346}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:40+00","p50":295.7079055,"p95":355.95701386484575,"p99":593.5692782461929}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:41+00","p50":289.558127125,"p95":368.496281160478,"p99":527.731354787498}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:42+00","p50":352.92710024999997,"p95":415.8891404933734,"p99":667.077242781611}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:43+00","p50":370.597242125,"p95":502.8027229448339,"p99":800.2706876158996}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:44+00","p50":287.00973650000003,"p95":339.84868146195333,"p99":563.3398707625796}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:45+00","p50":297.116771375,"p95":359.76352794321366,"p99":377.72960397386885}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:46+00","p50":254.85645900000003,"p95":398.866385972877,"p99":419.58558486942724}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:47+00","p50":356.24695499999996,"p95":450.67937455393934,"p99":724.1146656407949}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:48+00","p50":199.50586175,"p95":458.3767198018282,"p99":725.752709201582}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:49+00","p50":383.81741224999996,"p95":467.6560843397356,"p99":765.9955337157719}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:50+00","p50":351.64657775,"p95":563.7887574554212,"p99":876.5142034097424}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:51+00","p50":349.031694625,"p95":477.3299506356142,"p99":529.1141771366209}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:52+00","p50":321.6119955,"p95":376.87722231032706,"p99":623.1467286530761}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:53+00","p50":239.42122387499998,"p95":340.3126502574798,"p99":415.4955415524068}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:54+00","p50":244.83353150000002,"p95":449.76804482147713,"p99":463.36754414280944}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:55+00","p50":383.7817845,"p95":511.4800581631952,"p99":800.0995449182701}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:56+00","p50":328.7677545,"p95":539.6731094571339,"p99":851.3100248022298}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:57+00","p50":328.93003,"p95":406.0490670255678,"p99":421.5149166913147}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:58+00","p50":311.37318675,"p95":382.6825023511815,"p99":459.39835274513894}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:42:59+00","p50":278.96206662500003,"p95":338.5804798094388,"p99":358.3400600827739}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:00+00","p50":287.8355235,"p95":444.8997620010948,"p99":483.9082799245891}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:01+00","p50":307.6754525,"p95":391.47657433429265,"p99":601.8216982304097}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:02+00","p50":304.56908475,"p95":406.9372452528129,"p99":688.1658540305481}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:03+00","p50":379.37526912500005,"p95":475.9559734205691,"p99":763.8655060774242}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:04+00","p50":280.25102937500003,"p95":410.39659494381317,"p99":598.493936585872}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:05+00","p50":262.06911375000004,"p95":412.5971065830641,"p99":431.41030073017123}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:06+00","p50":272.37167875,"p95":379.6151189937395,"p99":451.8509663751662}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:07+00","p50":305.002048625,"p95":468.584363009354,"p99":723.6206617293608}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:08+00","p50":278.41478675,"p95":423.2138657986084,"p99":613.9337182775063}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:09+00","p50":330.87488325,"p95":426.69763431700665,"p99":450.90454449319907}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:10+00","p50":395.07971087500005,"p95":454.06801371536784,"p99":680.6671699121463}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:11+00","p50":319.3300605,"p95":429.7223667934785,"p99":453.630875939682}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:12+00","p50":201.040784,"p95":490.77628226164103,"p99":671.3031091490965}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:13+00","p50":241.82969887500002,"p95":445.57879789670136,"p99":469.50769435391135}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:14+00","p50":251.86527412499998,"p95":438.78317585765427,"p99":740.0937850824735}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:15+00","p50":283.45873274999997,"p95":478.2123564541151,"p99":804.6784587054359}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:16+00","p50":323.340585375,"p95":471.9255826540456,"p99":479.7646531583414}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:17+00","p50":342.398227375,"p95":416.11605904703407,"p99":734.3029239066334}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:18+00","p50":305.3725895,"p95":351.7808998242936,"p99":583.0842672720738}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:19+00","p50":277.97955950000005,"p95":350.2133625182836,"p99":511.6241912441497}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:20+00","p50":289.583161,"p95":327.8447180824288,"p99":501.7578077556095}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:21+00","p50":274.91456725,"p95":309.3723698600716,"p99":448.5433449242549}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:22+00","p50":241.977298,"p95":435.8780070107219,"p99":477.5913031914587}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:23+00","p50":384.1921275,"p95":454.94914608617387,"p99":481.54001450220204}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:24+00","p50":175.77593374999998,"p95":539.3298421974265,"p99":547.5865485812784}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:25+00","p50":131.1036575,"p95":544.2529143918418,"p99":974.2048014487609}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:26+00","p50":102.97879775,"p95":652.1670073142374,"p99":657.8782247398758}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:27+00","p50":468.85457675,"p95":756.2949275462917,"p99":779.773662232749}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:28+00","p50":110.86218725,"p95":660.263843659605,"p99":679.0366783134656}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:29+00","p50":89.53492650000001,"p95":676.053924952261,"p99":1062.4943778939657}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:30+00","p50":71.08362062500001,"p95":710.9521058317256,"p99":750.5769988000649}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:31+00","p50":596.47449775,"p95":695.9604923756895,"p99":729.0283574419517}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:32+00","p50":569.0933829999999,"p95":626.992993639925,"p99":1144.4499567489156}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:33+00","p50":539.2470854999999,"p95":666.699622981347,"p99":1135.6306223822085}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:34+00","p50":94.222186125,"p95":584.8607141380785,"p99":615.3729447414761}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:35+00","p50":549.25867075,"p95":706.2389536829588,"p99":713.1354258112622}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:36+00","p50":415.197247,"p95":579.2111818004474,"p99":1074.117541778147}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:37+00","p50":134.682393,"p95":516.0487999545304,"p99":531.191895994452}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:38+00","p50":393.60643749999997,"p95":529.091380848401,"p99":670.2554537576738}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:39+00","p50":294.485368,"p95":408.52738064484925,"p99":666.8754022226371}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:40+00","p50":390.962861,"p95":464.8704719083461,"p99":485.2160320277093}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:41+00","p50":279.455061375,"p95":450.1925215458091,"p99":754.4831757712993}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:42+00","p50":294.385962625,"p95":359.3989783361436,"p99":527.7422380271632}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:43+00","p50":342.096562,"p95":430.66033481475836,"p99":477.2222770835924}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:44+00","p50":386.0822445,"p95":456.97222139411735,"p99":733.9573791362305}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:45+00","p50":283.165253625,"p95":427.4109288410286,"p99":730.5271198289626}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:46+00","p50":252.78025200000002,"p95":459.72910177560254,"p99":685.1580301903587}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:47+00","p50":152.11253875,"p95":622.666891798,"p99":886.5028107622938}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:48+00","p50":355.48016974999996,"p95":601.30107048595,"p99":609.8211970710294}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:49+00","p50":338.713926125,"p95":477.36653575393836,"p99":648.6070639583114}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:50+00","p50":288.7456885,"p95":451.56101464781005,"p99":620.2607141391248}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:51+00","p50":451.82996,"p95":513.234633271504,"p99":858.8174380613765}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:52+00","p50":384.54756275,"p95":497.7919510117699,"p99":760.2437622812977}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:53+00","p50":297.965639875,"p95":385.5686904775392,"p99":508.82212643845105}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:54+00","p50":295.44791275,"p95":364.85309211976335,"p99":375.5118835829046}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:55+00","p50":253.043546,"p95":359.99909187732504,"p99":479.1938286464751}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:56+00","p50":427.6231755,"p95":501.52072665873897,"p99":564.5526673110209}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:57+00","p50":363.6350385,"p95":432.65036151670694,"p99":715.8104716866718}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:58+00","p50":335.055197,"p95":418.9552234252081,"p99":450.2736695102196}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:43:59+00","p50":309.46469825,"p95":411.3003049063931,"p99":420.2997286685047}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:00+00","p50":311.740323,"p95":408.00745924915765,"p99":606.0708448680525}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:01+00","p50":249.792659875,"p95":473.0294865705852,"p99":755.8735752447438}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:02+00","p50":127.249674,"p95":503.57950629789923,"p99":788.9254329133757}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:03+00","p50":320.03162925,"p95":488.99416620192153,"p99":721.1503014500835}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:04+00","p50":166.171437125,"p95":484.9673020281106,"p99":688.6786283997974}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:05+00","p50":472.877368,"p95":526.184564590721,"p99":538.2094878456803}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:06+00","p50":458.67030575,"p95":570.9150244892245,"p99":963.2870983263111}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:07+00","p50":512.5947693749999,"p95":578.7827999924057,"p99":598.4211829048128}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:08+00","p50":384.862007875,"p95":588.9129665492391,"p99":990.7341323646576}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:09+00","p50":213.36417975,"p95":479.8445885258408,"p99":809.6483500132293}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:10+00","p50":368.3238615,"p95":480.4240672756453,"p99":514.4323451134894}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:11+00","p50":308.368785,"p95":431.8099474417428,"p99":586.9957929687171}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:12+00","p50":202.0106995,"p95":468.1334880496415,"p99":594.9735002008546}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:13+00","p50":120.64307725,"p95":546.9710705114995,"p99":577.4064936388088}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:14+00","p50":415.849488,"p95":609.3847872141547,"p99":1045.777418429718}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:15+00","p50":79.28362225,"p95":587.4755849209697,"p99":596.0525755749414}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:16+00","p50":414.79693025000006,"p95":605.7086555829878,"p99":1110.0998665246316}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:17+00","p50":251.254127875,"p95":613.4338265122029,"p99":624.2905557171443}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:18+00","p50":154.81405275,"p95":582.3037358713933,"p99":602.6175252378497}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:19+00","p50":452.2145755,"p95":536.1660319557657,"p99":562.2590749970299}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:20+00","p50":445.9164485,"p95":539.6338126709213,"p99":557.9276089985503}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:21+00","p50":479.78094150000004,"p95":572.3563248870067,"p99":1041.5545725552977}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:22+00","p50":457.63024887499995,"p95":590.5546257798678,"p99":920.1034966194308}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:23+00","p50":93.650775,"p95":570.6612724479652,"p99":1044.6888917099952}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:24+00","p50":90.32240412499999,"p95":689.4508304285174,"p99":755.2752831247577}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:25+00","p50":110.7871615,"p95":719.0525781741859,"p99":1295.9060783479902}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:26+00","p50":109.34086725,"p95":774.4895784576137,"p99":898.6889978070946}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:27+00","p50":570.5188425,"p95":749.884418329052,"p99":1398.813382955803}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:28+00","p50":80.925664625,"p95":833.3813539482247,"p99":854.3655634814022}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:29+00","p50":117.998254,"p95":853.3049463555749,"p99":884.3721462162371}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:30+00","p50":755.06357275,"p95":812.1532248170195,"p99":882.2311292833976}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:31+00","p50":708.7799982500001,"p95":775.2739175596756,"p99":788.6307644151582}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:32+00","p50":407.361452375,"p95":667.0130622653558,"p99":1227.2931186189574}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:33+00","p50":153.4186675,"p95":429.21364306506297,"p99":449.3347473282566}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:34+00","p50":257.78902975,"p95":458.9191192238192,"p99":472.5831349939778}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:35+00","p50":345.14340274999995,"p95":450.9769894995396,"p99":477.3296527806902}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:36+00","p50":341.27113825000004,"p95":385.96132250056064,"p99":642.1374391282523}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:37+00","p50":237.3797785,"p95":324.73076448346615,"p99":443.89841352878193}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:38+00","p50":299.576333,"p95":495.5821607856075,"p99":505.39719759775164}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:39+00","p50":398.7052375,"p95":458.1014224267575,"p99":789.0102929351744}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:40+00","p50":417.977079,"p95":469.02213700240196,"p99":487.43367965049356}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:41+00","p50":342.335428,"p95":523.3921844312343,"p99":555.2638574658279}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:42+00","p50":389.135501125,"p95":523.7283988997092,"p99":895.5158643152869}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:43+00","p50":211.70509675,"p95":496.5825572793164,"p99":854.692638769352}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:44+00","p50":109.83256,"p95":535.7601701166996,"p99":560.3471649236827}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:45+00","p50":66.818347,"p95":627.5193733604384,"p99":702.6567142178047}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:46+00","p50":78.040681,"p95":707.4531985744328,"p99":1181.2490816531088}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:47+00","p50":83.5551835,"p95":759.727431839356,"p99":1318.324772638009}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:48+00","p50":77.63969399999999,"p95":788.3971868803263,"p99":825.680070505865}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:49+00","p50":87.95669874999999,"p95":850.1397595349702,"p99":867.8647324295254}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:50+00","p50":87.79954375,"p95":887.0016678767229,"p99":917.3669024762455}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:51+00","p50":259.97531975000004,"p95":880.528695598738,"p99":1620.1589157328683}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:52+00","p50":674.53009075,"p95":837.0256042757402,"p99":1416.1600269266721}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:53+00","p50":624.2255185,"p95":709.9139133832206,"p99":1139.8617646338005}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:54+00","p50":92.182633,"p95":740.0249289948185,"p99":749.0386667635127}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:55+00","p50":97.90971637499999,"p95":834.7431527553662,"p99":1376.4137333843487}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:56+00","p50":590.1255424999999,"p95":880.3871285600267,"p99":889.2875628825378}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:57+00","p50":545.3815875,"p95":808.4425583118882,"p99":1375.5368974390722}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:58+00","p50":300.0513725,"p95":558.7101303386297,"p99":963.6848099558925}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:44:59+00","p50":83.043756,"p95":651.3253709768672,"p99":675.6000771566434}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:00+00","p50":101.56621200000001,"p95":615.3566409862594,"p99":666.3373397240409}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:01+00","p50":577.765093,"p95":663.7702963915393,"p99":1119.9010246671587}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:02+00","p50":108.854346625,"p95":649.0579683519946,"p99":788.2339126711579}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:03+00","p50":534.3885009999999,"p95":655.611540535234,"p99":1058.3823055870446}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:04+00","p50":671.143941,"p95":769.3251629294261,"p99":783.9608344640632}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:05+00","p50":315.87011725,"p95":746.9830206000385,"p99":764.1539593560325}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:06+00","p50":94.244821,"p95":707.4628789442221,"p99":1336.6107392150054}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:07+00","p50":81.24592100000001,"p95":759.905684046274,"p99":780.0893932634067}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:08+00","p50":68.89709887500001,"p95":901.9222925808022,"p99":1000.6747901144843}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:09+00","p50":101.966354375,"p95":965.6572239342452,"p99":980.554538633899}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:10+00","p50":93.4332525,"p95":836.4901951003775,"p99":860.809486535294}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:11+00","p50":77.784846,"p95":877.2262407908094,"p99":1523.7769984597112}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:12+00","p50":65.354991625,"p95":962.5923084784687,"p99":1124.9792615734648}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:13+00","p50":831.2059194999999,"p95":1010.8299114349517,"p99":1780.7907197455197}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:14+00","p50":797.5591254999999,"p95":878.3298482781759,"p99":1699.3717159473392}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:15+00","p50":557.203861,"p95":842.4556592932257,"p99":859.4324349273968}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:16+00","p50":688.52596875,"p95":783.0348659839834,"p99":811.3496807442837}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:17+00","p50":107.8342115,"p95":790.8719961222477,"p99":810.0910971106085}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:18+00","p50":116.53781625,"p95":842.2719780785284,"p99":866.1559901824003}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:19+00","p50":109.49712650000001,"p95":830.5998499945507,"p99":1371.32992618326}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:20+00","p50":107.783764125,"p95":944.7021668480029,"p99":966.5568989027722}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:21+00","p50":113.284234,"p95":889.4583924123841,"p99":1134.6218309054136}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:22+00","p50":616.5451075,"p95":797.8982933095185,"p99":815.9537981134291}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:23+00","p50":81.28988600000001,"p95":746.4988313239768,"p99":773.7183676869099}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:24+00","p50":694.863818,"p95":878.1996441259735,"p99":1449.411465187606}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:25+00","p50":661.0638879999999,"p95":775.635402378582,"p99":839.1896918192979}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:26+00","p50":763.98808,"p95":831.732323253232,"p99":1414.3224035469007}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:27+00","p50":723.8197727500001,"p95":839.6089844563531,"p99":849.5899957635671}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:28+00","p50":116.77925975,"p95":834.5510687159983,"p99":1543.5683662105992}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:29+00","p50":117.526399,"p95":802.0372145929737,"p99":827.9596948377833}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:30+00","p50":100.54473449999999,"p95":722.7150645335574,"p99":1400.025624940358}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:31+00","p50":640.1577785,"p95":697.1623824238311,"p99":703.2957118418021}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:32+00","p50":569.60793725,"p95":697.1630396883111,"p99":734.7984799269285}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:33+00","p50":92.32119875,"p95":715.0479155635971,"p99":747.845587508542}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:34+00","p50":727.11977925,"p95":808.8093907659426,"p99":1372.0464172528175}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:35+00","p50":638.611565,"p95":807.3771423745794,"p99":1465.9081902214546}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:36+00","p50":65.73843174999999,"p95":928.3932908793736,"p99":944.7086408448639}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:37+00","p50":616.4957522499999,"p95":908.5507952647705,"p99":936.05388623559}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:38+00","p50":104.761835875,"p95":996.1585314432125,"p99":1025.8025885197446}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:39+00","p50":116.222094,"p95":971.7074018833857,"p99":984.8917383078499}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:40+00","p50":87.93687600000001,"p95":854.9437290024647,"p99":874.0998325691106}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:41+00","p50":101.900605875,"p95":863.5622917634469,"p99":880.2251084084671}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:42+00","p50":747.4949622500001,"p95":879.3116484197096,"p99":1573.4635480084544}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:43+00","p50":443.2535735,"p95":843.6001929678047,"p99":1496.1132926844082}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:44+00","p50":103.668414,"p95":821.9479759732315,"p99":1437.5486519893986}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:45+00","p50":104.86000812500001,"p95":814.4674236040897,"p99":839.5542847080037}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:46+00","p50":656.032231,"p95":860.3183161102281,"p99":1518.5749786996807}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:47+00","p50":817.4430205,"p95":938.8320213186998,"p99":1619.3745474164095}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:48+00","p50":874.0658080000001,"p95":990.5876245271918,"p99":997.2471356679052}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:49+00","p50":758.041089,"p95":955.5084377954906,"p99":1438.0683047343932}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:50+00","p50":662.112320625,"p95":797.1309638544161,"p99":819.7984843161178}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:51+00","p50":683.8425952499999,"p95":788.0291592132695,"p99":1331.1540936484555}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:52+00","p50":666.46029875,"p95":815.2781762528855,"p99":1431.0292552063677}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:53+00","p50":769.495103,"p95":868.8312642688159,"p99":1542.5612955548627}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:54+00","p50":295.46924125,"p95":832.7103785882223,"p99":853.9305186710586}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:55+00","p50":123.652789625,"p95":702.6480259373322,"p99":1179.1907344160447}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:56+00","p50":571.088818,"p95":737.7508280802962,"p99":902.6227154990067}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:57+00","p50":163.88361849999998,"p95":557.4004367088044,"p99":1045.0805537616402}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:58+00","p50":138.91648849999999,"p95":623.0931183867741,"p99":673.3206044825828}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:45:59+00","p50":75.11913737500001,"p95":695.7670414780904,"p99":1223.1716759039873}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:00+00","p50":85.46271025,"p95":752.4541330829762,"p99":758.8844850142317}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:01+00","p50":96.9674445,"p95":715.6527295384142,"p99":732.3697721707562}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:02+00","p50":68.5710335,"p95":785.4231087829194,"p99":816.5957909644603}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:03+00","p50":600.3258519999999,"p95":754.5164500125784,"p99":812.4384835239601}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:04+00","p50":220.19396925,"p95":764.074723689581,"p99":783.6199675725229}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:05+00","p50":86.5598095,"p95":747.5866568598074,"p99":1394.8373230738573}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:06+00","p50":387.930116,"p95":824.2238085461345,"p99":1422.2440268075122}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:07+00","p50":655.4138634999999,"p95":808.9175085380936,"p99":819.9152349475289}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:08+00","p50":562.660739,"p95":749.6713379817321,"p99":894.0423545453721}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:09+00","p50":744.8099485,"p95":835.7262630666952,"p99":1507.0780469088897}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:10+00","p50":738.593509,"p95":824.7698238240329,"p99":844.7158693405667}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:11+00","p50":588.31341225,"p95":775.4465699183452,"p99":1282.4373771364344}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:12+00","p50":242.01334150000002,"p95":787.9302633854161,"p99":1278.1143525060786}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:13+00","p50":82.9306425,"p95":824.3198081137468,"p99":1322.8774543290301}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:14+00","p50":83.5553775,"p95":815.1334368751171,"p99":1455.1966413230143}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:15+00","p50":671.747295,"p95":858.0320427440549,"p99":1354.807620901456}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:16+00","p50":699.857814625,"p95":796.1410200463614,"p99":1492.2283868043228}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:17+00","p50":96.899547,"p95":871.9100075593578,"p99":1435.5541638533552}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:18+00","p50":637.92791375,"p95":790.1056449591965,"p99":804.3668659511566}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:19+00","p50":601.465368625,"p95":775.2521794834665,"p99":1318.9221550740283}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:20+00","p50":99.1735995,"p95":751.3207711684593,"p99":791.2067172721763}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:21+00","p50":96.675345875,"p95":810.3878734536066,"p99":1402.0698562201305}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:22+00","p50":107.38077799999999,"p95":759.3091611155386,"p99":775.8024819466953}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:23+00","p50":140.255932,"p95":697.7769375465653,"p99":1186.371807908178}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:24+00","p50":563.583800875,"p95":759.4315956733574,"p99":779.3285183312657}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:25+00","p50":141.49609700000002,"p95":605.6897342542419,"p99":1199.7610601891402}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:26+00","p50":119.09713049999999,"p95":666.9193553067882,"p99":740.0533319055186}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:27+00","p50":299.94233899999995,"p95":755.7476397948903,"p99":766.544200806315}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:28+00","p50":615.568062875,"p95":725.2923650970461,"p99":1367.9528970422175}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:29+00","p50":501.53985124999997,"p95":594.8824950281698,"p99":1090.5488719160032}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:30+00","p50":550.074116,"p95":703.7024713378715,"p99":1172.2559080063315}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:31+00","p50":443.3620095,"p95":541.2813468280783,"p99":878.1505472881489}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:32+00","p50":91.98802,"p95":669.0292171711002,"p99":888.7684250311031}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:33+00","p50":536.811613125,"p95":696.8048871795861,"p99":1139.282266761349}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:34+00","p50":599.29383575,"p95":714.7003122115418,"p99":1258.954391068933}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:35+00","p50":522.2459495,"p95":658.8783217851059,"p99":674.4149549244972}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:36+00","p50":95.91266949999999,"p95":691.0073433583452,"p99":1143.2555296529456}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:37+00","p50":621.9141595,"p95":699.8770973847377,"p99":744.9771129487686}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:38+00","p50":104.391755,"p95":734.6553045711778,"p99":786.7984468761097}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:39+00","p50":78.43131749999999,"p95":853.0549331895018,"p99":1557.352382182696}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:40+00","p50":713.119144,"p95":872.3805335340634,"p99":1572.3498037637482}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:41+00","p50":693.7826607500001,"p95":806.6288770415865,"p99":1444.2764181607358}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:42+00","p50":744.28496325,"p95":872.5478150452229,"p99":896.3830859839079}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:43+00","p50":147.81662525000002,"p95":818.1277334826766,"p99":888.2068185897377}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:44+00","p50":571.334157,"p95":652.3805408522917,"p99":663.1077606800566}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:45+00","p50":119.14563749999999,"p95":765.2784675429282,"p99":777.5126492326089}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:46+00","p50":473.55428225,"p95":769.2300093019625,"p99":1458.3460274411352}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:47+00","p50":116.103188375,"p95":628.8671917600609,"p99":654.1473500599377}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:48+00","p50":210.27037475,"p95":749.8847463606764,"p99":842.0038304443756}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:49+00","p50":632.573099375,"p95":718.3967519588701,"p99":743.4671695906488}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:50+00","p50":459.38801824999996,"p95":680.4053460796831,"p99":1260.082090199358}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:51+00","p50":514.877943375,"p95":620.3114213767221,"p99":704.1372322328984}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:52+00","p50":445.53663125,"p95":568.237054784164,"p99":931.7686444224324}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:53+00","p50":393.5033145,"p95":497.65686670969154,"p99":845.809881194355}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:54+00","p50":296.21919,"p95":458.6683174573641,"p99":749.2839294546366}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:55+00","p50":287.17872887500005,"p95":382.21576987979034,"p99":472.72862589892935}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:56+00","p50":398.8376715,"p95":494.031165883492,"p99":759.6052434576554}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:57+00","p50":433.47860975,"p95":496.64983857380054,"p99":864.2718659344063}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:58+00","p50":353.83440925,"p95":470.50095258743573,"p99":646.9075284398842}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:46:59+00","p50":268.78671175,"p95":453.97477488113543,"p99":494.042487192317}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:00+00","p50":169.60384525,"p95":585.7001353093164,"p99":608.1741824463929}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:01+00","p50":433.66588924999996,"p95":651.5389201731483,"p99":1168.0096439201318}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:02+00","p50":114.691527125,"p95":633.2042487452314,"p99":647.2442904679723}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:03+00","p50":115.33051187500001,"p95":615.9186288518791,"p99":1113.0686916127459}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:04+00","p50":84.0653475,"p95":685.9152588341708,"p99":1200.9940932294048}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:05+00","p50":595.2619445,"p95":767.4353087385167,"p99":1263.365097162118}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:06+00","p50":623.7569832500001,"p95":849.5130697790872,"p99":1350.7247930038848}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:07+00","p50":120.498008,"p95":802.7428680151816,"p99":1460.6263782823703}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:08+00","p50":95.567414125,"p95":761.7750743313234,"p99":768.6201903216519}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:09+00","p50":595.427563125,"p95":832.5773960302434,"p99":1365.8852925794238}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:10+00","p50":115.759408875,"p95":673.2052176371664,"p99":695.8486761165066}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:11+00","p50":82.515091375,"p95":674.9812851322604,"p99":1068.9637434811114}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:12+00","p50":578.435672875,"p95":737.242101488435,"p99":1288.2537798161034}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:13+00","p50":643.106219,"p95":782.3824376498073,"p99":1355.285669870819}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:14+00","p50":101.62573162499999,"p95":757.3006189474809,"p99":781.3604936933605}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:15+00","p50":115.9472585,"p95":789.5953716125445,"p99":819.1870230710501}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:16+00","p50":116.89676949999999,"p95":662.3854929652628,"p99":1202.1438368951683}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:17+00","p50":80.28190000000001,"p95":719.2535055489619,"p99":1230.7422494297814}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:18+00","p50":536.96540875,"p95":747.9567612489409,"p99":1343.2836187939358}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:19+00","p50":103.37318775,"p95":669.1000824948275,"p99":1114.936781253652}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:20+00","p50":608.3634832500001,"p95":698.8214207666379,"p99":1132.7459026683625}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:21+00","p50":570.7475704999999,"p95":693.2945956845451,"p99":713.3422798048516}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:22+00","p50":97.66945612500001,"p95":665.1729531339365,"p99":1085.3988397469288}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:23+00","p50":97.2767315,"p95":669.521162371227,"p99":754.8304644977798}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:24+00","p50":109.4852255,"p95":769.226698482621,"p99":784.3624675670079}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:25+00","p50":128.41331474999998,"p95":624.6457007438178,"p99":650.5311066878462}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:26+00","p50":509.057724,"p95":647.3652417942295,"p99":654.5620322992515}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:27+00","p50":240.7177795,"p95":573.367714555741,"p99":623.5318395399356}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:28+00","p50":113.076564,"p95":658.4665549807131,"p99":709.1253027357765}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:29+00","p50":82.74750287500001,"p95":652.5855876613992,"p99":713.4283714277752}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:30+00","p50":553.005902,"p95":651.2162006346664,"p99":667.8298570509721}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:31+00","p50":651.494776,"p95":714.2459401573581,"p99":727.0816246756516}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:32+00","p50":575.690414875,"p95":761.6401511211648,"p99":1336.3385551777894}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:33+00","p50":634.9293575000002,"p95":801.5568306412588,"p99":810.4369350011143}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:34+00","p50":112.43761075,"p95":722.7541257472262,"p99":1129.3551196086883}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:35+00","p50":93.28392675,"p95":755.5850497288093,"p99":768.3332124174159}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:36+00","p50":67.885473625,"p95":882.2562893653511,"p99":892.503656662961}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:37+00","p50":705.4814974999999,"p95":820.227570021609,"p99":839.3941409797283}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:38+00","p50":141.54974900000002,"p95":786.2203973325583,"p99":850.9326722749481}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:39+00","p50":492.11495475000004,"p95":821.0086441646683,"p99":833.7416292054543}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:40+00","p50":763.3627135,"p95":855.3781406302147,"p99":922.3851257867447}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:41+00","p50":238.4347105,"p95":803.3062607974837,"p99":1438.4339078753062}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:42+00","p50":788.7190625000001,"p95":864.5141713044662,"p99":882.0696843567581}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:43+00","p50":716.594246,"p95":797.6324964362476,"p99":817.6932912032222}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:44+00","p50":109.99552824999999,"p95":751.4949949349082,"p99":767.9221400817552}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:45+00","p50":93.5002795,"p95":798.5637145100688,"p99":804.9697349355088}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:46+00","p50":417.05654925,"p95":844.8749054834979,"p99":1454.9001005208572}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:47+00","p50":387.75186349999996,"p95":765.5424031796722,"p99":817.9698935651599}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:48+00","p50":104.464174,"p95":842.788295473869,"p99":1032.0937582941137}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:49+00","p50":723.2296405,"p95":902.4163616292919,"p99":1555.7967481279502}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:50+00","p50":629.8915382499999,"p95":728.2986218643617,"p99":1431.8040030166394}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:51+00","p50":479.9069055,"p95":704.8384651550514,"p99":719.810380112854}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:52+00","p50":123.731581,"p95":679.2318008618396,"p99":691.4896535818484}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:53+00","p50":643.8250945,"p95":711.1966533549271,"p99":1294.629456621628}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:54+00","p50":688.71478475,"p95":757.7519323557692,"p99":796.9192032744961}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:55+00","p50":671.8456285,"p95":737.7910522955754,"p99":757.8293564560056}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:56+00","p50":553.792288,"p95":747.9470209500446,"p99":761.830817231491}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:57+00","p50":380.879904,"p95":624.4906196357266,"p99":1111.5014270743523}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:58+00","p50":465.4566065,"p95":602.2510905951186,"p99":901.760303634018}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:47:59+00","p50":112.9543205,"p95":507.24202709089093,"p99":527.5508170252232}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:00+00","p50":80.04090249999999,"p95":618.0598821036658,"p99":964.2528214625147}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:01+00","p50":549.682426,"p95":621.0470596738325,"p99":639.3599464962197}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:02+00","p50":124.88856475,"p95":620.6035018473634,"p99":632.0555472665868}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:03+00","p50":550.1441505,"p95":612.4393516211327,"p99":1146.3857234712382}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:04+00","p50":412.88055175,"p95":535.6977218952914,"p99":1010.1618266050548}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:05+00","p50":241.89805124999998,"p95":480.0294454990117,"p99":565.0077671132307}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:06+00","p50":309.19938975,"p95":557.2593080720204,"p99":925.1408223710914}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:07+00","p50":200.35981700000002,"p95":412.30378318191526,"p99":443.3758270422058}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:08+00","p50":214.521426,"p95":489.1687230628362,"p99":501.27048755811194}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:09+00","p50":487.6523345,"p95":592.5596788530843,"p99":631.4581933139525}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:10+00","p50":417.534031625,"p95":650.9490510904255,"p99":1142.4780949960077}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:11+00","p50":434.37756425000003,"p95":511.5344372832643,"p99":835.8355497361753}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:12+00","p50":277.31485387500004,"p95":538.3734151248196,"p99":554.0274798432184}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:13+00","p50":371.57046325,"p95":478.0362634475234,"p99":801.7308900793934}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:14+00","p50":311.8103705,"p95":356.9247454015274,"p99":511.34595991748046}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:15+00","p50":335.35749024999996,"p95":415.6892834882769,"p99":631.0998042430593}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:16+00","p50":274.6000905,"p95":389.1789680032361,"p99":430.79315238157795}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:17+00","p50":221.872556,"p95":455.55253670266364,"p99":783.6193724553285}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:18+00","p50":304.781111,"p95":451.45092772065414,"p99":534.336403091614}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:19+00","p50":327.1428465,"p95":381.1703145246973,"p99":632.626106252307}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:20+00","p50":273.30005025,"p95":411.7953636148255,"p99":435.5471754613066}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:21+00","p50":239.984005,"p95":605.5067839155705,"p99":624.6066701734604}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:22+00","p50":150.8576655,"p95":642.4235452280884,"p99":1027.0999443562011}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:23+00","p50":498.670859,"p95":705.3525027979546,"p99":762.2698651318865}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:24+00","p50":212.95178699999997,"p95":768.703919353083,"p99":784.0174459319525}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:25+00","p50":76.52326024999999,"p95":706.43353968445,"p99":1119.8985452528439}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:26+00","p50":83.245035875,"p95":757.5051178608909,"p99":828.761476679544}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:27+00","p50":314.20786062499997,"p95":806.6409730093827,"p99":1425.6951374775135}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:28+00","p50":709.5339796249999,"p95":814.5006095846198,"p99":1426.2617682852258}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:29+00","p50":113.454402625,"p95":732.4878557793858,"p99":748.8627067535674}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:30+00","p50":660.839477625,"p95":773.3054731302905,"p99":1346.2778358920905}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:31+00","p50":337.664898625,"p95":801.3159101775608,"p99":1393.9091387091944}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:32+00","p50":90.363887,"p95":786.340821278738,"p99":864.7210164364586}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:33+00","p50":72.60304,"p95":971.2812440268616,"p99":1113.8249271221514}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:34+00","p50":777.99377,"p95":985.8236826422706,"p99":998.9018441103477}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:35+00","p50":121.797462,"p95":806.6025213336068,"p99":1319.9738068045197}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:36+00","p50":136.69370350000003,"p95":857.2430621072092,"p99":1496.4879467178714}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:37+00","p50":118.815705125,"p95":815.9977423631732,"p99":849.6572761848975}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:38+00","p50":89.691594375,"p95":902.4679385172279,"p99":927.1797757571921}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:39+00","p50":103.38175325,"p95":886.8165088323526,"p99":1629.5776352622556}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:40+00","p50":98.8685985,"p95":936.0702848264666,"p99":1643.5831368246784}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:41+00","p50":455.08753575000003,"p95":918.738713649706,"p99":1724.4437055268963}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:42+00","p50":108.00764025000001,"p95":934.7884516733433,"p99":1685.575428011436}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:43+00","p50":90.538017,"p95":994.1536193502162,"p99":1062.3122429377495}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:44+00","p50":95.741310125,"p95":1045.2883064481073,"p99":1654.3001958400102}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:45+00","p50":303.0098805,"p95":983.8245739853796,"p99":1785.9007499829893}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:46+00","p50":110.78929525,"p95":1045.4875890924218,"p99":1768.191571338608}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:47+00","p50":113.16953137499999,"p95":1040.261707651156,"p99":1064.816347309103}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:48+00","p50":119.808087,"p95":1146.75371270385,"p99":1156.1874010955921}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:49+00","p50":940.4759545,"p95":1082.0757913894308,"p99":2030.596992008389}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:50+00","p50":903.62399675,"p95":974.0854127833504,"p99":1908.9599463229993}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:51+00","p50":967.9986825,"p95":1014.0176219769993,"p99":1244.7300004167882}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:52+00","p50":1021.00771175,"p95":1122.9150658056135,"p99":1227.9024109093382}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:53+00","p50":273.63448175,"p95":1026.6458572614372,"p99":1967.4131494413602}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:54+00","p50":101.86835825,"p95":1022.2227484962663,"p99":1648.58621036986}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:55+00","p50":103.42359675,"p95":1051.0772486667995,"p99":1075.4278838843761}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:56+00","p50":104.61576525000001,"p95":1079.5869794184482,"p99":1919.2970786996605}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:57+00","p50":772.60297,"p95":1086.216817286973,"p99":1105.3445035775242}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:58+00","p50":841.960704375,"p95":1043.7652286652446,"p99":1944.7447328844664}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:48:59+00","p50":626.741469,"p95":925.9409968273542,"p99":1872.8324781313677}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:00+00","p50":129.9908565,"p95":716.3045079260139,"p99":1288.739318709198}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:01+00","p50":103.53098162500001,"p95":682.6611790541072,"p99":721.5263661444963}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:02+00","p50":78.07176212499999,"p95":685.7117936245966,"p99":1243.1543442226114}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:03+00","p50":688.9759425,"p95":789.1339182396518,"p99":818.2144520472523}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:04+00","p50":556.945023625,"p95":931.2583120983447,"p99":944.8767448625664}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:05+00","p50":118.202837375,"p95":820.2989282155556,"p99":837.3513568308093}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:06+00","p50":669.164102625,"p95":783.3168688180198,"p99":1445.207574363511}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:07+00","p50":104.3986405,"p95":725.6241283809321,"p99":1267.5848221871106}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:08+00","p50":84.32877475,"p95":894.9770698771714,"p99":1454.9902229020968}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:09+00","p50":85.25501425,"p95":875.3295487135858,"p99":1590.2995779503822}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:10+00","p50":88.018027875,"p95":968.883953524386,"p99":989.7744239230609}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:11+00","p50":80.609232125,"p95":977.7881077553669,"p99":1854.7314415528851}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:12+00","p50":73.74759999999999,"p95":1031.7739584044364,"p99":1067.8899105748283}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:13+00","p50":882.24266975,"p95":959.5021686971838,"p99":993.1670179892874}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:14+00","p50":793.875368875,"p95":907.8905559107,"p99":1702.2182781260533}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:15+00","p50":775.3709235,"p95":861.2567545245771,"p99":1618.4889023017474}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:16+00","p50":629.635977375,"p95":758.448924247446,"p99":789.6678254292235}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:17+00","p50":612.08785475,"p95":672.4229918159779,"p99":1248.3076851605242}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:18+00","p50":701.824208,"p95":872.1463574468893,"p99":893.9567875690518}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:19+00","p50":120.94848675,"p95":818.1691770692132,"p99":868.935201611999}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:20+00","p50":94.27102349999998,"p95":777.899137130891,"p99":949.7966478330638}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:21+00","p50":83.100668,"p95":875.4234619999726,"p99":1527.5823871087732}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:22+00","p50":108.4198375,"p95":897.193142616882,"p99":1551.5683504057508}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:23+00","p50":94.682036125,"p95":860.615358750777,"p99":880.3414434699331}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:24+00","p50":768.994486625,"p95":876.2353815581004,"p99":1543.2590623884018}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:25+00","p50":781.7667166250001,"p95":929.9063780386118,"p99":1661.4006397330004}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:26+00","p50":745.51115525,"p95":1028.3643662159648,"p99":1716.9370744792993}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:27+00","p50":869.021291125,"p95":1046.6775355226087,"p99":1863.9796564143833}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:28+00","p50":832.08738425,"p95":889.4999674422668,"p99":1755.1346835112713}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:29+00","p50":127.93300062499999,"p95":804.2020337532523,"p99":823.8369804663682}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:30+00","p50":100.988033875,"p95":718.9385389995988,"p99":736.3277949770245}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:31+00","p50":94.85565875,"p95":764.8988084608467,"p99":794.9306844778405}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:32+00","p50":109.87539025000001,"p95":843.2342138568671,"p99":856.5836337987118}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:33+00","p50":530.54472425,"p95":736.5644176611887,"p99":770.2404992375574}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:34+00","p50":652.12492925,"p95":742.5413130316205,"p99":931.8925453907099}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:35+00","p50":111.6113925,"p95":755.8804887268492,"p99":771.2037322440224}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:36+00","p50":116.23973249999999,"p95":579.4770872289279,"p99":1082.8913469387821}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:37+00","p50":519.252801375,"p95":585.8841791381333,"p99":1076.58170186686}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:38+00","p50":582.923061,"p95":750.020758578925,"p99":774.7652954837117}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:39+00","p50":129.834048,"p95":793.8781212120749,"p99":1389.3344195340615}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:40+00","p50":586.9657627500001,"p95":670.0775303004543,"p99":1330.8206683440324}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:41+00","p50":617.31109375,"p95":748.1348105218342,"p99":1286.2253439344684}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:42+00","p50":671.0071244999999,"p95":732.5782327336553,"p99":1413.2019456798243}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:43+00","p50":387.06797875,"p95":829.1163573002138,"p99":857.2229952899771}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:44+00","p50":86.22922187500001,"p95":820.0516209151207,"p99":871.32299781712}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:45+00","p50":95.651719,"p95":733.0425748920916,"p99":760.6874874350748}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:46+00","p50":105.331855375,"p95":782.0578766796625,"p99":788.1293955987642}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:47+00","p50":125.91306300000001,"p95":674.1390620615608,"p99":719.3207408405062}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:48+00","p50":133.628932,"p95":756.9878561028617,"p99":768.321995678063}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:49+00","p50":239.2291515,"p95":696.0873804757553,"p99":709.1846221618766}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:50+00","p50":393.924321,"p95":631.7150668109515,"p99":978.0905942111605}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:51+00","p50":100.1350985,"p95":747.1028147213444,"p99":892.087395637446}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:52+00","p50":80.119784,"p95":895.3604203240058,"p99":906.2120763899293}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:53+00","p50":295.458426,"p95":816.0768729679575,"p99":1554.9800333060602}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:54+00","p50":86.04985150000002,"p95":659.1101894489277,"p99":671.0210983434475}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:55+00","p50":89.37912925,"p95":658.44207098605,"p99":1119.5332424066096}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:56+00","p50":112.025921125,"p95":781.500458887154,"p99":880.6413599011006}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:57+00","p50":125.862802,"p95":800.6059248873784,"p99":1387.020049992745}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:58+00","p50":100.4748585,"p95":1083.7542059954983,"p99":1110.311005322431}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:49:59+00","p50":791.1529419999999,"p95":1052.0417307379262,"p99":1709.1649410904686}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:00+00","p50":712.5176792499999,"p95":901.6490778713837,"p99":1650.6453527641906}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:01+00","p50":642.551613125,"p95":829.5267964778093,"p99":1484.4243326289532}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:02+00","p50":104.749961,"p95":903.1327824304748,"p99":920.0659723173409}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:03+00","p50":95.05495475,"p95":929.1321843626488,"p99":953.9353256387162}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:04+00","p50":280.56991849999997,"p95":934.7329895787964,"p99":1740.910626194353}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:05+00","p50":93.43842375,"p95":948.9514862967563,"p99":1770.7453524620057}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:06+00","p50":293.53731025,"p95":1009.7710532106111,"p99":1731.7955473814268}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:07+00","p50":776.9651105,"p95":967.9636252624828,"p99":1811.1438290942115}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:08+00","p50":640.83667625,"p95":925.9022368907686,"p99":1676.8665601124574}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:09+00","p50":789.4476215,"p95":952.6196558856735,"p99":1738.4342859717065}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:10+00","p50":714.820739,"p95":841.9031254251247,"p99":1651.9084097411326}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:11+00","p50":521.442563375,"p95":705.3171632144696,"p99":1324.7176894864026}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:12+00","p50":639.515801,"p95":700.7458547481866,"p99":1278.4302566953083}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:13+00","p50":683.3057105,"p95":792.5292455909988,"p99":1383.5130779524115}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:14+00","p50":731.87380375,"p95":820.3643402774895,"p99":1371.5457682702904}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:15+00","p50":308.214945875,"p95":800.1721363983312,"p99":832.7435022536043}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:16+00","p50":95.41449850000001,"p95":621.8878171771916,"p99":679.4292155636172}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:17+00","p50":93.949568375,"p95":768.0138640381915,"p99":824.3791715645575}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:18+00","p50":110.594532,"p95":854.4987153627155,"p99":867.0998075665019}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:19+00","p50":586.774215875,"p95":817.3130459946867,"p99":1342.5506660928468}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:20+00","p50":557.7182339999999,"p95":630.9995098405986,"p99":650.2650402873763}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:21+00","p50":87.202889,"p95":713.8587155674644,"p99":1168.7471971354141}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:22+00","p50":640.52665725,"p95":793.1996607872419,"p99":1390.6978716095784}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:23+00","p50":132.26946325,"p95":648.3281488028521,"p99":951.6345693251674}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:24+00","p50":160.08162149999998,"p95":637.6088811832724,"p99":1057.3107655371628}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:25+00","p50":192.26016375,"p95":524.9245420190991,"p99":850.469291903554}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:26+00","p50":381.78417375000004,"p95":521.5879732593357,"p99":875.6462896975136}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:27+00","p50":221.51610449999998,"p95":487.5844254232818,"p99":536.1802740206441}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:28+00","p50":210.953463,"p95":610.7389170261557,"p99":1013.0256482378893}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:29+00","p50":128.33694225,"p95":573.9862548539568,"p99":1002.696724465806}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:30+00","p50":215.7355205,"p95":650.2160672219801,"p99":1132.7537701321573}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:31+00","p50":457.25359549999996,"p95":605.7403284520896,"p99":1090.78744208395}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:32+00","p50":367.228019875,"p95":470.5058107788862,"p99":781.8830233559444}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:33+00","p50":375.24030925,"p95":415.99723371247865,"p99":444.38061062507245}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:34+00","p50":304.921029,"p95":382.23104071868323,"p99":510.26780253876115}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:35+00","p50":297.39690225000004,"p95":377.4282703921096,"p99":603.6702991270165}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:36+00","p50":276.732439625,"p95":353.94692497382397,"p99":405.9969165544574}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:37+00","p50":234.69498299999998,"p95":429.04911144353986,"p99":473.0028015145616}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:38+00","p50":438.86642475,"p95":560.9319316062794,"p99":929.5993257683983}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:39+00","p50":357.96543925000003,"p95":438.9944021965405,"p99":882.039756235819}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:40+00","p50":283.47329275000004,"p95":355.9644332269621,"p99":505.1557103795352}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:41+00","p50":241.969093,"p95":432.85629332013133,"p99":441.96072623747256}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:42+00","p50":239.978108625,"p95":425.46725042164263,"p99":659.6673333214183}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:43+00","p50":443.416979,"p95":537.754894225896,"p99":893.2604973602323}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:44+00","p50":234.1475795,"p95":481.4766555449567,"p99":669.8892911808467}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:45+00","p50":175.161103,"p95":469.23364054244325,"p99":487.5382492383871}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:46+00","p50":458.79505887499994,"p95":535.436782755597,"p99":559.6641022932832}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:47+00","p50":502.7074555,"p95":607.334698165794,"p99":1064.5740103929543}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:48+00","p50":447.339092625,"p95":562.1761792779944,"p99":892.6157066755934}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:49+00","p50":316.553235,"p95":560.4792626692589,"p99":589.5094885692815}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:50+00","p50":202.340657125,"p95":521.2590574251797,"p99":740.3048775340875}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:51+00","p50":440.115324,"p95":542.2094039367599,"p99":848.7164114582824}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:52+00","p50":324.48566074999997,"p95":432.6526184308235,"p99":454.2102072144544}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:53+00","p50":290.4834675,"p95":389.43885680308125,"p99":495.5632919055853}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:54+00","p50":390.39373,"p95":513.3351291002074,"p99":542.8290430029107}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:55+00","p50":357.56969749999996,"p95":450.46677656632596,"p99":468.1591685423641}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:56+00","p50":487.870816,"p95":570.4745929658434,"p99":729.8772204909727}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:57+00","p50":400.71176575000004,"p95":546.3358515805907,"p99":559.845250252912}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:58+00","p50":376.00485737500003,"p95":586.7317079793031,"p99":976.6037737740812}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:50:59+00","p50":364.00851475,"p95":480.68783147193386,"p99":532.3782379675159}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:00+00","p50":284.85761249999996,"p95":474.15282371866715,"p99":492.7574578919909}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:01+00","p50":203.67234975000002,"p95":564.5914215489541,"p99":740.320976739527}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:02+00","p50":578.753872,"p95":652.7238223906638,"p99":1106.2095207487898}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:03+00","p50":491.449663,"p95":626.676619027724,"p99":650.4427486659785}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:04+00","p50":84.847254125,"p95":645.9125586179349,"p99":665.5865355649929}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:05+00","p50":89.641759,"p95":604.0079675356607,"p99":955.8840469553625}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:06+00","p50":106.11380750000001,"p95":653.1685827976827,"p99":720.1897306562996}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:07+00","p50":601.6485102500001,"p95":653.1006091412737,"p99":702.9452480035716}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:08+00","p50":621.8143556250001,"p95":704.354180508445,"p99":721.3159088788143}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:09+00","p50":115.97206175,"p95":603.1013242168254,"p99":1062.419569763422}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:10+00","p50":112.07383949999999,"p95":700.4719116361597,"p99":1203.261291899008}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:11+00","p50":597.950281625,"p95":758.8605716789333,"p99":1216.8859200086463}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:12+00","p50":589.135096,"p95":662.1355080637982,"p99":687.3708392935217}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:13+00","p50":467.609732,"p95":682.8946792657875,"p99":1130.4847196145645}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:14+00","p50":95.845928,"p95":841.6512347642516,"p99":856.2555189822725}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:15+00","p50":716.670476375,"p95":848.6797282963354,"p99":894.9695307906885}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:16+00","p50":88.424713,"p95":871.0218539102978,"p99":1413.0790843765997}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:17+00","p50":792.926725125,"p95":858.4841201329043,"p99":1544.2263243713194}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:18+00","p50":724.523301125,"p95":950.4331357209846,"p99":1694.8538334546533}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:19+00","p50":762.7704309999999,"p95":848.9031410275078,"p99":1473.7004894261302}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:20+00","p50":436.41407425,"p95":853.5649370082307,"p99":1316.0156547264983}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:21+00","p50":115.52632650000001,"p95":1017.3798492774257,"p99":1560.5826853904284}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:22+00","p50":109.654862,"p95":1026.6562105824044,"p99":1269.3856761200598}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:23+00","p50":805.9244457499999,"p95":979.9064123737305,"p99":1775.4783727044928}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:24+00","p50":590.560384375,"p95":860.6288774120189,"p99":1543.604587833174}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:25+00","p50":120.74508700000001,"p95":859.9307839291931,"p99":877.426450322774}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:26+00","p50":95.85280037499999,"p95":914.351248910777,"p99":1164.5171578402922}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:27+00","p50":91.77649325,"p95":887.6663869858046,"p99":1575.6873313422454}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:28+00","p50":97.5336005,"p95":901.9856477215706,"p99":1003.9006604586659}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:29+00","p50":101.17215299999998,"p95":864.4445763485127,"p99":1305.4054632400178}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:30+00","p50":119.174347375,"p95":704.8971680416506,"p99":731.24540573777}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:31+00","p50":614.6874383749999,"p95":724.9634100659467,"p99":1208.4942165697498}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:32+00","p50":502.60443000000004,"p95":843.3162884190166,"p99":1412.7628362798541}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:33+00","p50":104.301880625,"p95":687.9666589281217,"p99":704.7006019180035}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:34+00","p50":556.8220650000001,"p95":713.1945360845747,"p99":809.6985074163026}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:35+00","p50":667.10109975,"p95":741.938805730253,"p99":1208.3030852669624}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:36+00","p50":204.900803,"p95":642.7304509545784,"p99":1180.2354377952117}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:37+00","p50":612.27608625,"p95":761.3757450736545,"p99":1126.4836966918192}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:38+00","p50":572.23982525,"p95":680.1928231431449,"p99":692.6061800202725}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:39+00","p50":567.52986975,"p95":685.3349149288565,"p99":1210.1249897335094}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:40+00","p50":91.21434887499998,"p95":820.4352738082716,"p99":1138.129445420957}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:41+00","p50":77.126399625,"p95":784.2686345599245,"p99":1434.3195155966143}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:42+00","p50":106.559587,"p95":810.1408759237785,"p99":819.8384447997437}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:43+00","p50":103.274454125,"p95":906.7493627593351,"p99":951.1839114554339}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:44+00","p50":86.24355650000001,"p95":729.6120354518317,"p99":1325.9796870868345}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:45+00","p50":61.203374749999995,"p95":835.4608001256543,"p99":1376.4650406365968}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:46+00","p50":781.08166625,"p95":839.7331106899882,"p99":1483.8319265741045}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:47+00","p50":755.288991,"p95":872.6853586033602,"p99":1343.5185451792868}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:48+00","p50":710.4827115,"p95":835.3523106040394,"p99":851.2215841598917}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:49+00","p50":633.313571875,"p95":745.3368832239697,"p99":1347.6717572171237}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:50+00","p50":73.26731000000001,"p95":793.0562070957142,"p99":862.0684880441546}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:51+00","p50":841.7003857500001,"p95":952.8737680721606,"p99":968.0073316063797}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:52+00","p50":87.43300125,"p95":945.8999975670786,"p99":1668.7991379628068}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:53+00","p50":120.69861875000001,"p95":929.8220639805113,"p99":951.38850317956}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:54+00","p50":101.74409025,"p95":972.6604067092297,"p99":1638.931432530853}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:55+00","p50":100.941593,"p95":971.6112074446755,"p99":1073.809679524137}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:56+00","p50":316.47652475,"p95":1061.868387017819,"p99":1892.9658508550112}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:57+00","p50":83.9081785,"p95":1115.8619023221588,"p99":1338.0331121994325}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:58+00","p50":624.777393625,"p95":1135.0439031415985,"p99":1147.2893825344377}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:51:59+00","p50":781.2051951249999,"p95":962.4038908975821,"p99":972.0937482887888}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:00+00","p50":98.91552300000001,"p95":972.297857029345,"p99":1007.693653640646}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:01+00","p50":852.432671,"p95":1053.7322229083147,"p99":1205.0193890502815}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:02+00","p50":982.306929,"p95":1077.5785987191339,"p99":1333.0898730502206}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:03+00","p50":804.9349441250001,"p95":1080.6965556084253,"p99":1094.04309885645}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:04+00","p50":507.68278050000004,"p95":1049.2938072939053,"p99":1799.559664216693}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:05+00","p50":910.9443576250001,"p95":1004.9389604814793,"p99":1026.2516288161403}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:06+00","p50":89.0554085,"p95":1035.097197781835,"p99":1739.2883349434858}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:07+00","p50":865.6858507500001,"p95":1013.5563311046512,"p99":1787.2684047078587}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:08+00","p50":733.307052,"p95":1124.0021750845149,"p99":1881.886651234497}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:09+00","p50":101.18553275,"p95":1067.0410368586777,"p99":1081.3992857233325}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:10+00","p50":95.369913,"p95":1052.742028241631,"p99":1902.4544310200324}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:11+00","p50":97.15598299999999,"p95":1071.3602919541759,"p99":1078.5568050640793}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:12+00","p50":94.82046299999999,"p95":1130.790219684693,"p99":1964.2463546441122}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:13+00","p50":111.3744765,"p95":1116.4732573611525,"p99":2111.75610551831}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:14+00","p50":849.47227075,"p95":960.8620291521106,"p99":1907.6904703619139}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:15+00","p50":119.262326,"p95":932.8277698012889,"p99":1021.8507423688643}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:16+00","p50":807.9974951249999,"p95":896.1268624988579,"p99":1660.0523029090025}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:17+00","p50":79.73973562500001,"p95":949.8041877210776,"p99":979.0895330914916}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:18+00","p50":101.2189575,"p95":1089.696898421404,"p99":1834.540829641899}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:19+00","p50":94.649149375,"p95":1100.4473658698791,"p99":1913.4683856910938}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:20+00","p50":928.400848125,"p95":1035.7688176160636,"p99":1044.0766817838112}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:21+00","p50":122.6555565,"p95":950.1385571013143,"p99":960.7365580899238}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:22+00","p50":836.67326625,"p95":957.2258155905294,"p99":1826.6737459801884}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:23+00","p50":850.18850325,"p95":936.8108292833635,"p99":1731.7052419506588}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:24+00","p50":116.61463025,"p95":927.222176775207,"p99":969.6687541186835}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:25+00","p50":592.2823142499999,"p95":812.1642124491866,"p99":1346.1808312423896}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:26+00","p50":132.6531505,"p95":929.1380102007276,"p99":1562.1603977837658}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:27+00","p50":816.8951837500001,"p95":948.848231035155,"p99":970.0761692273164}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:28+00","p50":783.343141625,"p95":899.9226733505767,"p99":923.5410027903895}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:29+00","p50":152.787154,"p95":783.8683387000899,"p99":1506.2255456420403}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:30+00","p50":105.70765075,"p95":679.503175514115,"p99":720.9709536053796}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:31+00","p50":91.929178,"p95":755.8812889675567,"p99":764.7222895973674}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:32+00","p50":70.310186,"p95":871.9637004138655,"p99":886.402786635592}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:33+00","p50":479.40871787500004,"p95":824.9852161265376,"p99":1581.0379635592062}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:34+00","p50":90.1207385,"p95":888.4773816964864,"p99":974.8345407538033}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:35+00","p50":87.2650235,"p95":948.8940794178451,"p99":959.4873322918605}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:36+00","p50":447.94354150000004,"p95":913.6866523138384,"p99":1597.3458856856419}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:37+00","p50":646.8611275000001,"p95":765.3920434175959,"p99":1262.8876526845113}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:38+00","p50":372.172393,"p95":875.6318568318162,"p99":1398.6784930379954}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:39+00","p50":745.289261625,"p95":870.0140138492844,"p99":1486.2860874695502}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:40+00","p50":675.857412625,"p95":758.9112674551751,"p99":1306.3148468059317}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:41+00","p50":398.23661,"p95":804.00092756659,"p99":907.8365080460038}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:42+00","p50":709.8419592500002,"p95":799.6956438578407,"p99":1402.9918393048895}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:43+00","p50":70.489897375,"p95":851.9272741994785,"p99":858.5057195615977}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:44+00","p50":391.36947599999996,"p95":759.578115629076,"p99":769.1995196102866}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:45+00","p50":589.8050069999999,"p95":742.1497717005353,"p99":1140.7987156319427}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:46+00","p50":513.372756,"p95":695.6635279966359,"p99":704.8919701683897}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:47+00","p50":83.28122362500001,"p95":735.7585928463415,"p99":1308.5254713411705}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:48+00","p50":685.88467175,"p95":736.3466384905232,"p99":1351.9836708891562}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:49+00","p50":368.31249275000005,"p95":796.3081886397514,"p99":804.4151197118568}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:50+00","p50":677.7274924999999,"p95":744.4511994089127,"p99":763.340511516162}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:51+00","p50":706.737086375,"p95":794.0885978485426,"p99":1408.1633451207372}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:52+00","p50":712.498727,"p95":835.2446833249347,"p99":1063.0755830233677}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:53+00","p50":736.810219375,"p95":847.5518238347482,"p99":1505.7651084142024}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:54+00","p50":98.80729975,"p95":853.3356684531628,"p99":885.5650648690918}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:55+00","p50":92.6406035,"p95":913.7277507810719,"p99":978.1990902109233}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:56+00","p50":927.88119675,"p95":1011.4514442814849,"p99":1105.8025877064438}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:57+00","p50":309.0496225,"p95":923.5739528932534,"p99":932.5648408622475}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:58+00","p50":743.4836947499999,"p95":820.4721675028458,"p99":880.8001259287948}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:52:59+00","p50":652.2214865000001,"p95":755.5188999842694,"p99":809.1808798646592}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:00+00","p50":126.53018275,"p95":713.594129300719,"p99":729.2276712761469}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:01+00","p50":638.62691175,"p95":728.1377819628505,"p99":1274.1109005824483}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:02+00","p50":691.744254,"p95":792.9605318433521,"p99":1431.235736979889}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:03+00","p50":537.1987875,"p95":802.1479546162304,"p99":1424.2666404140161}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:04+00","p50":473.81458849999996,"p95":786.1479706905264,"p99":1478.7761906006142}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:05+00","p50":258.051573125,"p95":831.978598839066,"p99":846.0585598225111}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:06+00","p50":456.20850899999994,"p95":924.0892146114836,"p99":1558.8452717433242}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:07+00","p50":314.71049825,"p95":933.8811926031929,"p99":1707.1655658590946}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:08+00","p50":775.409857,"p95":975.4365998819809,"p99":1656.1456925538996}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:09+00","p50":110.547124,"p95":1117.181946759245,"p99":1127.8060843717299}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:10+00","p50":767.620803,"p95":1042.0406080180117,"p99":1309.4963813683921}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:11+00","p50":607.9809836249999,"p95":915.7698622526977,"p99":1570.0191333897922}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:12+00","p50":89.562387125,"p95":878.3407359979426,"p99":899.1404894498996}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:13+00","p50":88.6619585,"p95":798.0805412489797,"p99":1405.3817943287004}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:14+00","p50":668.8410852500001,"p95":819.1141733492559,"p99":824.0586315541199}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:15+00","p50":696.505823,"p95":780.1112172863503,"p99":805.3501474909916}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:16+00","p50":91.98774425,"p95":769.3707800777007,"p99":1387.9460334639662}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:17+00","p50":71.8714895,"p95":823.7975466271273,"p99":830.4677052482333}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:18+00","p50":726.003165625,"p95":917.3226810546828,"p99":1610.7282485573123}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:19+00","p50":757.7068185,"p95":899.1141407886715,"p99":938.8606314053344}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:20+00","p50":93.664991875,"p95":960.3124896953208,"p99":1554.7662746333501}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:21+00","p50":80.3998105,"p95":1027.4531707635945,"p99":1051.2466368056319}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:22+00","p50":887.13558125,"p95":960.7300995614152,"p99":1866.1168454936214}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:23+00","p50":839.1753606249999,"p95":918.4161855278194,"p99":1705.9288193379975}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:24+00","p50":124.061086625,"p95":944.9606681098404,"p99":958.4953315487709}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:25+00","p50":94.89404174999999,"p95":921.1161727413044,"p99":1720.4540224854359}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:26+00","p50":97.720673,"p95":1126.424586184653,"p99":1919.2160464139135}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:27+00","p50":110.25215374999999,"p95":1097.7463671493879,"p99":2025.5486531077186}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:28+00","p50":994.4320807500001,"p95":1146.616052295021,"p99":2018.8332108960049}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:29+00","p50":496.26118775,"p95":1032.2819606357682,"p99":1082.4820833712092}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:30+00","p50":95.26289249999999,"p95":1063.2008627639586,"p99":1089.7234669510538}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:31+00","p50":322.123466125,"p95":1084.4904861774728,"p99":1096.390176416539}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:32+00","p50":946.771260125,"p95":1043.5533155349435,"p99":1062.3142757710948}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:33+00","p50":851.4897639999999,"p95":966.8122975787838,"p99":984.5058673300371}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:34+00","p50":605.8106183750001,"p95":899.4610023085004,"p99":935.6061972991525}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:35+00","p50":112.32648675,"p95":723.7360421248254,"p99":1345.0083593776073}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:36+00","p50":66.97210525,"p95":981.2340081082191,"p99":1573.6370532984977}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:37+00","p50":803.52137725,"p95":1005.8508072635784,"p99":1688.514803863432}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:38+00","p50":780.4130411250001,"p95":901.5892244313052,"p99":1464.971402960332}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:39+00","p50":104.35563575,"p95":888.3967168170545,"p99":1480.1829200265945}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:40+00","p50":116.935572875,"p95":766.3784737596985,"p99":1348.3354501088727}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:41+00","p50":94.58685775,"p95":783.3183632932814,"p99":1435.0542866992737}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:42+00","p50":74.37139024999999,"p95":832.141426173269,"p99":1387.697732650154}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:43+00","p50":112.60688425000001,"p95":952.3259757261523,"p99":999.1723450949239}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:44+00","p50":96.874685,"p95":903.9472246608348,"p99":925.6884169324741}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:45+00","p50":125.67214562500001,"p95":900.9926918734349,"p99":1635.2506788982778}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:46+00","p50":447.05422125,"p95":882.5993304561382,"p99":893.5271466432414}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:47+00","p50":198.78578125,"p95":881.8866655181238,"p99":901.7563913143451}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:48+00","p50":99.05300975,"p95":890.7551918429438,"p99":937.1381561441841}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:49+00","p50":102.78696475,"p95":989.895956138457,"p99":1613.9550990758103}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:50+00","p50":781.9674237500001,"p95":918.0380018531887,"p99":1717.697765880185}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:51+00","p50":738.4070765,"p95":934.4725887508049,"p99":1635.4098482267714}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:52+00","p50":125.3303855,"p95":904.6347778764547,"p99":921.5545171797404}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:53+00","p50":73.19908699999999,"p95":920.6957871640775,"p99":1025.64797573954}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:54+00","p50":492.5188125,"p95":1010.546223150423,"p99":1032.46183604953}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:55+00","p50":91.60272037499999,"p95":1014.3262149656085,"p99":1040.1120103450805}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:56+00","p50":115.77108175,"p95":1185.573371161823,"p99":1360.5931665024052}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:57+00","p50":603.1743595,"p95":1221.1205456577936,"p99":2197.0458986019553}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:58+00","p50":798.686587875,"p95":1166.9248242872156,"p99":1177.7436405427027}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:53:59+00","p50":38.438286999999995,"p95":684.5901946465209,"p99":732.1470027226043}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:54:00+00","p50":26.272826777777777,"p95":44.100337771842774,"p99":51.6662716908536}, + {"metric_name":"oidc_auth_request_finalize","timestamp":"2025-02-25 14:54:01+00","p50":30.017878,"p95":43.642520646738525,"p99":44.252627}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:23:59+00","p50":1030.5,"p95":1471.4999916553497,"p99":1521.4000186920166}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:00+00","p50":2008.0,"p95":2459.1999884843826,"p99":2523.320080280304}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:01+00","p50":2776.375,"p95":3373.6999965906143,"p99":3425.1400027275085}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:02+00","p50":3573.625,"p95":4345.099996447563,"p99":4404.150163412094}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:03+00","p50":4405.75,"p95":5268.499991416931,"p99":5410.740039825439}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:04+00","p50":3806.5,"p95":6085.599892139435,"p99":6402.5200119018555}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:05+00","p50":4211.625,"p95":6667.199835300446,"p99":7129.320035934448}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:06+00","p50":3874.0,"p95":4932.749992668629,"p99":6895.422165393829}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:07+00","p50":4079.75,"p95":6469.149787962437,"p99":8872.220103740692}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:08+00","p50":3855.0,"p95":5426.799870967865,"p99":6230.580416679382}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:09+00","p50":4506.5,"p95":5912.599918842316,"p99":7290.460385322571}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:10+00","p50":4177.75,"p95":6097.499261975288,"p99":6814.990001440048}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:11+00","p50":4100.125,"p95":5687.549865782261,"p99":7297.960047721863}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:12+00","p50":4172.0,"p95":5892.998918533325,"p99":7782.800015449524}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:13+00","p50":3922.75,"p95":4932.19998550415,"p99":5516.360263824463}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:14+00","p50":3931.625,"p95":5025.399993181229,"p99":6465.961674690247}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:15+00","p50":4126.5,"p95":5208.399711608887,"p99":5782.400260925293}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:16+00","p50":4052.0,"p95":4801.499925971031,"p99":5225.650760889053}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:17+00","p50":4097.75,"p95":4828.199954509735,"p99":5244.390195608139}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:18+00","p50":4175.0,"p95":4931.399954915047,"p99":5240.9202489852905}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:19+00","p50":4322.625,"p95":5171.699978470802,"p99":5579.3506581783295}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:20+00","p50":4379.125,"p95":5043.9499569535255,"p99":5381.400269508362}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:21+00","p50":4284.625,"p95":4718.549998342991,"p99":4893.400185585022}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:22+00","p50":4331.5,"p95":4954.699956297874,"p99":5118.540277004242}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:23+00","p50":4196.25,"p95":4875.899942040443,"p99":5322.74011182785}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:24+00","p50":4142.25,"p95":4740.399970412254,"p99":5309.080072402954}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:25+00","p50":4177.125,"p95":4768.44999474287,"p99":5276.780036449432}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:26+00","p50":4097.25,"p95":4826.599994778633,"p99":4900.080037593842}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:27+00","p50":4115.625,"p95":4690.299996495247,"p99":5154.210150003433}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:28+00","p50":4124.0,"p95":4587.49999833107,"p99":4650.000026702881}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:29+00","p50":4160.625,"p95":4723.4499787688255,"p99":5199.060081005096}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:30+00","p50":4166.875,"p95":4744.0,"p99":4809.6000118255615}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:31+00","p50":4103.375,"p95":4678.549963533878,"p99":4727.800030708313}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:32+00","p50":4049.25,"p95":4669.399996519089,"p99":4776.320045948029}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:33+00","p50":3930.5,"p95":4534.399989128113,"p99":4964.660097122192}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:34+00","p50":3873.625,"p95":4548.999992609024,"p99":4848.9504153728485}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:35+00","p50":3904.75,"p95":4509.249989926815,"p99":5025.110211133957}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:36+00","p50":3788.5,"p95":4529.999962806702,"p99":4969.6200342178345}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:37+00","p50":3797.5,"p95":4326.699987649918,"p99":4766.720333099365}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:38+00","p50":3875.5,"p95":4334.1999942064285,"p99":4441.9600648880005}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:39+00","p50":3803.0,"p95":4303.399992465973,"p99":4540.720024108887}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:40+00","p50":3755.0,"p95":4337.999959468842,"p99":4739.600141048431}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:41+00","p50":3797.0,"p95":4016.999990582466,"p99":4159.000075340271}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:42+00","p50":3695.0,"p95":4004.6999700069427,"p99":4127.5001764297485}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:43+00","p50":3921.25,"p95":4142.49999165535,"p99":4234.400218963623}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:44+00","p50":3935.125,"p95":4178.249990642071,"p99":4450.860002994537}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:45+00","p50":4021.5,"p95":4187.19998550415,"p99":4267.720020294189}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:46+00","p50":3904.75,"p95":4306.249998033047,"p99":4499.000220298767}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:47+00","p50":3834.5,"p95":4182.249994456768,"p99":4451.000029563904}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:48+00","p50":3889.25,"p95":4186.4999849796295,"p99":4360.400005340576}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:49+00","p50":3903.0,"p95":4059.749991238117,"p99":4141.8801345825195}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:50+00","p50":4043.25,"p95":4306.599994778633,"p99":4438.560820102692}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:51+00","p50":4157.875,"p95":4378.549994528294,"p99":4795.180574893951}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:52+00","p50":4091.5,"p95":4424.499981641769,"p99":4577.900305747986}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:53+00","p50":4165.125,"p95":4291.099996685982,"p99":4579.030361890793}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:54+00","p50":4164.875,"p95":4343.249990880489,"p99":4610.130042314529}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:55+00","p50":4082.5,"p95":4315.199993610382,"p99":4658.00003194809}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:56+00","p50":4219.0,"p95":4481.0,"p99":4525.400039672852}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:57+00","p50":4226.5,"p95":4496.39999628067,"p99":4552.640008926392}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:58+00","p50":4123.875,"p95":4362.49998819828,"p99":4683.650234460831}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:24:59+00","p50":4102.75,"p95":4255.499992132187,"p99":4361.600088119507}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:00+00","p50":4103.75,"p95":4313.049998223782,"p99":4417.260036945343}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:01+00","p50":4005.5,"p95":4157.4999849796295,"p99":4333.600448608398}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:02+00","p50":4061.0,"p95":4221.799984931946,"p99":4382.000075340271}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:03+00","p50":4066.875,"p95":4370.499945998192,"p99":4525.990001440048}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:04+00","p50":3940.25,"p95":4099.0,"p99":4245.240178108215}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:05+00","p50":3883.875,"p95":4061.0499791502953,"p99":4303.370162248611}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:06+00","p50":3853.625,"p95":4061.0,"p99":4140.920011520386}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:07+00","p50":3890.0,"p95":4247.099987983704,"p99":4466.60001373291}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:08+00","p50":4015.25,"p95":4204.999990701675,"p99":4289.800271511078}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:09+00","p50":4129.25,"p95":4358.599974632263,"p99":4596.3401927948}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:10+00","p50":4144.0,"p95":4413.699996113777,"p99":4515.920024871826}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:11+00","p50":4035.75,"p95":4221.999970436096,"p99":4523.650187730789}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:12+00","p50":3910.875,"p95":4125.799973487854,"p99":4353.86003446579}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:13+00","p50":3952.0,"p95":4237.349994957447,"p99":4530.26015329361}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:14+00","p50":3952.5,"p95":4271.949997961521,"p99":4581.670119047165}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:15+00","p50":3983.0,"p95":4324.499988913536,"p99":4381.200023651123}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:16+00","p50":3941.125,"p95":4371.199992895126,"p99":4528.5503623485565}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:17+00","p50":3849.0,"p95":4337.99996471405,"p99":4483.040285110474}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:18+00","p50":3956.0,"p95":4395.249924600124,"p99":4533.450051546097}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:19+00","p50":4224.5,"p95":4910.499987125397,"p99":5161.800029754639}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:20+00","p50":4441.875,"p95":5022.499989628792,"p99":5249.5503470897675}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:21+00","p50":4471.375,"p95":4955.549943745136,"p99":5154.040370941162}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:22+00","p50":4464.25,"p95":5003.9999660253525,"p99":5427.0006194114685}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:23+00","p50":4181.125,"p95":5119.749932587147,"p99":5405.0003871917725}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:24+00","p50":4047.875,"p95":4781.44999808073,"p99":4854.5000767707825}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:25+00","p50":3996.25,"p95":4810.299998283386,"p99":5201.880340576172}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:26+00","p50":4008.25,"p95":4664.799966931343,"p99":4766.360221385956}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:27+00","p50":4045.375,"p95":4860.699989199638,"p99":4918.640051841736}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:28+00","p50":4011.75,"p95":4731.249952018261,"p99":4865.850099802017}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:29+00","p50":4015.5,"p95":4821.649995028973,"p99":5320.800238609314}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:30+00","p50":3920.5,"p95":4867.9999532699585,"p99":4942.100001335144}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:31+00","p50":3921.5,"p95":4992.099996209145,"p99":5583.490210771561}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:32+00","p50":4307.875,"p95":4992.249991834164,"p99":5725.690670251846}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:33+00","p50":3996.5,"p95":5160.799988150597,"p99":5579.9601855278015}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:34+00","p50":4146.5,"p95":5195.199965119362,"p99":5695.080584526062}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:35+00","p50":4010.625,"p95":4989.299996256828,"p99":5073.130061388016}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:36+00","p50":4075.875,"p95":4986.3999812603,"p99":5132.090638399124}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:37+00","p50":4414.25,"p95":5255.399961948395,"p99":5797.680131912231}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:38+00","p50":4082.5,"p95":5291.49999165535,"p99":5399.300044059753}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:39+00","p50":4305.5,"p95":5327.099997997284,"p99":5932.1405239105225}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:40+00","p50":4035.5,"p95":5029.599964380264,"p99":5625.201036930084}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:41+00","p50":3918.75,"p95":5076.999992132187,"p99":5185.200081825256}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:42+00","p50":3652.0,"p95":4646.999967813492,"p99":5527.000163078308}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:43+00","p50":3791.25,"p95":4578.39999294281,"p99":4651.120008468628}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:44+00","p50":3994.625,"p95":4683.149998247623,"p99":4786.560914039612}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:45+00","p50":3984.625,"p95":4829.449984014034,"p99":5254.220173358917}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:46+00","p50":4010.75,"p95":4868.299998044968,"p99":4910.580004692078}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:47+00","p50":3885.625,"p95":4618.349998056889,"p99":4737.550101041794}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:48+00","p50":3949.25,"p95":4696.849994599819,"p99":4744.9300100803375}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:49+00","p50":3778.0,"p95":4783.599998354912,"p99":5476.320606708527}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:50+00","p50":3949.5,"p95":4780.2499913573265,"p99":4800.300008296967}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:51+00","p50":4073.0,"p95":4824.149950563908,"p99":5324.210004091263}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:52+00","p50":4369.25,"p95":5044.749929726124,"p99":5396.14000749588}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:53+00","p50":4330.5,"p95":5037.199989557266,"p99":5211.760583400726}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:54+00","p50":4276.625,"p95":5003.549998104572,"p99":5313.850356340408}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:55+00","p50":4087.0,"p95":4915.499961614609,"p99":5227.700289726257}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:56+00","p50":4214.0,"p95":5021.099974870682,"p99":5171.900372505188}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:57+00","p50":4206.75,"p95":4909.349994957447,"p99":5244.290108919144}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:58+00","p50":4299.75,"p95":4801.2499205470085,"p99":5073.000325202942}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:25:59+00","p50":4097.75,"p95":4671.599968671799,"p99":5133.1200041770935}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:00+00","p50":4268.625,"p95":4687.549998104572,"p99":4708.550007581711}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:01+00","p50":4048.5,"p95":4328.999969959259,"p99":4490.000520706177}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:02+00","p50":3924.5,"p95":4113.999980211258,"p99":4293.680003166199}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:03+00","p50":3904.25,"p95":4118.499990940094,"p99":4187.80001449585}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:04+00","p50":3965.125,"p95":4130.749980986118,"p99":4357.500124454498}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:05+00","p50":3906.5,"p95":4066.9999811649323,"p99":4263.080111503601}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:06+00","p50":3939.75,"p95":4102.799996376038,"p99":4327.000144958496}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:07+00","p50":3942.75,"p95":4171.899988770485,"p99":4486.39003443718}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:08+00","p50":3853.875,"p95":4122.099996209145,"p99":4362.9101531505585}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:09+00","p50":3849.75,"p95":4137.79998588562,"p99":4201.20001411438}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:10+00","p50":3876.75,"p95":4333.5999965667725,"p99":4756.100048065186}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:11+00","p50":4069.125,"p95":4391.199992418289,"p99":4757.510395765305}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:12+00","p50":3899.5,"p95":4318.749972879887,"p99":4636.50001001358}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:13+00","p50":3799.125,"p95":4383.749961197376,"p99":4449.75003695488}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:14+00","p50":3688.0,"p95":4368.0,"p99":4795.070597410202}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:15+00","p50":3736.75,"p95":4387.1999834775925,"p99":4466.8800411224365}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:16+00","p50":3820.0,"p95":4440.699979543686,"p99":4912.040618896484}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:17+00","p50":3846.25,"p95":4517.699998140335,"p99":4910.060519218445}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:18+00","p50":3880.5,"p95":4714.199988484383,"p99":4987.320376396179}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:19+00","p50":4083.625,"p95":4919.049979388714,"p99":5437.6802587509155}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:20+00","p50":4104.5,"p95":4940.0,"p99":5539.190038442612}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:21+00","p50":4337.125,"p95":5065.299978137016,"p99":5126.160079956055}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:22+00","p50":4299.0,"p95":5138.399989128113,"p99":5472.580247879028}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:23+00","p50":4157.5,"p95":5173.299993991852,"p99":5657.800785064697}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:24+00","p50":4005.5,"p95":4916.899907588959,"p99":5245.360336303711}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:25+00","p50":3831.25,"p95":4771.199989557266,"p99":5240.000208854675}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:26+00","p50":3921.0,"p95":4608.699934720993,"p99":5159.160152435303}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:27+00","p50":3968.25,"p95":4675.799992322922,"p99":5110.410566568375}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:28+00","p50":3996.25,"p95":4773.549983799458,"p99":5205.69047665596}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:29+00","p50":4077.75,"p95":4755.799979805946,"p99":4808.960001468658}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:30+00","p50":4002.25,"p95":4718.999996423721,"p99":4819.000024318695}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:31+00","p50":3934.5,"p95":4697.999986171722,"p99":4784.400011062622}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:32+00","p50":3974.5,"p95":4760.749939024448,"p99":5119.200053215027}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:33+00","p50":3974.5,"p95":4728.999998211861,"p99":4823.0000286102295}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:34+00","p50":3930.5,"p95":4729.699973344803,"p99":4832.500041007996}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:35+00","p50":3779.0,"p95":4650.399986743927,"p99":5093.360100746155}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:36+00","p50":3865.0,"p95":4670.54998165369,"p99":4823.360136985779}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:37+00","p50":3829.25,"p95":4575.249994456768,"p99":4643.450016260147}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:38+00","p50":3745.125,"p95":4647.499946713448,"p99":5150.19002699852}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:39+00","p50":3901.75,"p95":4685.199993491173,"p99":4746.360046863556}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:40+00","p50":3582.625,"p95":4458.149986565113,"p99":4514.780003070831}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:41+00","p50":3609.25,"p95":4516.999964952469,"p99":4983.940137386322}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:42+00","p50":3880.0,"p95":4573.799982428551,"p99":5050.080144405365}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:43+00","p50":3911.0,"p95":4579.999990344048,"p99":4641.52000617981}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:44+00","p50":3983.75,"p95":4585.249990403652,"p99":4681.060082912445}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:45+00","p50":3916.0,"p95":4638.79999434948,"p99":4769.600120544434}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:46+00","p50":3850.75,"p95":4699.199974298477,"p99":5324.480092525482}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:47+00","p50":3766.75,"p95":4582.249964892864,"p99":4970.350048780441}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:48+00","p50":3894.25,"p95":4577.799968719482,"p99":4645.760025024414}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:49+00","p50":4014.5,"p95":4605.199998259544,"p99":4694.320080757141}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:50+00","p50":3913.75,"p95":4732.449975669384,"p99":5060.210444688797}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:51+00","p50":3997.625,"p95":4875.4999841451645,"p99":5056.510764837265}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:52+00","p50":3975.875,"p95":4810.199991464615,"p99":4964.610155344009}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:53+00","p50":3838.5,"p95":4584.999971032143,"p99":5131.800247192383}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:54+00","p50":3635.625,"p95":4575.499995827675,"p99":4972.250759363174}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:55+00","p50":3800.25,"p95":4669.699958324432,"p99":5190.440113067627}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:56+00","p50":3653.375,"p95":4491.399979829788,"p99":4548.440021514893}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:57+00","p50":3971.5,"p95":4599.1999616622925,"p99":4795.080368041992}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:58+00","p50":4150.0,"p95":4863.749983608723,"p99":5036.000581741333}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:26:59+00","p50":4330.5,"p95":4920.149979412556,"p99":5227.900344371796}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:00+00","p50":4187.5,"p95":4887.9999614953995,"p99":5284.000462055206}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:01+00","p50":3953.5,"p95":4573.9999804496765,"p99":4676.860001564026}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:02+00","p50":3720.25,"p95":4681.099977135658,"p99":4890.570508241653}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:03+00","p50":3820.375,"p95":4533.499980568886,"p99":4674.120118141174}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:04+00","p50":3837.5,"p95":4342.899931192398,"p99":4507.940075874329}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:05+00","p50":4100.5,"p95":4748.299998521805,"p99":4848.5600662231445}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:06+00","p50":4092.75,"p95":4892.349985897541,"p99":5255.830230474472}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:07+00","p50":3963.0,"p95":4739.249991595745,"p99":4824.620831012726}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:08+00","p50":4019.375,"p95":4945.699976801872,"p99":5495.920095443726}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:09+00","p50":4053.625,"p95":5160.9499569535255,"p99":5551.210294961929}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:10+00","p50":3875.25,"p95":4948.599933862686,"p99":5048.0400013923645}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:11+00","p50":4221.75,"p95":4929.44998639822,"p99":5432.540065288544}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:12+00","p50":3804.5,"p95":5025.39998626709,"p99":5135.500858306885}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:13+00","p50":3948.5,"p95":5096.999980926514,"p99":5133.600021362305}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:14+00","p50":3896.5,"p95":4878.099957942963,"p99":5511.3400592803955}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:15+00","p50":3855.75,"p95":4704.0,"p99":5297.800350189209}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:16+00","p50":3573.25,"p95":4849.999996423721,"p99":5033.001261711121}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:17+00","p50":3677.25,"p95":4775.299995779991,"p99":4870.22002363205}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:18+00","p50":4024.5,"p95":4744.599940896034,"p99":5297.000095844269}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:19+00","p50":4111.5,"p95":4898.499931573868,"p99":5356.800024032593}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:20+00","p50":3971.375,"p95":5104.9499297738075,"p99":5272.48051738739}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:21+00","p50":4170.375,"p95":5130.249973714352,"p99":5237.990466833115}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:22+00","p50":4229.625,"p95":5195.499989628792,"p99":5855.500124454498}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:23+00","p50":4177.0,"p95":5339.899960637093,"p99":5560.950442075729}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:24+00","p50":3996.5,"p95":5533.799990415573,"p99":6033.240209579468}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:25+00","p50":4319.125,"p95":5627.499983906746,"p99":6490.450390100479}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:26+00","p50":4661.125,"p95":5708.399993181229,"p99":6435.23012137413}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:27+00","p50":4691.0,"p95":5637.649998366833,"p99":5843.880883216858}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:28+00","p50":4026.5,"p95":5861.999992489815,"p99":5980.600018024445}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:29+00","p50":4617.75,"p95":5865.749991714954,"p99":6794.560127258301}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:30+00","p50":4725.5,"p95":5978.0,"p99":6034.120108604431}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:31+00","p50":4103.75,"p95":5863.599993228912,"p99":6663.680265426636}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:32+00","p50":4642.25,"p95":5840.24993366003,"p99":5913.210047006607}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:33+00","p50":3652.625,"p95":5668.999992132187,"p99":6459.801271438599}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:34+00","p50":4262.125,"p95":5368.1999933719635,"p99":6331.110266447067}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:35+00","p50":3527.5,"p95":5311.249969422817,"p99":6153.860055446625}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:36+00","p50":3934.0,"p95":5173.599989414215,"p99":5891.180153846741}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:37+00","p50":4116.5,"p95":5068.799966096878,"p99":5242.440198898315}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:38+00","p50":4031.0,"p95":5230.499969959259,"p99":5914.4001121521}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:39+00","p50":3418.0,"p95":4989.649994313717,"p99":5284.560175895691}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:40+00","p50":3374.0,"p95":5081.999980926514,"p99":5677.500816345215}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:41+00","p50":4183.0,"p95":5100.49998831749,"p99":5157.500060081482}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:42+00","p50":4258.0,"p95":5308.649972140789,"p99":6024.800046920776}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:43+00","p50":3950.375,"p95":5389.149988234043,"p99":6143.960193634033}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:44+00","p50":4169.75,"p95":5394.999990820885,"p99":6079.920994281769}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:45+00","p50":4266.25,"p95":5512.099962949753,"p99":6110.18029499054}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:46+00","p50":4544.5,"p95":5622.5999792814255,"p99":6291.400067806244}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:47+00","p50":3627.5,"p95":5456.199988484383,"p99":5598.720797538757}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:48+00","p50":4104.0,"p95":5441.899994850159,"p99":6312.460124969482}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:49+00","p50":4140.0,"p95":5368.999998211861,"p99":5420.0000858306885}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:50+00","p50":4036.5,"p95":5406.499990224838,"p99":6026.12092590332}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:51+00","p50":4036.75,"p95":5048.699996590614,"p99":5221.750579595566}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:52+00","p50":4218.625,"p95":5293.0499722361565,"p99":6023.950803518295}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:53+00","p50":4084.5,"p95":5266.199996232986,"p99":5986.801077365875}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:54+00","p50":4127.0,"p95":5208.199995994568,"p99":5949.380254745483}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:55+00","p50":4150.25,"p95":5058.899996876717,"p99":5794.910111188889}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:56+00","p50":3715.0,"p95":5351.749995529652,"p99":5390.500002384186}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:57+00","p50":4383.125,"p95":5603.149998247623,"p99":6327.390018224716}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:58+00","p50":4050.0,"p95":5555.399987220764,"p99":5772.72088432312}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:27:59+00","p50":4687.875,"p95":5634.299996256828,"p99":5755.29007935524}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:00+00","p50":4459.0,"p95":5667.39999628067,"p99":5808.98009967804}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:01+00","p50":4315.75,"p95":5632.49997985363,"p99":6221.5809960365295}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:02+00","p50":3458.75,"p95":5284.0,"p99":5331.040252685547}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:03+00","p50":3855.0,"p95":5323.999987483025,"p99":5434.000998497009}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:04+00","p50":4278.75,"p95":5179.1999888420105,"p99":5322.600133895874}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:05+00","p50":3616.0,"p95":5140.29999601841,"p99":5747.000796318054}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:06+00","p50":3969.0,"p95":4978.999980688095,"p99":5096.280086517334}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:07+00","p50":3567.75,"p95":5036.99998664856,"p99":5826.700222969055}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:08+00","p50":4092.5,"p95":5039.999981880188,"p99":5080.660024642944}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:09+00","p50":3891.25,"p95":4845.799979805946,"p99":5407.800741672516}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:10+00","p50":3904.375,"p95":4896.199976682663,"p99":5342.090477228165}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:11+00","p50":3644.0,"p95":4846.999996185303,"p99":4931.4000244140625}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:12+00","p50":3989.375,"p95":4795.049968183041,"p99":4889.110040426254}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:13+00","p50":3835.375,"p95":4722.8999761343,"p99":5127.500613689423}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:14+00","p50":3678.75,"p95":4616.099967598915,"p99":4950.770177125931}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:15+00","p50":3924.0,"p95":4508.499979019165,"p99":4885.8001708984375}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:16+00","p50":3992.25,"p95":4278.999976396561,"p99":4397.150092840195}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:17+00","p50":3786.375,"p95":4170.999992609024,"p99":4440.500014781952}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:18+00","p50":3912.25,"p95":4166.699995279312,"p99":4493.180190086365}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:19+00","p50":4000.5,"p95":4168.699998378754,"p99":4351.36003112793}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:20+00","p50":4084.75,"p95":4237.499972820282,"p99":4439.300050735474}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:21+00","p50":4211.5,"p95":4533.29996919632,"p99":4873.2200565338135}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:22+00","p50":4098.5,"p95":4438.399940133095,"p99":4808.520160675049}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:23+00","p50":3888.5,"p95":4279.899996638298,"p99":4642.25003361702}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:24+00","p50":4064.875,"p95":4308.749994814396,"p99":4538.750076055527}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:25+00","p50":3920.0,"p95":4333.49998664856,"p99":4422.800048828125}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:26+00","p50":3969.375,"p95":4330.44999474287,"p99":4369.690032243729}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:27+00","p50":4114.75,"p95":4614.999998450279,"p99":4728.000105381012}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:28+00","p50":4067.625,"p95":4761.749932587147,"p99":4847.200033187866}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:29+00","p50":4153.875,"p95":4607.0,"p99":4757.630115270615}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:30+00","p50":4195.5,"p95":4718.949985086918,"p99":4817.880408287048}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:31+00","p50":4163.25,"p95":4675.749994814396,"p99":4851.800409317017}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:32+00","p50":4035.5,"p95":4701.2999811172485,"p99":5156.840019226074}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:33+00","p50":4074.75,"p95":4620.249990403652,"p99":4944.590354681015}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:34+00","p50":4027.5,"p95":4585.0999982357025,"p99":4653.400239944458}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:35+00","p50":3965.0,"p95":4462.399991989136,"p99":4503.460004806519}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:36+00","p50":3857.0,"p95":4189.299983263016,"p99":4489.760377883911}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:37+00","p50":3783.75,"p95":4159.599994778633,"p99":4650.640057086945}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:38+00","p50":3824.0,"p95":4254.099994421005,"p99":4360.7200565338135}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:39+00","p50":3905.25,"p95":4185.499991178513,"p99":4276.120079040527}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:40+00","p50":3886.125,"p95":4211.0999883413315,"p99":4399.700015544891}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:41+00","p50":3871.75,"p95":4216.0,"p99":4292.0}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:42+00","p50":3873.0,"p95":4166.699967384338,"p99":4396.920112609863}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:43+00","p50":3849.25,"p95":4157.0,"p99":4378.760008811951}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:44+00","p50":3954.0,"p95":4297.999924898148,"p99":4510.000067234039}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:45+00","p50":4019.5,"p95":4201.349982082844,"p99":4411.000159263611}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:46+00","p50":3885.375,"p95":4108.249991118908,"p99":4366.480068206787}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:47+00","p50":3898.75,"p95":4311.749980986118,"p99":4512.650239229202}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:48+00","p50":4120.0,"p95":4340.599996805191,"p99":4660.320002555847}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:49+00","p50":4124.625,"p95":4286.249987065792,"p99":4482.500280857086}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:50+00","p50":4113.75,"p95":4336.04982060194,"p99":4569.160164833069}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:51+00","p50":4215.375,"p95":4420.449998319149,"p99":4500.670488119125}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:52+00","p50":4046.375,"p95":4468.499974131584,"p99":4928.150527715683}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:53+00","p50":3998.0,"p95":4281.749991238117,"p99":4342.260058879852}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:54+00","p50":4084.25,"p95":4411.399970412254,"p99":4575.400048732758}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:55+00","p50":3991.375,"p95":4236.3999927043915,"p99":4368.940148830414}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:56+00","p50":4071.0,"p95":4320.949995100498,"p99":4576.900300502777}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:57+00","p50":4208.25,"p95":4446.0999969244,"p99":4502.100012302399}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:58+00","p50":4230.125,"p95":4485.149963200092,"p99":4767.690032243729}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:28:59+00","p50":4218.0,"p95":4468.999985694885,"p99":4616.0001974105835}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:00+00","p50":4188.5,"p95":4370.0,"p99":4510.95002245903}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:01+00","p50":4019.375,"p95":4184.9499943852425,"p99":4356.480053901672}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:02+00","p50":3895.0,"p95":4153.199996232986,"p99":4244.0400557518005}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:03+00","p50":3847.0,"p95":4045.19997215271,"p99":4212.400048732758}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:04+00","p50":3855.25,"p95":4045.199992418289,"p99":4160.010016679764}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:05+00","p50":3852.0,"p95":4148.399983048439,"p99":4379.0401310920715}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:06+00","p50":3823.75,"p95":4050.4999721050262,"p99":4188.940075874329}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:07+00","p50":3811.75,"p95":4007.499940276146,"p99":4105.750039815903}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:08+00","p50":3802.5,"p95":4100.999973893166,"p99":4166.400048732758}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:09+00","p50":3828.5,"p95":4109.199978113174,"p99":4544.340469837189}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:10+00","p50":3824.25,"p95":4133.799968719482,"p99":4368.260142326355}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:11+00","p50":3821.75,"p95":4172.349994242191,"p99":4478.8904621601105}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:12+00","p50":3703.25,"p95":4124.2999856472015,"p99":4485.980067253113}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:13+00","p50":3653.125,"p95":4153.5999801158905,"p99":4232.970300912857}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:14+00","p50":3823.75,"p95":4347.499959349632,"p99":4469.500014781952}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:15+00","p50":3864.625,"p95":4464.499966740608,"p99":4698.450016260147}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:16+00","p50":3911.5,"p95":4392.149982511997,"p99":4708.920335769653}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:17+00","p50":3826.0,"p95":4473.399987697601,"p99":4526.120006561279}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:18+00","p50":3737.5,"p95":4381.599998116493,"p99":4529.080149173737}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:19+00","p50":3720.75,"p95":4373.999963760376,"p99":4458.88000869751}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:20+00","p50":3724.25,"p95":4400.8999963998795,"p99":4835.020573139191}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:21+00","p50":3838.5,"p95":4427.999960422516,"p99":4500.0}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:22+00","p50":3817.5,"p95":4343.999978542328,"p99":4414.000118732452}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:23+00","p50":3999.25,"p95":4412.999998211861,"p99":4591.000220298767}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:24+00","p50":3822.875,"p95":4386.849998176098,"p99":4574.610164880753}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:25+00","p50":4057.125,"p95":4309.599985599518,"p99":4542.250108003616}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:26+00","p50":4068.125,"p95":4384.849988400936,"p99":4581.360100746155}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:27+00","p50":4056.25,"p95":4189.999992847443,"p99":4260.000150203705}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:28+00","p50":4160.0,"p95":4308.649995028973,"p99":4476.9500596523285}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:29+00","p50":4137.0,"p95":4307.099947452545,"p99":4457.88000869751}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:30+00","p50":4057.5,"p95":4231.0,"p99":4512.000095844269}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:31+00","p50":4071.0,"p95":4309.499982714653,"p99":4356.000248908997}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:32+00","p50":3980.625,"p95":4194.249998033047,"p99":4382.700160503387}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:33+00","p50":4070.5,"p95":4280.999992251396,"p99":4358.400058269501}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:34+00","p50":4106.25,"p95":4324.9999767541885,"p99":4564.000157356262}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:35+00","p50":4047.0,"p95":4248.249991118908,"p99":4420.440062522888}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:36+00","p50":4080.375,"p95":4389.799992799759,"p99":4493.910012960434}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:37+00","p50":4047.375,"p95":4375.999993085861,"p99":4480.850106477737}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:38+00","p50":4073.0,"p95":4478.399996995926,"p99":4619.480302810669}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:39+00","p50":4132.0,"p95":4690.599972844124,"p99":5013.680380821228}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:40+00","p50":4209.75,"p95":4744.249989688396,"p99":5183.720059394836}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:41+00","p50":4120.0,"p95":4605.499996304512,"p99":4664.450016260147}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:42+00","p50":4025.75,"p95":4735.499972820282,"p99":5284.880153656006}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:43+00","p50":3887.375,"p95":4620.799993753433,"p99":5290.500062465668}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:44+00","p50":4004.125,"p95":4735.399976968765,"p99":4783.580033779144}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:45+00","p50":3968.25,"p95":4633.0,"p99":4970.320442199707}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:46+00","p50":3955.25,"p95":4741.849988400936,"p99":5288.180845737457}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:47+00","p50":3936.0,"p95":4894.799966096878,"p99":4979.880058765411}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:48+00","p50":3950.375,"p95":4843.149978458881,"p99":4932.640031814575}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:49+00","p50":4025.0,"p95":4736.799998164177,"p99":5217.760669708252}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:50+00","p50":4035.5,"p95":4780.4999742507935,"p99":4923.041488647461}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:51+00","p50":4073.0,"p95":4818.199955940247,"p99":5348.460245132446}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:52+00","p50":3961.75,"p95":4795.499990701675,"p99":4912.260043144226}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:53+00","p50":3792.625,"p95":4817.99996137619,"p99":5085.100430011749}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:54+00","p50":3977.5,"p95":4887.599956989288,"p99":5334.340029716492}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:55+00","p50":3917.25,"p95":4612.5999965667725,"p99":4765.980457305908}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:56+00","p50":4103.0,"p95":4783.799989700317,"p99":4847.360008239746}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:57+00","p50":4183.5,"p95":4852.499974131584,"p99":5344.500014781952}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:58+00","p50":4137.0,"p95":4870.999992966652,"p99":5470.360082149506}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:29:59+00","p50":4174.75,"p95":4825.599996089935,"p99":4940.300086021423}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:00+00","p50":4106.25,"p95":4907.5999965667725,"p99":5303.640266418457}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:01+00","p50":4097.5,"p95":4742.699989199638,"p99":5055.050136804581}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:02+00","p50":3952.5,"p95":4869.899980068207,"p99":5050.340120315552}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:03+00","p50":3949.0,"p95":4716.0,"p99":4905.760117530823}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:04+00","p50":3961.875,"p95":4656.199978113174,"p99":5090.680064201355}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:05+00","p50":3904.0,"p95":4588.599987149239,"p99":5198.840079307556}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:06+00","p50":3889.0,"p95":4515.399964213371,"p99":4579.320031642914}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:07+00","p50":3863.625,"p95":4421.399978399277,"p99":4485.860020160675}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:08+00","p50":3874.75,"p95":4472.49999833107,"p99":4531.700009346008}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:09+00","p50":3929.5,"p95":4444.9999858140945,"p99":4468.800001621246}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:10+00","p50":3931.375,"p95":4326.0,"p99":4641.110051870346}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:11+00","p50":3971.25,"p95":4324.199973106384,"p99":4396.090001344681}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:12+00","p50":3928.125,"p95":4286.099995970726,"p99":4353.100016117096}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:13+00","p50":3859.5,"p95":4135.699953198433,"p99":4338.630197286606}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:14+00","p50":3998.25,"p95":4257.099989771843,"p99":4482.350143194199}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:15+00","p50":3943.75,"p95":4217.799961447716,"p99":4384.160140991211}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:16+00","p50":3885.75,"p95":4040.5999925136566,"p99":4214.95002245903}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:17+00","p50":3971.75,"p95":4148.999982118607,"p99":4327.000020027161}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:18+00","p50":4003.375,"p95":4183.0,"p99":4424.470102071762}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:19+00","p50":4041.25,"p95":4205.0,"p99":4309.220050811768}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:20+00","p50":4082.5,"p95":4298.299987316132,"p99":4476.180059432983}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:21+00","p50":4216.5,"p95":4434.999990701675,"p99":4521.0}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:22+00","p50":4202.375,"p95":4487.249998271465,"p99":4799.0000829696655}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:23+00","p50":4192.25,"p95":4436.299998283386,"p99":4737.960159301758}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:24+00","p50":4200.5,"p95":4474.999979257584,"p99":4643.000110626221}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:25+00","p50":4178.5,"p95":4399.099962949753,"p99":4608.40002822876}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:26+00","p50":4148.625,"p95":4325.0,"p99":4519.350020170212}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:27+00","p50":4088.625,"p95":4286.549994528294,"p99":4369.610018968582}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:28+00","p50":4088.5,"p95":4235.699996590614,"p99":4420.870055913925}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:29+00","p50":4064.5,"p95":4269.49998664856,"p99":4461.700019836426}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:30+00","p50":3982.75,"p95":4208.499990701675,"p99":4280.160020828247}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:31+00","p50":3982.75,"p95":4155.49999165535,"p99":4279.300110816956}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:32+00","p50":3972.875,"p95":4160.549994528294,"p99":4394.040192604065}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:33+00","p50":3940.375,"p95":4253.799971580505,"p99":4424.090012788773}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:34+00","p50":3974.875,"p95":4348.499980092049,"p99":4463.570125818253}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:35+00","p50":3934.5,"p95":4185.799996614456,"p99":4293.6400446891785}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:36+00","p50":3900.625,"p95":4178.149986565113,"p99":4283.390078306198}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:37+00","p50":3877.75,"p95":4218.599962234497,"p99":4462.440170288086}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:38+00","p50":4043.75,"p95":4300.799978256226,"p99":4676.280414581299}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:39+00","p50":3894.0,"p95":4277.0,"p99":4581.440048217773}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:40+00","p50":3884.125,"p95":4247.699988484383,"p99":4335.670004606247}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:41+00","p50":3808.625,"p95":4272.999955654144,"p99":4451.250169992447}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:42+00","p50":3876.125,"p95":4147.149979412556,"p99":4380.860302448273}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:43+00","p50":3870.0,"p95":4108.599980831146,"p99":4418.320002555847}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:44+00","p50":3940.0,"p95":4220.849962174892,"p99":4498.97009396553}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:45+00","p50":3918.0,"p95":4238.499980568886,"p99":4326.970048189163}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:46+00","p50":3814.5,"p95":4070.9999918937683,"p99":4315.600019454956}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:47+00","p50":3741.0,"p95":4018.7999798059464,"p99":4118.360023498535}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:48+00","p50":3593.0,"p95":4075.1999942064285,"p99":4135.680016994476}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:49+00","p50":3794.0,"p95":4124.999996185303,"p99":4215.70011138916}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:50+00","p50":3747.5,"p95":4115.899981975555,"p99":4475.560173034668}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:51+00","p50":3706.0,"p95":4156.999982595444,"p99":4273.800515174866}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:52+00","p50":3869.0,"p95":4477.2999967336655,"p99":4651.890330553055}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:53+00","p50":3958.375,"p95":4527.099989056587,"p99":4587.430027723312}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:54+00","p50":4036.875,"p95":4557.949987232685,"p99":4877.880005836487}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:55+00","p50":4074.25,"p95":4425.999982118607,"p99":4603.00012588501}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:56+00","p50":3955.0,"p95":4462.299996972084,"p99":4513.070010900497}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:57+00","p50":4260.5,"p95":4544.3999898433685,"p99":4606.920574188232}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:58+00","p50":4136.75,"p95":4575.0,"p99":4687.000137329102}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:30:59+00","p50":4224.5,"p95":4512.3999791145325,"p99":4708.5603675842285}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:00+00","p50":4165.5,"p95":4454.399949789047,"p99":4780.800324440002}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:01+00","p50":4016.0,"p95":4185.99998664856,"p99":4332.200283050537}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:02+00","p50":3968.625,"p95":4197.49994456768,"p99":4570.000118255615}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:03+00","p50":3872.5,"p95":4105.1999834775925,"p99":4357.400205612183}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:04+00","p50":3868.0,"p95":4061.3999762535095,"p99":4259.760101318359}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:05+00","p50":3759.5,"p95":4000.199995994568,"p99":4062.8600368499756}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:06+00","p50":3650.5,"p95":3952.599998116493,"p99":4144.320219993591}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:07+00","p50":3851.5,"p95":4118.799937844276,"p99":4439.880021095276}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:08+00","p50":3788.75,"p95":3991.449998319149,"p99":4085.6103079319}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:09+00","p50":3872.25,"p95":4100.249971568584,"p99":4237.67005610466}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:10+00","p50":3829.0,"p95":4309.549983799458,"p99":4383.660048961639}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:11+00","p50":3917.0,"p95":4278.199988126755,"p99":4607.200284957886}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:12+00","p50":3948.0,"p95":4280.599988818169,"p99":4481.120008945465}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:13+00","p50":3947.375,"p95":4160.9499943852425,"p99":4417.090019464493}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:14+00","p50":3944.625,"p95":4196.249994456768,"p99":4522.050028085709}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:15+00","p50":4120.0,"p95":4340.899998426437,"p99":4536.580039024353}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:16+00","p50":3947.25,"p95":4361.749926149845,"p99":4454.7600202560425}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:17+00","p50":3827.0,"p95":4169.799984335899,"p99":4493.760200500488}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:18+00","p50":4009.625,"p95":4381.649989068508,"p99":4576.830071210861}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:19+00","p50":4145.875,"p95":4400.399986743927,"p99":4610.010120630264}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:20+00","p50":4062.0,"p95":4448.399961709976,"p99":4772.720164299011}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:21+00","p50":4260.125,"p95":4697.89997446537,"p99":4918.440075874329}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:22+00","p50":4129.5,"p95":4715.799978971481,"p99":4812.010514497757}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:23+00","p50":4073.5,"p95":4626.599996328354,"p99":4990.680378913879}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:24+00","p50":3938.625,"p95":4515.799951076508,"p99":4640.020061969757}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:25+00","p50":3960.375,"p95":4377.399993181229,"p99":4578.700286388397}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:26+00","p50":3898.125,"p95":4455.799973487854,"p99":4711.2502319812775}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:27+00","p50":3996.5,"p95":4448.39999294281,"p99":4852.080570220947}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:28+00","p50":4154.75,"p95":4422.849978148937,"p99":4646.360005378723}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:29+00","p50":4087.0,"p95":4450.999942779541,"p99":4538.3000411987305}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:30+00","p50":3999.0,"p95":4275.999996185303,"p99":4446.10001373291}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:31+00","p50":3869.5,"p95":4140.199892640114,"p99":4570.080186843872}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:32+00","p50":3763.0,"p95":4027.099962949753,"p99":4248.460103034973}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:33+00","p50":3797.75,"p95":4158.599996089935,"p99":4357.600015640259}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:34+00","p50":3944.0,"p95":4232.399951934814,"p99":4490.100048065186}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:35+00","p50":3881.0,"p95":4183.9999878406525,"p99":4222.400004863739}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:36+00","p50":3751.875,"p95":4254.699996113777,"p99":4579.400031089783}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:37+00","p50":3740.5,"p95":4252.3999980688095,"p99":4615.680094242096}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:38+00","p50":3790.375,"p95":4328.949995100498,"p99":4759.520135879517}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:39+00","p50":3852.5,"p95":4314.499975800514,"p99":4431.800492286682}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:40+00","p50":3985.0,"p95":4447.599992275238,"p99":4867.600069522858}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:41+00","p50":3916.875,"p95":4365.599985599518,"p99":4665.940152645111}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:42+00","p50":3999.75,"p95":4416.199990272522,"p99":4794.060037612915}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:43+00","p50":4117.75,"p95":4542.599976301193,"p99":4642.56024646759}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:44+00","p50":4047.875,"p95":4389.699989199638,"p99":4681.99014544487}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:45+00","p50":4092.0,"p95":4385.999997973442,"p99":4504.800001621246}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:46+00","p50":4006.25,"p95":4182.599993228912,"p99":4299.12012052536}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:47+00","p50":3900.5,"p95":4023.0,"p99":4165.880132675171}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:48+00","p50":3894.375,"p95":4151.749998152256,"p99":4371.550249814987}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:49+00","p50":3882.0,"p95":4162.199977397919,"p99":4280.5200843811035}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:50+00","p50":3913.0,"p95":4207.799986481667,"p99":4447.160203933716}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:51+00","p50":3969.125,"p95":4172.999930858612,"p99":4415.80021572113}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:52+00","p50":3892.5,"p95":4356.599980831146,"p99":4572.040088176727}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:53+00","p50":3978.5,"p95":4367.199996471405,"p99":4435.3003034591675}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:54+00","p50":4041.0,"p95":4450.199939727783,"p99":4810.080149173737}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:55+00","p50":4015.75,"p95":4471.999996423721,"p99":4843.000158786774}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:56+00","p50":4078.5,"p95":4539.199996948242,"p99":4647.800231933594}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:57+00","p50":4154.375,"p95":4515.099996685982,"p99":4615.960180282593}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:58+00","p50":4209.5,"p95":4546.49998152256,"p99":4586.700008869171}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:31:59+00","p50":4322.0,"p95":4783.749993622303,"p99":4898.550086736679}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:00+00","p50":4472.0,"p95":4859.099983692169,"p99":5010.800086975098}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:01+00","p50":4285.25,"p95":4562.999981880188,"p99":4658.84001159668}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:02+00","p50":4261.75,"p95":4553.299951076508,"p99":4857.160423278809}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:03+00","p50":4065.875,"p95":4481.799992799759,"p99":4768.070133924484}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:04+00","p50":3939.0,"p95":4239.249994456768,"p99":4338.400047302246}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:05+00","p50":3858.375,"p95":4183.9999833106995,"p99":4497.250031709671}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:06+00","p50":3795.25,"p95":4088.0999962091446,"p99":4146.1900136470795}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:07+00","p50":3739.5,"p95":3964.7999489307404,"p99":4136.490024805069}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:08+00","p50":3748.75,"p95":3959.1499946713448,"p99":4333.970279932022}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:09+00","p50":3857.375,"p95":4077.499996304512,"p99":4203.000029563904}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:10+00","p50":3817.625,"p95":4024.399975538254,"p99":4233.190262556076}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:11+00","p50":3815.625,"p95":4012.3499765992165,"p99":4165.970004320145}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:12+00","p50":3767.0,"p95":3917.1999942064285,"p99":4108.760003089905}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:13+00","p50":3771.75,"p95":3987.199974298477,"p99":4161.120179176331}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:14+00","p50":3833.5,"p95":4050.1999850273132,"p99":4217.500074863434}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:15+00","p50":3843.125,"p95":4031.449959695339,"p99":4117.780003070831}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:16+00","p50":3810.5,"p95":3970.2999962568283,"p99":4093.830046415329}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:17+00","p50":3797.0,"p95":4035.999992609024,"p99":4272.850063562393}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:18+00","p50":3831.25,"p95":3984.549986898899,"p99":4328.100104808807}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:19+00","p50":3856.0,"p95":4037.699998140335,"p99":4093.5000371932983}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:20+00","p50":3810.375,"p95":3985.349998295307,"p99":4098.9302713871}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:21+00","p50":3937.25,"p95":4114.49999833107,"p99":4309.200082778931}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:22+00","p50":4019.5,"p95":4216.599998116493,"p99":4345.880058765411}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:23+00","p50":3986.0,"p95":4140.699994564056,"p99":4390.360118865967}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:24+00","p50":4078.25,"p95":4316.099996447563,"p99":4411.140161991119}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:25+00","p50":3959.25,"p95":4136.999983906746,"p99":4226.000051498413}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:26+00","p50":3984.5,"p95":4296.499968290329,"p99":4697.30024433136}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:27+00","p50":3997.0,"p95":4381.799987316132,"p99":4759.100038051605}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:28+00","p50":3977.625,"p95":4486.0,"p99":4725.130026102066}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:29+00","p50":4063.625,"p95":4496.099973797798,"p99":4800.460032939911}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:30+00","p50":4010.75,"p95":4552.249991118908,"p99":4608.291035890579}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:31+00","p50":3868.25,"p95":4568.24997228384,"p99":5142.450666666031}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:32+00","p50":3853.0,"p95":4449.799992084503,"p99":5027.120384693146}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:33+00","p50":3803.25,"p95":4516.599986076355,"p99":4904.880761623383}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:34+00","p50":3850.875,"p95":4621.749983370304,"p99":5088.150557279587}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:35+00","p50":3786.25,"p95":4590.2999856472015,"p99":5244.5801820755005}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:36+00","p50":3683.875,"p95":4476.049994170666,"p99":4940.9706699848175}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:37+00","p50":3578.0,"p95":4551.499975204468,"p99":4639.700065612793}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:38+00","p50":3837.5,"p95":4585.5999965667725,"p99":5147.480079650879}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:39+00","p50":3807.625,"p95":4490.499996304512,"p99":4570.200053215027}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:40+00","p50":3739.5,"p95":4591.599982619286,"p99":4915.920477390289}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:41+00","p50":3863.25,"p95":4512.599983692169,"p99":4632.340075016022}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:42+00","p50":3871.0,"p95":4752.899966001511,"p99":4979.240087509155}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:43+00","p50":3932.75,"p95":4665.0,"p99":4753.960704803467}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:44+00","p50":4023.5,"p95":4660.399992465973,"p99":4842.840078353882}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:45+00","p50":4050.5,"p95":4665.999987483025,"p99":4985.000133037567}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:46+00","p50":3990.5,"p95":4819.599988698959,"p99":5189.760494232178}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:47+00","p50":3793.25,"p95":4637.8999979496,"p99":4711.380034446716}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:48+00","p50":3756.625,"p95":4493.549960196018,"p99":5083.560024261475}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:49+00","p50":3733.875,"p95":4509.649963080883,"p99":4903.740624904633}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:50+00","p50":3868.875,"p95":4518.649998128414,"p99":4572.930001497269}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:51+00","p50":3690.625,"p95":4580.549986898899,"p99":4665.970043420792}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:52+00","p50":3762.5,"p95":4587.499975204468,"p99":5026.800704956055}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:53+00","p50":3781.5,"p95":4480.199955940247,"p99":4745.16010427475}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:54+00","p50":3748.0,"p95":4490.399988412857,"p99":4590.560018539429}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:55+00","p50":3807.25,"p95":4585.199994921684,"p99":5090.920100212097}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:56+00","p50":3870.375,"p95":4593.0,"p99":5095.3307201862335}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:57+00","p50":3772.125,"p95":4730.0,"p99":5036.400259971619}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:58+00","p50":4082.75,"p95":4733.799915552139,"p99":5342.880004405975}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:32:59+00","p50":4052.5,"p95":4815.249942719936,"p99":5192.100144863129}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:00+00","p50":4022.5,"p95":4759.799993515015,"p99":5288.980073928833}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:01+00","p50":4005.5,"p95":4787.4999796152115,"p99":5245.360136985779}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:02+00","p50":3789.5,"p95":4456.199955940247,"p99":4593.18007850647}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:03+00","p50":3864.375,"p95":4423.249991118908,"p99":4661.920272827148}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:04+00","p50":3746.875,"p95":4380.899996161461,"p99":4494.040055274963}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:05+00","p50":3830.0,"p95":4140.1999888420105,"p99":4305.460013389587}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:06+00","p50":3809.75,"p95":4062.0999863147736,"p99":4316.2001876831055}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:07+00","p50":3722.75,"p95":3998.999960899353,"p99":4158.300007820129}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:08+00","p50":3747.25,"p95":4049.49999833107,"p99":4103.600034713745}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:09+00","p50":3882.0,"p95":4048.1499946713448,"p99":4198.320045471191}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:10+00","p50":3923.75,"p95":4140.1999834775925,"p99":4209.960001468658}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:11+00","p50":3972.625,"p95":4166.0,"p99":4343.900180339813}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:12+00","p50":3981.625,"p95":4243.699975132942,"p99":4498.890126466751}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:13+00","p50":3935.125,"p95":4239.599992513657,"p99":4321.300014972687}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:14+00","p50":3854.75,"p95":4153.599994063377,"p99":4404.8802881240845}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:15+00","p50":3809.0,"p95":4199.249972999096,"p99":4521.27010512352}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:16+00","p50":3753.75,"p95":4155.849997937679,"p99":4413.930179834366}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:17+00","p50":3732.0,"p95":3932.19997215271,"p99":4103.080107212067}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:18+00","p50":3770.25,"p95":4098.499972462654,"p99":4305.700097560883}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:19+00","p50":3689.25,"p95":4186.199967384338,"p99":4410.740236282349}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:20+00","p50":3772.25,"p95":4209.799936056137,"p99":4322.50021314621}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:21+00","p50":4043.75,"p95":4289.2499822974205,"p99":4353.750032186508}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:22+00","p50":4034.875,"p95":4265.299996256828,"p99":4331.90004491806}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:23+00","p50":4040.125,"p95":4489.0999583005905,"p99":4635.000151634216}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:24+00","p50":4052.5,"p95":4416.0,"p99":4515.160109996796}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:25+00","p50":3912.5,"p95":4366.699989914894,"p99":4669.700174808502}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:26+00","p50":3983.5,"p95":4166.199993133545,"p99":4270.300212860107}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:27+00","p50":4067.0,"p95":4233.799982428551,"p99":4339.120104789734}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:28+00","p50":4209.25,"p95":4434.0,"p99":4518.560173034668}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:29+00","p50":4234.5,"p95":4469.0,"p99":4687.500037193298}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:30+00","p50":4052.0,"p95":4279.299973964691,"p99":4384.160060882568}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:31+00","p50":3883.5,"p95":4106.44998639822,"p99":4164.790026426315}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:32+00","p50":3662.5,"p95":3866.99995136261,"p99":4143.400110244751}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:33+00","p50":3663.0,"p95":3798.199977993965,"p99":3870.0001015663147}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:34+00","p50":3737.875,"p95":3971.7999844551086,"p99":4087.3100202083588}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:35+00","p50":3780.25,"p95":3977.599996328354,"p99":4236.360023498535}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:36+00","p50":3841.375,"p95":4012.0,"p99":4228.99013209343}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:37+00","p50":3723.25,"p95":3884.8999894857407,"p99":3999.290200471878}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:38+00","p50":3785.25,"p95":4037.499991416931,"p99":4130.6602210998535}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:39+00","p50":3860.125,"p95":4091.049997985363,"p99":4283.520148277283}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:40+00","p50":3826.25,"p95":4033.2999980449677,"p99":4207.100054740906}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:41+00","p50":3758.875,"p95":4277.349994957447,"p99":4492.470111608505}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:42+00","p50":4006.25,"p95":4362.799988150597,"p99":4779.360226154327}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:43+00","p50":3941.5,"p95":4347.799966096878,"p99":4859.68026971817}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:44+00","p50":3971.0,"p95":4429.199998021126,"p99":4449.680003166199}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:45+00","p50":4004.0,"p95":4684.0,"p99":4779.500356674194}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:46+00","p50":3841.5,"p95":4735.599987983704,"p99":5164.820402145386}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:47+00","p50":3701.0,"p95":4457.599954366684,"p99":4762.8005475997925}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:48+00","p50":3872.25,"p95":4514.849944531918,"p99":4965.450006723404}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:49+00","p50":4150.0,"p95":4711.849981248379,"p99":4902.650265932083}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:50+00","p50":3839.25,"p95":4612.099994421005,"p99":5044.340611457825}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:51+00","p50":3963.375,"p95":4596.5999920368195,"p99":5144.410043001175}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:52+00","p50":4034.0,"p95":4601.999965667725,"p99":4852.200141906738}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:53+00","p50":4035.375,"p95":4561.549994528294,"p99":4953.540411472321}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:54+00","p50":4090.0,"p95":4640.199996709824,"p99":5038.840239524841}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:55+00","p50":4226.25,"p95":4770.399990558624,"p99":4842.020049095154}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:56+00","p50":4394.0,"p95":4942.999993562698,"p99":5273.900110721588}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:57+00","p50":4314.25,"p95":4887.999962806702,"p99":5368.000049591064}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:58+00","p50":4279.25,"p95":4845.849997937679,"p99":4949.9400362968445}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:33:59+00","p50":4125.75,"p95":4693.799988985062,"p99":4754.760008811951}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:00+00","p50":3975.0,"p95":4484.899998188019,"p99":4919.220346450806}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:01+00","p50":3890.5,"p95":4401.0,"p99":4745.340165138245}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:02+00","p50":3929.5,"p95":4259.199996471405,"p99":4658.380026817322}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:03+00","p50":3953.0,"p95":4358.399976968765,"p99":4599.480049133301}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:04+00","p50":3947.375,"p95":4384.749975979328,"p99":4521.30007982254}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:05+00","p50":3775.25,"p95":4359.999978303909,"p99":4587.800060749054}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:06+00","p50":3679.0,"p95":4233.199996709824,"p99":4335.480038166046}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:07+00","p50":3778.75,"p95":4290.0,"p99":4378.680011749268}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:08+00","p50":3780.5,"p95":4450.199993133545,"p99":4994.420009613037}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:09+00","p50":3969.0,"p95":4598.549997866154,"p99":4978.570114374161}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:10+00","p50":3864.5,"p95":4575.999981880188,"p99":4649.88000869751}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:11+00","p50":3791.0,"p95":4520.799996376038,"p99":4616.80001449585}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:12+00","p50":3860.5,"p95":4730.599987983704,"p99":5105.900632858276}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:13+00","p50":3817.5,"p95":4650.599986076355,"p99":4809.040767192841}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:14+00","p50":3972.75,"p95":4779.79999256134,"p99":5169.840127944946}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:15+00","p50":3746.5,"p95":4710.199995994568,"p99":4765.100008010864}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:16+00","p50":4042.125,"p95":4776.949957191944,"p99":5215.720273971558}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:17+00","p50":3768.625,"p95":4810.049986064434,"p99":4859.1500079631805}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:18+00","p50":3762.0,"p95":4681.599971294403,"p99":5169.9200229644775}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:19+00","p50":3779.375,"p95":4429.099975466728,"p99":4867.740221500397}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:20+00","p50":3620.25,"p95":4606.949944317341,"p99":4688.320026397705}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:21+00","p50":3703.125,"p95":4388.199985027313,"p99":5003.82026052475}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:22+00","p50":3727.25,"p95":4421.699958324432,"p99":4512.96000289917}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:23+00","p50":3875.25,"p95":4596.79994893074,"p99":4630.0}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:24+00","p50":3845.5,"p95":4551.199978232384,"p99":4947.640666484833}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:25+00","p50":3798.5,"p95":4540.999988555908,"p99":4974.700630187988}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:26+00","p50":3839.875,"p95":4544.149984657764,"p99":4664.000409126282}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:27+00","p50":3984.875,"p95":4845.349968969822,"p99":4937.690408945084}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:28+00","p50":3997.5,"p95":4760.349952042103,"p99":4850.790680646896}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:29+00","p50":4096.125,"p95":4728.249987065792,"p99":5155.6000118255615}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:30+00","p50":4063.125,"p95":4737.799992322922,"p99":4784.780003070831}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:31+00","p50":3750.0,"p95":4657.199995756149,"p99":5099.920909881592}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:32+00","p50":3821.25,"p95":4525.999969601631,"p99":5025.000080108643}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:33+00","p50":3526.25,"p95":4410.249998033047,"p99":4825.800704956055}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:34+00","p50":3715.125,"p95":4360.149998247623,"p99":4413.1800084114075}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:35+00","p50":3754.5,"p95":4417.999981880188,"p99":4801.800068855286}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:36+00","p50":3653.0,"p95":4356.999988555908,"p99":4730.200576782227}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:37+00","p50":3659.25,"p95":4340.2999947071075,"p99":4873.8400592803955}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:38+00","p50":3744.0,"p95":4546.899996638298,"p99":4996.980029582977}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:39+00","p50":3891.75,"p95":4519.099987983704,"p99":4923.060138702393}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:40+00","p50":3929.375,"p95":4596.899963736534,"p99":5031.8405866622925}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:41+00","p50":3831.5,"p95":4624.099957942963,"p99":5074.720073699951}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:42+00","p50":4009.625,"p95":4626.649995028973,"p99":4700.660007953644}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:43+00","p50":3808.25,"p95":4593.099987983704,"p99":5075.180072784424}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:44+00","p50":3845.5,"p95":4500.8999853134155,"p99":4555.960090637207}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:45+00","p50":3915.25,"p95":4507.349994957447,"p99":4600.810012102127}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:46+00","p50":3892.5,"p95":4662.399991989136,"p99":5012.000560760498}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:47+00","p50":3701.5,"p95":4560.799988150597,"p99":5354.6812472343445}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:48+00","p50":3899.0,"p95":4659.799976825714,"p99":6050.800478935242}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:49+00","p50":3850.5,"p95":4831.399900436401,"p99":7147.2404861450195}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:50+00","p50":3883.0,"p95":4801.7499905228615,"p99":5315.350735425949}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:51+00","p50":4263.625,"p95":4953.949998438358,"p99":5066.660017490387}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:52+00","p50":4364.25,"p95":5223.099960923195,"p99":5291.57008099556}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:53+00","p50":4163.5,"p95":5313.3999853134155,"p99":5929.120032310486}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:54+00","p50":4001.375,"p95":5105.499996066093,"p99":5768.501148700714}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:55+00","p50":3928.75,"p95":4952.0,"p99":5004.8600606918335}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:56+00","p50":3719.0,"p95":5103.04995816946,"p99":5628.410033464432}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:57+00","p50":4237.375,"p95":5057.049987733364,"p99":5707.230197668076}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:58+00","p50":4231.375,"p95":5084.499996304512,"p99":5617.500724315643}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:34:59+00","p50":4046.625,"p95":4858.6499781012535,"p99":5337.300175189972}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:00+00","p50":3772.0,"p95":4932.499989628792,"p99":5574.650211572647}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:01+00","p50":4093.875,"p95":4680.899996161461,"p99":4716.350023031235}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:02+00","p50":3817.25,"p95":4573.399984359741,"p99":4796.52028465271}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:03+00","p50":3751.875,"p95":4285.849993884563,"p99":4359.330044031143}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:04+00","p50":3715.0,"p95":4180.499979019165,"p99":4392.00016784668}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:05+00","p50":3629.25,"p95":4080.899998188019,"p99":4496.540033340454}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:06+00","p50":3723.875,"p95":4125.349998056889,"p99":4414.820444583893}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:07+00","p50":3740.5,"p95":4205.599984169006,"p99":4257.840001583099}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:08+00","p50":3760.875,"p95":4343.199993848801,"p99":4544.730754137039}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:09+00","p50":3933.25,"p95":4450.299998044968,"p99":4808.640037536621}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:10+00","p50":3904.375,"p95":4387.199957370758,"p99":4496.630373716354}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:11+00","p50":3951.0,"p95":4466.899986982346,"p99":4794.72013092041}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:12+00","p50":3829.625,"p95":4584.099995970726,"p99":4703.090143442154}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:13+00","p50":3801.5,"p95":4236.249966561794,"p99":4315.100009441376}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:14+00","p50":3756.5,"p95":4235.599996328354,"p99":4655.0005140304565}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:15+00","p50":3713.0,"p95":4283.499967575073,"p99":4601.000076293945}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:16+00","p50":3764.375,"p95":4125.549986898899,"p99":4409.030405759811}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:17+00","p50":3811.75,"p95":4293.999992847443,"p99":4380.001082897186}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:18+00","p50":3878.5,"p95":4423.899998188019,"p99":4730.660024642944}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:19+00","p50":3889.5,"p95":4526.1999942064285,"p99":4839.160435676575}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:20+00","p50":3833.25,"p95":4454.899984121323,"p99":4983.880485534668}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:21+00","p50":3794.625,"p95":4624.199985980988,"p99":4722.820412158966}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:22+00","p50":4123.0,"p95":4774.499974131584,"p99":4865.500014781952}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:23+00","p50":3996.5,"p95":4810.4999812841415,"p99":4876.95002245903}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:24+00","p50":3932.375,"p95":4599.999992609024,"p99":4664.550013303757}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:25+00","p50":3868.5,"p95":4584.1999834775925,"p99":4688.0}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:26+00","p50":3968.0,"p95":4624.799987792969,"p99":4842.40087890625}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:27+00","p50":3991.5,"p95":4941.999985694885,"p99":5063.000414848328}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:28+00","p50":4171.5,"p95":4992.199980974197,"p99":5743.440294265747}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:29+00","p50":4085.25,"p95":5033.499990224838,"p99":5375.040491104126}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:30+00","p50":4275.125,"p95":5243.849998176098,"p99":5858.750109434128}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:31+00","p50":3708.0,"p95":5302.399966955185,"p99":5458.960074901581}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:32+00","p50":4213.5,"p95":5170.999988555908,"p99":5822.4010009765625}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:33+00","p50":3490.125,"p95":5090.699796557426,"p99":5878.530118227005}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:34+00","p50":4116.125,"p95":5050.499981999397,"p99":5110.72004032135}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:35+00","p50":3826.25,"p95":4959.599971294403,"p99":5081.740136146545}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:36+00","p50":3585.875,"p95":4820.849998176098,"p99":4901.650065660477}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:37+00","p50":3860.5,"p95":4968.399994492531,"p99":5591.680011749268}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:38+00","p50":3515.875,"p95":5019.199992895126,"p99":5536.460207462311}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:39+00","p50":4234.0,"p95":5163.099989056587,"p99":5261.700014591217}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:40+00","p50":3578.25,"p95":5180.999998211861,"p99":5288.00001001358}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:41+00","p50":3645.625,"p95":5357.249990403652,"p99":5908.53088593483}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:42+00","p50":4340.5,"p95":5304.549980461597,"p99":5402.800966262817}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:43+00","p50":3720.25,"p95":5352.599987030029,"p99":6145.720127105713}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:44+00","p50":4337.25,"p95":5423.549937546253,"p99":6147.430004835129}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:45+00","p50":4158.5,"p95":5225.79999434948,"p99":5890.5209131240845}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:46+00","p50":3855.0,"p95":5103.199995994568,"p99":5667.701017379761}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:47+00","p50":3376.0,"p95":5010.0,"p99":5758.600214004517}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:48+00","p50":3909.375,"p95":4917.649983584881,"p99":5062.430027723312}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:49+00","p50":3968.0,"p95":4958.599974274635,"p99":5062.520044326782}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:50+00","p50":3442.375,"p95":4902.449980199337,"p99":5612.200115203857}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:51+00","p50":4073.25,"p95":5081.799989700317,"p99":5608.460056304932}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:52+00","p50":3627.5,"p95":5167.199996709824,"p99":5826.400092124939}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:53+00","p50":3775.75,"p95":5251.799992322922,"p99":5358.040055274963}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:54+00","p50":4138.625,"p95":5167.0,"p99":5908.450023889542}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:55+00","p50":4299.5,"p95":5252.999996185303,"p99":5798.900856018066}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:56+00","p50":3525.25,"p95":5326.249992311001,"p99":5425.020076274872}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:57+00","p50":3761.75,"p95":5267.199986457825,"p99":5423.681044101715}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:58+00","p50":4487.5,"p95":5409.099989652634,"p99":5626.480825424194}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:35:59+00","p50":4175.0,"p95":5478.149986565113,"p99":6087.730855226517}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:00+00","p50":4575.875,"p95":5416.44999474287,"p99":5466.630029439926}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:01+00","p50":4432.125,"p95":5388.099977135658,"p99":5490.430145025253}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:02+00","p50":3898.75,"p95":5309.999948263168,"p99":6057.550368070602}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:03+00","p50":4103.25,"p95":5220.0,"p99":5296.440020561218}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:04+00","p50":3936.25,"p95":4946.8999963998795,"p99":5092.340095043182}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:05+00","p50":3962.25,"p95":4920.799942612648,"p99":5429.560726642609}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:06+00","p50":3686.0,"p95":4713.099975824356,"p99":5307.360883712769}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:07+00","p50":3674.25,"p95":4727.39999628067,"p99":4928.72013092041}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:08+00","p50":3937.25,"p95":4815.199969291687,"p99":5464.5000767707825}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:09+00","p50":3978.875,"p95":4724.5999846458435,"p99":4803.060082912445}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:10+00","p50":4023.125,"p95":4732.349994242191,"p99":4767.020027637482}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:11+00","p50":3516.25,"p95":4758.749971926212,"p99":4828.650007486343}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:12+00","p50":3976.0,"p95":4860.19998562336,"p99":5705.760844707489}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:13+00","p50":3846.5,"p95":4802.999981760979,"p99":4889.80001783371}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:14+00","p50":3833.25,"p95":4742.649973809719,"p99":5155.200032234192}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:15+00","p50":3788.75,"p95":4601.799984455109,"p99":4970.640422821045}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:16+00","p50":3372.0,"p95":4700.799976825714,"p99":5059.920516014099}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:17+00","p50":3544.0,"p95":4671.999932765961,"p99":5308.270004034042}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:18+00","p50":3961.625,"p95":4990.899996876717,"p99":5194.110710859299}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:19+00","p50":4072.25,"p95":5018.899998188019,"p99":5127.800086975098}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:20+00","p50":4156.0,"p95":5117.0499984622,"p99":5282.070697546005}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:21+00","p50":4438.5,"p95":5432.699986696243,"p99":5986.9400815963745}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:22+00","p50":4368.75,"p95":5729.299957513809,"p99":5843.860033988953}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:23+00","p50":4841.0,"p95":5886.749982178211,"p99":6563.200254440308}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:24+00","p50":4478.0,"p95":5933.49998998642,"p99":6036.74001121521}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:25+00","p50":4330.5,"p95":5872.949967205524,"p99":6546.350081205368}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:26+00","p50":4738.75,"p95":6019.399987816811,"p99":6158.720721244812}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:27+00","p50":4160.75,"p95":5609.599992752075,"p99":5676.88000869751}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:28+00","p50":4555.75,"p95":5691.849995315075,"p99":5908.370903253555}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:29+00","p50":3989.0,"p95":5588.899961948395,"p99":6492.001087188721}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:30+00","p50":4278.0,"p95":5508.999996185303,"p99":6325.100028991699}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:31+00","p50":4215.625,"p95":5365.7999539375305,"p99":5992.660912036896}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:32+00","p50":3654.25,"p95":5198.599992752075,"p99":5274.80001449585}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:33+00","p50":3601.75,"p95":5260.249990403652,"p99":5343.920042991638}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:34+00","p50":4181.75,"p95":4979.599994778633,"p99":5703.240669727325}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:35+00","p50":3663.5,"p95":5178.499979019165,"p99":5219.700004577637}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:36+00","p50":3540.75,"p95":5082.499996304512,"p99":5203.550101995468}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:37+00","p50":4036.0,"p95":5194.0,"p99":5892.220986366272}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:38+00","p50":3905.5,"p95":5056.399989128113,"p99":5919.140062332153}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:39+00","p50":3588.375,"p95":5001.349994242191,"p99":5108.820058345795}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:40+00","p50":4206.75,"p95":5068.399998307228,"p99":5502.560077190399}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:41+00","p50":4142.25,"p95":5048.449994027615,"p99":5613.940984249115}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:42+00","p50":3670.0,"p95":5113.249993503094,"p99":5416.350452184677}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:43+00","p50":4432.0,"p95":5181.599960446358,"p99":5285.440048217773}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:44+00","p50":3911.5,"p95":5309.899994850159,"p99":5481.560035705566}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:45+00","p50":4228.25,"p95":5336.4999388456345,"p99":5858.280052185059}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:46+00","p50":3901.5,"p95":4979.799975395203,"p99":5404.620785713196}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:47+00","p50":3849.0,"p95":4789.099955677986,"p99":5395.840016365051}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:48+00","p50":3903.0,"p95":4651.399993419647,"p99":4764.440048694611}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:49+00","p50":3821.125,"p95":4650.0,"p99":4949.300523281097}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:50+00","p50":3875.25,"p95":4579.099994421005,"p99":5077.5800104141235}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:51+00","p50":3925.25,"p95":4726.599974632263,"p99":4930.380117416382}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:52+00","p50":3835.25,"p95":4728.699958324432,"p99":4796.980001449585}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:53+00","p50":3802.375,"p95":4491.39984869957,"p99":5060.140729427338}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:54+00","p50":3941.375,"p95":4651.999985218048,"p99":5102.350521802902}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:55+00","p50":3666.125,"p95":4560.999979257584,"p99":4630.500013828278}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:56+00","p50":3892.0,"p95":4561.9999541044235,"p99":4907.640270233154}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:57+00","p50":4087.0,"p95":4605.449968516827,"p99":4742.240641593933}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:58+00","p50":4103.625,"p95":4598.999993085861,"p99":4681.3500373363495}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:36:59+00","p50":4132.5,"p95":4611.199996471405,"p99":4833.5802526474}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:00+00","p50":4035.0,"p95":4423.199995994568,"p99":4492.48002243042}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:01+00","p50":3950.125,"p95":4391.699996113777,"p99":4516.400031089783}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:02+00","p50":3808.25,"p95":4147.999974966049,"p99":4325.000575065613}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:03+00","p50":3741.0,"p95":4050.1999868154526,"p99":4340.040018081665}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:04+00","p50":3802.0,"p95":3949.1999962329865,"p99":4013.040018081665}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:05+00","p50":3848.625,"p95":4014.4999960660934,"p99":4094.3500487804413}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:06+00","p50":3807.0,"p95":4018.9999982118607,"p99":4224.000236034393}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:07+00","p50":3829.25,"p95":4053.4499940276146,"p99":4302.890132188797}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:08+00","p50":3832.5,"p95":4177.199996709824,"p99":4317.520225048065}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:09+00","p50":4018.5,"p95":4309.999944925308,"p99":4509.6000146865845}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:10+00","p50":3936.5,"p95":4432.849994599819,"p99":4714.030139684677}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:11+00","p50":3960.125,"p95":4379.799992322922,"p99":4472.640116691589}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:12+00","p50":3946.0,"p95":4474.999977111816,"p99":4650.400207519531}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:13+00","p50":3785.75,"p95":4335.299977064133,"p99":4451.0404262542725}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:14+00","p50":3798.0,"p95":4280.099997997284,"p99":4683.100008010864}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:15+00","p50":3796.375,"p95":4379.499929785728,"p99":4474.600070953369}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:16+00","p50":3795.125,"p95":4338.2999893426895,"p99":4401.920272827148}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:17+00","p50":3788.0,"p95":4281.999990105629,"p99":4379.760022163391}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:18+00","p50":3854.125,"p95":4352.649998366833,"p99":4817.300666332245}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:19+00","p50":3962.375,"p95":4497.799985408783,"p99":4564.310033559799}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:20+00","p50":3904.0,"p95":4429.399916887283,"p99":4943.840120315552}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:21+00","p50":3931.875,"p95":4488.549977838993,"p99":4774.000136375427}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:22+00","p50":4007.25,"p95":4625.899988770485,"p99":4861.780218601227}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:23+00","p50":3796.0,"p95":4501.199951648712,"p99":4868.460236549377}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:24+00","p50":3911.75,"p95":4361.499990701675,"p99":4433.7200565338135}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:25+00","p50":3822.0,"p95":4436.2999947071075,"p99":4749.920206069946}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:26+00","p50":3845.25,"p95":4478.699950218201,"p99":4694.3203048706055}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:27+00","p50":4004.5,"p95":4560.049998223782,"p99":4876.0}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:28+00","p50":4028.0,"p95":4550.899996638298,"p99":5053.210092782974}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:29+00","p50":4186.375,"p95":4740.749998390675,"p99":4835.400149345398}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:30+00","p50":4197.25,"p95":4873.099983692169,"p99":4961.880081176758}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:31+00","p50":4057.75,"p95":4824.2999856472015,"p99":4940.700024604797}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:32+00","p50":3978.5,"p95":4362.799985408783,"p99":4409.610018968582}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:33+00","p50":3826.125,"p95":4200.199992418289,"p99":4268.1900136470795}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:34+00","p50":3719.25,"p95":4004.4499980807304,"p99":4416.330609560013}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:35+00","p50":3822.5,"p95":3990.0,"p99":4053.240035533905}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:36+00","p50":3816.5,"p95":4094.7999843358994,"p99":4378.760061264038}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:37+00","p50":3842.0,"p95":4080.1999942064285,"p99":4176.48010969162}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:38+00","p50":3851.0,"p95":4040.7999963760376,"p99":4174.860010147095}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:39+00","p50":3878.125,"p95":4165.749967157841,"p99":4250.550070524216}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:40+00","p50":3975.75,"p95":4276.0,"p99":4460.000193595886}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:41+00","p50":3902.0,"p95":4234.0,"p99":4441.440085887909}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:42+00","p50":3867.375,"p95":4311.0,"p99":4543.320097923279}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:43+00","p50":4052.25,"p95":4533.999989271164,"p99":4837.000011444092}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:44+00","p50":4022.0,"p95":4480.999996185303,"p99":4871.9001541137695}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:45+00","p50":3914.75,"p95":4411.299983263016,"p99":4561.540060997009}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:46+00","p50":3883.625,"p95":4551.749991238117,"p99":4951.540165424347}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:47+00","p50":3788.25,"p95":4530.99991941452,"p99":5003.240167617798}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:48+00","p50":3792.25,"p95":4369.999998211861,"p99":4445.0000014305115}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:49+00","p50":3913.875,"p95":4534.199986934662,"p99":4623.500065326691}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:50+00","p50":4003.75,"p95":4770.99999153614,"p99":5014.360260009766}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:51+00","p50":4140.375,"p95":4955.249992311001,"p99":5012.63000369072}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:52+00","p50":4360.625,"p95":4995.0499984622,"p99":5156.030544996262}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:53+00","p50":4308.875,"p95":5029.849983155727,"p99":5338.6400718688965}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:54+00","p50":4045.5,"p95":5049.2999856472015,"p99":5098.800016403198}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:55+00","p50":4125.0,"p95":5094.899994850159,"p99":5677.660152435303}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:56+00","p50":3942.75,"p95":5090.2499822974205,"p99":5313.101073741913}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:57+00","p50":3931.5,"p95":5091.999979972839,"p99":5244.700970649719}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:58+00","p50":4284.5,"p95":5282.0,"p99":5300.680006980896}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:37:59+00","p50":4374.0,"p95":5387.0,"p99":5462.520054340363}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:00+00","p50":4423.0,"p95":5355.499990463257,"p99":5401.600021362305}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:01+00","p50":4390.25,"p95":5318.8999963998795,"p99":5357.910012960434}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:02+00","p50":3752.625,"p95":5421.599993467331,"p99":5601.930994272232}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:03+00","p50":4171.875,"p95":5534.999985218048,"p99":6329.751012563705}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:04+00","p50":4134.0,"p95":5168.499974131584,"p99":6115.701368808746}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:05+00","p50":3641.0,"p95":5121.749954998493,"p99":5639.8905918598175}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:06+00","p50":3533.25,"p95":5233.599989414215,"p99":5329.1607875823975}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:07+00","p50":4414.625,"p95":5327.949982941151,"p99":5585.380330562592}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:08+00","p50":3593.0,"p95":5225.0,"p99":5957.000073432922}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:09+00","p50":3745.625,"p95":4994.399986743927,"p99":5810.470102071762}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:10+00","p50":4201.875,"p95":5168.249956548214,"p99":5276.500605106354}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:11+00","p50":4296.5,"p95":5340.749991476536,"p99":5912.410085916519}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:12+00","p50":4123.75,"p95":5249.699898719788,"p99":5454.86079788208}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:13+00","p50":4207.375,"p95":5221.299988627434,"p99":5798.98087644577}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:14+00","p50":4300.75,"p95":5240.499980568886,"p99":5800.990586042404}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:15+00","p50":4021.875,"p95":5003.999992609024,"p99":5688.600780487061}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:16+00","p50":3974.125,"p95":4904.999984264374,"p99":5508.500204563141}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:17+00","p50":3907.0,"p95":4467.799996376038,"p99":4747.92000579834}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:18+00","p50":3849.0,"p95":4483.999998211861,"p99":4617.000050067902}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:19+00","p50":3800.5,"p95":4366.599995851517,"p99":4460.68002986908}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:20+00","p50":3755.0,"p95":4394.649983346462,"p99":4475.880067825317}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:21+00","p50":4082.25,"p95":4514.899996638298,"p99":4617.120494842529}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:22+00","p50":4141.625,"p95":4712.099927067757,"p99":5238.570173501968}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:23+00","p50":4075.875,"p95":4613.849978148937,"p99":4973.660502910614}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:24+00","p50":4117.75,"p95":4893.199978113174,"p99":5070.59006857872}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:25+00","p50":4087.5,"p95":4945.199996471405,"p99":4981.660611152649}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:26+00","p50":3976.25,"p95":4914.0,"p99":4969.400048732758}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:27+00","p50":4089.25,"p95":4930.499981641769,"p99":5100.700583457947}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:28+00","p50":4155.625,"p95":5155.599986553192,"p99":5310.480903625488}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:29+00","p50":4171.5,"p95":5227.399996042252,"p99":5770.3609166145325}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:30+00","p50":4215.0,"p95":5049.799979805946,"p99":5128.360023498535}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:31+00","p50":3727.0,"p95":5163.1999834775925,"p99":5221.520017623901}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:32+00","p50":4023.25,"p95":5076.899996161461,"p99":5715.53088593483}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:33+00","p50":3713.0,"p95":4990.199995994568,"p99":5625.781007766724}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:34+00","p50":4059.875,"p95":5056.149949371815,"p99":5609.040271759033}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:35+00","p50":3589.0,"p95":5088.599996328354,"p99":5152.680011749268}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:36+00","p50":4089.375,"p95":5014.499979138374,"p99":5584.001128196716}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:37+00","p50":3988.0,"p95":4981.0,"p99":5665.30002117157}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:38+00","p50":3495.0,"p95":5195.849966704845,"p99":5284.270012617111}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:39+00","p50":4107.875,"p95":5404.349964439869,"p99":6038.040041923523}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:40+00","p50":3712.75,"p95":5021.999992132187,"p99":5499.450719118118}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:41+00","p50":3990.25,"p95":5085.249992311001,"p99":5281.290675401688}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:42+00","p50":4315.0,"p95":5241.749973356724,"p99":5882.490211725235}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:43+00","p50":4062.375,"p95":5281.349998056889,"p99":5978.67115187645}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:44+00","p50":3830.25,"p95":5100.3999791145325,"p99":5295.520957946777}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:45+00","p50":4365.25,"p95":5167.999930262566,"p99":5665.00001001358}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:46+00","p50":3988.75,"p95":5150.299996256828,"p99":5903.95002245903}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:47+00","p50":3847.375,"p95":4891.899996161461,"p99":5571.8109657764435}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:48+00","p50":3974.5,"p95":4876.499996542931,"p99":4948.100085735321}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:49+00","p50":3955.5,"p95":5018.999974608421,"p99":5721.320106983185}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:50+00","p50":3939.0,"p95":5065.9999878406525,"p99":5135.600051879883}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:51+00","p50":3720.5,"p95":4909.899980068207,"p99":5603.700963973999}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:52+00","p50":4130.0,"p95":5061.599992752075,"p99":5121.720020294189}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:53+00","p50":3931.75,"p95":5096.249998271465,"p99":5647.450316667557}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:54+00","p50":3781.75,"p95":5210.699987769127,"p99":5277.54004240036}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:55+00","p50":4219.75,"p95":5131.499996542931,"p99":5875.850078821182}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:56+00","p50":3469.625,"p95":5327.299990057945,"p99":5531.290449380875}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:57+00","p50":4399.75,"p95":5320.49998152256,"p99":5434.900121212006}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:58+00","p50":4286.0,"p95":5417.799995064735,"p99":5519.800710678101}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:38:59+00","p50":4430.0,"p95":5298.749986231327,"p99":5950.751093626022}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:00+00","p50":3588.0,"p95":5338.999981164932,"p99":5386.9600195884705}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:01+00","p50":3603.125,"p95":5136.2999213933945,"p99":5861.040940284729}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:02+00","p50":3566.0,"p95":5233.399996995926,"p99":5988.9600348472595}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:03+00","p50":4156.375,"p95":5294.399983882904,"p99":5959.630037069321}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:04+00","p50":3597.75,"p95":5037.999979496002,"p99":5893.140349388123}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:05+00","p50":4163.0,"p95":5027.8999745845795,"p99":5711.020089149475}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:06+00","p50":3487.5,"p95":5206.9999923706055,"p99":5270.100044250488}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:07+00","p50":3872.375,"p95":4882.0,"p99":5082.800058364868}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:08+00","p50":3990.375,"p95":4804.749986231327,"p99":5222.7006640434265}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:09+00","p50":3752.25,"p95":4835.249950110912,"p99":5235.100410938263}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:10+00","p50":4137.625,"p95":4923.349994242191,"p99":5308.750115156174}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:11+00","p50":3728.25,"p95":4866.249973714352,"p99":5094.250385522842}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:12+00","p50":3830.375,"p95":4692.049986064434,"p99":4775.470014333725}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:13+00","p50":3813.5,"p95":4700.499980807304,"p99":5267.460328578949}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:14+00","p50":3784.25,"p95":4556.999995708466,"p99":4587.700036048889}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:15+00","p50":3766.625,"p95":4440.249991118908,"p99":4577.760392189026}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:16+00","p50":3509.625,"p95":4367.099970459938,"p99":4413.870032072067}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:17+00","p50":3579.5,"p95":4390.199939727783,"p99":4854.200655460358}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:18+00","p50":3648.0,"p95":4328.999988555908,"p99":4391.0}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:19+00","p50":3721.0,"p95":4389.749971926212,"p99":4521.590094327927}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:20+00","p50":3758.75,"p95":4442.7999712228775,"p99":4615.160239696503}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:21+00","p50":4007.5,"p95":4754.499983668327,"p99":4854.820018291473}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:22+00","p50":4038.75,"p95":4845.199998259544,"p99":4901.120526313782}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:23+00","p50":4051.0,"p95":4939.1999942064285,"p99":5016.040012359619}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:24+00","p50":4182.0,"p95":4905.7999930381775,"p99":5543.320115566254}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:25+00","p50":3949.875,"p95":4992.549980461597,"p99":5067.380196094513}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:26+00","p50":3912.25,"p95":4982.099996447563,"p99":5751.680949211121}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:27+00","p50":4160.5,"p95":5076.249991834164,"p99":5612.640167236328}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:28+00","p50":4049.75,"p95":5145.0,"p99":5729.000034809113}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:29+00","p50":3734.5,"p95":5179.849997937679,"p99":5605.570727586746}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:30+00","p50":4279.75,"p95":5085.649980723858,"p99":5621.361138343811}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:31+00","p50":3644.875,"p95":5022.299987912178,"p99":5114.240006446838}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:32+00","p50":3804.5,"p95":4654.399993777275,"p99":4751.440031528473}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:33+00","p50":3832.5,"p95":4499.5999846458435,"p99":5141.061004161835}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:34+00","p50":3857.0,"p95":4489.999964952469,"p99":4715.850273370743}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:35+00","p50":3545.5,"p95":4348.599983215332,"p99":4774.740673065186}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:36+00","p50":3760.875,"p95":4352.499974131584,"p99":4731.000029563904}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:37+00","p50":3772.5,"p95":4501.999971747398,"p99":4716.320219993591}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:38+00","p50":3740.5,"p95":4565.799996614456,"p99":4665.920608043671}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:39+00","p50":3996.0,"p95":4625.249995172024,"p99":5226.50003862381}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:40+00","p50":4067.0,"p95":4612.399992465973,"p99":4782.640100955963}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:41+00","p50":3947.5,"p95":4650.499998092651,"p99":4777.900047302246}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:42+00","p50":3761.0,"p95":4749.199996232986,"p99":4825.280013561249}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:43+00","p50":3802.25,"p95":4626.399997830391,"p99":4787.64012670517}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:44+00","p50":3779.5,"p95":4299.499968290329,"p99":4738.400339126587}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:45+00","p50":3906.5,"p95":4316.0,"p99":4475.200128078461}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:46+00","p50":3786.5,"p95":4070.999984741211,"p99":4399.000457763672}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:47+00","p50":3856.0,"p95":4207.149998247623,"p99":4390.460114955902}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:48+00","p50":3883.25,"p95":4188.799979805946,"p99":4354.160140991211}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:49+00","p50":3890.125,"p95":4035.099996447563,"p99":4280.4702088832855}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:50+00","p50":3888.5,"p95":4059.4999828338623,"p99":4124.10001373291}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:51+00","p50":3910.75,"p95":4121.149979412556,"p99":4317.500074863434}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:52+00","p50":3899.875,"p95":4079.249972999096,"p99":4282.750180006027}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:53+00","p50":3821.0,"p95":4043.4999980926514,"p99":4208.300117492676}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:54+00","p50":3716.0,"p95":4129.299913883209,"p99":4529.820402145386}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:55+00","p50":3893.75,"p95":4100.099996685982,"p99":4381.490078210831}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:56+00","p50":3919.0,"p95":4271.999923944473,"p99":4456.050001382828}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:57+00","p50":4046.375,"p95":4356.649995028973,"p99":4428.630043745041}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:58+00","p50":4082.0,"p95":4493.199988484383,"p99":4561.040055274963}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:39:59+00","p50":4173.5,"p95":4646.199967980385,"p99":5084.560027122498}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:00+00","p50":4080.125,"p95":4632.249990642071,"p99":4922.020320415497}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:01+00","p50":4017.25,"p95":4443.999947071075,"p99":4679.340165138245}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:02+00","p50":3956.0,"p95":4371.3999980688095,"p99":4691.760196208954}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:03+00","p50":3847.375,"p95":4031.949978888035,"p99":4065.4500076770782}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:04+00","p50":3776.5,"p95":4055.4499940276146,"p99":4173.050055742264}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:05+00","p50":3761.0,"p95":3977.2999947071075,"p99":4021.060004234314}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:06+00","p50":3721.875,"p95":3911.2499901652336,"p99":4108.350017309189}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:07+00","p50":3818.0,"p95":4018.3999853134155,"p99":4141.000073432922}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:08+00","p50":3857.0,"p95":4202.099960923195,"p99":4396.510214567184}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:09+00","p50":3772.375,"p95":4176.499996066093,"p99":4257.100009441376}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:10+00","p50":3905.0,"p95":4269.849981248379,"p99":4585.9100177288055}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:11+00","p50":3929.625,"p95":4512.699968457222,"p99":4689.380344867706}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:12+00","p50":3966.125,"p95":4465.599992990494,"p99":4565.380485057831}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:13+00","p50":3976.0,"p95":4516.799973964691,"p99":4596.220019340515}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:14+00","p50":3951.75,"p95":4629.699960947037,"p99":5020.620406150818}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:15+00","p50":3944.25,"p95":4670.0,"p99":5171.840899467468}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:16+00","p50":3866.25,"p95":4649.3999853134155,"p99":5095.40013217926}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:17+00","p50":3931.5,"p95":4607.3999980688095,"p99":5124.400007724762}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:18+00","p50":3835.375,"p95":4703.2999967336655,"p99":5212.140101909637}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:19+00","p50":4217.5,"p95":4912.999975204468,"p99":5120.200447559357}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:20+00","p50":3981.625,"p95":5050.349998056889,"p99":5440.640111923218}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:21+00","p50":4078.5,"p95":4821.44999474287,"p99":4842.24001121521}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:22+00","p50":4114.5,"p95":4866.299961447716,"p99":5064.010093927383}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:23+00","p50":3950.0,"p95":5005.599985122681,"p99":5557.100394248962}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:24+00","p50":3978.0,"p95":4752.199951648712,"p99":5408.700304985046}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:25+00","p50":3854.5,"p95":4590.799976110458,"p99":4773.770189523697}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:26+00","p50":3987.5,"p95":4839.499995708466,"p99":5099.900461196899}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:27+00","p50":3984.125,"p95":4924.749968588352,"p99":5531.35081744194}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:28+00","p50":3988.0,"p95":4791.699998140335,"p99":5343.440782546997}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:29+00","p50":3944.375,"p95":4814.749981224537,"p99":5419.250065088272}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:30+00","p50":3782.75,"p95":4946.0999982357025,"p99":5103.420453071594}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:31+00","p50":3843.75,"p95":4943.249990403652,"p99":5587.311042547226}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:32+00","p50":3742.375,"p95":4869.699996352196,"p99":4959.160040855408}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:33+00","p50":3902.0,"p95":4842.44998806715,"p99":5485.450184106827}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:34+00","p50":3930.875,"p95":4956.499948859215,"p99":5694.050209283829}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:35+00","p50":3524.25,"p95":5009.799991369247,"p99":5747.380176067352}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:36+00","p50":3426.5,"p95":4930.799992799759,"p99":5748.001008033752}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:37+00","p50":3956.5,"p95":5109.399950504303,"p99":5795.420075893402}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:38+00","p50":3417.875,"p95":4965.549995243549,"p99":4989.190008878708}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:39+00","p50":4077.25,"p95":5031.599992752075,"p99":5807.381059646606}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:40+00","p50":4008.5,"p95":5109.199991703033,"p99":5614.720990657806}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:41+00","p50":4145.5,"p95":5039.099981546402,"p99":5663.320974349976}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:42+00","p50":4001.5,"p95":5032.19996380806,"p99":5790.480005264282}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:43+00","p50":3431.5,"p95":4987.7999984025955,"p99":5153.280010223389}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:44+00","p50":4240.5,"p95":5020.599988818169,"p99":5742.800070285797}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:45+00","p50":4199.0,"p95":5178.0,"p99":5202.360065460205}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:46+00","p50":4303.75,"p95":5275.3999671936035,"p99":5853.260027885437}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:47+00","p50":3814.5,"p95":5096.049997985363,"p99":5712.480979919434}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:48+00","p50":4018.0,"p95":4971.449964702129,"p99":5537.680338859558}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:49+00","p50":3988.5,"p95":4980.199996709824,"p99":5208.360629081726}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:50+00","p50":4056.0,"p95":4693.099975824356,"p99":5280.520086288452}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:51+00","p50":4087.625,"p95":4876.699976801872,"p99":5283.570247888565}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:52+00","p50":4289.75,"p95":4996.299936771393,"p99":5420.340623855591}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:53+00","p50":4139.75,"p95":4964.499983906746,"p99":5202.500502109528}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:54+00","p50":4231.625,"p95":4886.199985027313,"p99":4973.800089836121}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:55+00","p50":4111.875,"p95":4734.249990165234,"p99":5189.850033044815}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:56+00","p50":4227.0,"p95":4820.499949932098,"p99":5050.600288391113}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:57+00","p50":4063.5,"p95":4812.499991178513,"p99":5209.760124206543}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:58+00","p50":4121.0,"p95":4805.99999332428,"p99":5157.80025100708}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:40:59+00","p50":4214.25,"p95":4781.399996519089,"p99":4894.560019493103}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:00+00","p50":4104.0,"p95":4890.399983882904,"p99":5188.650427103043}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:01+00","p50":4037.5,"p95":4660.0,"p99":4709.620055675507}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:02+00","p50":3992.25,"p95":4632.499971628189,"p99":4807.900586128235}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:03+00","p50":4008.25,"p95":4623.999964475632,"p99":5195.120017051697}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:04+00","p50":4010.0,"p95":4667.999990344048,"p99":5190.080024719238}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:05+00","p50":3946.75,"p95":4717.0,"p99":4805.860066890717}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:06+00","p50":3808.0,"p95":4477.74999409914,"p99":4544.4000062942505}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:07+00","p50":3706.5,"p95":4522.499974131584,"p99":4851.6000118255615}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:08+00","p50":3832.25,"p95":4477.7999930381775,"p99":4555.200877189636}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:09+00","p50":3853.25,"p95":4578.199990272522,"p99":5101.400077819824}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:10+00","p50":3949.25,"p95":4702.199991941452,"p99":4853.200032234192}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:11+00","p50":3889.5,"p95":4638.399987697601,"p99":4696.3400049209595}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:12+00","p50":3783.5,"p95":4550.799968719482,"p99":5084.240131378174}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:13+00","p50":3521.0,"p95":4550.749998152256,"p99":4685.800065040588}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:14+00","p50":3682.625,"p95":4508.749981224537,"p99":4571.250018358231}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:15+00","p50":3736.25,"p95":4305.899995923042,"p99":4715.040287017822}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:16+00","p50":3702.0,"p95":4349.999980926514,"p99":4917.500267028809}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:17+00","p50":3756.0,"p95":4523.149998486042,"p99":4677.53001332283}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:18+00","p50":3842.0,"p95":4572.899988055229,"p99":4668.260035037994}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:19+00","p50":3953.25,"p95":4342.0499948859215,"p99":4762.460651874542}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:20+00","p50":3989.75,"p95":4474.299987316132,"p99":4575.920078277588}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:21+00","p50":4042.125,"p95":4613.299988627434,"p99":4942.4501440525055}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:22+00","p50":3895.75,"p95":4275.0,"p99":4630.250182390213}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:23+00","p50":3898.5,"p95":4358.199971199036,"p99":4828.570205926895}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:24+00","p50":3959.0,"p95":4439.049998223782,"p99":4483.060434818268}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:25+00","p50":3957.875,"p95":4402.749991953373,"p99":4517.6002368927}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:26+00","p50":4233.0,"p95":4548.44999808073,"p99":4968.600368499756}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:27+00","p50":4095.0,"p95":4540.599988818169,"p99":4688.920366764069}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:28+00","p50":4165.0,"p95":4757.5999937057495,"p99":5160.780089378357}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:29+00","p50":4161.625,"p95":4786.0,"p99":5181.590034246445}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:30+00","p50":4067.5,"p95":4961.849981248379,"p99":4995.98001909256}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:31+00","p50":4075.75,"p95":4773.899998188019,"p99":5286.980581283569}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:32+00","p50":3957.75,"p95":4773.099994421005,"p99":5290.340016365051}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:33+00","p50":3885.375,"p95":4699.749966204166,"p99":5235.1501042842865}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:34+00","p50":4028.5,"p95":4835.599996328354,"p99":4893.720010280609}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:35+00","p50":3903.25,"p95":4793.19996547699,"p99":5414.880089759827}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:36+00","p50":3753.0,"p95":4644.899936437607,"p99":5352.320072174072}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:37+00","p50":3712.25,"p95":4436.749980986118,"p99":4494.0}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:38+00","p50":3869.375,"p95":4477.249991595745,"p99":4585.570367097855}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:39+00","p50":3869.25,"p95":4583.2999947071075,"p99":4977.000141143799}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:40+00","p50":4007.125,"p95":4747.099996447563,"p99":4802.460491657257}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:41+00","p50":4076.5,"p95":4876.799919009209,"p99":5220.880134105682}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:42+00","p50":3983.5,"p95":4752.9999623298645,"p99":4925.800097942352}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:43+00","p50":3809.375,"p95":4687.999965906143,"p99":5200.510399580002}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:44+00","p50":4006.5,"p95":4505.2999947071075,"p99":4725.540461540222}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:45+00","p50":3866.0,"p95":4299.999996185303,"p99":4709.900535583496}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:46+00","p50":3897.5,"p95":4320.799972295761,"p99":4498.160077571869}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:47+00","p50":3807.0,"p95":4220.3999853134155,"p99":4543.800411224365}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:48+00","p50":3784.625,"p95":4066.649998128414,"p99":4304.840281486511}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:49+00","p50":3806.25,"p95":4019.0999805927277,"p99":4245.360095977783}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:50+00","p50":3883.5,"p95":4230.099980592728,"p99":4430.520318984985}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:51+00","p50":3871.25,"p95":4391.749991238117,"p99":4581.820131778717}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:52+00","p50":4030.25,"p95":4449.0,"p99":4491.7400188446045}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:53+00","p50":4027.5,"p95":4393.599977254868,"p99":4775.41007733345}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:54+00","p50":3986.0,"p95":4389.999969601631,"p99":4511.000173091888}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:55+00","p50":3933.5,"p95":4362.399989128113,"p99":4415.780015945435}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:56+00","p50":3935.625,"p95":4355.699996829033,"p99":4643.280106544495}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:57+00","p50":4046.625,"p95":4302.49998819828,"p99":4549.500361919403}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:58+00","p50":3940.75,"p95":4200.199969291687,"p99":4405.110152006149}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:41:59+00","p50":3934.75,"p95":4321.799977183342,"p99":4612.440031528473}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:00+00","p50":3780.75,"p95":3994.7499917149544,"p99":4536.200159072876}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:01+00","p50":3739.75,"p95":4024.2999980449677,"p99":4182.56007194519}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:02+00","p50":3730.875,"p95":4110.0999883413315,"p99":4257.680099487305}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:03+00","p50":3791.5,"p95":4133.949982941151,"p99":4539.600242614746}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:04+00","p50":3753.5,"p95":4172.999973297119,"p99":4379.800186157227}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:05+00","p50":3692.5,"p95":4032.999939918518,"p99":4271.66010093689}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:06+00","p50":3663.5,"p95":3980.0,"p99":4126.400009155273}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:07+00","p50":3724.0,"p95":4013.9999771118164,"p99":4067.3000259399414}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:08+00","p50":3678.5,"p95":4006.4999911785126,"p99":4243.700119972229}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:09+00","p50":3783.0,"p95":4094.349985897541,"p99":4348.050008058548}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:10+00","p50":3781.25,"p95":4203.599985599518,"p99":4445.230254888535}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:11+00","p50":3711.125,"p95":4180.499970793724,"p99":4451.000347137451}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:12+00","p50":3810.25,"p95":4103.0,"p99":4424.640263557434}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:13+00","p50":3742.375,"p95":4219.399991750717,"p99":4585.90011548996}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:14+00","p50":3683.625,"p95":4341.14997535944,"p99":4635.110031843185}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:15+00","p50":3748.0,"p95":4280.199992179871,"p99":4345.480028152466}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:16+00","p50":3678.875,"p95":4318.249987065792,"p99":4438.400106430054}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:17+00","p50":3754.5,"p95":4301.399992465973,"p99":4518.600195884705}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:18+00","p50":3843.25,"p95":4470.6999624967575,"p99":4590.800054550171}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:19+00","p50":3922.0,"p95":4495.499990224838,"p99":4562.160009384155}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:20+00","p50":3925.75,"p95":4512.499990940094,"p99":4546.780015945435}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:21+00","p50":3870.5,"p95":4528.199996232986,"p99":4982.720438480377}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:22+00","p50":3831.875,"p95":4829.349979698658,"p99":4943.760129928589}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:23+00","p50":4088.875,"p95":4843.849998176098,"p99":5258.170380830765}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:24+00","p50":4065.875,"p95":4757.299961447716,"p99":5233.110051870346}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:25+00","p50":4097.0,"p95":4609.399994492531,"p99":4738.840079307556}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:26+00","p50":4058.5,"p95":4670.399996519089,"p99":4982.680197715759}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:27+00","p50":4123.625,"p95":4509.599986553192,"p99":4903.090001344681}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:28+00","p50":4219.0,"p95":4550.599996805191,"p99":4735.040088176727}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:29+00","p50":4138.0,"p95":4338.999984741211,"p99":4563.200286865234}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:30+00","p50":4128.75,"p95":4356.999983906746,"p99":4511.000210285187}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:31+00","p50":4017.25,"p95":4321.799888014793,"p99":4469.040035247803}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:32+00","p50":3900.0,"p95":4108.999961853027,"p99":4291.900077819824}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:33+00","p50":3868.75,"p95":4007.999994635582,"p99":4140.000011444092}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:34+00","p50":3816.75,"p95":4027.699987769127,"p99":4131.480019569397}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:35+00","p50":3778.875,"p95":3966.7499344944954,"p99":4163.480053901672}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:36+00","p50":3743.0,"p95":3938.799822330475,"p99":4130.240035533905}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:37+00","p50":3657.125,"p95":3839.249990403652,"p99":4001.730241060257}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:38+00","p50":3778.125,"p95":4000.1499946713448,"p99":4202.3900554180145}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:39+00","p50":3839.5,"p95":3981.5999792814255,"p99":4127.440085887909}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:40+00","p50":3823.0,"p95":3968.649998128414,"p99":4195.230166196823}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:41+00","p50":3914.5,"p95":4070.799992799759,"p99":4338.790174245834}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:42+00","p50":3831.625,"p95":4081.5499635338783,"p99":4221.280079841614}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:43+00","p50":3826.625,"p95":4127.399946928024,"p99":4255.74002122879}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:44+00","p50":3787.0,"p95":3926.699973464012,"p99":4070.910001516342}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:45+00","p50":3744.625,"p95":3926.899996161461,"p99":4053.1700813770294}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:46+00","p50":3759.375,"p95":4042.5999772548676,"p99":4364.390043973923}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:47+00","p50":3720.0,"p95":4054.749990284443,"p99":4314.150225400925}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:48+00","p50":3755.5,"p95":3939.0,"p99":4191.0}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:49+00","p50":3722.375,"p95":3945.499986767769,"p99":4172.40002822876}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:50+00","p50":3640.75,"p95":4047.199996471405,"p99":4151.600112915039}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:51+00","p50":3787.5,"p95":4098.899960398674,"p99":4118.980002880096}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:52+00","p50":3771.0,"p95":4104.599996089935,"p99":4302.540139198303}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:53+00","p50":3817.875,"p95":4004.4499980807304,"p99":4038.010013818741}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:54+00","p50":3852.625,"p95":4156.5999529361725,"p99":4397.3400349617}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:55+00","p50":3925.0,"p95":4101.599998354912,"p99":4376.8401737213135}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:56+00","p50":3967.5,"p95":4179.399973630905,"p99":4405.040168762207}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:57+00","p50":4075.75,"p95":4343.399998307228,"p99":4397.96001625061}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:58+00","p50":4109.625,"p95":4391.449980199337,"p99":4578.790030241013}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:42:59+00","p50":4065.125,"p95":4345.0,"p99":4426.830019712448}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:00+00","p50":3974.5,"p95":4306.999981880188,"p99":4612.100065231323}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:01+00","p50":3901.5,"p95":4157.399988412857,"p99":4375.200177669525}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:02+00","p50":3840.5,"p95":4112.599938392639,"p99":4179.96000289917}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:03+00","p50":3866.125,"p95":4085.5499945282936,"p99":4370.450124025345}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:04+00","p50":3833.25,"p95":4065.9999449253082,"p99":4168.700003147125}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:05+00","p50":3757.25,"p95":4011.5999643802643,"p99":4160.360164642334}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:06+00","p50":3751.125,"p95":3995.6999963521957,"p99":4184.510121107101}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:07+00","p50":3710.25,"p95":4005.049957692623,"p99":4248.270107984543}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:08+00","p50":3674.0,"p95":3931.999967813492,"p99":4167.00012588501}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:09+00","p50":3759.5,"p95":4058.699996113777,"p99":4311.330247163773}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:10+00","p50":3769.75,"p95":4067.9499981999397,"p99":4163.750036001205}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:11+00","p50":3842.0,"p95":4108.399949789047,"p99":4217.840066432953}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:12+00","p50":3785.25,"p95":4164.499990701675,"p99":4348.920026779175}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:13+00","p50":3796.25,"p95":4133.799991846085,"p99":4280.360136985779}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:14+00","p50":3697.5,"p95":4129.249953210354,"p99":4530.520245552063}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:15+00","p50":3682.625,"p95":4063.2499336600304,"p99":4444.860221385956}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:16+00","p50":3690.125,"p95":4032.499980568886,"p99":4159.530029535294}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:17+00","p50":3699.5,"p95":3934.149998009205,"p99":4187.380136966705}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:18+00","p50":3680.0,"p95":4010.99990940094,"p99":4220.460039138794}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:19+00","p50":3747.5,"p95":3954.1999881267548,"p99":4237.160235881805}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:20+00","p50":3758.25,"p95":3932.5999940633774,"p99":4087.6801614761353}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:21+00","p50":3666.25,"p95":3838.399983406067,"p99":4005.5600514411926}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:22+00","p50":3641.25,"p95":3825.199996471405,"p99":4071.1600818634033}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:23+00","p50":3716.75,"p95":3859.1999881267548,"p99":3946.920060157776}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:24+00","p50":3628.75,"p95":3978.2999588251114,"p99":4064.7600479125977}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:25+00","p50":3733.5,"p95":4087.499963760376,"p99":4395.700050354004}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:26+00","p50":3686.0,"p95":4249.9999833106995,"p99":4291.50000667572}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:27+00","p50":3934.0,"p95":4331.499991178513,"p99":4526.920488357544}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:28+00","p50":3920.375,"p95":4479.6499781012535,"p99":4682.180232524872}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:29+00","p50":3954.0,"p95":4509.049982726574,"p99":4593.450007677078}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:30+00","p50":3873.75,"p95":4646.699987649918,"p99":4726.720050811768}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:31+00","p50":3808.5,"p95":4651.899998188019,"p99":4729.92000579834}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:32+00","p50":3813.25,"p95":4480.0,"p99":4906.740014076233}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:33+00","p50":3804.0,"p95":4521.3999980688095,"p99":4867.44032907486}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:34+00","p50":3747.0,"p95":4475.9499943852425,"p99":4553.370013475418}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:35+00","p50":3749.5,"p95":4464.249990403652,"p99":4547.820058345795}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:36+00","p50":3744.5,"p95":4369.599987983704,"p99":4712.360557556152}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:37+00","p50":3697.0,"p95":4243.799996137619,"p99":4755.560095787048}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:38+00","p50":3636.25,"p95":4204.799974679947,"p99":4534.570183992386}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:39+00","p50":3558.375,"p95":4093.6999183893204,"p99":4683.03010725975}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:40+00","p50":3625.25,"p95":4161.899989485741,"p99":4211.840039253235}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:41+00","p50":3648.75,"p95":4127.54998165369,"p99":4431.740335941315}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:42+00","p50":3784.625,"p95":4026.249972999096,"p99":4106.850021600723}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:43+00","p50":3868.5,"p95":4207.699976801872,"p99":4324.5501391887665}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:44+00","p50":3886.5,"p95":4184.299987316132,"p99":4308.680023193359}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:45+00","p50":3980.5,"p95":4205.9499943852425,"p99":4417.29007935524}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:46+00","p50":3979.5,"p95":4232.849969804287,"p99":4364.38005399704}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:47+00","p50":3879.5,"p95":4302.199996471405,"p99":4503.680400848389}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:48+00","p50":3998.875,"p95":4324.599978685379,"p99":4368.0200028419495}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:49+00","p50":3976.125,"p95":4258.649967372417,"p99":4386.670004606247}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:50+00","p50":3909.0,"p95":4304.999983906746,"p99":4359.000221729279}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:51+00","p50":3959.75,"p95":4436.499991178513,"p99":4715.620043754578}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:52+00","p50":4015.375,"p95":4361.199980974197,"p99":4561.820058345795}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:53+00","p50":4037.0,"p95":4252.199992418289,"p99":4416.4000606536865}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:54+00","p50":4016.375,"p95":4308.499943137169,"p99":4639.660191059113}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:55+00","p50":3898.375,"p95":4271.049994170666,"p99":4451.160105705261}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:56+00","p50":3920.25,"p95":4166.99995970726,"p99":4438.800048351288}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:57+00","p50":3997.0,"p95":4215.999992012978,"p99":4301.680125236511}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:58+00","p50":4139.25,"p95":4300.999929428101,"p99":4368.240016937256}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:43:59+00","p50":4200.25,"p95":4436.399989128113,"p99":4471.940004348755}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:00+00","p50":4160.75,"p95":4467.39999628067,"p99":4568.500037193298}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:01+00","p50":4017.125,"p95":4245.949982941151,"p99":4480.100166797638}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:02+00","p50":3796.5,"p95":4132.999954223633,"p99":4437.2003173828125}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:03+00","p50":3744.5,"p95":4052.4999796152115,"p99":4215.900016307831}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:04+00","p50":3650.75,"p95":3984.149958193302,"p99":4204.530304193497}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:05+00","p50":3679.0,"p95":4052.0,"p99":4076.0}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:06+00","p50":3671.0,"p95":4176.699976444244,"p99":4448.080211639404}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:07+00","p50":3752.875,"p95":4152.699988484383,"p99":4261.370050668716}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:08+00","p50":3785.25,"p95":4259.299996256828,"p99":4317.930001497269}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:09+00","p50":3810.25,"p95":4284.299987316132,"p99":4591.820085525513}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:10+00","p50":3891.5,"p95":4263.249994456768,"p99":4315.800005912781}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:11+00","p50":3791.5,"p95":4199.999971628189,"p99":4499.4003047943115}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:12+00","p50":3724.5,"p95":4086.5499837994576,"p99":4278.16012096405}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:13+00","p50":3720.5,"p95":4188.399996042252,"p99":4451.720012664795}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:14+00","p50":3798.75,"p95":4160.0,"p99":4449.680313110352}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:15+00","p50":3758.5,"p95":4121.499940991402,"p99":4214.55003619194}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:16+00","p50":3726.5,"p95":4292.699993848801,"p99":4614.700024604797}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:17+00","p50":3680.625,"p95":4193.749952614307,"p99":4243.920018196106}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:18+00","p50":3650.625,"p95":4185.649980723858,"p99":4284.430674314499}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:19+00","p50":3707.375,"p95":4282.649997889996,"p99":4607.070605993271}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:20+00","p50":3735.0,"p95":4274.499998092651,"p99":4312.20002746582}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:21+00","p50":3783.5,"p95":4351.0,"p99":4673.480028629303}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:22+00","p50":3743.25,"p95":4317.1999933719635,"p99":4716.420029163361}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:23+00","p50":3798.0,"p95":4284.999959945679,"p99":4679.740251541138}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:24+00","p50":3906.75,"p95":4518.799980401993,"p99":4578.440245628357}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:25+00","p50":3973.75,"p95":4611.699987649918,"p99":5159.740052223206}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:26+00","p50":4001.875,"p95":4681.349982559681,"p99":4923.360136985779}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:27+00","p50":4065.5,"p95":4669.499952316284,"p99":4941.000076293945}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:28+00","p50":4050.75,"p95":5002.899924397469,"p99":5131.4400806427}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:29+00","p50":4181.75,"p95":4976.499991178513,"p99":5095.501376152039}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:30+00","p50":3957.0,"p95":5002.099983692169,"p99":5062.900007247925}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:31+00","p50":3836.0,"p95":4794.39999628067,"p99":5207.420510292053}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:32+00","p50":4143.125,"p95":4701.0,"p99":4835.940140247345}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:33+00","p50":3558.5,"p95":4567.599924683571,"p99":4942.120539188385}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:34+00","p50":4024.0,"p95":4501.399959087372,"p99":5219.500477313995}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:35+00","p50":3802.75,"p95":4346.199963450432,"p99":4992.960172653198}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:36+00","p50":3952.375,"p95":4278.0999883413315,"p99":4581.000310897827}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:37+00","p50":3876.0,"p95":4186.399974822998,"p99":4331.660015106201}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:38+00","p50":3803.5,"p95":4113.999984264374,"p99":4330.940104484558}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:39+00","p50":3856.0,"p95":4051.499980568886,"p99":4359.4800062179565}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:40+00","p50":3854.0,"p95":4093.7999798059464,"p99":4133.640013217926}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:41+00","p50":3937.75,"p95":4214.299958944321,"p99":4288.460017204285}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:42+00","p50":3854.75,"p95":4283.449980199337,"p99":4581.640051841736}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:43+00","p50":3793.75,"p95":4081.7999963760376,"p99":4252.460111618042}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:44+00","p50":3780.0,"p95":4195.799996137619,"p99":4334.680171489716}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:45+00","p50":3781.0,"p95":4330.249973714352,"p99":4572.710079908371}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:46+00","p50":3726.0,"p95":4346.699985980988,"p99":4621.400352478027}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:47+00","p50":3773.25,"p95":4440.799988269806,"p99":4938.8200578689575}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:48+00","p50":3778.5,"p95":4450.299987316132,"p99":4647.260126113892}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:49+00","p50":3775.125,"p95":4504.0,"p99":4557.75000166893}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:50+00","p50":3645.75,"p95":4604.149969398975,"p99":4638.8400230407715}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:51+00","p50":3739.25,"p95":4670.199998259544,"p99":4728.2000069618225}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:52+00","p50":4083.0,"p95":4841.999977827072,"p99":4918.300020694733}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:53+00","p50":3590.0,"p95":4841.999957084656,"p99":5371.100743293762}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:54+00","p50":4094.5,"p95":4889.599968671799,"p99":5076.9207282066345}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:55+00","p50":3879.0,"p95":5015.999993085861,"p99":5552.450150728226}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:56+00","p50":3771.5,"p95":4725.099994421005,"p99":4846.820004463196}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:57+00","p50":4014.75,"p95":4696.999992847443,"p99":4782.00004863739}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:58+00","p50":3628.5,"p95":4892.19998550415,"p99":5224.340265274048}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:44:59+00","p50":4038.0,"p95":5016.599987149239,"p99":5659.800778388977}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:00+00","p50":3933.5,"p95":4893.599979400635,"p99":4953.92073059082}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:01+00","p50":3928.625,"p95":4630.699971795082,"p99":5127.330149888992}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:02+00","p50":3898.625,"p95":4608.249990880489,"p99":4766.82000875473}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:03+00","p50":3845.625,"p95":4511.649994313717,"p99":5012.350128889084}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:04+00","p50":3885.0,"p95":4682.599990129471,"p99":4747.320113182068}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:05+00","p50":3917.25,"p95":4666.849983155727,"p99":5061.690498590469}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:06+00","p50":3923.0,"p95":4678.0,"p99":4852.96010351181}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:07+00","p50":3911.5,"p95":4696.299998044968,"p99":4814.380051612854}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:08+00","p50":3748.0,"p95":4838.69999063015,"p99":4989.690563440323}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:09+00","p50":3970.25,"p95":4931.34995919466,"p99":5472.730744600296}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:10+00","p50":3960.0,"p95":4826.549998104572,"p99":4872.7300045490265}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:11+00","p50":3904.0,"p95":4874.599988698959,"p99":5443.480819702148}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:12+00","p50":3903.75,"p95":5002.199993848801,"p99":5631.520014762878}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:13+00","p50":4015.75,"p95":5188.0,"p99":5664.1607275009155}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:14+00","p50":4073.375,"p95":4941.799991846085,"p99":5490.6909964084625}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:15+00","p50":3649.0,"p95":4921.999972462654,"p99":5681.080988407135}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:16+00","p50":4070.5,"p95":5027.799954891205,"p99":5669.160036087036}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:17+00","p50":3418.75,"p95":4962.799998164177,"p99":5026.680048465729}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:18+00","p50":4019.25,"p95":4910.0,"p99":4970.9200320243835}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:19+00","p50":3943.25,"p95":4855.599992752075,"p99":5422.5206871032715}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:20+00","p50":4055.75,"p95":4941.099996447563,"p99":5022.091007471085}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:21+00","p50":4086.0,"p95":5042.049959123135,"p99":5105.290027856827}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:22+00","p50":3973.0,"p95":5110.0,"p99":5201.920076847076}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:23+00","p50":4227.125,"p95":4984.749987900257,"p99":5109.9000248909}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:24+00","p50":4245.125,"p95":5224.149963200092,"p99":5893.96004486084}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:25+00","p50":3982.25,"p95":5047.1999588012695,"p99":5191.100048065186}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:26+00","p50":3994.5,"p95":5035.39993584156,"p99":5585.960109233856}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:27+00","p50":4189.25,"p95":5047.199954509735,"p99":5107.370010614395}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:28+00","p50":4088.5,"p95":5042.499989628792,"p99":5553.800188064575}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:29+00","p50":4233.0,"p95":4995.1999942064285,"p99":5391.960644245148}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:30+00","p50":4147.5,"p95":4908.2999947071075,"p99":5261.840341567993}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:31+00","p50":3859.125,"p95":4871.59995508194,"p99":4913.95002245903}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:32+00","p50":3759.5,"p95":4796.599976539612,"p99":4933.760025024414}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:33+00","p50":3949.0,"p95":4705.499982714653,"p99":5348.550015211105}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:34+00","p50":3850.25,"p95":4803.799992799759,"p99":5273.460509777069}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:35+00","p50":3865.0,"p95":4604.2999539375305,"p99":4808.8801345825195}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:36+00","p50":3936.75,"p95":4728.79997253418,"p99":5190.120071411133}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:37+00","p50":3966.5,"p95":4907.199949264526,"p99":5415.620100021362}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:38+00","p50":3785.375,"p95":4980.499981760979,"p99":5068.070045232773}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:39+00","p50":3850.5,"p95":4974.099957942963,"p99":5663.601249694824}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:40+00","p50":4149.625,"p95":5063.499988913536,"p99":5535.600662231445}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:41+00","p50":3454.875,"p95":5020.199985027313,"p99":5040.860002994537}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:42+00","p50":4033.5,"p95":5062.199992656708,"p99":5736.720010280609}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:43+00","p50":3699.75,"p95":4966.399994492531,"p99":5274.040292263031}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:44+00","p50":3685.75,"p95":5005.399994492531,"p99":5069.680011749268}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:45+00","p50":4023.625,"p95":4948.699996352196,"p99":5041.3400321006775}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:46+00","p50":3980.375,"p95":5041.599992513657,"p99":5823.210145235062}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:47+00","p50":3948.0,"p95":5054.749994814396,"p99":5601.400149345398}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:48+00","p50":3887.5,"p95":5115.599960446358,"p99":5197.440010547638}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:49+00","p50":3693.0,"p95":5024.9999858140945,"p99":5618.600035667419}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:50+00","p50":4084.375,"p95":4829.999985218048,"p99":4942.40007686615}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:51+00","p50":3488.5,"p95":4952.249987065792,"p99":5312.950237989426}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:52+00","p50":4081.875,"p95":4936.949995100498,"p99":5601.080020904541}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:53+00","p50":3845.5,"p95":4959.999993920326,"p99":5410.400783061981}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:54+00","p50":3802.5,"p95":4836.39999628067,"p99":4990.120071411133}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:55+00","p50":3912.75,"p95":4790.049987733364,"p99":5342.380064487457}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:56+00","p50":4332.0,"p95":4966.149986803532,"p99":5018.940025806427}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:57+00","p50":4325.25,"p95":4949.799988150597,"p99":5374.400311470032}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:58+00","p50":4422.25,"p95":5116.749991476536,"p99":5484.520321846008}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:45:59+00","p50":4360.375,"p95":5130.0,"p99":5803.270152807236}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:00+00","p50":4202.25,"p95":5041.999998211861,"p99":5117.000354766846}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:01+00","p50":4034.75,"p95":4687.149998009205,"p99":4780.670078039169}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:02+00","p50":3984.0,"p95":4630.999995350838,"p99":4678.60006570816}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:03+00","p50":3914.5,"p95":4675.999997973442,"p99":4774.00009727478}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:04+00","p50":3790.0,"p95":4738.699975132942,"p99":5158.340048313141}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:05+00","p50":3965.5,"p95":4660.399988412857,"p99":5067.440522193909}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:06+00","p50":3785.25,"p95":4886.0999982357025,"p99":5331.760194778442}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:07+00","p50":3753.0,"p95":4672.7999839782715,"p99":5105.680519104004}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:08+00","p50":4024.0,"p95":4788.999970197678,"p99":5204.750237226486}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:09+00","p50":3914.75,"p95":4925.899994850159,"p99":5513.840087890625}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:10+00","p50":4085.0,"p95":5039.899981975555,"p99":5604.660020828247}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:11+00","p50":4008.5,"p95":4883.79995059967,"p99":5307.700119972229}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:12+00","p50":4010.25,"p95":4831.299958944321,"p99":5258.920034408569}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:13+00","p50":3851.75,"p95":4888.599987149239,"p99":4936.920002937317}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:14+00","p50":3767.75,"p95":4779.199974298477,"p99":5673.640270233154}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:15+00","p50":3910.0,"p95":4752.999970316887,"p99":5306.840278625488}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:16+00","p50":3777.75,"p95":4747.649976909161,"p99":5263.730103731155}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:17+00","p50":4041.5,"p95":4979.3999853134155,"p99":5353.640380382538}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:18+00","p50":3707.5,"p95":4866.199967384338,"p99":4935.980001449585}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:19+00","p50":3737.25,"p95":4896.999976396561,"p99":5451.700852870941}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:20+00","p50":4011.0,"p95":4774.199996232986,"p99":5410.080073833466}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:21+00","p50":3951.625,"p95":4831.299988627434,"p99":5388.910001516342}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:22+00","p50":3874.5,"p95":4705.199995994568,"p99":4764.100008010864}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:23+00","p50":3887.25,"p95":4551.0,"p99":5120.970035791397}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:24+00","p50":3771.375,"p95":4678.649994313717,"p99":5199.830019712448}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:25+00","p50":3846.5,"p95":4662.9999923706055,"p99":5211.900016784668}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:26+00","p50":3981.875,"p95":4667.2999967336655,"p99":4828.200574874878}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:27+00","p50":4031.25,"p95":4855.649995028973,"p99":4955.3204135894775}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:28+00","p50":3976.75,"p95":4880.149986565113,"p99":5498.4301335811615}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:29+00","p50":4089.25,"p95":4642.699970006943,"p99":4689.580040931702}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:30+00","p50":4011.75,"p95":4823.399945259094,"p99":5150.860001564026}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:31+00","p50":3825.5,"p95":4675.399951934814,"p99":5018.74001121521}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:32+00","p50":3707.75,"p95":4468.299987316132,"p99":4748.000289916992}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:33+00","p50":3752.875,"p95":4522.549994528294,"p99":4965.740499019623}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:34+00","p50":3767.0,"p95":4453.599974274635,"p99":4593.480113983154}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:35+00","p50":3751.0,"p95":4296.999971628189,"p99":4572.8003096580505}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:36+00","p50":3685.5,"p95":4467.299983263016,"p99":4862.1201457977295}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:37+00","p50":3721.0,"p95":4475.1999888420105,"p99":4997.5800104141235}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:38+00","p50":3703.875,"p95":4488.999986171722,"p99":4553.600652694702}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:39+00","p50":3919.875,"p95":4732.399993658066,"p99":5288.080664634705}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:40+00","p50":4052.5,"p95":4880.49998664856,"p99":5377.000061035156}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:41+00","p50":3980.25,"p95":4852.7499905228615,"p99":5464.970556497574}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:42+00","p50":4015.25,"p95":4922.799986362457,"p99":5016.430066823959}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:43+00","p50":4251.0,"p95":5048.499982953072,"p99":5136.430066823959}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:44+00","p50":3832.5,"p95":4944.549998342991,"p99":4983.610067605972}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:45+00","p50":4365.0,"p95":5138.499965429306,"p99":5360.080455780029}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:46+00","p50":4372.5,"p95":5257.84994238615,"p99":5720.560061454773}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:47+00","p50":4147.375,"p95":4991.299996495247,"p99":5602.840179443359}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:48+00","p50":4193.0,"p95":4899.0,"p99":5237.400275230408}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:49+00","p50":3993.375,"p95":4975.0,"p99":5416.800538063049}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:50+00","p50":3987.75,"p95":4782.999907016754,"p99":4842.820004463196}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:51+00","p50":4131.875,"p95":4762.249988734722,"p99":4817.100043773651}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:52+00","p50":4137.0,"p95":4822.599994778633,"p99":5249.400118350983}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:53+00","p50":4205.5,"p95":4683.899988651276,"p99":5132.520023345947}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:54+00","p50":4215.0,"p95":4645.299998044968,"p99":4956.620104789734}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:55+00","p50":4013.125,"p95":4531.399978399277,"p99":4740.510214567184}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:56+00","p50":4117.0,"p95":4439.799978256226,"p99":4742.960338115692}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:57+00","p50":4231.75,"p95":4491.599987030029,"p99":4894.840007781982}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:58+00","p50":4251.5,"p95":4379.899994850159,"p99":4523.96036529541}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:46:59+00","p50":4332.25,"p95":4560.499996304512,"p99":4660.050028085709}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:00+00","p50":4281.0,"p95":4697.5999937057495,"p99":4742.940041542053}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:01+00","p50":4316.75,"p95":4665.999998211861,"p99":5063.00040769577}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:02+00","p50":3927.75,"p95":4475.399992227554,"p99":4585.310020208359}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:03+00","p50":4010.375,"p95":4451.899988770485,"p99":4845.8100254535675}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:04+00","p50":3882.0,"p95":4549.249991595745,"p99":4995.880177497864}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:05+00","p50":3847.0,"p95":4547.9999858140945,"p99":5012.400085926056}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:06+00","p50":3904.0,"p95":4575.999992251396,"p99":4770.800631046295}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:07+00","p50":3991.0,"p95":4638.199986815453,"p99":5080.640666007996}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:08+00","p50":3860.625,"p95":4723.249987065792,"p99":4778.500014781952}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:09+00","p50":3946.75,"p95":4837.699995875359,"p99":5346.85017323494}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:10+00","p50":3946.375,"p95":4658.099960923195,"p99":4778.730103731155}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:11+00","p50":3894.125,"p95":4678.0,"p99":5045.470640897751}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:12+00","p50":3753.75,"p95":4652.0,"p99":5243.490677118301}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:13+00","p50":3766.5,"p95":4602.499990940094,"p99":4695.700021743774}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:14+00","p50":3826.875,"p95":4719.449975669384,"p99":4869.410055398941}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:15+00","p50":3911.5,"p95":4656.999947309494,"p99":4760.200022697449}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:16+00","p50":3969.25,"p95":4637.199985980988,"p99":4715.4804430007935}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:17+00","p50":3691.0,"p95":4669.999981164932,"p99":5184.5605545043945}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:18+00","p50":3888.25,"p95":4684.349982082844,"p99":5316.670078039169}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:19+00","p50":3926.625,"p95":4555.499996781349,"p99":4614.250045061111}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:20+00","p50":3900.5,"p95":4654.5999920368195,"p99":4989.4704921245575}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:21+00","p50":3829.25,"p95":4575.399989128113,"p99":5085.080139160156}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:22+00","p50":3764.25,"p95":4500.949919521809,"p99":5042.95002245903}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:23+00","p50":4003.75,"p95":4714.199998259544,"p99":4829.480155944824}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:24+00","p50":3943.5,"p95":4718.44999808073,"p99":4820.0}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:25+00","p50":3943.75,"p95":4590.799979686737,"p99":4722.960422515869}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:26+00","p50":4012.5,"p95":4579.399969100952,"p99":4708.780498504639}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:27+00","p50":3990.625,"p95":4644.749939501286,"p99":4785.650183916092}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:28+00","p50":4197.0,"p95":4821.599993944168,"p99":4995.550466299057}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:29+00","p50":4271.625,"p95":4856.249984443188,"p99":4986.150059461594}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:30+00","p50":4240.5,"p95":4868.499994277954,"p99":4979.600021362305}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:31+00","p50":4167.0,"p95":4696.499998092651,"p99":4921.5002365112305}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:32+00","p50":4014.25,"p95":4791.549998342991,"p99":4897.240641593933}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:33+00","p50":3919.625,"p95":4768.6499781012535,"p99":5332.930113077164}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:34+00","p50":3804.25,"p95":4605.699993848801,"p99":5046.36083984375}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:35+00","p50":3856.125,"p95":4617.0,"p99":4716.0106546878815}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:36+00","p50":3633.75,"p95":4900.849998176098,"p99":4996.550021886826}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:37+00","p50":3771.75,"p95":4825.5999751091,"p99":5235.680444717407}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:38+00","p50":3894.5,"p95":4576.799996614456,"p99":4712.760639190674}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:39+00","p50":3680.5,"p95":4919.749987900257,"p99":5013.00005531311}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:40+00","p50":3986.75,"p95":5016.999991297722,"p99":5064.360917568207}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:41+00","p50":3982.25,"p95":4828.099994421005,"p99":4908.600059509277}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:42+00","p50":4106.5,"p95":5011.999996185303,"p99":5607.800140380859}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:43+00","p50":3885.0,"p95":4944.199958562851,"p99":4997.440010547638}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:44+00","p50":3655.75,"p95":4845.799988985062,"p99":5521.76092672348}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:45+00","p50":4095.0,"p95":4838.999996185303,"p99":5465.000106811523}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:46+00","p50":3844.75,"p95":4917.999992847443,"p99":5501.000147342682}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:47+00","p50":3777.75,"p95":4601.699939489365,"p99":5309.460238456726}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:48+00","p50":3610.5,"p95":4646.799968004227,"p99":4837.920568943024}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:49+00","p50":4008.5,"p95":4856.399983048439,"p99":5359.4800662994385}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:50+00","p50":3677.875,"p95":4790.249974429607,"p99":5491.950168371201}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:51+00","p50":4018.25,"p95":4684.799998164177,"p99":5172.080657958984}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:52+00","p50":3953.25,"p95":4887.499981760979,"p99":4957.190039396286}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:53+00","p50":3635.5,"p95":4779.99991607666,"p99":5390.600051879883}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:54+00","p50":3848.5,"p95":4680.999953508377,"p99":5089.000011444092}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:55+00","p50":3863.0,"p95":4749.199986815453,"p99":5226.280126571655}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:56+00","p50":3976.5,"p95":4675.699994564056,"p99":4871.860010147095}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:57+00","p50":3838.625,"p95":4636.1499591469765,"p99":5178.010001420975}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:58+00","p50":3961.5,"p95":4714.699985980988,"p99":4802.280006408691}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:47:59+00","p50":3937.625,"p95":4543.149969398975,"p99":5027.990001440048}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:00+00","p50":3845.375,"p95":4488.599992513657,"p99":4716.640221595764}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:01+00","p50":3789.0,"p95":4547.399959445,"p99":4731.040205478668}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:02+00","p50":3853.75,"p95":4475.99999153614,"p99":4553.160544395447}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:03+00","p50":3910.5,"p95":4523.599988698959,"p99":4574.08003616333}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:04+00","p50":3816.0,"p95":4465.999979257584,"p99":4728.0}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:05+00","p50":3842.125,"p95":4381.049979388714,"p99":4449.170001268387}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:06+00","p50":3844.125,"p95":4447.699987053871,"p99":4545.700051784515}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:07+00","p50":3689.0,"p95":4089.0,"p99":4228.900047302246}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:08+00","p50":3765.125,"p95":4172.699989199638,"p99":4291.580060482025}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:09+00","p50":3846.0,"p95":4273.99999153614,"p99":4352.320039272308}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:10+00","p50":3864.125,"p95":4287.699966311455,"p99":4594.960107803345}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:11+00","p50":3947.75,"p95":4371.349929869175,"p99":4632.950068235397}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:12+00","p50":3959.125,"p95":4401.0,"p99":4733.7004227638245}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:13+00","p50":3854.125,"p95":4362.999992609024,"p99":4401.950001478195}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:14+00","p50":3915.0,"p95":4156.999984741211,"p99":4228.700035095215}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:15+00","p50":3838.375,"p95":4121.0,"p99":4344.410055398941}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:16+00","p50":3733.125,"p95":4052.7499712109566,"p99":4235.920196533203}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:17+00","p50":3699.0,"p95":4024.9999655485153,"p99":4406.800107002258}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:18+00","p50":3728.0,"p95":3921.799973964691,"p99":4143.58008480072}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:19+00","p50":3721.375,"p95":3900.699933409691,"p99":4164.180148601532}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:20+00","p50":3787.75,"p95":4051.8999869823456,"p99":4157.460087776184}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:21+00","p50":3976.5,"p95":4309.399989485741,"p99":4653.520027637482}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:22+00","p50":4091.0,"p95":4561.399993896484,"p99":4797.100128173828}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:23+00","p50":4439.5,"p95":4735.599990129471,"p99":4905.840075016022}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:24+00","p50":4348.5,"p95":4813.0,"p99":5065.400014877319}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:25+00","p50":4171.75,"p95":4925.999949932098,"p99":5134.000022888184}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:26+00","p50":4164.875,"p95":4903.249924361706,"p99":5368.080016136169}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:27+00","p50":4142.25,"p95":4933.499996781349,"p99":5411.300028324127}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:28+00","p50":4097.375,"p95":4784.049986064434,"p99":5398.181028842926}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:29+00","p50":4048.125,"p95":4835.799992799759,"p99":4875.880017280579}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:30+00","p50":3917.0,"p95":4785.699996352196,"p99":4849.700014591217}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:31+00","p50":4047.25,"p95":4893.0,"p99":5377.790004491806}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:32+00","p50":3781.5,"p95":4729.399969100952,"p99":5572.800796508789}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:33+00","p50":3981.5,"p95":5123.999984264374,"p99":5255.400037765503}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:34+00","p50":3972.5,"p95":5113.199991226196,"p99":5525.920722961426}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:35+00","p50":3800.5,"p95":4844.899964332581,"p99":5510.280120849609}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:36+00","p50":3889.875,"p95":4823.699996352196,"p99":5378.8901998996735}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:37+00","p50":3935.75,"p95":4917.499975800514,"p99":5066.000110626221}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:38+00","p50":3921.25,"p95":4793.149979412556,"p99":4931.710070371628}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:39+00","p50":3715.0,"p95":4943.399994492531,"p99":4989.48001909256}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:40+00","p50":4053.5,"p95":5012.0,"p99":5100.420042037964}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:41+00","p50":4078.5,"p95":5131.599974274635,"p99":5902.8802485466}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:42+00","p50":3590.75,"p95":5073.799988150597,"p99":5685.760063648224}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:43+00","p50":4152.5,"p95":5012.399996519089,"p99":5039.920136451721}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:44+00","p50":4073.75,"p95":5238.699987769127,"p99":5795.9409556388855}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:45+00","p50":3704.75,"p95":5178.699970006943,"p99":6039.960067749023}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:46+00","p50":4157.75,"p95":5117.399975299835,"p99":5838.460173606873}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:47+00","p50":4235.75,"p95":5206.099989056587,"p99":5855.8307864665985}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:48+00","p50":3752.0,"p95":5350.399987220764,"p99":5547.840797424316}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:49+00","p50":4351.5,"p95":5367.799958229065,"p99":6352.281228065491}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:50+00","p50":3552.625,"p95":5452.399985790253,"p99":6108.180025577545}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:51+00","p50":4613.5,"p95":5567.899995565414,"p99":6266.980086326599}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:52+00","p50":3763.0,"p95":5803.499938249588,"p99":6406.1003885269165}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:53+00","p50":4708.5,"p95":5896.849981248379,"p99":6606.970233201981}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:54+00","p50":4324.0,"p95":5743.9999767541885,"p99":6777.000341892242}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:55+00","p50":4356.0,"p95":5725.299974799156,"p99":5805.880017280579}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:56+00","p50":4050.0,"p95":5631.999966144562,"p99":6712.481091499329}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:57+00","p50":4302.0,"p95":5450.399964332581,"p99":6319.560264587402}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:58+00","p50":4265.625,"p95":5413.49998152256,"p99":5566.150054693222}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:48:59+00","p50":4419.0,"p95":5370.699993848801,"p99":6096.24009513855}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:00+00","p50":4469.0,"p95":5208.999988555908,"p99":5676.900352478027}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:01+00","p50":3535.375,"p95":5112.849994599819,"p99":5195.760034561157}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:02+00","p50":3731.625,"p95":4856.449981868267,"p99":5018.050008058548}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:03+00","p50":3798.0,"p95":4608.399978399277,"p99":4650.7000432014465}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:04+00","p50":3722.125,"p95":4758.899988770485,"p99":4831.580008983612}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:05+00","p50":3883.0,"p95":4789.499968886375,"p99":4932.500815868378}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:06+00","p50":4029.875,"p95":4700.049961268902,"p99":5354.700048923492}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:07+00","p50":4076.375,"p95":4753.249990642071,"p99":5254.760646820068}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:08+00","p50":3982.5,"p95":5056.399987816811,"p99":5144.040523529053}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:09+00","p50":4046.25,"p95":4961.5999965667725,"p99":5734.9200439453125}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:10+00","p50":3933.875,"p95":5035.549998104572,"p99":5068.470025777817}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:11+00","p50":4021.0,"p95":4987.749991238117,"p99":5141.031122922897}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:12+00","p50":4022.5,"p95":5127.999992132187,"p99":5154.850001573563}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:13+00","p50":3656.75,"p95":5117.999974608421,"p99":5244.0805768966675}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:14+00","p50":3483.75,"p95":5021.499974131584,"p99":5719.050028085709}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:15+00","p50":3816.75,"p95":5130.899994134903,"p99":5774.160009384155}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:16+00","p50":4107.125,"p95":5035.04999345541,"p99":5470.0609040260315}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:17+00","p50":3316.5,"p95":4813.999894142151,"p99":5509.560039520264}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:18+00","p50":3940.5,"p95":4859.599988698959,"p99":4954.320031642914}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:19+00","p50":3984.25,"p95":4746.0,"p99":4823.240008354187}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:20+00","p50":3964.375,"p95":4762.749990999699,"p99":4955.170119524002}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:21+00","p50":4061.875,"p95":4974.99996638298,"p99":5462.570098161697}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:22+00","p50":4056.25,"p95":5108.3999853134155,"p99":5777.840299606323}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:23+00","p50":4049.75,"p95":5025.999962568283,"p99":5077.650007486343}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:24+00","p50":3997.625,"p95":4958.749998152256,"p99":5020.700038433075}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:25+00","p50":3962.875,"p95":5018.799971580505,"p99":5097.280181884766}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:26+00","p50":3690.25,"p95":4986.699989914894,"p99":5720.040344238281}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:27+00","p50":4054.875,"p95":5152.749991476536,"p99":5858.700013637543}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:28+00","p50":4337.0,"p95":5150.999972462654,"p99":5871.720157146454}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:29+00","p50":4380.0,"p95":5173.899988770485,"p99":5825.11093878746}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:30+00","p50":4315.125,"p95":5116.699996352196,"p99":5197.430027723312}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:31+00","p50":3974.5,"p95":5118.2999947071075,"p99":5145.040002822876}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:32+00","p50":3886.5,"p95":5066.199996471405,"p99":5139.140009880066}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:33+00","p50":4055.5,"p95":5002.7999522686005,"p99":5606.080547809601}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:34+00","p50":3884.25,"p95":4879.249959170818,"p99":5264.121599197388}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:35+00","p50":4153.0,"p95":4955.399996042252,"p99":5067.3200759887695}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:36+00","p50":4105.375,"p95":4800.249990642071,"p99":5508.010085344315}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:37+00","p50":3917.625,"p95":4675.849998176098,"p99":4755.5300714969635}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:38+00","p50":3865.5,"p95":4642.59998190403,"p99":5176.760063171387}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:39+00","p50":3965.0,"p95":4704.549983799458,"p99":4793.83002448082}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:40+00","p50":4010.25,"p95":4676.799966931343,"p99":5088.7600264549255}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:41+00","p50":4063.75,"p95":4831.049998223782,"p99":4899.600511550903}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:42+00","p50":3985.625,"p95":4835.349998295307,"p99":5385.200081825256}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:43+00","p50":4077.75,"p95":5004.99999666214,"p99":5389.100094795227}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:44+00","p50":4100.75,"p95":4879.149998009205,"p99":5017.8800573349}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:45+00","p50":3894.75,"p95":4927.499990701675,"p99":5500.200044631958}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:46+00","p50":3978.875,"p95":4839.549993813038,"p99":4951.960079193115}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:47+00","p50":4007.375,"p95":4703.849981248379,"p99":5110.6101677417755}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:48+00","p50":3698.0,"p95":4717.49998486042,"p99":4775.75003027916}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:49+00","p50":4185.0,"p95":4822.199961185455,"p99":4976.060004234314}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:50+00","p50":3949.0,"p95":4817.799949169159,"p99":5228.300164222717}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:51+00","p50":4259.5,"p95":4907.599983692169,"p99":5091.080111980438}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:52+00","p50":4462.0,"p95":5324.499985337257,"p99":5431.530045747757}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:53+00","p50":4415.75,"p95":5294.249991595745,"p99":6003.970716714859}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:54+00","p50":4396.875,"p95":5010.749998152256,"p99":5102.000029563904}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:55+00","p50":4352.75,"p95":5009.199992656708,"p99":5462.520054340363}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:56+00","p50":4087.75,"p95":5137.0,"p99":5250.3805565834045}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:57+00","p50":4153.0,"p95":4888.849987447262,"p99":5118.300569057465}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:58+00","p50":4421.5,"p95":5287.999987125397,"p99":5405.200087547302}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:49:59+00","p50":4552.0,"p95":5317.999981760979,"p99":5914.600027561188}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:00+00","p50":4620.0,"p95":5413.199975967407,"p99":6032.080024719238}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:01+00","p50":4531.25,"p95":5441.599977254868,"p99":5525.470025777817}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:02+00","p50":3941.5,"p95":5481.899972438812,"p99":5695.100667953491}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:03+00","p50":4083.5,"p95":5444.44998639822,"p99":5601.46009016037}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:04+00","p50":4044.75,"p95":5062.999982357025,"p99":5162.56166267395}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:05+00","p50":3774.75,"p95":5030.399959087372,"p99":5139.100022315979}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:06+00","p50":3938.75,"p95":5171.499990701675,"p99":5802.880077362061}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:07+00","p50":3785.125,"p95":5188.849925220013,"p99":5992.630990743637}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:08+00","p50":4263.25,"p95":5200.79998588562,"p99":5454.480457305908}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:09+00","p50":3542.5,"p95":5367.798892021179,"p99":6125.560956954956}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:10+00","p50":4299.25,"p95":5218.1999335289,"p99":5888.920112609863}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:11+00","p50":4124.625,"p95":4942.749971926212,"p99":5694.200059890747}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:12+00","p50":3990.0,"p95":4946.199948549271,"p99":5632.6000237464905}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:13+00","p50":3550.75,"p95":4925.999998211861,"p99":5006.000798225403}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:14+00","p50":3927.25,"p95":4744.3999927043915,"p99":4792.670016050339}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:15+00","p50":3998.75,"p95":4772.749978363514,"p99":4943.0500519275665}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:16+00","p50":3674.5,"p95":4663.399988412857,"p99":4782.600069522858}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:17+00","p50":3838.5,"p95":4741.949971020222,"p99":5284.120021820068}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:18+00","p50":3981.0,"p95":4876.74999243021,"p99":5092.850599527359}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:19+00","p50":4020.75,"p95":4878.499941706657,"p99":5418.230045080185}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:20+00","p50":4114.0,"p95":4760.599992752075,"p99":4840.900007247925}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:21+00","p50":4181.5,"p95":4965.599986076355,"p99":5329.760165691376}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:22+00","p50":3918.5,"p95":4996.249970138073,"p99":5113.070046186447}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:23+00","p50":3850.125,"p95":4570.049998223782,"p99":4905.210029840469}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:24+00","p50":4024.25,"p95":4666.099970817566,"p99":4937.440170288086}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:25+00","p50":3834.0,"p95":4613.999962449074,"p99":4651.0005078315735}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:26+00","p50":3992.0,"p95":4516.499972105026,"p99":4873.880151748657}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:27+00","p50":4066.5,"p95":4501.199955582619,"p99":4605.960240840912}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:28+00","p50":4078.0,"p95":4627.499981641769,"p99":4976.600141525269}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:29+00","p50":4093.25,"p95":4603.099996447563,"p99":4704.100298404694}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:30+00","p50":4114.5,"p95":4716.199901819229,"p99":5103.040322303772}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:31+00","p50":4128.0,"p95":4522.599976539612,"p99":4793.340029716492}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:32+00","p50":4034.75,"p95":4357.44998639822,"p99":4397.830013990402}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:33+00","p50":3753.25,"p95":4319.899994850159,"p99":4519.960296630859}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:34+00","p50":3808.75,"p95":4263.899980068207,"p99":4731.880443572998}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:35+00","p50":3878.5,"p95":4171.199998021126,"p99":4273.720052242279}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:36+00","p50":3929.375,"p95":4101.099990487099,"p99":4189.4501078128815}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:37+00","p50":3921.25,"p95":4186.799991846085,"p99":4259.27002120018}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:38+00","p50":3975.75,"p95":4206.999983787537,"p99":4574.880054473877}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:39+00","p50":4036.25,"p95":4262.5998878479,"p99":4435.100098133087}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:40+00","p50":4037.25,"p95":4226.599996328354,"p99":4292.840005874634}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:41+00","p50":3979.5,"p95":4269.999988555908,"p99":4307.700004577637}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:42+00","p50":3931.75,"p95":4249.249991118908,"p99":4346.3900554180145}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:43+00","p50":4015.75,"p95":4351.599959373474,"p99":4700.600128650665}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:44+00","p50":3926.0,"p95":4197.9999878406525,"p99":4605.800552845001}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:45+00","p50":3853.0,"p95":4189.599969863892,"p99":4237.040018081665}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:46+00","p50":3819.625,"p95":4247.1499653458595,"p99":4311.610018968582}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:47+00","p50":3791.5,"p95":4272.399988412857,"p99":4631.040089607239}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:48+00","p50":3859.25,"p95":4179.8999761343,"p99":4376.66018819809}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:49+00","p50":3949.75,"p95":4338.2999947071075,"p99":4408.140009880066}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:50+00","p50":3957.125,"p95":4449.249991118908,"p99":4622.230032682419}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:51+00","p50":3976.5,"p95":4506.999996185303,"p99":4796.500343322754}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:52+00","p50":3955.875,"p95":4406.699957251549,"p99":4560.570172548294}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:53+00","p50":3763.5,"p95":4130.699998140335,"p99":4399.660206794739}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:54+00","p50":3897.0,"p95":4351.299985408783,"p99":4421.700006484985}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:55+00","p50":3944.0,"p95":4299.799992799759,"p99":4457.850165605545}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:56+00","p50":4126.0,"p95":4395.049996316433,"p99":4425.580013751984}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:57+00","p50":4391.75,"p95":4651.949998438358,"p99":4749.090013742447}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:58+00","p50":4655.5,"p95":5036.299990773201,"p99":5080.470008611679}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:50:59+00","p50":4580.25,"p95":4921.49999499321,"p99":5003.900385856628}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:00+00","p50":4689.5,"p95":4967.699970602989,"p99":5040.73002743721}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:01+00","p50":4440.875,"p95":4876.299976468086,"p99":5202.870057821274}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:02+00","p50":4328.75,"p95":4878.49999165535,"p99":5125.7003698349}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:03+00","p50":4193.5,"p95":4722.699998140335,"p99":4789.980025291443}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:04+00","p50":4091.375,"p95":4659.649987399578,"p99":4910.4602217674255}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:05+00","p50":4006.5,"p95":4566.599991798401,"p99":4859.160364151001}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:06+00","p50":3818.75,"p95":4469.599962234497,"p99":4923.620105743408}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:07+00","p50":3892.25,"p95":4510.599984765053,"p99":4694.920167922974}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:08+00","p50":3888.375,"p95":4606.199954509735,"p99":4704.660039424896}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:09+00","p50":3960.25,"p95":4550.999959945679,"p99":5499.000093460083}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:10+00","p50":4049.625,"p95":4773.499911189079,"p99":5207.880125045776}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:11+00","p50":3972.0,"p95":4834.0,"p99":4951.750115156174}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:12+00","p50":3865.75,"p95":4558.049997985363,"p99":4601.110049962997}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:13+00","p50":3847.0,"p95":4593.399970412254,"p99":4963.080037593842}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:14+00","p50":3855.0,"p95":4726.399954795837,"p99":5388.920980930328}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:15+00","p50":3831.0,"p95":4732.149963200092,"p99":4829.0600028038025}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:16+00","p50":3910.0,"p95":4692.599982619286,"p99":5409.320098876953}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:17+00","p50":4027.75,"p95":4783.299935221672,"p99":4923.9304077625275}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:18+00","p50":3877.5,"p95":5004.349979937077,"p99":5629.140820026398}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:19+00","p50":3709.5,"p95":4995.799966096878,"p99":5614.240033149719}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:20+00","p50":3986.75,"p95":4975.2999893426895,"p99":5510.900269985199}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:21+00","p50":3878.0,"p95":5252.699990987778,"p99":5755.1001081466675}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:22+00","p50":4126.0,"p95":5518.149989902973,"p99":5594.320009231567}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:23+00","p50":4444.25,"p95":5661.249963700771,"p99":6313.150087118149}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:24+00","p50":4544.875,"p95":5474.299996256828,"p99":6253.121173858643}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:25+00","p50":4501.0,"p95":5457.399930477142,"p99":6005.640081882477}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:26+00","p50":4235.625,"p95":5376.999968767166,"p99":5461.830196142197}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:27+00","p50":4000.0,"p95":5107.9999969005585,"p99":5332.2007575035095}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:28+00","p50":4163.5,"p95":5209.4999849796295,"p99":5357.800891876221}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:29+00","p50":4370.875,"p95":5248.099973797798,"p99":5300.320035934448}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:30+00","p50":4376.125,"p95":5258.649987399578,"p99":5367.530067682266}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:31+00","p50":4107.0,"p95":5051.349987566471,"p99":5340.290467500687}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:32+00","p50":3944.5,"p95":5053.999990582466,"p99":5598.320785045624}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:33+00","p50":3968.0,"p95":4784.999981164932,"p99":5169.40051984787}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:34+00","p50":3915.5,"p95":4720.599998354912,"p99":4812.120001316071}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:35+00","p50":3815.5,"p95":4759.0,"p99":5275.0000829696655}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:36+00","p50":3857.5,"p95":4562.999987483025,"p99":4645.000776767731}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:37+00","p50":3863.25,"p95":4678.999992847443,"p99":4773.000557899475}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:38+00","p50":3880.5,"p95":4635.499996066093,"p99":5105.700789928436}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:39+00","p50":3858.5,"p95":4527.999996423721,"p99":5177.000020027161}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:40+00","p50":3862.875,"p95":4682.649947106838,"p99":4752.82000875473}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:41+00","p50":3857.75,"p95":4825.749998152256,"p99":5335.30007982254}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:42+00","p50":3899.0,"p95":4675.999996185303,"p99":5102.9006271362305}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:43+00","p50":3961.875,"p95":4815.249972999096,"p99":4900.630053281784}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:44+00","p50":4007.0,"p95":4787.999993085861,"p99":5424.400342941284}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:45+00","p50":4095.25,"p95":4888.2499913573265,"p99":5008.200475692749}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:46+00","p50":4017.75,"p95":4987.299987316132,"p99":5047.700021743774}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:47+00","p50":3884.0,"p95":5094.799949645996,"p99":5614.4401779174805}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:48+00","p50":3721.5,"p95":4799.3999853134155,"p99":4852.48001909256}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:49+00","p50":4024.375,"p95":4852.649987399578,"p99":5863.951159238815}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:50+00","p50":4041.5,"p95":4807.199996709824,"p99":4887.560017108917}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:51+00","p50":3973.0,"p95":5073.999977827072,"p99":5619.600780487061}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:52+00","p50":4012.5,"p95":5036.199993133545,"p99":5663.140232086182}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:53+00","p50":4069.25,"p95":5071.749971210957,"p99":5540.850560426712}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:54+00","p50":3743.5,"p95":5066.599977970123,"p99":5171.880004405975}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:55+00","p50":4135.125,"p95":5263.949985086918,"p99":5764.020241260529}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:56+00","p50":3959.125,"p95":5169.0,"p99":6159.080020904541}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:57+00","p50":4038.5,"p95":5429.199996948242,"p99":5567.1600341796875}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:58+00","p50":4174.5,"p95":5559.349998056889,"p99":5635.790026426315}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:51:59+00","p50":4492.25,"p95":5449.949982941151,"p99":5673.230080366135}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:00+00","p50":4448.25,"p95":5403.19997882843,"p99":5484.680965423584}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:01+00","p50":3636.25,"p95":5473.499975681305,"p99":5510.700006484985}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:02+00","p50":4389.0,"p95":5455.899990916252,"p99":5506.880067825317}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:03+00","p50":4041.75,"p95":5368.899996161461,"p99":5486.250038385391}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:04+00","p50":4011.75,"p95":5469.499991178513,"p99":6215.080005645752}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:05+00","p50":3851.0,"p95":5509.2999893426895,"p99":5590.410058259964}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:06+00","p50":4245.0,"p95":5393.0,"p99":6357.080063343048}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:07+00","p50":3658.25,"p95":5396.59992814064,"p99":6220.810048341751}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:08+00","p50":4444.0,"p95":5446.499974966049,"p99":6207.100028038025}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:09+00","p50":4124.0,"p95":5495.0999982357025,"p99":5546.381085395813}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:10+00","p50":4273.0,"p95":5513.699996352196,"p99":6367.871124982834}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:11+00","p50":3940.5,"p95":5459.199996232986,"p99":5499.400030136108}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:12+00","p50":4283.75,"p95":5533.349998295307,"p99":6357.9900777339935}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:13+00","p50":4227.5,"p95":5427.399983048439,"p99":5478.600045204163}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:14+00","p50":4335.25,"p95":5298.799998164177,"p99":6209.640270233154}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:15+00","p50":3459.375,"p95":5317.399986743927,"p99":5517.390595197678}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:16+00","p50":4412.125,"p95":5363.499995827675,"p99":6060.750021696091}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:17+00","p50":3501.625,"p95":5382.9499943852425,"p99":5437.530031442642}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:18+00","p50":3581.0,"p95":5290.599980831146,"p99":6240.360026836395}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:19+00","p50":3700.125,"p95":5448.849983155727,"p99":6199.110489606857}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:20+00","p50":4179.5,"p95":5374.89997279644,"p99":5683.940096378326}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:21+00","p50":4351.0,"p95":5307.199996471405,"p99":5414.280725479126}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:22+00","p50":3493.5,"p95":5287.499992132187,"p99":6013.140154838562}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:23+00","p50":4378.25,"p95":5418.899986982346,"p99":6071.7200565338135}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:24+00","p50":3898.25,"p95":5299.899987339973,"p99":5378.530102968216}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:25+00","p50":4173.125,"p95":5053.5499702095985,"p99":5678.960465431213}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:26+00","p50":4219.875,"p95":5128.899934411049,"p99":5314.09076333046}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:27+00","p50":4135.75,"p95":5182.949998438358,"p99":6117.680214881897}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:28+00","p50":4235.125,"p95":5169.649995028973,"p99":5196.110001325607}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:29+00","p50":4398.0,"p95":5078.999997973442,"p99":5213.800025939941}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:30+00","p50":3866.875,"p95":5107.949985563755,"p99":5237.390011548996}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:31+00","p50":3903.0,"p95":5077.099980592728,"p99":5171.140009880066}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:32+00","p50":3707.0,"p95":4767.599992752075,"p99":4816.92000579834}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:33+00","p50":3868.125,"p95":4621.649987399578,"p99":5288.380233287811}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:34+00","p50":3829.75,"p95":4779.699984550476,"p99":4903.720497131348}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:35+00","p50":3989.0,"p95":4957.799986481667,"p99":5030.640004634857}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:36+00","p50":4051.0,"p95":5038.799984931946,"p99":5078.200015068054}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:37+00","p50":3805.0,"p95":4799.899994134903,"p99":5318.740796089172}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:38+00","p50":4187.0,"p95":5058.399969577789,"p99":5136.700005531311}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:39+00","p50":3719.125,"p95":5113.149998247623,"p99":5245.720454216003}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:40+00","p50":3965.5,"p95":5073.749998152256,"p99":5623.450045824051}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:41+00","p50":4282.0,"p95":5156.7999584674835,"p99":5400.520539283752}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:42+00","p50":4178.625,"p95":5234.649947106838,"p99":5727.170089006424}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:43+00","p50":4125.25,"p95":5278.0,"p99":5396.0200028419495}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:44+00","p50":4038.5,"p95":4929.4999895095825,"p99":5012.480003356934}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:45+00","p50":3798.5,"p95":4762.599995613098,"p99":5320.480136871338}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:46+00","p50":3561.5,"p95":4460.499988913536,"p99":4504.700008869171}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:47+00","p50":3395.875,"p95":4627.199947595596,"p99":5285.95002245903}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:48+00","p50":3723.5,"p95":4560.599996328354,"p99":5155.560089588165}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:49+00","p50":3825.5,"p95":4595.099987983704,"p99":4696.700611114502}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:50+00","p50":3853.75,"p95":4749.099975824356,"p99":5265.880077362061}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:51+00","p50":4125.375,"p95":4939.949995100498,"p99":5338.49022603035}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:52+00","p50":4187.0,"p95":5015.499986052513,"p99":5230.65056347847}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:53+00","p50":4295.125,"p95":5137.549986898899,"p99":5688.230016469955}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:54+00","p50":4167.5,"p95":5155.249973714352,"p99":5197.710079908371}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:55+00","p50":4183.25,"p95":5217.199989557266,"p99":6018.400710105896}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:56+00","p50":4345.75,"p95":5371.499934911728,"p99":5511.700196266174}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:57+00","p50":4380.0,"p95":5370.999983787537,"p99":5586.400596618652}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:58+00","p50":4133.5,"p95":5190.299998283386,"p99":5230.720016479492}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:52:59+00","p50":4226.5,"p95":5309.0,"p99":5392.520046710968}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:00+00","p50":3786.0,"p95":5222.999985694885,"p99":5301.000605106354}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:01+00","p50":4210.625,"p95":5118.0,"p99":5748.8501789569855}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:02+00","p50":3959.5,"p95":5000.599992275238,"p99":5767.160203933716}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:03+00","p50":3977.875,"p95":4813.999992609024,"p99":5541.55019068718}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:04+00","p50":3960.875,"p95":4768.14998203516,"p99":5417.860159397125}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:05+00","p50":3864.75,"p95":4858.0,"p99":5378.900590419769}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:06+00","p50":4019.25,"p95":4945.39998626709,"p99":5037.20085144043}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:07+00","p50":4257.0,"p95":5059.0,"p99":5780.670110464096}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:08+00","p50":4063.0,"p95":5227.099954366684,"p99":5468.960657119751}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:09+00","p50":4368.25,"p95":5421.999983906746,"p99":5451.000044345856}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:10+00","p50":4585.0,"p95":5542.249978005886,"p99":6123.150052785873}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:11+00","p50":4211.625,"p95":5601.349971830845,"p99":5696.550801992416}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:12+00","p50":4645.0,"p95":5611.74999409914,"p99":5650.400037765503}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:13+00","p50":4313.0,"p95":5514.599963307381,"p99":6098.440792560577}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:14+00","p50":3934.25,"p95":5213.74999409914,"p99":5304.200050354004}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:15+00","p50":3534.0,"p95":4761.899993419647,"p99":5094.940542221069}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:16+00","p50":3775.0,"p95":4544.499980568886,"p99":4609.350007772446}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:17+00","p50":3327.5,"p95":4612.599998116493,"p99":4654.480028629303}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:18+00","p50":3788.0,"p95":4695.999977827072,"p99":5318.050855875015}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:19+00","p50":3846.0,"p95":4673.499979019165,"p99":5388.600234985352}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:20+00","p50":3620.0,"p95":4896.299824357033,"p99":5345.79011797905}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:21+00","p50":3702.0,"p95":5090.499981760979,"p99":5232.650065660477}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:22+00","p50":4200.125,"p95":5117.299996495247,"p99":5821.840179443359}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:23+00","p50":3705.875,"p95":5136.199978113174,"p99":5828.130042314529}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:24+00","p50":3856.125,"p95":5243.899989485741,"p99":5334.600028038025}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:25+00","p50":4259.75,"p95":5340.5499702095985,"p99":6018.630169630051}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:26+00","p50":3982.25,"p95":5388.499968290329,"p99":6304.40012550354}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:27+00","p50":4378.875,"p95":5405.1499953866005,"p99":5518.470008611679}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:28+00","p50":4057.0,"p95":5572.999969959259,"p99":6300.500247001648}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:29+00","p50":4545.75,"p95":5587.99997317791,"p99":6216.000181674957}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:30+00","p50":3978.75,"p95":5647.59997177124,"p99":5738.621031761169}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:31+00","p50":4564.875,"p95":5730.349982559681,"p99":5813.210016489029}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:32+00","p50":3822.875,"p95":5703.0,"p99":6574.631205320358}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:33+00","p50":4423.75,"p95":5526.999990105629,"p99":5605.120028495789}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:34+00","p50":4326.625,"p95":5317.749998152256,"p99":5483.15011382103}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:35+00","p50":3370.0,"p95":5085.799996376038,"p99":5545.860155105591}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:36+00","p50":3865.75,"p95":5261.999992251396,"p99":6170.000024795532}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:37+00","p50":4163.0,"p95":5247.499969244003,"p99":5970.301205635071}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:38+00","p50":3906.125,"p95":5078.199967384338,"p99":5118.370004892349}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:39+00","p50":4096.75,"p95":4982.0,"p99":5287.8500854969025}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:40+00","p50":3459.625,"p95":4948.44998639822,"p99":5645.410066843033}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:41+00","p50":3844.75,"p95":4786.999989628792,"p99":5644.120144367218}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:42+00","p50":3398.5,"p95":4709.299996256828,"p99":5205.240700721741}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:43+00","p50":3936.25,"p95":4819.099980592728,"p99":4870.921052932739}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:44+00","p50":3867.0,"p95":4820.1999888420105,"p99":5437.800029754639}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:45+00","p50":3939.5,"p95":4784.499981760979,"p99":4826.760011672974}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:46+00","p50":3634.0,"p95":4930.1999834775925,"p99":5079.400058746338}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:47+00","p50":4172.0,"p95":5039.449984014034,"p99":5147.150731801987}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:48+00","p50":4272.25,"p95":5115.799984335899,"p99":5202.2000069618225}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:49+00","p50":4307.125,"p95":5260.749991476536,"p99":6024.360065460205}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:50+00","p50":3932.0,"p95":5214.099996209145,"p99":6070.580057621002}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:51+00","p50":3944.5,"p95":5019.1999888420105,"p99":5216.380188941956}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:52+00","p50":4276.5,"p95":5185.999989151955,"p99":5275.800054550171}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:53+00","p50":3894.0,"p95":5241.999979972839,"p99":5427.900839805603}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:54+00","p50":4183.0,"p95":5332.999984741211,"p99":5403.000030517578}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:55+00","p50":3955.75,"p95":5185.44999474287,"p99":5974.470068693161}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:56+00","p50":4319.5,"p95":5500.499991893768,"p99":6038.8402671813965}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:57+00","p50":3962.0,"p95":5619.999971628189,"p99":6394.440254211426}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:58+00","p50":4223.0,"p95":5598.099997758865,"p99":5748.180069923401}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:53:59+00","p50":3481.3333333333335,"p95":5079.04994314909,"p99":5247.540110111237}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:54:00+00","p50":3547.777777777778,"p95":4354.799990415573,"p99":4868.0605635643005}, + {"metric_name":"oidc_session_duration","timestamp":"2025-02-25 14:54:01+00","p50":2788.0,"p95":2858.34999614954,"p99":2865.0}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:23:59+00","p50":318.257213875,"p95":514.5172733277097,"p99":531.5560519789628}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:00+00","p50":615.2308725,"p95":744.9976568722952,"p99":779.5591113678698}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:01+00","p50":790.838948875,"p95":875.6845375629654,"p99":893.9481238409545}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:02+00","p50":906.75765375,"p95":1010.2756786086649,"p99":1021.1621610457669}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:03+00","p50":1031.79282525,"p95":1290.6646419817835,"p99":1301.9739752688756}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:04+00","p50":1148.421545875,"p95":1355.5298260700195,"p99":1369.5902623623933}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:05+00","p50":1302.860049,"p95":1373.4843539683,"p99":1381.458942918518}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:06+00","p50":1531.2774975,"p95":1727.0988918096905,"p99":1740.6296473294506}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:07+00","p50":1721.26488675,"p95":1922.524600609455,"p99":1943.9292204269705}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:08+00","p50":1802.5658937500002,"p95":2024.5473021773128,"p99":2054.887496144639}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:09+00","p50":1978.882456,"p95":2191.902895516285,"p99":2205.1589590132908}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:10+00","p50":1990.6579725,"p95":2209.3159734986725,"p99":2238.0826819135714}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:11+00","p50":2176.4690714999997,"p95":2292.1497635079963,"p99":2303.916270833235}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:12+00","p50":2324.7444459999997,"p95":2544.367692183368,"p99":2549.848348520047}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:13+00","p50":2446.0844977499996,"p95":2589.530504181544,"p99":2609.0245395498077}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:14+00","p50":2504.683462125,"p95":2651.2530719654264,"p99":2680.9332736875335}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:15+00","p50":2680.0950148750003,"p95":2741.7838358323156,"p99":2768.2416541217744}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:16+00","p50":2810.4141692499998,"p95":3040.027586211146,"p99":3067.2793681274493}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:17+00","p50":2906.57442975,"p95":3041.724965315609,"p99":3075.419855225094}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:18+00","p50":3120.73932075,"p95":3199.255901603081,"p99":3220.4518787051666}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:19+00","p50":3233.4853369999996,"p95":3438.1120182096033,"p99":3465.277620075524}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:20+00","p50":3446.04431375,"p95":3601.861288024976,"p99":3615.8428149645874}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:21+00","p50":3595.5924704999998,"p95":3900.2569235455717,"p99":3975.1193913844636}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:22+00","p50":3531.61714075,"p95":4071.1654271523316,"p99":4486.923778539505}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:23+00","p50":3687.4838600000003,"p95":4086.7900667323283,"p99":4100.71143191364}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:24+00","p50":3611.33292075,"p95":4074.1877501210597,"p99":4509.930734696066}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:25+00","p50":3638.103952125,"p95":4072.8700214423247,"p99":4573.41064654972}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:26+00","p50":3510.234285125,"p95":4061.9114029906805,"p99":4437.98522896557}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:27+00","p50":3601.5576490000003,"p95":3927.2926392530594,"p99":4387.442760254505}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:28+00","p50":3511.834971,"p95":3957.426548973483,"p99":3963.6552373156173}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:29+00","p50":3867.2986204999997,"p95":4063.7594057928427,"p99":4476.03004764843}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:30+00","p50":3556.5346731249997,"p95":4040.157939341941,"p99":4439.21579197665}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:31+00","p50":3547.3357925,"p95":3922.01176201694,"p99":3942.629515900821}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:32+00","p50":3565.428602,"p95":3674.8580207980353,"p99":3720.5394602779356}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:33+00","p50":3404.256337625,"p95":3729.3204558256125,"p99":4119.504816867131}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:34+00","p50":3396.5651429999994,"p95":3850.461258424381,"p99":4299.858963738588}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:35+00","p50":3411.676362,"p95":3843.320541621439,"p99":4326.075394919133}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:36+00","p50":3212.18869575,"p95":3631.597678906604,"p99":4052.2754372288546}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:37+00","p50":3543.3518205,"p95":3802.4114436087457,"p99":4144.388407717189}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:38+00","p50":3277.927658125,"p95":3702.199795814139,"p99":3717.452258678274}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:39+00","p50":3391.0351877499997,"p95":3755.0789200971144,"p99":4166.348248277748}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:40+00","p50":3334.3780690000003,"p95":3615.911845278965,"p99":4036.046196287218}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:41+00","p50":3235.634038,"p95":3511.7357670321,"p99":3533.479011059226}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:42+00","p50":3264.74354625,"p95":3559.9847295614622,"p99":3605.2525032476674}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:43+00","p50":3525.801193625,"p95":3661.151233722853,"p99":3718.1446374812895}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:44+00","p50":3527.277897,"p95":3610.947534595779,"p99":3784.7907925760046}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:45+00","p50":3577.828263125,"p95":3633.0049828603137,"p99":3751.6392640339077}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:46+00","p50":3463.34763775,"p95":3585.4146807282923,"p99":3611.8553884622656}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:47+00","p50":3366.5365125,"p95":3520.566598874537,"p99":3765.04485589119}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:48+00","p50":3463.1514859999997,"p95":3559.112490061339,"p99":3696.2986221402493}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:49+00","p50":3500.744176875,"p95":3732.8167910003176,"p99":3767.479247207812}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:50+00","p50":3585.1259915,"p95":3736.1974891706495,"p99":3774.462153419137}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:51+00","p50":3747.2525849999997,"p95":3881.1657774875243,"p99":4137.93943490527}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:52+00","p50":3649.71790125,"p95":3823.381431391973,"p99":3842.540053848862}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:53+00","p50":3690.2178052500003,"p95":3798.6987488999443,"p99":3897.5215393892554}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:54+00","p50":3735.656183875,"p95":3830.9000724477905,"p99":4059.697179538623}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:55+00","p50":3600.54081975,"p95":3805.822567617779,"p99":3889.993837703535}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:56+00","p50":3801.22329,"p95":4029.104522612628,"p99":4061.611025709741}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:57+00","p50":3785.339486375,"p95":3967.7904143999876,"p99":4168.890813885157}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:58+00","p50":3694.8809123749998,"p95":3857.7252110720683,"p99":4158.216895944797}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:24:59+00","p50":3656.3428513749996,"p95":3763.213065953433,"p99":3880.4236329015034}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:00+00","p50":3593.82109925,"p95":3672.6909742913763,"p99":3852.0690457144487}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:01+00","p50":3478.9615205,"p95":3557.932504728273,"p99":3709.1024702415716}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:02+00","p50":3521.4678653749997,"p95":3603.2595871204285,"p99":3740.4721125684705}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:03+00","p50":3581.76149075,"p95":3697.0128710797,"p99":3922.682242458376}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:04+00","p50":3516.225599375,"p95":3588.9021518697486,"p99":3810.2248513898194}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:05+00","p50":3427.34066,"p95":3582.2956253082693,"p99":3707.973709135007}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:06+00","p50":3420.0794214999996,"p95":3569.172599891657,"p99":3609.4501495733407}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:07+00","p50":3462.9104095000002,"p95":3565.727492054663,"p99":3835.851189270111}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:08+00","p50":3622.8823859999998,"p95":3772.9689387840695,"p99":3885.3832955724215}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:09+00","p50":3730.57883875,"p95":3843.1932471034984,"p99":3877.244675922702}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:10+00","p50":3679.8032942500004,"p95":3842.776543901489,"p99":4150.106671810617}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:11+00","p50":3567.590359625,"p95":3703.505146494678,"p99":3758.7888960016003}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:12+00","p50":3477.197212375,"p95":3551.751535620048,"p99":3884.9633133121397}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:13+00","p50":3539.3050026250003,"p95":3669.6216680028297,"p99":3699.549754191283}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:14+00","p50":3495.195182375,"p95":3695.808355233249,"p99":3731.295772108157}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:15+00","p50":3566.30512425,"p95":3725.491952808226,"p99":3902.9979797030924}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:16+00","p50":3488.08302,"p95":3689.4996533210146,"p99":3702.294636893147}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:17+00","p50":3415.85412875,"p95":3659.5651509388804,"p99":3709.086615620174}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:18+00","p50":3529.311957,"p95":3857.737303678934,"p99":4020.9337523655904}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:19+00","p50":3730.693097,"p95":4003.8014889041874,"p99":4266.601698436933}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:20+00","p50":3895.867279125,"p95":4148.039803250536,"p99":4348.727380626039}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:21+00","p50":3906.791890875,"p95":4168.79965361671,"p99":4177.2039238115285}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:22+00","p50":3593.226044,"p95":4340.426528809637,"p99":4911.210693036717}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:23+00","p50":3833.82376425,"p95":4288.753260677971,"p99":4300.924484395844}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:24+00","p50":3287.726313,"p95":4046.1809068847474,"p99":4617.68459322019}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:25+00","p50":3331.8465665,"p95":3819.415670170718,"p99":3889.5554152173236}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:26+00","p50":3481.90592625,"p95":3880.708875222845,"p99":3899.90477281493}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:27+00","p50":3270.7418795,"p95":3887.0462382685455,"p99":3929.7854237787255}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:28+00","p50":3601.68637725,"p95":3909.258552455942,"p99":4426.952432421562}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:29+00","p50":3201.3998465,"p95":3935.7045556175494,"p99":3963.3256527659514}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:30+00","p50":3126.6861416249994,"p95":4147.59832476965,"p99":4215.301285406424}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:31+00","p50":3225.591723625,"p95":4180.825460586614,"p99":4920.273588741885}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:32+00","p50":3695.8252138750004,"p95":4215.082598274665,"p99":4844.977716592199}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:33+00","p50":3117.2507425000003,"p95":4197.1613349728805,"p99":4233.814391560235}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:34+00","p50":3204.7169485000004,"p95":4085.515345695571,"p99":4788.421946637182}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:35+00","p50":3503.725206,"p95":4096.870886357378,"p99":4610.343151941729}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:36+00","p50":3920.87825,"p95":4041.912433317259,"p99":4680.303925122076}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:37+00","p50":3730.357664,"p95":4332.999375126092,"p99":4340.197223292382}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:38+00","p50":4191.6121825,"p95":4289.618204621079,"p99":4350.830015056537}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:39+00","p50":3382.6004305,"p95":4208.675556578914,"p99":4218.971652223488}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:40+00","p50":3938.884211875,"p95":4222.380188991984,"p99":4260.318794568973}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:41+00","p50":3333.0664575,"p95":3899.4723639318745,"p99":4748.727669736752}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:42+00","p50":3145.8303967499996,"p95":3799.1003704271034,"p99":3819.6899984406637}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:43+00","p50":2965.4569058750003,"p95":3848.2365355501142,"p99":4498.7474963259665}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:44+00","p50":3154.624902875,"p95":3967.2420468831956,"p99":4115.922302840257}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:45+00","p50":3509.041949,"p95":3965.412179053796,"p99":3997.0430946229676}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:46+00","p50":3157.6377679999996,"p95":3914.156320334858,"p99":4019.738916727091}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:47+00","p50":3318.22231075,"p95":3865.841038522584,"p99":4337.183490509892}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:48+00","p50":3216.854437,"p95":3869.8091404796464,"p99":4496.053587076728}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:49+00","p50":3260.02860975,"p95":3960.5863986227096,"p99":4573.78473805164}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:50+00","p50":3336.9933735,"p95":3879.95285561012,"p99":4379.707942109437}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:51+00","p50":3450.65681,"p95":4056.667577822483,"p99":4555.344308004432}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:52+00","p50":4092.255165,"p95":4311.429199183736,"p99":4443.26033698884}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:53+00","p50":3847.6867735,"p95":4257.114009501214,"p99":4888.372164108224}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:54+00","p50":3610.720882,"p95":4247.279180728638,"p99":4264.352095463552}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:55+00","p50":3552.026827,"p95":4015.6639999559106,"p99":4099.211796838768}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:56+00","p50":3316.125102,"p95":3983.042612748443,"p99":4432.465908144368}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:57+00","p50":3541.59546025,"p95":3984.1534312749213,"p99":3995.2669046785127}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:58+00","p50":3546.9275475,"p95":4146.647575301836,"p99":4177.285343882656}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:25:59+00","p50":3616.22071825,"p95":4226.460321547764,"p99":4696.934307374805}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:00+00","p50":3662.15952475,"p95":4098.797559146975,"p99":4119.477353739493}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:01+00","p50":3526.8627145,"p95":3785.517651456736,"p99":3840.3341122087604}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:02+00","p50":3474.251604,"p95":3562.105973708498,"p99":3739.36088886145}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:03+00","p50":3451.98868225,"p95":3509.13816836713,"p99":3619.4416864623786}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:04+00","p50":3508.92612375,"p95":3611.301713968859,"p99":3797.4619522869166}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:05+00","p50":3457.1430178749997,"p95":3561.6296253475484,"p99":3678.035409742035}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:06+00","p50":3495.966733875,"p95":3681.0627334183505,"p99":3744.1594845905984}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:07+00","p50":3452.77780325,"p95":3681.98401121583,"p99":3703.9825268366308}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:08+00","p50":3423.087943,"p95":3499.219289493744,"p99":3582.903040981125}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:09+00","p50":3462.26961725,"p95":3589.4144397112013,"p99":3613.9672255248156}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:10+00","p50":3468.10017625,"p95":3584.7065455348343,"p99":3739.062943692101}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:11+00","p50":3466.823829,"p95":3635.429398250429,"p99":3658.564746296943}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:12+00","p50":3405.45864825,"p95":3634.26954971359,"p99":3948.6261402218893}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:13+00","p50":3216.76469725,"p95":3666.7651342110075,"p99":4040.860831256069}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:14+00","p50":2978.462568875,"p95":3527.841870642037,"p99":3543.545944516956}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:15+00","p50":3451.837638625,"p95":3572.9070627645046,"p99":4005.784093757491}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:16+00","p50":3270.5569258749997,"p95":3763.790043609476,"p99":4009.8750724680185}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:17+00","p50":3423.68553575,"p95":3796.266196514504,"p99":4270.476355905004}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:18+00","p50":3538.264716375,"p95":3975.735486033632,"p99":4641.373530554107}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:19+00","p50":3783.0034138750007,"p95":3991.9284348751826,"p99":4652.030303113633}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:20+00","p50":3428.6354485,"p95":4080.7964455825218,"p99":4119.456860625247}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:21+00","p50":3466.271803,"p95":4254.376775088003,"p99":4392.439406620374}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:22+00","p50":4145.648621,"p95":4297.7983504262065,"p99":4881.6221973181355}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:23+00","p50":3453.809624375,"p95":4235.284208436033,"p99":4256.587256144354}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:24+00","p50":3544.632219375,"p95":3889.0094918878794,"p99":4504.422645498615}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:25+00","p50":3133.4848185,"p95":3831.3655840961887,"p99":3882.523913650601}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:26+00","p50":3535.5932433750004,"p95":3882.268604893289,"p99":4283.098898556368}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:27+00","p50":3291.7177245,"p95":3930.163065630021,"p99":4510.698082904734}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:28+00","p50":3374.5027785,"p95":4028.3962788353683,"p99":4510.735762242086}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:29+00","p50":3892.1633745,"p95":4054.1424457132707,"p99":4532.134821206853}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:30+00","p50":3324.0909887499997,"p95":3910.8101418382203,"p99":4375.267382739267}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:31+00","p50":3217.6968975,"p95":3813.7957852076265,"p99":4329.917330557441}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:32+00","p50":3476.533146875,"p95":3693.052141918579,"p99":3771.4608053531256}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:33+00","p50":3204.668976125,"p95":3889.567209955813,"p99":3913.6848181076816}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:34+00","p50":3380.404363,"p95":3849.7269721928114,"p99":3923.2834467936123}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:35+00","p50":2983.3259829999997,"p95":3750.6758693588727,"p99":4198.739128717658}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:36+00","p50":3045.4717252500004,"p95":3789.0832692432346,"p99":3823.5446670458327}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:37+00","p50":3559.7000635000004,"p95":3796.933455706567,"p99":4379.93753667425}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:38+00","p50":3301.911508,"p95":3922.615234142419,"p99":3943.220385344261}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:39+00","p50":3569.066047375,"p95":3980.649639555351,"p99":4010.4678052974264}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:40+00","p50":2936.1808815,"p95":3742.3617341416493,"p99":4217.976285432411}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:41+00","p50":3486.04881625,"p95":3755.914072270731,"p99":4357.341197964417}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:42+00","p50":3412.09496925,"p95":3769.1358189200187,"p99":4438.516250391419}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:43+00","p50":3262.5935755,"p95":3812.5355542915327,"p99":3839.668564269691}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:44+00","p50":3465.8458742499997,"p95":3875.9388805476074,"p99":4214.301094649151}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:45+00","p50":3207.36485175,"p95":3695.340292925361,"p99":3716.802749822253}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:46+00","p50":3384.9756196250005,"p95":3706.876177058282,"p99":3727.856590710151}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:47+00","p50":3568.251657,"p95":3688.181905724153,"p99":4171.133369482545}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:48+00","p50":2978.566192625,"p95":3931.2455632957835,"p99":3983.6640576241}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:49+00","p50":3670.2205672500004,"p95":3992.01932885076,"p99":4009.935001411243}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:50+00","p50":3673.9656728749997,"p95":3922.2200602978937,"p99":4491.003575866322}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:51+00","p50":3315.68537575,"p95":3867.2627854427974,"p99":4360.050515721922}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:52+00","p50":3449.0460439999997,"p95":3736.468532382954,"p99":3749.0563372721285}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:53+00","p50":3349.462993,"p95":3764.3428174321366,"p99":4263.014077979499}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:54+00","p50":3744.2229975,"p95":3927.321984617036,"p99":4426.456299050883}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:55+00","p50":3400.7016447500005,"p95":3848.735568202755,"p99":3912.464613249975}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:56+00","p50":3484.68829975,"p95":3737.3927293787283,"p99":3753.6285136706383}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:57+00","p50":3731.284213,"p95":3920.3408071203608,"p99":4385.905862223789}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:58+00","p50":3781.2445290000005,"p95":4090.459814546657,"p99":4570.615689405758}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:26:59+00","p50":3525.08254675,"p95":4224.417241069516,"p99":4255.712336167622}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:00+00","p50":3623.1936033750003,"p95":4133.104747764275,"p99":4164.522474699911}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:01+00","p50":3520.877783625,"p95":3986.294386601893,"p99":4002.8895375813404}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:02+00","p50":3082.652722,"p95":3719.2984090220275,"p99":4406.963595812104}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:03+00","p50":3274.186785,"p95":3517.637881479286,"p99":3900.756921351408}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:04+00","p50":3287.79080875,"p95":3583.340648100553,"p99":3838.092452572751}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:05+00","p50":3620.855594875,"p95":3951.1854957047144,"p99":4009.3561775390626}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:06+00","p50":3680.4248975,"p95":4059.783124925266,"p99":4614.452949989911}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:07+00","p50":3115.829333,"p95":3967.891059217614,"p99":3987.7577547969686}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:08+00","p50":3193.2945609999997,"p95":4187.21128918656,"p99":4510.32733838227}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:09+00","p50":3414.02003075,"p95":4133.778974696107,"p99":4148.451435665658}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:10+00","p50":3011.9273169999997,"p95":4011.812951370468,"p99":4458.402436701028}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:11+00","p50":2931.8864653749997,"p95":4150.360537729698,"p99":4723.901797395476}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:12+00","p50":3123.8275803750003,"p95":4102.141109958721,"p99":4118.3587737129865}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:13+00","p50":3179.8711137500004,"p95":3981.1310814125914,"p99":4693.530909740361}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:14+00","p50":3697.9281685,"p95":3903.1736238939584,"p99":4355.042440476161}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:15+00","p50":3451.07247725,"p95":3894.1496653366667,"p99":3906.1837873056675}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:16+00","p50":2693.4826555,"p95":3940.4119734507503,"p99":3949.831742593146}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:17+00","p50":3280.062521,"p95":3848.124274738824,"p99":4463.531678095536}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:18+00","p50":3828.022309125,"p95":3942.0613821552683,"p99":4065.2977380436764}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:19+00","p50":3271.6145435,"p95":4099.9645441288,"p99":4702.907016647326}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:20+00","p50":3716.277994,"p95":4042.054178503022,"p99":4056.544916928241}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:21+00","p50":3447.0748445000004,"p95":4022.843055763256,"p99":4604.569823573927}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:22+00","p50":3449.2186565,"p95":4065.690511914529,"p99":4124.39585462843}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:23+00","p50":2848.2566435,"p95":4234.060869710547,"p99":4336.816513083303}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:24+00","p50":3565.1620625,"p95":4501.646320939316,"p99":5230.272315735413}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:25+00","p50":3662.6661225,"p95":4507.397769166497,"p99":5284.740834513771}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:26+00","p50":3336.98678975,"p95":4535.0777414950035,"p99":5426.519119411238}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:27+00","p50":3202.079413,"p95":4592.179705147665,"p99":4641.550942663603}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:28+00","p50":2807.361602,"p95":4703.6515559974405,"p99":5013.236447927157}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:29+00","p50":4141.84793475,"p95":4728.204158097778,"p99":4779.147222228986}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:30+00","p50":3188.2410207499997,"p95":4615.120880382133,"p99":5552.412984206742}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:31+00","p50":3149.5639755,"p95":4591.127935578073,"p99":4614.639645369157}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:32+00","p50":3895.2964655,"p95":4567.837058060886,"p99":4576.7093396090395}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:33+00","p50":3175.7740986249996,"p95":4322.273504506343,"p99":5362.988139275996}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:34+00","p50":3765.9603016250003,"p95":4275.25906082934,"p99":4292.744070737092}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:35+00","p50":3279.223076,"p95":4138.651095101575,"p99":4148.426918472281}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:36+00","p50":2434.145629,"p95":4029.8645447361755,"p99":4721.7604647876515}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:37+00","p50":2463.541052,"p95":4086.800274504963,"p99":4769.701341475042}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:38+00","p50":2524.211697375,"p95":4055.88536989256,"p99":4841.744313016671}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:39+00","p50":3067.7395397500004,"p95":3972.969639681564,"p99":3993.738852459028}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:40+00","p50":2766.8504285,"p95":3982.7972042919355,"p99":4004.6629798846748}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:41+00","p50":3636.1022924999997,"p95":4162.285063294626,"p99":4845.708463817312}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:42+00","p50":4055.212262,"p95":4268.761679237702,"p99":4502.613898700589}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:43+00","p50":3607.4822945,"p95":4409.150439476935,"p99":4540.172153440326}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:44+00","p50":3044.447666,"p95":4468.971432375423,"p99":5161.023594378186}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:45+00","p50":3118.287975,"p95":4497.718578279316,"p99":5293.9103669841425}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:46+00","p50":3094.35594175,"p95":4463.320350489905,"p99":4488.201086385752}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:47+00","p50":2641.914557375,"p95":4380.522250353071,"p99":5229.317148735334}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:48+00","p50":3683.290513125,"p95":4306.729330501255,"p99":4420.724673599374}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:49+00","p50":3229.840401,"p95":4355.075958627235,"p99":4371.235201101437}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:50+00","p50":3610.3604232499997,"p95":4113.112089361059,"p99":4144.417610289678}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:51+00","p50":4066.0047405,"p95":4152.605584976633,"p99":4166.360746039604}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:52+00","p50":3085.9163945,"p95":4155.236073568628,"p99":5005.853848865874}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:53+00","p50":3375.4413045,"p95":4075.1839548203034,"p99":4088.1898143933627}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:54+00","p50":3458.58467775,"p95":4102.9782237028,"p99":4859.939918991129}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:55+00","p50":3680.838240125,"p95":4074.8185499090264,"p99":4107.601261573322}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:56+00","p50":2964.1684164999997,"p95":4366.261094754104,"p99":5003.9684712654725}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:57+00","p50":2865.889019,"p95":4395.597074494181,"p99":4553.004994506878}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:58+00","p50":3932.65645275,"p95":4442.276454465319,"p99":5190.443685607958}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:27:59+00","p50":4410.925996624999,"p95":4586.220768876543,"p99":5278.955793505864}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:00+00","p50":4034.1972052499996,"p95":4559.130298201867,"p99":5185.447504619028}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:01+00","p50":3011.5971793749995,"p95":4228.725838953624,"p99":4241.727052040938}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:02+00","p50":4103.134358125,"p95":4230.320376282643,"p99":4289.097515150797}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:03+00","p50":3657.1021259999998,"p95":4116.425072436185,"p99":4151.895207115409}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:04+00","p50":2763.4415573750002,"p95":4148.461006578822,"p99":4977.89127049169}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:05+00","p50":2803.0761302500005,"p95":4150.987627834745,"p99":4168.726618227346}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:06+00","p50":3292.065742,"p95":4123.164492521364,"p99":4955.7790042752995}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:07+00","p50":2580.638828,"p95":4048.9433103377046,"p99":4891.489063014715}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:08+00","p50":3339.9213505000002,"p95":3925.5697933987967,"p99":3990.0480407188943}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:09+00","p50":3839.2678484999997,"p95":4006.4820711769908,"p99":4626.656186085876}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:10+00","p50":3679.886141125,"p95":4039.8164735142022,"p99":4630.071189136292}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:11+00","p50":3035.3440645,"p95":4066.975300062276,"p99":4083.543306899182}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:12+00","p50":3026.4333752499997,"p95":3868.8842505985494,"p99":3883.736851088003}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:13+00","p50":3027.374650625,"p95":3904.142149395573,"p99":4623.29563806761}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:14+00","p50":3385.7517473749995,"p95":3922.026432154607,"p99":4486.640380948272}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:15+00","p50":3288.0399959999995,"p95":3914.434493488434,"p99":4408.0731495436075}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:16+00","p50":3433.456347125,"p95":3693.8189546066706,"p99":3707.019133543986}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:17+00","p50":3318.8951985,"p95":3512.2413586116086,"p99":3778.96088502609}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:18+00","p50":3463.0845868750002,"p95":3548.0562155984767,"p99":3892.7022433865027}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:19+00","p50":3593.128539,"p95":3681.4846649603064,"p99":3693.504979166574}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:20+00","p50":3666.02516925,"p95":3808.9027289216974,"p99":3995.606134938272}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:21+00","p50":3803.53743975,"p95":3934.2575236848793,"p99":3955.063909196102}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:22+00","p50":3636.8879850000003,"p95":3685.6786864425917,"p99":3827.5629082065}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:23+00","p50":3556.572298375,"p95":3673.446168850147,"p99":3720.690510570016}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:24+00","p50":3547.5891488750003,"p95":3741.1515211827727,"p99":3938.645933900948}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:25+00","p50":3611.36273475,"p95":3743.5796807435263,"p99":3757.9878752235695}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:26+00","p50":3547.4878625,"p95":3777.185178089711,"p99":3796.7612253286948}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:27+00","p50":3819.4086505,"p95":3900.0197039014943,"p99":3917.339710490801}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:28+00","p50":3653.93620575,"p95":3851.0810812886075,"p99":3909.8180805517936}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:29+00","p50":3547.474312,"p95":3853.888951934024,"p99":4228.825918707601}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:30+00","p50":3673.090513375,"p95":3933.772025138768,"p99":3961.383521813943}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:31+00","p50":3646.32842125,"p95":4037.3945035014376,"p99":4433.832465810697}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:32+00","p50":3646.63651325,"p95":3878.2468072237016,"p99":3957.6228089642477}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:33+00","p50":3482.256512875,"p95":3898.592873227888,"p99":4332.38287754631}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:34+00","p50":3715.1027705,"p95":3883.163828435888,"p99":3903.334915458724}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:35+00","p50":3626.09017,"p95":3747.28729952866,"p99":4072.739555775986}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:36+00","p50":3504.78784125,"p95":3724.4332945109763,"p99":3748.906499040899}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:37+00","p50":3364.3109560000003,"p95":3602.926172271296,"p99":3903.332412706989}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:38+00","p50":3328.188500125,"p95":3625.342094282779,"p99":3659.797753185689}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:39+00","p50":3526.28146525,"p95":3625.416153748704,"p99":3669.521553838462}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:40+00","p50":3539.6544965000003,"p95":3669.7782621074916,"p99":3686.2912794919625}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:41+00","p50":3433.658317,"p95":3672.1281702503597,"p99":3846.549322790142}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:42+00","p50":3424.02914325,"p95":3540.322985194542,"p99":3580.5066539711293}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:43+00","p50":3473.5075490000004,"p95":3594.012852838033,"p99":3866.5131640161185}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:44+00","p50":3577.94262825,"p95":3713.405431260119,"p99":3967.5253950677784}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:45+00","p50":3623.019509625,"p95":3747.3386125325833,"p99":3762.7447929644522}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:46+00","p50":3472.405076125,"p95":3661.063269547953,"p99":3679.4082031409625}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:47+00","p50":3531.922920125,"p95":3636.8129183614037,"p99":3943.111597543816}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:48+00","p50":3567.61525225,"p95":3600.604094396395,"p99":3711.5057146080585}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:49+00","p50":3595.696381,"p95":3678.4680473908447,"p99":3844.1880108563837}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:50+00","p50":3659.194686,"p95":3943.8354405010928,"p99":3961.032038300077}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:51+00","p50":3816.9452677500003,"p95":3987.910024962801,"p99":4457.230932217657}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:52+00","p50":3524.6376565,"p95":3878.8138257862784,"p99":4010.0858986879625}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:53+00","p50":3495.5561037499997,"p95":3698.6958088375964,"p99":3827.8161783620913}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:54+00","p50":3568.069455,"p95":3635.563799979515,"p99":3854.977818305993}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:55+00","p50":3516.280917875,"p95":3648.5535024793758,"p99":3858.115864831183}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:56+00","p50":3584.802883625,"p95":3752.711252032388,"p99":3977.0467856968676}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:57+00","p50":3791.3392423749997,"p95":3899.741819957215,"p99":3921.8197951966936}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:58+00","p50":3804.2268405,"p95":3892.8741881986025,"p99":4193.522712203408}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:28:59+00","p50":3772.779025875,"p95":3848.634807779939,"p99":4034.3663330440595}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:00+00","p50":3688.761032,"p95":3797.8016701499237,"p99":3820.707296793787}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:01+00","p50":3566.7728357499996,"p95":3700.582713124283,"p99":3861.647357473218}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:02+00","p50":3431.6885855,"p95":3559.8934418719214,"p99":3586.437213299349}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:03+00","p50":3444.4297642499996,"p95":3548.104882742185,"p99":3558.3078711155576}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:04+00","p50":3449.5454847499996,"p95":3509.2078925037586,"p99":3677.442849478374}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:05+00","p50":3432.969422,"p95":3585.9773962116087,"p99":3812.7791886988666}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:06+00","p50":3385.6768041249998,"p95":3437.62593300624,"p99":3452.923355927612}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:07+00","p50":3365.353478,"p95":3449.027836245853,"p99":3470.7601149166258}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:08+00","p50":3384.06995875,"p95":3599.238188169994,"p99":3920.171499552074}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:09+00","p50":3466.751639,"p95":3550.3298107587566,"p99":3564.5230005394337}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:10+00","p50":3435.7687457499997,"p95":3629.3807054376593,"p99":3856.972695671851}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:11+00","p50":3427.8446672500004,"p95":3617.171250982942,"p99":3905.0450997520643}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:12+00","p50":3319.7092247500004,"p95":3449.7410277844237,"p99":3782.1997797476124}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:13+00","p50":3296.379978,"p95":3421.3316906169525,"p99":3438.8387074681164}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:14+00","p50":3340.078062875,"p95":3547.491117987939,"p99":3919.5914898818464}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:15+00","p50":3396.84253425,"p95":3644.361844272291,"p99":3965.997655246718}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:16+00","p50":3314.7772426250003,"p95":3793.8323918732494,"p99":3816.720455724613}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:17+00","p50":3664.6801175,"p95":3771.2400644662885,"p99":3814.2431064847733}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:18+00","p50":2970.05509525,"p95":3756.9493727034037,"p99":3770.7239510243335}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:19+00","p50":3406.6905168750004,"p95":3623.3918284571923,"p99":3630.857669171109}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:20+00","p50":3462.02766675,"p95":3562.1929407189596,"p99":3576.0775128654645}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:21+00","p50":3448.8291664999997,"p95":3625.014267541107,"p99":3670.3987218334873}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:22+00","p50":3093.67880375,"p95":3683.8364556616307,"p99":3691.188668141439}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:23+00","p50":3551.86223375,"p95":3937.9084114066845,"p99":3963.0343584300426}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:24+00","p50":3615.01487825,"p95":3886.5086144468537,"p99":3907.8740527920427}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:25+00","p50":3558.26084825,"p95":3767.3591130049076,"p99":4196.512270505951}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:26+00","p50":3603.69071175,"p95":3725.7669706474976,"p99":3738.5588317765846}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:27+00","p50":3638.0263365,"p95":3681.4790785114083,"p99":3711.592017467467}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:28+00","p50":3703.4514023750003,"p95":3750.9500408612716,"p99":3776.180268810701}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:29+00","p50":3700.21863475,"p95":3784.494804608685,"p99":4029.5784945081837}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:30+00","p50":3538.573892,"p95":3613.3840873774284,"p99":3732.3988825778265}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:31+00","p50":3538.86084625,"p95":3635.4988957976734,"p99":3900.496244690122}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:32+00","p50":3516.382668,"p95":3579.7279365663326,"p99":3778.3491986757767}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:33+00","p50":3579.2845185,"p95":3704.6653848092205,"p99":3797.7316673765886}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:34+00","p50":3653.35149675,"p95":3764.380155541877,"p99":4057.936174761084}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:35+00","p50":3613.9411,"p95":3737.765302559593,"p99":3778.458492479302}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:36+00","p50":3672.89734775,"p95":3877.3260690620564,"p99":4101.670996034614}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:37+00","p50":3520.273679,"p95":3750.0616688646996,"p99":3818.397921777375}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:38+00","p50":3645.006872,"p95":3709.2413380146377,"p99":3737.698825677605}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:39+00","p50":3758.9418692500003,"p95":3879.096143108637,"p99":3931.138178513101}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:40+00","p50":3753.9209282499996,"p95":3874.3002795345355,"p99":3894.149142010481}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:41+00","p50":3588.69363925,"p95":3856.1687408475464,"p99":3878.578244820264}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:42+00","p50":3174.0661005,"p95":3854.4274433046926,"p99":3868.1208499058257}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:43+00","p50":3769.1534225,"p95":3864.1340222131034,"p99":3943.599155576057}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:44+00","p50":3489.8001145,"p95":3913.8541582272437,"p99":4303.158807945632}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:45+00","p50":3607.1359162500003,"p95":3952.8888411546695,"p99":4344.660952660999}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:46+00","p50":2900.04061525,"p95":3873.3870833779793,"p99":3928.5451709075164}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:47+00","p50":3390.410042,"p95":3937.2915578474294,"p99":3955.2598776538775}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:48+00","p50":3600.0552074999996,"p95":3894.681874970238,"p99":4438.77431078708}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:49+00","p50":3636.1740422499997,"p95":3956.042540986017,"p99":3981.485268019741}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:50+00","p50":3170.713195,"p95":4026.438612038984,"p99":4039.9455398144573}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:51+00","p50":3223.26103825,"p95":3987.565636051262,"p99":4525.035055974745}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:52+00","p50":3015.157203,"p95":3902.057738334162,"p99":3920.569782444831}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:53+00","p50":3257.9592945,"p95":3932.0984674200536,"p99":3969.934136344074}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:54+00","p50":3598.7055375,"p95":3959.1146370446177,"p99":4478.114884146608}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:55+00","p50":3784.833992875,"p95":3883.8546643058858,"p99":4349.283182893325}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:56+00","p50":3283.831603,"p95":3955.525661386857,"p99":4023.1440445961553}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:57+00","p50":3932.5875617499996,"p95":4052.9663898138974,"p99":4635.352224858722}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:58+00","p50":3678.409009625,"p95":4020.52824899742,"p99":4156.540454227063}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:29:59+00","p50":3585.063102375,"p95":4148.10856011942,"p99":4628.281332502198}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:00+00","p50":3571.11671625,"p95":3968.712178497662,"p99":4313.3894986451605}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:01+00","p50":3721.8158115,"p95":3963.1705937586444,"p99":3977.9668797044715}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:02+00","p50":3593.197560875,"p95":3959.8680593809245,"p99":3966.2824208634474}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:03+00","p50":3394.98701175,"p95":3923.6983288553574,"p99":4427.229032228105}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:04+00","p50":3330.43031075,"p95":3892.5929057568487,"p99":4304.607278944129}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:05+00","p50":3404.7007197499997,"p95":3813.421364891845,"p99":4323.831563085202}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:06+00","p50":3393.01707025,"p95":3765.6991832799695,"p99":3789.252629159957}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:07+00","p50":3263.6520606249996,"p95":3791.0766566813572,"p99":3820.3819668661995}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:08+00","p50":3292.2722135,"p95":3873.5916309620766,"p99":3883.405000262578}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:09+00","p50":3711.708292875,"p95":3836.4561227864015,"p99":3856.2581809447756}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:10+00","p50":3428.56717475,"p95":3747.68158276652,"p99":3792.2104701007815}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:11+00","p50":3552.143066,"p95":3710.8208404156526,"p99":3722.649712579158}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:12+00","p50":3504.49375975,"p95":3719.6849350633784,"p99":3852.84108190447}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:13+00","p50":3385.0746907499997,"p95":3556.165147499126,"p99":3565.9427482578812}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:14+00","p50":3449.8145427500003,"p95":3646.3161686658946,"p99":3911.5978840696575}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:15+00","p50":3512.60210375,"p95":3661.8836973741686,"p99":3677.3268786784415}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:16+00","p50":3520.382777875,"p95":3589.799536888603,"p99":3762.612097913052}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:17+00","p50":3528.1434364999996,"p95":3649.718664055612,"p99":3823.6693134825505}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:18+00","p50":3540.69936275,"p95":3607.489572856269,"p99":3799.291476688115}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:19+00","p50":3603.4981071249995,"p95":3691.1301691139934,"p99":3716.370938600763}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:20+00","p50":3623.38861025,"p95":3725.4417121826236,"p99":3938.8931251192685}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:21+00","p50":3693.1377672500003,"p95":3986.6886197758126,"p99":4005.434536730856}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:22+00","p50":3755.02770675,"p95":3943.6678130994123,"p99":4011.592966525638}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:23+00","p50":3731.230289,"p95":3919.584015188537,"p99":3961.160745364471}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:24+00","p50":3746.813976,"p95":3886.171622555736,"p99":4159.9598887954135}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:25+00","p50":3686.87130125,"p95":3754.4529349503073,"p99":4013.639100732556}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:26+00","p50":3596.79155825,"p95":3746.8232662865166,"p99":3755.185932770833}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:27+00","p50":3594.3918316249997,"p95":3754.9875756181355,"p99":3765.7770275954567}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:28+00","p50":3644.53205975,"p95":3697.27017009282,"p99":3932.7093459127545}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:29+00","p50":3601.9482262499996,"p95":3677.954062759721,"p99":3840.8272072784457}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:30+00","p50":3493.7734805,"p95":3584.06795952398,"p99":3699.851552494332}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:31+00","p50":3578.970503,"p95":3724.65634976704,"p99":3876.9230666744975}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:32+00","p50":3609.7236205,"p95":3718.4860037934527,"p99":3986.273353610964}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:33+00","p50":3469.225235,"p95":3749.0336871638906,"p99":3987.550665525765}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:34+00","p50":3456.398018,"p95":3706.6487629282115,"p99":3724.9603008537874}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:35+00","p50":3382.4069842500003,"p95":3510.9850437722594,"p99":3517.3821440669094}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:36+00","p50":3490.159540375,"p95":3572.977426724732,"p99":3727.2271411921065}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:37+00","p50":3497.1205794999996,"p95":3548.9000149122617,"p99":3650.661530585488}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:38+00","p50":3545.2308651249996,"p95":3602.494096926326,"p99":3901.426857825637}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:39+00","p50":3555.4742845,"p95":3657.4074090950853,"p99":3678.0038774550953}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:40+00","p50":3429.34002525,"p95":3673.221635769465,"p99":3987.066192597272}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:41+00","p50":3409.4688465,"p95":3668.9180727852236,"p99":3679.1062104932976}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:42+00","p50":3403.2093671250004,"p95":3623.9178847046005,"p99":3977.3641117117463}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:43+00","p50":3418.3141130000004,"p95":3632.970243394095,"p99":3715.2834646770484}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:44+00","p50":3517.75212475,"p95":3678.9224342147713,"p99":4070.0769598861366}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:45+00","p50":3449.31020025,"p95":3557.047608245414,"p99":3632.1175847927184}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:46+00","p50":3325.9133035000004,"p95":3448.5619214787844,"p99":3600.360503442284}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:47+00","p50":3287.6495315,"p95":3341.765712088595,"p99":3482.5604690657315}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:48+00","p50":3294.1588805,"p95":3405.046258583132,"p99":3414.8240850073203}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:49+00","p50":3238.037854,"p95":3462.270503521735,"p99":3477.741245552575}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:50+00","p50":3120.559551125,"p95":3541.536616185178,"p99":3785.2715815581155}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:51+00","p50":3419.03729325,"p95":3755.744896065429,"p99":4112.686248227599}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:52+00","p50":3251.309351,"p95":3908.312009622854,"p99":3970.708846166234}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:53+00","p50":3581.115248625,"p95":3790.956721882526,"p99":4131.5440587733665}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:54+00","p50":3535.80147,"p95":3757.565007969349,"p99":4136.431832956751}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:55+00","p50":3510.655485,"p95":3788.4992231799342,"p99":3822.2195938288555}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:56+00","p50":3439.595894,"p95":3940.5801276289153,"p99":4061.0985673719415}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:57+00","p50":3964.7582865,"p95":4034.958793415456,"p99":4043.927564961302}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:58+00","p50":3751.84411925,"p95":4060.4856320285735,"p99":4099.758436508774}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:30:59+00","p50":3816.466431,"p95":3938.3695194240718,"p99":4035.1222582758437}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:00+00","p50":3595.527729625,"p95":3806.0870691651985,"p99":3978.783428910409}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:01+00","p50":3529.123557875,"p95":3596.8950007888734,"p99":3775.67026030558}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:02+00","p50":3459.4602185,"p95":3610.389398705334,"p99":3753.6246790107034}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:03+00","p50":3448.1460242499998,"p95":3540.8655740641966,"p99":3781.168899077761}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:04+00","p50":3441.908457,"p95":3559.251966246547,"p99":3571.2337710813067}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:05+00","p50":3315.5394862499998,"p95":3545.6639289731556,"p99":3575.042187322312}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:06+00","p50":3279.6103425,"p95":3377.735875265194,"p99":3562.9161625489965}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:07+00","p50":3231.1080875000002,"p95":3322.3858001044364,"p99":3461.247460657553}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:08+00","p50":3315.588411375,"p95":3495.833273502558,"p99":3534.8468453574365}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:09+00","p50":3486.069855875,"p95":3655.721949059393,"p99":3671.6105747688343}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:10+00","p50":3466.056692,"p95":3768.529328379525,"p99":4123.4157893695}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:11+00","p50":3501.3364295,"p95":3663.3066266463347,"p99":3707.385709530411}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:12+00","p50":3496.8567631250003,"p95":3563.249472755375,"p99":3589.146102361638}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:13+00","p50":3534.144286375,"p95":3660.847700840688,"p99":3680.5917375579056}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:14+00","p50":3495.7922995000004,"p95":3677.873181481708,"p99":3995.3533549952085}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:15+00","p50":3582.5296097500004,"p95":3801.1565265428076,"p99":3860.5623522653104}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:16+00","p50":3539.8008715000005,"p95":3764.8101562714037,"p99":3983.31264432548}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:17+00","p50":3453.5803674999997,"p95":3549.017392868109,"p99":3583.840878299409}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:18+00","p50":3512.647535,"p95":3626.419556441483,"p99":3711.924317170323}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:19+00","p50":3569.39063075,"p95":3697.2365332264267,"p99":3809.4130768284376}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:20+00","p50":3709.5159999999996,"p95":3884.6497582782586,"p99":3988.4386778221406}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:21+00","p50":3953.7114432500002,"p95":4060.7064716712666,"p99":4251.2623390359}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:22+00","p50":3710.7905944999998,"p95":3919.5735547572576,"p99":4422.631094827162}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:23+00","p50":3271.4389674999998,"p95":3788.3852092551724,"p99":4160.729659864089}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:24+00","p50":3444.27061525,"p95":3737.232599894305,"p99":3770.5067512430073}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:25+00","p50":3679.79833325,"p95":3763.398821904205,"p99":3777.7754694434143}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:26+00","p50":3644.5340005000003,"p95":3845.744677675802,"p99":4286.156732732544}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:27+00","p50":3489.97961925,"p95":3756.511588477229,"p99":4166.009257308782}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:28+00","p50":3624.560219375,"p95":3869.9739798510873,"p99":3902.951383958582}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:29+00","p50":3692.81146975,"p95":3849.8759096310914,"p99":4143.107159167329}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:30+00","p50":3484.6042420000003,"p95":3723.634777649778,"p99":4069.1926659820656}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:31+00","p50":3431.370671125,"p95":3553.9647696356315,"p99":3764.312822415361}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:32+00","p50":3399.566164,"p95":3477.1480433717934,"p99":3648.9121210082}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:33+00","p50":3474.0090387500004,"p95":3569.555366527434,"p99":3575.9256553201544}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:34+00","p50":3428.359574,"p95":3541.672157725832,"p99":3870.0685503311743}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:35+00","p50":3401.8278682499995,"p95":3543.2718753308263,"p99":3802.2768286162923}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:36+00","p50":3356.0446819999997,"p95":3608.5555575196036,"p99":3981.245211466179}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:37+00","p50":3366.9547235,"p95":3592.9076917300604,"p99":3959.483071638911}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:38+00","p50":3261.3015159999995,"p95":3633.206571626271,"p99":3686.7556831387983}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:39+00","p50":3464.0775405000004,"p95":3713.420846888795,"p99":3727.056450500243}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:40+00","p50":3517.9295515000003,"p95":3804.1726187831127,"p99":4200.735564109886}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:41+00","p50":3397.3838057499997,"p95":3865.2684518221536,"p99":3890.6249622160417}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:42+00","p50":3719.437411,"p95":3813.377730369816,"p99":3895.800195486336}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:43+00","p50":3724.93072575,"p95":4037.8651544121494,"p99":4054.5078703446848}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:44+00","p50":3614.57812225,"p95":3796.6749806352273,"p99":3809.93960514431}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:45+00","p50":3592.7620420000003,"p95":3637.9392055471735,"p99":3658.233486002729}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:46+00","p50":3477.1631827499996,"p95":3631.308559628401,"p99":3757.57420874539}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:47+00","p50":3453.444891,"p95":3584.363133759086,"p99":3609.3309880817683}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:48+00","p50":3505.1170032500004,"p95":3699.674895320016,"p99":3722.475841638639}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:49+00","p50":3555.8795142500003,"p95":3660.062041917892,"p99":3909.487894982604}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:50+00","p50":3465.6183745,"p95":3577.227268444139,"p99":3786.7307982490097}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:51+00","p50":3446.625491,"p95":3572.3590277809267,"p99":3778.4374548907053}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:52+00","p50":3466.431602,"p95":3662.352001731951,"p99":3676.346612446866}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:53+00","p50":3518.72181525,"p95":3717.0133711133735,"p99":3997.2090863605695}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:54+00","p50":3474.96781825,"p95":3860.4010291300374,"p99":4263.328952180818}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:55+00","p50":3505.8102609999996,"p95":3883.484513173071,"p99":4201.915610193126}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:56+00","p50":3465.5266215,"p95":3860.1790328053935,"p99":3881.8627255511747}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:57+00","p50":3744.91052325,"p95":4003.364633434812,"p99":4019.4900447607115}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:58+00","p50":3796.92576625,"p95":4011.5291333987966,"p99":4225.7271347594915}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:31:59+00","p50":3903.5669395,"p95":4236.193413934033,"p99":4652.557186949406}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:00+00","p50":3866.2422245,"p95":4221.553308803587,"p99":4242.137830697063}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:01+00","p50":3785.0249162500004,"p95":3890.4978321676012,"p99":3902.5124180122416}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:02+00","p50":3758.9642918749996,"p95":3891.082319473586,"p99":4093.4488109554263}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:03+00","p50":3521.07453925,"p95":3894.0867914494174,"p99":3938.154887690421}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:04+00","p50":3534.7569875,"p95":3666.813729741283,"p99":3777.841281102767}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:05+00","p50":3442.7488135,"p95":3616.7597670142763,"p99":3640.8398029213936}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:06+00","p50":3386.0516129999996,"p95":3521.2379296341287,"p99":3545.7774196748483}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:07+00","p50":3244.7721902499998,"p95":3479.134181019274,"p99":3785.669952218444}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:08+00","p50":3307.974885,"p95":3469.9580510300584,"p99":3772.7176282428754}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:09+00","p50":3430.71233875,"p95":3496.6736464078062,"p99":3519.699998936084}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:10+00","p50":3373.443238,"p95":3419.2523624974992,"p99":3464.795967616987}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:11+00","p50":3401.5647,"p95":3501.5934502292084,"p99":3647.302945251589}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:12+00","p50":3347.2917808750003,"p95":3499.152017466597,"p99":3690.3551592295134}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:13+00","p50":3320.226178,"p95":3483.6161599305137,"p99":3538.9560711981867}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:14+00","p50":3338.1117007500006,"p95":3398.798204759887,"p99":3567.6067428150454}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:15+00","p50":3362.8648415000002,"p95":3435.320791236668,"p99":3507.3407142000524}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:16+00","p50":3375.1364482500003,"p95":3453.481788658637,"p99":3682.2988259022977}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:17+00","p50":3392.158482,"p95":3493.5732107254676,"p99":3664.6853338944015}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:18+00","p50":3393.5506809999997,"p95":3496.129845815709,"p99":3762.1872126109765}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:19+00","p50":3431.746792875,"p95":3557.922592347926,"p99":3682.464610230809}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:20+00","p50":3417.937324375,"p95":3605.833217991676,"p99":3644.008650568503}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:21+00","p50":3536.157504,"p95":3652.6566469649542,"p99":3668.9767202921103}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:22+00","p50":3573.964334625,"p95":3716.6748508281885,"p99":3736.300000667183}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:23+00","p50":3574.5106554999998,"p95":3731.983450501681,"p99":3985.6675754038906}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:24+00","p50":3561.676681875,"p95":3715.35930854849,"p99":3788.7033266959315}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:25+00","p50":3533.6907845,"p95":3594.8859456138534,"p99":3714.3938559417775}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:26+00","p50":3593.0364145,"p95":3657.6141942203417,"p99":3830.1989303412834}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:27+00","p50":3661.7067892500004,"p95":3743.8844198051056,"p99":3795.778162143844}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:28+00","p50":3631.8086755000004,"p95":3711.6981926752173,"p99":3938.8334347333416}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:29+00","p50":3689.95221575,"p95":3823.830609582662,"p99":4020.9464967347417}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:30+00","p50":3562.264131125,"p95":3805.0882506026583,"p99":4186.573419924836}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:31+00","p50":3564.1375825,"p95":3712.882831074653,"p99":4056.7334060136336}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:32+00","p50":3128.633622375,"p95":3649.8465030868415,"p99":4136.804781306533}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:33+00","p50":3450.3158605,"p95":3714.8673924076634,"p99":3740.2094115415343}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:34+00","p50":3319.3968370000002,"p95":3804.877456581749,"p99":4219.933791027477}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:35+00","p50":2944.5473735,"p95":3780.756769263538,"p99":4226.689426627014}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:36+00","p50":3120.2606285,"p95":3781.365760582856,"p99":4256.4855839021375}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:37+00","p50":2823.074562625,"p95":3843.7532884222182,"p99":4392.923315029836}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:38+00","p50":3042.249261625,"p95":3786.952496732005,"p99":3821.563042336723}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:39+00","p50":3220.976807625,"p95":3694.019552858429,"p99":3709.3114313027068}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:40+00","p50":3369.754670625,"p95":3784.6569635414676,"p99":3802.442111447718}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:41+00","p50":3336.118755,"p95":3764.778414296204,"p99":3780.2896401479907}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:42+00","p50":3722.176022,"p95":3808.7652939955824,"p99":4380.597250415075}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:43+00","p50":3516.259387875,"p95":3838.997130840373,"p99":4288.207714733399}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:44+00","p50":3323.125051,"p95":3906.375988443732,"p99":3916.617406272667}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:45+00","p50":3582.16289875,"p95":3969.3560087238334,"p99":3986.1039275690496}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:46+00","p50":3672.3183955,"p95":3936.3522043676644,"p99":3970.506875884468}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:47+00","p50":3250.85904675,"p95":3664.4440377957644,"p99":3719.851395948471}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:48+00","p50":3182.9208418750004,"p95":3699.2565400205863,"p99":4177.297578115381}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:49+00","p50":3133.6916442499996,"p95":3794.8582067803154,"p99":3810.9802899117867}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:50+00","p50":3435.29013825,"p95":3818.442334332746,"p99":3840.4072509542907}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:51+00","p50":3128.7917066249997,"p95":3728.509411692336,"p99":4254.926254205663}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:52+00","p50":3382.47989925,"p95":3688.6050501236655,"p99":3701.0876761768536}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:53+00","p50":3150.4898811250005,"p95":3646.4036809987097,"p99":3660.2521585525005}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:54+00","p50":3627.655869,"p95":3709.3590389193364,"p99":3719.6012356596666}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:55+00","p50":3135.35847125,"p95":3693.1751886868988,"p99":4217.087671904136}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:56+00","p50":3352.04896275,"p95":3929.872607445457,"p99":4235.138431324108}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:57+00","p50":3283.700826125,"p95":4010.666994468792,"p99":4558.484819922387}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:58+00","p50":3553.52013,"p95":4081.0045083422315,"p99":4589.51986888967}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:32:59+00","p50":3334.742819,"p95":4143.573513818559,"p99":4178.239681187713}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:00+00","p50":3169.845703,"p95":3910.599568503994,"p99":3932.887344870285}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:01+00","p50":3603.193767875,"p95":3829.8509433774716,"p99":3857.0272200790755}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:02+00","p50":3296.13759475,"p95":3677.8975183841612,"p99":4003.0082304314833}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:03+00","p50":3459.224407,"p95":3782.5509582433137,"p99":3828.5162747043273}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:04+00","p50":3181.174402125,"p95":3810.702508908106,"p99":3815.94213437593}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:05+00","p50":3373.8563655,"p95":3567.42585662907,"p99":3885.1159026606524}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:06+00","p50":3422.3456665,"p95":3536.356835766133,"p99":3775.7492037349753}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:07+00","p50":3256.576791,"p95":3487.4643919902683,"p99":3501.5305670282237}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:08+00","p50":3318.7573675000003,"p95":3439.844288698298,"p99":3495.25823157192}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:09+00","p50":3450.593443875,"p95":3514.483453841459,"p99":3616.8969896875465}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:10+00","p50":3486.5128581249996,"p95":3555.098009864056,"p99":3737.0514720260016}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:11+00","p50":3510.80882825,"p95":3719.4478919943213,"p99":3734.541509477482}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:12+00","p50":3487.6408197499995,"p95":3609.913571098519,"p99":3788.495221211842}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:13+00","p50":3408.991982,"p95":3699.4698832591876,"p99":3720.6972481383386}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:14+00","p50":3435.1895895,"p95":3653.1945228326376,"p99":3678.995999765276}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:15+00","p50":3285.571557,"p95":3599.9421596368206,"p99":3907.379901930664}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:16+00","p50":3310.7768505,"p95":3506.634577186947,"p99":3780.5026551115466}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:17+00","p50":3365.386935,"p95":3431.9658334374976,"p99":3717.7845283201877}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:18+00","p50":3401.534108,"p95":3560.1482543385137,"p99":3569.386819855467}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:19+00","p50":3317.86118325,"p95":3496.6544383508744,"p99":3584.083719152192}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:20+00","p50":3366.984532,"p95":3500.5743978512482,"p99":3581.534978859359}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:21+00","p50":3483.024207,"p95":3721.803145832037,"p99":3749.3547942120026}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:22+00","p50":3475.3321455,"p95":3825.7781628080024,"p99":3846.695277707636}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:23+00","p50":3486.9305535000003,"p95":3887.078975629277,"p99":4180.624671783922}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:24+00","p50":3570.225522625,"p95":3802.7040695135292,"p99":3829.8164213212285}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:25+00","p50":3441.4975079999995,"p95":3682.071365806855,"p99":3747.138209107874}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:26+00","p50":3494.5638233749996,"p95":3585.3730735424897,"p99":3615.8751099078213}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:27+00","p50":3652.2655885,"p95":3818.7296058712673,"p99":3860.8217181143978}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:28+00","p50":3750.688881625,"p95":3874.437104268433,"p99":3918.1032279435994}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:29+00","p50":3717.844779125,"p95":3902.1546430818,"p99":3916.876487522555}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:30+00","p50":3589.76033,"p95":3714.682854480323,"p99":3740.1095093504173}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:31+00","p50":3439.5763081249997,"p95":3585.137966265356,"p99":3604.445266157197}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:32+00","p50":3238.9940975,"p95":3318.4854029957196,"p99":3459.952173655004}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:33+00","p50":3238.48884575,"p95":3382.609105320302,"p99":3391.6435358573262}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:34+00","p50":3289.1457518750003,"p95":3403.866535265885,"p99":3422.370172174908}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:35+00","p50":3373.0293977499996,"p95":3468.978301383829,"p99":3496.1470220042534}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:36+00","p50":3398.71280225,"p95":3481.3213507281926,"p99":3710.568083513491}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:37+00","p50":3337.5059915,"p95":3438.8096290214353,"p99":3699.0975993127445}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:38+00","p50":3361.140047,"p95":3471.5194830361115,"p99":3485.528462453617}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:39+00","p50":3415.2017774999995,"p95":3514.0802160646285,"p99":3631.0059867173563}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:40+00","p50":3392.1880770000002,"p95":3510.6403302173167,"p99":3640.018457406863}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:41+00","p50":3419.04169425,"p95":3536.307513721518,"p99":3585.924965776796}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:42+00","p50":3453.4179835000004,"p95":3588.3057418158783,"p99":3636.078642135562}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:43+00","p50":3465.7024305,"p95":3652.082137315835,"p99":3828.1042652892306}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:44+00","p50":3453.852097625,"p95":3675.532428883128,"p99":4053.0969662902407}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:45+00","p50":3571.3691145,"p95":3809.42849433039,"p99":4105.94041180805}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:46+00","p50":3412.691025875,"p95":3653.259681458742,"p99":4104.278309637808}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:47+00","p50":3139.555128375,"p95":3705.0516382075284,"p99":3728.34230787269}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:48+00","p50":3508.997365875,"p95":3925.499289660099,"p99":4418.853954400787}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:49+00","p50":3073.2853862499996,"p95":4047.9358928198694,"p99":4053.5925690044774}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:50+00","p50":3589.0081845,"p95":3945.8495593514194,"p99":4364.499861497526}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:51+00","p50":3378.3101535,"p95":3810.3323565843775,"p99":4172.079744715696}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:52+00","p50":3714.5271836250004,"p95":3804.4141861421704,"p99":3894.2217535681325}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:53+00","p50":3590.1204912499998,"p95":3859.479061009706,"p99":3897.9833658660095}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:54+00","p50":3640.71536225,"p95":4030.958822130475,"p99":4071.9483684118995}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:55+00","p50":3595.2649544999995,"p95":3925.698571643412,"p99":3964.574776756694}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:56+00","p50":3636.7491794999996,"p95":4098.875573206085,"p99":4218.341152733856}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:57+00","p50":3832.6566256249994,"p95":4220.16231920858,"p99":4230.801906713411}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:58+00","p50":3942.29162025,"p95":4233.556781615703,"p99":4256.242926476487}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:33:59+00","p50":3746.3463176249998,"p95":4127.1696516030015,"p99":4150.963059169812}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:00+00","p50":3498.4709141250005,"p95":3799.6492082487302,"p99":4135.346375100506}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:01+00","p50":3387.635681,"p95":3670.306668527923,"p99":3997.154780428478}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:02+00","p50":3369.58838675,"p95":3681.7336391333556,"p99":3973.481205507835}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:03+00","p50":3465.5286841250004,"p95":3592.1394821921795,"p99":3852.6757242131926}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:04+00","p50":3394.46818,"p95":3724.833749662024,"p99":3741.1003799758764}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:05+00","p50":3402.86243975,"p95":3657.813625105696,"p99":3677.7878723854406}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:06+00","p50":3163.8792205,"p95":3508.058427448469,"p99":3523.7274278999757}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:07+00","p50":3292.808589,"p95":3572.5512119777345,"p99":3878.1894401108852}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:08+00","p50":3446.0996219999997,"p95":3600.633204961879,"p99":4033.468484689549}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:09+00","p50":3130.749758,"p95":3728.832261129825,"p99":3757.5166109964375}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:10+00","p50":3047.279666375,"p95":3693.335244332643,"p99":3705.1153208791457}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:11+00","p50":2895.0548934999997,"p95":3831.397916103867,"p99":4248.0251215174285}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:12+00","p50":3077.4701772500002,"p95":3919.303175274477,"p99":3936.537272233346}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:13+00","p50":3344.3534405,"p95":3787.0198566583163,"p99":3815.8968901866056}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:14+00","p50":2895.2348385,"p95":3862.1262132420293,"p99":3869.5771502414777}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:15+00","p50":3137.24550675,"p95":4006.012545503318,"p99":4029.7102260569095}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:16+00","p50":3157.3042127500003,"p95":4043.3047110715133,"p99":4645.607724830857}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:17+00","p50":2975.6361687500003,"p95":3958.508975383385,"p99":4039.30628459469}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:18+00","p50":3045.40052975,"p95":3756.470744663894,"p99":4175.04317967389}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:19+00","p50":3235.589908,"p95":3775.337360887122,"p99":3789.035407948196}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:20+00","p50":3487.8200465,"p95":3763.7435045225548,"p99":3996.8598591598625}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:21+00","p50":2872.82978,"p95":3608.953226035885,"p99":3635.1179246450556}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:22+00","p50":2958.054996,"p95":3736.574047639511,"p99":4161.682315335826}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:23+00","p50":3006.6217956250002,"p95":3857.237735933179,"p99":4255.984449768601}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:24+00","p50":3023.9294515,"p95":3832.5441704648265,"p99":3842.1441582669454}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:25+00","p50":3271.3057325,"p95":3681.1146052445197,"p99":3697.7556678332685}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:26+00","p50":3569.3926116250004,"p95":3831.214920328634,"p99":4059.7252070504846}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:27+00","p50":3805.7009657500003,"p95":3939.1264691056904,"p99":4430.315330790864}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:28+00","p50":3573.9586185,"p95":3920.1418681097502,"p99":4377.824044301384}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:29+00","p50":3616.773468625,"p95":3982.8224535779586,"p99":3997.901012850756}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:30+00","p50":3088.4700205,"p95":3927.2577546375087,"p99":3948.6822346107733}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:31+00","p50":3045.3167595,"p95":3923.2711699199426,"p99":4263.6889212438355}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:32+00","p50":3328.53628475,"p95":3729.821422582563,"p99":4294.672040020914}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:33+00","p50":3239.2317125,"p95":3760.11747951899,"p99":3774.0631656093415}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:34+00","p50":3082.1803685,"p95":3623.1260075410905,"p99":4008.3018890664043}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:35+00","p50":3242.9386825,"p95":3631.3762066817008,"p99":3970.287846898337}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:36+00","p50":3216.82392425,"p95":3542.6372896987536,"p99":3900.082852718513}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:37+00","p50":3321.6866977500003,"p95":3631.3614929351234,"p99":4179.763123978745}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:38+00","p50":3441.01816675,"p95":3684.423606924205,"p99":4191.793054711691}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:39+00","p50":3291.204309875,"p95":3762.5782005241936,"p99":3778.7736776766387}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:40+00","p50":3163.3553192499994,"p95":3861.0219577743164,"p99":4339.892931641085}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:41+00","p50":3244.8863195,"p95":3927.7693669101864,"p99":4390.132135672763}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:42+00","p50":3630.9575205,"p95":3881.573138799473,"p99":3890.6161695319365}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:43+00","p50":3299.4644264999997,"p95":3838.5361242122704,"p99":4376.705555134912}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:44+00","p50":3205.96124725,"p95":3838.4422345695752,"p99":3856.1658884998515}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:45+00","p50":3548.628088875,"p95":3849.4272964141073,"p99":4196.366660999596}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:46+00","p50":3244.4499715,"p95":3717.003389741006,"p99":3736.448258476208}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:47+00","p50":3347.972424875,"p95":3563.066944906756,"p99":3673.9512113340074}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:48+00","p50":3014.55483625,"p95":3919.2049229816726,"p99":4080.780933412855}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:49+00","p50":3003.4541335000004,"p95":3871.453055649346,"p99":4445.613718286867}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:50+00","p50":2709.3514495,"p95":4015.558022775827,"p99":4042.361113243641}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:51+00","p50":2898.7944515,"p95":4196.782348359566,"p99":4294.913863092732}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:52+00","p50":3586.4098012500003,"p95":4314.794977916504,"p99":5066.693310374195}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:53+00","p50":3878.4684231250003,"p95":4366.639585615816,"p99":4998.250267870642}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:54+00","p50":2985.559950125,"p95":4146.514661922689,"p99":4721.983108290984}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:55+00","p50":3514.794834875,"p95":4060.4844006566514,"p99":4723.053596403144}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:56+00","p50":3441.0566635,"p95":4040.575391883749,"p99":4827.496922428762}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:57+00","p50":3594.412255,"p95":4173.209984524019,"p99":4800.108597315587}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:58+00","p50":3643.8599934999997,"p95":4182.418683369246,"p99":4819.785550610762}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:34:59+00","p50":3462.713884,"p95":4215.99838017416,"p99":4247.683291915671}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:00+00","p50":3581.533324125,"p95":4220.620022711296,"p99":4835.847875721057}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:01+00","p50":2978.554839,"p95":4028.777248154268,"p99":4039.651702202888}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:02+00","p50":3081.9187899999997,"p95":3677.977268134901,"p99":4187.099158215424}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:03+00","p50":3123.8352075000003,"p95":3608.7266939071615,"p99":3625.8004172927303}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:04+00","p50":3098.161916375,"p95":3505.2857797660954,"p99":3838.1944094590417}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:05+00","p50":3247.5487818750003,"p95":3472.8902166588846,"p99":3839.6098492052106}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:06+00","p50":3221.60484275,"p95":3522.4409199708393,"p99":3558.215986169553}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:07+00","p50":3332.892356375,"p95":3544.7647355889267,"p99":3564.422538586498}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:08+00","p50":3206.3131087499996,"p95":3611.011073151858,"p99":3972.3538859805954}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:09+00","p50":3380.98568625,"p95":3788.5150501860408,"p99":4195.960391280133}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:10+00","p50":3422.2420975,"p95":3764.6850499641478,"p99":3783.112280381194}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:11+00","p50":3513.9147315,"p95":4006.9943866679923,"p99":4336.4228121136675}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:12+00","p50":3323.951467125,"p95":4002.1166629718723,"p99":4065.3922929927094}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:13+00","p50":3156.563318,"p95":3539.998817735312,"p99":3565.4417408422987}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:14+00","p50":3243.9060325,"p95":3564.597529212912,"p99":3582.2080575864757}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:15+00","p50":3332.468858,"p95":3562.8805880971504,"p99":3919.403382798032}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:16+00","p50":3329.46508875,"p95":3471.388515586339,"p99":3484.379688169521}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:17+00","p50":3340.324231625,"p95":3509.1708794131587,"p99":3792.716277281509}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:18+00","p50":3386.2363745,"p95":3641.33248375619,"p99":3990.6066515840766}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:19+00","p50":3325.373976,"p95":3661.3864611270083,"p99":4069.4420752670108}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:20+00","p50":3061.67817475,"p95":3833.7152084076365,"p99":4201.373549628639}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:21+00","p50":3349.413043,"p95":3994.21333914843,"p99":4066.066548474357}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:22+00","p50":3727.3894725,"p95":4062.260070456264,"p99":4670.249001871408}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:23+00","p50":3618.499000875,"p95":4000.1313146958296,"p99":4613.663863972214}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:24+00","p50":3693.8388905,"p95":3851.9244007586594,"p99":3871.2940872333324}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:25+00","p50":3593.6448689999997,"p95":3703.132649433184,"p99":4150.020248619889}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:26+00","p50":2988.3706119999997,"p95":3870.147566990106,"p99":4342.548978875222}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:27+00","p50":3454.633933625,"p95":3836.3529217637274,"p99":3869.7770473680066}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:28+00","p50":3251.48157875,"p95":4046.8441158452165,"p99":4077.5269508248293}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:29+00","p50":3103.2339469999997,"p95":4121.182401381578,"p99":4755.378685531502}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:30+00","p50":3153.14558275,"p95":4254.8491418279555,"p99":4881.620436325295}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:31+00","p50":3149.2232702499996,"p95":4287.569354463049,"p99":4933.370073345574}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:32+00","p50":2724.96798425,"p95":4189.507533076027,"p99":4993.513635400879}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:33+00","p50":4045.248184,"p95":4142.8334880475495,"p99":4847.839516417107}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:34+00","p50":3485.281145375,"p95":4042.955970896937,"p99":4085.4816387048954}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:35+00","p50":2875.19192425,"p95":3799.528869651587,"p99":4509.36267402633}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:36+00","p50":2868.012462125,"p95":3737.680846759628,"p99":4394.346155229578}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:37+00","p50":2879.0128987499997,"p95":3798.759790751284,"p99":4367.761247846258}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:38+00","p50":3127.5796870000004,"p95":4046.8442360350978,"p99":4159.094469902101}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:39+00","p50":3271.86984225,"p95":4187.118308119025,"p99":4201.300334547806}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:40+00","p50":4094.5056495,"p95":4251.834706464559,"p99":4288.236610655692}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:41+00","p50":2796.965528375,"p95":4211.246564329757,"p99":4223.440536221747}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:42+00","p50":3257.427243,"p95":4185.788253451738,"p99":4277.623178248362}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:43+00","p50":2899.022757875,"p95":4205.447417900844,"p99":5148.998891024335}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:44+00","p50":2943.101834125,"p95":4279.618092531202,"p99":4934.406544976412}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:45+00","p50":3168.23512975,"p95":4154.2314415425935,"p99":4173.758699749813}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:46+00","p50":2989.86978275,"p95":4007.9395055709388,"p99":4842.0584035592565}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:47+00","p50":3053.9327605,"p95":3987.643448863165,"p99":4544.025916972678}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:48+00","p50":2710.7414845000003,"p95":3849.8432113019257,"p99":4594.0588548568085}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:49+00","p50":2449.783796,"p95":3969.3619884800482,"p99":4469.254321870878}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:50+00","p50":3729.743166,"p95":3837.8830170567303,"p99":4401.523413081409}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:51+00","p50":2791.55880375,"p95":3997.590328892255,"p99":4032.1172588712407}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:52+00","p50":2936.9422914999996,"p95":4171.841213494693,"p99":4875.892768995115}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:53+00","p50":2606.84871,"p95":4136.207909939127,"p99":4944.889800747749}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:54+00","p50":2436.3920346249997,"p95":4288.684151742864,"p99":4312.697367951695}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:55+00","p50":3507.0176678750004,"p95":4181.958056209514,"p99":4187.018088256304}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:56+00","p50":3365.8077505,"p95":4164.439919996855,"p99":5069.101946116794}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:57+00","p50":2885.780237125,"p95":4285.143474876769,"p99":4308.3129185469525}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:58+00","p50":4256.731619,"p95":4437.367963113219,"p99":4650.908735270181}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:35:59+00","p50":4363.884933125,"p95":4495.397259939697,"p99":4533.903431603031}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:00+00","p50":3743.86408675,"p95":4491.040267649324,"p99":4506.070929760761}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:01+00","p50":3584.18721075,"p95":4396.721702161347,"p99":5273.136318810753}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:02+00","p50":3217.92656275,"p95":4325.885033630558,"p99":5131.768819336363}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:03+00","p50":3510.06725875,"p95":4052.8319933864427,"p99":4070.528229887291}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:04+00","p50":2856.133388,"p95":3863.7332796447963,"p99":3889.027556136864}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:05+00","p50":3493.41588475,"p95":3851.1014169327786,"p99":3867.1428557453946}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:06+00","p50":2716.0430349999997,"p95":3761.1377531640774,"p99":4267.714604344921}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:07+00","p50":3484.8959501249997,"p95":3852.3930410618705,"p99":4409.458496364488}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:08+00","p50":3090.3660527499997,"p95":3852.351020718823,"p99":3881.010974218695}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:09+00","p50":3373.49573125,"p95":3915.924333157908,"p99":3921.20069522395}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:10+00","p50":2699.166351,"p95":3966.627115187172,"p99":3991.6913599887243}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:11+00","p50":3455.77741875,"p95":3922.6459076577703,"p99":4572.732310940787}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:12+00","p50":3088.0228740000002,"p95":3889.4824392218034,"p99":3911.7785883900206}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:13+00","p50":3138.3214425,"p95":3836.377179447394,"p99":4320.477571211984}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:14+00","p50":3249.4243725,"p95":3772.2683258124503,"p99":4228.23048817292}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:15+00","p50":2952.891978875,"p95":3885.5557352936175,"p99":4519.173384409962}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:16+00","p50":2587.3103604999997,"p95":3871.336470745887,"p99":4501.041078296973}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:17+00","p50":3778.3894604999996,"p95":3880.665311470103,"p99":4459.968642643756}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:18+00","p50":3043.8382375,"p95":3827.5836657410814,"p99":4510.530524562578}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:19+00","p50":3459.682346,"p95":3994.897163330377,"p99":4038.0609974526906}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:20+00","p50":3519.302135625,"p95":4170.32792269428,"p99":4574.06059026438}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:21+00","p50":3046.61098,"p95":4568.81273279418,"p99":4758.246127762275}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:22+00","p50":4544.923097,"p95":4728.2395503668195,"p99":4951.403425014146}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:23+00","p50":3583.7264538749996,"p95":4746.395356841469,"p99":5591.490629165487}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:24+00","p50":3915.49382075,"p95":4723.654149367353,"p99":5499.290067641081}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:25+00","p50":4100.2323215,"p95":4802.911764469886,"p99":5507.375288059913}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:26+00","p50":3828.7071482499996,"p95":4639.1830049797,"p99":4812.431778594844}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:27+00","p50":2996.68651975,"p95":4501.015114459288,"p99":4514.674606690127}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:28+00","p50":3815.3495607500004,"p95":4498.395042493334,"p99":4572.881378172114}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:29+00","p50":3921.7775144999996,"p95":4429.037332488706,"p99":4449.555745536676}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:30+00","p50":3001.9882165,"p95":4285.531867268633,"p99":5033.9110607195025}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:31+00","p50":3465.83495625,"p95":4163.766026750244,"p99":4182.800838659262}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:32+00","p50":3007.6576605,"p95":4234.986313460867,"p99":4280.000996415401}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:33+00","p50":2985.1163005,"p95":4061.931901175288,"p99":4089.658088398897}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:34+00","p50":3294.210603,"p95":4209.124619817751,"p99":4274.668200468254}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:35+00","p50":3403.63569475,"p95":4194.661734274166,"p99":4209.279828245951}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:36+00","p50":3152.6921466249996,"p95":4162.849474730015,"p99":4784.621516238401}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:37+00","p50":3507.047877125,"p95":4037.5742459027547,"p99":4744.835613664199}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:38+00","p50":2610.10875725,"p95":3941.609704220851,"p99":3984.65390175123}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:39+00","p50":2628.5494826249997,"p95":4004.6741257941453,"p99":4023.183496714831}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:40+00","p50":4011.4232792499997,"p95":4137.581380399988,"p99":4862.819925475552}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:41+00","p50":2966.74192375,"p95":4063.4918259997216,"p99":4097.921082560894}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:42+00","p50":2818.21877,"p95":4057.4443107481698,"p99":4454.599374572968}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:43+00","p50":3602.70014275,"p95":4377.072418103921,"p99":5016.234428872784}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:44+00","p50":3892.0824121250002,"p95":4513.518403554581,"p99":4527.941811616564}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:45+00","p50":3986.424561,"p95":4206.337510220834,"p99":4963.738925843397}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:46+00","p50":3098.9148667500003,"p95":4050.2340626847968,"p99":4680.436949755075}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:47+00","p50":3658.855395,"p95":3778.784719130134,"p99":3841.588407207383}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:48+00","p50":3341.204683,"p95":3842.333833451337,"p99":3877.5041547425844}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:49+00","p50":3181.657119375,"p95":3824.1748138695834,"p99":4217.725168225138}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:50+00","p50":3315.5030049999996,"p95":3731.1625229048045,"p99":3739.605685617836}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:51+00","p50":3510.9966679999998,"p95":3798.6342243246218,"p99":4307.55341299712}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:52+00","p50":2891.8622851249997,"p95":3844.970035729626,"p99":4504.592750609978}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:53+00","p50":2915.4537805,"p95":3808.3020851560173,"p99":4271.594438712463}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:54+00","p50":3824.31375725,"p95":4013.7693087051175,"p99":4020.067913292537}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:55+00","p50":3484.947964625,"p95":3894.0324584102705,"p99":3913.9433264825543}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:56+00","p50":3267.6339765,"p95":3916.5135917322036,"p99":3996.471984863067}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:57+00","p50":3797.8761508750003,"p95":3944.961638856124,"p99":4462.338404996447}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:58+00","p50":3643.94262175,"p95":3895.748917291327,"p99":4322.826861763663}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:36:59+00","p50":3568.0283475,"p95":3886.9000719406713,"p99":3902.0362698401527}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:00+00","p50":3310.1594455,"p95":3769.773554140369,"p99":3799.076792843233}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:01+00","p50":3525.09342525,"p95":3744.4342542004783,"p99":3762.4940408138823}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:02+00","p50":3245.278846,"p95":3595.907444316883,"p99":3864.9538689235765}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:03+00","p50":3314.75643475,"p95":3494.555932669686,"p99":3746.11736535495}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:04+00","p50":3353.624390375,"p95":3472.977663565533,"p99":3485.053819011269}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:05+00","p50":3422.7164685000002,"p95":3570.893219608491,"p99":3581.3059614697577}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:06+00","p50":3368.88378225,"p95":3462.557147885274,"p99":3716.3456514636982}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:07+00","p50":3309.1528705,"p95":3419.606062845201,"p99":3567.130206384319}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:08+00","p50":3406.9794566250002,"p95":3493.388559922437,"p99":3651.2075566625863}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:09+00","p50":3408.0434215,"p95":3661.5526306014804,"p99":3700.305764202222}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:10+00","p50":3413.3691772500006,"p95":3740.820677432601,"p99":3755.801216690009}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:11+00","p50":3415.7365255,"p95":3750.9445179614986,"p99":4061.894562442909}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:12+00","p50":3278.8301031250003,"p95":3755.007047475542,"p99":4206.426245956215}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:13+00","p50":3402.63676175,"p95":3693.296492758716,"p99":4116.672353912626}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:14+00","p50":3557.029718,"p95":3647.925557060739,"p99":4073.4530057835686}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:15+00","p50":3253.748345,"p95":3684.6718938621484,"p99":4108.638721789612}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:16+00","p50":3419.0436036250003,"p95":3585.2806686682266,"p99":4001.8634271006995}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:17+00","p50":3434.43373225,"p95":3582.681483585099,"p99":3615.66662480117}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:18+00","p50":3391.859585,"p95":3731.6136584789815,"p99":3824.8229743764305}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:19+00","p50":3411.553024375,"p95":3790.274178662686,"p99":3842.7109842697214}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:20+00","p50":3223.6720425,"p95":3743.099909651252,"p99":3761.4501949842834}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:21+00","p50":3356.9126255,"p95":3857.7868814780563,"p99":3872.089933161051}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:22+00","p50":3598.82665,"p95":3854.8925191054286,"p99":4243.080412980745}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:23+00","p50":3453.4808617500003,"p95":3682.9760586422813,"p99":3989.053204131278}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:24+00","p50":3427.2030139999997,"p95":3659.4922971352375,"p99":3992.6813255381544}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:25+00","p50":3318.3027522499997,"p95":3632.9915102109335,"p99":4042.552549474309}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:26+00","p50":3547.6308885,"p95":3719.180060545724,"p99":4042.975530867754}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:27+00","p50":3625.658390875,"p95":3824.383943833761,"p99":4195.353800682333}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:28+00","p50":3642.36177425,"p95":4006.2002272978175,"p99":4106.644754985203}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:29+00","p50":3559.284158875,"p95":4234.598160885796,"p99":4321.494290144283}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:30+00","p50":3848.686694875,"p95":4174.32019345482,"p99":4723.710214249359}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:31+00","p50":3576.12583025,"p95":3988.9525108093735,"p99":4366.683976785913}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:32+00","p50":3455.2719765,"p95":3583.0244307004964,"p99":3618.178509028993}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:33+00","p50":3291.9913704999994,"p95":3564.87602276459,"p99":3574.7378226029505}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:34+00","p50":3298.2708615,"p95":3570.6752477295377,"p99":3890.457578465164}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:35+00","p50":3401.4914325,"p95":3552.6463180810656,"p99":3561.688973906151}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:36+00","p50":3457.4994845,"p95":3540.5123513418785,"p99":3853.413171264503}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:37+00","p50":3363.1095045,"p95":3495.061416502095,"p99":3609.6269487665745}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:38+00","p50":3341.153424,"p95":3466.1791879105776,"p99":3572.0251220978116}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:39+00","p50":3473.6677044999997,"p95":3585.2052601565174,"p99":3671.6112879612083}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:40+00","p50":3519.229607625,"p95":3621.881969243256,"p99":3688.9951363416353}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:41+00","p50":3598.8833355,"p95":3710.523609652865,"p99":3946.453132010855}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:42+00","p50":3488.9927213749997,"p95":3618.104353424436,"p99":3845.289453476398}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:43+00","p50":3613.0980995,"p95":3680.036977898419,"p99":3702.9321229289762}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:44+00","p50":3327.0913025,"p95":3635.3052172134735,"p99":3663.3976563715055}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:45+00","p50":3331.8993035000003,"p95":3782.4267852145845,"p99":3830.87116348375}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:46+00","p50":3228.1868535,"p95":3894.5397181503886,"p99":4359.5418780791615}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:47+00","p50":3525.51671275,"p95":3772.641932376616,"p99":3824.0038979545207}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:48+00","p50":3193.45321825,"p95":3685.4780006875103,"p99":3736.2243719210664}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:49+00","p50":3298.8055,"p95":3784.7194713752833,"p99":3816.0418820456484}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:50+00","p50":3471.512554375,"p95":3925.5184019037197,"p99":3993.8975699192447}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:51+00","p50":3561.571171,"p95":4001.274763204815,"p99":4441.969853491452}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:52+00","p50":3934.336734,"p95":4037.320494333948,"p99":4391.926628363157}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:53+00","p50":3680.80142275,"p95":4078.4014689957276,"p99":4428.02969630269}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:54+00","p50":3390.3042051250004,"p95":4172.626428921715,"p99":4750.926462032977}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:55+00","p50":3353.9148342500002,"p95":4111.557019303195,"p99":4870.194358258963}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:56+00","p50":3658.81108975,"p95":4019.8119669859643,"p99":4727.758418822964}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:57+00","p50":3359.839144,"p95":4142.10730159189,"p99":4204.798398071085}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:58+00","p50":3663.0039724999997,"p95":4224.443136671066,"p99":4321.2610536334405}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:37:59+00","p50":3444.798289,"p95":4372.122585808101,"p99":4384.450370127855}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:00+00","p50":3692.54183675,"p95":4370.0028406506435,"p99":4384.369657872809}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:01+00","p50":3815.4202207499998,"p95":4292.460770433715,"p99":5190.8497116872795}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:02+00","p50":3373.564365,"p95":4355.944823094053,"p99":5147.175165880001}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:03+00","p50":3800.07844775,"p95":4123.3412069030655,"p99":4155.8316191476815}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:04+00","p50":3249.32038375,"p95":4075.8401603311963,"p99":4135.663831702366}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:05+00","p50":3528.032972375,"p95":4224.238507238596,"p99":4233.703857355617}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:06+00","p50":2772.0677638750003,"p95":4356.552230304373,"p99":4379.176684694948}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:07+00","p50":3426.8167030000004,"p95":4364.667035385944,"p99":5027.823369201743}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:08+00","p50":3879.9142635,"p95":4115.143374730681,"p99":4184.5415026945675}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:09+00","p50":3356.9741482500003,"p95":4132.926249281935,"p99":4977.609855920949}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:10+00","p50":2975.7883564999997,"p95":4154.640118212348,"p99":4234.36893432009}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:11+00","p50":3490.091174125,"p95":4237.150163221894,"p99":4879.008794504289}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:12+00","p50":4019.5821017499998,"p95":4266.734180283428,"p99":4899.903778477794}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:13+00","p50":3100.2930914999997,"p95":4325.4929907744845,"p99":4335.737727552591}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:14+00","p50":4136.2015685,"p95":4251.0994588254935,"p99":4870.111672883472}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:15+00","p50":3826.5988255,"p95":4101.882226951302,"p99":4145.766233050393}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:16+00","p50":3744.57932425,"p95":3967.8171092914945,"p99":4022.7745110949163}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:17+00","p50":3125.37451975,"p95":3828.683149614901,"p99":3849.0386225563707}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:18+00","p50":3704.4241497499997,"p95":3807.8204659737066,"p99":3822.7443517954243}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:19+00","p50":3602.304842,"p95":3729.054639908333,"p99":3738.470980868858}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:20+00","p50":3336.064748125,"p95":3527.3078206951964,"p99":3682.957971140092}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:21+00","p50":3391.31653625,"p95":3680.0481444177885,"p99":3917.229885840495}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:22+00","p50":3496.960044125,"p95":3675.891394405253,"p99":3988.6810517554845}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:23+00","p50":3588.0013015,"p95":3970.010794856245,"p99":3993.1952528667202}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:24+00","p50":3507.8659012499998,"p95":4045.464292033862,"p99":4524.00201122088}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:25+00","p50":3206.570948125,"p95":4033.8412975238043,"p99":4039.2106606871803}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:26+00","p50":3305.9845111249997,"p95":3961.5744389665683,"p99":4587.6848417059155}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:27+00","p50":3175.489385,"p95":4003.7456571390735,"p99":4016.2049091827203}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:28+00","p50":3392.0925365000003,"p95":4186.586627129117,"p99":4195.956346854969}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:29+00","p50":3875.4065849999997,"p95":4144.301228146578,"p99":4163.9307424864155}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:30+00","p50":3284.5610034999995,"p95":4110.284232934055,"p99":4115.871576946662}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:31+00","p50":2879.8963512500004,"p95":4104.578853554038,"p99":4820.1665909921685}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:32+00","p50":3442.70165325,"p95":3983.821368585276,"p99":4766.606540647298}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:33+00","p50":2886.7767723750003,"p95":3838.742388839034,"p99":3855.6319229669552}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:34+00","p50":3490.9692187500004,"p95":4004.4817237604857,"p99":4028.8943793769913}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:35+00","p50":3739.093382625,"p95":3986.936870962782,"p99":3994.077658141179}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:36+00","p50":2402.703549125,"p95":4034.41542889592,"p99":4808.132513321634}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:37+00","p50":3040.2706978749998,"p95":4104.494041648662,"p99":4117.87050746793}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:38+00","p50":3262.1173417500004,"p95":4174.180728696279,"p99":4949.22516084986}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:39+00","p50":2934.98413625,"p95":4088.3273797855886,"p99":4860.6919417522395}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:40+00","p50":3282.8189617499997,"p95":4007.1072670844737,"p99":4595.612722016987}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:41+00","p50":2871.54755675,"p95":4128.582184930533,"p99":4268.961983897388}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:42+00","p50":2770.109360625,"p95":4292.6197854531365,"p99":4311.245175975731}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:43+00","p50":3607.490709,"p95":4216.042371309012,"p99":4265.44759972771}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:44+00","p50":3751.20592475,"p95":4279.674308426838,"p99":4965.854387371283}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:45+00","p50":4113.509405000001,"p95":4357.976472193981,"p99":4948.823955807859}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:46+00","p50":3667.85264725,"p95":4081.7744912903013,"p99":4117.657927946965}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:47+00","p50":3651.6874209999996,"p95":3987.252385312725,"p99":4016.283074921173}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:48+00","p50":2946.5649974999997,"p95":3840.213906821658,"p99":4379.3417496990805}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:49+00","p50":3838.1444045,"p95":3968.0099227007718,"p99":3977.9460275997326}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:50+00","p50":3767.370566,"p95":3870.719523430749,"p99":4510.923810435398}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:51+00","p50":2914.8397475,"p95":3960.9021677291435,"p99":3982.8998747030664}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:52+00","p50":3562.58605425,"p95":4028.074429193861,"p99":4763.402781900192}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:53+00","p50":3585.5748321250003,"p95":4087.7437080150166,"p99":4120.142563994101}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:54+00","p50":2450.5749885,"p95":4109.587137891972,"p99":4771.6716179763525}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:55+00","p50":3384.4732835,"p95":4126.503073297672,"p99":4176.230528521231}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:56+00","p50":3288.9615835000004,"p95":4180.379454150298,"p99":4981.01575641257}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:57+00","p50":4119.6292125,"p95":4321.295972078282,"p99":4341.307069215489}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:58+00","p50":3839.4022969999996,"p95":4277.114112797661,"p99":5152.068655907339}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:38:59+00","p50":3635.382338625,"p95":4313.660037833118,"p99":5066.888741769764}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:00+00","p50":2945.5677220000002,"p95":4258.168387695424,"p99":4983.27441748962}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:01+00","p50":2479.786123875,"p95":4056.5278506848254,"p99":4908.284345244088}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:02+00","p50":3071.540061625,"p95":4105.295595722141,"p99":4193.712735140906}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:03+00","p50":2576.989095625,"p95":4102.67090592998,"p99":4771.370187353686}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:04+00","p50":3297.6087775,"p95":4067.587001762827,"p99":4747.871007208458}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:05+00","p50":3035.4955090000003,"p95":4098.392093891248,"p99":4599.188799184939}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:06+00","p50":2679.8981595,"p95":3964.7464178558384,"p99":3999.5675737652045}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:07+00","p50":3492.4844297500003,"p95":3787.868725409244,"p99":3800.6355203912944}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:08+00","p50":3438.5118425,"p95":3967.2287080612964,"p99":4583.7640149268245}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:09+00","p50":3176.0642255,"p95":4156.482551570401,"p99":4173.919268782623}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:10+00","p50":3232.6827385,"p95":4185.551080640556,"p99":5009.437670666618}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:11+00","p50":2834.217328875,"p95":3987.9660789752406,"p99":4801.127123967161}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:12+00","p50":3125.098980625,"p95":3805.4465999459835,"p99":3819.7475286124886}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:13+00","p50":2915.3821865,"p95":3677.974073876093,"p99":4220.745344060722}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:14+00","p50":3248.0994945,"p95":3692.6479048658366,"p99":3718.525435324173}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:15+00","p50":3612.7746134999998,"p95":3701.8576559011995,"p99":4154.045306603012}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:16+00","p50":3216.4171845,"p95":3667.280217733736,"p99":4224.855497048531}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:17+00","p50":3228.647590875,"p95":3638.4640731389204,"p99":4038.6411179971306}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:18+00","p50":3363.0003065,"p95":3477.9344543242987,"p99":3495.7460667524006}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:19+00","p50":3150.1264182500004,"p95":3544.0654584551135,"p99":3553.3286184825324}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:20+00","p50":3294.867163875,"p95":3727.137435655499,"p99":3753.2816270056896}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:21+00","p50":3409.9209419999997,"p95":3953.6564826438394,"p99":4001.057150820722}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:22+00","p50":3778.08172725,"p95":3997.236203836522,"p99":4029.4127530442506}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:23+00","p50":3304.216138875,"p95":3910.0211517055222,"p99":3941.529629117682}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:24+00","p50":3213.2926196249996,"p95":4107.512915617416,"p99":4118.47568565994}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:25+00","p50":3487.737440875,"p95":4059.069457800716,"p99":4738.92641988887}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:26+00","p50":3568.410016375,"p95":4140.125964834496,"p99":4661.09604760116}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:27+00","p50":3101.0006926250003,"p95":4085.3329362167133,"p99":4818.794939449761}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:28+00","p50":3043.3802909999995,"p95":4224.091629992636,"p99":4892.283592519665}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:29+00","p50":3325.829699375,"p95":4271.396502848743,"p99":4302.074174345315}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:30+00","p50":3534.8073305000003,"p95":4234.497318408864,"p99":4255.482041352431}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:31+00","p50":2958.6323629999997,"p95":3957.0285432825367,"p99":4613.8224602489845}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:32+00","p50":3181.3262672499995,"p95":3831.9895231831874,"p99":4388.5889498181095}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:33+00","p50":3586.44449575,"p95":3687.882981591743,"p99":3715.569788311142}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:34+00","p50":3301.843729875,"p95":3754.065868436175,"p99":4328.927589434318}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:35+00","p50":3165.0888265,"p95":3638.382876938046,"p99":4157.968514408137}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:36+00","p50":3577.7404914999997,"p95":3679.746159709484,"p99":4106.552313309022}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:37+00","p50":3347.4094722500004,"p95":3636.528345124357,"p99":3656.916414292396}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:38+00","p50":3188.16195175,"p95":3485.6680883389317,"p99":3510.247739188611}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:39+00","p50":3292.345353375,"p95":3646.2210092753526,"p99":3700.3078788280445}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:40+00","p50":3235.9065251250004,"p95":3849.197352106697,"p99":3858.9897840825115}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:41+00","p50":3312.1398417499995,"p95":4106.344434254721,"p99":4142.680246986092}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:42+00","p50":3913.2528483749998,"p95":4101.8600837385875,"p99":4128.032046092005}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:43+00","p50":2903.7272645000003,"p95":3902.9201487427454,"p99":3926.341673231008}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:44+00","p50":3305.352916,"p95":3686.377829960074,"p99":3723.8546977233086}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:45+00","p50":3312.466879,"p95":3754.958865487721,"p99":4079.069299782924}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:46+00","p50":3259.192982875,"p95":3642.082794334479,"p99":3665.065476256521}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:47+00","p50":3488.207184125,"p95":3612.97594631652,"p99":3627.694272475731}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:48+00","p50":3449.82461525,"p95":3601.1392429987122,"p99":3849.75221489028}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:49+00","p50":3484.874687125,"p95":3547.671917648808,"p99":3623.982537797749}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:50+00","p50":3471.2718162499996,"p95":3533.956708577964,"p99":3742.8472208031008}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:51+00","p50":3440.42626525,"p95":3564.9332112385014,"p99":3792.666199861867}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:52+00","p50":3429.6472628750003,"p95":3494.162698170476,"p99":3719.4370087934653}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:53+00","p50":3437.7051864999994,"p95":3528.619020319118,"p99":3717.725611511246}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:54+00","p50":3455.0718975,"p95":3520.4096387469262,"p99":3688.6153952045934}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:55+00","p50":3388.349935875,"p95":3501.16131407243,"p99":3680.79208659506}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:56+00","p50":3486.3177095,"p95":3601.947107474822,"p99":3847.746394380711}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:57+00","p50":3504.7658,"p95":3776.726360879858,"p99":3794.01689193104}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:58+00","p50":3700.760456125,"p95":3993.627973420546,"p99":4399.076870315889}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:39:59+00","p50":3627.1649527500003,"p95":3994.170329721632,"p99":4368.677084438503}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:00+00","p50":3619.11160775,"p95":3928.437170380748,"p99":4258.325594286037}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:01+00","p50":3586.4758522499997,"p95":3812.329167381121,"p99":4119.719415258112}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:02+00","p50":3377.5379135,"p95":3777.9443169305296,"p99":3804.351017172784}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:03+00","p50":3407.918331,"p95":3581.669813550806,"p99":3590.2605072521587}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:04+00","p50":3333.139233125,"p95":3548.052602973781,"p99":3575.4627251781153}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:05+00","p50":3298.5731835,"p95":3443.3515321804457,"p99":3466.7032446276244}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:06+00","p50":3267.885459,"p95":3367.521168205141,"p99":3479.3558624675425}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:07+00","p50":3299.4347643749998,"p95":3448.7781796435447,"p99":3500.8704205701665}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:08+00","p50":3362.18360725,"p95":3511.2352924379984,"p99":3806.033098909977}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:09+00","p50":3418.5795636250004,"p95":3550.533564238281,"p99":3798.488485404526}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:10+00","p50":3387.5602129999997,"p95":3707.4978663804727,"p99":4029.490851103777}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:11+00","p50":3533.460601875,"p95":3705.9595355782544,"p99":3721.205219775323}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:12+00","p50":3357.740083875,"p95":3728.7532503274224,"p99":4036.861051842255}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:13+00","p50":3360.966099,"p95":3745.358903983276,"p99":3782.517723571459}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:14+00","p50":3481.3746815000004,"p95":3741.562530017086,"p99":3818.7240957239183}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:15+00","p50":3348.4714865,"p95":3810.2392059864333,"p99":3820.4487293047073}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:16+00","p50":3097.9350230000005,"p95":3809.969911378475,"p99":3827.659764729484}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:17+00","p50":3395.3582722499996,"p95":3914.8174906521776,"p99":4361.803687931677}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:18+00","p50":3629.657686,"p95":4019.769184716758,"p99":4037.855941411176}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:19+00","p50":3577.9349307499997,"p95":4077.073807990552,"p99":4682.113978095932}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:20+00","p50":3202.4249971249997,"p95":4096.561186033954,"p99":4117.028921476505}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:21+00","p50":3331.1648705,"p95":3923.2309090114486,"p99":3933.1614178745535}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:22+00","p50":3255.8094545,"p95":3881.5481343069023,"p99":4404.904657120085}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:23+00","p50":3623.4775,"p95":3879.9525457642744,"p99":3895.6488852341377}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:24+00","p50":3233.9252822500002,"p95":3872.3610017206965,"p99":3889.540258415253}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:25+00","p50":3408.7335405000003,"p95":3780.1966269609757,"p99":4293.425004396797}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:26+00","p50":3197.85104825,"p95":3936.6646702306402,"p99":4507.536116457112}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:27+00","p50":3637.70938725,"p95":3944.6333717200177,"p99":3984.8894609840095}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:28+00","p50":3358.539965,"p95":3906.6961773670378,"p99":4472.856948019926}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:29+00","p50":2937.468176,"p95":4092.4091973094482,"p99":4490.993397021701}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:30+00","p50":3139.32783,"p95":4056.356864952989,"p99":4503.262758234536}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:31+00","p50":3413.425915,"p95":3805.3808942153396,"p99":4470.584886380217}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:32+00","p50":2915.0338825,"p95":3804.6466601219536,"p99":4481.855271040502}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:33+00","p50":3452.021634,"p95":3917.2517836316015,"p99":3933.1859057793063}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:34+00","p50":2856.5065555,"p95":4102.721675457712,"p99":4638.941632043976}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:35+00","p50":2354.3730404999997,"p95":3985.1030412696073,"p99":4780.040067966511}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:36+00","p50":2965.6788941249997,"p95":3975.7407615057064,"p99":4692.696043212758}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:37+00","p50":2725.85233675,"p95":3929.035530191027,"p99":4750.880076310618}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:38+00","p50":2966.6716105,"p95":3927.6875365504557,"p99":4680.539851438203}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:39+00","p50":2838.362545875,"p95":4095.4811840818747,"p99":4784.998932164655}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:40+00","p50":3635.9811047499998,"p95":4141.8943428264765,"p99":4901.920456617757}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:41+00","p50":3003.526812,"p95":4059.329012350121,"p99":4075.004084308586}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:42+00","p50":3440.897803875,"p95":4065.66967426313,"p99":4914.484055824437}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:43+00","p50":3870.73400425,"p95":4101.202632000752,"p99":4209.879871893696}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:44+00","p50":3134.390871125,"p95":4219.050312715576,"p99":4916.519071203326}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:45+00","p50":3378.603587625,"p95":4289.943486261259,"p99":4304.7870919695615}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:46+00","p50":3096.36626575,"p95":4279.261573502634,"p99":4294.27801299727}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:47+00","p50":2874.276163,"p95":4089.4846679878074,"p99":4109.430297358721}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:48+00","p50":2823.1332295,"p95":4052.472774233339,"p99":4698.004947083006}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:49+00","p50":3406.04261825,"p95":4036.6771737689373,"p99":4113.048558642417}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:50+00","p50":3372.17788325,"p95":4000.079425564357,"p99":4542.761351106871}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:51+00","p50":3594.224319375,"p95":4115.450253114915,"p99":4260.670657157541}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:52+00","p50":3920.62865825,"p95":4158.464859343679,"p99":4708.954449021239}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:53+00","p50":3605.5772262500004,"p95":4086.624408758026,"p99":4636.565692624745}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:54+00","p50":3473.05211625,"p95":4099.812905108125,"p99":4166.437731680256}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:55+00","p50":3459.75113225,"p95":4026.75003785039,"p99":4415.356563003114}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:56+00","p50":3506.883413,"p95":4097.560454773061,"p99":4477.982716174077}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:57+00","p50":3297.645071,"p95":4051.520697720441,"p99":4116.411082245236}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:58+00","p50":3502.5658925,"p95":3991.570248906184,"p99":4453.003807052691}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:40:59+00","p50":3558.146333875,"p95":4092.811563391413,"p99":4357.57681506314}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:00+00","p50":3452.471091,"p95":4078.3676977832974,"p99":4102.995730995646}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:01+00","p50":3610.5584446250004,"p95":3886.8456458758283,"p99":3927.823954660213}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:02+00","p50":3659.85413475,"p95":3860.4956274579617,"p99":4263.164651326732}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:03+00","p50":3403.739342625,"p95":3902.989441246923,"p99":3917.7105270516386}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:04+00","p50":3313.4003107500002,"p95":3871.426579623915,"p99":4212.112849141096}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:05+00","p50":3179.80349575,"p95":3815.1666759108907,"p99":4247.501059921587}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:06+00","p50":3198.788998,"p95":3697.9791853988813,"p99":4208.429739588997}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:07+00","p50":2956.647693875,"p95":3751.146532461767,"p99":3769.101888975374}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:08+00","p50":3534.993801625,"p95":3811.027835953404,"p99":4347.633553049499}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:09+00","p50":3527.0326112499997,"p95":3812.446283359055,"p99":4271.650021182008}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:10+00","p50":3452.4561405000004,"p95":3749.3589962440137,"p99":3773.0855603650393}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:11+00","p50":3001.961251625,"p95":3687.1951611859195,"p99":4101.318755345249}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:12+00","p50":2852.287065,"p95":3764.489584760737,"p99":4258.316306576799}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:13+00","p50":3684.6984965,"p95":3791.85102621472,"p99":3801.7370944056997}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:14+00","p50":3405.1051595,"p95":3718.2314287388094,"p99":4296.036662458169}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:15+00","p50":2794.7393155,"p95":3626.4515137086146,"p99":4140.919348872962}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:16+00","p50":3329.66024025,"p95":3741.3870849158816,"p99":4287.798007183347}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:17+00","p50":3364.7238695,"p95":3678.815974987211,"p99":3691.5947403119294}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:18+00","p50":3400.581933875,"p95":3562.4110900672254,"p99":3845.786005642169}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:19+00","p50":3284.596498125,"p95":3690.8778787504057,"p99":3997.055299844102}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:20+00","p50":3461.99820475,"p95":3877.260218884794,"p99":4025.6441374849014}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:21+00","p50":3412.365991875,"p95":3966.421217451399,"p99":4356.032221628759}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:22+00","p50":3373.980134875,"p95":3686.570135681582,"p99":4154.967597959327}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:23+00","p50":3382.772892,"p95":3728.673875756445,"p99":4088.283643223026}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:24+00","p50":3583.1679157500002,"p95":3679.8847839356854,"p99":3701.1601374645406}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:25+00","p50":3471.14515975,"p95":3649.2081529219367,"p99":3865.431384734855}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:26+00","p50":3562.889736125,"p95":3738.0753121923203,"p99":3755.09460999646}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:27+00","p50":3581.0287685000003,"p95":3911.2420323764804,"p99":3973.726552929056}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:28+00","p50":3543.634772,"p95":3989.646731658327,"p99":4355.5202276441105}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:29+00","p50":3778.0228552500002,"p95":4099.629464545787,"p99":4118.777369081509}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:30+00","p50":3404.21920675,"p95":3993.4633986595295,"p99":4031.098784922464}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:31+00","p50":3459.7237595,"p95":3887.4685577993487,"p99":3914.3027238989976}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:32+00","p50":3154.039605,"p95":3809.9818387344844,"p99":3840.489269934718}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:33+00","p50":3698.68206525,"p95":4098.552125395957,"p99":4412.242336583504}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:34+00","p50":3025.381249,"p95":4016.8345396249892,"p99":4081.3857739675464}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:35+00","p50":3533.47238425,"p95":3924.4537812941558,"p99":4533.358512987344}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:36+00","p50":3089.69832525,"p95":3695.217831758813,"p99":3723.905614325424}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:37+00","p50":3030.02693575,"p95":3655.321474210323,"p99":4132.4593656271945}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:38+00","p50":3494.828334375,"p95":3799.378373246664,"p99":3810.974890998402}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:39+00","p50":3105.4319167500003,"p95":3958.5575952206127,"p99":4442.581104371212}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:40+00","p50":3915.3236875000002,"p95":4014.505003878078,"p99":4465.476259516889}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:41+00","p50":3121.6836055,"p95":4033.633329904034,"p99":4052.9609215629434}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:42+00","p50":3212.925734,"p95":3810.8793724015563,"p99":3921.585736007909}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:43+00","p50":3259.5963973750004,"p95":3929.99866704877,"p99":4459.455710302825}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:44+00","p50":3380.54413425,"p95":3854.0216954483985,"p99":4283.55217776917}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:45+00","p50":3506.6499327499996,"p95":3799.0615468948417,"p99":4169.9160559460715}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:46+00","p50":3348.7515495,"p95":3700.647661533427,"p99":3969.670152839774}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:47+00","p50":3285.1935245,"p95":3519.124160684575,"p99":3704.5022614698523}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:48+00","p50":3308.9245579999997,"p95":3425.4175101093883,"p99":3440.7119554302967}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:49+00","p50":3429.617882875,"p95":3541.1142726158864,"p99":3620.042182079638}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:50+00","p50":3485.45680525,"p95":3641.178695851225,"p99":3758.8729772077772}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:51+00","p50":3526.9651235,"p95":3700.507463949268,"p99":3721.2613390284114}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:52+00","p50":3579.3737303750004,"p95":3751.361215318446,"p99":4088.80130344427}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:53+00","p50":3350.65459125,"p95":3725.8870364963277,"p99":4005.44801856883}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:54+00","p50":3643.3746575,"p95":3812.3617805807726,"p99":3828.469597416357}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:55+00","p50":3436.474518125,"p95":3877.452325059154,"p99":4250.994766467559}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:56+00","p50":3497.2605355,"p95":3706.0270635985034,"p99":4103.980096321481}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:57+00","p50":3546.3447134999997,"p95":3675.1107862342465,"p99":4006.2843002244713}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:58+00","p50":3542.23079825,"p95":3662.0283556928916,"p99":3691.9436009443098}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:41:59+00","p50":3417.3317913749997,"p95":3664.2082282891433,"p99":3673.1911535439626}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:00+00","p50":3323.036161375,"p95":3402.1379723167242,"p99":3600.6542268613734}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:01+00","p50":3241.7306223749997,"p95":3405.656879168784,"p99":3424.5227655033013}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:02+00","p50":3202.6613770000004,"p95":3517.7114740942516,"p99":3538.4088282182615}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:03+00","p50":3351.764129,"p95":3514.0506483085383,"p99":3769.645283644115}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:04+00","p50":3333.30744375,"p95":3514.5829778595794,"p99":3611.0409226095567}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:05+00","p50":3313.3261709999997,"p95":3431.663140975411,"p99":3455.5892938771767}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:06+00","p50":3148.549544875,"p95":3421.60272021968,"p99":3437.3848267064395}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:07+00","p50":3240.046666,"p95":3460.1014381690147,"p99":3477.1425023731285}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:08+00","p50":3330.314868,"p95":3564.2639444260526,"p99":3891.138504150167}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:09+00","p50":3337.0925105,"p95":3556.802810899663,"p99":3741.926497246622}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:10+00","p50":3390.1861049999998,"p95":3587.7882809657976,"p99":3628.324214963173}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:11+00","p50":3308.6252125,"p95":3398.775116703263,"p99":3563.1196082221454}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:12+00","p50":3141.7865702500003,"p95":3412.6411501920693,"p99":3450.823118857816}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:13+00","p50":3218.933468,"p95":3567.8708596183574,"p99":3857.446652206736}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:14+00","p50":3213.33055475,"p95":3628.8853813374853,"p99":4012.8986411593874}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:15+00","p50":3183.0811866250006,"p95":3606.748389013644,"p99":3646.1110445022146}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:16+00","p50":3221.7830147500003,"p95":3523.953968831139,"p99":3545.2718205986416}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:17+00","p50":3199.884182,"p95":3474.43311849904,"p99":3493.0611986963827}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:18+00","p50":3398.37037925,"p95":3603.062362684314,"p99":3620.23825351204}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:19+00","p50":3442.9705162500004,"p95":3805.042028834554,"p99":3819.024470849407}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:20+00","p50":3734.6542019999997,"p95":3882.653097465944,"p99":3922.119958332046}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:21+00","p50":3365.042242,"p95":3942.141542313028,"p99":4422.726813588053}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:22+00","p50":3856.023993125,"p95":4027.70140514744,"p99":4653.834375491782}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:23+00","p50":3418.03793475,"p95":3943.993509512265,"p99":3964.0168385461566}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:24+00","p50":3589.208109,"p95":3945.399548000845,"p99":4496.719866312634}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:25+00","p50":3755.194479875,"p95":3987.525313856741,"p99":4412.088862214668}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:26+00","p50":3344.53799025,"p95":3988.5660170404167,"p99":4029.571523633874}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:27+00","p50":3796.3672975,"p95":3895.6115038215735,"p99":3973.9887536478386}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:28+00","p50":3761.9019856249997,"p95":3883.284016048738,"p99":3973.779319571269}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:29+00","p50":3735.581153,"p95":3849.3372113382225,"p99":3874.3156529999083}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:30+00","p50":3669.6999790000004,"p95":3800.801851428093,"p99":4058.1330713904163}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:31+00","p50":3507.349128625,"p95":3706.917465341931,"p99":4003.808990964062}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:32+00","p50":3440.8277871249998,"p95":3521.9945045333434,"p99":3795.5223364661856}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:33+00","p50":3478.0638452499998,"p95":3599.027089170467,"p99":3627.071014257535}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:34+00","p50":3428.569566,"p95":3509.048791762789,"p99":3683.526707632329}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:35+00","p50":3382.853085,"p95":3451.173850838957,"p99":3721.53300079377}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:36+00","p50":3307.7698681250004,"p95":3440.0256989659933,"p99":3633.7041731985432}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:37+00","p50":3211.8251060000002,"p95":3259.4251887184105,"p99":3376.228246290939}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:38+00","p50":3316.806936125,"p95":3489.961528636672,"p99":3505.2643747067386}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:39+00","p50":3426.1740772499998,"p95":3511.4041188258534,"p99":3615.0670138808405}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:40+00","p50":3423.9295890000003,"p95":3510.23464298403,"p99":3526.660272595446}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:41+00","p50":3430.4840802500003,"p95":3630.3084360498024,"p99":3884.6792710087634}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:42+00","p50":3381.5377900000003,"p95":3434.769765475745,"p99":3645.409401722426}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:43+00","p50":3370.381812,"p95":3439.998185296606,"p99":3627.612137580475}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:44+00","p50":3364.802525125,"p95":3446.7608034941713,"p99":3598.148154461615}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:45+00","p50":3421.8180315,"p95":3500.244751774954,"p99":3514.8409244762875}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:46+00","p50":3291.837262125,"p95":3516.8955349423804,"p99":3802.032157146258}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:47+00","p50":3278.219354625,"p95":3350.2368528069933,"p99":3540.3332910533477}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:48+00","p50":3322.561548875,"p95":3384.896384525378,"p99":3588.269347293802}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:49+00","p50":3286.4612335,"p95":3397.5848920492717,"p99":3406.627369794732}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:50+00","p50":3285.0147201249997,"p95":3469.832910078948,"p99":3504.138387789175}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:51+00","p50":3302.8229097500007,"p95":3525.2475858052258,"p99":3546.311170353913}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:52+00","p50":3417.545737,"p95":3559.179386570719,"p99":3574.6789338455887}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:53+00","p50":3453.2242673749997,"p95":3541.038026322145,"p99":3552.5925635993526}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:54+00","p50":3431.5601688750003,"p95":3490.0335644840206,"p99":3524.108693756973}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:55+00","p50":3473.189215125,"p95":3550.52352991464,"p99":3770.6458714309574}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:56+00","p50":3462.1719942500004,"p95":3605.938515912914,"p99":3673.730403148387}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:57+00","p50":3580.64694775,"p95":3834.6341673465004,"p99":3861.4096818676667}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:58+00","p50":3683.94309725,"p95":3840.307878111153,"p99":3847.335714567927}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:42:59+00","p50":3557.9044035,"p95":3842.138335570509,"p99":4049.5032011173325}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:00+00","p50":3480.8115435,"p95":3640.0227432973443,"p99":3814.888986858942}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:01+00","p50":3409.6012647499997,"p95":3662.777206113112,"p99":3831.58926605165}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:02+00","p50":3373.5670355,"p95":3431.750156154127,"p99":3559.328521564598}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:03+00","p50":3391.6554615,"p95":3585.4712988756683,"p99":3604.8782150558327}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:04+00","p50":3439.3741865,"p95":3511.9320253302067,"p99":3524.352783927312}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:05+00","p50":3438.197827125,"p95":3524.4722749882444,"p99":3753.6978435186434}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:06+00","p50":3363.6905914999998,"p95":3557.201978048016,"p99":3738.717403231031}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:07+00","p50":3273.616982375,"p95":3437.8814984564406,"p99":3571.5434379035883}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:08+00","p50":3307.7235467499995,"p95":3362.8175278751,"p99":3632.307369446304}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:09+00","p50":3334.69099375,"p95":3453.718284433818,"p99":3602.513112540376}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:10+00","p50":3416.0336265,"p95":3598.915246998626,"p99":3615.438639143141}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:11+00","p50":3435.941654625,"p95":3516.183491420521,"p99":3768.3974083054463}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:12+00","p50":3345.0191729999997,"p95":3508.1330786689236,"p99":3518.3939052718565}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:13+00","p50":3232.960544625,"p95":3421.386327141643,"p99":3436.893748143761}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:14+00","p50":3295.106593,"p95":3420.4845115283074,"p99":3749.075588466954}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:15+00","p50":3165.7956544999997,"p95":3474.7694172150955,"p99":3500.043711489738}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:16+00","p50":3330.965524,"p95":3428.107583749073,"p99":3743.2087153125603}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:17+00","p50":3247.0498365000003,"p95":3429.7679371769486,"p99":3699.776482936511}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:18+00","p50":3273.5456022500002,"p95":3481.0601914903064,"p99":3788.6436799291246}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:19+00","p50":3322.383813,"p95":3514.76177673705,"p99":3840.8471132756}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:20+00","p50":3313.1562860000004,"p95":3526.173407474133,"p99":3545.274675311586}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:21+00","p50":3242.488652,"p95":3350.6272994486735,"p99":3506.9337341229325}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:22+00","p50":3202.07466375,"p95":3300.6235212799397,"p99":3489.922360644884}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:23+00","p50":3249.1976265,"p95":3318.409008260099,"p99":3577.2182582290484}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:24+00","p50":3311.6607912500003,"p95":3382.5993578735533,"p99":3473.8884911120344}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:25+00","p50":3295.6972625,"p95":3472.8681825518975,"p99":3567.368194764436}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:26+00","p50":3317.22166275,"p95":3505.3677016668416,"p99":3515.040056990616}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:27+00","p50":3376.03641875,"p95":3667.712251967427,"p99":3832.7632094474657}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:28+00","p50":3561.9383655,"p95":3780.1635977092133,"p99":3800.8446053921916}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:29+00","p50":3368.5154577499998,"p95":3819.4853629312342,"p99":4209.5862012740035}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:30+00","p50":3276.5937725000003,"p95":3839.9585402304742,"p99":3862.084033411764}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:31+00","p50":3046.8698409999997,"p95":3715.430269544366,"p99":3755.163319732658}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:32+00","p50":3634.5424646250003,"p95":3804.3449961135175,"p99":3815.9031024700844}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:33+00","p50":3325.69433175,"p95":3804.6009638691125,"p99":3819.9997822946207}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:34+00","p50":3106.2216936249997,"p95":3804.841503845843,"p99":3838.1584369881443}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:35+00","p50":3433.68727175,"p95":3684.2733120840167,"p99":4187.020498129905}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:36+00","p50":3582.486955,"p95":3688.0734682963753,"p99":4153.844523449737}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:37+00","p50":3057.253497625,"p95":3617.32249078229,"p99":4043.1702092083483}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:38+00","p50":2972.737958,"p95":3673.4316852876536,"p99":4195.4222453747525}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:39+00","p50":2966.83881025,"p95":3545.4276131259,"p99":3866.8736200156313}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:40+00","p50":3064.909732125,"p95":3606.6714737699904,"p99":3621.4747569819247}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:41+00","p50":3211.03422525,"p95":3537.334442243527,"p99":3598.842983187475}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:42+00","p50":3258.199005375,"p95":3463.738836587829,"p99":3482.5003042471694}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:43+00","p50":3388.4871872500003,"p95":3580.911515058687,"p99":3609.70700802333}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:44+00","p50":3457.949436125,"p95":3587.9095786095445,"p99":3602.9300184844815}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:45+00","p50":3555.9663105000004,"p95":3609.350586966885,"p99":3838.9705409364437}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:46+00","p50":3562.588873375,"p95":3678.6121187963936,"p99":3870.782228963701}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:47+00","p50":3484.188703375,"p95":3606.0081861049766,"p99":3618.609891334936}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:48+00","p50":3519.0376484999997,"p95":3667.5998839104727,"p99":3701.46962719833}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:49+00","p50":3564.7411015,"p95":3698.0836422391235,"p99":3719.4112565151813}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:50+00","p50":3473.051057625,"p95":3819.6127420083308,"p99":3837.1019482648635}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:51+00","p50":3427.15331325,"p95":3800.176373766976,"p99":3842.8704879508055}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:52+00","p50":3613.188064125,"p95":3766.446186750344,"p99":4058.4399844496374}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:53+00","p50":3628.895954875,"p95":3785.2589792592053,"p99":4080.2648658848816}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:54+00","p50":3547.462674,"p95":3849.0666991192716,"p99":3870.7773556974344}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:55+00","p50":3432.0735026250004,"p95":3720.9180916747287,"p99":4100.903120687401}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:56+00","p50":3415.617523875,"p95":3488.8351553589587,"p99":3791.334548814896}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:57+00","p50":3515.39850575,"p95":3667.8983047507318,"p99":3698.268309774481}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:58+00","p50":3707.1106687499996,"p95":3800.7394348058083,"p99":3840.2944584047577}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:43:59+00","p50":3745.16737225,"p95":3997.6139140298287,"p99":4015.0406471599495}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:00+00","p50":3671.4960659999997,"p95":3946.9215303115157,"p99":3986.943571203165}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:01+00","p50":3495.290978,"p95":3562.8269061476267,"p99":3798.522177353886}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:02+00","p50":3439.1047635000004,"p95":3495.6275313755796,"p99":3579.9545746844387}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:03+00","p50":3314.519146,"p95":3419.143279464043,"p99":3541.818598490643}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:04+00","p50":3249.912410125,"p95":3473.27905596262,"p99":3489.7289356206447}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:05+00","p50":3202.644486,"p95":3452.0255869158595,"p99":3467.6811181346206}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:06+00","p50":3168.741986,"p95":3466.6219744894415,"p99":3486.610334222781}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:07+00","p50":3187.20684325,"p95":3503.5919109459664,"p99":3528.069459552975}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:08+00","p50":3345.0875505000004,"p95":3643.6266880021362,"p99":4043.4308445403026}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:09+00","p50":3481.0953745,"p95":3685.3994592746417,"p99":3713.19845572846}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:10+00","p50":3240.643855875,"p95":3704.5230539001436,"p99":3714.8558591666483}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:11+00","p50":3314.89459075,"p95":3709.0687735853508,"p99":3723.3067748413873}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:12+00","p50":3428.405594,"p95":3495.9126604674816,"p99":3855.9198338114047}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:13+00","p50":3291.371267,"p95":3498.373650075741,"p99":3743.103622177964}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:14+00","p50":3292.3737515000003,"p95":3395.9727380702248,"p99":3446.60296605961}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:15+00","p50":3316.7429825,"p95":3515.1530350639923,"p99":3540.767967496416}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:16+00","p50":3392.0038055000005,"p95":3515.0858508782694,"p99":3536.4045091518756}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:17+00","p50":3093.7310375,"p95":3556.696561597489,"p99":3583.798430713024}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:18+00","p50":3158.8241920000005,"p95":3653.8410186280244,"p99":4035.6423950602066}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:19+00","p50":3482.776076,"p95":3731.669162407945,"p99":3743.562263213534}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:20+00","p50":3265.37714625,"p95":3618.760152324948,"p99":3634.277825679383}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:21+00","p50":3380.23357425,"p95":3601.163824076834,"p99":3609.415641502574}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:22+00","p50":3281.819768625,"p95":3566.612456957562,"p99":3999.0193059358767}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:23+00","p50":3227.5561900000002,"p95":3727.3483069306767,"p99":4013.701882028955}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:24+00","p50":3341.09901425,"p95":3764.653255019227,"p99":4213.707698050909}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:25+00","p50":3554.5386337500004,"p95":3737.236671800909,"p99":4194.673240070561}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:26+00","p50":3340.7448560000003,"p95":3723.1990760304993,"p99":4209.279019433308}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:27+00","p50":3174.5821875,"p95":3920.2290307000726,"p99":3941.0706167855933}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:28+00","p50":3341.7416848749995,"p95":3956.260530949452,"p99":4387.1272296427915}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:29+00","p50":3489.96157525,"p95":4040.020814656356,"p99":4076.0953603980984}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:30+00","p50":3283.11828525,"p95":4004.91574344699,"p99":4024.11718714808}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:31+00","p50":2993.3656737499996,"p95":4070.3572242700216,"p99":4536.135481352859}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:32+00","p50":3728.9784205,"p95":4139.2384580796515,"p99":4148.521261387966}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:33+00","p50":3070.88208475,"p95":4061.7445449225115,"p99":4100.571406096752}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:34+00","p50":3143.9882215,"p95":3924.4456037242885,"p99":4714.293944452117}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:35+00","p50":3372.5991372500002,"p95":3750.62781243275,"p99":4343.0365524011}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:36+00","p50":3310.777132,"p95":3521.1916326086825,"p99":3738.7619867710787}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:37+00","p50":3394.31246475,"p95":3581.3409649760765,"p99":3798.4597312917194}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:38+00","p50":3417.806976,"p95":3494.7929174889678,"p99":3547.261527936111}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:39+00","p50":3446.1641119999995,"p95":3502.5912654008143,"p99":3574.262673119554}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:40+00","p50":3380.7104525,"p95":3469.249601956289,"p99":3487.464125256155}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:41+00","p50":3507.9467357500002,"p95":3642.062441988497,"p99":3655.7853526532954}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:42+00","p50":3390.340435625,"p95":3538.416038249907,"p99":3597.026718731573}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:43+00","p50":3431.97218675,"p95":3542.076341819704,"p99":3567.0893513761744}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:44+00","p50":3412.759875375,"p95":3618.6514721150356,"p99":3993.925092869799}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:45+00","p50":3381.2643695,"p95":3599.8234880511313,"p99":3661.464387048414}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:46+00","p50":3298.3819170000006,"p95":3506.1093518634752,"p99":3515.690151120074}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:47+00","p50":3256.911897,"p95":3528.2320852309017,"p99":3905.8695854605485}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:48+00","p50":3048.466126375,"p95":3682.350990099143,"p99":3726.170242531051}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:49+00","p50":3054.18692675,"p95":3688.6811873772285,"p99":3734.9072249657806}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:50+00","p50":3114.5809314999997,"p95":3771.014370428611,"p99":3812.2713212381404}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:51+00","p50":2908.8382728750003,"p95":3917.7121875678604,"p99":3997.3788204324183}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:52+00","p50":3009.6962970000004,"p95":4014.490339367228,"p99":4043.0878818845754}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:53+00","p50":2845.9318615,"p95":4045.253691178872,"p99":4721.466733598959}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:54+00","p50":3467.62101475,"p95":4059.553599111917,"p99":4746.3600984698605}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:55+00","p50":3678.68427375,"p95":3878.6645704162465,"p99":4419.771222428656}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:56+00","p50":2853.640628,"p95":3781.9845796724308,"p99":3845.717120369373}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:57+00","p50":3081.55624,"p95":4062.971499631526,"p99":4130.849381938227}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:58+00","p50":2984.48075375,"p95":4204.197447813499,"p99":4759.502322837851}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:44:59+00","p50":3534.4104355,"p95":4170.452379977139,"p99":4195.314634537895}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:00+00","p50":3008.6791865,"p95":4004.032316235226,"p99":4695.121121447077}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:01+00","p50":3156.052586375,"p95":3670.1962001837906,"p99":4079.6229477651805}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:02+00","p50":3274.118938,"p95":3804.7568758644784,"p99":4254.948103784571}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:03+00","p50":3407.380955875,"p95":3743.2522877895503,"p99":3756.35679284567}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:04+00","p50":3210.4213855,"p95":3786.205901142225,"p99":4287.958629436217}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:05+00","p50":3392.9208710000003,"p95":3742.714312367185,"p99":4178.264236308874}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:06+00","p50":3030.640124,"p95":3794.874264264259,"p99":3805.4034485755537}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:07+00","p50":3140.491677375,"p95":3855.5765395846606,"p99":3896.010526315867}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:08+00","p50":3526.874414,"p95":3863.3287231119784,"p99":4484.856240266006}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:09+00","p50":2924.190724125,"p95":3923.0884249842097,"p99":3936.943363748955}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:10+00","p50":3577.386766625,"p95":3884.4397670860353,"p99":4430.003999646722}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:11+00","p50":3360.3012555,"p95":3945.7009465875362,"p99":3999.4069915497284}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:12+00","p50":3235.31693,"p95":4034.0341450959395,"p99":4070.063423194797}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:13+00","p50":2824.80914175,"p95":3950.683273148908,"p99":4612.491283640465}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:14+00","p50":3570.178240375,"p95":4005.007945192515,"p99":4711.826173349874}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:15+00","p50":3256.2824032500002,"p95":4114.949805581018,"p99":4844.725650744604}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:16+00","p50":2452.7261325,"p95":4146.880633463845,"p99":4781.031431302063}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:17+00","p50":3837.772018875,"p95":3933.3174533478,"p99":4828.217716855897}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:18+00","p50":3576.32374825,"p95":3854.1395838460094,"p99":4534.083438846875}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:19+00","p50":3484.5322095,"p95":3831.5759877478417,"p99":4369.78275328379}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:20+00","p50":3691.7698067499996,"p95":3934.0069822735254,"p99":4526.889991671799}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:21+00","p50":3610.3397021250003,"p95":4181.020279403292,"p99":4762.849447504053}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:22+00","p50":3395.0510917499996,"p95":4187.007132177324,"p99":4195.47592349741}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:23+00","p50":3512.84374325,"p95":4303.222359592383,"p99":4764.484265889057}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:24+00","p50":3568.1770145,"p95":4324.4333452773635,"p99":4348.285751520143}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:25+00","p50":3224.8545411249997,"p95":4074.93459055334,"p99":4611.595441349553}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:26+00","p50":3262.24451875,"p95":4052.184372837228,"p99":4092.853540683972}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:27+00","p50":3555.0186145,"p95":4162.434932285495,"p99":4218.716174018143}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:28+00","p50":3547.677024875,"p95":4125.750039671256,"p99":4798.165878476158}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:29+00","p50":3989.4513214999997,"p95":4135.457350714762,"p99":4745.245185843205}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:30+00","p50":3076.076053875,"p95":4072.1460142588708,"p99":4695.193476648898}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:31+00","p50":3825.435297,"p95":3981.7064972772814,"p99":4006.461149607312}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:32+00","p50":3510.203456,"p95":3897.4635251164764,"p99":3912.4305661164485}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:33+00","p50":3064.7352015,"p95":3827.041297553948,"p99":4375.547026624866}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:34+00","p50":3093.70877,"p95":3785.3801177828186,"p99":4251.916568350838}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:35+00","p50":3441.1845089999997,"p95":3752.1982981172446,"p99":4326.58852013782}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:36+00","p50":3142.9271926250003,"p95":3808.6405156599935,"p99":4395.368254505509}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:37+00","p50":3058.509834875,"p95":3912.659409333504,"p99":3940.9438540950528}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:38+00","p50":2888.176477125,"p95":3952.5723889278797,"p99":4592.662579527643}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:39+00","p50":2653.0458412499997,"p95":4058.6225503412516,"p99":4483.097354083012}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:40+00","p50":3254.4653504999997,"p95":4097.799384347052,"p99":4121.691369113869}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:41+00","p50":3262.0244965,"p95":4121.888491481417,"p99":4811.165995634854}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:42+00","p50":3514.657188,"p95":4092.120416701202,"p99":4850.99170350807}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:43+00","p50":3453.10251925,"p95":3976.724310362448,"p99":3997.6589110460186}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:44+00","p50":2860.0387702499997,"p95":4015.2331305826015,"p99":4677.780902354109}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:45+00","p50":3167.033755,"p95":4055.665263498683,"p99":4811.829952179042}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:46+00","p50":2954.865083625,"p95":3944.902688811742,"p99":4635.495074453713}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:47+00","p50":3511.3304693749997,"p95":3944.9917604694388,"p99":3952.3233389205607}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:48+00","p50":2953.6829445000003,"p95":3944.667445614446,"p99":3987.175388447919}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:49+00","p50":3184.3556115,"p95":3995.6711308892245,"p99":4588.349824622306}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:50+00","p50":3245.232853,"p95":4047.0355042768156,"p99":4078.7247063337736}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:51+00","p50":3272.7015064999996,"p95":4102.94292038606,"p99":4145.135979863276}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:52+00","p50":3302.775589,"p95":3985.7371457737713,"p99":4034.6504223441075}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:53+00","p50":3356.0470640000003,"p95":3850.63757135436,"p99":4497.027984969142}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:54+00","p50":3133.174666,"p95":3916.068990583954,"p99":3957.418218480313}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:55+00","p50":3311.637166,"p95":4016.0444647100267,"p99":4045.40963406667}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:56+00","p50":3135.376848,"p95":4329.718253544681,"p99":4507.872302845333}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:57+00","p50":4014.1519570000005,"p95":4323.172308580673,"p99":4373.670450996421}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:58+00","p50":3571.207194,"p95":4353.039684107162,"p99":4455.910671431186}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:45:59+00","p50":3919.1732002500003,"p95":4219.57739209673,"p99":4561.8693803433725}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:00+00","p50":3551.673055875,"p95":3964.6780622020556,"p99":4344.732773514781}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:01+00","p50":3562.444708,"p95":3809.614094356959,"p99":3966.549394656354}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:02+00","p50":3265.06037975,"p95":3889.445747927346,"p99":4308.854899800805}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:03+00","p50":3026.85220725,"p95":3913.957838936094,"p99":3953.6649786396174}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:04+00","p50":3513.6412362499996,"p95":3881.4052651170505,"p99":4316.573581009049}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:05+00","p50":3015.2245097500004,"p95":3885.343318361877,"p99":4320.64179338517}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:06+00","p50":3282.0026820000003,"p95":3873.7942803314872,"p99":4354.437183535307}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:07+00","p50":3003.858284,"p95":3898.1164975124193,"p99":3925.74472009803}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:08+00","p50":3496.53033775,"p95":3960.190122896726,"p99":4581.9397418089975}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:09+00","p50":3604.655357875,"p95":4126.852990694547,"p99":4648.414359381075}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:10+00","p50":3058.54159,"p95":4144.754648382955,"p99":4160.459870245163}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:11+00","p50":3250.796862625,"p95":3947.283872782859,"p99":4536.481641486386}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:12+00","p50":3589.5050892500003,"p95":3945.8407672898434,"p99":4467.595299372991}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:13+00","p50":2863.9111345,"p95":3897.2364883101295,"p99":3969.2418056006395}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:14+00","p50":3290.693428875,"p95":3749.98816379957,"p99":4236.763037094788}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:15+00","p50":2667.766225,"p95":3847.6907836420573,"p99":3864.1868519504055}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:16+00","p50":2939.4164545,"p95":3876.829897323595,"p99":3923.781161713507}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:17+00","p50":3378.9195798749997,"p95":3958.7490394492183,"p99":4639.728457001336}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:18+00","p50":2858.895520125,"p95":4057.769638528722,"p99":4637.63195149092}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:19+00","p50":3213.126814,"p95":3982.6377243681213,"p99":4660.941550276893}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:20+00","p50":2776.72606575,"p95":3965.2789414669232,"p99":4637.841828644301}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:21+00","p50":3295.41928925,"p95":3906.2836602676225,"p99":3928.55446655739}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:22+00","p50":3717.3166461250003,"p95":3882.101225941232,"p99":3894.1257586438614}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:23+00","p50":3717.572256875,"p95":3787.4121563758504,"p99":4376.780862479451}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:24+00","p50":3229.731394375,"p95":3918.6113518809866,"p99":4376.706883999279}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:25+00","p50":3393.798085,"p95":3892.9390089590124,"p99":3908.11845126317}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:26+00","p50":3742.41139025,"p95":3927.7719392848207,"p99":4398.307551285478}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:27+00","p50":3632.640388125,"p95":3994.0153595869997,"p99":4017.1729880425637}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:28+00","p50":3756.2000735,"p95":3860.68769260561,"p99":4396.701493619236}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:29+00","p50":3456.3044835,"p95":3843.1437012613137,"p99":4204.665953552855}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:30+00","p50":3309.928166,"p95":3937.3981132091594,"p99":3943.0400085689294}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:31+00","p50":3330.99900975,"p95":3876.7873832358537,"p99":4409.6061712189885}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:32+00","p50":2989.7619535000003,"p95":3636.8261871825584,"p99":3664.8717693570206}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:33+00","p50":3046.1499962499997,"p95":3725.4724066044932,"p99":3745.466084611152}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:34+00","p50":3424.1305985,"p95":3598.72058023381,"p99":4079.043965190735}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:35+00","p50":3012.260397,"p95":3624.60142299885,"p99":3648.555793490215}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:36+00","p50":2928.7075817500004,"p95":3663.7615418037035,"p99":4222.831573580309}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:37+00","p50":3161.679953,"p95":3702.5126238743287,"p99":4243.1968400568285}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:38+00","p50":3456.226651,"p95":3711.293741967384,"p99":3759.6058081494066}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:39+00","p50":3125.741794625,"p95":3861.488542721633,"p99":4257.015018921065}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:40+00","p50":3453.19400575,"p95":3941.539737328736,"p99":4389.787553564991}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:41+00","p50":3084.5116245,"p95":3939.0162979483835,"p99":4450.84407599875}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:42+00","p50":2991.7287045,"p95":4096.693002093605,"p99":4180.278913550498}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:43+00","p50":3547.385372,"p95":4255.771056502971,"p99":4272.463285918034}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:44+00","p50":3545.91673,"p95":4195.472760818875,"p99":4281.906329002233}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:45+00","p50":4264.8083879999995,"p95":4404.946333520694,"p99":4553.604765739531}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:46+00","p50":3381.19285475,"p95":4458.304842994802,"p99":4483.931625893602}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:47+00","p50":3600.471814,"p95":4152.482586959613,"p99":4765.274225137505}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:48+00","p50":3224.04529225,"p95":4044.0383215760066,"p99":4572.341392854828}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:49+00","p50":3375.1717685000003,"p95":4024.879541049447,"p99":4085.9601104393196}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:50+00","p50":3632.8975582499997,"p95":3905.7141105130895,"p99":3951.131275141826}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:51+00","p50":3485.553513125,"p95":4010.9457817608595,"p99":4027.350401384947}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:52+00","p50":3930.8261955,"p95":4119.9990047458,"p99":4607.477795255713}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:53+00","p50":3555.7089495,"p95":4061.87458469013,"p99":4604.818032177989}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:54+00","p50":3572.9101960000003,"p95":3997.2457938601397,"p99":4031.7284173945422}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:55+00","p50":3537.6818055000003,"p95":3831.050422709502,"p99":4092.128705460907}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:56+00","p50":3690.825774,"p95":3845.8599736749925,"p99":3928.8958601310064}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:57+00","p50":3747.971465,"p95":3824.2702367946454,"p99":4198.5702952486035}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:58+00","p50":3844.360855875,"p95":3960.0404004706916,"p99":4075.6885944592113}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:46:59+00","p50":3957.15127225,"p95":4034.5368271656816,"p99":4259.229125750352}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:00+00","p50":3839.8925010000003,"p95":4019.8446821899684,"p99":4047.3618029119484}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:01+00","p50":3675.81592475,"p95":3821.5978975397134,"p99":3966.178968359014}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:02+00","p50":3541.704081,"p95":3618.787492765593,"p99":3691.0505888052403}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:03+00","p50":3554.885815,"p95":3687.4943648173567,"p99":4007.5952738166297}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:04+00","p50":3375.3036153750004,"p95":3714.221693369584,"p99":3733.8872826356246}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:05+00","p50":3474.417569625,"p95":3688.5521474584384,"p99":3702.032238212965}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:06+00","p50":3386.4985392500002,"p95":3829.624933923929,"p99":4314.698300925144}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:07+00","p50":3739.725271,"p95":3833.5873772035675,"p99":3867.946394027468}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:08+00","p50":3092.0967689999998,"p95":3904.8993871643233,"p99":3918.0418222000844}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:09+00","p50":3216.0638987499997,"p95":3903.5775088169166,"p99":3926.225784326961}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:10+00","p50":3500.4858927500004,"p95":3913.203282331455,"p99":4512.0346235982615}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:11+00","p50":3536.537817125,"p95":3858.9353433982683,"p99":3869.541006168625}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:12+00","p50":3296.4130480000003,"p95":3807.50679445697,"p99":3828.5432715896222}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:13+00","p50":3236.3970369999997,"p95":3665.8084024485825,"p99":3688.6618830680845}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:14+00","p50":3481.8169347499997,"p95":3757.3315476099215,"p99":3772.7036508238316}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:15+00","p50":3346.2902704999997,"p95":3854.048202262288,"p99":3993.3642988881547}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:16+00","p50":3564.79711675,"p95":3888.1781375634937,"p99":4479.785111776903}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:17+00","p50":3089.571034875,"p95":3829.9945088519007,"p99":4425.107977444142}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:18+00","p50":3175.707762,"p95":3890.893825990255,"p99":4442.191116398439}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:19+00","p50":3679.1207245,"p95":3773.204703409842,"p99":3789.525295880859}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:20+00","p50":3185.95247875,"p95":3813.6397482133207,"p99":3825.698553847472}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:21+00","p50":3392.5543609999995,"p95":3750.7997763205517,"p99":4358.070276889039}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:22+00","p50":3213.461616875,"p95":3795.731509748107,"p99":4218.2456386374415}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:23+00","p50":3626.832469,"p95":3902.7246227036676,"p99":3916.4324046752017}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:24+00","p50":3682.455836625,"p95":3906.8168171603943,"p99":3926.1446072056137}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:25+00","p50":3714.160243875,"p95":3807.6549753764148,"p99":4243.0352156263}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:26+00","p50":3610.02310975,"p95":3848.6959780394754,"p99":3894.642236565126}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:27+00","p50":3367.9036615,"p95":4119.379643060286,"p99":4644.330091925518}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:28+00","p50":3708.9205795000007,"p95":4081.052548218066,"p99":4226.112703860503}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:29+00","p50":3754.872420625,"p95":4089.8264110353507,"p99":4113.270803625177}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:30+00","p50":3708.0099360000004,"p95":3991.776640260728,"p99":4455.903300192531}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:31+00","p50":3383.4435000000003,"p95":3849.007304410605,"p99":4262.2327881538495}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:32+00","p50":3154.5699707500003,"p95":3835.042006895425,"p99":4350.205721278855}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:33+00","p50":3052.694079,"p95":3824.373315358323,"p99":3840.765608320539}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:34+00","p50":3053.6514595,"p95":3863.4075231448646,"p99":4288.084960166306}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:35+00","p50":3454.366765875,"p95":3854.5260072592946,"p99":3870.431010146133}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:36+00","p50":3349.2670418750004,"p95":3856.044178251574,"p99":3871.8554580906725}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:37+00","p50":2747.319217,"p95":3721.041553761591,"p99":4346.134658214142}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:38+00","p50":3562.0915815,"p95":3863.899897610549,"p99":3962.8231215276082}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:39+00","p50":3340.3824335,"p95":4105.732637240895,"p99":4537.307260474404}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:40+00","p50":3256.706603,"p95":4000.5101709202127,"p99":4043.3421367043857}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:41+00","p50":3905.6795065,"p95":4012.1399818476866,"p99":4552.032211254334}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:42+00","p50":2991.6502903749997,"p95":4007.1312864526926,"p99":4019.095439462803}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:43+00","p50":3469.3386123749997,"p95":4071.813817585642,"p99":4095.600159799384}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:44+00","p50":3585.683851375,"p95":3941.489350639803,"p99":4638.135281574264}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:45+00","p50":3856.8403385,"p95":4017.0796890671127,"p99":4035.478505864053}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:46+00","p50":2940.5078195,"p95":3773.93889669586,"p99":4474.156302422608}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:47+00","p50":3591.5718561250005,"p95":3675.5968513814437,"p99":3687.858220286442}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:48+00","p50":3440.56427075,"p95":3825.30946438636,"p99":3831.5691005301596}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:49+00","p50":3584.4532115,"p95":3933.373878956428,"p99":4551.169619022185}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:50+00","p50":3136.814494,"p95":3932.325895534097,"p99":3978.9840594289494}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:51+00","p50":3839.042983,"p95":4012.906642236581,"p99":4028.0612456091694}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:52+00","p50":3292.715005125,"p95":4047.4743553852095,"p99":4506.683836180644}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:53+00","p50":3041.5506832499996,"p95":3698.9645644169636,"p99":3731.5143766242763}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:54+00","p50":3172.3841285,"p95":3737.4394148050847,"p99":4298.150013815507}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:55+00","p50":3255.35638075,"p95":3780.890340530244,"p99":3836.7153343961686}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:56+00","p50":3769.6480215,"p95":3906.710680721155,"p99":4483.35792025628}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:57+00","p50":3323.076683625,"p95":3971.6037864170125,"p99":3980.0865558853584}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:58+00","p50":3767.468596,"p95":3907.71721839526,"p99":3925.3024351791532}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:47:59+00","p50":3499.679782375,"p95":3819.6672460781165,"p99":4417.469959643172}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:00+00","p50":3002.176713375,"p95":3693.7053988896155,"p99":4238.745990164876}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:01+00","p50":3302.62677175,"p95":3629.479931922343,"p99":4055.1999496772714}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:02+00","p50":3446.0596255,"p95":3641.6219839969945,"p99":3955.957306440297}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:03+00","p50":3145.1932912499997,"p95":3747.861855413769,"p99":3784.522857660116}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:04+00","p50":3553.2062685,"p95":3800.8123090271306,"p99":4140.571545203362}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:05+00","p50":3322.535819625,"p95":3704.5634204281896,"p99":4159.703865871857}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:06+00","p50":3474.0307905,"p95":3731.9466671621703,"p99":3757.072692490649}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:07+00","p50":3392.8686883749997,"p95":3518.9910830001354,"p99":3866.564320280062}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:08+00","p50":3373.43653625,"p95":3511.578938210498,"p99":3522.9941011052106}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:09+00","p50":3345.43449775,"p95":3479.4378144656666,"p99":3522.2854153032017}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:10+00","p50":3357.59586725,"p95":3576.1345199928182,"p99":3761.552923722235}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:11+00","p50":3468.3278147499996,"p95":3644.000904716089,"p99":3883.3101071339574}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:12+00","p50":3324.567246,"p95":3800.920223985615,"p99":3816.8383981254765}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:13+00","p50":3500.2188832500005,"p95":3863.702652811264,"p99":3875.4692275182606}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:14+00","p50":3313.0407750000004,"p95":3623.44082229553,"p99":3950.342766671551}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:15+00","p50":3338.622219375,"p95":3619.557805209794,"p99":3673.637735772689}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:16+00","p50":3373.902023875,"p95":3497.1974045560078,"p99":3841.497829299298}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:17+00","p50":3317.09507925,"p95":3391.9921432527067,"p99":3420.3340025065354}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:18+00","p50":3311.7243965,"p95":3361.9973537788983,"p99":3454.4161370884676}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:19+00","p50":3335.23588525,"p95":3461.2207581588373,"p99":3691.649427846457}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:20+00","p50":3359.209798,"p95":3580.5994657890396,"p99":3920.047841423332}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:21+00","p50":3630.8800805,"p95":3754.0084381457214,"p99":3852.527506059455}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:22+00","p50":3826.23430475,"p95":3932.4185952253747,"p99":4041.939861703111}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:23+00","p50":3896.059774125,"p95":3997.888502550355,"p99":4263.1546214767195}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:24+00","p50":3857.9951355000003,"p95":4083.4085393344176,"p99":4118.38282436264}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:25+00","p50":3666.2752695,"p95":3993.0744810878014,"p99":4321.443113518581}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:26+00","p50":3618.1971825,"p95":3925.67628222143,"p99":4017.8322784658035}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:27+00","p50":3668.424494375,"p95":4015.2681303077193,"p99":4031.4518597169795}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:28+00","p50":3396.178513625,"p95":4008.1939419905834,"p99":4056.5644947471746}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:29+00","p50":3675.348331125,"p95":3937.4458658224294,"p99":3963.640467562859}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:30+00","p50":2860.82657775,"p95":3969.4403146487057,"p99":4558.860451585419}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:31+00","p50":3498.0901358749998,"p95":3950.723025816738,"p99":4682.539931651514}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:32+00","p50":3437.0636860000004,"p95":3953.7791773167855,"p99":3981.8305256421213}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:33+00","p50":3476.12017525,"p95":3928.6711137905427,"p99":3946.874205662733}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:34+00","p50":3661.492361,"p95":3846.9057351578467,"p99":4262.819813278351}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:35+00","p50":3355.85540375,"p95":3736.4332278985094,"p99":3750.915822079319}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:36+00","p50":3233.2034591250003,"p95":3951.7425175009553,"p99":3993.1856708201753}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:37+00","p50":3800.4993665,"p95":3946.3321681134803,"p99":3985.391349313882}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:38+00","p50":3287.240389125,"p95":3945.021939125961,"p99":3966.8105463573625}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:39+00","p50":3575.001732625,"p95":3959.5031184143363,"p99":4696.079762680968}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:40+00","p50":3396.9680857500002,"p95":3918.634922321576,"p99":4637.412179995861}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:41+00","p50":3851.1025852499997,"p95":3968.6565944721588,"p99":4691.224198002512}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:42+00","p50":2797.266524875,"p95":3944.7275516470972,"p99":3989.944908917239}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:43+00","p50":3660.28423175,"p95":4102.048783108424,"p99":4794.09969528903}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:44+00","p50":3954.512190375,"p95":4160.514203324861,"p99":4176.879308783208}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:45+00","p50":3852.4050805000006,"p95":4038.9457962032934,"p99":4874.755939136424}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:46+00","p50":2824.267112875,"p95":4059.3050005077116,"p99":4835.678668334291}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:47+00","p50":3819.2327257499996,"p95":4191.833404942792,"p99":5028.740161437212}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:48+00","p50":4058.3494232499997,"p95":4194.567093845974,"p99":4316.967725250379}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:49+00","p50":3279.54101275,"p95":4274.192831482855,"p99":4287.129614157831}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:50+00","p50":2864.5143535,"p95":4320.473854940418,"p99":5115.204164967999}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:51+00","p50":2531.658776,"p95":4541.40959193734,"p99":4795.498330090747}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:52+00","p50":2790.7170889999998,"p95":4794.937180091777,"p99":5076.054592071059}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:53+00","p50":4484.43504475,"p95":4596.523638227661,"p99":5591.165951289304}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:54+00","p50":4047.0662356250004,"p95":4555.248436140677,"p99":4570.06905514959}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:55+00","p50":3755.2556135,"p95":4433.9291225948455,"p99":4459.884110463858}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:56+00","p50":3291.8214485,"p95":4154.7740541422945,"p99":5010.443090921662}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:57+00","p50":3697.5069646250004,"p95":4256.7914560234785,"p99":4343.916485057212}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:58+00","p50":4252.0938235,"p95":4392.635449054446,"p99":4446.514051829006}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:48:59+00","p50":2875.6070028750005,"p95":4341.992869612838,"p99":4361.056814049542}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:00+00","p50":4209.7188504999995,"p95":4360.775583285486,"p99":5228.500527539152}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:01+00","p50":3971.6690415000003,"p95":4210.142298870083,"p99":4239.761555725617}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:02+00","p50":3232.18044775,"p95":3969.156104601209,"p99":4391.967301564991}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:03+00","p50":2878.136419625,"p95":3634.1062081286755,"p99":3641.21458917242}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:04+00","p50":2711.25419125,"p95":3713.097487837418,"p99":4263.139064133735}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:05+00","p50":3681.8437667499998,"p95":3851.1317951841643,"p99":4334.595286140082}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:06+00","p50":3117.4183461250004,"p95":3949.3956378772805,"p99":4515.444951831213}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:07+00","p50":3116.670551,"p95":4056.939254452862,"p99":4669.649252388866}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:08+00","p50":3472.3060823749997,"p95":4061.2533995753806,"p99":4818.902148104596}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:09+00","p50":3330.502269,"p95":3978.5626739632917,"p99":3990.787802936707}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:10+00","p50":3181.62138375,"p95":3855.119764512755,"p99":3864.882285875126}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:11+00","p50":3027.213356,"p95":4012.1705430168076,"p99":4559.2271997489925}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:12+00","p50":2971.219701875,"p95":4032.573415549307,"p99":4055.323414553824}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:13+00","p50":3180.6319685,"p95":4085.827620267112,"p99":4139.615403856628}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:14+00","p50":3092.784964125,"p95":4144.97394111496,"p99":4172.816364024464}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:15+00","p50":3133.5100475,"p95":4205.309328377183,"p99":4931.282744903501}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:16+00","p50":2886.91643225,"p95":4070.625581428514,"p99":4820.42027786703}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:17+00","p50":2737.621941625,"p95":3919.426511517052,"p99":4534.976847202906}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:18+00","p50":3565.4874222500002,"p95":3877.9548295261197,"p99":4596.34091409585}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:19+00","p50":3785.93115225,"p95":3873.9298346991395,"p99":3883.024393589695}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:20+00","p50":3283.248855,"p95":3930.7349280266094,"p99":3949.3289386234605}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:21+00","p50":3411.3625847499998,"p95":4088.39992755362,"p99":4598.581176823332}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:22+00","p50":3425.986636,"p95":4079.337359426509,"p99":4101.082843720764}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:23+00","p50":3845.2020199999997,"p95":3971.7152116123075,"p99":3982.600029397474}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:24+00","p50":3496.654479,"p95":3925.4609564516104,"p99":4457.828409755108}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:25+00","p50":2894.38199325,"p95":3881.2951399573594,"p99":3904.2295951999654}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:26+00","p50":3157.833692875,"p95":4046.050507289744,"p99":4783.090651269324}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:27+00","p50":3721.2909855000003,"p95":4130.304988412767,"p99":4842.550284018505}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:28+00","p50":3624.0202295,"p95":4340.344014574839,"p99":4960.080635533408}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:29+00","p50":3840.716517,"p95":4329.671105787081,"p99":4343.211122868736}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:30+00","p50":2990.029993125,"p95":4254.981680854623,"p99":5092.98825507415}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:31+00","p50":3825.8937426250004,"p95":4135.403359231585,"p99":4165.738626013905}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:32+00","p50":3417.0752967500002,"p95":4065.704051457041,"p99":4803.926031736047}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:33+00","p50":3426.740742,"p95":3931.736544834822,"p99":3953.41291818029}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:34+00","p50":3697.1244859999997,"p95":4105.348642196078,"p99":4238.026372213619}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:35+00","p50":3928.7785667499998,"p95":4123.67627571587,"p99":4783.692454775356}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:36+00","p50":3827.1003327500002,"p95":4012.654090446311,"p99":4019.24922856349}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:37+00","p50":3548.3124766250003,"p95":3899.4539109892194,"p99":4473.233707959822}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:38+00","p50":3363.8105002499997,"p95":3787.7317155705027,"p99":3883.480625227011}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:39+00","p50":3299.3148065,"p95":3797.784997172582,"p99":4309.530456985097}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:40+00","p50":3327.0245925,"p95":3884.824357914249,"p99":4317.86221026784}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:41+00","p50":3903.9679647499997,"p95":4014.7262001220383,"p99":4482.501211342505}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:42+00","p50":3096.70145975,"p95":4036.1825198040247,"p99":4105.90270070921}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:43+00","p50":3198.936430625,"p95":3937.3076656711505,"p99":5221.23817342346}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:44+00","p50":3562.689916125,"p95":4047.066331844918,"p99":4474.312752779149}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:45+00","p50":3859.224511,"p95":4010.974931327141,"p99":4033.2236231374536}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:46+00","p50":3080.1868507500003,"p95":3911.995275588331,"p99":3933.6640307433827}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:47+00","p50":3561.0423982499997,"p95":3937.69773122219,"p99":3971.6494379322626}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:48+00","p50":3715.2064286250006,"p95":4006.9934115527312,"p99":4106.8352083424115}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:49+00","p50":3378.0730049999997,"p95":4128.562882567588,"p99":4750.152678160591}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:50+00","p50":3826.22515225,"p95":4035.905366753853,"p99":4052.291523768325}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:51+00","p50":3658.3106184999997,"p95":4161.570337300816,"p99":4292.436186423427}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:52+00","p50":4135.119792,"p95":4334.576833445366,"p99":4941.72899585596}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:53+00","p50":4125.15305225,"p95":4229.4534510509,"p99":4273.216873617721}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:54+00","p50":3659.6921030000003,"p95":4252.902081874464,"p99":4712.979499835497}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:55+00","p50":3737.2648875000004,"p95":4220.479111222805,"p99":4234.785473902884}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:56+00","p50":3916.561315,"p95":4099.639985068733,"p99":4307.546090981873}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:57+00","p50":3876.284288,"p95":4079.2998214405466,"p99":4283.655437753157}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:58+00","p50":3689.71096,"p95":4345.389959044444,"p99":4884.211147842788}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:49:59+00","p50":3756.3526355000004,"p95":4432.744244575211,"p99":4914.3119163488045}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:00+00","p50":3513.26192725,"p95":4504.069601330679,"p99":5072.48415578261}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:01+00","p50":3970.63598325,"p95":4408.102357919537,"p99":5017.21289579997}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:02+00","p50":3590.6984136250003,"p95":4417.743753736366,"p99":5054.1295939645115}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:03+00","p50":3533.3595105000004,"p95":4089.48015999007,"p99":4100.733086511724}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:04+00","p50":3499.83775925,"p95":3930.7548480436944,"p99":4596.729775850812}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:05+00","p50":2591.0216535,"p95":4010.908790518728,"p99":4660.5573729094895}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:06+00","p50":3196.04450275,"p95":4059.976609592216,"p99":4085.5730730701466}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:07+00","p50":2704.0438510000004,"p95":4101.612066604574,"p99":4124.131786379134}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:08+00","p50":3488.8738625,"p95":4196.742113946957,"p99":5028.911528926803}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:09+00","p50":3985.928569875,"p95":4275.718181670776,"p99":5078.650898291466}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:10+00","p50":4065.409647375,"p95":4205.175735876238,"p99":5000.0748266533365}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:11+00","p50":2634.3936272500005,"p95":4093.0155831891843,"p99":4684.846596206195}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:12+00","p50":2625.58744425,"p95":4032.303247707032,"p99":4594.359487348326}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:13+00","p50":2741.749093875,"p95":3898.1429940562807,"p99":3910.9491055392486}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:14+00","p50":3727.6257315000003,"p95":3782.960846993162,"p99":3808.7294246469696}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:15+00","p50":3638.7184925,"p95":3918.7755566679466,"p99":3936.3960197367487}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:16+00","p50":3239.958539625,"p95":3884.5150767138484,"p99":3914.540387826057}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:17+00","p50":3548.443851125,"p95":3836.5946851480385,"p99":3906.9658595284827}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:18+00","p50":3264.645327625,"p95":4007.4979306462587,"p99":4572.342906816209}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:19+00","p50":3196.29390575,"p95":3981.7784995646984,"p99":4442.304122221695}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:20+00","p50":3730.22699175,"p95":4102.7535776841305,"p99":4144.287473273133}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:21+00","p50":4004.5302945000003,"p95":4120.327948984573,"p99":4137.204017442332}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:22+00","p50":3068.95017375,"p95":3938.5930539402375,"p99":4519.826354002909}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:23+00","p50":3563.9140829999997,"p95":3854.5693908422186,"p99":3879.2769285369263}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:24+00","p50":3703.1531452500003,"p95":4011.825015834928,"p99":4029.3391501707747}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:25+00","p50":3783.1856685000002,"p95":4049.495317865687,"p99":4058.475176634587}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:26+00","p50":3342.051540375,"p95":3752.1227671509155,"p99":3833.4945764767194}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:27+00","p50":3407.42258525,"p95":3863.270349539214,"p99":3885.734088911721}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:28+00","p50":3594.19765275,"p95":3812.1223323606764,"p99":3870.707716460747}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:29+00","p50":3676.366451,"p95":3907.557642208547,"p99":4232.940088108336}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:30+00","p50":3690.989141625,"p95":3774.897195736287,"p99":3786.1469128515614}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:31+00","p50":3567.1775935,"p95":3865.4670633032997,"p99":3881.79617298734}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:32+00","p50":3478.189039375,"p95":3802.4093095020353,"p99":3819.2204989052448}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:33+00","p50":3259.860707,"p95":3812.4640870957464,"p99":4234.380976033146}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:34+00","p50":3393.659735,"p95":3783.711112012714,"p99":4254.842167104444}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:35+00","p50":3551.89613925,"p95":3673.439322505545,"p99":3692.724417479886}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:36+00","p50":3569.5071616249998,"p95":3682.6274750412,"p99":3707.1260032176438}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:37+00","p50":3476.3557465000004,"p95":3640.8781875287527,"p99":3714.707033451789}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:38+00","p50":3454.147419375,"p95":3598.6176010950635,"p99":3809.0209880624857}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:39+00","p50":3522.8332655,"p95":3618.963979866225,"p99":3707.7346287859173}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:40+00","p50":3582.5636415,"p95":3669.1430594296226,"p99":3702.4738028545808}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:41+00","p50":3652.0945413749996,"p95":3762.5859908912107,"p99":3781.24847823841}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:42+00","p50":3466.673121875,"p95":3637.142103336092,"p99":3890.3872358528874}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:43+00","p50":3497.94171975,"p95":3533.2042318114654,"p99":3738.1493926212274}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:44+00","p50":3508.4726259999998,"p95":3646.526444855143,"p99":3667.2825380916424}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:45+00","p50":3396.36405125,"p95":3538.816400159257,"p99":3776.50222211284}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:46+00","p50":3254.974717625,"p95":3513.893297334054,"p99":3731.6792024515057}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:47+00","p50":3268.749916375,"p95":3387.145413921328,"p99":3404.357011624208}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:48+00","p50":3383.322949,"p95":3623.8193773184234,"p99":3652.3435990841854}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:49+00","p50":3588.8435586250002,"p95":3801.2640948371027,"p99":3815.5028449872534}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:50+00","p50":3404.94309725,"p95":3827.9370114902717,"p99":3850.4193897214245}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:51+00","p50":3343.8855488749996,"p95":3758.291339031178,"p99":4092.4101291656816}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:52+00","p50":3261.927202,"p95":3670.3702330429446,"p99":3691.2775140647236}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:53+00","p50":3261.8541216249996,"p95":3652.0098627553643,"p99":3660.3198985754893}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:54+00","p50":3478.436939125,"p95":3746.2673814092173,"p99":3766.6358441433395}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:55+00","p50":3475.4741594999996,"p95":3705.6999359363354,"p99":3732.4088072585123}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:56+00","p50":3758.308502,"p95":3892.913656375899,"p99":4106.288033797504}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:57+00","p50":3886.9247225,"p95":4137.196372076507,"p99":4233.2900471100365}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:58+00","p50":4113.7265065,"p95":4354.6278676973725,"p99":4366.885518648743}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:50:59+00","p50":4059.0590125,"p95":4346.974874381585,"p99":4394.104631837684}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:00+00","p50":4123.37521075,"p95":4387.214822127206,"p99":4438.837883425328}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:01+00","p50":3926.0875707500004,"p95":4170.5611225054345,"p99":4220.003983226582}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:02+00","p50":3696.944703,"p95":4054.587137581211,"p99":4081.494944812359}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:03+00","p50":3741.8522844999998,"p95":3908.473633150468,"p99":3940.9655623894887}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:04+00","p50":3701.8341924999995,"p95":3810.431997288846,"p99":3853.4613968023814}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:05+00","p50":3441.5654765,"p95":3840.9831300794935,"p99":3847.0397674905207}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:06+00","p50":3423.32559425,"p95":3671.9270311036644,"p99":3755.196880113621}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:07+00","p50":3264.451581375,"p95":3756.0761290999462,"p99":3778.0540778437517}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:08+00","p50":3467.5972604999997,"p95":3802.207919479238,"p99":4350.028048632911}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:09+00","p50":3444.660111,"p95":3942.890633540286,"p99":4370.434304390428}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:10+00","p50":3280.1068485,"p95":3933.3692331028024,"p99":4467.731255347531}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:11+00","p50":3250.368881875,"p95":3868.199785086028,"p99":4351.308156746706}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:12+00","p50":3321.1403105,"p95":3687.446163436718,"p99":4065.0332663395766}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:13+00","p50":3046.00306,"p95":3744.725148933969,"p99":3762.5470995541705}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:14+00","p50":3672.7166455,"p95":3782.32534452025,"p99":3790.807144066924}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:15+00","p50":3101.80108325,"p95":3759.923300643858,"p99":4206.637460863566}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:16+00","p50":2764.1411228750003,"p95":3812.789313705831,"p99":3856.2776094420174}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:17+00","p50":3431.910268,"p95":3978.8778096397778,"p99":4002.7938357729286}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:18+00","p50":3061.3433005,"p95":4042.509913976914,"p99":4672.121480232881}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:19+00","p50":2914.358311375,"p95":4137.517840366719,"p99":4733.270925988931}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:20+00","p50":3230.998125,"p95":4181.9778844851535,"p99":4236.864147371973}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:21+00","p50":3059.244083,"p95":4431.421298366366,"p99":4786.72715919501}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:22+00","p50":3515.550223,"p95":4553.746914573974,"p99":5277.816575173057}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:23+00","p50":4165.06144575,"p95":4527.264556149026,"p99":4642.685907728323}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:24+00","p50":4201.035113,"p95":4450.364714446303,"p99":5134.896671721409}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:25+00","p50":3682.3315184999997,"p95":4387.292216900938,"p99":4411.406879255306}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:26+00","p50":3806.356950625,"p95":4187.727844046704,"p99":4403.764548947687}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:27+00","p50":3268.5661465,"p95":4189.873293536976,"p99":4209.7171230666345}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:28+00","p50":3428.25178125,"p95":4382.35200563987,"p99":4528.267526430603}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:29+00","p50":4244.842198,"p95":4342.44718754857,"p99":4362.850603471947}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:30+00","p50":4065.88885325,"p95":4334.952437339282,"p99":4346.1323922059155}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:31+00","p50":3390.6674550000002,"p95":4141.870437860814,"p99":4155.109141130101}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:32+00","p50":3199.16686675,"p95":3986.8898236877026,"p99":4018.6279882801896}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:33+00","p50":3618.034507875,"p95":3919.2058186715376,"p99":4376.360015378662}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:34+00","p50":3435.9687875,"p95":3928.7586037908063,"p99":3937.60017667705}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:35+00","p50":3273.5060886250003,"p95":3895.657214812276,"p99":4465.138324078252}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:36+00","p50":3530.0161625,"p95":3803.072513919371,"p99":3821.3020919546007}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:37+00","p50":3034.456533,"p95":3886.8149875887734,"p99":4337.944350849963}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:38+00","p50":3077.53229975,"p95":3879.1877997284523,"p99":4400.246009910859}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:39+00","p50":3304.319939,"p95":3754.014611728622,"p99":3762.3601628304823}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:40+00","p50":3112.78696725,"p95":3934.444384207564,"p99":4356.852462352748}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:41+00","p50":3322.0370045,"p95":3812.4745357793186,"p99":4324.6569060350785}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:42+00","p50":3638.9799752500003,"p95":3742.740542137957,"p99":3760.29433452643}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:43+00","p50":3088.775197375,"p95":3976.29159942042,"p99":3998.79798672692}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:44+00","p50":3274.4298615,"p95":3944.110962997953,"p99":4516.696505337645}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:45+00","p50":2848.494659375,"p95":4055.593202779349,"p99":4076.744802345298}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:46+00","p50":3645.84357225,"p95":4121.85231423915,"p99":4775.472177574632}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:47+00","p50":3286.2593915,"p95":3908.4857709997764,"p99":4525.147640110204}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:48+00","p50":2681.76538275,"p95":3986.3831474236454,"p99":4472.626282499356}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:49+00","p50":3437.6264894999995,"p95":4044.5092973045485,"p99":4058.4148553204654}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:50+00","p50":3014.8825795000002,"p95":4029.4762800637445,"p99":4724.505633448908}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:51+00","p50":3005.2711415,"p95":3977.403469541694,"p99":4014.3210794334746}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:52+00","p50":3379.31126725,"p95":3982.2046183315874,"p99":4027.468221946945}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:53+00","p50":3712.479721625,"p95":4040.1148388476126,"p99":4496.623911478722}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:54+00","p50":3718.89844475,"p95":4230.619881895183,"p99":4711.987282355972}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:55+00","p50":3964.865779375,"p95":4072.760136725823,"p99":4151.878655709956}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:56+00","p50":3077.40314825,"p95":4232.695189004436,"p99":4947.952323778715}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:57+00","p50":3170.67126125,"p95":4346.471315506554,"p99":4469.607522176604}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:58+00","p50":3355.3561227500004,"p95":4393.926586385938,"p99":5217.568023956872}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:51:59+00","p50":3992.2074606250007,"p95":4413.441307777922,"p99":4450.374918238903}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:00+00","p50":3863.7554822500006,"p95":4357.51893065914,"p99":4390.185371618143}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:01+00","p50":3158.52223825,"p95":4322.8334968676145,"p99":5262.642909546411}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:02+00","p50":3104.935314375,"p95":4353.991860310992,"p99":4551.157199319195}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:03+00","p50":3076.9627450000003,"p95":4261.0790584145225,"p99":4267.34488166156}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:04+00","p50":3286.43663725,"p95":4350.789402611155,"p99":5111.04333314303}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:05+00","p50":2524.5997070000003,"p95":4398.434303963963,"p99":5201.043009315594}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:06+00","p50":2784.974779375,"p95":4274.987522544268,"p99":5215.592486864818}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:07+00","p50":3280.8217525,"p95":4290.417766468806,"p99":5027.47592207267}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:08+00","p50":3479.381598,"p95":4359.248166199043,"p99":4533.1745156120605}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:09+00","p50":3923.83701075,"p95":4392.219952953632,"p99":4422.566743556503}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:10+00","p50":4210.1626694999995,"p95":4343.508493885765,"p99":4365.68862116021}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:11+00","p50":3763.8135381250004,"p95":4247.119115237459,"p99":5004.04709354722}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:12+00","p50":4010.825891,"p95":4209.762184284947,"p99":5065.318898893201}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:13+00","p50":2800.9290485,"p95":4228.392842853189,"p99":5111.959961594619}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:14+00","p50":3033.0847495000003,"p95":4231.308935692112,"p99":4364.384085018588}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:15+00","p50":3040.677462625,"p95":4321.638187356486,"p99":5178.767803590393}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:16+00","p50":2532.653916125,"p95":4323.102500154561,"p99":4341.397396873927}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:17+00","p50":3418.7156195,"p95":4157.945362679695,"p99":5034.6335030834}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:18+00","p50":2932.276009,"p95":4088.368938225615,"p99":4174.070528711085}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:19+00","p50":2874.61126,"p95":4086.4235300252144,"p99":4109.979552878586}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:20+00","p50":3594.3187909999997,"p95":4139.204867922915,"p99":4800.541623858422}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:21+00","p50":4117.0529102499995,"p95":4237.946138231094,"p99":4252.408356966955}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:22+00","p50":3220.45785625,"p95":4332.985400281049,"p99":5185.32882526319}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:23+00","p50":3308.22097675,"p95":4298.633021555444,"p99":4313.417781602096}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:24+00","p50":4095.2177659999998,"p95":4252.930459736743,"p99":4897.330592732889}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:25+00","p50":3950.018024125,"p95":4109.160450707072,"p99":4179.398785873885}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:26+00","p50":4002.68078975,"p95":4134.66360315441,"p99":4978.697721366676}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:27+00","p50":3596.350757,"p95":4179.750166423774,"p99":4197.142314859637}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:28+00","p50":3628.67160325,"p95":4212.424477426786,"p99":4340.640498543789}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:29+00","p50":3675.4430712500002,"p95":4306.338899578416,"p99":4897.5834694781415}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:30+00","p50":3948.917016,"p95":4224.946901013242,"p99":4826.579375171393}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:31+00","p50":3469.487421,"p95":3930.730237587129,"p99":3953.0250260484654}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:32+00","p50":3083.863044375,"p95":3726.932729897453,"p99":4150.21705999666}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:33+00","p50":3105.3508348749997,"p95":3763.605474876408,"p99":3781.9620404498773}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:34+00","p50":3782.59313275,"p95":3922.929815013445,"p99":3955.608686722959}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:35+00","p50":3041.1746569999996,"p95":3992.735835832775,"p99":4014.0475872033844}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:36+00","p50":2928.4038255,"p95":3986.372190269647,"p99":4682.538605057886}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:37+00","p50":3315.9394541250003,"p95":4038.5654134206607,"p99":4629.928584766022}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:38+00","p50":3574.1275917499997,"p95":4180.544871879013,"p99":4845.896661036783}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:39+00","p50":3240.27391725,"p95":4240.563013195317,"p99":4272.258487495628}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:40+00","p50":3340.4365067500003,"p95":4213.633633789232,"p99":5086.259622217498}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:41+00","p50":3932.059367,"p95":4190.350603140117,"p99":4762.05930040147}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:42+00","p50":3369.11230475,"p95":4297.1355562636245,"p99":4345.497632587126}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:43+00","p50":3350.4895834999998,"p95":4095.2068079199353,"p99":4595.247552232674}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:44+00","p50":3193.496433625,"p95":3925.668495990337,"p99":4484.352395698373}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:45+00","p50":3273.655376375,"p95":3780.691578554816,"p99":4408.096976133244}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:46+00","p50":3355.88600275,"p95":3725.37072898849,"p99":4352.801956759418}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:47+00","p50":2905.1674319999997,"p95":3707.48949344503,"p99":4439.3140812515785}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:48+00","p50":2875.55426825,"p95":3716.474287900196,"p99":3736.076232690663}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:49+00","p50":3255.7483272500003,"p95":3807.5877490683274,"p99":4334.366364494583}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:50+00","p50":3226.4537742499997,"p95":3936.236363489983,"p99":4417.472319034705}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:51+00","p50":3122.848993,"p95":4110.143453764503,"p99":4242.247362830797}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:52+00","p50":3501.5904902499997,"p95":4181.18177834839,"p99":4769.722095780128}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:53+00","p50":3661.92717225,"p95":4264.378009351425,"p99":4883.177631505583}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:54+00","p50":3295.09692925,"p95":4228.172205112231,"p99":4899.515494234861}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:55+00","p50":3319.32574475,"p95":4176.045701368227,"p99":4755.6085605913495}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:56+00","p50":3335.887191,"p95":4224.28904489879,"p99":4932.960077216013}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:57+00","p50":3897.1141165000004,"p95":4270.990775052023,"p99":4281.2973386484955}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:58+00","p50":3975.1307445,"p95":4413.739140334941,"p99":5036.041371318865}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:52:59+00","p50":3692.8683415,"p95":4431.951627514288,"p99":4444.714869964452}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:00+00","p50":3126.263921125,"p95":4311.186180935215,"p99":4329.273697889732}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:01+00","p50":3671.3140602500002,"p95":4180.525943455105,"p99":4933.846315105341}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:02+00","p50":3373.8056145,"p95":3877.4915476187016,"p99":3899.351167566413}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:03+00","p50":3415.61749175,"p95":3845.133868009045,"p99":4349.509725820417}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:04+00","p50":3477.8516411250002,"p95":3927.2647210829596,"p99":3950.1284124844856}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:05+00","p50":2962.3526026249997,"p95":3978.6388541455294,"p99":4003.262500709146}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:06+00","p50":3666.578915,"p95":4028.6996556479608,"p99":4081.0698658036845}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:07+00","p50":3516.624269,"p95":4167.613366251304,"p99":4171.237176347041}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:08+00","p50":3021.2191505,"p95":4250.5297114260475,"p99":4813.097225902049}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:09+00","p50":3898.4550355,"p95":4559.138073097694,"p99":4670.2603107225195}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:10+00","p50":3140.226021,"p95":4616.716057357306,"p99":5290.30808912329}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:11+00","p50":3678.6606187499997,"p95":4620.271523715263,"p99":5402.347656022516}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:12+00","p50":3062.199697,"p95":4523.969735484652,"p99":4532.016006389976}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:13+00","p50":3396.5344324999996,"p95":4439.9423698904575,"p99":4467.539408899662}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:14+00","p50":3052.3870435,"p95":3928.648581655456,"p99":4645.362865194164}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:15+00","p50":2708.2288234999996,"p95":3777.240485622151,"p99":3797.1860364055383}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:16+00","p50":3037.5108812500002,"p95":3695.8751140751338,"p99":3723.76596759219}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:17+00","p50":3306.06396375,"p95":3734.4796313950646,"p99":4421.228064400251}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:18+00","p50":2779.879696125,"p95":3724.005532462583,"p99":4400.081171054592}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:19+00","p50":2988.73613975,"p95":3780.202494304243,"p99":4381.499812596303}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:20+00","p50":3189.05869725,"p95":4025.1343597214886,"p99":4043.709645650562}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:21+00","p50":3636.6867332499996,"p95":4057.886428668622,"p99":4766.312901069349}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:22+00","p50":2683.18713975,"p95":4042.4122553528346,"p99":4758.252804008703}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:23+00","p50":3317.6708095,"p95":4146.22463652978,"p99":4222.748071803879}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:24+00","p50":2953.0242088749997,"p95":4322.087190279485,"p99":5029.6327175880015}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:25+00","p50":3542.38324725,"p95":4236.267924509322,"p99":5032.502154729664}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:26+00","p50":2781.7532119999996,"p95":4260.95399625087,"p99":4276.3693778317565}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:27+00","p50":3672.692691375,"p95":4301.356214906413,"p99":5085.310337381889}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:28+00","p50":3431.0196645,"p95":4376.116703265064,"p99":4476.033953068206}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:29+00","p50":3364.9333957500003,"p95":4509.319483241294,"p99":4562.7246175558585}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:30+00","p50":3601.421343,"p95":4544.521339320717,"p99":5415.593298193201}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:31+00","p50":3114.98580175,"p95":4514.549393577664,"p99":5428.428283464027}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:32+00","p50":3270.7029062499996,"p95":4478.151380858793,"p99":4505.028384884117}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:33+00","p50":4251.44571125,"p95":4334.127302934853,"p99":5213.590554125587}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:34+00","p50":3955.9433928749995,"p95":4274.6316377061385,"p99":5160.483470282863}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:35+00","p50":2730.231035,"p95":4224.812471302139,"p99":5155.012997445399}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:36+00","p50":2740.841240625,"p95":4169.845496235683,"p99":5002.825912383365}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:37+00","p50":3466.91932225,"p95":4098.298689206168,"p99":4851.962881066275}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:38+00","p50":3195.3297518750005,"p95":3841.990032530735,"p99":4405.51448778487}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:39+00","p50":3486.654129125,"p95":3977.3893171086647,"p99":4615.822114819283}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:40+00","p50":3705.3999887500004,"p95":3965.480967176212,"p99":4609.020513642065}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:41+00","p50":2702.469621375,"p95":3792.5891959802334,"p99":3806.40040763914}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:42+00","p50":2575.7282647499997,"p95":3763.1454708832025,"p99":3774.3029380155776}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:43+00","p50":3737.7915315,"p95":3802.67329759068,"p99":4463.774103762421}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:44+00","p50":3702.6404815,"p95":3789.0663179148246,"p99":4415.640611074117}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:45+00","p50":3134.237647625,"p95":3892.566104017494,"p99":4460.287838382341}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:46+00","p50":2646.21916275,"p95":4058.9403737926723,"p99":4611.053050609773}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:47+00","p50":3961.461541,"p95":4080.059711456858,"p99":4884.369404328555}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:48+00","p50":4109.922271375,"p95":4194.836755133191,"p99":4897.875881977797}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:49+00","p50":3488.3972546249997,"p95":4172.536341089441,"p99":4194.935515164205}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:50+00","p50":2921.39000925,"p95":4065.711708353357,"p99":4763.266214436202}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:51+00","p50":3724.5597823750004,"p95":4078.4138190072586,"p99":4823.817877650476}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:52+00","p50":4028.0158118749996,"p95":4217.403043257193,"p99":4232.79783776757}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:53+00","p50":3344.861666875,"p95":4248.092933619697,"p99":4968.780911107461}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:54+00","p50":3035.9868079999997,"p95":4145.509347159617,"p99":4853.768768969936}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:55+00","p50":3334.8089202499996,"p95":4089.4243887576863,"p99":4834.68591370573}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:56+00","p50":3743.243306625,"p95":4253.358183471146,"p99":4268.750615562093}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:57+00","p50":2718.127735,"p95":4425.924394794082,"p99":4595.441200773346}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:58+00","p50":3928.84313,"p95":4465.8216090961,"p99":4489.043432457666}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:53:59+00","p50":3075.6364584999997,"p95":4441.023837900472,"p99":4467.070294053782}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:54:00+00","p50":3362.0793553333333,"p95":4145.17991284587,"p99":4684.31318532596}, + {"metric_name":"session_add_session_duration","timestamp":"2025-02-25 14:54:01+00","p50":2652.321399,"p95":2675.0949608567266,"p99":2675.359307} +] diff --git a/docs/docs/apis/introduction.mdx b/docs/docs/apis/introduction.mdx index fe8b50bdb7..e05a7e84b3 100644 --- a/docs/docs/apis/introduction.mdx +++ b/docs/docs/apis/introduction.mdx @@ -36,7 +36,7 @@ Accessing the ZITADEL APIs through a service user might require additional steps - Standard and reserved [scopes reference](/docs/apis/openidoauth/scopes) - Standard, custom, and reserved [claims reference](/docs/apis/openidoauth/claims) -The [OIDC Playground](/docs/apis/openidoauth/authrequest) is for testing OpenID authentication requests and their parameters. +The [OIDC Playground](https://zitadel.com/playgrounds/oidc) is for testing OpenID authentication requests and their parameters. ### SAML 2.0 @@ -70,7 +70,7 @@ ZITADEL APIs were organized by UseCase/Context, such as Auth API for authenticat This led to confusion about which API to use, particularly for requests that could be useful across multiple APIs but with different filters. For instance, SearchUsers on an Instance Level or on an Organization Level. -To address this issue, ZITADEL is migrating to a [resource-based API](#zitadel-apis-resource-based). +To address this issue, ZITADEL is migrating to a [resource-based API](#zitadel-apis-resource-based). ::: @@ -224,7 +224,6 @@ Definition: - ## API definitions Each service's proto definition is located in the source control on GitHub. @@ -270,8 +269,8 @@ As you can see the `GetMyUser` function is also available as a REST service unde In the table below you can see the URI of those calls. -| Service | URI | -| :------ | :-------------------------------------------------- | +| Service | URI | +| :------ | :---------------------------------------------------- | | REST | $ZITADEL_DOMAIN/auth/v1/users/me | | GRPC | $ZITADEL_DOMAIN/zitadel.auth.v1.AuthService/GetMyUser | @@ -281,7 +280,7 @@ ZITADEL hosts everything under a single domain: `{instance}.zitadel.cloud` or yo The domain is used as the OIDC issuer and as the base url for the gRPC and REST APIs, the Login and Console UI, which you'll find under `{your_domain}/ui/console/`. -Are you self-hosting and having troubles with *Instance not found* errors? [Check out this page](/docs/self-hosting/manage/custom-domain). +Are you self-hosting and having troubles with _Instance not found_ errors? [Check out this page](/docs/self-hosting/manage/custom-domain). ## API path prefixes diff --git a/docs/docs/apis/openidoauth/scopes.md b/docs/docs/apis/openidoauth/scopes.md index a43f18b2f9..263d888f31 100644 --- a/docs/docs/apis/openidoauth/scopes.md +++ b/docs/docs/apis/openidoauth/scopes.md @@ -35,7 +35,7 @@ In addition to the standard compliant scopes we utilize the following scopes. | `urn:zitadel:iam:org:project:id:{projectid}:aud` | `urn:zitadel:iam:org:project:id:69234237810729019:aud` | By adding this scope, the requested projectid will be added to the audience of the access token | | `urn:zitadel:iam:org:project:id:zitadel:aud` | `urn:zitadel:iam:org:project:id:zitadel:aud` | By adding this scope, the ZITADEL project ID will be added to the audience of the access token | | `urn:zitadel:iam:user:metadata` | `urn:zitadel:iam:user:metadata` | By adding this scope, the metadata of the user will be included in the token. The values are base64 encoded. | -| `urn:zitadel:iam:user:resourceowner` | `urn:zitadel:iam:user:resourceowner` | By adding this scope, the resourceowner (id, name, primary_domain) of the user will be included in the token. | +| `urn:zitadel:iam:user:resourceowner` | `urn:zitadel:iam:user:resourceowner` | By adding this scope: id, name and primary_domain of the resource owner (the users organization) will be included in the token. | | `urn:zitadel:iam:org:idp:id:{idp_id}` | `urn:zitadel:iam:org:idp:id:76625965177954913` | By adding this scope the user will directly be redirected to the identity provider to authenticate. Make sure you also send the primary domain scope if a custom login policy is configured. Otherwise the system will not be able to identify the identity provider. | [^1]: `urn:zitadel:iam:org:roles:id:{orgID}` is not supported when the `oidcLegacyIntrospection` [feature flag](/docs/apis/resources/feature_service_v2/feature-service-set-instance-features) is enabled. diff --git a/docs/docs/apis/v3.mdx b/docs/docs/apis/v3.mdx deleted file mode 100644 index 202e907bd8..0000000000 --- a/docs/docs/apis/v3.mdx +++ /dev/null @@ -1,356 +0,0 @@ ---- -title: APIs V3 (Preview) ---- - -import DocCardList from "@theme/DocCardList"; -import CodeBlock from "@theme/CodeBlock"; -import ActionServiceProto from "!!raw-loader!./_v3_action_service.proto"; -import ActionExecutionProto from "!!raw-loader!./_v3_action_execution.proto"; -import ActionTargetProto from "!!raw-loader!./_v3_action_target.proto"; -import ActionSearchProto from "!!raw-loader!./_v3_action_search.proto"; -import IDPServiceProto from "!!raw-loader!./_v3_idp_service.proto"; -import IDPProto from "!!raw-loader!./_v3_idp.proto"; -import IDPSearchProto from "!!raw-loader!./_v3_idp_search.proto"; -import IDPGitLabProto from "!!raw-loader!./_v3_idp_gitlab.proto"; -import LanguageServiceProto from "!!raw-loader!./_v3_language_service.proto"; -import LanguageProto from "!!raw-loader!./_v3_language.proto"; -import ObjectProto from "!!raw-loader!./_v3_object.proto"; -import ResourceObjectProto from "!!raw-loader!./_v3_resource_object.proto"; -import SettingsObjectProto from "!!raw-loader!./_v3_settings_object.proto"; - -The APIs described in this section are currently either in _Preview_ stage or not implemented, yet. -Before using these APIs, pleases consider the [API release policy below](#api-release-policy) - -## We Appreciate your Help - -We invite you to... - -- ... [discuss the concept with the ZITADEL community on GitHub](https://github.com/zitadel/zitadel/discussions/8125). -- ... try the implementations and provide feedback [by filing issues on GitHub](https://github.com/zitadel/zitadel/issues/new/choose). - -## The Ideas behind the New V3 APIs - -The current ZITADEL _GA_ APIs are structured around contexts like System, Admin, Management, and Auth. -This structure leads to duplicate methods and makes it hard to find the right API for the right task. -Especially interacting with resources from multiple organizations is cumbersome. -Also, the APIs evolved over time, which lead to inconsistencies and a lack of flexibility in development. - -We address these issues with the following new API categories: - -- [Standard Resources](#standard-resources) -- [Reusable Resources](#reusable-resources) -- [Settings](#settings) - -The designs for the new API categories aim for the following improvements: - -### Service Structure - -Instead of structuring the API methods around contexts, new APIs are structured around resources and settings. -This means, eventually, we deprecate the old System-, Admin-, Management- and AuthAPIs in favor of User-, Action-, Language-, FeatureAPIs and so on. -This change makes it easier to find the right API for the right task, especially for multi-organization resources. -Also, it allows for faster development and independent versioning of the APIs. - -### Multitenancy Management and Consistency - -To improve managing and reusing resources and settings in multitenancy scenarios, we define some rules for the new APIs: - -- Single properties from default settings are overridable (patchable) in organizations. -- Some settings support user-defined custom properties that are also overridable in organizations. -- Improved experience with reusing resources in multiple organizations and instances. -- Resources are searchable over all organizations with a single call by default. - -### HTTP and gRPC Consistency - -To make the APIs more consistent and easier to use, we follow the same patterns in all Proto files. - -- Patching is favored over updating resources and settings. -- HTTP calls are mapped so that query parameters can be used as much as possible. We avoid the annotation `body: "*"`. -- For search performance, we enforce query limits. - -## Standard Resources - -Standard resources exist in exactly one context. -For example, a user is always assigned to exactly one organization. -Or one SMS provider is always assigned to exactly one instance. - -Standard resource methods behave like this: - -- Search request results can be scoped to a RequestContext. -- Search request results only contain results for which the requesting user has the necessary read permissions. -- Search requests are limited to 100 by default. The limit can be increased by the caller up to 1000 by default. -- Resource configurations are partially updatable. With HTTP, this is done via PATCH requests. If no changes were made, the response is successful. -- Status changes or other actions on resources with side effects are done via POST requests. Their HTTP path ends with the underscore prefixed action name. For example `POST /resources/users/{id}/_unlock`. - -For a full proto example, have a look at the [ZITADELActions service](#zitadelactions). - -## Reusable Resources - -Reusable resources are like standard resources but can be reused in multiple contexts. -For example, an external identity provider can be defined once on the instance. -Each organization within this instance can then choose to use this identity provider or not. - -Additionally to the methods described for standard resources, reusable have the following capabilities: - -Reusable resources have the same behavior as standard resources with the following additions: - -- Reusable resources can be created in a given context level (system, instance, org). -- For requests, that require a resource ID, no request context is needed. -- Reusable resources are available in child contexts, even if their state is _inactive_. -- The child context can control if an inherited resource should be active or inactive for itself using a state policy. -- In child contexts, the state policy of a reused resource is _inherit_ by default and can be changed to _activate_, _deactivate_ or back to _inherit_. -- In child contexts, a reused resources configuration is read-only. -- Child contexts can read at least the following properties of reused resources: - - ID - - name - - description - - state - - the state policy in the child context - - sequence - - last changed date - - parent context - - state in the immediate parent context. -- By default, search queries for reused resources return all resources from the given contexts, all inherited resources and all resources defined in all children contexts. - -Typically, a new resource is first designed and implemented as a non-reusable resource. -If the community sees a benefit in reusing the resource in multiple contexts, reusability is added to the resource. - -For a full proto example, have a look at the [ZITADELIdentityProviders service](#zitadelidentityproviders). - -## Resource Services - -All resource services by default support the following CRUD operations [as described above](#standard-resources-behavior). - -- Create -- Read (get, search) -- Patch (partially update, success on no changes) -- Delete - -### ZITADELActions - -- Standard CRUD methods for Targets -- Standard CRUD methods for Executions except the PutExecution method replaces the CreateExecution and PatchExecution methods - -Additional to the standard CRUD methods: - -- ListAvailableExecutionServices -- ListAvailableExecutionMethods -- ListAvailableExecutionFunctions - -
- action_service.proto - {ActionServiceProto} -
- -
- action_target.proto - {ActionTargetProto} -
- -
- action_execution.proto - {ActionExecutionProto} -
- -
- action_query.proto - {ActionSearchProto} -
- -### ZITADELUsers - -Standard CRUD methods - -### ZITADELUserSchemas - -Standard CRUD methods - -### ZITADELIdentityProviders - -- Standard CRUD and methods for all IDPs -- Resources have additional properties for reusability capabilities. - -
- idp_service.proto - {IDPServiceProto} -
- -
- idp.proto - {IDPProto} -
- -
- idp_search.proto - {IDPSearchProto} -
- -
- idp_gitlab.proto - {IDPGitLabProto} -
- -
- object.proto - {ObjectProto} -
- -
- resource_object.proto - {ResourceObjectProto} -
- -### ZITADELInstances - -Additional to the standard CRUD methods: - -- Limit (partial update of block and audit log retention) -- BulkLimit (partial update of block and audit log retention for multiple instances) - -### ZITADELOrganizations - -Additional to the standard CRUD methods: - -- SetAsInstanceDefault -- GetInstanceDefault - -### ZITADELDomains - -Additional to the standard CRUD methods: - -- SetAsPrimary -- Validate - -### ZITADELSessions - -Standard CRUD methods - -### ZITADELProjects - -Standard CRUD methods - -### ZITADELApps - -Standard CRUD methods - -### ZITADELMemberships - -The given context defines the organization, instance or system where the membership is created. -The context and the user ID together are unique. - -Additional to the standard CRUD methods: - -- ListAvailableRoles (context-aware) - -### ZITADELGrants - -- Standard CRUD methods for project grants -- Standard CRUD methods for user grants -- Standard CRUD methods for roles - -### ZITADELSMTPProviders - -Standard CRUD methods - -### ZITADELSMSProviders - -Standard CRUD methods - -## Settings - -Settings have no identity (ID) and are always context-aware. -They also don't have a state like active or inactive. -They only have properties that can be set and queried. -These properties are inherited to from parent-contexts (instance) to child-contexts (organization). - -Settings behave like this: - -- Setting and retrieving settings is always context-aware. By default, the context is the instance discovered by the requests _Host_ header. -- All settings properties can be partially overridden in child-contexts. -- All settings properties can be partially reset in child-contexts, so their values default to the parent contexts property values. -- All settings properties returned by queries contain the value and if it is inherited, the context where it is inherited from. - -For a full proto example, have a look at the [ZITADELLanguageSettings service](#zitadellanguagesettings). - -## Settings Services - -### ZITADELLanguageSettings - -Default language, restricted languages, supported languages - -
- language_service.proto - {LanguageServiceProto} -
- -
- language.proto - {LanguageProto} -
- -
- object.proto - {ObjectProto} -
- -
- settings_object.proto - {SettingsObjectProto} -
- -### ZITADELTextSettings - -Key-value pairs for localized login texts, previously known as login texts - -### ZITADELBrandingSettings - -Predefined branding settings and custom key-value pairs, previously known as label policy or branding settings - -### ZITADELLoginSettings - -Previously known as login policy - -### ZITADELLockoutSettings - -Previously known as lockout policy - -### ZITADELPasswordSettings - -Previously known as password complexity policy - -### ZITADELHelpSettings - -Previously known as legal and support settings or privacy policy - -### ZITADELDomainSettings - -Previously known as domain policy - -### ZITADELFeatureSettings - -Feature toggles - -Also contains disallow public org registrations on system and instance level. - -### ZITADELTemplatesSettings - -HTML and text templates for fully customizable emails and sms - -### ZITADELSecretSettings - -Replaces secret generators - -## API Release Policy - -- Defined but not yet implemented APIs are subject to change without further notice. -- Once an API definition is implemented, it is released as _Preview_ and is available for testing. -- When a _Preview_ API is tested enough so the concepts are proven to work, a new _Beta_ API is released. -- When an API is feature-complete and stable enough, a new _GA_ (General Availability) API is released. -- In all stages, changes to already implemented APIs are done in a backwards-compatible way, if possible. -- When we release a new stage for an API, we deprecate the previous stage and keep it available for a smooth transition. - -## Preview APIs - -These APIs are ready for testing and feedback. -Beware, they don't yet follow all the rules defined above. - - diff --git a/docs/docs/guides/integrate/identity-providers/_test_setup.mdx b/docs/docs/guides/integrate/identity-providers/_test_setup.mdx index 1cdbe73d39..156f11397e 100644 --- a/docs/docs/guides/integrate/identity-providers/_test_setup.mdx +++ b/docs/docs/guides/integrate/identity-providers/_test_setup.mdx @@ -1,11 +1,11 @@

-To test the setup, use incognito mode and browse to your login page. -You see a new button which redirects you to {props.loginscreen} screen. + To test the setup, use incognito mode and browse to your login page. You see a + new button which redirects you to {props.loginscreen} screen.

By default, ZITADEL shows what you define in the default settings. If you overwrite the default settings for an organization, you need to send the organization scope in your auth request. -The organization scope looks like this: ```urn:zitadel:iam:org:id:{id}```. +The organization scope looks like this: `urn:zitadel:iam:org:id:{id}`. You can [read more about the reserved scopes](/apis/openidoauth/scopes#reserved-scopes) -or [use the ZITADEL OIDC Playground](/apis/openidoauth/authrequest) to see what happens with the login when you send different scopes. +or [use the ZITADEL OIDC Playground](https://zitadel.com/playgrounds/oidc) to see what happens with the login when you send different scopes. diff --git a/docs/docs/guides/integrate/identity-providers/keycloak.mdx b/docs/docs/guides/integrate/identity-providers/keycloak.mdx index 8eb619d8b2..1864884118 100644 --- a/docs/docs/guides/integrate/identity-providers/keycloak.mdx +++ b/docs/docs/guides/integrate/identity-providers/keycloak.mdx @@ -50,6 +50,9 @@ A useful default will be filled if you don't change anything. This information will be taken to create/update the user within ZITADEL. ZITADEL ensures that at least the `openid`-scope is always sent. +**Use PKCE**: If enabled, the provider will use Proof Key for Code Exchange (PKCE) to secure the authorization code flow +in addition to the client secret. + ![Keycloak Provider](/img/guides/zitadel_keycloak_create_provider.png) diff --git a/docs/docs/guides/integrate/identity-providers/okta-oidc.mdx b/docs/docs/guides/integrate/identity-providers/okta-oidc.mdx index f96043d941..0c2a46000a 100644 --- a/docs/docs/guides/integrate/identity-providers/okta-oidc.mdx +++ b/docs/docs/guides/integrate/identity-providers/okta-oidc.mdx @@ -49,6 +49,9 @@ A useful default will be filled if you don't change anything. This information will be taken to create/update the user within ZITADEL. ZITADEL ensures that at least the `openid`-scope is always sent. +**Use PKCE**: If enabled, the provider will use Proof Key for Code Exchange (PKCE) to secure the authorization code flow +in addition to the client secret. + ### Activate IdP diff --git a/docs/docs/guides/integrate/login-ui/device-auth.mdx b/docs/docs/guides/integrate/login-ui/device-auth.mdx new file mode 100644 index 0000000000..f60fad1310 --- /dev/null +++ b/docs/docs/guides/integrate/login-ui/device-auth.mdx @@ -0,0 +1,165 @@ +--- +title: Support for the Device Authorization Grant in a Custom Login UI +sidebar_label: Device Authorization +--- + +In case one of your applications requires the [OAuth2 Device Authorization Grant](/docs/guides/integrate/login/oidc/device-authorization) this guide will show you how to implement +this in your application as well as the custom login UI. + +The following flow shows you the different components you need to enable OAuth2 Device Authorization Grant for your login. +![Device Auth Flow](/img/guides/login-ui/device-auth-flow.png) + +1. Your application makes a device authorization request to your login UI +2. The login UI proxies the request to ZITADEL. +3. ZITADEL parses the request and does what it needs to interpret certain parameters (e.g., organization scope, etc.) +4. ZITADEL returns the device authorization response +5. Your application presents the `user_code` and `verification_uri` or maybe even renders a QR code with the `verification_uri_complete` for the user to scan +6. Your application starts a polling mechanism to check if the user has approved the device authorization request on the token endpoint +7. When the user opens the browser at the verification_uri, he can enter the user_code, or it's automatically filled in, if they scan the QR code +8. Request the device authorization request from the ZITADEL API using the user_code +9. Your login UI allows to approve or deny the device request +10. In case they approved, authenticate the user in your login UI by creating and updating a session with all the checks you need. +11. Inform ZITADEL about the decision: + 1. Authorize the device authorization request by sending the session and the previously retrieved id of the device authorization request to the ZITADEL API + 2. In case they denied, deny the device authorization from the ZITADEL API using the previously retrieved id of the device authorization request +12. Notify the user that they can close the window now and return to the application. +13. Your applications request to the token endpoint now receives the tokens or an error if the user denied the request. + +## Example + +Let's assume you host your login UI on the following URL: +``` +https://login.example.com +``` + +## Device Authorization Request + +A user opens your application and is unauthenticated, the application will create the following request: +```HTTP +POST /oauth/v2/device_authorization HTTP/1.1 +Host: login.example.com +Content-type: application/x-www-form-urlencoded + +client_id=170086824411201793& +scope=openid%20email%20profile +``` + +The request includes all the relevant information for the OAuth2 Device Authorization Grant and in this example we also have some scopes for the user. + +You now have to proxy the auth request from your own UI to the device authorization Endpoint of ZITADEL. +For more information, see [OIDC Proxy](./typescript-repo#oidc-proxy) for the necessary headers. + +:::note +The version and the optional custom URI for the available login UI is configurable under the application settings. +::: + +The endpoint will return the device authorization response: +```json +{ + "device_code": "0jbAZbU3ClK-Mkt0li4U1A", + "user_code": "FWRK-JGWK", + "verification_uri": "https://login.example.com/device", + "verification_uri_complete": "https://login.example.com/device?user_code=FWRK-JGWK", + "expires_in": 300, + "interval": 5 +} +``` + +The device presents the `user_code` and `verification_uri` or maybe even render a QR code with the `verification_uri_complete` for the user to scan. + +Your login will have to provide a page on the `verification_uri` where the user can enter the `user_code`, or it's automatically filled in, if they scan the QR code. + +### Get the Device Authorization Request by User Code + +With the user_code entered by the user you will now be able to get the information of the device authorization request. +[Get Device Authorization Request Documentation](/docs/apis/resources/oidc_service_v2/oidc-service-get-device-authorization-request) + +```bash +curl --request GET \ + --url https://$ZITADEL_DOMAIN/v2/oidc/device_authorization/FWRK-JGWK \ + --header 'Authorization: Bearer '"$TOKEN"'' +``` + +Response Example: + +```json +{ + "deviceAuthorizationRequest": { + "id": "XzNejv6NxqVU8Qur5uxEh7f_Wi1p0qUu4PJTJ6JUIx0xtJ2uqmU", + "clientId": "170086824411201793", + "scope": [ + "openid", + "profile" + ], + "appName": "TV App", + "projectName": "My Project" + } +} +``` + +Present the user with the information of the device authorization request and allow them to approve or deny the request. + +### Perform Login + +After you have initialized the OIDC flow you can implement the login. +Implement all the steps you like the user the go trough by [creating](/docs/apis/resources/session_service_v2/session-service-create-session) and [updating](/docs/apis/resources/session_service/session-service-set-session) the user-session. + +Read the following resources for more information about the different checks: +- [Username and Password](./username-password) +- [External Identity Provider](./external-login) +- [Passkeys](./passkey) +- [Multi-Factor](./mfa) + +### Authorize the Device Authorization Request + +To finalize the auth request and connect an existing user session with it, you have to update the auth request with the session token. +On the create and update user session request you will always get a session token in the response. + +The latest session token has to be sent to the following request: + +Read more about the [Authorize or Deny Device Authorization Request Documentation](/docs/apis/resources/oidc_service_v2/oidc-service-authorize-device-authorization) + +Make sure that the authorization header is from an account which is permitted to finalize the Auth Request through the `IAM_LOGIN_CLIENT` role. +```bash +curl --request POST \ + --url $ZITADEL_DOMAIN/v2/oidc/device_authorization/XzNejv6NxqVU8Qur5uxEh7f_Wi1p0qUu4PJTJ6JUIx0xtJ2uqmU \ + --header 'Accept: application/json' \ + --header 'Authorization: Bearer '"$TOKEN"''\ + --header 'Content-Type: application/json' \ + --data '{ + "session": { + "sessionId": "225307381909694508", + "sessionToken": "7N5kQCvC4jIf2OuBjwfyWSX2FUKbQqg4iG3uWT-TBngMhlS9miGUwpyUaN0HJ8OcbSzk4QHZy_Bvvv" + } +}' +``` + +If you don't get any error back, the request succeeded, and you can notify the user that they can close the window now and return to the application. + +### Deny the Device Authorization Request + +If the user denies the device authorization request, you can deny the request by sending the following request: + +```bash +curl --request POST \ + --url $ZITADEL_DOMAIN/v2/oidc/device_authorization/ \ + --header 'Accept: application/json' \ + --header 'Authorization: Bearer '"$TOKEN"''\ + --header 'Content-Type: application/json' \ + --data '{ + "deny": {} +}' +``` + +If you don't get any error back, the request succeeded, and you can notify the user that they can close the window now and return to the application. + +### Device Authorization Endpoints + +All OAuth2 Device Authorization Grant endpoints are provided by ZITADEL. In your login UI you just have to proxy them through and send them directly to the backend. + +These endpoints are: +- Well-known +- Device Authorization Endpoint +- Token + +Additionally, we recommend you to proxy all the other [OIDC relevant endpoints](./oidc-standard#endpoints). \ No newline at end of file diff --git a/docs/docs/guides/integrate/login-ui/oidc-standard.mdx b/docs/docs/guides/integrate/login-ui/oidc-standard.mdx index f05d0d99b1..c96338fbf0 100644 --- a/docs/docs/guides/integrate/login-ui/oidc-standard.mdx +++ b/docs/docs/guides/integrate/login-ui/oidc-standard.mdx @@ -56,7 +56,7 @@ With the ID from the redirect before you will now be able to get the information ```bash curl --request GET \ --url https://$ZITADEL_DOMAIN/v2/oidc/auth_requests/V2_224908753244265546 \ - --header 'Authorization: Bearer '"$TOKEN"''\ + --header 'Authorization: Bearer '"$TOKEN"'' ``` Response Example: @@ -90,7 +90,7 @@ Read the following resources for more information about the different checks: ### Finalize Auth Request -To finalize the auth request and connect an existing user session with it you have to update the auth request with the session token. +To finalize the auth request and connect an existing user session with it, you have to update the auth request with the session token. On the create and update user session request you will always get a session token in the response. The latest session token has to be sent to the following request: @@ -128,7 +128,7 @@ Example Response: ### OIDC Endpoints -All OIDC relevant endpoints are provided by ZITADEL. In you login UI you just have to proxy them through and send them directly to the backend. +All OIDC relevant endpoints are provided by ZITADEL. In your login UI you just have to proxy them through and send them directly to the backend. These are endpoints like: - Userinfo diff --git a/docs/docs/guides/integrate/login-ui/saml-standard.mdx b/docs/docs/guides/integrate/login-ui/saml-standard.mdx index a2cb907874..8114350d5d 100644 --- a/docs/docs/guides/integrate/login-ui/saml-standard.mdx +++ b/docs/docs/guides/integrate/login-ui/saml-standard.mdx @@ -56,7 +56,7 @@ With the ID from the redirect before you will now be able to get the information ```bash curl --request GET \ --url https://$ZITADEL_DOMAIN/v2/saml/saml_requests/V2_224908753244265546 \ - --header 'Authorization: Bearer '"$TOKEN"''\ + --header 'Authorization: Bearer '"$TOKEN"'' ``` Response Example: @@ -87,7 +87,7 @@ Read the following resources for more information about the different checks: ### Finalize SAML Request -To finalize the SAML request and connect an existing user session with it you have to update the SAML Request with the session token. +To finalize the SAML request and connect an existing user session with it, you have to update the SAML Request with the session token. On the create and update user session request you will always get a session token in the response. The latest session token has to be sent to the following request: diff --git a/docs/docs/guides/integrate/login-ui/typescript-repo.mdx b/docs/docs/guides/integrate/login-ui/typescript-repo.mdx index d4a0726621..44ff9694d3 100644 --- a/docs/docs/guides/integrate/login-ui/typescript-repo.mdx +++ b/docs/docs/guides/integrate/login-ui/typescript-repo.mdx @@ -11,7 +11,6 @@ The typescript repository contains all TypeScript and JavaScript packages and ap - **[login](./typescript-repo#new-login-ui)**: The future login UI used by ZITADEL Cloud, powered by Next.js - `@zitadel/proto`: Typescript implementation of Protocol Buffers, suitable for web browsers and Node.js. - `@zitadel/client`: Core components for establishing a client connection -- `@zitadel/node`: Core components for establishing a server connection - `@zitadel/tsconfig`: shared `tsconfig.json`s used throughout the monorepo - `eslint-config-zitadel`: ESLint preset @@ -137,11 +136,10 @@ You can review an example implementation of a middlware [here](https://github.co #### Deploy to Vercel -[![Deploy with Vercel](https://vercel.com/button)](https://vercel.com/new/clone?repository-url=https%3A%2F%2Fgithub.com%2Fzitadel%2Ftypescript&env=ZITADEL_API_URL,ZITADEL_SERVICE_USER_ID,ZITADEL_SERVICE_USER_TOKEN&root-directory=apps/login&envDescription=Setup%20a%20service%20account%20with%20IAM_OWNER%20membership%20on%20your%20instance%20and%20provide%20its%20id%20and%20personal%20access%20token.&project-name=zitadel-login&repository-name=zitadel-login) +[![Deploy with Vercel](https://vercel.com/button)](https://vercel.com/new/clone?repository-url=https%3A%2F%2Fgithub.com%2Fzitadel%2Ftypescript&env=ZITADEL_API_URL,ZITADEL_SERVICE_USER_TOKEN&root-directory=apps/login&envDescription=Setup%20a%20service%20account%20with%20IAM_LOGIN_CLIENT%20membership%20on%20your%20instance%20and%20provide%20its%20personal%20access%20token.&project-name=zitadel-login&repository-name=zitadel-login) To deploy your own version on Vercel, navigate to your instance and create a service user. -Copy its id from the overview and set it as `ZITADEL_SERVICE_USER_ID`. -Then create a personal access token (PAT), copy and set it as `ZITADEL_SERVICE_USER_TOKEN`, then navigate to Default settings and make sure it gets `IAM_OWNER` permissions. +Create a personal access token (PAT) for the user and copy and set it as `ZITADEL_SERVICE_USER_TOKEN`, then navigate to Default settings and make sure it gets `IAM_LOGIN_CLIENT` permissions. Finally set your instance url as `ZITADEL_API_URL`. Make sure to set it without trailing slash. Also ensure your login domain is registered on your instance by adding it as a [trusted domain](/docs/apis/resources/admin/admin-service-add-instance-trusted-domain). diff --git a/docs/docs/guides/integrate/login/_prevent-lockout.mdx b/docs/docs/guides/integrate/login/_prevent-lockout.mdx new file mode 100644 index 0000000000..ee911204b6 --- /dev/null +++ b/docs/docs/guides/integrate/login/_prevent-lockout.mdx @@ -0,0 +1,4 @@ +:::caution[Don't Lock Yourself Out of Your Instance] + Before you change your Zitadel configuration, we highly recommend you to create a service user with a personal access token (PAT) and the IAM_OWNER role. + In case something breaks, you can use this PAT to revert your changes or fix the configuration so you can use a login UI again. +::: diff --git a/docs/docs/guides/integrate/login/hosted-login.mdx b/docs/docs/guides/integrate/login/hosted-login.mdx index fcb7729314..4b9f3dda49 100644 --- a/docs/docs/guides/integrate/login/hosted-login.mdx +++ b/docs/docs/guides/integrate/login/hosted-login.mdx @@ -3,6 +3,10 @@ title: Login users into your application with a hosted login UI sidebar_label: Hosted Login UI --- +import Tabs from '@theme/Tabs'; +import TabItem from '@theme/TabItem'; +import PreventLockout from './_prevent-lockout.mdx'; + ZITADEL provides a hosted single-sign-on page to securely sign-in users to your applications. ZITADEL's hosted login page serves as a centralized authentication interface provided for applications that integrate ZITADEL. As a developer, understanding the hosted login page is essential for seamlessly integrating authentication into your application. @@ -177,23 +181,46 @@ Your contributions will play a crucial role in shaping the future of our login s #### Step-by-step Guide -The simplest way to deploy the new login for yourself is by using the [“Deploy” button in our repository](https://github.com/zitadel/typescript?tab=readme-ov-file#deploy-to-vercel) to deploy the login directly to your Vercel. +**Trying out the new login:** To preview the new login without changing your current setup, the easiest way is to visit `https:///ui/v2/login` on your Zitadel Cloud instance domain. You can also activate the v2 login for your apps, so users are redirected to `/ui/v2/login` for authentication. -1. [Create a service user](https://zitadel.com/docs/guides/integrate/service-users/personal-access-token#create-a-service-user-with-a-pat) (ZITADEL_SERVICE_USER_ID) with a PAT in your instance -2. Give the user IAM_LOGIN_CLIENT Permissions in the default settings (YOUR_DOMAIN/ui/console/instance?id=organizations) - Note: [Zitadel Manager Guide](https://zitadel.com/docs/guides/manage/console/managers) -3. Deploy login to Vercel: You can do so, be directly clicking the [“Deploy” button](https://github.com/zitadel/typescript?tab=readme-ov-file#deploy-to-vercel) at the bottom of the readme in our [repository](https://github.com/zitadel/typescript) -4. If you have used the deploy button in the steps before, you will automatically be asked for this step. Enter the environment variables in Vercel - - ZITADEL_SERVICE_USER_ID - - PAT - - ZITADEL_API_URL (Example: https://my-domain.zitadel.cloud, no trailing slash) -5. Add the domain where your login UI is hosted to the [trusted domains](https://zitadel.com/docs/apis/resources/admin/admin-service-add-instance-trusted-domain) in Zitadel. (Example: my-new-zitadel-login.vercel.app) -6. Use the new login in your application. You have three different options on how to achieve this - 1. Enable the new login on your application configuration and add the URL of your login UI, with that settings Zitadel will automatically redirect you to the new login if you call the old one. - ![Login V2 Application Configuration](/img/guides/integrate/login/login-v2-app-config.png) - 2. Enable the [loginV2 feature](https://zitadel.com/docs/apis/resources/feature_service_v2/feature-service-set-instance-features) on the instance and add the URL of your login. If you enable this feature, the login will be used for every application configured in your Zitadel instance. (Example: https://my-new-zitadel-login.vercel.app) - 3. Change the issuer in the code of your application to the new domain of your login -7. Enforce users to have their email verified. By setting `EMAIL_VERIFICATION` to `true` in your environment variables, your users will be enforced to verify their email address before they can log in. +**Customizing the new login:** The easiest way to actually customizing it is to fork the https://github.com/zitadel/typescript repo and use the "Deploy" button to run your code on Vercel. + + + + + Zitadel Cloud provides the V2 login at the fixed path `/ui/v2/login`. + + + To activate it to authenticate on your Zitadel Cloud apps, you can follow one of these steps: + + 1. Enable the new login on your application configuration and point it to `/ui/v2/login`. With these settings, Zitadel will automatically redirect you to the new login if you call the old one. + ![Login V2 Application Configuration](/img/guides/integrate/login/login-v2-app-config.png) + 2. Enable the [loginV2 feature](https://zitadel.com/docs/apis/resources/feature_service_v2/feature-service-set-instance-features) on the instance and add the base URI `/ui/v2/login`. If you enable this feature, the login will be used for every application configured in your Zitadel instance. (Example: https://your-zitadel-instance.zitadel.cloud/ui/v2/login) + + + + + The simplest way to deploy the new login for yourself is by using the [“Deploy” button in our repository](https://github.com/zitadel/typescript?tab=readme-ov-file#deploy-to-vercel) to deploy the login directly to your Vercel. + + 1. [Create a service user](https://zitadel.com/docs/guides/integrate/service-users/personal-access-token#create-a-service-user-with-a-pat) with a PAT in your instance + 2. Give the user IAM_LOGIN_CLIENT Permissions in the default settings (YOUR_DOMAIN/ui/console/instance?id=organizations) + Note: [Zitadel Manager Guide](https://zitadel.com/docs/guides/manage/console/managers) + 3. Deploy login to Vercel: You can do so by directly clicking the [“Deploy” button](https://github.com/zitadel/typescript?tab=readme-ov-file#deploy-to-vercel) at the bottom of the readme in our [repository](https://github.com/zitadel/typescript) + 4. If you have used the deploy button in the steps before, you will automatically be asked for this step. Enter the environment variables in Vercel + - PAT + - ZITADEL_API_URL (Example: https://my-domain.zitadel.cloud, no trailing slash) + 5. Add the domain where your login UI is hosted to the [trusted domains](https://zitadel.com/docs/apis/resources/admin/admin-service-add-instance-trusted-domain) in Zitadel. (Example: my-new-zitadel-login.vercel.app) + 6. Use the new login in your application. + + You have three different options on how to achieve this: + 1. Enable the new login on your application configuration and add the URL of your login UI. With these settings, Zitadel will automatically redirect you to the new login if you call the old one. + ![Login V2 Application Configuration](/img/guides/integrate/login/login-v2-app-config.png) + 2. Enable the [loginV2 feature](https://zitadel.com/docs/apis/resources/feature_service_v2/feature-service-set-instance-features) on the instance and add the URL of your login. If you enable this feature, the login will be used for every application configured in your Zitadel instance. (Example: https://my-new-zitadel-login.vercel.app) + 3. Change the issuer in the code of your application to the new domain of your login + 7. Enforce users to have their email verified. By setting `EMAIL_VERIFICATION` to `true` in your environment variables, your users will be enforced to verify their email address before they can log in. + + + ### Important Notes diff --git a/docs/docs/guides/integrate/login/login-users.mdx b/docs/docs/guides/integrate/login/login-users.mdx index e80e70c5b7..de1dacfe24 100644 --- a/docs/docs/guides/integrate/login/login-users.mdx +++ b/docs/docs/guides/integrate/login/login-users.mdx @@ -20,7 +20,7 @@ In this guide, we will walk through the different protocols, features and concep OpenID Connect (OIDC) offers a modern and lightweight authentication protocol built on top of OAuth 2.0, providing flexible authentication flows and easy integration with web and mobile applications. ZITADEL offers a certified compliant implementation of the OpenID Connect Standard, ensuring compliance with proven security best practices. -Authenticating users through the OpenID Connect protocol typically requires an application to redirect the user with an [Auth Request](/docs/apis/openidoauth/authrequest) to the identity provider that contains information such as the requesting application, [scopes](/docs/apis/openidoauth/scopes), and redirect url. +Authenticating users through the OpenID Connect protocol typically requires an application to redirect the user with an [Auth Request](https://zitadel.com/playgrounds/oidc) to the identity provider that contains information such as the requesting application, [scopes](/docs/apis/openidoauth/scopes), and redirect url. The identity provider is not part of the original application, but a standalone service like ZITADEL that may run under the [same domain](/docs/concepts/features/custom-domain.md) The user will authenticate using their credentials. After successful authentication, the user will be redirected back to the original application. @@ -93,6 +93,7 @@ This centralized authentication interface simplifies application integration by For a comprehensive understanding of the hosted login page and its capabilities, please refer to our [dedicated guide](/docs/guides/integrate/login/hosted-login) The hosted login is particularly well-suited for scenarios where: + - **Minimal branding is required:** If your primary focus is on functionality over a highly customized look and feel. - **Standard authentication flows suffice:** Your application doesn't necessitate complex or unique authentication processes. - **OIDC or SAML are suitable:** Your application integrates seamlessly with industry-standard protocols. diff --git a/docs/docs/guides/integrate/login/oidc/authmethods/_basic.mdx b/docs/docs/guides/integrate/login/oidc/authmethods/_basic.mdx index 5f4fbfbb5b..4833ae29a5 100644 --- a/docs/docs/guides/integrate/login/oidc/authmethods/_basic.mdx +++ b/docs/docs/guides/integrate/login/oidc/authmethods/_basic.mdx @@ -21,7 +21,7 @@ the authentication process. The latter is used to bind the client session with t You don't need any additional parameter for this request. We're identifying the app by the `client_id` parameter. -Try out the request in our [OIDC Authentication Request Playground](/apis/openidoauth/authrequest?auth_method=Client%20Secret%20Basic). +Try out the request in our [OIDC Authentication Request Playground](https://zitadel.com/playgrounds/oidc?auth_method=Client%20Secret%20Basic). ### Additional parameters and customization diff --git a/docs/docs/guides/integrate/login/oidc/authmethods/_jwtpk.mdx b/docs/docs/guides/integrate/login/oidc/authmethods/_jwtpk.mdx index 037df10d90..9efd8188ae 100644 --- a/docs/docs/guides/integrate/login/oidc/authmethods/_jwtpk.mdx +++ b/docs/docs/guides/integrate/login/oidc/authmethods/_jwtpk.mdx @@ -23,7 +23,7 @@ You don't need any additional parameter for this request. We're identifying the So your request might look like this (linebreaks and whitespace for display reasons): -Try out the request in our [OIDC Authentication Request Playground](/apis/openidoauth/authrequest?auth_method=Client%20Secret%20Basic). +Try out the request in our [OIDC Authentication Request Playground](https://zitadel.com/playgrounds/oidc?auth_method=Client%20Secret%20Basic). ### Additional parameters and customization diff --git a/docs/docs/guides/integrate/login/oidc/authmethods/_pkce.mdx b/docs/docs/guides/integrate/login/oidc/authmethods/_pkce.mdx index 708eecc01a..aea1256bbc 100644 --- a/docs/docs/guides/integrate/login/oidc/authmethods/_pkce.mdx +++ b/docs/docs/guides/integrate/login/oidc/authmethods/_pkce.mdx @@ -29,7 +29,7 @@ the hash as well and to verify it's correct. In order to do so you're required t For example for `random-string` the code_challenge would be `9az09PjcfuENS7oDK7jUd2xAWRb-B3N7Sr3kDoWECOY` -Try out the request in our [OIDC Authentication Request Playground](/apis/openidoauth/authrequest). +Try out the request in our [OIDC Authentication Request Playground](https://zitadel.com/playgrounds/oidc). ### Additional parameters and customization diff --git a/docs/docs/guides/integrate/onboarding/end-users.mdx b/docs/docs/guides/integrate/onboarding/end-users.mdx index 4c720be041..d8cf46e2c7 100644 --- a/docs/docs/guides/integrate/onboarding/end-users.mdx +++ b/docs/docs/guides/integrate/onboarding/end-users.mdx @@ -4,6 +4,7 @@ sidebar_label: Onboard Users --- End Users have three different possibilities on how to login with ZITADEL. + 1. Local Account with Username, Password, MFA, Passkey, etc 2. Social Login like Google, Apple, Github, etc 3. External Identity Provider hosted/managed by Organization like Entra ID, LDAP, Okta etc @@ -12,9 +13,9 @@ You can either use the hosted login of ZITADEL to let users register themselves, ## Manually add/invite users -import CreateUser from '/docs/guides/manage/console/_create-user.mdx'; +import CreateUser from "/docs/guides/manage/console/_create-user.mdx"; - + ## Automated / Self-registration possibilities @@ -29,15 +30,15 @@ By default, redirecting from your application displays the login page. OpenID Connect (OIDC) allows you to control the initial screen by sending a [prompt](/docs/apis/openidoauth/endpoints#additional-parameters) parameter in the authorization request. With the `prompt=create`, the registration form/options will directly be shown to the user. -You can test the impact of the different prompts on your login UI in our [OIDC Playground](/docs/apis/openidoauth/authrequest). +You can test the impact of the different prompts on your login UI in our [OIDC Playground](https://zitadel.com/playgrounds/oidc). Per default a user will be registered to the default organization. By sending the scope below in your authorization request you can choose the organization to which the user will be added. + ``` urn:zitadel:iam:org:id:{id} ``` - Unfortunately, SAML doesn't offer the same level of control over the initial screen. You won't be able to directly influence which page (login or registration) is shown through the SAML flow. @@ -47,7 +48,10 @@ If an organization allows local user registration as well as registration with a As soon as users click the "register" button, they will be presented with a screen showing the different registration options. -Register Options +Register Options After that, the user can select either local user registration or an external provider. By pressing the button of an external provider, the user will directly be redirected to the provider for consent. @@ -62,14 +66,22 @@ If only one option is possible, the option will directly be selected and shown. To allow users to register themselves, you have to enable the "register allowed" in the login behavior settings. You will now see the register button on the login screen. -Register End User +Register End User If nothing else is specified, a user will be registered to the default organization. -Default Organization + +Default Organization You can specify another organization, by sending the organization scope in the authorization requests. By sending the scope below the settings of the specified organization will be triggered and only users of the said organization will be able to authenticate. The users will be registered to the given organization. + ``` urn:zitadel:iam:org:id:{id} ``` @@ -78,7 +90,10 @@ If the user chooses to register a local account, the register form will be shown All the mandatory fields like given name, family name, e-mail and password have to be filled. You can only setup authentication with the built-in form. -Register local user +Register local user #### Registration with Social Login @@ -91,7 +106,10 @@ Please follow the configuration guides for the needed providers: [Let Users Logi The configured providers will be shown on the first login screen or when the users click on the registration button, they will be able to choose between local account or the social login. -Register End User +Register End User #### Registration with Organization External Identity Provider @@ -110,6 +128,7 @@ ZITADEL allows you to build your own registration form and login UI. The registration process highly depends on your needs. We do have a guide series on how to build your own login ui, which also includes the registration of different authentication methods, such as: + - Password authentication - Multi-Factor - Passkeys @@ -127,4 +146,4 @@ We recommend storing business relevant data in the database of your application, #### Registration with Organization External Identity Provider If you want to know more about the multi-tenancy possibilities of ZITADEL, read the following blog post: -[Multi-Tenancy and Delegated Access Management with Organizations](https://zitadel.com/blog/multi-tenancy-with-organizations) \ No newline at end of file +[Multi-Tenancy and Delegated Access Management with Organizations](https://zitadel.com/blog/multi-tenancy-with-organizations) diff --git a/docs/docs/guides/manage/console/default-settings.mdx b/docs/docs/guides/manage/console/default-settings.mdx index 26639b32f3..f21b650c6a 100644 --- a/docs/docs/guides/manage/console/default-settings.mdx +++ b/docs/docs/guides/manage/console/default-settings.mdx @@ -149,7 +149,7 @@ The Login Policy defines how the login process should look like and which authen The Default Redirect URI will be used, if a user calls the login page directly. More specifically, typically a client will initiate login with an auth request. The auth request contains a client-id and a redirect uri, that must match the configuration in ZITADEL. -If there is no [auth request](https://zitadel.com/docs/apis/openidoauth/authrequest), users will be redirected to the Default Redirect URI, which is by default `https:///ui/console/` +If there is no [auth request](https://zitadel.com/playgrounds/oidc), users will be redirected to the Default Redirect URI, which is by default `https:///ui/console/` Reasons why ZITADEL doesn't have a redirect URI: diff --git a/docs/docs/guides/manage/console/managers.mdx b/docs/docs/guides/manage/console/managers.mdx index 59d4a02bfb..626768ed97 100644 --- a/docs/docs/guides/manage/console/managers.mdx +++ b/docs/docs/guides/manage/console/managers.mdx @@ -26,6 +26,7 @@ import AddManager from "./_add_manager.mdx"; | IAM User Manager | IAM_USER_MANAGER | Manage all users and their authorizations over all organizations | | IAM Admin Impersonator | IAM_ADMIN_IMPERSONATOR | Allow impersonation of admin and end users from all organizations | | IAM Impersonator | IAM_END_USER_IMPERSONATOR | Allow impersonation of end users from all organizations | +| IAM Login Client | IAM_LOGIN_CLIENT | Get all permissions needed to implement your own Login UI. | | Org Owner | ORG_OWNER | Manage everything within an organization | | Org Owner Viewer | ORG_OWNER_VIEWER | View everything within an organization | | Org User Manager | ORG_USER_MANAGER | Manage users and their authorizations within an organization | diff --git a/docs/docs/guides/manage/console/organizations.mdx b/docs/docs/guides/manage/console/organizations.mdx index 924c02d045..d9336421e9 100644 --- a/docs/docs/guides/manage/console/organizations.mdx +++ b/docs/docs/guides/manage/console/organizations.mdx @@ -131,7 +131,7 @@ This means when you want to trigger the settings of an organization directly, ma urn:zitadel:iam:org:id:{id} ``` -Read more about the [scopes](/docs/apis/openidoauth/scopes#reserved-scopes) or try it out in our [OIDC Playground](/docs/apis/openidoauth/authrequest). +Read more about the [scopes](/docs/apis/openidoauth/scopes#reserved-scopes) or try it out in our [OIDC Playground](https://zitadel.com/playgrounds/oidc). ## Default organization diff --git a/docs/docs/guides/manage/customize/branding.md b/docs/docs/guides/manage/customize/branding.md index b6ffbf909d..14c18705f6 100644 --- a/docs/docs/guides/manage/customize/branding.md +++ b/docs/docs/guides/manage/customize/branding.md @@ -24,13 +24,13 @@ Upload your logo for the chosen theme, as soon as it is uploaded the preview on ### Colors -In the next part you can configure your colors. -Background colour is self-explanatory, the primary color will be used for buttons, links and some highlights. -The warn color is used for all the error messages and warnings and the font colour for texts. +In the next part you can configure your colors. +Background colour is self-explanatory, the primary color will be used for buttons, links and some highlights. +The warn color is used for all the error messages and warnings and the font colour for texts. ### Font -Last step to apply to your branding is the font upload. +Last step to apply to your branding is the font upload. The best way is to upload a ttf file after a successful upload you will see it in the font part, but not in the preview. ### Advanced Settings @@ -46,7 +46,7 @@ If you like to trigger your settings for your applications you have different po Send a [reserved scope](/apis/openidoauth/scopes) with your [authorization request](../../integrate/login/oidc/login-users#auth-request) to trigger your organization. The primary domain scope will restrict the login to your organization, so only users of your own organization will be able to login. -You can use our [OpenID Authentication Request Playground](/apis/openidoauth/authrequest) to learn more about how to trigger an [organization's policies and branding](/apis/openidoauth/authrequest#organization-policies-and-branding). +You can use our [OpenID Authentication Request Playground](/oidc-playground) to learn more about how to trigger an [organization's policies and branding](/oidc-playground#organization-policies-and-branding). ### 2. Setting on your Project diff --git a/docs/docs/guides/manage/customize/user-metadata.md b/docs/docs/guides/manage/customize/user-metadata.md index 0738b7f0c9..087956d39e 100644 --- a/docs/docs/guides/manage/customize/user-metadata.md +++ b/docs/docs/guides/manage/customize/user-metadata.md @@ -24,7 +24,7 @@ You can do so by using [Console](../console/users) or [setting user metadata](/d Most of the methods below require you to login with the correct user while setting some scopes. Make sure you pick the right user when logging into the test application. -Use the [OIDC authentication request playground](/docs/apis/openidoauth/authrequest) or the configuration of an [example client](/docs/sdk-examples/introduction) to set the required scopes and receive a valid access token. +Use the [OIDC authentication request playground](https://zitadel.com/playgrounds/oidc) or the configuration of an [example client](/docs/sdk-examples/introduction) to set the required scopes and receive a valid access token. :::info Getting a token In case you want to test out different settings configure an application with code flow (PKCE). @@ -54,27 +54,27 @@ curl --request GET \ --header "Authorization: Bearer $ACCESS_TOKEN" ``` -Replace `$ACCESS_TOKEN` with your user's access token. +Replace `$ACCESS_TOKEN` with your user's access token. The response will look something like this ```json { - "email":"road.runner@zitadel.com", - "email_verified":true, - "family_name":"Runner", - "given_name":"Road", - "locale":"en", - "name":"Road Runner", - "preferred_username":"road.runner@...asd.zitadel.cloud", - "sub":"166.....729", - "updated_at":1655467738, - //highlight-start - "urn:zitadel:iam:user:metadata":{ - "ContractNumber":"MTIzNA", - } - //highlight-end - } + "email": "road.runner@zitadel.com", + "email_verified": true, + "family_name": "Runner", + "given_name": "Road", + "locale": "en", + "name": "Road Runner", + "preferred_username": "road.runner@...asd.zitadel.cloud", + "sub": "166.....729", + "updated_at": 1655467738, + //highlight-start + "urn:zitadel:iam:user:metadata": { + "ContractNumber": "MTIzNA" + } + //highlight-end +} ``` You can grab the metadata from the reserved claim `"urn:zitadel:iam:user:metadata"` as key-value pairs. @@ -95,10 +95,10 @@ The result will give you something like: ```json { - "access_token":"jZuRixKQTVecEjKqw...kc3G4", - "token_type":"Bearer", - "expires_in":43199, - "id_token":"ey...Ww" + "access_token": "jZuRixKQTVecEjKqw...kc3G4", + "token_type": "Bearer", + "expires_in": 43199, + "id_token": "ey...Ww" } ``` @@ -106,12 +106,7 @@ When you decode the value of `id_token`, then the response will include the meta ```json { - "amr": [ - "password", - "pwd", - "mfa", - "otp" - ], + "amr": ["password", "pwd", "mfa", "otp"], "at_hash": "lGIblkTr8faHz2zd0oTddA", "aud": [ "170086824411201793@portal", @@ -157,7 +152,7 @@ You can use the authentication service to request and search for the user's meta The introspection endpoint and the token endpoint in the examples above do not require a special scope to access. Yet when accessing the authentication service, you need to pass the [reserved scope](/docs/apis/openidoauth/scopes#reserved-scopes) `urn:zitadel:iam:org:project:id:zitadel:aud` along with the authentication request. This scope allows the user to access ZITADEL's APIs, specifically the authentication API that we need for this method. -Use the [OIDC authentication request playground](/docs/apis/openidoauth/authrequest) or the configuration of an [example client](/docs/sdk-examples/introduction) to set the required scopes and receive a valid access token. +Use the [OIDC authentication request playground](https://zitadel.com/playgrounds/oidc) or the configuration of an [example client](/docs/sdk-examples/introduction) to set the required scopes and receive a valid access token. :::note Invalid audience If you get the error "invalid audience (APP-Zxfako)", then you need to add the reserved scope `urn:zitadel:iam:org:project:id:zitadel:aud` to your authentication request. @@ -199,23 +194,23 @@ An example response for your search looks like this: ```json { - "details":{ - "totalResult":"1", - "processedSequence":"2935", - "viewTimestamp":"2023-06-21T16:01:52.829838Z" - }, - "result":[ - { - "details":{ - "sequence":"409", - "creationDate":"2022-08-04T09:09:06.259324Z", - "changeDate":"2022-08-04T09:09:06.259324Z", - "resourceOwner":"170086363054473473" - }, - "key":"ContractNumber", - "value":"MTIzNA" - } - ] + "details": { + "totalResult": "1", + "processedSequence": "2935", + "viewTimestamp": "2023-06-21T16:01:52.829838Z" + }, + "result": [ + { + "details": { + "sequence": "409", + "creationDate": "2022-08-04T09:09:06.259324Z", + "changeDate": "2022-08-04T09:09:06.259324Z", + "resourceOwner": "170086363054473473" + }, + "key": "ContractNumber", + "value": "MTIzNA" + } + ] } ``` diff --git a/docs/docs/guides/migrate/introduction.md b/docs/docs/guides/migrate/introduction.md index 2955f91d4f..6d18fa65af 100644 --- a/docs/docs/guides/migrate/introduction.md +++ b/docs/docs/guides/migrate/introduction.md @@ -16,8 +16,7 @@ Multi-tenancy in ZITADEL can be achieved through either [Instances](/docs/concep Where instances represent isolated ZITADEL instances, Organizations provide a more permeable approach to multi-tenancy. In most cases, when you want to achieve multi-tenancy, you use Organizations. Each organization can have their own set of Settings (eg, Security Policies, IDPs, Branding), Managers, and Users. -Please also consult our guide on [Solution Scenarios](/docs/guides/solution-scenarios/introduction -) for B2C and B2B for more details. +Please also consult our guide on [Solution Scenarios](/docs/guides/solution-scenarios/introduction) for B2C and B2B for more details. ## Delegated access management @@ -76,7 +75,7 @@ In case all your applications depend on ZITADEL after the migration date, and ZI For all other cases, we recommend that the **legacy system orchestrates the migration** of users to ZITADEL for more flexibility: - Update your legacy system to create a user in ZITADEL on their next login, if not already flagged as migrated, by using our APIs (you can set the password and a verified email) -- Redirect migrated users with a login hint in the [auth request](/docs/apis/openidoauth/authrequest.mdx) to ZITADEL to pre-select the user +- Redirect migrated users with a login hint in the [auth request](https://zitadel.com/playgrounds/oidc) to ZITADEL to pre-select the user In this case the migration can also be done as an import job or also allowing to create user session in both the legacy auth solution and ZITADEL in parallel with identity brokering: diff --git a/docs/docs/guides/solution-scenarios/domain-discovery.mdx b/docs/docs/guides/solution-scenarios/domain-discovery.mdx index e03c42bde4..712833f06d 100644 --- a/docs/docs/guides/solution-scenarios/domain-discovery.mdx +++ b/docs/docs/guides/solution-scenarios/domain-discovery.mdx @@ -31,7 +31,7 @@ When opening `login.mycompany.com` then the login policy of the instance will be This means that you have to configure the [Login and Access](/docs/guides/manage/console/default-settings#login-behavior-and-access) Policy and [Identity Providers](/docs/guides/manage/console/default-settings#identity-providers) for the **CIAM** users on the instance itself. :::info -You can also configure these settings on the default organization (see below) and send the scope `urn:zitadel:iam:org:id:{id}` with every [auth request](/docs/apis/openidoauth/authrequest#organization-policies-and-branding). +You can also configure these settings on the default organization (see below) and send the scope `urn:zitadel:iam:org:id:{id}` with every [auth request](https://zitadel.com/playgrounds/oidc). ::: ### Default Organization diff --git a/docs/docs/legal/policies/rate-limit-policy.md b/docs/docs/legal/policies/rate-limit-policy.md index 6075b7e6ab..b23f822c0f 100644 --- a/docs/docs/legal/policies/rate-limit-policy.md +++ b/docs/docs/legal/policies/rate-limit-policy.md @@ -3,7 +3,7 @@ title: Rate Limit Policy custom_edit_url: null --- -Last updated on April 24, 2024 +Last updated on February 24, 2025 This policy is an annex to the [Terms of Service](../terms-of-service) and clarifies your obligations while using our Services, specifically how we will use rate limiting to enforce certain aspects of our [Acceptable Use Policy](acceptable-use-policy). @@ -15,7 +15,7 @@ To ensure the availability of our Services and to avoid slow or failed requests ZITADEL Clouds rate limit is built around a `IP` oriented model. Please be aware that we also utilize a service for DDoS mitigation. -So if you simply change your `IP` address and run the same request again and again you might be get blocked at some point. +So if you simply change your `IP` address and run the same request again and again you might get blocked at some point. If you are blocked you will receive a `http status 429`. @@ -26,21 +26,19 @@ You should consider to implement [exponential backoff](https://en.wikipedia.org/ :::info Raising limits We understand that there are certain scenarios where your users access ZITADEL from shared IP Addresses. For example if you use a corporate proxy or Network Address Translation NAT. -Please [get in touch](https://zitadel.com/contact) with us to discuss your requirements and we'll find a solution. +Please [get in touch](https://zitadel.com/contact) with us to discuss your requirements, and we'll find a solution. ::: ## What rate limits do apply -For ZITADEL Cloud, we have a rate limiting rule for login paths (login, register and reset features) and for API paths each. +For ZITADEL Cloud, we have dedicated rate limits for the user interfaces (login, register, console,...) and the APIs. Rate limits are implemented with the following rules: -| Path | Description | Rate Limiting | One Minute Banning | -| -------------------- | -------------------------------------------------------------- | ------------------------------------ | ------------------------------------- | -| /ui/login\* | Global Login, Register and Reset Limit | 10 requests per second over a minute | 15 requests per second over 3 minutes | -| /oauth/v2/keys | OAuth/OpenID Public Keys Endpoint | 20 requests per second over a minute | 15 requests per second over 3 minutes | -| /oauth/v2/introspect | OAuth Introspection Endpoint | 20 requests per second over a minute | 15 requests per second over 3 minutes | -| All other paths | All gRPC- and REST APIs as well as the ZITADEL Customer Portal | 10 requests per second over a minute | 10 requests per second over 3 minutes | +| Path | Description | Rate Limiting | One Minute Banning | +|----------------------|----------------------------------------|--------------------------------------|---------------------------------------| +| /ui/\* | Global Login, Register and Reset Limit | 10 requests per second over a minute | 15 requests per second over 3 minutes | +| All other paths | All gRPC-, REST and OAuth APIs | 50 requests per second over a minute | 50 requests per second over 3 minutes | ## Load Testing diff --git a/docs/docs/sdk-examples/introduction.mdx b/docs/docs/sdk-examples/introduction.mdx index de928731c3..203e21e9f3 100644 --- a/docs/docs/sdk-examples/introduction.mdx +++ b/docs/docs/sdk-examples/introduction.mdx @@ -9,6 +9,14 @@ To achieve your goals as fast as possible, we provide you with SDKs, Example Rep The SDKs and integration depend on the framework and language you are using. +:::note +In addition to our officially maintained examples, we also list community-contributed implementations. +These examples are provided by external developers and are not maintained by us. +While we believe they can be valuable resources and showcase diverse approaches, we cannot guarantee their completeness, functionality, or continued support. +If you encounter issues with a community-contributed example, please contact the respective maintainers directly. +We provide this list for informational purposes and to foster community engagement, but we do not assume responsibility for these external implementations. +::: + import { Frameworks } from "../../src/components/frameworks"; ## Resources diff --git a/docs/docusaurus.config.js b/docs/docusaurus.config.js index d2a3be4c01..c10c89e127 100644 --- a/docs/docusaurus.config.js +++ b/docs/docusaurus.config.js @@ -324,22 +324,6 @@ module.exports = { categoryLinkSource: "auto", }, }, - user_schema_v3: { - specPath: ".artifacts/openapi/zitadel/resources/userschema/v3alpha/user_schema_service.swagger.json", - outputDir: "docs/apis/resources/user_schema_service_v3", - sidebarOptions: { - groupPathsBy: "tag", - categoryLinkSource: "auto", - }, - }, - user_v3: { - specPath: ".artifacts/openapi/zitadel/resources/user/v3alpha/user_service.swagger.json", - outputDir: "docs/apis/resources/user_service_v3", - sidebarOptions: { - groupPathsBy: "tag", - categoryLinkSource: "auto", - }, - }, action_v3: { specPath: ".artifacts/openapi/zitadel/resources/action/v3alpha/action_service.swagger.json", outputDir: "docs/apis/resources/action_service_v3", diff --git a/docs/frameworks.json b/docs/frameworks.json index 97afa11d47..163b493274 100644 --- a/docs/frameworks.json +++ b/docs/frameworks.json @@ -80,6 +80,12 @@ "docsLink": "https://github.com/maennchen/zitadel_api", "external": true }, + { + "title": "FastAPI", + "imgSrcDark": "/docs/img/tech/fastapi.svg", + "docsLink": "https://github.com/cleanenergyexchange/fastapi-zitadel-auth", + "external": true + }, { "title": "NextAuth", "imgSrcDark": "/docs/img/tech/nextjs.svg", diff --git a/docs/sidebars.js b/docs/sidebars.js index a154514d5a..74bd19fc4a 100644 --- a/docs/sidebars.js +++ b/docs/sidebars.js @@ -5,7 +5,7 @@ module.exports = { type: "category", label: "Get Started", collapsed: false, - link: {type: "doc", id: "guides/start/quickstart"}, + link: { type: "doc", id: "guides/start/quickstart" }, items: [ "guides/start/quickstart", { @@ -52,11 +52,11 @@ module.exports = { { type: "category", label: "Examples & SDKs", - link: {type: "doc", id: "sdk-examples/introduction"}, + link: { type: "doc", id: "sdk-examples/introduction" }, items: [ { - type: "autogenerated", - dirName: "sdk-examples" + type: "autogenerated", + dirName: "sdk-examples", }, { type: "link", @@ -68,6 +68,11 @@ module.exports = { label: "Elixir", href: "https://github.com/maennchen/zitadel_api", }, + { + type: "link", + label: "FastAPI", + href: "https://github.com/cleanenergyexchange/fastapi-zitadel-auth", + }, { type: "link", label: "NextAuth", @@ -210,22 +215,22 @@ module.exports = { { type: "link", href: "/docs/guides/integrate/login/login-users#zitadels-session-api", - label: "Session API" + label: "Session API", }, { type: "category", label: "Hosted Login", link: { type: "doc", - id: "guides/integrate/login/hosted-login" + id: "guides/integrate/login/hosted-login", }, items: [ { type: "link", href: "/docs/guides/integrate/login/hosted-login#hosted-login-version-2-beta", - label: "Login V2 [Beta]" + label: "Login V2 [Beta]", }, - ] + ], }, { type: "link", @@ -249,7 +254,6 @@ module.exports = { "guides/integrate/login/oidc/device-authorization", "guides/integrate/login/oidc/logout", "guides/integrate/login/oidc/webkeys", - ], }, "guides/integrate/login/saml", @@ -328,6 +332,7 @@ module.exports = { "guides/integrate/login-ui/logout", "guides/integrate/login-ui/oidc-standard", "guides/integrate/login-ui/saml-standard", + "guides/integrate/login-ui/device-auth", "guides/integrate/login-ui/typescript-repo", ], }, @@ -649,7 +654,7 @@ module.exports = { title: "User Service API", slug: "/apis/resources/user_service_v2", description: - "This API is intended to manage users in a ZITADEL instance.\n" + "This API is intended to manage users in a ZITADEL instance.\n", }, items: require("./docs/apis/resources/user_service_v2/sidebar.ts"), }, @@ -661,7 +666,7 @@ module.exports = { title: "Session Service API", slug: "/apis/resources/session_service_v2", description: - "This API is intended to manage sessions in a ZITADEL instance.\n" + "This API is intended to manage sessions in a ZITADEL instance.\n", }, items: require("./docs/apis/resources/session_service_v2/sidebar.ts"), }, @@ -673,7 +678,7 @@ module.exports = { title: "OIDC Service API", slug: "/apis/resources/oidc_service_v2", description: - "Get OIDC Auth Request details and create callback URLs.\n" + "Get OIDC Auth Request details and create callback URLs.\n", }, items: require("./docs/apis/resources/oidc_service_v2/sidebar.ts"), }, @@ -685,7 +690,7 @@ module.exports = { title: "Settings Service API", slug: "/apis/resources/settings_service_v2", description: - "This API is intended to manage settings in a ZITADEL instance.\n" + "This API is intended to manage settings in a ZITADEL instance.\n", }, items: require("./docs/apis/resources/settings_service_v2/sidebar.ts"), }, @@ -697,7 +702,7 @@ module.exports = { title: "Feature Service API", slug: "/apis/resources/feature_service_v2", description: - 'This API is intended to manage features for ZITADEL. Feature settings that are available on multiple "levels", such as instance and organization. The higher level instance acts as a default for the lower level. When a feature is set on multiple levels, the lower level takes precedence. Features can be experimental where ZITADEL will assume a sane default, such as disabled. When over time confidence in such a feature grows, ZITADEL can default to enabling the feature. As a final step we might choose to always enable a feature and remove the setting from this API, reserving the proto field number. Such removal is not considered a breaking change. Setting a removed field will effectively result in a no-op.\n' + 'This API is intended to manage features for ZITADEL. Feature settings that are available on multiple "levels", such as instance and organization. The higher level instance acts as a default for the lower level. When a feature is set on multiple levels, the lower level takes precedence. Features can be experimental where ZITADEL will assume a sane default, such as disabled. When over time confidence in such a feature grows, ZITADEL can default to enabling the feature. As a final step we might choose to always enable a feature and remove the setting from this API, reserving the proto field number. Such removal is not considered a breaking change. Setting a removed field will effectively result in a no-op.\n', }, items: require("./docs/apis/resources/feature_service_v2/sidebar.ts"), }, @@ -709,7 +714,7 @@ module.exports = { title: "Organization Service API", slug: "/apis/resources/org_service/v2", description: - 'This API is intended to manage organizations for ZITADEL. \n' + "This API is intended to manage organizations for ZITADEL. \n", }, items: require("./docs/apis/resources/org_service_v2/sidebar.ts"), }, @@ -721,7 +726,7 @@ module.exports = { title: "Identity Provider Service API", slug: "/apis/resources/idp_service_v2", description: - 'This API is intended to manage identity providers (IdPs) for ZITADEL.\n' + "This API is intended to manage identity providers (IdPs) for ZITADEL.\n", }, items: require("./docs/apis/resources/idp_service_v2/sidebar.ts"), }, @@ -731,39 +736,7 @@ module.exports = { type: "category", label: "V3 (Preview)", collapsed: false, - link: { - type: "doc", - id: "apis/v3", - }, items: [ - { - type: "category", - label: "User Schema Lifecycle (Preview)", - link: { - type: "generated-index", - title: "User Schema Service API (Preview)", - slug: "/apis/resources/user_schema_service", - description: - "This API is intended to manage data schemas for users in a ZITADEL instance.\n" + - "\n" + - "This project is in Preview state. It can AND will continue breaking until the service provides the same functionality as the v1 and v2 user services.", - }, - items: require("./docs/apis/resources/user_schema_service_v3/sidebar.ts"), - }, - { - type: "category", - label: "User Lifecycle (Preview)", - link: { - type: "generated-index", - title: "User Service API (Preview)", - slug: "/apis/resources/user_service_v3", - description: - "This API is intended to manage users with your own data schema in a ZITADEL instance.\n" + - "\n" + - "This project is in Preview state. It can AND will continue breaking until the service provides the same functionality as the v1 and v2 user services.", - }, - items: require("./docs/apis/resources/user_service_v3/sidebar.ts"), - }, { type: "category", label: "Action Lifecycle (Preview)", @@ -780,13 +753,18 @@ module.exports = { "\n" + "This project is in Preview state. It can AND will continue breaking until the services provide the same functionality as the current actions.", }, - items: [{ - type: "doc", - id: "apis/actions/v3/usage", - }, { - type: "doc", - id: "apis/actions/v3/testing-locally", - }].concat(require("./docs/apis/resources/action_service_v3/sidebar.ts")), + items: [ + { + type: "doc", + id: "apis/actions/v3/usage", + }, + { + type: "doc", + id: "apis/actions/v3/testing-locally", + }, + ].concat( + require("./docs/apis/resources/action_service_v3/sidebar.ts") + ), }, { type: "category", @@ -823,7 +801,11 @@ module.exports = { collapsed: true, items: [ "apis/openidoauth/endpoints", - "apis/openidoauth/authrequest", + { + label: "OIDC Playground", + type: "link", + href: "https://zitadel.com/playgrounds/oidc", + }, "apis/openidoauth/scopes", "apis/openidoauth/claims", "apis/openidoauth/authn-methods", @@ -842,9 +824,7 @@ module.exports = { type: "category", label: "Provision Users", collapsed: true, - items: [ - 'apis/scim2' - ], + items: ["apis/scim2"], }, { type: "category", @@ -880,7 +860,7 @@ module.exports = { { type: "category", label: "Benchmarks", - collapsed: false, + collapsed: false, link: { type: "doc", id: "apis/benchmarks/index", @@ -892,12 +872,9 @@ module.exports = { link: { title: "v2.65.0", slug: "/apis/benchmarks/v2.65.0", - description: - "Benchmark results of Zitadel v2.65.0\n" + description: "Benchmark results of Zitadel v2.65.0\n", }, - items: [ - "apis/benchmarks/v2.65.0/machine_jwt_profile_grant/index", - ], + items: ["apis/benchmarks/v2.65.0/machine_jwt_profile_grant/index"], }, { type: "category", @@ -905,11 +882,21 @@ module.exports = { link: { title: "v2.66.0", slug: "/apis/benchmarks/v2.66.0", - description: - "Benchmark results of Zitadel v2.66.0\n" + description: "Benchmark results of Zitadel v2.66.0\n", + }, + items: ["apis/benchmarks/v2.66.0/machine_jwt_profile_grant/index"], + }, + { + type: "category", + label: "v2.70.0", + link: { + title: "v2.70.0", + slug: "/apis/benchmarks/v2.70.0", + description: "Benchmark results of Zitadel v2.70.0\n", }, items: [ - "apis/benchmarks/v2.66.0/machine_jwt_profile_grant/index", + "apis/benchmarks/v2.70.0/machine_jwt_profile_grant/index", + "apis/benchmarks/v2.70.0/oidc_session/index", ], }, ], diff --git a/docs/src/components/authrequest.jsx b/docs/src/components/authrequest.jsx index 71fd1349ea..82ecc91337 100644 --- a/docs/src/components/authrequest.jsx +++ b/docs/src/components/authrequest.jsx @@ -25,7 +25,7 @@ const LinkButton = ({ return ( { + if (!dataPerMetric.has(result.metric_name)) { + dataPerMetric.set(result.metric_name, [ + [ + {type:"datetime", label: "timestamp"}, + {type:"number", label: "p50"}, + {type:"number", label: "p95"}, + {type:"number", label: "p99"}, + ], + ]); + } + if (result.p99 > maxVValue) { + maxVValue = result.p99; + } + dataPerMetric.get(result.metric_name).push([ + new Date(result.timestamp), + result.p50, + result.p95, + result.p99, + ]); + }); const options = { legend: { position: 'bottom' }, @@ -11,35 +35,27 @@ export function BenchmarkChart(testResults=[], height='500px') { }, vAxis: { title: 'latency (ms)', + maxValue: maxVValue, }, + title: '' }; - - const data = [ - [ - {type:"datetime", label: "timestamp"}, - {type:"number", label: "p50"}, - {type:"number", label: "p95"}, - {type:"number", label: "p99"}, - ], - ] - - JSON.parse(testResults.testResults).forEach((result) => { - data.push([ - new Date(result.timestamp), - result.p50, - result.p95, - result.p99, - ]) + const charts = []; + + dataPerMetric.forEach((data, metric) => { + const opt = Object.create(options); + opt.title = metric; + charts.push( + + ); }); - return ( - - ); + + return (charts); } \ No newline at end of file diff --git a/docs/static/img/guides/login-ui/device-auth-flow.png b/docs/static/img/guides/login-ui/device-auth-flow.png new file mode 100644 index 0000000000..f240df32f4 Binary files /dev/null and b/docs/static/img/guides/login-ui/device-auth-flow.png differ diff --git a/docs/static/img/tech/fastapi.svg b/docs/static/img/tech/fastapi.svg new file mode 100644 index 0000000000..85f2d13372 --- /dev/null +++ b/docs/static/img/tech/fastapi.svg @@ -0,0 +1 @@ + diff --git a/e2e/cypress/e2e/machines/machines.cy.ts b/e2e/cypress/e2e/machines/machines.cy.ts index 504dc88df2..4ffe06feea 100644 --- a/e2e/cypress/e2e/machines/machines.cy.ts +++ b/e2e/cypress/e2e/machines/machines.cy.ts @@ -56,8 +56,8 @@ describe('machines', () => { loginName = loginname(machine.removeName, Cypress.env('ORGANIZATION')); } it('should delete a machine', () => { - const rowSelector = `tr:contains(${machine.removeName})`; - cy.get(rowSelector).find('[data-e2e="enabled-delete-button"]').click({ force: true }); + const rowSelector = `tr:contains('${machine.removeName}')`; + cy.get(rowSelector).should('be.visible').find('[data-e2e="enabled-delete-button"]').click({ force: true }); cy.get('[data-e2e="confirm-dialog-input"]').focus().should('be.enabled').type(loginName); cy.get('[data-e2e="confirm-dialog-button"]').click(); cy.shouldConfirmSuccess(); diff --git a/internal/api/grpc/admin/export.go b/internal/api/grpc/admin/export.go index 68b6053c2c..da364909cb 100644 --- a/internal/api/grpc/admin/export.go +++ b/internal/api/grpc/admin/export.go @@ -554,7 +554,7 @@ func (s *Server) getUsers(ctx context.Context, org string, withPasswords bool, w if err != nil { return nil, nil, nil, nil, err } - users, err := s.query.SearchUsers(ctx, &query.UserSearchQueries{Queries: []query.SearchQuery{orgSearch}}, nil) + users, err := s.query.SearchUsers(ctx, &query.UserSearchQueries{Queries: []query.SearchQuery{orgSearch}}, org, nil) if err != nil { return nil, nil, nil, nil, err } diff --git a/internal/api/grpc/admin/iam_member.go b/internal/api/grpc/admin/iam_member.go index edd4dd0ce6..8f9b11ce2a 100644 --- a/internal/api/grpc/admin/iam_member.go +++ b/internal/api/grpc/admin/iam_member.go @@ -28,8 +28,7 @@ func (s *Server) ListIAMMembers(ctx context.Context, req *admin_pb.ListIAMMember } return &admin_pb.ListIAMMembersResponse{ Details: object.ToListDetails(res.Count, res.Sequence, res.LastRun), - //TODO: resource owner of user of the member instead of the membership resource owner - Result: member.MembersToPb("", res.Members), + Result: member.MembersToPb("", res.Members), }, nil } diff --git a/internal/api/grpc/admin/iam_member_converter.go b/internal/api/grpc/admin/iam_member_converter.go index 07e91d21b3..2fe75214fd 100644 --- a/internal/api/grpc/admin/iam_member_converter.go +++ b/internal/api/grpc/admin/iam_member_converter.go @@ -6,6 +6,7 @@ import ( "github.com/zitadel/zitadel/internal/domain" "github.com/zitadel/zitadel/internal/query" admin_pb "github.com/zitadel/zitadel/pkg/grpc/admin" + member_pb "github.com/zitadel/zitadel/pkg/grpc/member" ) func AddIAMMemberToDomain(req *admin_pb.AddIAMMemberRequest) *domain.Member { @@ -31,12 +32,29 @@ func ListIAMMembersRequestToQuery(req *admin_pb.ListIAMMembersRequest) (*query.I return &query.IAMMembersQuery{ MembersQuery: query.MembersQuery{ SearchRequest: query.SearchRequest{ - Offset: offset, - Limit: limit, - Asc: asc, - // SortingColumn: model.IAMMemberSearchKey, //TOOD: not implemented in proto + Offset: offset, + Limit: limit, + Asc: asc, + SortingColumn: fieldNameToMemberColumn(req.SortingColumn), }, Queries: queries, }, }, nil } + +func fieldNameToMemberColumn(fieldName member_pb.MemberFieldColumnName) query.Column { + switch fieldName { + case member_pb.MemberFieldColumnName_MEMBER_FIELD_NAME_UNSPECIFIED: + return query.InstanceMemberInstanceID + case member_pb.MemberFieldColumnName_MEMBER_FIELD_NAME_USER_ID: + return query.InstanceMemberUserID + case member_pb.MemberFieldColumnName_MEMBER_FIELD_NAME_CREATION_DATE: + return query.InstanceMemberCreationDate + case member_pb.MemberFieldColumnName_MEMBER_FIELD_NAME_CHANGE_DATE: + return query.InstanceMemberChangeDate + case member_pb.MemberFieldColumnName_MEMBER_FIELD_NAME_USER_RESOURCE_OWNER: + return query.InstanceMemberResourceOwner + default: + return query.Column{} + } +} diff --git a/internal/api/grpc/admin/idp_converter.go b/internal/api/grpc/admin/idp_converter.go index 67e40a44ab..3084031a73 100644 --- a/internal/api/grpc/admin/idp_converter.go +++ b/internal/api/grpc/admin/idp_converter.go @@ -215,6 +215,7 @@ func addGenericOAuthProviderToCommand(req *admin_pb.AddGenericOAuthProviderReque UserEndpoint: req.UserEndpoint, Scopes: req.Scopes, IDAttribute: req.IdAttribute, + UsePKCE: req.UsePkce, IDPOptions: idp_grpc.OptionsToCommand(req.ProviderOptions), } } @@ -229,6 +230,7 @@ func updateGenericOAuthProviderToCommand(req *admin_pb.UpdateGenericOAuthProvide UserEndpoint: req.UserEndpoint, Scopes: req.Scopes, IDAttribute: req.IdAttribute, + UsePKCE: req.UsePkce, IDPOptions: idp_grpc.OptionsToCommand(req.ProviderOptions), } } @@ -241,6 +243,7 @@ func addGenericOIDCProviderToCommand(req *admin_pb.AddGenericOIDCProviderRequest ClientSecret: req.ClientSecret, Scopes: req.Scopes, IsIDTokenMapping: req.IsIdTokenMapping, + UsePKCE: req.UsePkce, IDPOptions: idp_grpc.OptionsToCommand(req.ProviderOptions), } } @@ -253,6 +256,7 @@ func updateGenericOIDCProviderToCommand(req *admin_pb.UpdateGenericOIDCProviderR ClientSecret: req.ClientSecret, Scopes: req.Scopes, IsIDTokenMapping: req.IsIdTokenMapping, + UsePKCE: req.UsePkce, IDPOptions: idp_grpc.OptionsToCommand(req.ProviderOptions), } } @@ -423,6 +427,7 @@ func addLDAPProviderToCommand(req *admin_pb.AddLDAPProviderRequest) command.LDAP UserObjectClasses: req.UserObjectClasses, UserFilters: req.UserFilters, Timeout: req.Timeout.AsDuration(), + RootCA: req.RootCa, LDAPAttributes: idp_grpc.LDAPAttributesToCommand(req.Attributes), IDPOptions: idp_grpc.OptionsToCommand(req.ProviderOptions), } @@ -442,6 +447,7 @@ func updateLDAPProviderToCommand(req *admin_pb.UpdateLDAPProviderRequest) comman Timeout: req.Timeout.AsDuration(), LDAPAttributes: idp_grpc.LDAPAttributesToCommand(req.Attributes), IDPOptions: idp_grpc.OptionsToCommand(req.ProviderOptions), + RootCA: req.RootCa, } } diff --git a/internal/api/grpc/admin/org.go b/internal/api/grpc/admin/org.go index 934de1b570..93e6936d42 100644 --- a/internal/api/grpc/admin/org.go +++ b/internal/api/grpc/admin/org.go @@ -108,10 +108,7 @@ func (s *Server) getClaimedUserIDsOfOrgDomain(ctx context.Context, orgDomain str if err != nil { return nil, err } - users, err := s.query.SearchUsers(ctx, &query.UserSearchQueries{Queries: []query.SearchQuery{loginName}}, nil) - if err != nil { - return nil, err - } + users, err := s.query.SearchUsers(ctx, &query.UserSearchQueries{Queries: []query.SearchQuery{loginName}}, "", nil) if err != nil { return nil, err } diff --git a/internal/api/grpc/feature/v2/converter.go b/internal/api/grpc/feature/v2/converter.go index fee4450ce2..60cf569082 100644 --- a/internal/api/grpc/feature/v2/converter.go +++ b/internal/api/grpc/feature/v2/converter.go @@ -71,6 +71,7 @@ func instanceFeaturesToCommand(req *feature_pb.SetInstanceFeaturesRequest) (*com EnableBackChannelLogout: req.EnableBackChannelLogout, LoginV2: loginV2, PermissionCheckV2: req.PermissionCheckV2, + ConsoleUseV2UserApi: req.ConsoleUseV2UserApi, }, nil } @@ -91,6 +92,7 @@ func instanceFeaturesToPb(f *query.InstanceFeatures) *feature_pb.GetInstanceFeat EnableBackChannelLogout: featureSourceToFlagPb(&f.EnableBackChannelLogout), LoginV2: loginV2ToLoginV2FlagPb(f.LoginV2), PermissionCheckV2: featureSourceToFlagPb(&f.PermissionCheckV2), + ConsoleUseV2UserApi: featureSourceToFlagPb(&f.ConsoleUseV2UserApi), } } diff --git a/internal/api/grpc/feature/v2/converter_test.go b/internal/api/grpc/feature/v2/converter_test.go index bf87dc959b..62cf701eec 100644 --- a/internal/api/grpc/feature/v2/converter_test.go +++ b/internal/api/grpc/feature/v2/converter_test.go @@ -183,6 +183,7 @@ func Test_instanceFeaturesToCommand(t *testing.T) { Required: true, BaseUri: gu.Ptr("https://login.com"), }, + ConsoleUseV2UserApi: gu.Ptr(true), } want := &command.InstanceFeatures{ LoginDefaultOrg: gu.Ptr(true), @@ -200,6 +201,7 @@ func Test_instanceFeaturesToCommand(t *testing.T) { Required: true, BaseURI: &url.URL{Scheme: "https", Host: "login.com"}, }, + ConsoleUseV2UserApi: gu.Ptr(true), } got, err := instanceFeaturesToCommand(arg) assert.Equal(t, want, got) @@ -264,6 +266,10 @@ func Test_instanceFeaturesToPb(t *testing.T) { Level: feature.LevelInstance, Value: true, }, + ConsoleUseV2UserApi: query.FeatureSource[bool]{ + Level: feature.LevelInstance, + Value: true, + }, } want := &feature_pb.GetInstanceFeaturesResponse{ Details: &object.Details{ @@ -328,6 +334,10 @@ func Test_instanceFeaturesToPb(t *testing.T) { Enabled: true, Source: feature_pb.Source_SOURCE_INSTANCE, }, + ConsoleUseV2UserApi: &feature_pb.FeatureFlag{ + Enabled: true, + Source: feature_pb.Source_SOURCE_INSTANCE, + }, } got := instanceFeaturesToPb(arg) assert.Equal(t, want, got) diff --git a/internal/api/grpc/idp/converter.go b/internal/api/grpc/idp/converter.go index 9b3e09a10c..6269f122c0 100644 --- a/internal/api/grpc/idp/converter.go +++ b/internal/api/grpc/idp/converter.go @@ -504,6 +504,7 @@ func oauthConfigToPb(providerConfig *idp_pb.ProviderConfig, template *query.OAut UserEndpoint: template.UserEndpoint, Scopes: template.Scopes, IdAttribute: template.IDAttribute, + UsePkce: template.UsePKCE, }, } } @@ -515,6 +516,7 @@ func oidcConfigToPb(providerConfig *idp_pb.ProviderConfig, template *query.OIDCI Issuer: template.Issuer, Scopes: template.Scopes, IsIdTokenMapping: template.IsIDTokenMapping, + UsePkce: template.UsePKCE, }, } } @@ -620,6 +622,7 @@ func ldapConfigToPb(providerConfig *idp_pb.ProviderConfig, template *query.LDAPI UserObjectClasses: template.UserObjectClasses, UserFilters: template.UserFilters, Timeout: timeout, + RootCa: template.RootCA, Attributes: ldapAttributesToPb(template.LDAPAttributes), }, } diff --git a/internal/api/grpc/idp/v2/integration_test/query_test.go b/internal/api/grpc/idp/v2/integration_test/query_test.go index 7bfa286b5e..2c4be8a73b 100644 --- a/internal/api/grpc/idp/v2/integration_test/query_test.go +++ b/internal/api/grpc/idp/v2/integration_test/query_test.go @@ -76,6 +76,7 @@ func TestServer_GetIDPByID(t *testing.T) { name, &object.Details{ Sequence: resp.Details.Sequence, + CreationDate: resp.Details.CreationDate, ChangeDate: resp.Details.ChangeDate, ResourceOwner: resp.Details.ResourceOwner, }} @@ -124,6 +125,7 @@ func TestServer_GetIDPByID(t *testing.T) { name, &object.Details{ Sequence: resp.Details.Sequence, + CreationDate: resp.Details.CreationDate, ChangeDate: resp.Details.ChangeDate, ResourceOwner: resp.Details.ResourceOwner, }} @@ -145,6 +147,7 @@ func TestServer_GetIDPByID(t *testing.T) { name, &object.Details{ Sequence: resp.Details.Sequence, + CreationDate: resp.Details.CreationDate, ChangeDate: resp.Details.ChangeDate, ResourceOwner: resp.Details.ResourceOwner, }} @@ -193,6 +196,7 @@ func TestServer_GetIDPByID(t *testing.T) { name, &object.Details{ Sequence: resp.Details.Sequence, + CreationDate: resp.Details.CreationDate, ChangeDate: resp.Details.ChangeDate, ResourceOwner: resp.Details.ResourceOwner, }} diff --git a/internal/api/grpc/idp/v2/query.go b/internal/api/grpc/idp/v2/query.go index 0b66175c14..de78775804 100644 --- a/internal/api/grpc/idp/v2/query.go +++ b/internal/api/grpc/idp/v2/query.go @@ -31,6 +31,7 @@ func idpToPb(idp *query.IDPTemplate) *idp_pb.IDP { Sequence: idp.Sequence, EventDate: idp.ChangeDate, ResourceOwner: idp.ResourceOwner, + CreationDate: idp.CreationDate, }), State: idpStateToPb(idp.State), Name: idp.Name, @@ -288,6 +289,7 @@ func ldapConfigToPb(idpConfig *idp_pb.IDPConfig, template *query.LDAPIDPTemplate UserObjectClasses: template.UserObjectClasses, UserFilters: template.UserFilters, Timeout: timeout, + RootCa: template.RootCA, Attributes: ldapAttributesToPb(template.LDAPAttributes), }, } diff --git a/internal/api/grpc/management/idp_converter.go b/internal/api/grpc/management/idp_converter.go index ef3914cc96..4f68c5f919 100644 --- a/internal/api/grpc/management/idp_converter.go +++ b/internal/api/grpc/management/idp_converter.go @@ -209,6 +209,7 @@ func addGenericOAuthProviderToCommand(req *mgmt_pb.AddGenericOAuthProviderReques Scopes: req.Scopes, IDAttribute: req.IdAttribute, IDPOptions: idp_grpc.OptionsToCommand(req.ProviderOptions), + UsePKCE: req.UsePkce, } } @@ -223,6 +224,7 @@ func updateGenericOAuthProviderToCommand(req *mgmt_pb.UpdateGenericOAuthProvider Scopes: req.Scopes, IDAttribute: req.IdAttribute, IDPOptions: idp_grpc.OptionsToCommand(req.ProviderOptions), + UsePKCE: req.UsePkce, } } @@ -234,6 +236,7 @@ func addGenericOIDCProviderToCommand(req *mgmt_pb.AddGenericOIDCProviderRequest) ClientSecret: req.ClientSecret, Scopes: req.Scopes, IsIDTokenMapping: req.IsIdTokenMapping, + UsePKCE: req.UsePkce, IDPOptions: idp_grpc.OptionsToCommand(req.ProviderOptions), } } @@ -246,6 +249,7 @@ func updateGenericOIDCProviderToCommand(req *mgmt_pb.UpdateGenericOIDCProviderRe ClientSecret: req.ClientSecret, Scopes: req.Scopes, IsIDTokenMapping: req.IsIdTokenMapping, + UsePKCE: req.UsePkce, IDPOptions: idp_grpc.OptionsToCommand(req.ProviderOptions), } } @@ -416,6 +420,7 @@ func addLDAPProviderToCommand(req *mgmt_pb.AddLDAPProviderRequest) command.LDAPP UserObjectClasses: req.UserObjectClasses, UserFilters: req.UserFilters, Timeout: req.Timeout.AsDuration(), + RootCA: req.RootCa, LDAPAttributes: idp_grpc.LDAPAttributesToCommand(req.Attributes), IDPOptions: idp_grpc.OptionsToCommand(req.ProviderOptions), } @@ -435,6 +440,7 @@ func updateLDAPProviderToCommand(req *mgmt_pb.UpdateLDAPProviderRequest) command Timeout: req.Timeout.AsDuration(), LDAPAttributes: idp_grpc.LDAPAttributesToCommand(req.Attributes), IDPOptions: idp_grpc.OptionsToCommand(req.ProviderOptions), + RootCA: req.RootCa, } } diff --git a/internal/api/grpc/management/org.go b/internal/api/grpc/management/org.go index d25d46d852..abc179a763 100644 --- a/internal/api/grpc/management/org.go +++ b/internal/api/grpc/management/org.go @@ -330,7 +330,7 @@ func (s *Server) getClaimedUserIDsOfOrgDomain(ctx context.Context, orgDomain, or } queries = append(queries, owner) } - users, err := s.query.SearchUsers(ctx, &query.UserSearchQueries{Queries: queries}, nil) + users, err := s.query.SearchUsers(ctx, &query.UserSearchQueries{Queries: queries}, orgID, nil) if err != nil { return nil, err } diff --git a/internal/api/grpc/management/user.go b/internal/api/grpc/management/user.go index dac651af81..17bca58993 100644 --- a/internal/api/grpc/management/user.go +++ b/internal/api/grpc/management/user.go @@ -64,11 +64,12 @@ func (s *Server) ListUsers(ctx context.Context, req *mgmt_pb.ListUsersRequest) ( return nil, err } - err = queries.AppendMyResourceOwnerQuery(authz.GetCtxData(ctx).OrgID) + orgID := authz.GetCtxData(ctx).OrgID + err = queries.AppendMyResourceOwnerQuery(orgID) if err != nil { return nil, err } - res, err := s.query.SearchUsers(ctx, queries, nil) + res, err := s.query.SearchUsers(ctx, queries, orgID, nil) if err != nil { return nil, err } diff --git a/internal/api/grpc/object/v2/converter.go b/internal/api/grpc/object/v2/converter.go index 8cf0d8b1fa..753b9db095 100644 --- a/internal/api/grpc/object/v2/converter.go +++ b/internal/api/grpc/object/v2/converter.go @@ -20,6 +20,9 @@ func DomainToDetailsPb(objectDetail *domain.ObjectDetails) *object.Details { if !objectDetail.EventDate.IsZero() { details.ChangeDate = timestamppb.New(objectDetail.EventDate) } + if !objectDetail.CreationDate.IsZero() { + details.CreationDate = timestamppb.New(objectDetail.CreationDate) + } return details } diff --git a/internal/api/grpc/object/v2beta/converter.go b/internal/api/grpc/object/v2beta/converter.go index cc7e02c7fe..9b14bb677a 100644 --- a/internal/api/grpc/object/v2beta/converter.go +++ b/internal/api/grpc/object/v2beta/converter.go @@ -19,6 +19,9 @@ func DomainToDetailsPb(objectDetail *domain.ObjectDetails) *object.Details { if !objectDetail.EventDate.IsZero() { details.ChangeDate = timestamppb.New(objectDetail.EventDate) } + if !objectDetail.CreationDate.IsZero() { + details.CreationDate = timestamppb.New(objectDetail.CreationDate) + } return details } diff --git a/internal/api/grpc/oidc/v2/integration_test/oidc_test.go b/internal/api/grpc/oidc/v2/integration_test/oidc_test.go index d6b5c7b8cf..1eb031bd6d 100644 --- a/internal/api/grpc/oidc/v2/integration_test/oidc_test.go +++ b/internal/api/grpc/oidc/v2/integration_test/oidc_test.go @@ -13,6 +13,7 @@ import ( "github.com/muhlemmer/gu" "github.com/stretchr/testify/assert" "github.com/stretchr/testify/require" + "github.com/zitadel/oidc/v3/pkg/oidc" "google.golang.org/protobuf/types/known/timestamppb" "github.com/zitadel/zitadel/internal/integration" @@ -636,6 +637,230 @@ func TestServer_CreateCallback_Permission(t *testing.T) { } } +func TestServer_GetDeviceAuthorizationRequest(t *testing.T) { + project, err := Instance.CreateProject(CTX) + require.NoError(t, err) + client, err := Instance.CreateOIDCClient(CTX, redirectURI, logoutRedirectURI, project.GetId(), app.OIDCAppType_OIDC_APP_TYPE_NATIVE, app.OIDCAuthMethodType_OIDC_AUTH_METHOD_TYPE_NONE, false, app.OIDCGrantType_OIDC_GRANT_TYPE_DEVICE_CODE) + require.NoError(t, err) + + tests := []struct { + name string + dep func() (*oidc.DeviceAuthorizationResponse, error) + ctx context.Context + want *oidc.DeviceAuthorizationResponse + wantErr bool + }{ + { + name: "Not found", + dep: func() (*oidc.DeviceAuthorizationResponse, error) { + return &oidc.DeviceAuthorizationResponse{ + UserCode: "notFound", + }, nil + }, + ctx: CTX, + wantErr: true, + }, + { + name: "success", + dep: func() (*oidc.DeviceAuthorizationResponse, error) { + return Instance.CreateDeviceAuthorizationRequest(CTX, client.GetClientId(), "openid") + }, + ctx: CTX, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + deviceAuth, err := tt.dep() + require.NoError(t, err) + + got, err := Client.GetDeviceAuthorizationRequest(tt.ctx, &oidc_pb.GetDeviceAuthorizationRequestRequest{ + UserCode: deviceAuth.UserCode, + }) + if tt.wantErr { + require.Error(t, err) + return + } + require.NoError(t, err) + authRequest := got.GetDeviceAuthorizationRequest() + assert.NotNil(t, authRequest) + assert.NotEmpty(t, authRequest.GetId()) + assert.Equal(t, client.GetClientId(), authRequest.GetClientId()) + assert.Contains(t, authRequest.GetScope(), "openid") + assert.NotEmpty(t, authRequest.GetAppName()) + assert.NotEmpty(t, authRequest.GetProjectName()) + }) + } +} + +func TestServer_AuthorizeOrDenyDeviceAuthorization(t *testing.T) { + project, err := Instance.CreateProject(CTX) + require.NoError(t, err) + client, err := Instance.CreateOIDCClient(CTX, redirectURI, logoutRedirectURI, project.GetId(), app.OIDCAppType_OIDC_APP_TYPE_NATIVE, app.OIDCAuthMethodType_OIDC_AUTH_METHOD_TYPE_NONE, false, app.OIDCGrantType_OIDC_GRANT_TYPE_DEVICE_CODE) + require.NoError(t, err) + sessionResp := createSession(t, CTX, Instance.Users[integration.UserTypeOrgOwner].ID) + + tests := []struct { + name string + ctx context.Context + req *oidc_pb.AuthorizeOrDenyDeviceAuthorizationRequest + AuthError string + want *oidc_pb.AuthorizeOrDenyDeviceAuthorizationResponse + wantURL *url.URL + wantErr bool + }{ + { + name: "Not found", + ctx: CTX, + req: &oidc_pb.AuthorizeOrDenyDeviceAuthorizationRequest{ + DeviceAuthorizationId: "123", + Decision: &oidc_pb.AuthorizeOrDenyDeviceAuthorizationRequest_Session{ + Session: &oidc_pb.Session{ + SessionId: sessionResp.GetSessionId(), + SessionToken: sessionResp.GetSessionToken(), + }, + }, + }, + wantErr: true, + }, + { + name: "session not found", + ctx: CTX, + req: &oidc_pb.AuthorizeOrDenyDeviceAuthorizationRequest{ + DeviceAuthorizationId: func() string { + req, err := Instance.CreateDeviceAuthorizationRequest(CTX, client.GetClientId(), "openid") + require.NoError(t, err) + var id string + assert.EventuallyWithT(t, func(collectT *assert.CollectT) { + resp, err := Instance.Client.OIDCv2.GetDeviceAuthorizationRequest(CTX, &oidc_pb.GetDeviceAuthorizationRequestRequest{ + UserCode: req.UserCode, + }) + assert.NoError(t, err) + id = resp.GetDeviceAuthorizationRequest().GetId() + }, 5*time.Second, 100*time.Millisecond) + return id + }(), + Decision: &oidc_pb.AuthorizeOrDenyDeviceAuthorizationRequest_Session{ + Session: &oidc_pb.Session{ + SessionId: "foo", + SessionToken: "bar", + }, + }, + }, + wantErr: true, + }, + { + name: "session token invalid", + ctx: CTX, + req: &oidc_pb.AuthorizeOrDenyDeviceAuthorizationRequest{ + DeviceAuthorizationId: func() string { + req, err := Instance.CreateDeviceAuthorizationRequest(CTX, client.GetClientId(), "openid") + require.NoError(t, err) + var id string + assert.EventuallyWithT(t, func(collectT *assert.CollectT) { + resp, err := Instance.Client.OIDCv2.GetDeviceAuthorizationRequest(CTX, &oidc_pb.GetDeviceAuthorizationRequestRequest{ + UserCode: req.UserCode, + }) + assert.NoError(collectT, err) + id = resp.GetDeviceAuthorizationRequest().GetId() + }, 5*time.Second, 100*time.Millisecond) + return id + }(), + Decision: &oidc_pb.AuthorizeOrDenyDeviceAuthorizationRequest_Session{ + Session: &oidc_pb.Session{ + SessionId: sessionResp.GetSessionId(), + SessionToken: "bar", + }, + }, + }, + wantErr: true, + }, + { + name: "deny device authorization", + ctx: CTX, + req: &oidc_pb.AuthorizeOrDenyDeviceAuthorizationRequest{ + DeviceAuthorizationId: func() string { + req, err := Instance.CreateDeviceAuthorizationRequest(CTX, client.GetClientId(), "openid") + require.NoError(t, err) + var id string + assert.EventuallyWithT(t, func(collectT *assert.CollectT) { + resp, err := Instance.Client.OIDCv2.GetDeviceAuthorizationRequest(CTX, &oidc_pb.GetDeviceAuthorizationRequestRequest{ + UserCode: req.UserCode, + }) + assert.NoError(collectT, err) + id = resp.GetDeviceAuthorizationRequest().GetId() + }, 5*time.Second, 100*time.Millisecond) + return id + }(), + Decision: &oidc_pb.AuthorizeOrDenyDeviceAuthorizationRequest_Deny{}, + }, + want: &oidc_pb.AuthorizeOrDenyDeviceAuthorizationResponse{}, + wantErr: false, + }, + { + name: "authorize, no permission, error", + ctx: CTX, + req: &oidc_pb.AuthorizeOrDenyDeviceAuthorizationRequest{ + DeviceAuthorizationId: func() string { + req, err := Instance.CreateDeviceAuthorizationRequest(CTX, client.GetClientId(), "openid") + require.NoError(t, err) + var id string + assert.EventuallyWithT(t, func(collectT *assert.CollectT) { + resp, err := Instance.Client.OIDCv2.GetDeviceAuthorizationRequest(CTX, &oidc_pb.GetDeviceAuthorizationRequestRequest{ + UserCode: req.UserCode, + }) + assert.NoError(collectT, err) + id = resp.GetDeviceAuthorizationRequest().GetId() + }, 5*time.Second, 100*time.Millisecond) + return id + }(), + Decision: &oidc_pb.AuthorizeOrDenyDeviceAuthorizationRequest_Session{ + Session: &oidc_pb.Session{ + SessionId: sessionResp.GetSessionId(), + SessionToken: sessionResp.GetSessionToken(), + }, + }, + }, + wantErr: true, + }, + { + name: "authorize, with permission", + ctx: CTXLoginClient, + req: &oidc_pb.AuthorizeOrDenyDeviceAuthorizationRequest{ + DeviceAuthorizationId: func() string { + req, err := Instance.CreateDeviceAuthorizationRequest(CTX, client.GetClientId(), "openid") + require.NoError(t, err) + var id string + assert.EventuallyWithT(t, func(collectT *assert.CollectT) { + resp, err := Instance.Client.OIDCv2.GetDeviceAuthorizationRequest(CTX, &oidc_pb.GetDeviceAuthorizationRequestRequest{ + UserCode: req.UserCode, + }) + assert.NoError(collectT, err) + id = resp.GetDeviceAuthorizationRequest().GetId() + }, 5*time.Second, 100*time.Millisecond) + return id + }(), + Decision: &oidc_pb.AuthorizeOrDenyDeviceAuthorizationRequest_Session{ + Session: &oidc_pb.Session{ + SessionId: sessionResp.GetSessionId(), + SessionToken: sessionResp.GetSessionToken(), + }, + }, + }, + wantErr: false, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + _, err := Client.AuthorizeOrDenyDeviceAuthorization(tt.ctx, tt.req) + if tt.wantErr { + require.Error(t, err) + return + } + require.NoError(t, err) + }) + } +} + func createSession(t *testing.T, ctx context.Context, userID string) *session.CreateSessionResponse { sessionResp, err := Instance.Client.SessionV2.CreateSession(ctx, &session.CreateSessionRequest{ Checks: &session.Checks{ diff --git a/internal/api/grpc/oidc/v2/oidc.go b/internal/api/grpc/oidc/v2/oidc.go index d1ddc35cc0..73fc995be2 100644 --- a/internal/api/grpc/oidc/v2/oidc.go +++ b/internal/api/grpc/oidc/v2/oidc.go @@ -2,6 +2,7 @@ package oidc import ( "context" + "encoding/base64" "github.com/zitadel/logging" "github.com/zitadel/oidc/v3/pkg/op" @@ -28,6 +29,54 @@ func (s *Server) GetAuthRequest(ctx context.Context, req *oidc_pb.GetAuthRequest }, nil } +func (s *Server) CreateCallback(ctx context.Context, req *oidc_pb.CreateCallbackRequest) (*oidc_pb.CreateCallbackResponse, error) { + switch v := req.GetCallbackKind().(type) { + case *oidc_pb.CreateCallbackRequest_Error: + return s.failAuthRequest(ctx, req.GetAuthRequestId(), v.Error) + case *oidc_pb.CreateCallbackRequest_Session: + return s.linkSessionToAuthRequest(ctx, req.GetAuthRequestId(), v.Session) + default: + return nil, zerrors.ThrowUnimplementedf(nil, "OIDCv2-zee7A", "verification oneOf %T in method CreateCallback not implemented", v) + } +} + +func (s *Server) GetDeviceAuthorizationRequest(ctx context.Context, req *oidc_pb.GetDeviceAuthorizationRequestRequest) (*oidc_pb.GetDeviceAuthorizationRequestResponse, error) { + deviceRequest, err := s.query.DeviceAuthRequestByUserCode(ctx, req.GetUserCode()) + if err != nil { + return nil, err + } + encrypted, err := s.encryption.Encrypt([]byte(deviceRequest.DeviceCode)) + if err != nil { + return nil, err + } + return &oidc_pb.GetDeviceAuthorizationRequestResponse{ + DeviceAuthorizationRequest: &oidc_pb.DeviceAuthorizationRequest{ + Id: base64.RawURLEncoding.EncodeToString(encrypted), + ClientId: deviceRequest.ClientID, + Scope: deviceRequest.Scopes, + AppName: deviceRequest.AppName, + ProjectName: deviceRequest.ProjectName, + }, + }, nil +} + +func (s *Server) AuthorizeOrDenyDeviceAuthorization(ctx context.Context, req *oidc_pb.AuthorizeOrDenyDeviceAuthorizationRequest) (*oidc_pb.AuthorizeOrDenyDeviceAuthorizationResponse, error) { + deviceCode, err := s.deviceCodeFromID(req.GetDeviceAuthorizationId()) + if err != nil { + return nil, err + } + switch req.GetDecision().(type) { + case *oidc_pb.AuthorizeOrDenyDeviceAuthorizationRequest_Session: + _, err = s.command.ApproveDeviceAuthWithSession(ctx, deviceCode, req.GetSession().GetSessionId(), req.GetSession().GetSessionToken()) + case *oidc_pb.AuthorizeOrDenyDeviceAuthorizationRequest_Deny: + _, err = s.command.CancelDeviceAuth(ctx, deviceCode, domain.DeviceAuthCanceledDenied) + } + if err != nil { + return nil, err + } + return &oidc_pb.AuthorizeOrDenyDeviceAuthorizationResponse{}, nil +} + func authRequestToPb(a *query.AuthRequest) *oidc_pb.AuthRequest { pba := &oidc_pb.AuthRequest{ Id: a.ID, @@ -87,17 +136,6 @@ func (s *Server) checkPermission(ctx context.Context, clientID string, userID st return nil } -func (s *Server) CreateCallback(ctx context.Context, req *oidc_pb.CreateCallbackRequest) (*oidc_pb.CreateCallbackResponse, error) { - switch v := req.GetCallbackKind().(type) { - case *oidc_pb.CreateCallbackRequest_Error: - return s.failAuthRequest(ctx, req.GetAuthRequestId(), v.Error) - case *oidc_pb.CreateCallbackRequest_Session: - return s.linkSessionToAuthRequest(ctx, req.GetAuthRequestId(), v.Session) - default: - return nil, zerrors.ThrowUnimplementedf(nil, "OIDCv2-zee7A", "verification oneOf %T in method CreateCallback not implemented", v) - } -} - func (s *Server) failAuthRequest(ctx context.Context, authRequestID string, ae *oidc_pb.AuthorizationError) (*oidc_pb.CreateCallbackResponse, error) { details, aar, err := s.command.FailAuthRequest(ctx, authRequestID, errorReasonToDomain(ae.GetError())) if err != nil { @@ -215,3 +253,11 @@ func errorReasonToOIDC(reason oidc_pb.ErrorReason) string { return "server_error" } } + +func (s *Server) deviceCodeFromID(deviceAuthID string) (string, error) { + decoded, err := base64.RawURLEncoding.DecodeString(deviceAuthID) + if err != nil { + return "", err + } + return s.encryption.DecryptString(decoded, s.encryption.EncryptionKeyID()) +} diff --git a/internal/api/grpc/oidc/v2/server.go b/internal/api/grpc/oidc/v2/server.go index 28c7134904..99234ee3d7 100644 --- a/internal/api/grpc/oidc/v2/server.go +++ b/internal/api/grpc/oidc/v2/server.go @@ -7,6 +7,7 @@ import ( "github.com/zitadel/zitadel/internal/api/grpc/server" "github.com/zitadel/zitadel/internal/api/oidc" "github.com/zitadel/zitadel/internal/command" + "github.com/zitadel/zitadel/internal/crypto" "github.com/zitadel/zitadel/internal/query" oidc_pb "github.com/zitadel/zitadel/pkg/grpc/oidc/v2" ) @@ -20,6 +21,7 @@ type Server struct { op *oidc.Server externalSecure bool + encryption crypto.EncryptionAlgorithm } type Config struct{} @@ -29,12 +31,14 @@ func CreateServer( query *query.Queries, op *oidc.Server, externalSecure bool, + encryption crypto.EncryptionAlgorithm, ) *Server { return &Server{ command: command, query: query, op: op, externalSecure: externalSecure, + encryption: encryption, } } diff --git a/internal/api/grpc/org/v2/integration_test/query_test.go b/internal/api/grpc/org/v2/integration_test/query_test.go index 188aeddf9f..86a2bd312b 100644 --- a/internal/api/grpc/org/v2/integration_test/query_test.go +++ b/internal/api/grpc/org/v2/integration_test/query_test.go @@ -26,6 +26,16 @@ type orgAttr struct { Details *object.Details } +func createOrganization(ctx context.Context, name string) orgAttr { + orgResp := Instance.CreateOrganization(ctx, name, gofakeit.Email()) + orgResp.Details.CreationDate = orgResp.Details.ChangeDate + return orgAttr{ + ID: orgResp.GetOrganizationId(), + Name: name, + Details: orgResp.GetDetails(), + } +} + func TestServer_ListOrganizations(t *testing.T) { type args struct { ctx context.Context @@ -63,6 +73,7 @@ func TestServer_ListOrganizations(t *testing.T) { State: org.OrganizationState_ORGANIZATION_STATE_ACTIVE, Details: &object.Details{ Sequence: Instance.DefaultOrg.Details.Sequence, + CreationDate: Instance.DefaultOrg.Details.CreationDate, ChangeDate: Instance.DefaultOrg.Details.ChangeDate, ResourceOwner: Instance.DefaultOrg.Details.ResourceOwner, }, @@ -85,12 +96,7 @@ func TestServer_ListOrganizations(t *testing.T) { prefix := fmt.Sprintf("ListOrgs-%s", gofakeit.AppName()) for i := 0; i < count; i++ { name := prefix + strconv.Itoa(i) - orgResp := Instance.CreateOrganization(ctx, name, gofakeit.Email()) - orgs[i] = orgAttr{ - ID: orgResp.GetOrganizationId(), - Name: name, - Details: orgResp.GetDetails(), - } + orgs[i] = createOrganization(ctx, name) } request.Queries = []*org.SearchQuery{ OrganizationNamePrefixQuery(prefix), @@ -140,6 +146,7 @@ func TestServer_ListOrganizations(t *testing.T) { Name: Instance.DefaultOrg.Name, Details: &object.Details{ Sequence: Instance.DefaultOrg.Details.Sequence, + CreationDate: Instance.DefaultOrg.Details.CreationDate, ChangeDate: Instance.DefaultOrg.Details.ChangeDate, ResourceOwner: Instance.DefaultOrg.Details.ResourceOwner, }, @@ -172,6 +179,7 @@ func TestServer_ListOrganizations(t *testing.T) { Name: Instance.DefaultOrg.Name, Details: &object.Details{ Sequence: Instance.DefaultOrg.Details.Sequence, + CreationDate: Instance.DefaultOrg.Details.CreationDate, ChangeDate: Instance.DefaultOrg.Details.ChangeDate, ResourceOwner: Instance.DefaultOrg.Details.ResourceOwner, }, @@ -204,6 +212,7 @@ func TestServer_ListOrganizations(t *testing.T) { Name: Instance.DefaultOrg.Name, Details: &object.Details{ Sequence: Instance.DefaultOrg.Details.Sequence, + CreationDate: Instance.DefaultOrg.Details.CreationDate, ChangeDate: Instance.DefaultOrg.Details.ChangeDate, ResourceOwner: Instance.DefaultOrg.Details.ResourceOwner, }, @@ -221,14 +230,9 @@ func TestServer_ListOrganizations(t *testing.T) { func(ctx context.Context, request *org.ListOrganizationsRequest) ([]orgAttr, error) { orgs := make([]orgAttr, 1) name := fmt.Sprintf("ListOrgs-%s", gofakeit.AppName()) - orgResp := Instance.CreateOrganization(ctx, name, gofakeit.Email()) - orgs[0] = orgAttr{ - ID: orgResp.GetOrganizationId(), - Name: name, - Details: orgResp.GetDetails(), - } + orgs[0] = createOrganization(ctx, name) domain := gofakeit.DomainName() - _, err := Instance.Client.Mgmt.AddOrgDomain(integration.SetOrgID(ctx, orgResp.GetOrganizationId()), &management.AddOrgDomainRequest{ + _, err := Instance.Client.Mgmt.AddOrgDomain(integration.SetOrgID(ctx, orgs[0].ID), &management.AddOrgDomainRequest{ Domain: domain, }) if err != nil { @@ -262,18 +266,19 @@ func TestServer_ListOrganizations(t *testing.T) { }, func(ctx context.Context, request *org.ListOrganizationsRequest) ([]orgAttr, error) { name := gofakeit.Name() - orgResp := Instance.CreateOrganization(ctx, name, gofakeit.Email()) - deactivateOrgResp := Instance.DeactivateOrganization(ctx, orgResp.GetOrganizationId()) + orgResp := createOrganization(ctx, name) + deactivateOrgResp := Instance.DeactivateOrganization(ctx, orgResp.ID) request.Queries = []*org.SearchQuery{ - OrganizationIdQuery(orgResp.GetOrganizationId()), + OrganizationIdQuery(orgResp.ID), OrganizationStateQuery(org.OrganizationState_ORGANIZATION_STATE_INACTIVE), } return []orgAttr{{ - ID: orgResp.GetOrganizationId(), + ID: orgResp.ID, Name: name, Details: &object.Details{ ResourceOwner: deactivateOrgResp.GetDetails().GetResourceOwner(), Sequence: deactivateOrgResp.GetDetails().GetSequence(), + CreationDate: orgResp.Details.GetCreationDate(), ChangeDate: deactivateOrgResp.GetDetails().GetChangeDate(), }, }}, nil @@ -317,6 +322,7 @@ func TestServer_ListOrganizations(t *testing.T) { Name: Instance.DefaultOrg.Name, Details: &object.Details{ Sequence: Instance.DefaultOrg.Details.Sequence, + CreationDate: Instance.DefaultOrg.Details.ChangeDate, ChangeDate: Instance.DefaultOrg.Details.ChangeDate, ResourceOwner: Instance.DefaultOrg.Details.ResourceOwner, }, @@ -414,6 +420,7 @@ func TestServer_ListOrganizations(t *testing.T) { Name: Instance.DefaultOrg.Name, Details: &object.Details{ Sequence: Instance.DefaultOrg.Details.Sequence, + CreationDate: Instance.DefaultOrg.Details.ChangeDate, ChangeDate: Instance.DefaultOrg.Details.ChangeDate, ResourceOwner: Instance.DefaultOrg.Details.ResourceOwner, }, diff --git a/internal/api/grpc/org/v2/query.go b/internal/api/grpc/org/v2/query.go index f07fb71d20..27f279d40e 100644 --- a/internal/api/grpc/org/v2/query.go +++ b/internal/api/grpc/org/v2/query.go @@ -129,6 +129,7 @@ func organizationToPb(organization *query.Org) *org.Organization { Sequence: organization.Sequence, EventDate: organization.ChangeDate, ResourceOwner: organization.ResourceOwner, + CreationDate: organization.CreationDate, }), State: orgStateToPb(organization.State), } diff --git a/internal/api/grpc/session/v2/integration_test/server_test.go b/internal/api/grpc/session/v2/integration_test/server_test.go index 70e2146069..6ea2b4dbda 100644 --- a/internal/api/grpc/session/v2/integration_test/server_test.go +++ b/internal/api/grpc/session/v2/integration_test/server_test.go @@ -19,6 +19,7 @@ var ( CTX context.Context IAMOwnerCTX context.Context UserCTX context.Context + LoginCTX context.Context Instance *integration.Instance Client session.SessionServiceClient User *user.AddHumanUserResponse @@ -37,6 +38,7 @@ func TestMain(m *testing.M) { CTX = Instance.WithAuthorization(ctx, integration.UserTypeOrgOwner) IAMOwnerCTX = Instance.WithAuthorization(ctx, integration.UserTypeIAMOwner) UserCTX = Instance.WithAuthorization(ctx, integration.UserTypeNoPermission) + LoginCTX = Instance.WithAuthorization(ctx, integration.UserTypeLogin) User = createFullUser(CTX) DeactivatedUser = createDeactivatedUser(CTX) LockedUser = createLockedUser(CTX) diff --git a/internal/api/grpc/session/v2/integration_test/session_test.go b/internal/api/grpc/session/v2/integration_test/session_test.go index 7622550b15..b9a060c749 100644 --- a/internal/api/grpc/session/v2/integration_test/session_test.go +++ b/internal/api/grpc/session/v2/integration_test/session_test.go @@ -21,6 +21,7 @@ import ( "google.golang.org/protobuf/types/known/timestamppb" "github.com/zitadel/zitadel/internal/integration" + "github.com/zitadel/zitadel/internal/integration/sink" mgmt "github.com/zitadel/zitadel/pkg/grpc/management" "github.com/zitadel/zitadel/pkg/grpc/object/v2" "github.com/zitadel/zitadel/pkg/grpc/session/v2" @@ -339,10 +340,9 @@ func TestServer_CreateSession_webauthn(t *testing.T) { verifyCurrentSession(t, createResp.GetSessionId(), updateResp.GetSessionToken(), updateResp.GetDetails().GetSequence(), time.Minute, nil, nil, 0, User.GetUserId(), wantUserFactor, wantWebAuthNFactorUserVerified) } -/* func TestServer_CreateSession_successfulIntent(t *testing.T) { - idpID := Instance.AddGenericOAuthProvider(t, CTX) - createResp, err := Client.CreateSession(CTX, &session.CreateSessionRequest{ + idpID := Instance.AddGenericOAuthProvider(IAMOwnerCTX, gofakeit.AppName()).GetId() + createResp, err := Client.CreateSession(LoginCTX, &session.CreateSessionRequest{ Checks: &session.Checks{ User: &session.CheckUser{ Search: &session.CheckUser_UserId{ @@ -354,8 +354,9 @@ func TestServer_CreateSession_successfulIntent(t *testing.T) { require.NoError(t, err) verifyCurrentSession(t, createResp.GetSessionId(), createResp.GetSessionToken(), createResp.GetDetails().GetSequence(), time.Minute, nil, nil, 0, User.GetUserId()) - intentID, token, _, _ := Instance.CreateSuccessfulOAuthIntent(t, CTX, idpID, User.GetUserId(), "id") - updateResp, err := Client.SetSession(CTX, &session.SetSessionRequest{ + intentID, token, _, _, err := sink.SuccessfulOAuthIntent(Instance.ID(), idpID, "id", User.GetUserId()) + require.NoError(t, err) + updateResp, err := Client.SetSession(LoginCTX, &session.SetSessionRequest{ SessionId: createResp.GetSessionId(), Checks: &session.Checks{ IdpIntent: &session.CheckIDPIntent{ @@ -369,9 +370,10 @@ func TestServer_CreateSession_successfulIntent(t *testing.T) { } func TestServer_CreateSession_successfulIntent_instant(t *testing.T) { - idpID := Instance.AddGenericOAuthProvider(t, CTX) + idpID := Instance.AddGenericOAuthProvider(IAMOwnerCTX, gofakeit.AppName()).GetId() - intentID, token, _, _ := Instance.CreateSuccessfulOAuthIntent(t, CTX, idpID, User.GetUserId(), "id") + intentID, token, _, _, err := sink.SuccessfulOAuthIntent(Instance.ID(), idpID, "id", User.GetUserId()) + require.NoError(t, err) createResp, err := Client.CreateSession(CTX, &session.CreateSessionRequest{ Checks: &session.Checks{ User: &session.CheckUser{ @@ -390,11 +392,11 @@ func TestServer_CreateSession_successfulIntent_instant(t *testing.T) { } func TestServer_CreateSession_successfulIntentUnknownUserID(t *testing.T) { - idpID := Instance.AddGenericOAuthProvider(t, CTX) + idpID := Instance.AddGenericOAuthProvider(IAMOwnerCTX, gofakeit.AppName()).GetId() // successful intent without known / linked user idpUserID := "id" - intentID, token, _, _ := Instance.CreateSuccessfulOAuthIntent(t, CTX, idpID, "", idpUserID) + intentID, token, _, _, err := sink.SuccessfulOAuthIntent(Instance.ID(), idpID, idpUserID, "") // link the user (with info from intent) Instance.CreateUserIDPlink(CTX, User.GetUserId(), idpUserID, idpID, User.GetUserId()) @@ -418,7 +420,7 @@ func TestServer_CreateSession_successfulIntentUnknownUserID(t *testing.T) { } func TestServer_CreateSession_startedIntentFalseToken(t *testing.T) { - idpID := Instance.AddGenericOAuthProvider(t, CTX) + idpID := Instance.AddGenericOAuthProvider(IAMOwnerCTX, gofakeit.AppName()).GetId() createResp, err := Client.CreateSession(CTX, &session.CreateSessionRequest{ Checks: &session.Checks{ @@ -432,19 +434,18 @@ func TestServer_CreateSession_startedIntentFalseToken(t *testing.T) { require.NoError(t, err) verifyCurrentSession(t, createResp.GetSessionId(), createResp.GetSessionToken(), createResp.GetDetails().GetSequence(), time.Minute, nil, nil, 0, User.GetUserId()) - intentID := Instance.CreateIntent(t, CTX, idpID) + intent := Instance.CreateIntent(CTX, idpID) _, err = Client.SetSession(CTX, &session.SetSessionRequest{ SessionId: createResp.GetSessionId(), Checks: &session.Checks{ IdpIntent: &session.CheckIDPIntent{ - IdpIntentId: intentID, + IdpIntentId: intent.GetIdpIntent().GetIdpIntentId(), IdpIntentToken: "false", }, }, }) require.Error(t, err) } -*/ func registerTOTP(ctx context.Context, t *testing.T, userID string) (secret string) { resp, err := Instance.Client.UserV2.RegisterTOTP(ctx, &user.RegisterTOTPRequest{ diff --git a/internal/api/grpc/session/v2beta/integration_test/session_test.go b/internal/api/grpc/session/v2beta/integration_test/session_test.go index 26d2291629..d0fc1179ef 100644 --- a/internal/api/grpc/session/v2beta/integration_test/session_test.go +++ b/internal/api/grpc/session/v2beta/integration_test/session_test.go @@ -21,6 +21,7 @@ import ( "google.golang.org/protobuf/types/known/timestamppb" "github.com/zitadel/zitadel/internal/integration" + "github.com/zitadel/zitadel/internal/integration/sink" mgmt "github.com/zitadel/zitadel/pkg/grpc/management" object "github.com/zitadel/zitadel/pkg/grpc/object/v2beta" session "github.com/zitadel/zitadel/pkg/grpc/session/v2beta" @@ -339,9 +340,8 @@ func TestServer_CreateSession_webauthn(t *testing.T) { verifyCurrentSession(t, createResp.GetSessionId(), updateResp.GetSessionToken(), updateResp.GetDetails().GetSequence(), time.Minute, nil, nil, 0, User.GetUserId(), wantUserFactor, wantWebAuthNFactorUserVerified) } -/* func TestServer_CreateSession_successfulIntent(t *testing.T) { - idpID := Instance.AddGenericOAuthProvider(t, CTX) + idpID := Instance.AddGenericOAuthProvider(IAMOwnerCTX, gofakeit.AppName()).GetId() createResp, err := Client.CreateSession(CTX, &session.CreateSessionRequest{ Checks: &session.Checks{ User: &session.CheckUser{ @@ -354,7 +354,8 @@ func TestServer_CreateSession_successfulIntent(t *testing.T) { require.NoError(t, err) verifyCurrentSession(t, createResp.GetSessionId(), createResp.GetSessionToken(), createResp.GetDetails().GetSequence(), time.Minute, nil, nil, 0, User.GetUserId()) - intentID, token, _, _ := Instance.CreateSuccessfulOAuthIntent(t, CTX, idpID, User.GetUserId(), "id") + intentID, token, _, _, err := sink.SuccessfulOAuthIntent(Instance.ID(), idpID, "id", User.GetUserId()) + require.NoError(t, err) updateResp, err := Client.SetSession(CTX, &session.SetSessionRequest{ SessionId: createResp.GetSessionId(), Checks: &session.Checks{ @@ -369,9 +370,10 @@ func TestServer_CreateSession_successfulIntent(t *testing.T) { } func TestServer_CreateSession_successfulIntent_instant(t *testing.T) { - idpID := Instance.AddGenericOAuthProvider(t, CTX) + idpID := Instance.AddGenericOAuthProvider(IAMOwnerCTX, gofakeit.AppName()).GetId() - intentID, token, _, _ := Instance.CreateSuccessfulOAuthIntent(t, CTX, idpID, User.GetUserId(), "id") + intentID, token, _, _, err := sink.SuccessfulOAuthIntent(Instance.ID(), idpID, "id", User.GetUserId()) + require.NoError(t, err) createResp, err := Client.CreateSession(CTX, &session.CreateSessionRequest{ Checks: &session.Checks{ User: &session.CheckUser{ @@ -390,11 +392,12 @@ func TestServer_CreateSession_successfulIntent_instant(t *testing.T) { } func TestServer_CreateSession_successfulIntentUnknownUserID(t *testing.T) { - idpID := Instance.AddGenericOAuthProvider(t, CTX) + idpID := Instance.AddGenericOAuthProvider(IAMOwnerCTX, gofakeit.AppName()).GetId() // successful intent without known / linked user idpUserID := "id" - intentID, token, _, _ := Instance.CreateSuccessfulOAuthIntent(t, CTX, idpID, "", idpUserID) + intentID, token, _, _, err := sink.SuccessfulOAuthIntent(Instance.ID(), idpID, "id", User.GetUserId()) + require.NoError(t, err) // link the user (with info from intent) Instance.CreateUserIDPlink(CTX, User.GetUserId(), idpUserID, idpID, User.GetUserId()) @@ -418,7 +421,7 @@ func TestServer_CreateSession_successfulIntentUnknownUserID(t *testing.T) { } func TestServer_CreateSession_startedIntentFalseToken(t *testing.T) { - idpID := Instance.AddGenericOAuthProvider(t, CTX) + idpID := Instance.AddGenericOAuthProvider(IAMOwnerCTX, gofakeit.AppName()).GetId() createResp, err := Client.CreateSession(CTX, &session.CreateSessionRequest{ Checks: &session.Checks{ @@ -432,19 +435,18 @@ func TestServer_CreateSession_startedIntentFalseToken(t *testing.T) { require.NoError(t, err) verifyCurrentSession(t, createResp.GetSessionId(), createResp.GetSessionToken(), createResp.GetDetails().GetSequence(), time.Minute, nil, nil, 0, User.GetUserId()) - intentID := Instance.CreateIntent(t, CTX, idpID) + intent := Instance.CreateIntent(CTX, idpID) _, err = Client.SetSession(CTX, &session.SetSessionRequest{ SessionId: createResp.GetSessionId(), Checks: &session.Checks{ IdpIntent: &session.CheckIDPIntent{ - IdpIntentId: intentID, + IdpIntentId: intent.GetIdpIntent().GetIdpIntentId(), IdpIntentToken: "false", }, }, }) require.Error(t, err) } -*/ func registerTOTP(ctx context.Context, t *testing.T, userID string) (secret string) { resp, err := Instance.Client.UserV2.RegisterTOTP(ctx, &user.RegisterTOTPRequest{ diff --git a/internal/api/grpc/settings/v2/settings.go b/internal/api/grpc/settings/v2/settings.go index 8b9ab9b845..77874bf970 100644 --- a/internal/api/grpc/settings/v2/settings.go +++ b/internal/api/grpc/settings/v2/settings.go @@ -23,6 +23,7 @@ func (s *Server) GetLoginSettings(ctx context.Context, req *settings.GetLoginSet Settings: loginSettingsToPb(current), Details: &object_pb.Details{ Sequence: current.Sequence, + CreationDate: timestamppb.New(current.CreationDate), ChangeDate: timestamppb.New(current.ChangeDate), ResourceOwner: current.OrgID, }, @@ -38,6 +39,7 @@ func (s *Server) GetPasswordComplexitySettings(ctx context.Context, req *setting Settings: passwordComplexitySettingsToPb(current), Details: &object_pb.Details{ Sequence: current.Sequence, + CreationDate: timestamppb.New(current.CreationDate), ChangeDate: timestamppb.New(current.ChangeDate), ResourceOwner: current.ResourceOwner, }, @@ -53,6 +55,7 @@ func (s *Server) GetPasswordExpirySettings(ctx context.Context, req *settings.Ge Settings: passwordExpirySettingsToPb(current), Details: &object_pb.Details{ Sequence: current.Sequence, + CreationDate: timestamppb.New(current.CreationDate), ChangeDate: timestamppb.New(current.ChangeDate), ResourceOwner: current.ResourceOwner, }, @@ -68,6 +71,7 @@ func (s *Server) GetBrandingSettings(ctx context.Context, req *settings.GetBrand Settings: brandingSettingsToPb(current, s.assetsAPIDomain(ctx)), Details: &object_pb.Details{ Sequence: current.Sequence, + CreationDate: timestamppb.New(current.CreationDate), ChangeDate: timestamppb.New(current.ChangeDate), ResourceOwner: current.ResourceOwner, }, @@ -83,6 +87,7 @@ func (s *Server) GetDomainSettings(ctx context.Context, req *settings.GetDomainS Settings: domainSettingsToPb(current), Details: &object_pb.Details{ Sequence: current.Sequence, + CreationDate: timestamppb.New(current.CreationDate), ChangeDate: timestamppb.New(current.ChangeDate), ResourceOwner: current.ResourceOwner, }, @@ -98,6 +103,7 @@ func (s *Server) GetLegalAndSupportSettings(ctx context.Context, req *settings.G Settings: legalAndSupportSettingsToPb(current), Details: &object_pb.Details{ Sequence: current.Sequence, + CreationDate: timestamppb.New(current.CreationDate), ChangeDate: timestamppb.New(current.ChangeDate), ResourceOwner: current.ResourceOwner, }, @@ -113,6 +119,7 @@ func (s *Server) GetLockoutSettings(ctx context.Context, req *settings.GetLockou Settings: lockoutSettingsToPb(current), Details: &object_pb.Details{ Sequence: current.Sequence, + CreationDate: timestamppb.New(current.CreationDate), ChangeDate: timestamppb.New(current.ChangeDate), ResourceOwner: current.ResourceOwner, }, diff --git a/internal/api/grpc/settings/v2beta/settings.go b/internal/api/grpc/settings/v2beta/settings.go index 677d8f1c15..6193f129ba 100644 --- a/internal/api/grpc/settings/v2beta/settings.go +++ b/internal/api/grpc/settings/v2beta/settings.go @@ -23,6 +23,7 @@ func (s *Server) GetLoginSettings(ctx context.Context, req *settings.GetLoginSet Settings: loginSettingsToPb(current), Details: &object_pb.Details{ Sequence: current.Sequence, + CreationDate: timestamppb.New(current.CreationDate), ChangeDate: timestamppb.New(current.ChangeDate), ResourceOwner: current.OrgID, }, @@ -38,6 +39,7 @@ func (s *Server) GetPasswordComplexitySettings(ctx context.Context, req *setting Settings: passwordComplexitySettingsToPb(current), Details: &object_pb.Details{ Sequence: current.Sequence, + CreationDate: timestamppb.New(current.CreationDate), ChangeDate: timestamppb.New(current.ChangeDate), ResourceOwner: current.ResourceOwner, }, @@ -53,6 +55,7 @@ func (s *Server) GetPasswordExpirySettings(ctx context.Context, req *settings.Ge Settings: passwordExpirySettingsToPb(current), Details: &object_pb.Details{ Sequence: current.Sequence, + CreationDate: timestamppb.New(current.CreationDate), ChangeDate: timestamppb.New(current.ChangeDate), ResourceOwner: current.ResourceOwner, }, @@ -68,6 +71,7 @@ func (s *Server) GetBrandingSettings(ctx context.Context, req *settings.GetBrand Settings: brandingSettingsToPb(current, s.assetsAPIDomain(ctx)), Details: &object_pb.Details{ Sequence: current.Sequence, + CreationDate: timestamppb.New(current.CreationDate), ChangeDate: timestamppb.New(current.ChangeDate), ResourceOwner: current.ResourceOwner, }, @@ -83,6 +87,7 @@ func (s *Server) GetDomainSettings(ctx context.Context, req *settings.GetDomainS Settings: domainSettingsToPb(current), Details: &object_pb.Details{ Sequence: current.Sequence, + CreationDate: timestamppb.New(current.CreationDate), ChangeDate: timestamppb.New(current.ChangeDate), ResourceOwner: current.ResourceOwner, }, @@ -98,6 +103,7 @@ func (s *Server) GetLegalAndSupportSettings(ctx context.Context, req *settings.G Settings: legalAndSupportSettingsToPb(current), Details: &object_pb.Details{ Sequence: current.Sequence, + CreationDate: timestamppb.New(current.CreationDate), ChangeDate: timestamppb.New(current.ChangeDate), ResourceOwner: current.ResourceOwner, }, @@ -113,6 +119,7 @@ func (s *Server) GetLockoutSettings(ctx context.Context, req *settings.GetLockou Settings: lockoutSettingsToPb(current), Details: &object_pb.Details{ Sequence: current.Sequence, + CreationDate: timestamppb.New(current.CreationDate), ChangeDate: timestamppb.New(current.ChangeDate), ResourceOwner: current.ResourceOwner, }, diff --git a/internal/api/grpc/system/instance_converter.go b/internal/api/grpc/system/instance_converter.go index 551079aec5..6826cb5694 100644 --- a/internal/api/grpc/system/instance_converter.go +++ b/internal/api/grpc/system/instance_converter.go @@ -15,6 +15,7 @@ import ( "github.com/zitadel/zitadel/internal/domain" "github.com/zitadel/zitadel/internal/query" instance_pb "github.com/zitadel/zitadel/pkg/grpc/instance" + member_pb "github.com/zitadel/zitadel/pkg/grpc/member" system_pb "github.com/zitadel/zitadel/pkg/grpc/system" ) @@ -271,12 +272,29 @@ func ListIAMMembersRequestToQuery(req *system_pb.ListIAMMembersRequest) (*query. return &query.IAMMembersQuery{ MembersQuery: query.MembersQuery{ SearchRequest: query.SearchRequest{ - Offset: offset, - Limit: limit, - Asc: asc, - // SortingColumn: model.IAMMemberSearchKey, //TOOD: not implemented in proto + Offset: offset, + Limit: limit, + Asc: asc, + SortingColumn: fieldNameToMemberColumn(req.SortingColumn), }, Queries: queries, }, }, nil } + +func fieldNameToMemberColumn(fieldName member_pb.MemberFieldColumnName) query.Column { + switch fieldName { + case member_pb.MemberFieldColumnName_MEMBER_FIELD_NAME_UNSPECIFIED: + return query.InstanceMemberInstanceID + case member_pb.MemberFieldColumnName_MEMBER_FIELD_NAME_USER_ID: + return query.InstanceMemberUserID + case member_pb.MemberFieldColumnName_MEMBER_FIELD_NAME_CREATION_DATE: + return query.InstanceMemberCreationDate + case member_pb.MemberFieldColumnName_MEMBER_FIELD_NAME_CHANGE_DATE: + return query.InstanceMemberChangeDate + case member_pb.MemberFieldColumnName_MEMBER_FIELD_NAME_USER_RESOURCE_OWNER: + return query.InstanceMemberResourceOwner + default: + return query.Column{} + } +} diff --git a/internal/api/grpc/user/v2/integration_test/query_test.go b/internal/api/grpc/user/v2/integration_test/query_test.go index 2551a4a833..554de2b69a 100644 --- a/internal/api/grpc/user/v2/integration_test/query_test.go +++ b/internal/api/grpc/user/v2/integration_test/query_test.go @@ -4,6 +4,7 @@ package user_test import ( "context" + "errors" "fmt" "slices" "testing" @@ -16,10 +17,61 @@ import ( "google.golang.org/protobuf/types/known/timestamppb" "github.com/zitadel/zitadel/internal/integration" + "github.com/zitadel/zitadel/pkg/grpc/feature/v2" "github.com/zitadel/zitadel/pkg/grpc/object/v2" + "github.com/zitadel/zitadel/pkg/grpc/session/v2" "github.com/zitadel/zitadel/pkg/grpc/user/v2" ) +var ( + permissionCheckV2SetFlagInital bool + permissionCheckV2SetFlag bool +) + +type permissionCheckV2SettingsStruct struct { + TestNamePrependString string + SetFlag bool +} + +var permissionCheckV2Settings []permissionCheckV2SettingsStruct = []permissionCheckV2SettingsStruct{ + { + SetFlag: false, + TestNamePrependString: "permission_check_v2 IS NOT SET" + " ", + }, + { + SetFlag: true, + TestNamePrependString: "permission_check_v2 IS SET" + " ", + }, +} + +func setPermissionCheckV2Flag(t *testing.T, setFlag bool) { + if permissionCheckV2SetFlagInital && permissionCheckV2SetFlag == setFlag { + return + } + + _, err := Instance.Client.FeatureV2.SetInstanceFeatures(IamCTX, &feature.SetInstanceFeaturesRequest{ + PermissionCheckV2: &setFlag, + }) + require.NoError(t, err) + + var flagSet bool + for i := 0; !flagSet || i < 6; i++ { + res, err := Instance.Client.FeatureV2.GetInstanceFeatures(IamCTX, &feature.GetInstanceFeaturesRequest{}) + require.NoError(t, err) + if res.PermissionCheckV2.Enabled == setFlag { + flagSet = true + continue + } + time.Sleep(10 * time.Second) + } + + if !flagSet { + require.NoError(t, errors.New("unable to set permission_check_v2 flag")) + } + permissionCheckV2SetFlagInital = true + permissionCheckV2SetFlag = setFlag +} + func TestServer_GetUserByID(t *testing.T) { orgResp := Instance.CreateOrganization(IamCTX, fmt.Sprintf("GetUserByIDOrg-%s", gofakeit.AppName()), gofakeit.Email()) type args struct { @@ -98,6 +150,7 @@ func TestServer_GetUserByID(t *testing.T) { }, Details: &object.Details{ ChangeDate: timestamppb.Now(), + CreationDate: timestamppb.Now(), ResourceOwner: orgResp.OrganizationId, }, }, @@ -143,6 +196,7 @@ func TestServer_GetUserByID(t *testing.T) { }, Details: &object.Details{ ChangeDate: timestamppb.Now(), + CreationDate: timestamppb.Now(), ResourceOwner: orgResp.OrganizationId, }, }, @@ -230,6 +284,7 @@ func TestServer_GetUserByID_Permission(t *testing.T) { }, Details: &object.Details{ ChangeDate: timestamppb.Now(), + CreationDate: timestamppb.Now(), ResourceOwner: newOrg.GetOrganizationId(), }, }, @@ -268,6 +323,7 @@ func TestServer_GetUserByID_Permission(t *testing.T) { }, Details: &object.Details{ ChangeDate: timestamppb.Now(), + CreationDate: timestamppb.Now(), ResourceOwner: newOrg.GetOrganizationId(), }, }, @@ -363,6 +419,8 @@ func createUser(ctx context.Context, orgID string, passwordChangeRequired bool) phone := "+41" + gofakeit.Phone() resp := Instance.CreateHumanUserVerified(ctx, orgID, username, phone) info := userAttr{resp.GetUserId(), username, phone, nil, resp.GetDetails()} + // as the change date of the creation is the creation date + resp.Details.CreationDate = resp.GetDetails().GetChangeDate() if passwordChangeRequired { details := Instance.SetUserPassword(ctx, resp.GetUserId(), integration.UserPassword, true) info.Changed = details.GetChangeDate() @@ -371,6 +429,11 @@ func createUser(ctx context.Context, orgID string, passwordChangeRequired bool) } func TestServer_ListUsers(t *testing.T) { + defer func() { + _, err := Instance.Client.FeatureV2.ResetInstanceFeatures(IamCTX, &feature.ResetInstanceFeaturesRequest{}) + require.NoError(t, err) + }() + orgResp := Instance.CreateOrganization(IamCTX, fmt.Sprintf("ListUsersOrg-%s", gofakeit.AppName()), gofakeit.Email()) type args struct { ctx context.Context @@ -384,7 +447,7 @@ func TestServer_ListUsers(t *testing.T) { wantErr bool }{ { - name: "list user by id, no permission", + name: "list user by id, no permission machine user", args: args{ UserCTX, &user.ListUsersRequest{}, @@ -403,17 +466,77 @@ func TestServer_ListUsers(t *testing.T) { Result: []*user.User{}, }, }, + { + name: "list user by id, no permission human user", + args: func() args { + info := createUser(IamCTX, orgResp.OrganizationId, true) + // create session to get token + userID := info.UserID + createResp, err := Instance.Client.SessionV2.CreateSession(IamCTX, &session.CreateSessionRequest{ + Checks: &session.Checks{ + User: &session.CheckUser{ + Search: &session.CheckUser_UserId{UserId: userID}, + }, + Password: &session.CheckPassword{ + Password: integration.UserPassword, + }, + }, + }) + if err != nil { + require.NoError(t, err) + } + // use token to get ctx + HumanCTX := integration.WithAuthorizationToken(IamCTX, createResp.GetSessionToken()) + return args{ + HumanCTX, + &user.ListUsersRequest{}, + func(ctx context.Context, request *user.ListUsersRequest) userAttrs { + return []userAttr{info} + }, + } + }(), + want: &user.ListUsersResponse{ // human user should return itself when calling ListUsers() even if it has no permissions + Details: &object.ListDetails{ + TotalResult: 1, + Timestamp: timestamppb.Now(), + }, + SortingColumn: 0, + Result: []*user.User{ + { + State: user.UserState_USER_STATE_ACTIVE, + Type: &user.User_Human{ + Human: &user.HumanUser{ + Profile: &user.HumanProfile{ + GivenName: "Mickey", + FamilyName: "Mouse", + NickName: gu.Ptr("Mickey"), + DisplayName: gu.Ptr("Mickey Mouse"), + PreferredLanguage: gu.Ptr("nl"), + Gender: user.Gender_GENDER_MALE.Enum(), + }, + Email: &user.HumanEmail{ + IsVerified: true, + }, + Phone: &user.HumanPhone{ + IsVerified: true, + }, + PasswordChangeRequired: true, + PasswordChanged: timestamppb.Now(), + }, + }, + }, + }, + }, + }, { name: "list user by id, ok", args: args{ IamCTX, - &user.ListUsersRequest{ - Queries: []*user.SearchQuery{ - OrganizationIdQuery(orgResp.OrganizationId), - }, - }, + &user.ListUsersRequest{}, func(ctx context.Context, request *user.ListUsersRequest) userAttrs { info := createUser(ctx, orgResp.OrganizationId, false) + request.Queries = []*user.SearchQuery{} + request.Queries = append(request.Queries, OrganizationIdQuery(orgResp.OrganizationId)) request.Queries = append(request.Queries, InUserIDsQuery([]string{info.UserID})) return []userAttr{info} }, @@ -453,13 +576,11 @@ func TestServer_ListUsers(t *testing.T) { name: "list user by id, passwordChangeRequired, ok", args: args{ IamCTX, - &user.ListUsersRequest{ - Queries: []*user.SearchQuery{ - OrganizationIdQuery(orgResp.OrganizationId), - }, - }, + &user.ListUsersRequest{}, func(ctx context.Context, request *user.ListUsersRequest) userAttrs { info := createUser(ctx, orgResp.OrganizationId, true) + request.Queries = []*user.SearchQuery{} + request.Queries = append(request.Queries, OrganizationIdQuery(orgResp.OrganizationId)) request.Queries = append(request.Queries, InUserIDsQuery([]string{info.UserID})) return []userAttr{info} }, @@ -501,13 +622,11 @@ func TestServer_ListUsers(t *testing.T) { name: "list user by id multiple, ok", args: args{ IamCTX, - &user.ListUsersRequest{ - Queries: []*user.SearchQuery{ - OrganizationIdQuery(orgResp.OrganizationId), - }, - }, + &user.ListUsersRequest{}, func(ctx context.Context, request *user.ListUsersRequest) userAttrs { infos := createUsers(ctx, orgResp.OrganizationId, 3, false) + request.Queries = []*user.SearchQuery{} + request.Queries = append(request.Queries, OrganizationIdQuery(orgResp.OrganizationId)) request.Queries = append(request.Queries, InUserIDsQuery(infos.userIDs())) return infos }, @@ -560,7 +679,8 @@ func TestServer_ListUsers(t *testing.T) { }, }, }, - }, { + }, + { State: user.UserState_USER_STATE_ACTIVE, Type: &user.User_Human{ Human: &user.HumanUser{ @@ -588,13 +708,11 @@ func TestServer_ListUsers(t *testing.T) { name: "list user by username, ok", args: args{ IamCTX, - &user.ListUsersRequest{ - Queries: []*user.SearchQuery{ - OrganizationIdQuery(orgResp.OrganizationId), - }, - }, + &user.ListUsersRequest{}, func(ctx context.Context, request *user.ListUsersRequest) userAttrs { info := createUser(ctx, orgResp.OrganizationId, false) + request.Queries = []*user.SearchQuery{} + request.Queries = append(request.Queries, OrganizationIdQuery(orgResp.OrganizationId)) request.Queries = append(request.Queries, UsernameQuery(info.Username)) return []userAttr{info} }, @@ -634,13 +752,11 @@ func TestServer_ListUsers(t *testing.T) { name: "list user in emails, ok", args: args{ IamCTX, - &user.ListUsersRequest{ - Queries: []*user.SearchQuery{ - OrganizationIdQuery(orgResp.OrganizationId), - }, - }, + &user.ListUsersRequest{}, func(ctx context.Context, request *user.ListUsersRequest) userAttrs { info := createUser(ctx, orgResp.OrganizationId, false) + request.Queries = []*user.SearchQuery{} + request.Queries = append(request.Queries, OrganizationIdQuery(orgResp.OrganizationId)) request.Queries = append(request.Queries, InUserEmailsQuery([]string{info.Username})) return []userAttr{info} }, @@ -678,189 +794,12 @@ func TestServer_ListUsers(t *testing.T) { }, { name: "list user in emails multiple, ok", - args: args{ - IamCTX, - &user.ListUsersRequest{ - Queries: []*user.SearchQuery{ - OrganizationIdQuery(orgResp.OrganizationId), - }, - }, - func(ctx context.Context, request *user.ListUsersRequest) userAttrs { - infos := createUsers(ctx, orgResp.OrganizationId, 3, false) - request.Queries = append(request.Queries, InUserEmailsQuery(infos.emails())) - return infos - }, - }, - want: &user.ListUsersResponse{ - Details: &object.ListDetails{ - TotalResult: 3, - Timestamp: timestamppb.Now(), - }, - SortingColumn: 0, - Result: []*user.User{ - { - State: user.UserState_USER_STATE_ACTIVE, - Type: &user.User_Human{ - Human: &user.HumanUser{ - Profile: &user.HumanProfile{ - GivenName: "Mickey", - FamilyName: "Mouse", - NickName: gu.Ptr("Mickey"), - DisplayName: gu.Ptr("Mickey Mouse"), - PreferredLanguage: gu.Ptr("nl"), - Gender: user.Gender_GENDER_MALE.Enum(), - }, - Email: &user.HumanEmail{ - IsVerified: true, - }, - Phone: &user.HumanPhone{ - IsVerified: true, - }, - }, - }, - }, { - State: user.UserState_USER_STATE_ACTIVE, - Type: &user.User_Human{ - Human: &user.HumanUser{ - Profile: &user.HumanProfile{ - GivenName: "Mickey", - FamilyName: "Mouse", - NickName: gu.Ptr("Mickey"), - DisplayName: gu.Ptr("Mickey Mouse"), - PreferredLanguage: gu.Ptr("nl"), - Gender: user.Gender_GENDER_MALE.Enum(), - }, - Email: &user.HumanEmail{ - IsVerified: true, - }, - Phone: &user.HumanPhone{ - IsVerified: true, - }, - }, - }, - }, { - State: user.UserState_USER_STATE_ACTIVE, - Type: &user.User_Human{ - Human: &user.HumanUser{ - Profile: &user.HumanProfile{ - GivenName: "Mickey", - FamilyName: "Mouse", - NickName: gu.Ptr("Mickey"), - DisplayName: gu.Ptr("Mickey Mouse"), - PreferredLanguage: gu.Ptr("nl"), - Gender: user.Gender_GENDER_MALE.Enum(), - }, - Email: &user.HumanEmail{ - IsVerified: true, - }, - Phone: &user.HumanPhone{ - IsVerified: true, - }, - }, - }, - }, - }, - }, - }, - { - name: "list user in emails no found, ok", - args: args{ - IamCTX, - &user.ListUsersRequest{Queries: []*user.SearchQuery{ - OrganizationIdQuery(orgResp.OrganizationId), - InUserEmailsQuery([]string{"notfound"}), - }, - }, - func(ctx context.Context, request *user.ListUsersRequest) userAttrs { - return []userAttr{} - }, - }, - want: &user.ListUsersResponse{ - Details: &object.ListDetails{ - TotalResult: 0, - Timestamp: timestamppb.Now(), - }, - SortingColumn: 0, - Result: []*user.User{}, - }, - }, - { - name: "list user phone, ok", - args: args{ - IamCTX, - &user.ListUsersRequest{ - Queries: []*user.SearchQuery{ - OrganizationIdQuery(orgResp.OrganizationId), - }, - }, - func(ctx context.Context, request *user.ListUsersRequest) userAttrs { - info := createUser(ctx, orgResp.OrganizationId, false) - request.Queries = append(request.Queries, PhoneQuery(info.Phone)) - return []userAttr{info} - }, - }, - want: &user.ListUsersResponse{ - Details: &object.ListDetails{ - TotalResult: 1, - Timestamp: timestamppb.Now(), - }, - SortingColumn: 0, - Result: []*user.User{ - { - State: user.UserState_USER_STATE_ACTIVE, - Type: &user.User_Human{ - Human: &user.HumanUser{ - Profile: &user.HumanProfile{ - GivenName: "Mickey", - FamilyName: "Mouse", - NickName: gu.Ptr("Mickey"), - DisplayName: gu.Ptr("Mickey Mouse"), - PreferredLanguage: gu.Ptr("nl"), - Gender: user.Gender_GENDER_MALE.Enum(), - }, - Email: &user.HumanEmail{ - IsVerified: true, - }, - Phone: &user.HumanPhone{ - IsVerified: true, - }, - }, - }, - }, - }, - }, - }, - { - name: "list user in emails no found, ok", - args: args{ - IamCTX, - &user.ListUsersRequest{Queries: []*user.SearchQuery{ - OrganizationIdQuery(orgResp.OrganizationId), - InUserEmailsQuery([]string{"notfound"}), - }, - }, - func(ctx context.Context, request *user.ListUsersRequest) userAttrs { - return []userAttr{} - }, - }, - want: &user.ListUsersResponse{ - Details: &object.ListDetails{ - TotalResult: 0, - Timestamp: timestamppb.Now(), - }, - SortingColumn: 0, - Result: []*user.User{}, - }, - }, - { - name: "list user resourceowner multiple, ok", args: args{ IamCTX, &user.ListUsersRequest{}, func(ctx context.Context, request *user.ListUsersRequest) userAttrs { - orgResp := Instance.CreateOrganization(ctx, fmt.Sprintf("ListUsersResourceowner-%s", gofakeit.AppName()), gofakeit.Email()) - infos := createUsers(ctx, orgResp.OrganizationId, 3, false) + request.Queries = []*user.SearchQuery{} request.Queries = append(request.Queries, OrganizationIdQuery(orgResp.OrganizationId)) request.Queries = append(request.Queries, InUserEmailsQuery(infos.emails())) return infos @@ -937,93 +876,355 @@ func TestServer_ListUsers(t *testing.T) { }, }, }, + { + name: "list user in emails no found, ok", + args: args{ + IamCTX, + &user.ListUsersRequest{ + Queries: []*user.SearchQuery{ + OrganizationIdQuery(orgResp.OrganizationId), + InUserEmailsQuery([]string{"notfound"}), + }, + }, + func(ctx context.Context, request *user.ListUsersRequest) userAttrs { + return []userAttr{} + }, + }, + want: &user.ListUsersResponse{ + Details: &object.ListDetails{ + TotalResult: 0, + Timestamp: timestamppb.Now(), + }, + SortingColumn: 0, + Result: []*user.User{}, + }, + }, + { + name: "list user phone, ok", + args: args{ + IamCTX, + &user.ListUsersRequest{}, + func(ctx context.Context, request *user.ListUsersRequest) userAttrs { + info := createUser(ctx, orgResp.OrganizationId, false) + request.Queries = []*user.SearchQuery{} + request.Queries = append(request.Queries, OrganizationIdQuery(orgResp.OrganizationId)) + request.Queries = append(request.Queries, PhoneQuery(info.Phone)) + return []userAttr{info} + }, + }, + want: &user.ListUsersResponse{ + Details: &object.ListDetails{ + TotalResult: 1, + Timestamp: timestamppb.Now(), + }, + SortingColumn: 0, + Result: []*user.User{ + { + State: user.UserState_USER_STATE_ACTIVE, + Type: &user.User_Human{ + Human: &user.HumanUser{ + Profile: &user.HumanProfile{ + GivenName: "Mickey", + FamilyName: "Mouse", + NickName: gu.Ptr("Mickey"), + DisplayName: gu.Ptr("Mickey Mouse"), + PreferredLanguage: gu.Ptr("nl"), + Gender: user.Gender_GENDER_MALE.Enum(), + }, + Email: &user.HumanEmail{ + IsVerified: true, + }, + Phone: &user.HumanPhone{ + IsVerified: true, + }, + }, + }, + }, + }, + }, + }, + { + name: "list user in emails no found, ok", + args: args{ + IamCTX, + &user.ListUsersRequest{ + Queries: []*user.SearchQuery{ + OrganizationIdQuery(orgResp.OrganizationId), + InUserEmailsQuery([]string{"notfound"}), + }, + }, + func(ctx context.Context, request *user.ListUsersRequest) userAttrs { + return []userAttr{} + }, + }, + want: &user.ListUsersResponse{ + Details: &object.ListDetails{ + TotalResult: 0, + Timestamp: timestamppb.Now(), + }, + SortingColumn: 0, + Result: []*user.User{}, + }, + }, + { + name: "list user resourceowner multiple, ok", + args: args{ + IamCTX, + &user.ListUsersRequest{}, + func(ctx context.Context, request *user.ListUsersRequest) userAttrs { + orgResp := Instance.CreateOrganization(ctx, fmt.Sprintf("ListUsersResourceowner-%s", gofakeit.AppName()), gofakeit.Email()) + + infos := createUsers(ctx, orgResp.OrganizationId, 3, false) + request.Queries = []*user.SearchQuery{} + request.Queries = append(request.Queries, OrganizationIdQuery(orgResp.OrganizationId)) + request.Queries = append(request.Queries, InUserEmailsQuery(infos.emails())) + return infos + }, + }, + want: &user.ListUsersResponse{ + Details: &object.ListDetails{ + TotalResult: 3, + Timestamp: timestamppb.Now(), + }, + SortingColumn: 0, + Result: []*user.User{ + { + State: user.UserState_USER_STATE_ACTIVE, + Type: &user.User_Human{ + Human: &user.HumanUser{ + Profile: &user.HumanProfile{ + GivenName: "Mickey", + FamilyName: "Mouse", + NickName: gu.Ptr("Mickey"), + DisplayName: gu.Ptr("Mickey Mouse"), + PreferredLanguage: gu.Ptr("nl"), + Gender: user.Gender_GENDER_MALE.Enum(), + }, + Email: &user.HumanEmail{ + IsVerified: true, + }, + Phone: &user.HumanPhone{ + IsVerified: true, + }, + }, + }, + }, { + State: user.UserState_USER_STATE_ACTIVE, + Type: &user.User_Human{ + Human: &user.HumanUser{ + Profile: &user.HumanProfile{ + GivenName: "Mickey", + FamilyName: "Mouse", + NickName: gu.Ptr("Mickey"), + DisplayName: gu.Ptr("Mickey Mouse"), + PreferredLanguage: gu.Ptr("nl"), + Gender: user.Gender_GENDER_MALE.Enum(), + }, + Email: &user.HumanEmail{ + IsVerified: true, + }, + Phone: &user.HumanPhone{ + IsVerified: true, + }, + }, + }, + }, { + State: user.UserState_USER_STATE_ACTIVE, + Type: &user.User_Human{ + Human: &user.HumanUser{ + Profile: &user.HumanProfile{ + GivenName: "Mickey", + FamilyName: "Mouse", + NickName: gu.Ptr("Mickey"), + DisplayName: gu.Ptr("Mickey Mouse"), + PreferredLanguage: gu.Ptr("nl"), + Gender: user.Gender_GENDER_MALE.Enum(), + }, + Email: &user.HumanEmail{ + IsVerified: true, + }, + Phone: &user.HumanPhone{ + IsVerified: true, + }, + }, + }, + }, + }, + }, + }, + { + name: "list user with org query", + args: args{ + IamCTX, + &user.ListUsersRequest{}, + func(ctx context.Context, request *user.ListUsersRequest) userAttrs { + orgRespForOrgTests := Instance.CreateOrganization(IamCTX, fmt.Sprintf("GetUserByIDOrg-%s", gofakeit.AppName()), gofakeit.Email()) + info := createUser(ctx, orgRespForOrgTests.OrganizationId, false) + request.Queries = []*user.SearchQuery{} + request.Queries = append(request.Queries, OrganizationIdQuery(orgRespForOrgTests.OrganizationId)) + return []userAttr{info, {}} + }, + }, + want: &user.ListUsersResponse{ + Details: &object.ListDetails{ + TotalResult: 2, + Timestamp: timestamppb.Now(), + }, + SortingColumn: 0, + Result: []*user.User{ + { + State: user.UserState_USER_STATE_ACTIVE, + Type: &user.User_Human{ + Human: &user.HumanUser{ + Profile: &user.HumanProfile{ + GivenName: "Mickey", + FamilyName: "Mouse", + NickName: gu.Ptr("Mickey"), + DisplayName: gu.Ptr("Mickey Mouse"), + PreferredLanguage: gu.Ptr("nl"), + Gender: user.Gender_GENDER_MALE.Enum(), + }, + Email: &user.HumanEmail{ + IsVerified: true, + }, + Phone: &user.HumanPhone{ + IsVerified: true, + }, + }, + }, + }, + // this is the admin of the org craated in Instance.CreateOrganization() + nil, + }, + }, + }, + { + name: "list user with wrong org query", + args: args{ + IamCTX, + &user.ListUsersRequest{}, + func(ctx context.Context, request *user.ListUsersRequest) userAttrs { + orgRespForOrgTests := Instance.CreateOrganization(IamCTX, fmt.Sprintf("GetUserByIDOrg-%s", gofakeit.AppName()), gofakeit.Email()) + orgRespForOrgTests2 := Instance.CreateOrganization(IamCTX, fmt.Sprintf("GetUserByIDOrg-%s", gofakeit.AppName()), gofakeit.Email()) + // info := createUser(ctx, orgRespForOrgTests.OrganizationId, false) + createUser(ctx, orgRespForOrgTests.OrganizationId, false) + request.Queries = []*user.SearchQuery{} + request.Queries = append(request.Queries, OrganizationIdQuery(orgRespForOrgTests2.OrganizationId)) + return []userAttr{{}} + }, + }, + want: &user.ListUsersResponse{ + Details: &object.ListDetails{ + TotalResult: 0, + Timestamp: timestamppb.Now(), + }, + SortingColumn: 0, + Result: []*user.User{ + // this is the admin of the org craated in Instance.CreateOrganization() + nil, + }, + }, + }, } - for _, tt := range tests { - t.Run(tt.name, func(t *testing.T) { - infos := tt.args.dep(IamCTX, tt.args.req) + for _, f := range permissionCheckV2Settings { + f := f + for _, tt := range tests { + t.Run(f.TestNamePrependString+tt.name, func(t *testing.T) { + setPermissionCheckV2Flag(t, f.SetFlag) + infos := tt.args.dep(IamCTX, tt.args.req) - retryDuration, tick := integration.WaitForAndTickWithMaxDuration(tt.args.ctx, time.Minute) - require.EventuallyWithT(t, func(ttt *assert.CollectT) { - got, err := Client.ListUsers(tt.args.ctx, tt.args.req) - if tt.wantErr { - require.Error(ttt, err) - return - } - require.NoError(ttt, err) + retryDuration, tick := integration.WaitForAndTickWithMaxDuration(tt.args.ctx, 10*time.Minute) + require.EventuallyWithT(t, func(ttt *assert.CollectT) { + got, err := Client.ListUsers(tt.args.ctx, tt.args.req) + if tt.wantErr { + require.Error(ttt, err) + return + } + require.NoError(ttt, err) - // always only give back dependency infos which are required for the response - require.Len(ttt, tt.want.Result, len(infos)) - // always first check length, otherwise its failed anyway - if assert.Len(ttt, got.Result, len(tt.want.Result)) { - // totalResult is unrelated to the tests here so gets carried over, can vary from the count of results due to permissions - tt.want.Details.TotalResult = got.Details.TotalResult + // always only give back dependency infos which are required for the response + require.Len(ttt, tt.want.Result, len(infos)) + if assert.Len(ttt, got.Result, len(tt.want.Result)) { + tt.want.Details.TotalResult = got.Details.TotalResult - // fill in userid and username as it is generated - for i := range infos { - tt.want.Result[i].UserId = infos[i].UserID - tt.want.Result[i].Username = infos[i].Username - tt.want.Result[i].PreferredLoginName = infos[i].Username - tt.want.Result[i].LoginNames = []string{infos[i].Username} - if human := tt.want.Result[i].GetHuman(); human != nil { - human.Email.Email = infos[i].Username - human.Phone.Phone = infos[i].Phone - if tt.want.Result[i].GetHuman().GetPasswordChanged() != nil { - human.PasswordChanged = infos[i].Changed + // fill in userid and username as it is generated + for i := range infos { + if tt.want.Result[i] == nil { + continue } + tt.want.Result[i].UserId = infos[i].UserID + tt.want.Result[i].Username = infos[i].Username + tt.want.Result[i].PreferredLoginName = infos[i].Username + tt.want.Result[i].LoginNames = []string{infos[i].Username} + if human := tt.want.Result[i].GetHuman(); human != nil { + human.Email.Email = infos[i].Username + human.Phone.Phone = infos[i].Phone + if tt.want.Result[i].GetHuman().GetPasswordChanged() != nil { + human.PasswordChanged = infos[i].Changed + } + } + tt.want.Result[i].Details = infos[i].Details + } + for i := range tt.want.Result { + if tt.want.Result[i] == nil { + continue + } + assert.EqualExportedValues(ttt, got.Result[i], tt.want.Result[i]) } - tt.want.Result[i].Details = infos[i].Details } - for i := range tt.want.Result { - assert.EqualExportedValues(ttt, got.Result[i], tt.want.Result[i]) - } - } - integration.AssertListDetails(ttt, tt.want, got) - }, retryDuration, tick, "timeout waiting for expected user result") - }) + integration.AssertListDetails(ttt, tt.want, got) + }, retryDuration, tick, "timeout waiting for expected user result") + }) + } } } func InUserIDsQuery(ids []string) *user.SearchQuery { - return &user.SearchQuery{Query: &user.SearchQuery_InUserIdsQuery{ - InUserIdsQuery: &user.InUserIDQuery{ - UserIds: ids, + return &user.SearchQuery{ + Query: &user.SearchQuery_InUserIdsQuery{ + InUserIdsQuery: &user.InUserIDQuery{ + UserIds: ids, + }, }, - }, } } func InUserEmailsQuery(emails []string) *user.SearchQuery { - return &user.SearchQuery{Query: &user.SearchQuery_InUserEmailsQuery{ - InUserEmailsQuery: &user.InUserEmailsQuery{ - UserEmails: emails, + return &user.SearchQuery{ + Query: &user.SearchQuery_InUserEmailsQuery{ + InUserEmailsQuery: &user.InUserEmailsQuery{ + UserEmails: emails, + }, }, - }, } } func PhoneQuery(number string) *user.SearchQuery { - return &user.SearchQuery{Query: &user.SearchQuery_PhoneQuery{ - PhoneQuery: &user.PhoneQuery{ - Number: number, + return &user.SearchQuery{ + Query: &user.SearchQuery_PhoneQuery{ + PhoneQuery: &user.PhoneQuery{ + Number: number, + }, }, - }, } } func UsernameQuery(username string) *user.SearchQuery { - return &user.SearchQuery{Query: &user.SearchQuery_UserNameQuery{ - UserNameQuery: &user.UserNameQuery{ - UserName: username, + return &user.SearchQuery{ + Query: &user.SearchQuery_UserNameQuery{ + UserNameQuery: &user.UserNameQuery{ + UserName: username, + }, }, - }, } } func OrganizationIdQuery(resourceowner string) *user.SearchQuery { - return &user.SearchQuery{Query: &user.SearchQuery_OrganizationIdQuery{ - OrganizationIdQuery: &user.OrganizationIdQuery{ - OrganizationId: resourceowner, + return &user.SearchQuery{ + Query: &user.SearchQuery_OrganizationIdQuery{ + OrganizationIdQuery: &user.OrganizationIdQuery{ + OrganizationId: resourceowner, + }, }, - }, } } diff --git a/internal/api/grpc/user/v2/integration_test/user_test.go b/internal/api/grpc/user/v2/integration_test/user_test.go index 0ed93fd92e..0293fd925d 100644 --- a/internal/api/grpc/user/v2/integration_test/user_test.go +++ b/internal/api/grpc/user/v2/integration_test/user_test.go @@ -17,9 +17,12 @@ import ( "github.com/zitadel/logging" "google.golang.org/grpc/codes" "google.golang.org/grpc/status" + "google.golang.org/protobuf/types/known/structpb" "google.golang.org/protobuf/types/known/timestamppb" + "github.com/zitadel/zitadel/internal/api/grpc" "github.com/zitadel/zitadel/internal/integration" + "github.com/zitadel/zitadel/internal/integration/sink" "github.com/zitadel/zitadel/pkg/grpc/auth" "github.com/zitadel/zitadel/pkg/grpc/idp" mgmt "github.com/zitadel/zitadel/pkg/grpc/management" @@ -2110,15 +2113,20 @@ func TestServer_StartIdentityProviderIntent(t *testing.T) { } } -/* func TestServer_RetrieveIdentityProviderIntent(t *testing.T) { - idpID := Instance.AddGenericOAuthProvider(t, CTX) - intentID := Instance.CreateIntent(t, CTX, idpID) - successfulID, token, changeDate, sequence := Instance.CreateSuccessfulOAuthIntent(t, CTX, idpID, "", "id") - successfulWithUserID, withUsertoken, withUserchangeDate, withUsersequence := Instance.CreateSuccessfulOAuthIntent(t, CTX, idpID, "user", "id") - ldapSuccessfulID, ldapToken, ldapChangeDate, ldapSequence := Instance.CreateSuccessfulLDAPIntent(t, CTX, idpID, "", "id") - ldapSuccessfulWithUserID, ldapWithUserToken, ldapWithUserChangeDate, ldapWithUserSequence := Instance.CreateSuccessfulLDAPIntent(t, CTX, idpID, "user", "id") - samlSuccessfulID, samlToken, samlChangeDate, samlSequence := Instance.CreateSuccessfulSAMLIntent(t, CTX, idpID, "", "id") + idpID := Instance.AddGenericOAuthProvider(IamCTX, gofakeit.AppName()).GetId() + intentID := Instance.CreateIntent(CTX, idpID).GetIdpIntent().GetIdpIntentId() + + successfulID, token, changeDate, sequence, err := sink.SuccessfulOAuthIntent(Instance.ID(), idpID, "id", "") + require.NoError(t, err) + successfulWithUserID, withUsertoken, withUserchangeDate, withUsersequence, err := sink.SuccessfulOAuthIntent(Instance.ID(), idpID, "id", "user") + require.NoError(t, err) + ldapSuccessfulID, ldapToken, ldapChangeDate, ldapSequence, err := sink.SuccessfulLDAPIntent(Instance.ID(), idpID, "id", "") + require.NoError(t, err) + ldapSuccessfulWithUserID, ldapWithUserToken, ldapWithUserChangeDate, ldapWithUserSequence, err := sink.SuccessfulLDAPIntent(Instance.ID(), idpID, "id", "user") + require.NoError(t, err) + samlSuccessfulID, samlToken, samlChangeDate, samlSequence, err := sink.SuccessfulSAMLIntent(Instance.ID(), idpID, "id", "") + require.NoError(t, err) type args struct { ctx context.Context req *user.RetrieveIdentityProviderIntentRequest @@ -2369,7 +2377,6 @@ func TestServer_RetrieveIdentityProviderIntent(t *testing.T) { }) } } -*/ func ctxFromNewUserWithRegisteredPasswordlessLegacy(t *testing.T) (context.Context, string, *auth.AddMyPasswordlessResponse) { userID := Instance.CreateHumanUser(CTX).GetUserId() diff --git a/internal/api/grpc/user/v2/passkey_test.go b/internal/api/grpc/user/v2/passkey_test.go index 7facfc74e0..9263012b98 100644 --- a/internal/api/grpc/user/v2/passkey_test.go +++ b/internal/api/grpc/user/v2/passkey_test.go @@ -74,6 +74,7 @@ func Test_passkeyRegistrationDetailsToPb(t *testing.T) { ObjectDetails: &domain.ObjectDetails{ Sequence: 22, EventDate: time.Unix(3000, 22), + CreationDate: time.Unix(3000, 22), ResourceOwner: "me", }, ID: "123", @@ -90,6 +91,7 @@ func Test_passkeyRegistrationDetailsToPb(t *testing.T) { ObjectDetails: &domain.ObjectDetails{ Sequence: 22, EventDate: time.Unix(3000, 22), + CreationDate: time.Unix(3000, 22), ResourceOwner: "me", }, ID: "123", @@ -104,6 +106,10 @@ func Test_passkeyRegistrationDetailsToPb(t *testing.T) { Seconds: 3000, Nanos: 22, }, + CreationDate: ×tamppb.Timestamp{ + Seconds: 3000, + Nanos: 22, + }, ResourceOwner: "me", }, PasskeyId: "123", @@ -150,6 +156,7 @@ func Test_passkeyDetailsToPb(t *testing.T) { details: &domain.ObjectDetails{ Sequence: 22, EventDate: time.Unix(3000, 22), + CreationDate: time.Unix(3000, 22), ResourceOwner: "me", }, err: nil, @@ -161,6 +168,10 @@ func Test_passkeyDetailsToPb(t *testing.T) { Seconds: 3000, Nanos: 22, }, + CreationDate: ×tamppb.Timestamp{ + Seconds: 3000, + Nanos: 22, + }, ResourceOwner: "me", }, }, @@ -199,6 +210,7 @@ func Test_passkeyCodeDetailsToPb(t *testing.T) { ObjectDetails: &domain.ObjectDetails{ Sequence: 22, EventDate: time.Unix(3000, 22), + CreationDate: time.Unix(3000, 22), ResourceOwner: "me", }, CodeID: "123", @@ -213,6 +225,10 @@ func Test_passkeyCodeDetailsToPb(t *testing.T) { Seconds: 3000, Nanos: 22, }, + CreationDate: ×tamppb.Timestamp{ + Seconds: 3000, + Nanos: 22, + }, ResourceOwner: "me", }, Code: &user.PasskeyRegistrationCode{ diff --git a/internal/api/grpc/user/v2/query.go b/internal/api/grpc/user/v2/query.go index aeb17d5dcf..23d4b4422c 100644 --- a/internal/api/grpc/user/v2/query.go +++ b/internal/api/grpc/user/v2/query.go @@ -21,6 +21,7 @@ func (s *Server) GetUserByID(ctx context.Context, req *user.GetUserByIDRequest) return &user.GetUserByIDResponse{ Details: object.DomainToDetailsPb(&domain.ObjectDetails{ Sequence: resp.Sequence, + CreationDate: resp.CreationDate, EventDate: resp.ChangeDate, ResourceOwner: resp.ResourceOwner, }), @@ -29,11 +30,11 @@ func (s *Server) GetUserByID(ctx context.Context, req *user.GetUserByIDRequest) } func (s *Server) ListUsers(ctx context.Context, req *user.ListUsersRequest) (*user.ListUsersResponse, error) { - queries, err := listUsersRequestToModel(req) + queries, filterOrgId, err := listUsersRequestToModel(req) if err != nil { return nil, err } - res, err := s.query.SearchUsers(ctx, queries, s.checkPermission) + res, err := s.query.SearchUsers(ctx, queries, filterOrgId, s.checkPermission) if err != nil { return nil, err } @@ -58,6 +59,7 @@ func userToPb(userQ *query.User, assetPrefix string) *user.User { Sequence: userQ.Sequence, EventDate: userQ.ChangeDate, ResourceOwner: userQ.ResourceOwner, + CreationDate: userQ.CreationDate, }), State: userStateToPb(userQ.State), Username: userQ.Username, @@ -169,11 +171,11 @@ func accessTokenTypeToPb(accessTokenType domain.OIDCTokenType) user.AccessTokenT } } -func listUsersRequestToModel(req *user.ListUsersRequest) (*query.UserSearchQueries, error) { +func listUsersRequestToModel(req *user.ListUsersRequest) (*query.UserSearchQueries, string, error) { offset, limit, asc := object.ListQueryToQuery(req.Query) - queries, err := userQueriesToQuery(req.Queries, 0 /*start from level 0*/) + queries, filterOrgId, err := userQueriesToQuery(req.Queries, 0 /*start from level 0*/) if err != nil { - return nil, err + return nil, "", err } return &query.UserSearchQueries{ SearchRequest: query.SearchRequest{ @@ -183,7 +185,7 @@ func listUsersRequestToModel(req *user.ListUsersRequest) (*query.UserSearchQueri SortingColumn: userFieldNameToSortingColumn(req.SortingColumn), }, Queries: queries, - }, nil + }, filterOrgId, nil } func userFieldNameToSortingColumn(field user.UserFieldName) query.Column { @@ -213,15 +215,18 @@ func userFieldNameToSortingColumn(field user.UserFieldName) query.Column { } } -func userQueriesToQuery(queries []*user.SearchQuery, level uint8) (_ []query.SearchQuery, err error) { +func userQueriesToQuery(queries []*user.SearchQuery, level uint8) (_ []query.SearchQuery, filterOrgId string, err error) { q := make([]query.SearchQuery, len(queries)) for i, query := range queries { + if orgFilter := query.GetOrganizationIdQuery(); orgFilter != nil { + filterOrgId = orgFilter.OrganizationId + } q[i], err = userQueryToQuery(query, level) if err != nil { - return nil, err + return nil, filterOrgId, err } } - return q, nil + return q, filterOrgId, nil } func userQueryToQuery(query *user.SearchQuery, level uint8) (query.SearchQuery, error) { @@ -315,14 +320,14 @@ func inUserIdsQueryToQuery(q *user.InUserIDQuery) (query.SearchQuery, error) { return query.NewUserInUserIdsSearchQuery(q.UserIds) } func orQueryToQuery(q *user.OrQuery, level uint8) (query.SearchQuery, error) { - mappedQueries, err := userQueriesToQuery(q.Queries, level+1) + mappedQueries, _, err := userQueriesToQuery(q.Queries, level+1) if err != nil { return nil, err } return query.NewUserOrSearchQuery(mappedQueries) } func andQueryToQuery(q *user.AndQuery, level uint8) (query.SearchQuery, error) { - mappedQueries, err := userQueriesToQuery(q.Queries, level+1) + mappedQueries, _, err := userQueriesToQuery(q.Queries, level+1) if err != nil { return nil, err } diff --git a/internal/api/grpc/user/v2/u2f_test.go b/internal/api/grpc/user/v2/u2f_test.go index 73366ab29b..fae3ba1cdb 100644 --- a/internal/api/grpc/user/v2/u2f_test.go +++ b/internal/api/grpc/user/v2/u2f_test.go @@ -43,6 +43,7 @@ func Test_u2fRegistrationDetailsToPb(t *testing.T) { ObjectDetails: &domain.ObjectDetails{ Sequence: 22, EventDate: time.Unix(3000, 22), + CreationDate: time.Unix(3000, 22), ResourceOwner: "me", }, ID: "123", @@ -59,6 +60,7 @@ func Test_u2fRegistrationDetailsToPb(t *testing.T) { ObjectDetails: &domain.ObjectDetails{ Sequence: 22, EventDate: time.Unix(3000, 22), + CreationDate: time.Unix(3000, 22), ResourceOwner: "me", }, ID: "123", @@ -73,6 +75,10 @@ func Test_u2fRegistrationDetailsToPb(t *testing.T) { Seconds: 3000, Nanos: 22, }, + CreationDate: ×tamppb.Timestamp{ + Seconds: 3000, + Nanos: 22, + }, ResourceOwner: "me", }, U2FId: "123", diff --git a/internal/api/grpc/user/v2/user.go b/internal/api/grpc/user/v2/user.go index 9a092afacf..a743206cf0 100644 --- a/internal/api/grpc/user/v2/user.go +++ b/internal/api/grpc/user/v2/user.go @@ -368,31 +368,31 @@ func (s *Server) StartIdentityProviderIntent(ctx context.Context, req *user.Star } func (s *Server) startIDPIntent(ctx context.Context, idpID string, urls *user.RedirectURLs) (*user.StartIdentityProviderIntentResponse, error) { - intentWriteModel, details, err := s.command.CreateIntent(ctx, idpID, urls.GetSuccessUrl(), urls.GetFailureUrl(), authz.GetInstance(ctx).InstanceID()) + state, session, err := s.command.AuthFromProvider(ctx, idpID, s.idpCallback(ctx), s.samlRootURL(ctx, idpID)) if err != nil { return nil, err } - content, redirect, err := s.command.AuthFromProvider(ctx, idpID, intentWriteModel.AggregateID, s.idpCallback(ctx), s.samlRootURL(ctx, idpID)) + _, details, err := s.command.CreateIntent(ctx, state, idpID, urls.GetSuccessUrl(), urls.GetFailureUrl(), authz.GetInstance(ctx).InstanceID(), session.PersistentParameters()) if err != nil { return nil, err } + content, redirect := session.GetAuth(ctx) if redirect { return &user.StartIdentityProviderIntentResponse{ Details: object.DomainToDetailsPb(details), NextStep: &user.StartIdentityProviderIntentResponse_AuthUrl{AuthUrl: content}, }, nil - } else { - return &user.StartIdentityProviderIntentResponse{ - Details: object.DomainToDetailsPb(details), - NextStep: &user.StartIdentityProviderIntentResponse_PostForm{ - PostForm: []byte(content), - }, - }, nil } + return &user.StartIdentityProviderIntentResponse{ + Details: object.DomainToDetailsPb(details), + NextStep: &user.StartIdentityProviderIntentResponse_PostForm{ + PostForm: []byte(content), + }, + }, nil } func (s *Server) startLDAPIntent(ctx context.Context, idpID string, ldapCredentials *user.LDAPCredentials) (*user.StartIdentityProviderIntentResponse, error) { - intentWriteModel, details, err := s.command.CreateIntent(ctx, idpID, "", "", authz.GetInstance(ctx).InstanceID()) + intentWriteModel, details, err := s.command.CreateIntent(ctx, "", idpID, "", "", authz.GetInstance(ctx).InstanceID(), nil) if err != nil { return nil, err } diff --git a/internal/api/grpc/user/v2beta/integration_test/query_test.go b/internal/api/grpc/user/v2beta/integration_test/query_test.go index 67fc609212..73bff3fd0d 100644 --- a/internal/api/grpc/user/v2beta/integration_test/query_test.go +++ b/internal/api/grpc/user/v2beta/integration_test/query_test.go @@ -4,6 +4,7 @@ package user_test import ( "context" + "errors" "fmt" "slices" "testing" @@ -16,8 +17,10 @@ import ( "google.golang.org/protobuf/types/known/timestamppb" "github.com/zitadel/zitadel/internal/integration" + "github.com/zitadel/zitadel/pkg/grpc/feature/v2" "github.com/zitadel/zitadel/pkg/grpc/object/v2" object_v2beta "github.com/zitadel/zitadel/pkg/grpc/object/v2beta" + "github.com/zitadel/zitadel/pkg/grpc/session/v2" user "github.com/zitadel/zitadel/pkg/grpc/user/v2beta" ) @@ -29,6 +32,55 @@ func detailsV2ToV2beta(obj *object.Details) *object_v2beta.Details { } } +var ( + permissionCheckV2SetFlagInital bool + permissionCheckV2SetFlag bool +) + +type permissionCheckV2SettingsStruct struct { + TestNamePrependString string + SetFlag bool +} + +var permissionCheckV2Settings []permissionCheckV2SettingsStruct = []permissionCheckV2SettingsStruct{ + { + SetFlag: false, + TestNamePrependString: "permission_check_v2 IS NOT SET" + " ", + }, + { + SetFlag: true, + TestNamePrependString: "permission_check_v2 IS SET" + " ", + }, +} + +func setPermissionCheckV2Flag(t *testing.T, setFlag bool) { + if permissionCheckV2SetFlagInital && permissionCheckV2SetFlag == setFlag { + return + } + + _, err := Instance.Client.FeatureV2.SetInstanceFeatures(IamCTX, &feature.SetInstanceFeaturesRequest{ + PermissionCheckV2: &setFlag, + }) + require.NoError(t, err) + + var flagSet bool + for i := 0; !flagSet || i < 6; i++ { + res, err := Instance.Client.FeatureV2.GetInstanceFeatures(IamCTX, &feature.GetInstanceFeaturesRequest{}) + require.NoError(t, err) + if res.PermissionCheckV2.Enabled == setFlag { + flagSet = true + continue + } + time.Sleep(10 * time.Second) + } + + if !flagSet { + require.NoError(t, errors.New("unable to set permission_check_v2 flag")) + } + permissionCheckV2SetFlagInital = true + permissionCheckV2SetFlag = setFlag +} + func TestServer_GetUserByID(t *testing.T) { orgResp := Instance.CreateOrganization(IamCTX, fmt.Sprintf("GetUserByIDOrg-%s", gofakeit.AppName()), gofakeit.Email()) type args struct { @@ -381,6 +433,11 @@ func createUser(ctx context.Context, orgID string, passwordChangeRequired bool) } func TestServer_ListUsers(t *testing.T) { + defer func() { + _, err := Instance.Client.FeatureV2.ResetInstanceFeatures(IamCTX, &feature.ResetInstanceFeaturesRequest{}) + require.NoError(t, err) + }() + orgResp := Instance.CreateOrganization(IamCTX, fmt.Sprintf("ListUsersOrg-%s", gofakeit.AppName()), gofakeit.Email()) type args struct { ctx context.Context @@ -394,7 +451,7 @@ func TestServer_ListUsers(t *testing.T) { wantErr bool }{ { - name: "list user by id, no permission", + name: "list user by id, no permission machine user", args: args{ UserCTX, &user.ListUsersRequest{}, @@ -413,17 +470,77 @@ func TestServer_ListUsers(t *testing.T) { Result: []*user.User{}, }, }, + { + name: "list user by id, no permission human user", + args: func() args { + info := createUser(IamCTX, orgResp.OrganizationId, true) + // create session to get token + userID := info.UserID + createResp, err := Instance.Client.SessionV2.CreateSession(IamCTX, &session.CreateSessionRequest{ + Checks: &session.Checks{ + User: &session.CheckUser{ + Search: &session.CheckUser_UserId{UserId: userID}, + }, + Password: &session.CheckPassword{ + Password: integration.UserPassword, + }, + }, + }) + if err != nil { + require.NoError(t, err) + } + // use token to get ctx + HumanCTX := integration.WithAuthorizationToken(IamCTX, createResp.GetSessionToken()) + return args{ + HumanCTX, + &user.ListUsersRequest{}, + func(ctx context.Context, request *user.ListUsersRequest) userAttrs { + return []userAttr{info} + }, + } + }(), + want: &user.ListUsersResponse{ // human user should return itself when calling ListUsers() even if it has no permissions + Details: &object_v2beta.ListDetails{ + TotalResult: 1, + Timestamp: timestamppb.Now(), + }, + SortingColumn: 0, + Result: []*user.User{ + { + State: user.UserState_USER_STATE_ACTIVE, + Type: &user.User_Human{ + Human: &user.HumanUser{ + Profile: &user.HumanProfile{ + GivenName: "Mickey", + FamilyName: "Mouse", + NickName: gu.Ptr("Mickey"), + DisplayName: gu.Ptr("Mickey Mouse"), + PreferredLanguage: gu.Ptr("nl"), + Gender: user.Gender_GENDER_MALE.Enum(), + }, + Email: &user.HumanEmail{ + IsVerified: true, + }, + Phone: &user.HumanPhone{ + IsVerified: true, + }, + PasswordChangeRequired: true, + PasswordChanged: timestamppb.Now(), + }, + }, + }, + }, + }, + }, { name: "list user by id, ok", args: args{ IamCTX, - &user.ListUsersRequest{ - Queries: []*user.SearchQuery{ - OrganizationIdQuery(orgResp.OrganizationId), - }, - }, + &user.ListUsersRequest{}, func(ctx context.Context, request *user.ListUsersRequest) userAttrs { info := createUser(ctx, orgResp.OrganizationId, false) + request.Queries = []*user.SearchQuery{} + request.Queries = append(request.Queries, OrganizationIdQuery(orgResp.OrganizationId)) request.Queries = append(request.Queries, InUserIDsQuery([]string{info.UserID})) return []userAttr{info} }, @@ -463,13 +580,11 @@ func TestServer_ListUsers(t *testing.T) { name: "list user by id, passwordChangeRequired, ok", args: args{ IamCTX, - &user.ListUsersRequest{ - Queries: []*user.SearchQuery{ - OrganizationIdQuery(orgResp.OrganizationId), - }, - }, + &user.ListUsersRequest{}, func(ctx context.Context, request *user.ListUsersRequest) userAttrs { info := createUser(ctx, orgResp.OrganizationId, true) + request.Queries = []*user.SearchQuery{} + request.Queries = append(request.Queries, OrganizationIdQuery(orgResp.OrganizationId)) request.Queries = append(request.Queries, InUserIDsQuery([]string{info.UserID})) return []userAttr{info} }, @@ -511,13 +626,11 @@ func TestServer_ListUsers(t *testing.T) { name: "list user by id multiple, ok", args: args{ IamCTX, - &user.ListUsersRequest{ - Queries: []*user.SearchQuery{ - OrganizationIdQuery(orgResp.OrganizationId), - }, - }, + &user.ListUsersRequest{}, func(ctx context.Context, request *user.ListUsersRequest) userAttrs { infos := createUsers(ctx, orgResp.OrganizationId, 3, false) + request.Queries = []*user.SearchQuery{} + request.Queries = append(request.Queries, OrganizationIdQuery(orgResp.OrganizationId)) request.Queries = append(request.Queries, InUserIDsQuery(infos.userIDs())) return infos }, @@ -549,7 +662,8 @@ func TestServer_ListUsers(t *testing.T) { }, }, }, - }, { + }, + { State: user.UserState_USER_STATE_ACTIVE, Type: &user.User_Human{ Human: &user.HumanUser{ @@ -569,7 +683,8 @@ func TestServer_ListUsers(t *testing.T) { }, }, }, - }, { + }, + { State: user.UserState_USER_STATE_ACTIVE, Type: &user.User_Human{ Human: &user.HumanUser{ @@ -597,13 +712,11 @@ func TestServer_ListUsers(t *testing.T) { name: "list user by username, ok", args: args{ IamCTX, - &user.ListUsersRequest{ - Queries: []*user.SearchQuery{ - OrganizationIdQuery(orgResp.OrganizationId), - }, - }, + &user.ListUsersRequest{}, func(ctx context.Context, request *user.ListUsersRequest) userAttrs { info := createUser(ctx, orgResp.OrganizationId, false) + request.Queries = []*user.SearchQuery{} + request.Queries = append(request.Queries, OrganizationIdQuery(orgResp.OrganizationId)) request.Queries = append(request.Queries, UsernameQuery(info.Username)) return []userAttr{info} }, @@ -650,6 +763,7 @@ func TestServer_ListUsers(t *testing.T) { }, func(ctx context.Context, request *user.ListUsersRequest) userAttrs { info := createUser(ctx, orgResp.OrganizationId, false) + request.Queries = []*user.SearchQuery{} request.Queries = append(request.Queries, InUserEmailsQuery([]string{info.Username})) return []userAttr{info} }, @@ -689,13 +803,11 @@ func TestServer_ListUsers(t *testing.T) { name: "list user in emails multiple, ok", args: args{ IamCTX, - &user.ListUsersRequest{ - Queries: []*user.SearchQuery{ - OrganizationIdQuery(orgResp.OrganizationId), - }, - }, + &user.ListUsersRequest{}, func(ctx context.Context, request *user.ListUsersRequest) userAttrs { infos := createUsers(ctx, orgResp.OrganizationId, 3, false) + request.Queries = []*user.SearchQuery{} + request.Queries = append(request.Queries, OrganizationIdQuery(orgResp.OrganizationId)) request.Queries = append(request.Queries, InUserEmailsQuery(infos.emails())) return infos }, @@ -775,10 +887,11 @@ func TestServer_ListUsers(t *testing.T) { name: "list user in emails no found, ok", args: args{ IamCTX, - &user.ListUsersRequest{Queries: []*user.SearchQuery{ - OrganizationIdQuery(orgResp.OrganizationId), - InUserEmailsQuery([]string{"notfound"}), - }, + &user.ListUsersRequest{ + Queries: []*user.SearchQuery{ + OrganizationIdQuery(orgResp.OrganizationId), + InUserEmailsQuery([]string{"notfound"}), + }, }, func(ctx context.Context, request *user.ListUsersRequest) userAttrs { return []userAttr{} @@ -797,13 +910,11 @@ func TestServer_ListUsers(t *testing.T) { name: "list user phone, ok", args: args{ IamCTX, - &user.ListUsersRequest{ - Queries: []*user.SearchQuery{ - OrganizationIdQuery(orgResp.OrganizationId), - }, - }, + &user.ListUsersRequest{}, func(ctx context.Context, request *user.ListUsersRequest) userAttrs { info := createUser(ctx, orgResp.OrganizationId, false) + request.Queries = []*user.SearchQuery{} + request.Queries = append(request.Queries, OrganizationIdQuery(orgResp.OrganizationId)) request.Queries = append(request.Queries, PhoneQuery(info.Phone)) return []userAttr{info} }, @@ -839,6 +950,29 @@ func TestServer_ListUsers(t *testing.T) { }, }, }, + { + name: "list user in emails no found, ok", + args: args{ + IamCTX, + &user.ListUsersRequest{ + Queries: []*user.SearchQuery{ + OrganizationIdQuery(orgResp.OrganizationId), + InUserEmailsQuery([]string{"notfound"}), + }, + }, + func(ctx context.Context, request *user.ListUsersRequest) userAttrs { + return []userAttr{} + }, + }, + want: &user.ListUsersResponse{ + Details: &object_v2beta.ListDetails{ + TotalResult: 0, + Timestamp: timestamppb.Now(), + }, + SortingColumn: 0, + Result: []*user.User{}, + }, + }, { name: "list user resourceowner multiple, ok", args: args{ @@ -848,6 +982,7 @@ func TestServer_ListUsers(t *testing.T) { orgResp := Instance.CreateOrganization(ctx, fmt.Sprintf("ListUsersResourceowner-%s", gofakeit.AppName()), gofakeit.Email()) infos := createUsers(ctx, orgResp.OrganizationId, 3, false) + request.Queries = []*user.SearchQuery{} request.Queries = append(request.Queries, OrganizationIdQuery(orgResp.OrganizationId)) request.Queries = append(request.Queries, InUserEmailsQuery(infos.emails())) return infos @@ -924,93 +1059,182 @@ func TestServer_ListUsers(t *testing.T) { }, }, }, + { + name: "list user with org query", + args: args{ + IamCTX, + &user.ListUsersRequest{}, + func(ctx context.Context, request *user.ListUsersRequest) userAttrs { + orgRespForOrgTests := Instance.CreateOrganization(IamCTX, fmt.Sprintf("GetUserByIDOrg-%s", gofakeit.AppName()), gofakeit.Email()) + info := createUser(ctx, orgRespForOrgTests.OrganizationId, false) + request.Queries = []*user.SearchQuery{} + request.Queries = append(request.Queries, OrganizationIdQuery(orgRespForOrgTests.OrganizationId)) + return []userAttr{info, {}} + }, + }, + want: &user.ListUsersResponse{ + Details: &object_v2beta.ListDetails{ + TotalResult: 2, + Timestamp: timestamppb.Now(), + }, + SortingColumn: 0, + Result: []*user.User{ + { + State: user.UserState_USER_STATE_ACTIVE, + Type: &user.User_Human{ + Human: &user.HumanUser{ + Profile: &user.HumanProfile{ + GivenName: "Mickey", + FamilyName: "Mouse", + NickName: gu.Ptr("Mickey"), + DisplayName: gu.Ptr("Mickey Mouse"), + PreferredLanguage: gu.Ptr("nl"), + Gender: user.Gender_GENDER_MALE.Enum(), + }, + Email: &user.HumanEmail{ + IsVerified: true, + }, + Phone: &user.HumanPhone{ + IsVerified: true, + }, + }, + }, + }, + // this is the admin of the org craated in Instance.CreateOrganization() + nil, + }, + }, + }, + { + name: "list user with wrong org query", + args: args{ + IamCTX, + &user.ListUsersRequest{}, + func(ctx context.Context, request *user.ListUsersRequest) userAttrs { + orgRespForOrgTests := Instance.CreateOrganization(IamCTX, fmt.Sprintf("GetUserByIDOrg-%s", gofakeit.AppName()), gofakeit.Email()) + orgRespForOrgTests2 := Instance.CreateOrganization(IamCTX, fmt.Sprintf("GetUserByIDOrg-%s", gofakeit.AppName()), gofakeit.Email()) + // info := createUser(ctx, orgRespForOrgTests.OrganizationId, false) + createUser(ctx, orgRespForOrgTests.OrganizationId, false) + request.Queries = []*user.SearchQuery{} + request.Queries = append(request.Queries, OrganizationIdQuery(orgRespForOrgTests2.OrganizationId)) + return []userAttr{{}} + }, + }, + want: &user.ListUsersResponse{ + Details: &object_v2beta.ListDetails{ + TotalResult: 0, + Timestamp: timestamppb.Now(), + }, + SortingColumn: 0, + Result: []*user.User{ + // this is the admin of the org craated in Instance.CreateOrganization() + nil, + }, + }, + }, } - for _, tt := range tests { - t.Run(tt.name, func(t *testing.T) { - infos := tt.args.dep(IamCTX, tt.args.req) + for _, f := range permissionCheckV2Settings { + f := f + for _, tt := range tests { + t.Run(f.TestNamePrependString+tt.name, func(t *testing.T) { + setPermissionCheckV2Flag(t, f.SetFlag) + infos := tt.args.dep(IamCTX, tt.args.req) - retryDuration, tick := integration.WaitForAndTickWithMaxDuration(tt.args.ctx, time.Minute) - require.EventuallyWithT(t, func(ttt *assert.CollectT) { - got, err := Client.ListUsers(tt.args.ctx, tt.args.req) - if tt.wantErr { - require.Error(ttt, err) - return - } - require.NoError(ttt, err) + // retryDuration, tick := integration.WaitForAndTickWithMaxDuration(tt.args.ctx, 10*time.Minute) + retryDuration, tick := integration.WaitForAndTickWithMaxDuration(tt.args.ctx, 20*time.Second) + require.EventuallyWithT(t, func(ttt *assert.CollectT) { + got, err := Client.ListUsers(tt.args.ctx, tt.args.req) + if tt.wantErr { + require.Error(ttt, err) + return + } + require.NoError(ttt, err) - // always only give back dependency infos which are required for the response - require.Len(ttt, tt.want.Result, len(infos)) - // always first check length, otherwise its failed anyway - if assert.Len(ttt, got.Result, len(tt.want.Result)) { - // totalResult is unrelated to the tests here so gets carried over, can vary from the count of results due to permissions - tt.want.Details.TotalResult = got.Details.TotalResult + // always only give back dependency infos which are required for the response + require.Len(ttt, tt.want.Result, len(infos)) + // always first check length, otherwise its failed anyway + if assert.Len(ttt, got.Result, len(tt.want.Result)) { + // totalResult is unrelated to the tests here so gets carried over, can vary from the count of results due to permissions + tt.want.Details.TotalResult = got.Details.TotalResult - // fill in userid and username as it is generated - for i := range infos { - tt.want.Result[i].UserId = infos[i].UserID - tt.want.Result[i].Username = infos[i].Username - tt.want.Result[i].PreferredLoginName = infos[i].Username - tt.want.Result[i].LoginNames = []string{infos[i].Username} - if human := tt.want.Result[i].GetHuman(); human != nil { - human.Email.Email = infos[i].Username - human.Phone.Phone = infos[i].Phone - if tt.want.Result[i].GetHuman().GetPasswordChanged() != nil { - human.PasswordChanged = infos[i].Changed + // fill in userid and username as it is generated + for i := range infos { + if tt.want.Result[i] == nil { + continue } + tt.want.Result[i].UserId = infos[i].UserID + tt.want.Result[i].Username = infos[i].Username + tt.want.Result[i].PreferredLoginName = infos[i].Username + tt.want.Result[i].LoginNames = []string{infos[i].Username} + if human := tt.want.Result[i].GetHuman(); human != nil { + human.Email.Email = infos[i].Username + human.Phone.Phone = infos[i].Phone + if tt.want.Result[i].GetHuman().GetPasswordChanged() != nil { + human.PasswordChanged = infos[i].Changed + } + } + tt.want.Result[i].Details = detailsV2ToV2beta(infos[i].Details) + } + for i := range tt.want.Result { + if tt.want.Result[i] == nil { + continue + } + assert.EqualExportedValues(ttt, got.Result[i], tt.want.Result[i]) } - tt.want.Result[i].Details = detailsV2ToV2beta(infos[i].Details) } - for i := range tt.want.Result { - assert.EqualExportedValues(ttt, got.Result[i], tt.want.Result[i]) - } - } - integration.AssertListDetails(ttt, tt.want, got) - }, retryDuration, tick, "timeout waiting for expected user result") - }) + integration.AssertListDetails(ttt, tt.want, got) + }, retryDuration, tick, "timeout waiting for expected user result") + }) + } } } func InUserIDsQuery(ids []string) *user.SearchQuery { - return &user.SearchQuery{Query: &user.SearchQuery_InUserIdsQuery{ - InUserIdsQuery: &user.InUserIDQuery{ - UserIds: ids, + return &user.SearchQuery{ + Query: &user.SearchQuery_InUserIdsQuery{ + InUserIdsQuery: &user.InUserIDQuery{ + UserIds: ids, + }, }, - }, } } func InUserEmailsQuery(emails []string) *user.SearchQuery { - return &user.SearchQuery{Query: &user.SearchQuery_InUserEmailsQuery{ - InUserEmailsQuery: &user.InUserEmailsQuery{ - UserEmails: emails, + return &user.SearchQuery{ + Query: &user.SearchQuery_InUserEmailsQuery{ + InUserEmailsQuery: &user.InUserEmailsQuery{ + UserEmails: emails, + }, }, - }, } } func PhoneQuery(number string) *user.SearchQuery { - return &user.SearchQuery{Query: &user.SearchQuery_PhoneQuery{ - PhoneQuery: &user.PhoneQuery{ - Number: number, + return &user.SearchQuery{ + Query: &user.SearchQuery_PhoneQuery{ + PhoneQuery: &user.PhoneQuery{ + Number: number, + }, }, - }, } } func UsernameQuery(username string) *user.SearchQuery { - return &user.SearchQuery{Query: &user.SearchQuery_UserNameQuery{ - UserNameQuery: &user.UserNameQuery{ - UserName: username, + return &user.SearchQuery{ + Query: &user.SearchQuery_UserNameQuery{ + UserNameQuery: &user.UserNameQuery{ + UserName: username, + }, }, - }, } } func OrganizationIdQuery(resourceowner string) *user.SearchQuery { - return &user.SearchQuery{Query: &user.SearchQuery_OrganizationIdQuery{ - OrganizationIdQuery: &user.OrganizationIdQuery{ - OrganizationId: resourceowner, + return &user.SearchQuery{ + Query: &user.SearchQuery_OrganizationIdQuery{ + OrganizationIdQuery: &user.OrganizationIdQuery{ + OrganizationId: resourceowner, + }, }, - }, } } diff --git a/internal/api/grpc/user/v2beta/integration_test/user_test.go b/internal/api/grpc/user/v2beta/integration_test/user_test.go index 9cf59ae563..ab2e3215ee 100644 --- a/internal/api/grpc/user/v2beta/integration_test/user_test.go +++ b/internal/api/grpc/user/v2beta/integration_test/user_test.go @@ -16,9 +16,12 @@ import ( "github.com/stretchr/testify/require" "google.golang.org/grpc/codes" "google.golang.org/grpc/status" + "google.golang.org/protobuf/types/known/structpb" "google.golang.org/protobuf/types/known/timestamppb" + "github.com/zitadel/zitadel/internal/api/grpc" "github.com/zitadel/zitadel/internal/integration" + "github.com/zitadel/zitadel/internal/integration/sink" "github.com/zitadel/zitadel/pkg/grpc/idp" mgmt "github.com/zitadel/zitadel/pkg/grpc/management" object "github.com/zitadel/zitadel/pkg/grpc/object/v2beta" @@ -2142,15 +2145,19 @@ func TestServer_StartIdentityProviderIntent(t *testing.T) { } } -/* func TestServer_RetrieveIdentityProviderIntent(t *testing.T) { - idpID := Instance.AddGenericOAuthProvider(t, CTX) - intentID := Instance.CreateIntent(t, CTX, idpID) - successfulID, token, changeDate, sequence := Instance.CreateSuccessfulOAuthIntent(t, CTX, idpID.Id, "", "id") - successfulWithUserID, withUsertoken, withUserchangeDate, withUsersequence := Instance.CreateSuccessfulOAuthIntent(t, CTX, idpID.Id, "user", "id") - ldapSuccessfulID, ldapToken, ldapChangeDate, ldapSequence := Instance.CreateSuccessfulLDAPIntent(t, CTX, idpID.Id, "", "id") - ldapSuccessfulWithUserID, ldapWithUserToken, ldapWithUserChangeDate, ldapWithUserSequence := Instance.CreateSuccessfulLDAPIntent(t, CTX, idpID.Id, "user", "id") - samlSuccessfulID, samlToken, samlChangeDate, samlSequence := Instance.CreateSuccessfulSAMLIntent(t, CTX, idpID.Id, "", "id") + idpID := Instance.AddGenericOAuthProvider(IamCTX, gofakeit.AppName()).GetId() + intentID := Instance.CreateIntent(CTX, idpID).GetIdpIntent().GetIdpIntentId() + successfulID, token, changeDate, sequence, err := sink.SuccessfulOAuthIntent(Instance.ID(), idpID, "id", "") + require.NoError(t, err) + successfulWithUserID, withUsertoken, withUserchangeDate, withUsersequence, err := sink.SuccessfulOAuthIntent(Instance.ID(), idpID, "id", "user") + require.NoError(t, err) + ldapSuccessfulID, ldapToken, ldapChangeDate, ldapSequence, err := sink.SuccessfulLDAPIntent(Instance.ID(), idpID, "id", "") + require.NoError(t, err) + ldapSuccessfulWithUserID, ldapWithUserToken, ldapWithUserChangeDate, ldapWithUserSequence, err := sink.SuccessfulLDAPIntent(Instance.ID(), idpID, "id", "user") + require.NoError(t, err) + samlSuccessfulID, samlToken, samlChangeDate, samlSequence, err := sink.SuccessfulSAMLIntent(Instance.ID(), idpID, "id", "") + require.NoError(t, err) type args struct { ctx context.Context req *user.RetrieveIdentityProviderIntentRequest @@ -2205,7 +2212,7 @@ func TestServer_RetrieveIdentityProviderIntent(t *testing.T) { IdToken: gu.Ptr("idToken"), }, }, - IdpId: idpID.Id, + IdpId: idpID, UserId: "id", UserName: "username", RawInformation: func() *structpb.Struct { @@ -2243,7 +2250,7 @@ func TestServer_RetrieveIdentityProviderIntent(t *testing.T) { IdToken: gu.Ptr("idToken"), }, }, - IdpId: idpID.Id, + IdpId: idpID, UserId: "id", UserName: "username", RawInformation: func() *structpb.Struct { @@ -2287,7 +2294,7 @@ func TestServer_RetrieveIdentityProviderIntent(t *testing.T) { }(), }, }, - IdpId: idpID.Id, + IdpId: idpID, UserId: "id", UserName: "username", RawInformation: func() *structpb.Struct { @@ -2333,7 +2340,7 @@ func TestServer_RetrieveIdentityProviderIntent(t *testing.T) { }(), }, }, - IdpId: idpID.Id, + IdpId: idpID, UserId: "id", UserName: "username", RawInformation: func() *structpb.Struct { @@ -2370,7 +2377,7 @@ func TestServer_RetrieveIdentityProviderIntent(t *testing.T) { Assertion: []byte(""), }, }, - IdpId: idpID.Id, + IdpId: idpID, UserId: "id", UserName: "", RawInformation: func() *structpb.Struct { @@ -2401,7 +2408,6 @@ func TestServer_RetrieveIdentityProviderIntent(t *testing.T) { }) } } -*/ func TestServer_ListAuthenticationMethodTypes(t *testing.T) { userIDWithoutAuth := Instance.CreateHumanUser(CTX).GetUserId() diff --git a/internal/api/grpc/user/v2beta/passkey_test.go b/internal/api/grpc/user/v2beta/passkey_test.go index 7d45c41756..f4a48ed941 100644 --- a/internal/api/grpc/user/v2beta/passkey_test.go +++ b/internal/api/grpc/user/v2beta/passkey_test.go @@ -74,6 +74,7 @@ func Test_passkeyRegistrationDetailsToPb(t *testing.T) { ObjectDetails: &domain.ObjectDetails{ Sequence: 22, EventDate: time.Unix(3000, 22), + CreationDate: time.Unix(3000, 22), ResourceOwner: "me", }, ID: "123", @@ -90,6 +91,7 @@ func Test_passkeyRegistrationDetailsToPb(t *testing.T) { ObjectDetails: &domain.ObjectDetails{ Sequence: 22, EventDate: time.Unix(3000, 22), + CreationDate: time.Unix(3000, 22), ResourceOwner: "me", }, ID: "123", @@ -100,6 +102,10 @@ func Test_passkeyRegistrationDetailsToPb(t *testing.T) { want: &user.RegisterPasskeyResponse{ Details: &object.Details{ Sequence: 22, + CreationDate: ×tamppb.Timestamp{ + Seconds: 3000, + Nanos: 22, + }, ChangeDate: ×tamppb.Timestamp{ Seconds: 3000, Nanos: 22, @@ -150,6 +156,7 @@ func Test_passkeyDetailsToPb(t *testing.T) { details: &domain.ObjectDetails{ Sequence: 22, EventDate: time.Unix(3000, 22), + CreationDate: time.Unix(3000, 22), ResourceOwner: "me", }, err: nil, @@ -157,6 +164,10 @@ func Test_passkeyDetailsToPb(t *testing.T) { want: &user.CreatePasskeyRegistrationLinkResponse{ Details: &object.Details{ Sequence: 22, + CreationDate: ×tamppb.Timestamp{ + Seconds: 3000, + Nanos: 22, + }, ChangeDate: ×tamppb.Timestamp{ Seconds: 3000, Nanos: 22, @@ -199,6 +210,7 @@ func Test_passkeyCodeDetailsToPb(t *testing.T) { ObjectDetails: &domain.ObjectDetails{ Sequence: 22, EventDate: time.Unix(3000, 22), + CreationDate: time.Unix(3000, 22), ResourceOwner: "me", }, CodeID: "123", @@ -209,6 +221,10 @@ func Test_passkeyCodeDetailsToPb(t *testing.T) { want: &user.CreatePasskeyRegistrationLinkResponse{ Details: &object.Details{ Sequence: 22, + CreationDate: ×tamppb.Timestamp{ + Seconds: 3000, + Nanos: 22, + }, ChangeDate: ×tamppb.Timestamp{ Seconds: 3000, Nanos: 22, diff --git a/internal/api/grpc/user/v2beta/query.go b/internal/api/grpc/user/v2beta/query.go index e3602abc33..7baa53e73e 100644 --- a/internal/api/grpc/user/v2beta/query.go +++ b/internal/api/grpc/user/v2beta/query.go @@ -29,11 +29,11 @@ func (s *Server) GetUserByID(ctx context.Context, req *user.GetUserByIDRequest) } func (s *Server) ListUsers(ctx context.Context, req *user.ListUsersRequest) (*user.ListUsersResponse, error) { - queries, err := listUsersRequestToModel(req) + queries, filterOrgIds, err := listUsersRequestToModel(req) if err != nil { return nil, err } - res, err := s.query.SearchUsers(ctx, queries, s.checkPermission) + res, err := s.query.SearchUsers(ctx, queries, filterOrgIds, s.checkPermission) if err != nil { return nil, err } @@ -165,11 +165,11 @@ func accessTokenTypeToPb(accessTokenType domain.OIDCTokenType) user.AccessTokenT } } -func listUsersRequestToModel(req *user.ListUsersRequest) (*query.UserSearchQueries, error) { +func listUsersRequestToModel(req *user.ListUsersRequest) (*query.UserSearchQueries, string, error) { offset, limit, asc := object.ListQueryToQuery(req.Query) - queries, err := userQueriesToQuery(req.Queries, 0 /*start from level 0*/) + queries, filterOrgId, err := userQueriesToQuery(req.Queries, 0 /*start from level 0*/) if err != nil { - return nil, err + return nil, "", err } return &query.UserSearchQueries{ SearchRequest: query.SearchRequest{ @@ -179,7 +179,7 @@ func listUsersRequestToModel(req *user.ListUsersRequest) (*query.UserSearchQueri SortingColumn: userFieldNameToSortingColumn(req.SortingColumn), }, Queries: queries, - }, nil + }, filterOrgId, nil } func userFieldNameToSortingColumn(field user.UserFieldName) query.Column { @@ -209,15 +209,18 @@ func userFieldNameToSortingColumn(field user.UserFieldName) query.Column { } } -func userQueriesToQuery(queries []*user.SearchQuery, level uint8) (_ []query.SearchQuery, err error) { +func userQueriesToQuery(queries []*user.SearchQuery, level uint8) (_ []query.SearchQuery, filterOrgId string, err error) { q := make([]query.SearchQuery, len(queries)) for i, query := range queries { + if orgFilter := query.GetOrganizationIdQuery(); orgFilter != nil { + filterOrgId = orgFilter.OrganizationId + } q[i], err = userQueryToQuery(query, level) if err != nil { - return nil, err + return nil, filterOrgId, err } } - return q, nil + return q, filterOrgId, nil } func userQueryToQuery(query *user.SearchQuery, level uint8) (query.SearchQuery, error) { @@ -311,14 +314,14 @@ func inUserIdsQueryToQuery(q *user.InUserIDQuery) (query.SearchQuery, error) { return query.NewUserInUserIdsSearchQuery(q.UserIds) } func orQueryToQuery(q *user.OrQuery, level uint8) (query.SearchQuery, error) { - mappedQueries, err := userQueriesToQuery(q.Queries, level+1) + mappedQueries, _, err := userQueriesToQuery(q.Queries, level+1) if err != nil { return nil, err } return query.NewUserOrSearchQuery(mappedQueries) } func andQueryToQuery(q *user.AndQuery, level uint8) (query.SearchQuery, error) { - mappedQueries, err := userQueriesToQuery(q.Queries, level+1) + mappedQueries, _, err := userQueriesToQuery(q.Queries, level+1) if err != nil { return nil, err } diff --git a/internal/api/grpc/user/v2beta/u2f_test.go b/internal/api/grpc/user/v2beta/u2f_test.go index 087837ce3c..53f2a0bb8c 100644 --- a/internal/api/grpc/user/v2beta/u2f_test.go +++ b/internal/api/grpc/user/v2beta/u2f_test.go @@ -43,6 +43,7 @@ func Test_u2fRegistrationDetailsToPb(t *testing.T) { ObjectDetails: &domain.ObjectDetails{ Sequence: 22, EventDate: time.Unix(3000, 22), + CreationDate: time.Unix(3000, 22), ResourceOwner: "me", }, ID: "123", @@ -59,6 +60,7 @@ func Test_u2fRegistrationDetailsToPb(t *testing.T) { ObjectDetails: &domain.ObjectDetails{ Sequence: 22, EventDate: time.Unix(3000, 22), + CreationDate: time.Unix(3000, 22), ResourceOwner: "me", }, ID: "123", @@ -69,6 +71,10 @@ func Test_u2fRegistrationDetailsToPb(t *testing.T) { want: &user.RegisterU2FResponse{ Details: &object.Details{ Sequence: 22, + CreationDate: ×tamppb.Timestamp{ + Seconds: 3000, + Nanos: 22, + }, ChangeDate: ×tamppb.Timestamp{ Seconds: 3000, Nanos: 22, diff --git a/internal/api/grpc/user/v2beta/user.go b/internal/api/grpc/user/v2beta/user.go index 52da057906..cf6dfa6304 100644 --- a/internal/api/grpc/user/v2beta/user.go +++ b/internal/api/grpc/user/v2beta/user.go @@ -371,31 +371,31 @@ func (s *Server) StartIdentityProviderIntent(ctx context.Context, req *user.Star } func (s *Server) startIDPIntent(ctx context.Context, idpID string, urls *user.RedirectURLs) (*user.StartIdentityProviderIntentResponse, error) { - intentWriteModel, details, err := s.command.CreateIntent(ctx, idpID, urls.GetSuccessUrl(), urls.GetFailureUrl(), authz.GetInstance(ctx).InstanceID()) + state, session, err := s.command.AuthFromProvider(ctx, idpID, s.idpCallback(ctx), s.samlRootURL(ctx, idpID)) if err != nil { return nil, err } - content, redirect, err := s.command.AuthFromProvider(ctx, idpID, intentWriteModel.AggregateID, s.idpCallback(ctx), s.samlRootURL(ctx, idpID)) + _, details, err := s.command.CreateIntent(ctx, state, idpID, urls.GetSuccessUrl(), urls.GetFailureUrl(), authz.GetInstance(ctx).InstanceID(), session.PersistentParameters()) if err != nil { return nil, err } + content, redirect := session.GetAuth(ctx) if redirect { return &user.StartIdentityProviderIntentResponse{ Details: object.DomainToDetailsPb(details), NextStep: &user.StartIdentityProviderIntentResponse_AuthUrl{AuthUrl: content}, }, nil - } else { - return &user.StartIdentityProviderIntentResponse{ - Details: object.DomainToDetailsPb(details), - NextStep: &user.StartIdentityProviderIntentResponse_PostForm{ - PostForm: []byte(content), - }, - }, nil } + return &user.StartIdentityProviderIntentResponse{ + Details: object.DomainToDetailsPb(details), + NextStep: &user.StartIdentityProviderIntentResponse_PostForm{ + PostForm: []byte(content), + }, + }, nil } func (s *Server) startLDAPIntent(ctx context.Context, idpID string, ldapCredentials *user.LDAPCredentials) (*user.StartIdentityProviderIntentResponse, error) { - intentWriteModel, details, err := s.command.CreateIntent(ctx, idpID, "", "", authz.GetInstance(ctx).InstanceID()) + intentWriteModel, details, err := s.command.CreateIntent(ctx, "", idpID, "", "", authz.GetInstance(ctx).InstanceID(), nil) if err != nil { return nil, err } diff --git a/internal/api/idp/idp.go b/internal/api/idp/idp.go index 01594c43ba..c3e9586a59 100644 --- a/internal/api/idp/idp.go +++ b/internal/api/idp/idp.go @@ -328,7 +328,7 @@ func (h *Handler) handleCallback(w http.ResponseWriter, r *http.Request) { return } - idpUser, idpSession, err := h.fetchIDPUserFromCode(ctx, provider, data.Code, data.User) + idpUser, idpSession, err := h.fetchIDPUserFromCode(ctx, provider, data.Code, data.User, intent.IDPArguments) if err != nil { cmdErr := h.commands.FailIDPIntent(ctx, intent, err.Error()) logging.WithFields("intent", intent.AggregateID).OnError(cmdErr).Error("failed to push failed event on idp intent") @@ -410,23 +410,23 @@ func redirectToFailureURL(w http.ResponseWriter, r *http.Request, i *command.IDP http.Redirect(w, r, i.FailureURL.String(), http.StatusFound) } -func (h *Handler) fetchIDPUserFromCode(ctx context.Context, identityProvider idp.Provider, code string, appleUser string) (user idp.User, idpTokens idp.Session, err error) { +func (h *Handler) fetchIDPUserFromCode(ctx context.Context, identityProvider idp.Provider, code string, appleUser string, idpArguments map[string]any) (user idp.User, idpTokens idp.Session, err error) { var session idp.Session switch provider := identityProvider.(type) { case *oauth.Provider: - session = &oauth.Session{Provider: provider, Code: code} + session = oauth.NewSession(provider, code, idpArguments) case *openid.Provider: - session = &openid.Session{Provider: provider, Code: code} + session = openid.NewSession(provider, code, idpArguments) case *azuread.Provider: - session = &azuread.Session{Provider: provider, Code: code} + session = azuread.NewSession(provider, code) case *github.Provider: - session = &oauth.Session{Provider: provider.Provider, Code: code} + session = oauth.NewSession(provider.Provider, code, idpArguments) case *gitlab.Provider: - session = &openid.Session{Provider: provider.Provider, Code: code} + session = openid.NewSession(provider.Provider, code, idpArguments) case *google.Provider: - session = &openid.Session{Provider: provider.Provider, Code: code} + session = openid.NewSession(provider.Provider, code, idpArguments) case *apple.Provider: - session = &apple.Session{Session: &openid.Session{Provider: provider.Provider, Code: code}, UserFormValue: appleUser} + session = apple.NewSession(provider, code, appleUser) case *jwt.Provider, *ldap.Provider, *saml2.Provider: return nil, nil, zerrors.ThrowInvalidArgument(nil, "IDP-52jmn", "Errors.ExternalIDP.IDPTypeNotImplemented") default: diff --git a/internal/api/oidc/integration_test/token_device_test.go b/internal/api/oidc/integration_test/token_device_test.go new file mode 100644 index 0000000000..0c6a65e8a2 --- /dev/null +++ b/internal/api/oidc/integration_test/token_device_test.go @@ -0,0 +1,127 @@ +//go:build integration + +package oidc_test + +import ( + "context" + "slices" + "testing" + "time" + + "github.com/stretchr/testify/assert" + "github.com/stretchr/testify/require" + "github.com/zitadel/oidc/v3/pkg/client/rp" + "github.com/zitadel/oidc/v3/pkg/oidc" + + "github.com/zitadel/zitadel/internal/domain" + "github.com/zitadel/zitadel/internal/integration" + "github.com/zitadel/zitadel/pkg/grpc/app" + "github.com/zitadel/zitadel/pkg/grpc/auth" + oidc_pb "github.com/zitadel/zitadel/pkg/grpc/oidc/v2" +) + +func TestServer_DeviceAuth(t *testing.T) { + project, err := Instance.CreateProject(CTX) + require.NoError(t, err) + client, err := Instance.CreateOIDCClient(CTX, redirectURI, logoutRedirectURI, project.GetId(), app.OIDCAppType_OIDC_APP_TYPE_NATIVE, app.OIDCAuthMethodType_OIDC_AUTH_METHOD_TYPE_NONE, false, app.OIDCGrantType_OIDC_GRANT_TYPE_DEVICE_CODE) + require.NoError(t, err) + + tests := []struct { + name string + scope []string + decision func(t *testing.T, id string) + wantErr error + }{ + { + name: "authorized", + scope: []string{}, + decision: func(t *testing.T, id string) { + sessionID, sessionToken, _, _ := Instance.CreateVerifiedWebAuthNSession(t, CTXLOGIN, User.GetUserId()) + _, err = Instance.Client.OIDCv2.AuthorizeOrDenyDeviceAuthorization(CTXLOGIN, &oidc_pb.AuthorizeOrDenyDeviceAuthorizationRequest{ + DeviceAuthorizationId: id, + Decision: &oidc_pb.AuthorizeOrDenyDeviceAuthorizationRequest_Session{ + Session: &oidc_pb.Session{ + SessionId: sessionID, + SessionToken: sessionToken, + }, + }, + }) + require.NoError(t, err) + }, + }, + { + name: "authorized, with ZITADEL", + scope: []string{oidc.ScopeOpenID, oidc.ScopeProfile, oidc.ScopeEmail, domain.ProjectScopeZITADEL}, + decision: func(t *testing.T, id string) { + sessionID, sessionToken, _, _ := Instance.CreateVerifiedWebAuthNSession(t, CTXLOGIN, User.GetUserId()) + _, err = Instance.Client.OIDCv2.AuthorizeOrDenyDeviceAuthorization(CTXLOGIN, &oidc_pb.AuthorizeOrDenyDeviceAuthorizationRequest{ + DeviceAuthorizationId: id, + Decision: &oidc_pb.AuthorizeOrDenyDeviceAuthorizationRequest_Session{ + Session: &oidc_pb.Session{ + SessionId: sessionID, + SessionToken: sessionToken, + }, + }, + }) + require.NoError(t, err) + }, + }, + { + name: "denied", + scope: []string{oidc.ScopeOpenID, oidc.ScopeProfile, oidc.ScopeEmail, domain.ProjectScopeZITADEL}, + decision: func(t *testing.T, id string) { + _, err = Instance.Client.OIDCv2.AuthorizeOrDenyDeviceAuthorization(CTXLOGIN, &oidc_pb.AuthorizeOrDenyDeviceAuthorizationRequest{ + DeviceAuthorizationId: id, + Decision: &oidc_pb.AuthorizeOrDenyDeviceAuthorizationRequest_Deny{ + Deny: &oidc_pb.Deny{}, + }, + }) + require.NoError(t, err) + }, + wantErr: oidc.ErrAccessDenied(), + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + + provider, err := rp.NewRelyingPartyOIDC(CTX, Instance.OIDCIssuer(), client.GetClientId(), "", "", tt.scope) + require.NoError(t, err) + deviceAuthorization, err := rp.DeviceAuthorization(CTX, tt.scope, provider, nil) + require.NoError(t, err) + + relyingPartyDone := make(chan struct{}) + go func() { + ctx, cancel := context.WithTimeout(CTX, 1*time.Minute) + defer func() { + cancel() + relyingPartyDone <- struct{}{} + }() + tokens, err := rp.DeviceAccessToken(ctx, deviceAuthorization.DeviceCode, time.Duration(deviceAuthorization.Interval)*time.Second, provider) + require.ErrorIs(t, err, tt.wantErr) + + if tokens == nil { + return + } + _, err = Instance.Client.Auth.GetMyUser(integration.WithAuthorizationToken(CTX, tokens.AccessToken), &auth.GetMyUserRequest{}) + if slices.Contains(tt.scope, domain.ProjectScopeZITADEL) { + require.NoError(t, err) + } else { + require.Error(t, err) + } + }() + + var req *oidc_pb.GetDeviceAuthorizationRequestResponse + retryDuration, tick := integration.WaitForAndTickWithMaxDuration(CTX, time.Minute) + assert.EventuallyWithT(t, func(collectT *assert.CollectT) { + req, err = Instance.Client.OIDCv2.GetDeviceAuthorizationRequest(CTX, &oidc_pb.GetDeviceAuthorizationRequestRequest{ + UserCode: deviceAuthorization.UserCode, + }) + assert.NoError(collectT, err) + }, retryDuration, tick) + + tt.decision(t, req.GetDeviceAuthorizationRequest().GetId()) + + <-relyingPartyDone + }) + } +} diff --git a/internal/api/oidc/token_device.go b/internal/api/oidc/token_device.go index 464e9e46ae..8e0f8dc993 100644 --- a/internal/api/oidc/token_device.go +++ b/internal/api/oidc/token_device.go @@ -42,6 +42,9 @@ func (s *Server) DeviceToken(ctx context.Context, r *op.ClientRequest[oidc.Devic if state == domain.DeviceAuthStateExpired { return nil, oidc.ErrExpiredDeviceCode() } + if state == domain.DeviceAuthStateDenied { + return nil, oidc.ErrAccessDenied() + } } - return nil, oidc.ErrAccessDenied().WithParent(err).WithReturnParentToClient(authz.GetFeatures(ctx).DebugOIDCParentError) + return nil, oidc.ErrInvalidGrant().WithParent(err).WithReturnParentToClient(authz.GetFeatures(ctx).DebugOIDCParentError) } diff --git a/internal/api/scim/resources/user.go b/internal/api/scim/resources/user.go index bc8d864994..ffd39aa23f 100644 --- a/internal/api/scim/resources/user.go +++ b/internal/api/scim/resources/user.go @@ -240,7 +240,7 @@ func (h *UsersHandler) List(ctx context.Context, request *ListRequest) (*ListRes return NewListResponse(count, q.SearchRequest, make([]*ScimUser, 0)), nil } - users, err := h.query.SearchUsers(ctx, q, nil) + users, err := h.query.SearchUsers(ctx, q, authz.GetCtxData(ctx).OrgID, nil) if err != nil { return nil, err } diff --git a/internal/api/ui/login/external_provider_handler.go b/internal/api/ui/login/external_provider_handler.go index 5481c6aed1..649c8a958e 100644 --- a/internal/api/ui/login/external_provider_handler.go +++ b/internal/api/ui/login/external_provider_handler.go @@ -149,14 +149,7 @@ func (l *Login) handleIDP(w http.ResponseWriter, r *http.Request, authReq *domai l.renderError(w, r, authReq, err) return } - userAgentID, _ := http_mw.UserAgentIDFromCtx(r.Context()) - err = l.authRepo.SelectExternalIDP(r.Context(), authReq.ID, identityProvider.ID, userAgentID) - if err != nil { - l.externalAuthFailed(w, r, authReq, err) - return - } var provider idp.Provider - switch identityProvider.Type { case domain.IDPTypeOAuth: provider, err = l.oauthProvider(r.Context(), identityProvider) @@ -199,6 +192,13 @@ func (l *Login) handleIDP(w http.ResponseWriter, r *http.Request, authReq *domai return } + userAgentID, _ := http_mw.UserAgentIDFromCtx(r.Context()) + err = l.authRepo.SelectExternalIDP(r.Context(), authReq.ID, identityProvider.ID, userAgentID, session.PersistentParameters()) + if err != nil { + l.externalAuthFailed(w, r, authReq, err) + return + } + content, redirect := session.GetAuth(r.Context()) if redirect { http.Redirect(w, r, content, http.StatusFound) @@ -271,79 +271,78 @@ func (l *Login) handleExternalLoginCallback(w http.ResponseWriter, r *http.Reque l.externalAuthCallbackFailed(w, r, authReq, nil, nil, err) return } - var provider idp.Provider var session idp.Session switch identityProvider.Type { case domain.IDPTypeOAuth: - provider, err = l.oauthProvider(r.Context(), identityProvider) + provider, err := l.oauthProvider(r.Context(), identityProvider) if err != nil { l.externalAuthCallbackFailed(w, r, authReq, nil, nil, err) return } - session = &oauth.Session{Provider: provider.(*oauth.Provider), Code: data.Code} + session = oauth.NewSession(provider, data.Code, authReq.SelectedIDPConfigArgs) case domain.IDPTypeOIDC: - provider, err = l.oidcProvider(r.Context(), identityProvider) + provider, err := l.oidcProvider(r.Context(), identityProvider) if err != nil { l.externalAuthCallbackFailed(w, r, authReq, nil, nil, err) return } - session = &openid.Session{Provider: provider.(*openid.Provider), Code: data.Code} + session = openid.NewSession(provider, data.Code, authReq.SelectedIDPConfigArgs) case domain.IDPTypeAzureAD: - provider, err = l.azureProvider(r.Context(), identityProvider) + provider, err := l.azureProvider(r.Context(), identityProvider) if err != nil { l.externalAuthCallbackFailed(w, r, authReq, nil, nil, err) return } - session = &azuread.Session{Provider: provider.(*azuread.Provider), Code: data.Code} + session = azuread.NewSession(provider, data.Code) case domain.IDPTypeGitHub: - provider, err = l.githubProvider(r.Context(), identityProvider) + provider, err := l.githubProvider(r.Context(), identityProvider) if err != nil { l.externalAuthCallbackFailed(w, r, authReq, nil, nil, err) return } - session = &oauth.Session{Provider: provider.(*github.Provider).Provider, Code: data.Code} + session = oauth.NewSession(provider.Provider, data.Code, authReq.SelectedIDPConfigArgs) case domain.IDPTypeGitHubEnterprise: - provider, err = l.githubEnterpriseProvider(r.Context(), identityProvider) + provider, err := l.githubEnterpriseProvider(r.Context(), identityProvider) if err != nil { l.externalAuthCallbackFailed(w, r, authReq, nil, nil, err) return } - session = &oauth.Session{Provider: provider.(*github.Provider).Provider, Code: data.Code} + session = oauth.NewSession(provider.Provider, data.Code, authReq.SelectedIDPConfigArgs) case domain.IDPTypeGitLab: - provider, err = l.gitlabProvider(r.Context(), identityProvider) + provider, err := l.gitlabProvider(r.Context(), identityProvider) if err != nil { l.externalAuthCallbackFailed(w, r, authReq, nil, nil, err) return } - session = &openid.Session{Provider: provider.(*gitlab.Provider).Provider, Code: data.Code} + session = openid.NewSession(provider.Provider, data.Code, authReq.SelectedIDPConfigArgs) case domain.IDPTypeGitLabSelfHosted: - provider, err = l.gitlabSelfHostedProvider(r.Context(), identityProvider) + provider, err := l.gitlabSelfHostedProvider(r.Context(), identityProvider) if err != nil { l.externalAuthCallbackFailed(w, r, authReq, nil, nil, err) return } - session = &openid.Session{Provider: provider.(*gitlab.Provider).Provider, Code: data.Code} + session = openid.NewSession(provider.Provider, data.Code, authReq.SelectedIDPConfigArgs) case domain.IDPTypeGoogle: - provider, err = l.googleProvider(r.Context(), identityProvider) + provider, err := l.googleProvider(r.Context(), identityProvider) if err != nil { l.externalAuthCallbackFailed(w, r, authReq, nil, nil, err) return } - session = &openid.Session{Provider: provider.(*google.Provider).Provider, Code: data.Code} + session = openid.NewSession(provider.Provider, data.Code, authReq.SelectedIDPConfigArgs) case domain.IDPTypeApple: - provider, err = l.appleProvider(r.Context(), identityProvider) + provider, err := l.appleProvider(r.Context(), identityProvider) if err != nil { l.externalAuthCallbackFailed(w, r, authReq, nil, nil, err) return } - session = &apple.Session{Session: &openid.Session{Provider: provider.(*apple.Provider).Provider, Code: data.Code}, UserFormValue: data.User} + session = apple.NewSession(provider, data.Code, data.User) case domain.IDPTypeSAML: - provider, err = l.samlProvider(r.Context(), identityProvider) + provider, err := l.samlProvider(r.Context(), identityProvider) if err != nil { l.externalAuthCallbackFailed(w, r, authReq, nil, nil, err) return } - session, err = saml.NewSession(provider.(*saml.Provider), authReq.SAMLRequestID, r) + session, err = saml.NewSession(provider, authReq.SAMLRequestID, r) if err != nil { l.externalAuthCallbackFailed(w, r, authReq, nil, nil, err) return @@ -440,7 +439,7 @@ func (l *Login) handleExternalUserAuthenticated( ) { externalUser := mapIDPUserToExternalUser(user, provider.ID) // ensure the linked IDP is added to the login policy - if err := l.authRepo.SelectExternalIDP(r.Context(), authReq.ID, provider.ID, authReq.AgentID); err != nil { + if err := l.authRepo.SelectExternalIDP(r.Context(), authReq.ID, provider.ID, authReq.AgentID, authReq.SelectedIDPConfigArgs); err != nil { l.renderError(w, r, authReq, err) return } @@ -976,6 +975,7 @@ func (l *Login) ldapProvider(ctx context.Context, identityProvider *query.IDPTem identityProvider.UserObjectClasses, identityProvider.UserFilters, identityProvider.Timeout, + identityProvider.RootCA, l.baseURL(ctx)+EndpointLDAPLogin+"?"+QueryAuthRequestID+"=", opts..., ), nil @@ -1004,11 +1004,17 @@ func (l *Login) oidcProvider(ctx context.Context, identityProvider *query.IDPTem if err != nil { return nil, err } - opts := make([]openid.ProviderOpts, 1, 2) + opts := make([]openid.ProviderOpts, 1, 3) opts[0] = openid.WithSelectAccount() if identityProvider.OIDCIDPTemplate.IsIDTokenMapping { opts = append(opts, openid.WithIDTokenMapping()) } + + if identityProvider.OIDCIDPTemplate.UsePKCE { + // we do not pass any cookie handler, since we store the verifier internally, rather than in a cookie + opts = append(opts, openid.WithRelyingPartyOption(rp.WithPKCE(nil))) + } + return openid.New(identityProvider.Name, identityProvider.OIDCIDPTemplate.Issuer, identityProvider.OIDCIDPTemplate.ClientID, @@ -1046,6 +1052,12 @@ func (l *Login) oauthProvider(ctx context.Context, identityProvider *query.IDPTe RedirectURL: l.baseURL(ctx) + EndpointExternalLoginCallback, Scopes: identityProvider.OAuthIDPTemplate.Scopes, } + + opts := make([]oauth.ProviderOpts, 0, 1) + if identityProvider.OAuthIDPTemplate.UsePKCE { + // we do not pass any cookie handler, since we store the verifier internally, rather than in a cookie + opts = append(opts, oauth.WithRelyingPartyOption(rp.WithPKCE(nil))) + } return oauth.New( config, identityProvider.Name, @@ -1053,6 +1065,7 @@ func (l *Login) oauthProvider(ctx context.Context, identityProvider *query.IDPTe func() idp.User { return oauth.NewUserMapper(identityProvider.OAuthIDPTemplate.IDAttribute) }, + opts..., ) } diff --git a/internal/api/ui/login/jwt_handler.go b/internal/api/ui/login/jwt_handler.go index 7c643e9a43..bff316252f 100644 --- a/internal/api/ui/login/jwt_handler.go +++ b/internal/api/ui/login/jwt_handler.go @@ -81,7 +81,7 @@ func (l *Login) handleJWTExtraction(w http.ResponseWriter, r *http.Request, auth l.renderError(w, r, authReq, err) return } - session := &jwt.Session{Provider: provider, Tokens: &oidc.Tokens[*oidc.IDTokenClaims]{IDToken: token, Token: &oauth2.Token{}}} + session := jwt.NewSession(provider, &oidc.Tokens[*oidc.IDTokenClaims]{IDToken: token, Token: &oauth2.Token{}}) user, err := session.FetchUser(r.Context()) if err != nil { if _, _, actionErr := l.runPostExternalAuthenticationActions(new(domain.ExternalUser), tokens(session), authReq, r, user, err); actionErr != nil { diff --git a/internal/api/ui/login/ldap_handler.go b/internal/api/ui/login/ldap_handler.go index 147a319523..4703a462bf 100644 --- a/internal/api/ui/login/ldap_handler.go +++ b/internal/api/ui/login/ldap_handler.go @@ -66,7 +66,7 @@ func (l *Login) handleLDAPCallback(w http.ResponseWriter, r *http.Request) { l.renderLDAPLogin(w, r, authReq, err) return } - session := &ldap.Session{Provider: provider, User: data.Username, Password: data.Password} + session := ldap.NewSession(provider, data.Username, data.Password) user, err := session.FetchUser(r.Context()) if err != nil { diff --git a/internal/api/ui/login/login.go b/internal/api/ui/login/login.go index 444c5aaa85..4b028a347f 100644 --- a/internal/api/ui/login/login.go +++ b/internal/api/ui/login/login.go @@ -182,7 +182,7 @@ func (l *Login) getClaimedUserIDsOfOrgDomain(ctx context.Context, orgName string if err != nil { return nil, err } - users, err := l.query.SearchUsers(ctx, &query.UserSearchQueries{Queries: []query.SearchQuery{loginName}}, nil) + users, err := l.query.SearchUsers(ctx, &query.UserSearchQueries{Queries: []query.SearchQuery{loginName}}, "", nil) if err != nil { return nil, err } diff --git a/internal/api/ui/login/static/i18n/ja.yaml b/internal/api/ui/login/static/i18n/ja.yaml index 8d725785c6..66df5de081 100644 --- a/internal/api/ui/login/static/i18n/ja.yaml +++ b/internal/api/ui/login/static/i18n/ja.yaml @@ -11,6 +11,13 @@ Login: RegisterButtonText: 登録 NextButtonText: 次へ +LDAP: + Title: ようこそ! + Description: LDAPのログイン情報を入力してください + LoginNameLabel: ログイン名 + PasswordLabel: パスワード + NextButtonText: 次へ + SelectAccount: Title: アカウントの選択 Description: ZITADELアカウントを使用します。 @@ -198,6 +205,7 @@ PasswordChange: NewPasswordConfirmLabel: 新パスワードの確認 CancelButtonText: キャンセル NextButtonText: 次へ + Footer: フッター PasswordChangeDone: Title: パスワードの変更完了 @@ -401,6 +409,7 @@ Footer: Tos: TOS PrivacyPolicy: プライバシーポリシー Help: ヘルプ + SupportEmail: サポートメール SignIn: '{{.Provider}} でサインイン' @@ -415,6 +424,7 @@ Errors: MissingParameters: 必要なパラメーターが不足しています User: NotFound: ユーザーが見つかりません + AlreadyExists: ユーザーは既に存在します Inactive: ユーザーは非アクティブです NotFoundOnOrg: ユーザーは、選択した組織で見つけることができませんでした NotAllowedOrg: ユーザーは必要な組織のメンバーではありません @@ -423,6 +433,33 @@ Errors: Invalid: 無効なユーザーデータです DomainNotAllowedAsUsername: このドメインはすでに予約されているため使用できません NotAllowedToLink: このユーザーは外部ログインプロバイダーにリンクすることを許可されていません + Profile: + NotFound: プロファイルが見つかりません + NotChanged: プロファイルが変更されていません + Empty: プロファイルが空です + FirstNameEmpty: 名前が空です + LastNameEmpty: 姓が空です + IDMissing: プロファイルIDが不足しています + Email: + NotFound: メールアドレスが見つかりません + Invalid: メールアドレスが無効です + AlreadyVerified: メールアドレスはすでに登録されています + NotChanged: メールアドレスが変更されていません + Empty: メールアドレスが空です + IDMissing: メールアドレスIDが不足しています + Phone: + NotFound: 電話番号が見つかりません + Invalid: 電話番号が無効です + AlreadyVerified: 電話番号はすでに登録されています + Empty: 電話番号が空です + NotChanged: 電話番号が変更されていません + Address: + NotFound: 住所が見つかりません + NotChanged: 住所が変更されていません + Username: + AlreadyExists: ユーザー名はすでに使用されています + Reserved: ユーザー名はすでに使用されています + Empty: ユーザー名が空です Password: ConfirmationWrong: 確認用パスワードが間違っています Empty: パスワードが空です @@ -480,6 +517,9 @@ Errors: IAM: LockoutPolicy: NotExisting: ロックアウトポリシーが存在しません + Org: + LoginPolicy: + RegistrationNotAllowed: 新規登録は許可されていません DeviceAuth: NotExisting: ユーザーコードが存在しません diff --git a/internal/auth/repository/auth_request.go b/internal/auth/repository/auth_request.go index c16a757a01..53272d2d2f 100644 --- a/internal/auth/repository/auth_request.go +++ b/internal/auth/repository/auth_request.go @@ -20,7 +20,7 @@ type AuthRequestRepository interface { SetExternalUserLogin(ctx context.Context, authReqID, userAgentID string, user *domain.ExternalUser) error SetLinkingUser(ctx context.Context, request *domain.AuthRequest, externalUser *domain.ExternalUser) error SelectUser(ctx context.Context, authReqID, userID, userAgentID string) error - SelectExternalIDP(ctx context.Context, authReqID, idpConfigID, userAgentID string) error + SelectExternalIDP(ctx context.Context, authReqID, idpConfigID, userAgentID string, idpArguments map[string]any) error VerifyPassword(ctx context.Context, id, userID, resourceOwner, password, userAgentID string, info *domain.BrowserInfo) error VerifyMFAOTP(ctx context.Context, authRequestID, userID, resourceOwner, code, userAgentID string, info *domain.BrowserInfo) error diff --git a/internal/auth/repository/eventsourcing/eventstore/auth_request.go b/internal/auth/repository/eventsourcing/eventstore/auth_request.go index 60486b66f9..c8ae92b418 100644 --- a/internal/auth/repository/eventsourcing/eventstore/auth_request.go +++ b/internal/auth/repository/eventsourcing/eventstore/auth_request.go @@ -255,14 +255,14 @@ func (repo *AuthRequestRepo) CheckLoginName(ctx context.Context, id, loginName, return repo.AuthRequests.UpdateAuthRequest(ctx, request) } -func (repo *AuthRequestRepo) SelectExternalIDP(ctx context.Context, authReqID, idpConfigID, userAgentID string) (err error) { +func (repo *AuthRequestRepo) SelectExternalIDP(ctx context.Context, authReqID, idpConfigID, userAgentID string, idpArguments map[string]any) (err error) { ctx, span := tracing.NewSpan(ctx) defer func() { span.EndWithError(err) }() request, err := repo.getAuthRequest(ctx, authReqID, userAgentID) if err != nil { return err } - err = repo.checkSelectedExternalIDP(request, idpConfigID) + err = repo.checkSelectedExternalIDP(request, idpConfigID, idpArguments) if err != nil { return err } @@ -984,10 +984,11 @@ func queryLoginPolicyToDomain(policy *query.LoginPolicy) *domain.LoginPolicy { } } -func (repo *AuthRequestRepo) checkSelectedExternalIDP(request *domain.AuthRequest, idpConfigID string) error { +func (repo *AuthRequestRepo) checkSelectedExternalIDP(request *domain.AuthRequest, idpConfigID string, idpArguments map[string]any) error { for _, externalIDP := range request.AllowedExternalIDPs { if externalIDP.IDPConfigID == idpConfigID { request.SelectedIDPConfigID = idpConfigID + request.SelectedIDPConfigArgs = idpArguments return nil } } diff --git a/internal/command/command.go b/internal/command/command.go index ab047fccdb..17f6641caf 100644 --- a/internal/command/command.go +++ b/internal/command/command.go @@ -218,6 +218,33 @@ func (c *Commands) pushAppendAndReduce(ctx context.Context, object AppendReducer return AppendAndReduce(object, events...) } +// pushChunked pushes the commands in chunks of size to the eventstore. +// This can be used to reduce the amount of events in a single transaction. +// When an error occurs, the events that have been pushed so far will be returned. +// +// Warning: chunks are pushed in separate transactions. +// Successful pushes will not be rolled back if a later chunk fails. +// Only use this function when the caller is able to handle partial success +// and is able to consolidate the state on errors. +func (c *Commands) pushChunked(ctx context.Context, size uint16, cmds ...eventstore.Command) (_ []eventstore.Event, err error) { + ctx, span := tracing.NewSpan(ctx) + defer func() { span.EndWithError(err) }() + + events := make([]eventstore.Event, 0, len(cmds)) + for i := 0; i < len(cmds); i += int(size) { + end := i + int(size) + if end > len(cmds) { + end = len(cmds) + } + chunk, err := c.eventstore.Push(ctx, cmds[i:end]...) + if err != nil { + return events, err + } + events = append(events, chunk...) + } + return events, nil +} + type AppendReducerDetails interface { AppendEvents(...eventstore.Event) // TODO: Why is it allowed to return an error here? diff --git a/internal/command/command_test.go b/internal/command/command_test.go index 2367930b89..7224f047b5 100644 --- a/internal/command/command_test.go +++ b/internal/command/command_test.go @@ -2,6 +2,7 @@ package command import ( "context" + "fmt" "io" "os" "testing" @@ -13,6 +14,7 @@ import ( "github.com/zitadel/zitadel/internal/eventstore" "github.com/zitadel/zitadel/internal/i18n" + "github.com/zitadel/zitadel/internal/repository/permission" "github.com/zitadel/zitadel/internal/repository/user" ) @@ -29,6 +31,93 @@ func TestMain(m *testing.M) { os.Exit(m.Run()) } +func TestCommands_pushChunked(t *testing.T) { + aggregate := permission.NewAggregate("instanceID") + cmds := make([]eventstore.Command, 100) + for i := 0; i < 100; i++ { + cmds[i] = permission.NewAddedEvent(context.Background(), aggregate, "role", fmt.Sprintf("permission%d", i)) + } + type args struct { + size uint16 + } + tests := []struct { + name string + args args + eventstore func(*testing.T) *eventstore.Eventstore + wantEvents int + wantErr error + }{ + { + name: "push error", + args: args{ + size: 100, + }, + eventstore: expectEventstore( + expectPushFailed(io.ErrClosedPipe, cmds...), + ), + wantEvents: 0, + wantErr: io.ErrClosedPipe, + }, + { + name: "single chunk", + args: args{ + size: 100, + }, + eventstore: expectEventstore( + expectPush(cmds...), + ), + wantEvents: len(cmds), + }, + { + name: "aligned chunks", + args: args{ + size: 50, + }, + eventstore: expectEventstore( + expectPush(cmds[0:50]...), + expectPush(cmds[50:100]...), + ), + wantEvents: len(cmds), + }, + { + name: "odd chunks", + args: args{ + size: 30, + }, + eventstore: expectEventstore( + expectPush(cmds[0:30]...), + expectPush(cmds[30:60]...), + expectPush(cmds[60:90]...), + expectPush(cmds[90:100]...), + ), + wantEvents: len(cmds), + }, + { + name: "partial error", + args: args{ + size: 30, + }, + eventstore: expectEventstore( + expectPush(cmds[0:30]...), + expectPush(cmds[30:60]...), + expectPushFailed(io.ErrClosedPipe, cmds[60:90]...), + ), + wantEvents: len(cmds[0:60]), + wantErr: io.ErrClosedPipe, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + c := &Commands{ + eventstore: tt.eventstore(t), + } + gotEvents, err := c.pushChunked(context.Background(), tt.args.size, cmds...) + require.ErrorIs(t, err, tt.wantErr) + assert.Len(t, gotEvents, tt.wantEvents) + }) + } +} + func TestCommands_asyncPush(t *testing.T) { // make sure the test terminates on deadlock background := context.Background() diff --git a/internal/command/converter.go b/internal/command/converter.go index e4309a54c1..292de21aa9 100644 --- a/internal/command/converter.go +++ b/internal/command/converter.go @@ -15,6 +15,9 @@ func writeModelToObjectDetails(writeModel *eventstore.WriteModel) *domain.Object } func pushedEventsToObjectDetails(events []eventstore.Event) *domain.ObjectDetails { + if len(events) == 0 { + return &domain.ObjectDetails{} + } return &domain.ObjectDetails{ Sequence: events[len(events)-1].Sequence(), EventDate: events[len(events)-1].CreatedAt(), diff --git a/internal/command/device_auth.go b/internal/command/device_auth.go index a2754650ea..d3588660be 100644 --- a/internal/command/device_auth.go +++ b/internal/command/device_auth.go @@ -59,6 +59,9 @@ func (c *Commands) ApproveDeviceAuth( if !model.State.Exists() { return nil, zerrors.ThrowNotFound(nil, "COMMAND-Hief9", "Errors.DeviceAuth.NotFound") } + if model.State != domain.DeviceAuthStateInitiated { + return nil, zerrors.ThrowPreconditionFailed(nil, "COMMAND-GEJL3", "Errors.DeviceAuth.AlreadyHandled") + } pushedEvents, err := c.eventstore.Push(ctx, deviceauth.NewApprovedEvent(ctx, model.aggregate, userID, userOrgID, authMethods, authTime, preferredLanguage, userAgent, sessionID)) if err != nil { return nil, err @@ -71,6 +74,60 @@ func (c *Commands) ApproveDeviceAuth( return writeModelToObjectDetails(&model.WriteModel), nil } +func (c *Commands) ApproveDeviceAuthWithSession( + ctx context.Context, + deviceCode, + sessionID, + sessionToken string, +) (*domain.ObjectDetails, error) { + model, err := c.getDeviceAuthWriteModelByDeviceCode(ctx, deviceCode) + if err != nil { + return nil, err + } + if !model.State.Exists() { + return nil, zerrors.ThrowNotFound(nil, "COMMAND-D2hf2", "Errors.DeviceAuth.NotFound") + } + if model.State != domain.DeviceAuthStateInitiated { + return nil, zerrors.ThrowPreconditionFailed(nil, "COMMAND-D30Jf", "Errors.DeviceAuth.AlreadyHandled") + } + if err := c.checkPermission(ctx, domain.PermissionSessionLink, model.ResourceOwner, ""); err != nil { + return nil, err + } + + sessionWriteModel := NewSessionWriteModel(sessionID, authz.GetInstance(ctx).InstanceID()) + err = c.eventstore.FilterToQueryReducer(ctx, sessionWriteModel) + if err != nil { + return nil, err + } + if err = sessionWriteModel.CheckIsActive(); err != nil { + return nil, err + } + if err := c.sessionTokenVerifier(ctx, sessionToken, sessionWriteModel.AggregateID, sessionWriteModel.TokenID); err != nil { + return nil, err + } + + pushedEvents, err := c.eventstore.Push(ctx, deviceauth.NewApprovedEvent( + ctx, + model.aggregate, + sessionWriteModel.UserID, + sessionWriteModel.UserResourceOwner, + sessionWriteModel.AuthMethodTypes(), + sessionWriteModel.AuthenticationTime(), + sessionWriteModel.PreferredLanguage, + sessionWriteModel.UserAgent, + sessionID, + )) + if err != nil { + return nil, err + } + err = AppendAndReduce(model, pushedEvents...) + if err != nil { + return nil, err + } + + return writeModelToObjectDetails(&model.WriteModel), nil +} + func (c *Commands) CancelDeviceAuth(ctx context.Context, id string, reason domain.DeviceAuthCanceled) (*domain.ObjectDetails, error) { model, err := c.getDeviceAuthWriteModelByDeviceCode(ctx, id) if err != nil { diff --git a/internal/command/device_auth_model.go b/internal/command/device_auth_model.go index 21ab1b29ec..28833ae898 100644 --- a/internal/command/device_auth_model.go +++ b/internal/command/device_auth_model.go @@ -82,6 +82,7 @@ func (m *DeviceAuthWriteModel) Query() *eventstore.SearchQueryBuilder { deviceauth.AddedEventType, deviceauth.ApprovedEventType, deviceauth.CanceledEventType, + deviceauth.DoneEventType, ). Builder() } diff --git a/internal/command/device_auth_test.go b/internal/command/device_auth_test.go index f25be7053a..508ca10571 100644 --- a/internal/command/device_auth_test.go +++ b/internal/command/device_auth_test.go @@ -23,6 +23,7 @@ import ( "github.com/zitadel/zitadel/internal/id/mock" "github.com/zitadel/zitadel/internal/repository/deviceauth" "github.com/zitadel/zitadel/internal/repository/oidcsession" + "github.com/zitadel/zitadel/internal/repository/session" "github.com/zitadel/zitadel/internal/repository/user" "github.com/zitadel/zitadel/internal/zerrors" ) @@ -265,6 +266,310 @@ func TestCommands_ApproveDeviceAuth(t *testing.T) { } } +func TestCommands_ApproveDeviceAuthFromSession(t *testing.T) { + ctx := authz.WithInstanceID(context.Background(), "instance1") + now := time.Now() + pushErr := errors.New("pushErr") + + type fields struct { + eventstore func(*testing.T) *eventstore.Eventstore + tokenVerifier func(ctx context.Context, sessionToken, sessionID, tokenID string) (err error) + checkPermission domain.PermissionCheck + } + type args struct { + ctx context.Context + deviceCode string + sessionID string + sessionToken string + } + tests := []struct { + name string + fields fields + args args + wantDetails *domain.ObjectDetails + wantErr error + }{ + { + name: "not found error", + fields: fields{ + eventstore: expectEventstore( + expectFilter(), + ), + }, + args: args{ + ctx, + "notfound", + "sessionID", + "sessionToken", + }, + wantErr: zerrors.ThrowNotFound(nil, "COMMAND-D2hf2", "Errors.DeviceAuth.NotFound"), + }, + { + name: "not initialized, error", + fields: fields{ + eventstore: expectEventstore( + expectFilter( + eventFromEventPusherWithInstanceID( + "instance1", + deviceauth.NewAddedEvent( + ctx, + deviceauth.NewAggregate("deviceCode", "instance1"), + "client_id", "deviceCode", "456", now, + []string{"a", "b", "c"}, + []string{"projectID", "clientID"}, true, + ), + ), + eventFromEventPusherWithInstanceID( + "instance1", + deviceauth.NewCanceledEvent( + ctx, + deviceauth.NewAggregate("deviceCode", "instance1"), + domain.DeviceAuthCanceledDenied, + )), + ), + ), + }, + args: args{ + ctx, + "deviceCode", + "sessionID", + "sessionToken", + }, + wantErr: zerrors.ThrowPreconditionFailed(nil, "COMMAND-D30Jf", "Errors.DeviceAuth.AlreadyHandled"), + }, + { + name: "missing permission, error", + fields: fields{ + eventstore: expectEventstore( + expectFilter(eventFromEventPusherWithInstanceID( + "instance1", + deviceauth.NewAddedEvent( + ctx, + deviceauth.NewAggregate("deviceCode", "instance1"), + "client_id", "deviceCode", "456", now, + []string{"a", "b", "c"}, + []string{"projectID", "clientID"}, true, + ), + )), + ), + checkPermission: newMockPermissionCheckNotAllowed(), + }, + args: args{ + ctx, + "deviceCode", + "sessionID", + "sessionToken", + }, + wantErr: zerrors.ThrowPermissionDenied(nil, "AUTHZ-HKJD33", "Errors.PermissionDenied"), + }, + { + name: "session not active, error", + fields: fields{ + eventstore: expectEventstore( + expectFilter(eventFromEventPusherWithInstanceID( + "instance1", + deviceauth.NewAddedEvent( + ctx, + deviceauth.NewAggregate("deviceCode", "instance1"), + "client_id", "deviceCode", "456", now, + []string{"a", "b", "c"}, + []string{"projectID", "clientID"}, true, + ), + )), + expectFilter(), + ), + checkPermission: newMockPermissionCheckAllowed(), + }, + args: args{ + ctx, + "deviceCode", + "sessionID", + "sessionToken", + }, + wantErr: zerrors.ThrowPreconditionFailed(nil, "COMMAND-Flk38", "Errors.Session.NotExisting"), + }, + { + name: "invalid session token, error", + fields: fields{ + eventstore: expectEventstore( + expectFilter(eventFromEventPusherWithInstanceID( + "instance1", + deviceauth.NewAddedEvent( + ctx, + deviceauth.NewAggregate("deviceCode", "instance1"), + "client_id", "deviceCode", "456", now, + []string{"a", "b", "c"}, + []string{"projectID", "clientID"}, true, + ), + )), + expectFilter(eventFromEventPusherWithInstanceID( + "instance1", + session.NewAddedEvent(ctx, + &session.NewAggregate("sessionID", "instance1").Aggregate, + &domain.UserAgent{ + FingerprintID: gu.Ptr("fp1"), + IP: net.ParseIP("1.2.3.4"), + Description: gu.Ptr("firefox"), + Header: http.Header{"foo": []string{"bar"}}, + }, + )), + )), + tokenVerifier: newMockTokenVerifierInvalid(), + checkPermission: newMockPermissionCheckAllowed(), + }, + args: args{ + ctx, + "deviceCode", + "sessionID", + "invalidToken", + }, + wantErr: zerrors.ThrowPermissionDenied(nil, "COMMAND-sGr42", "Errors.Session.Token.Invalid"), + }, + { + name: "push error", + fields: fields{ + eventstore: expectEventstore( + expectFilter(eventFromEventPusherWithInstanceID( + "instance1", + deviceauth.NewAddedEvent( + ctx, + deviceauth.NewAggregate("deviceCode", "instance1"), + "client_id", "deviceCode", "456", now, + []string{"a", "b", "c"}, + []string{"projectID", "clientID"}, true, + ), + )), + expectFilter( + eventFromEventPusher( + session.NewAddedEvent(ctx, + &session.NewAggregate("sessionID", "instance1").Aggregate, + &domain.UserAgent{ + FingerprintID: gu.Ptr("fp1"), + IP: net.ParseIP("1.2.3.4"), + Description: gu.Ptr("firefox"), + Header: http.Header{"foo": []string{"bar"}}, + }, + ), + ), + eventFromEventPusher( + session.NewUserCheckedEvent(ctx, &session.NewAggregate("sessionID", "instance1").Aggregate, + "userID", "orgID", testNow, &language.Afrikaans), + ), + eventFromEventPusher( + session.NewPasswordCheckedEvent(ctx, &session.NewAggregate("sessionID", "instance1").Aggregate, + testNow), + ), + eventFromEventPusherWithCreationDateNow( + session.NewLifetimeSetEvent(ctx, &session.NewAggregate("sessionID", "instance1").Aggregate, + 2*time.Minute), + ), + ), + expectPushFailed(pushErr, + deviceauth.NewApprovedEvent( + ctx, deviceauth.NewAggregate("deviceCode", "instance1"), "userID", "orgID", + []domain.UserAuthMethodType{domain.UserAuthMethodTypePassword}, + testNow, &language.Afrikaans, &domain.UserAgent{ + FingerprintID: gu.Ptr("fp1"), + IP: net.ParseIP("1.2.3.4"), + Description: gu.Ptr("firefox"), + Header: http.Header{"foo": []string{"bar"}}, + }, + "sessionID", + ), + ), + ), + tokenVerifier: newMockTokenVerifierValid(), + checkPermission: newMockPermissionCheckAllowed(), + }, + args: args{ + ctx, + "deviceCode", + "sessionID", + "sessionToken", + }, + wantErr: pushErr, + }, + { + name: "authorized", + fields: fields{ + eventstore: expectEventstore( + expectFilter(eventFromEventPusherWithInstanceID( + "instance1", + deviceauth.NewAddedEvent( + ctx, + deviceauth.NewAggregate("deviceCode", "instance1"), + "client_id", "deviceCode", "456", now, + []string{"a", "b", "c"}, + []string{"projectID", "clientID"}, true, + ), + )), + expectFilter( + eventFromEventPusher( + session.NewAddedEvent(ctx, + &session.NewAggregate("sessionID", "instance1").Aggregate, + &domain.UserAgent{ + FingerprintID: gu.Ptr("fp1"), + IP: net.ParseIP("1.2.3.4"), + Description: gu.Ptr("firefox"), + Header: http.Header{"foo": []string{"bar"}}, + }, + ), + ), + eventFromEventPusher( + session.NewUserCheckedEvent(ctx, &session.NewAggregate("sessionID", "instance1").Aggregate, + "userID", "orgID", testNow, &language.Afrikaans), + ), + eventFromEventPusher( + session.NewPasswordCheckedEvent(ctx, &session.NewAggregate("sessionID", "instance1").Aggregate, + testNow), + ), + eventFromEventPusherWithCreationDateNow( + session.NewLifetimeSetEvent(ctx, &session.NewAggregate("sessionID", "instance1").Aggregate, + 2*time.Minute), + ), + ), + expectPush( + deviceauth.NewApprovedEvent( + ctx, deviceauth.NewAggregate("deviceCode", "instance1"), "userID", "orgID", + []domain.UserAuthMethodType{domain.UserAuthMethodTypePassword}, + testNow, &language.Afrikaans, &domain.UserAgent{ + FingerprintID: gu.Ptr("fp1"), + IP: net.ParseIP("1.2.3.4"), + Description: gu.Ptr("firefox"), + Header: http.Header{"foo": []string{"bar"}}, + }, + "sessionID", + ), + ), + ), + tokenVerifier: newMockTokenVerifierValid(), + checkPermission: newMockPermissionCheckAllowed(), + }, + args: args{ + ctx, + "deviceCode", + "sessionID", + "sessionToken", + }, + wantDetails: &domain.ObjectDetails{ + ResourceOwner: "instance1", + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + c := &Commands{ + eventstore: tt.fields.eventstore(t), + sessionTokenVerifier: tt.fields.tokenVerifier, + checkPermission: tt.fields.checkPermission, + } + gotDetails, err := c.ApproveDeviceAuthWithSession(tt.args.ctx, tt.args.deviceCode, tt.args.sessionID, tt.args.sessionToken) + require.ErrorIs(t, err, tt.wantErr) + assertObjectDetails(t, tt.wantDetails, gotDetails) + }) + } +} + func TestCommands_CancelDeviceAuth(t *testing.T) { ctx := authz.WithInstanceID(context.Background(), "instance1") now := time.Now() diff --git a/internal/command/idp.go b/internal/command/idp.go index 84e6a7ddc2..821a577900 100644 --- a/internal/command/idp.go +++ b/internal/command/idp.go @@ -20,6 +20,7 @@ type GenericOAuthProvider struct { UserEndpoint string Scopes []string IDAttribute string + UsePKCE bool IDPOptions idp.Options } @@ -30,6 +31,7 @@ type GenericOIDCProvider struct { ClientSecret string Scopes []string IsIDTokenMapping bool + UsePKCE bool IDPOptions idp.Options } @@ -107,6 +109,7 @@ type LDAPProvider struct { UserObjectClasses []string UserFilters []string Timeout time.Duration + RootCA []byte LDAPAttributes idp.LDAPAttributes IDPOptions idp.Options } diff --git a/internal/command/idp_intent.go b/internal/command/idp_intent.go index 483cdcd08e..3cd9991679 100644 --- a/internal/command/idp_intent.go +++ b/internal/command/idp_intent.go @@ -25,7 +25,7 @@ import ( "github.com/zitadel/zitadel/internal/zerrors" ) -func (c *Commands) prepareCreateIntent(writeModel *IDPIntentWriteModel, idpID, successURL, failureURL string) preparation.Validation { +func (c *Commands) prepareCreateIntent(writeModel *IDPIntentWriteModel, idpID, successURL, failureURL string, idpArguments map[string]any) preparation.Validation { return func() (_ preparation.CreateCommands, err error) { if idpID == "" { return nil, zerrors.ThrowInvalidArgument(nil, "COMMAND-x8j2bk", "Errors.Intent.IDPMissing") @@ -53,24 +53,25 @@ func (c *Commands) prepareCreateIntent(writeModel *IDPIntentWriteModel, idpID, s successURL, failureURL, idpID, + idpArguments, ), }, nil }, nil } } -func (c *Commands) CreateIntent(ctx context.Context, idpID, successURL, failureURL, resourceOwner string) (*IDPIntentWriteModel, *domain.ObjectDetails, error) { - id, err := c.idGenerator.Next() - if err != nil { - return nil, nil, err - } - writeModel := NewIDPIntentWriteModel(id, resourceOwner) - if err != nil { - return nil, nil, err +func (c *Commands) CreateIntent(ctx context.Context, intentID, idpID, successURL, failureURL, resourceOwner string, idpArguments map[string]any) (*IDPIntentWriteModel, *domain.ObjectDetails, error) { + if intentID == "" { + var err error + intentID, err = c.idGenerator.Next() + if err != nil { + return nil, nil, err + } } + writeModel := NewIDPIntentWriteModel(intentID, resourceOwner) //nolint: staticcheck - cmds, err := preparation.PrepareCommands(ctx, c.eventstore.Filter, c.prepareCreateIntent(writeModel, idpID, successURL, failureURL)) + cmds, err := preparation.PrepareCommands(ctx, c.eventstore.Filter, c.prepareCreateIntent(writeModel, idpID, successURL, failureURL, idpArguments)) if err != nil { return nil, nil, err } @@ -132,18 +133,17 @@ func (c *Commands) GetActiveIntent(ctx context.Context, intentID string) (*IDPIn return intent, nil } -func (c *Commands) AuthFromProvider(ctx context.Context, idpID, state string, idpCallback, samlRootURL string) (string, bool, error) { +func (c *Commands) AuthFromProvider(ctx context.Context, idpID, idpCallback, samlRootURL string) (state string, session idp.Session, err error) { + state, err = c.idGenerator.Next() + if err != nil { + return "", nil, err + } provider, err := c.GetProvider(ctx, idpID, idpCallback, samlRootURL) if err != nil { - return "", false, err + return "", nil, err } - session, err := provider.BeginAuth(ctx, state) - if err != nil { - return "", false, err - } - - content, redirect := session.GetAuth(ctx) - return content, redirect, nil + session, err = provider.BeginAuth(ctx, state) + return state, session, err } func getIDPIntentWriteModel(ctx context.Context, writeModel *IDPIntentWriteModel, filter preparation.FilterToQueryReducer) error { diff --git a/internal/command/idp_intent_model.go b/internal/command/idp_intent_model.go index 62794323e1..c6bc26ab06 100644 --- a/internal/command/idp_intent_model.go +++ b/internal/command/idp_intent_model.go @@ -12,13 +12,14 @@ import ( type IDPIntentWriteModel struct { eventstore.WriteModel - SuccessURL *url.URL - FailureURL *url.URL - IDPID string - IDPUser []byte - IDPUserID string - IDPUserName string - UserID string + SuccessURL *url.URL + FailureURL *url.URL + IDPID string + IDPArguments map[string]any + IDPUser []byte + IDPUserID string + IDPUserName string + UserID string IDPAccessToken *crypto.CryptoValue IDPIDToken string @@ -81,6 +82,7 @@ func (wm *IDPIntentWriteModel) reduceStartedEvent(e *idpintent.StartedEvent) { wm.SuccessURL = e.SuccessURL wm.FailureURL = e.FailureURL wm.IDPID = e.IDPID + wm.IDPArguments = e.IDPArguments wm.State = domain.IDPIntentStateStarted } diff --git a/internal/command/idp_intent_test.go b/internal/command/idp_intent_test.go index 832e2e9902..2400b9ee35 100644 --- a/internal/command/idp_intent_test.go +++ b/internal/command/idp_intent_test.go @@ -39,11 +39,13 @@ func TestCommands_CreateIntent(t *testing.T) { idGenerator id.Generator } type args struct { - ctx context.Context - idpID string - successURL string - failureURL string - instanceID string + ctx context.Context + intentID string + idpID string + successURL string + failureURL string + instanceID string + idpArguments map[string]any } type res struct { intentID string @@ -182,6 +184,7 @@ func TestCommands_CreateIntent(t *testing.T) { "user", "idAttribute", nil, + true, rep_idp.Options{}, )), ), @@ -195,6 +198,7 @@ func TestCommands_CreateIntent(t *testing.T) { success, failure, "idp", + nil, ) }(), ), @@ -235,6 +239,7 @@ func TestCommands_CreateIntent(t *testing.T) { "user", "idAttribute", nil, + true, rep_idp.Options{}, )), ), @@ -248,6 +253,9 @@ func TestCommands_CreateIntent(t *testing.T) { success, failure, "idp", + map[string]interface{}{ + "verifier": "pkceOAuthVerifier", + }, ) }(), ), @@ -260,6 +268,9 @@ func TestCommands_CreateIntent(t *testing.T) { idpID: "idp", successURL: "https://success.url", failureURL: "https://failure.url", + idpArguments: map[string]interface{}{ + "verifier": "pkceOAuthVerifier", + }, }, res{ intentID: "id", @@ -288,6 +299,7 @@ func TestCommands_CreateIntent(t *testing.T) { "user", "idAttribute", nil, + true, rep_idp.Options{}, )), ), @@ -301,6 +313,9 @@ func TestCommands_CreateIntent(t *testing.T) { success, failure, "idp", + map[string]interface{}{ + "verifier": "pkceOAuthVerifier", + }, ) }(), ), @@ -313,6 +328,69 @@ func TestCommands_CreateIntent(t *testing.T) { idpID: "idp", successURL: "https://success.url", failureURL: "https://failure.url", + idpArguments: map[string]interface{}{ + "verifier": "pkceOAuthVerifier", + }, + }, + res{ + intentID: "id", + details: &domain.ObjectDetails{ResourceOwner: "instance"}, + }, + }, + { + "push, with id", + fields{ + eventstore: expectEventstore( + expectFilter(), + expectFilter( + eventFromEventPusher( + instance.NewOAuthIDPAddedEvent(context.Background(), &instance.NewAggregate("instance").Aggregate, + "idp", + "name", + "clientID", + &crypto.CryptoValue{ + CryptoType: crypto.TypeEncryption, + Algorithm: "enc", + KeyID: "id", + Crypted: []byte("clientSecret"), + }, + "auth", + "token", + "user", + "idAttribute", + nil, + true, + rep_idp.Options{}, + )), + ), + expectPush( + func() eventstore.Command { + success, _ := url.Parse("https://success.url") + failure, _ := url.Parse("https://failure.url") + return idpintent.NewStartedEvent( + context.Background(), + &idpintent.NewAggregate("id", "instance").Aggregate, + success, + failure, + "idp", + map[string]interface{}{ + "verifier": "pkceOAuthVerifier", + }, + ) + }(), + ), + ), + }, + args{ + ctx: context.Background(), + instanceID: "instance", + intentID: "id", + idpID: "idp", + successURL: "https://success.url", + failureURL: "https://failure.url", + idpArguments: map[string]interface{}{ + "verifier": "pkceOAuthVerifier", + }, }, res{ intentID: "id", @@ -326,7 +404,7 @@ func TestCommands_CreateIntent(t *testing.T) { eventstore: tt.fields.eventstore(t), idGenerator: tt.fields.idGenerator, } - intentWriteModel, details, err := c.CreateIntent(tt.args.ctx, tt.args.idpID, tt.args.successURL, tt.args.failureURL, tt.args.instanceID) + intentWriteModel, details, err := c.CreateIntent(tt.args.ctx, tt.args.intentID, tt.args.idpID, tt.args.successURL, tt.args.failureURL, tt.args.instanceID, tt.args.idpArguments) require.ErrorIs(t, err, tt.res.err) if intentWriteModel != nil { assert.Equal(t, tt.res.intentID, intentWriteModel.AggregateID) @@ -342,11 +420,11 @@ func TestCommands_AuthFromProvider(t *testing.T) { type fields struct { eventstore func(t *testing.T) *eventstore.Eventstore secretCrypto crypto.EncryptionAlgorithm + idGenerator id.Generator } type args struct { ctx context.Context idpID string - state string callbackURL string samlRootURL string } @@ -361,6 +439,22 @@ func TestCommands_AuthFromProvider(t *testing.T) { args args res res }{ + { + "error no id generator", + fields{ + secretCrypto: crypto.CreateMockEncryptionAlg(gomock.NewController(t)), + eventstore: expectEventstore(), + idGenerator: mock.NewIDGeneratorExpectError(t, zerrors.ThrowInternal(nil, "", "error id")), + }, + args{ + ctx: authz.SetCtxData(context.Background(), authz.CtxData{OrgID: "ro"}), + idpID: "idp", + callbackURL: "url", + }, + res{ + err: zerrors.ThrowInternal(nil, "", "error id"), + }, + }, { "idp not existing", fields{ @@ -368,11 +462,11 @@ func TestCommands_AuthFromProvider(t *testing.T) { eventstore: expectEventstore( expectFilter(), ), + idGenerator: mock.ExpectID(t, "id"), }, args{ ctx: authz.SetCtxData(context.Background(), authz.CtxData{OrgID: "ro"}), idpID: "idp", - state: "state", callbackURL: "url", }, res{ @@ -402,6 +496,7 @@ func TestCommands_AuthFromProvider(t *testing.T) { "user", "idAttribute", nil, + true, rep_idp.Options{}, )), eventFromEventPusherWithInstanceID( @@ -412,11 +507,11 @@ func TestCommands_AuthFromProvider(t *testing.T) { ), ), ), + idGenerator: mock.ExpectID(t, "id"), }, args{ ctx: authz.SetCtxData(context.Background(), authz.CtxData{OrgID: "ro"}), idpID: "idp", - state: "state", callbackURL: "url", }, res{ @@ -446,6 +541,7 @@ func TestCommands_AuthFromProvider(t *testing.T) { "user", "idAttribute", nil, + true, rep_idp.Options{}, )), ), @@ -467,19 +563,20 @@ func TestCommands_AuthFromProvider(t *testing.T) { "user", "idAttribute", nil, + true, rep_idp.Options{}, )), ), ), + idGenerator: mock.ExpectID(t, "id"), }, args{ ctx: authz.SetCtxData(context.Background(), authz.CtxData{OrgID: "ro"}), idpID: "idp", - state: "state", callbackURL: "url", }, res{ - content: "auth?client_id=clientID&prompt=select_account&redirect_uri=url&response_type=code&state=state", + content: "auth?client_id=clientID&prompt=select_account&redirect_uri=url&response_type=code&state=id", redirect: true, }, }, @@ -504,6 +601,7 @@ func TestCommands_AuthFromProvider(t *testing.T) { }, []string{"openid", "profile", "User.Read"}, false, + true, rep_idp.Options{}, )), eventFromEventPusherWithInstanceID( @@ -540,6 +638,7 @@ func TestCommands_AuthFromProvider(t *testing.T) { }, []string{"openid", "profile", "User.Read"}, false, + true, rep_idp.Options{}, )), eventFromEventPusherWithInstanceID( @@ -561,15 +660,15 @@ func TestCommands_AuthFromProvider(t *testing.T) { )), ), ), + idGenerator: mock.ExpectID(t, "id"), }, args{ ctx: authz.SetCtxData(context.Background(), authz.CtxData{OrgID: "ro"}), idpID: "idp", - state: "state", callbackURL: "url", }, res{ - content: "https://login.microsoftonline.com/tenant/oauth2/v2.0/authorize?client_id=clientID&prompt=select_account&redirect_uri=url&response_type=code&scope=openid+profile+User.Read&state=state", + content: "https://login.microsoftonline.com/tenant/oauth2/v2.0/authorize?client_id=clientID&prompt=select_account&redirect_uri=url&response_type=code&scope=openid+profile+User.Read&state=id", redirect: true, }, }, @@ -579,9 +678,16 @@ func TestCommands_AuthFromProvider(t *testing.T) { c := &Commands{ eventstore: tt.fields.eventstore(t), idpConfigEncryption: tt.fields.secretCrypto, + idGenerator: tt.fields.idGenerator, } - content, redirect, err := c.AuthFromProvider(tt.args.ctx, tt.args.idpID, tt.args.state, tt.args.callbackURL, tt.args.samlRootURL) + _, session, err := c.AuthFromProvider(tt.args.ctx, tt.args.idpID, tt.args.callbackURL, tt.args.samlRootURL) require.ErrorIs(t, err, tt.res.err) + + var content string + var redirect bool + if err == nil { + content, redirect = session.GetAuth(tt.args.ctx) + } assert.Equal(t, tt.res.redirect, redirect) assert.Equal(t, tt.res.content, content) }) @@ -592,11 +698,11 @@ func TestCommands_AuthFromProvider_SAML(t *testing.T) { type fields struct { eventstore func(t *testing.T) *eventstore.Eventstore secretCrypto crypto.EncryptionAlgorithm + idGenerator id.Generator } type args struct { ctx context.Context idpID string - state string callbackURL string samlRootURL string } @@ -669,6 +775,7 @@ func TestCommands_AuthFromProvider_SAML(t *testing.T) { success, failure, "idp", + nil, ) }(), ), @@ -683,11 +790,11 @@ func TestCommands_AuthFromProvider_SAML(t *testing.T) { }, ), ), + idGenerator: mock.ExpectID(t, "id"), }, args{ ctx: authz.SetCtxData(context.Background(), authz.CtxData{OrgID: "ro"}), idpID: "idp", - state: "id", callbackURL: "url", samlRootURL: "samlurl", }, @@ -705,10 +812,12 @@ func TestCommands_AuthFromProvider_SAML(t *testing.T) { c := &Commands{ eventstore: tt.fields.eventstore(t), idpConfigEncryption: tt.fields.secretCrypto, + idGenerator: tt.fields.idGenerator, } - content, _, err := c.AuthFromProvider(tt.args.ctx, tt.args.idpID, tt.args.state, tt.args.callbackURL, tt.args.samlRootURL) + _, session, err := c.AuthFromProvider(tt.args.ctx, tt.args.idpID, tt.args.callbackURL, tt.args.samlRootURL) require.ErrorIs(t, err, tt.res.err) + content, _ := session.GetAuth(tt.args.ctx) authURL, err := url.Parse(content) require.NoError(t, err) diff --git a/internal/command/idp_model.go b/internal/command/idp_model.go index fa38b4a075..5257d38bf4 100644 --- a/internal/command/idp_model.go +++ b/internal/command/idp_model.go @@ -1,6 +1,7 @@ package command import ( + "bytes" "net/http" "reflect" "slices" @@ -44,6 +45,7 @@ type OAuthIDPWriteModel struct { UserEndpoint string Scopes []string IDAttribute string + UsePKCE bool idp.Options State domain.IDPState @@ -72,6 +74,7 @@ func (wm *OAuthIDPWriteModel) reduceAddedEvent(e *idp.OAuthIDPAddedEvent) { wm.UserEndpoint = e.UserEndpoint wm.Scopes = e.Scopes wm.IDAttribute = e.IDAttribute + wm.UsePKCE = e.UsePKCE wm.Options = e.Options wm.State = domain.IDPStateActive } @@ -101,6 +104,9 @@ func (wm *OAuthIDPWriteModel) reduceChangedEvent(e *idp.OAuthIDPChangedEvent) { if e.IDAttribute != nil { wm.IDAttribute = *e.IDAttribute } + if e.UsePKCE != nil { + wm.UsePKCE = *e.UsePKCE + } wm.Options.ReduceChanges(e.OptionChanges) } @@ -114,6 +120,7 @@ func (wm *OAuthIDPWriteModel) NewChanges( userEndpoint, idAttribute string, scopes []string, + usePKCE bool, options idp.Options, ) ([]idp.OAuthIDPChanges, error) { changes := make([]idp.OAuthIDPChanges, 0) @@ -147,6 +154,9 @@ func (wm *OAuthIDPWriteModel) NewChanges( if wm.IDAttribute != idAttribute { changes = append(changes, idp.ChangeOAuthIDAttribute(idAttribute)) } + if wm.UsePKCE != usePKCE { + changes = append(changes, idp.ChangeOAuthUsePKCE(usePKCE)) + } opts := wm.Options.Changes(options) if !opts.IsZero() { changes = append(changes, idp.ChangeOAuthOptions(opts)) @@ -207,6 +217,7 @@ type OIDCIDPWriteModel struct { ClientSecret *crypto.CryptoValue Scopes []string IsIDTokenMapping bool + UsePKCE bool idp.Options State domain.IDPState @@ -247,6 +258,7 @@ func (wm *OIDCIDPWriteModel) reduceAddedEvent(e *idp.OIDCIDPAddedEvent) { wm.ClientSecret = e.ClientSecret wm.Scopes = e.Scopes wm.IsIDTokenMapping = e.IsIDTokenMapping + wm.UsePKCE = e.UsePKCE wm.Options = e.Options wm.State = domain.IDPStateActive } @@ -270,6 +282,9 @@ func (wm *OIDCIDPWriteModel) reduceChangedEvent(e *idp.OIDCIDPChangedEvent) { if e.IsIDTokenMapping != nil { wm.IsIDTokenMapping = *e.IsIDTokenMapping } + if e.UsePKCE != nil { + wm.UsePKCE = *e.UsePKCE + } wm.Options.ReduceChanges(e.OptionChanges) } @@ -280,7 +295,7 @@ func (wm *OIDCIDPWriteModel) NewChanges( clientSecretString string, secretCrypto crypto.EncryptionAlgorithm, scopes []string, - idTokenMapping bool, + idTokenMapping, usePKCE bool, options idp.Options, ) ([]idp.OIDCIDPChanges, error) { changes := make([]idp.OIDCIDPChanges, 0) @@ -308,6 +323,9 @@ func (wm *OIDCIDPWriteModel) NewChanges( if wm.IsIDTokenMapping != idTokenMapping { changes = append(changes, idp.ChangeOIDCIsIDTokenMapping(idTokenMapping)) } + if wm.UsePKCE != usePKCE { + changes = append(changes, idp.ChangeOIDCUsePKCE(usePKCE)) + } opts := wm.Options.Changes(options) if !opts.IsZero() { changes = append(changes, idp.ChangeOIDCOptions(opts)) @@ -1366,6 +1384,7 @@ type LDAPIDPWriteModel struct { UserObjectClasses []string UserFilters []string Timeout time.Duration + RootCA []byte idp.LDAPAttributes idp.Options @@ -1406,6 +1425,7 @@ func (wm *LDAPIDPWriteModel) reduceAddedEvent(e *idp.LDAPIDPAddedEvent) { wm.UserObjectClasses = e.UserObjectClasses wm.UserFilters = e.UserFilters wm.Timeout = e.Timeout + wm.RootCA = e.RootCA wm.LDAPAttributes = e.LDAPAttributes wm.Options = e.Options wm.State = domain.IDPStateActive @@ -1460,6 +1480,7 @@ func (wm *LDAPIDPWriteModel) NewChanges( userObjectClasses []string, userFilters []string, timeout time.Duration, + rootCA []byte, secretCrypto crypto.EncryptionAlgorithm, attributes idp.LDAPAttributes, options idp.Options, @@ -1501,6 +1522,9 @@ func (wm *LDAPIDPWriteModel) NewChanges( if wm.Timeout != timeout { changes = append(changes, idp.ChangeLDAPTimeout(timeout)) } + if !bytes.Equal(wm.RootCA, rootCA) { + changes = append(changes, idp.ChangeLDAPRootCA(rootCA)) + } attrs := wm.LDAPAttributes.Changes(attributes) if !attrs.IsZero() { changes = append(changes, idp.ChangeLDAPAttributes(attrs)) @@ -1582,6 +1606,7 @@ func (wm *LDAPIDPWriteModel) ToProvider(callbackURL string, idpAlg crypto.Encryp wm.UserObjectClasses, wm.UserFilters, wm.Timeout, + wm.RootCA, callbackURL, opts..., ), nil diff --git a/internal/command/instance.go b/internal/command/instance.go index 99075ccfad..1080168842 100644 --- a/internal/command/instance.go +++ b/internal/command/instance.go @@ -233,21 +233,25 @@ func (c *Commands) SetUpInstance(ctx context.Context, setup *InstanceSetup) (str return "", "", nil, nil, err } - events, err := c.eventstore.Push(ctx, cmds...) + _, err = c.eventstore.Push(ctx, cmds...) if err != nil { return "", "", nil, nil, err } + // RolePermissions need to be pushed in separate transaction. + // https://github.com/zitadel/zitadel/issues/9293 + details, err := c.SynchronizeRolePermission(ctx, setup.zitadel.instanceID, setup.RolePermissionMappings) + if err != nil { + return "", "", nil, nil, err + } + details.ResourceOwner = setup.zitadel.orgID + var token string if pat != nil { token = pat.Token } - return setup.zitadel.instanceID, token, machineKey, &domain.ObjectDetails{ - Sequence: events[len(events)-1].Sequence(), - EventDate: events[len(events)-1].CreatedAt(), - ResourceOwner: setup.zitadel.orgID, - }, nil + return setup.zitadel.instanceID, token, machineKey, details, nil } func contextWithInstanceSetupInfo(ctx context.Context, instanceID, projectID, consoleAppID, externalDomain string) context.Context { @@ -380,7 +384,6 @@ func setupInstanceElements(instanceAgg *instance.Aggregate, setup *InstanceSetup setup.LabelPolicy.ThemeMode, ), prepareAddDefaultEmailTemplate(instanceAgg, setup.EmailTemplate), - prepareAddRolePermissions(instanceAgg, setup.RolePermissionMappings), } } @@ -848,9 +851,6 @@ func (c *Commands) prepareSetDefaultLanguage(a *instance.Aggregate, defaultLangu if err := domain.LanguageIsAllowed(false, restrictionsWM.allowedLanguages, defaultLanguage); err != nil { return nil, err } - if err != nil { - return nil, err - } return []eventstore.Command{instance.NewDefaultLanguageSetEvent(ctx, &a.Aggregate, defaultLanguage)}, nil }, nil } diff --git a/internal/command/instance_features.go b/internal/command/instance_features.go index 1f714671bd..3e927cc0c5 100644 --- a/internal/command/instance_features.go +++ b/internal/command/instance_features.go @@ -30,6 +30,7 @@ type InstanceFeatures struct { EnableBackChannelLogout *bool LoginV2 *feature.LoginV2 PermissionCheckV2 *bool + ConsoleUseV2UserApi *bool } func (m *InstanceFeatures) isEmpty() bool { @@ -47,7 +48,7 @@ func (m *InstanceFeatures) isEmpty() bool { m.DisableUserTokenEvent == nil && m.EnableBackChannelLogout == nil && m.LoginV2 == nil && - m.PermissionCheckV2 == nil + m.PermissionCheckV2 == nil && m.ConsoleUseV2UserApi == nil } func (c *Commands) SetInstanceFeatures(ctx context.Context, f *InstanceFeatures) (*domain.ObjectDetails, error) { diff --git a/internal/command/instance_features_model.go b/internal/command/instance_features_model.go index aaa8b2e53a..954c769304 100644 --- a/internal/command/instance_features_model.go +++ b/internal/command/instance_features_model.go @@ -80,6 +80,7 @@ func (m *InstanceFeaturesWriteModel) Query() *eventstore.SearchQueryBuilder { feature_v2.InstanceEnableBackChannelLogout, feature_v2.InstanceLoginVersion, feature_v2.InstancePermissionCheckV2, + feature_v2.InstanceConsoleUseV2UserApi, ). Builder().ResourceOwner(m.ResourceOwner) } @@ -133,6 +134,9 @@ func reduceInstanceFeature(features *InstanceFeatures, key feature.Key, value an case feature.KeyPermissionCheckV2: v := value.(bool) features.PermissionCheckV2 = &v + case feature.KeyConsoleUseV2UserApi: + v := value.(bool) + features.ConsoleUseV2UserApi = &v } } @@ -153,5 +157,6 @@ func (wm *InstanceFeaturesWriteModel) setCommands(ctx context.Context, f *Instan cmds = appendFeatureUpdate(ctx, cmds, aggregate, wm.EnableBackChannelLogout, f.EnableBackChannelLogout, feature_v2.InstanceEnableBackChannelLogout) cmds = appendFeatureUpdate(ctx, cmds, aggregate, wm.LoginV2, f.LoginV2, feature_v2.InstanceLoginVersion) cmds = appendFeatureUpdate(ctx, cmds, aggregate, wm.PermissionCheckV2, f.PermissionCheckV2, feature_v2.InstancePermissionCheckV2) + cmds = appendFeatureUpdate(ctx, cmds, aggregate, wm.ConsoleUseV2UserApi, f.ConsoleUseV2UserApi, feature_v2.InstanceConsoleUseV2UserApi) return cmds } diff --git a/internal/command/instance_idp.go b/internal/command/instance_idp.go index 99ab506424..cea850dc0e 100644 --- a/internal/command/instance_idp.go +++ b/internal/command/instance_idp.go @@ -656,6 +656,7 @@ func (c *Commands) prepareAddInstanceOAuthProvider(a *instance.Aggregate, writeM provider.UserEndpoint, provider.IDAttribute, provider.Scopes, + provider.UsePKCE, provider.IDPOptions, ), }, nil @@ -711,6 +712,7 @@ func (c *Commands) prepareUpdateInstanceOAuthProvider(a *instance.Aggregate, wri provider.UserEndpoint, provider.IDAttribute, provider.Scopes, + provider.UsePKCE, provider.IDPOptions, ) if err != nil || event == nil { @@ -759,6 +761,7 @@ func (c *Commands) prepareAddInstanceOIDCProvider(a *instance.Aggregate, writeMo secret, provider.Scopes, provider.IsIDTokenMapping, + provider.UsePKCE, provider.IDPOptions, ), }, nil @@ -803,6 +806,7 @@ func (c *Commands) prepareUpdateInstanceOIDCProvider(a *instance.Aggregate, writ c.idpConfigEncryption, provider.Scopes, provider.IsIDTokenMapping, + provider.UsePKCE, provider.IDPOptions, ) if err != nil || event == nil { @@ -1556,6 +1560,7 @@ func (c *Commands) prepareAddInstanceLDAPProvider(a *instance.Aggregate, writeMo provider.UserObjectClasses, provider.UserFilters, provider.Timeout, + provider.RootCA, provider.LDAPAttributes, provider.IDPOptions, ), @@ -1616,6 +1621,7 @@ func (c *Commands) prepareUpdateInstanceLDAPProvider(a *instance.Aggregate, writ provider.UserObjectClasses, provider.UserFilters, provider.Timeout, + provider.RootCA, c.idpConfigEncryption, provider.LDAPAttributes, provider.IDPOptions, diff --git a/internal/command/instance_idp_model.go b/internal/command/instance_idp_model.go index 5c895b1fc7..d94c19d318 100644 --- a/internal/command/instance_idp_model.go +++ b/internal/command/instance_idp_model.go @@ -68,6 +68,7 @@ func (wm *InstanceOAuthIDPWriteModel) NewChangedEvent( userEndpoint, idAttribute string, scopes []string, + usePKCE bool, options idp.Options, ) (*instance.OAuthIDPChangedEvent, error) { @@ -81,6 +82,7 @@ func (wm *InstanceOAuthIDPWriteModel) NewChangedEvent( userEndpoint, idAttribute, scopes, + usePKCE, options, ) if err != nil || len(changes) == 0 { @@ -174,7 +176,7 @@ func (wm *InstanceOIDCIDPWriteModel) NewChangedEvent( clientSecretString string, secretCrypto crypto.EncryptionAlgorithm, scopes []string, - idTokenMapping bool, + idTokenMapping, usePKCE bool, options idp.Options, ) (*instance.OIDCIDPChangedEvent, error) { @@ -186,6 +188,7 @@ func (wm *InstanceOIDCIDPWriteModel) NewChangedEvent( secretCrypto, scopes, idTokenMapping, + usePKCE, options, ) if err != nil || len(changes) == 0 { @@ -768,6 +771,7 @@ func (wm *InstanceLDAPIDPWriteModel) NewChangedEvent( userObjectClasses []string, userFilters []string, timeout time.Duration, + rootCA []byte, secretCrypto crypto.EncryptionAlgorithm, attributes idp.LDAPAttributes, options idp.Options, @@ -784,6 +788,7 @@ func (wm *InstanceLDAPIDPWriteModel) NewChangedEvent( userObjectClasses, userFilters, timeout, + rootCA, secretCrypto, attributes, options, diff --git a/internal/command/instance_idp_test.go b/internal/command/instance_idp_test.go index 22defda532..8d872561c2 100644 --- a/internal/command/instance_idp_test.go +++ b/internal/command/instance_idp_test.go @@ -270,6 +270,7 @@ func TestCommandSide_AddInstanceGenericOAuthIDP(t *testing.T) { "user", "idAttribute", nil, + true, idp.Options{}, ), ), @@ -287,6 +288,7 @@ func TestCommandSide_AddInstanceGenericOAuthIDP(t *testing.T) { TokenEndpoint: "token", UserEndpoint: "user", IDAttribute: "idAttribute", + UsePKCE: true, }, }, res: res{ @@ -315,6 +317,7 @@ func TestCommandSide_AddInstanceGenericOAuthIDP(t *testing.T) { "user", "idAttribute", []string{"user"}, + true, idp.Options{ IsCreationAllowed: true, IsLinkingAllowed: true, @@ -338,6 +341,7 @@ func TestCommandSide_AddInstanceGenericOAuthIDP(t *testing.T) { UserEndpoint: "user", Scopes: []string{"user"}, IDAttribute: "idAttribute", + UsePKCE: true, IDPOptions: idp.Options{ IsCreationAllowed: true, IsLinkingAllowed: true, @@ -569,6 +573,7 @@ func TestCommandSide_UpdateInstanceGenericOAuthIDP(t *testing.T) { "user", "idAttribute", nil, + true, idp.Options{}, )), ), @@ -584,6 +589,7 @@ func TestCommandSide_UpdateInstanceGenericOAuthIDP(t *testing.T) { TokenEndpoint: "token", UserEndpoint: "user", IDAttribute: "idAttribute", + UsePKCE: true, }, }, res: res{ @@ -611,6 +617,7 @@ func TestCommandSide_UpdateInstanceGenericOAuthIDP(t *testing.T) { "user", "idAttribute", nil, + false, idp.Options{}, )), ), @@ -633,6 +640,7 @@ func TestCommandSide_UpdateInstanceGenericOAuthIDP(t *testing.T) { idp.ChangeOAuthUserEndpoint("new user"), idp.ChangeOAuthScopes([]string{"openid", "profile"}), idp.ChangeOAuthIDAttribute("newAttribute"), + idp.ChangeOAuthUsePKCE(true), idp.ChangeOAuthOptions(idp.OptionChanges{ IsCreationAllowed: &t, IsLinkingAllowed: &t, @@ -659,6 +667,7 @@ func TestCommandSide_UpdateInstanceGenericOAuthIDP(t *testing.T) { UserEndpoint: "new user", Scopes: []string{"openid", "profile"}, IDAttribute: "newAttribute", + UsePKCE: true, IDPOptions: idp.Options{ IsCreationAllowed: true, IsLinkingAllowed: true, @@ -805,6 +814,7 @@ func TestCommandSide_AddInstanceGenericOIDCIDP(t *testing.T) { }, nil, false, + true, idp.Options{}, ), ), @@ -819,6 +829,7 @@ func TestCommandSide_AddInstanceGenericOIDCIDP(t *testing.T) { Issuer: "issuer", ClientID: "clientID", ClientSecret: "clientSecret", + UsePKCE: true, }, }, res: res{ @@ -845,6 +856,7 @@ func TestCommandSide_AddInstanceGenericOIDCIDP(t *testing.T) { }, []string{openid.ScopeOpenID}, true, + true, idp.Options{ IsCreationAllowed: true, IsLinkingAllowed: true, @@ -866,6 +878,7 @@ func TestCommandSide_AddInstanceGenericOIDCIDP(t *testing.T) { ClientSecret: "clientSecret", Scopes: []string{openid.ScopeOpenID}, IsIDTokenMapping: true, + UsePKCE: true, IDPOptions: idp.Options{ IsCreationAllowed: true, IsLinkingAllowed: true, @@ -1029,6 +1042,7 @@ func TestCommandSide_UpdateInstanceGenericOIDCIDP(t *testing.T) { }, nil, false, + false, idp.Options{}, )), ), @@ -1066,6 +1080,7 @@ func TestCommandSide_UpdateInstanceGenericOIDCIDP(t *testing.T) { }, nil, false, + false, idp.Options{}, )), ), @@ -1086,6 +1101,7 @@ func TestCommandSide_UpdateInstanceGenericOIDCIDP(t *testing.T) { }), idp.ChangeOIDCScopes([]string{"openid", "profile"}), idp.ChangeOIDCIsIDTokenMapping(true), + idp.ChangeOIDCUsePKCE(true), idp.ChangeOIDCOptions(idp.OptionChanges{ IsCreationAllowed: &t, IsLinkingAllowed: &t, @@ -1110,6 +1126,7 @@ func TestCommandSide_UpdateInstanceGenericOIDCIDP(t *testing.T) { ClientSecret: "newSecret", Scopes: []string{"openid", "profile"}, IsIDTokenMapping: true, + UsePKCE: true, IDPOptions: idp.Options{ IsCreationAllowed: true, IsLinkingAllowed: true, @@ -1253,6 +1270,7 @@ func TestCommandSide_MigrateInstanceGenericOIDCToAzureADProvider(t *testing.T) { }, nil, false, + false, idp.Options{}, )), ), @@ -1311,6 +1329,7 @@ func TestCommandSide_MigrateInstanceGenericOIDCToAzureADProvider(t *testing.T) { }, nil, false, + false, idp.Options{}, )), ), @@ -1475,6 +1494,7 @@ func TestCommandSide_MigrateInstanceOIDCToGoogleIDP(t *testing.T) { }, nil, false, + false, idp.Options{}, )), ), @@ -1527,6 +1547,7 @@ func TestCommandSide_MigrateInstanceOIDCToGoogleIDP(t *testing.T) { }, nil, false, + false, idp.Options{}, )), ), @@ -4260,6 +4281,7 @@ func TestCommandSide_AddInstanceLDAPIDP(t *testing.T) { []string{"object"}, []string{"filter"}, time.Second*30, + []byte("certificate"), idp.LDAPAttributes{}, idp.Options{}, ), @@ -4281,6 +4303,7 @@ func TestCommandSide_AddInstanceLDAPIDP(t *testing.T) { UserObjectClasses: []string{"object"}, UserFilters: []string{"filter"}, Timeout: time.Second * 30, + RootCA: []byte("certificate"), }, }, res: res{ @@ -4311,6 +4334,7 @@ func TestCommandSide_AddInstanceLDAPIDP(t *testing.T) { []string{"object"}, []string{"filter"}, time.Second*30, + []byte("certificate"), idp.LDAPAttributes{ IDAttribute: "id", FirstNameAttribute: "firstName", @@ -4351,6 +4375,7 @@ func TestCommandSide_AddInstanceLDAPIDP(t *testing.T) { UserObjectClasses: []string{"object"}, UserFilters: []string{"filter"}, Timeout: time.Second * 30, + RootCA: []byte("certificate"), LDAPAttributes: idp.LDAPAttributes{ IDAttribute: "id", FirstNameAttribute: "firstName", @@ -4626,6 +4651,7 @@ func TestCommandSide_UpdateInstanceLDAPIDP(t *testing.T) { []string{"object"}, []string{"filter"}, time.Second*30, + []byte("certificate"), idp.LDAPAttributes{}, idp.Options{}, )), @@ -4645,6 +4671,7 @@ func TestCommandSide_UpdateInstanceLDAPIDP(t *testing.T) { UserObjectClasses: []string{"object"}, UserFilters: []string{"filter"}, Timeout: time.Second * 30, + RootCA: []byte("certificate"), }, }, res: res{ @@ -4674,6 +4701,7 @@ func TestCommandSide_UpdateInstanceLDAPIDP(t *testing.T) { []string{"object"}, []string{"filter"}, time.Second*30, + []byte("certificate"), idp.LDAPAttributes{}, idp.Options{}, )), @@ -4742,6 +4770,7 @@ func TestCommandSide_UpdateInstanceLDAPIDP(t *testing.T) { UserObjectClasses: []string{"new object"}, UserFilters: []string{"new filter"}, Timeout: time.Second * 20, + RootCA: []byte("certificate"), LDAPAttributes: idp.LDAPAttributes{ IDAttribute: "new id", FirstNameAttribute: "new firstName", diff --git a/internal/command/instance_permissions.go b/internal/command/instance_permissions.go deleted file mode 100644 index c46c8f7c4a..0000000000 --- a/internal/command/instance_permissions.go +++ /dev/null @@ -1,29 +0,0 @@ -package command - -import ( - "context" - "strings" - - "github.com/zitadel/zitadel/internal/api/authz" - "github.com/zitadel/zitadel/internal/command/preparation" - "github.com/zitadel/zitadel/internal/eventstore" - "github.com/zitadel/zitadel/internal/repository/instance" - "github.com/zitadel/zitadel/internal/repository/permission" -) - -func prepareAddRolePermissions(a *instance.Aggregate, roles []authz.RoleMapping) preparation.Validation { - return func() (preparation.CreateCommands, error) { - return func(ctx context.Context, _ preparation.FilterToQueryReducer) (cmds []eventstore.Command, _ error) { - aggregate := permission.NewAggregate(a.InstanceID) - for _, r := range roles { - if strings.HasPrefix(r.Role, "SYSTEM") { - continue - } - for _, p := range r.Permissions { - cmds = append(cmds, permission.NewAddedEvent(ctx, aggregate, r.Role, p)) - } - } - return cmds, nil - }, nil - } -} diff --git a/internal/command/instance_role_permissions.go b/internal/command/instance_role_permissions.go new file mode 100644 index 0000000000..c0c6355dd6 --- /dev/null +++ b/internal/command/instance_role_permissions.go @@ -0,0 +1,101 @@ +package command + +import ( + "context" + "database/sql" + _ "embed" + "strings" + + "github.com/zitadel/logging" + + "github.com/zitadel/zitadel/internal/api/authz" + "github.com/zitadel/zitadel/internal/database" + "github.com/zitadel/zitadel/internal/domain" + "github.com/zitadel/zitadel/internal/eventstore" + "github.com/zitadel/zitadel/internal/repository/permission" + "github.com/zitadel/zitadel/internal/telemetry/tracing" + "github.com/zitadel/zitadel/internal/zerrors" +) + +const ( + CockroachRollPermissionChunkSize uint16 = 50 +) + +// SynchronizeRolePermission checks the current state of role permissions in the eventstore for the aggregate. +// It pushes the commands required to reach the desired state passed in target. +// For system level permissions aggregateID must be set to `SYSTEM`, else it is the instance ID. +// +// In case cockroachDB is used, the commands are pushed in chunks of CockroachRollPermissionChunkSize. +func (c *Commands) SynchronizeRolePermission(ctx context.Context, aggregateID string, target []authz.RoleMapping) (_ *domain.ObjectDetails, err error) { + ctx, span := tracing.NewSpan(ctx) + defer func() { span.EndWithError(err) }() + + cmds, err := synchronizeRolePermissionCommands(ctx, c.eventstore.Client(), aggregateID, + rolePermissionMappingsToDatabaseMap(target, aggregateID == "SYSTEM"), + ) + if err != nil { + return nil, zerrors.ThrowInternal(err, "COMMA-Iej2r", "Errors.Internal") + } + var events []eventstore.Event + if c.eventstore.Client().Database.Type() == "cockroach" { + events, err = c.pushChunked(ctx, CockroachRollPermissionChunkSize, cmds...) + } else { + events, err = c.eventstore.Push(ctx, cmds...) + } + if err != nil { + return nil, zerrors.ThrowInternal(err, "COMMA-AiV3u", "Errors.Internal") + } + return pushedEventsToObjectDetails(events), nil +} + +func rolePermissionMappingsToDatabaseMap(mappings []authz.RoleMapping, system bool) database.Map[[]string] { + out := make(database.Map[[]string], len(mappings)) + for _, m := range mappings { + if system == strings.HasPrefix(m.Role, "SYSTEM") { + out[m.Role] = m.Permissions + } + } + return out +} + +var ( + //go:embed instance_role_permissions_sync.sql + instanceRolePermissionsSyncQuery string +) + +// synchronizeRolePermissionCommands checks the current state of role permissions in the eventstore for the aggregate. +// It returns the commands required to reach the desired state passed in target. +// For system level permissions aggregateID must be set to `SYSTEM`, else it is the instance ID. +func synchronizeRolePermissionCommands(ctx context.Context, db *database.DB, aggregateID string, target database.Map[[]string]) (cmds []eventstore.Command, err error) { + ctx, span := tracing.NewSpan(ctx) + defer func() { span.EndWithError(err) }() + + err = db.QueryContext(ctx, + rolePermissionScanner(ctx, permission.NewAggregate(aggregateID), &cmds), + instanceRolePermissionsSyncQuery, + aggregateID, target) + if err != nil { + return nil, err + } + return cmds, nil +} + +func rolePermissionScanner(ctx context.Context, aggregate *eventstore.Aggregate, cmds *[]eventstore.Command) func(rows *sql.Rows) error { + return func(rows *sql.Rows) error { + for rows.Next() { + var operation, role, perm string + if err := rows.Scan(&operation, &role, &perm); err != nil { + return err + } + logging.WithFields("aggregate_id", aggregate.ID, "operation", operation, "role", role, "permission", perm).Debug("sync role permission") + switch operation { + case "add": + *cmds = append(*cmds, permission.NewAddedEvent(ctx, aggregate, role, perm)) + case "remove": + *cmds = append(*cmds, permission.NewRemovedEvent(ctx, aggregate, role, perm)) + } + } + return rows.Close() + + } +} diff --git a/cmd/setup/sync_role_permissions.sql b/internal/command/instance_role_permissions_sync.sql similarity index 100% rename from cmd/setup/sync_role_permissions.sql rename to internal/command/instance_role_permissions_sync.sql diff --git a/internal/command/instance_role_permissions_test.go b/internal/command/instance_role_permissions_test.go new file mode 100644 index 0000000000..0a8d84b9e7 --- /dev/null +++ b/internal/command/instance_role_permissions_test.go @@ -0,0 +1,139 @@ +package command + +import ( + "context" + "database/sql" + "database/sql/driver" + _ "embed" + "testing" + + "github.com/stretchr/testify/assert" + "github.com/stretchr/testify/require" + + "github.com/zitadel/zitadel/internal/api/authz" + "github.com/zitadel/zitadel/internal/database" + "github.com/zitadel/zitadel/internal/database/mock" + "github.com/zitadel/zitadel/internal/eventstore" + "github.com/zitadel/zitadel/internal/repository/permission" +) + +func Test_rolePermissionMappingsToDatabaseMap(t *testing.T) { + type args struct { + mappings []authz.RoleMapping + system bool + } + tests := []struct { + name string + args args + want database.Map[[]string] + }{ + { + name: "instance", + args: args{ + mappings: []authz.RoleMapping{ + {Role: "role1", Permissions: []string{"permission1", "permission2"}}, + {Role: "role2", Permissions: []string{"permission3", "permission4"}}, + {Role: "SYSTEM_ROLE", Permissions: []string{"permission5", "permission6"}}, + }, + system: false, + }, + want: database.Map[[]string]{ + "role1": []string{"permission1", "permission2"}, + "role2": []string{"permission3", "permission4"}, + }, + }, + { + name: "system", + args: args{ + mappings: []authz.RoleMapping{ + {Role: "role1", Permissions: []string{"permission1", "permission2"}}, + {Role: "role2", Permissions: []string{"permission3", "permission4"}}, + {Role: "SYSTEM_ROLE", Permissions: []string{"permission5", "permission6"}}, + }, + system: true, + }, + want: database.Map[[]string]{ + "SYSTEM_ROLE": []string{"permission5", "permission6"}, + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + got := rolePermissionMappingsToDatabaseMap(tt.args.mappings, tt.args.system) + assert.Equal(t, tt.want, got) + }) + } +} + +func Test_synchronizeRolePermissionCommands(t *testing.T) { + const aggregateID = "aggregateID" + aggregate := permission.NewAggregate(aggregateID) + target := database.Map[[]string]{ + "role1": []string{"permission1", "permission2"}, + "role2": []string{"permission3", "permission4"}, + } + tests := []struct { + name string + mock func(*testing.T) *mock.SQLMock + wantCmds []eventstore.Command + wantErr error + }{ + { + name: "query error", + mock: func(t *testing.T) *mock.SQLMock { + return mock.NewSQLMock(t, + mock.ExpectQuery(instanceRolePermissionsSyncQuery, + mock.WithQueryArgs(aggregateID, target), + mock.WithQueryErr(sql.ErrConnDone), + ), + ) + }, + wantErr: sql.ErrConnDone, + }, + { + name: "no rows", + mock: func(t *testing.T) *mock.SQLMock { + return mock.NewSQLMock(t, + mock.ExpectQuery(instanceRolePermissionsSyncQuery, + mock.WithQueryArgs(aggregateID, target), + mock.WithQueryResult([]string{"operation", "role", "permission"}, [][]driver.Value{}), + ), + ) + }, + }, + { + name: "add and remove operations", + mock: func(t *testing.T) *mock.SQLMock { + return mock.NewSQLMock(t, + mock.ExpectQuery(instanceRolePermissionsSyncQuery, + mock.WithQueryArgs(aggregateID, target), + mock.WithQueryResult([]string{"operation", "role", "permission"}, [][]driver.Value{ + {"add", "role1", "permission1"}, + {"add", "role1", "permission2"}, + {"remove", "role3", "permission5"}, + {"remove", "role3", "permission6"}, + }), + ), + ) + }, + wantCmds: []eventstore.Command{ + permission.NewAddedEvent(context.Background(), aggregate, "role1", "permission1"), + permission.NewAddedEvent(context.Background(), aggregate, "role1", "permission2"), + permission.NewRemovedEvent(context.Background(), aggregate, "role3", "permission5"), + permission.NewRemovedEvent(context.Background(), aggregate, "role3", "permission6"), + }, + }, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + mock := tt.mock(t) + defer mock.Assert(t) + db := &database.DB{ + DB: mock.DB, + } + gotCmds, err := synchronizeRolePermissionCommands(context.Background(), db, aggregateID, target) + require.ErrorIs(t, err, tt.wantErr) + assert.Equal(t, tt.wantCmds, gotCmds) + }) + } +} diff --git a/internal/command/notification.go b/internal/command/notification.go deleted file mode 100644 index b0524afa89..0000000000 --- a/internal/command/notification.go +++ /dev/null @@ -1,162 +0,0 @@ -package command - -import ( - "context" - "database/sql" - "time" - - "github.com/zitadel/zitadel/internal/crypto" - "github.com/zitadel/zitadel/internal/domain" - "github.com/zitadel/zitadel/internal/eventstore" - "github.com/zitadel/zitadel/internal/query" - "github.com/zitadel/zitadel/internal/repository/notification" -) - -type NotificationRequest struct { - UserID string - UserResourceOwner string - TriggerOrigin string - URLTemplate string - Code *crypto.CryptoValue - CodeExpiry time.Duration - EventType eventstore.EventType - NotificationType domain.NotificationType - MessageType string - UnverifiedNotificationChannel bool - Args *domain.NotificationArguments - AggregateID string - AggregateResourceOwner string - IsOTP bool - RequiresPreviousDomain bool -} - -type NotificationRetryRequest struct { - NotificationRequest - BackOff time.Duration - NotifyUser *query.NotifyUser -} - -func NewNotificationRequest( - userID, resourceOwner, triggerOrigin string, - eventType eventstore.EventType, - notificationType domain.NotificationType, - messageType string, -) *NotificationRequest { - return &NotificationRequest{ - UserID: userID, - UserResourceOwner: resourceOwner, - TriggerOrigin: triggerOrigin, - EventType: eventType, - NotificationType: notificationType, - MessageType: messageType, - } -} - -func (r *NotificationRequest) WithCode(code *crypto.CryptoValue, expiry time.Duration) *NotificationRequest { - r.Code = code - r.CodeExpiry = expiry - return r -} - -func (r *NotificationRequest) WithURLTemplate(urlTemplate string) *NotificationRequest { - r.URLTemplate = urlTemplate - return r -} - -func (r *NotificationRequest) WithUnverifiedChannel() *NotificationRequest { - r.UnverifiedNotificationChannel = true - return r -} - -func (r *NotificationRequest) WithArgs(args *domain.NotificationArguments) *NotificationRequest { - r.Args = args - return r -} - -func (r *NotificationRequest) WithAggregate(id, resourceOwner string) *NotificationRequest { - r.AggregateID = id - r.AggregateResourceOwner = resourceOwner - return r -} - -func (r *NotificationRequest) WithOTP() *NotificationRequest { - r.IsOTP = true - return r -} - -func (r *NotificationRequest) WithPreviousDomain() *NotificationRequest { - r.RequiresPreviousDomain = true - return r -} - -// RequestNotification writes a new notification.RequestEvent with the notification.Aggregate to the eventstore -func (c *Commands) RequestNotification( - ctx context.Context, - resourceOwner string, - request *NotificationRequest, -) error { - id, err := c.idGenerator.Next() - if err != nil { - return err - } - _, err = c.eventstore.Push(ctx, notification.NewRequestedEvent(ctx, ¬ification.NewAggregate(id, resourceOwner).Aggregate, - request.UserID, - request.UserResourceOwner, - request.AggregateID, - request.AggregateResourceOwner, - request.TriggerOrigin, - request.URLTemplate, - request.Code, - request.CodeExpiry, - request.EventType, - request.NotificationType, - request.MessageType, - request.UnverifiedNotificationChannel, - request.IsOTP, - request.RequiresPreviousDomain, - request.Args)) - return err -} - -// NotificationCanceled writes a new notification.CanceledEvent with the notification.Aggregate to the eventstore -func (c *Commands) NotificationCanceled(ctx context.Context, tx *sql.Tx, id, resourceOwner string, requestError error) error { - var errorMessage string - if requestError != nil { - errorMessage = requestError.Error() - } - _, err := c.eventstore.PushWithClient(ctx, tx, notification.NewCanceledEvent(ctx, ¬ification.NewAggregate(id, resourceOwner).Aggregate, errorMessage)) - return err -} - -// NotificationSent writes a new notification.SentEvent with the notification.Aggregate to the eventstore -func (c *Commands) NotificationSent(ctx context.Context, tx *sql.Tx, id, resourceOwner string) error { - _, err := c.eventstore.PushWithClient(ctx, tx, notification.NewSentEvent(ctx, ¬ification.NewAggregate(id, resourceOwner).Aggregate)) - return err -} - -// NotificationRetryRequested writes a new notification.RetryRequestEvent with the notification.Aggregate to the eventstore -func (c *Commands) NotificationRetryRequested(ctx context.Context, tx *sql.Tx, id, resourceOwner string, request *NotificationRetryRequest, requestError error) error { - var errorMessage string - if requestError != nil { - errorMessage = requestError.Error() - } - _, err := c.eventstore.PushWithClient(ctx, tx, notification.NewRetryRequestedEvent(ctx, ¬ification.NewAggregate(id, resourceOwner).Aggregate, - request.UserID, - request.UserResourceOwner, - request.AggregateID, - request.AggregateResourceOwner, - request.TriggerOrigin, - request.URLTemplate, - request.Code, - request.CodeExpiry, - request.EventType, - request.NotificationType, - request.MessageType, - request.UnverifiedNotificationChannel, - request.IsOTP, - request.Args, - request.NotifyUser, - request.BackOff, - errorMessage)) - return err -} diff --git a/internal/command/org_idp.go b/internal/command/org_idp.go index 26690b3a66..d24b0f7840 100644 --- a/internal/command/org_idp.go +++ b/internal/command/org_idp.go @@ -628,6 +628,7 @@ func (c *Commands) prepareAddOrgOAuthProvider(a *org.Aggregate, writeModel *OrgO provider.UserEndpoint, provider.IDAttribute, provider.Scopes, + provider.UsePKCE, provider.IDPOptions, ), }, nil @@ -683,6 +684,7 @@ func (c *Commands) prepareUpdateOrgOAuthProvider(a *org.Aggregate, writeModel *O provider.UserEndpoint, provider.IDAttribute, provider.Scopes, + provider.UsePKCE, provider.IDPOptions, ) if err != nil || event == nil { @@ -731,6 +733,7 @@ func (c *Commands) prepareAddOrgOIDCProvider(a *org.Aggregate, writeModel *OrgOI secret, provider.Scopes, provider.IsIDTokenMapping, + provider.UsePKCE, provider.IDPOptions, ), }, nil @@ -775,6 +778,7 @@ func (c *Commands) prepareUpdateOrgOIDCProvider(a *org.Aggregate, writeModel *Or c.idpConfigEncryption, provider.Scopes, provider.IsIDTokenMapping, + provider.UsePKCE, provider.IDPOptions, ) if err != nil || event == nil { @@ -1540,6 +1544,7 @@ func (c *Commands) prepareAddOrgLDAPProvider(a *org.Aggregate, writeModel *OrgLD provider.UserObjectClasses, provider.UserFilters, provider.Timeout, + provider.RootCA, provider.LDAPAttributes, provider.IDPOptions, ), @@ -1600,6 +1605,7 @@ func (c *Commands) prepareUpdateOrgLDAPProvider(a *org.Aggregate, writeModel *Or provider.UserObjectClasses, provider.UserFilters, provider.Timeout, + provider.RootCA, c.idpConfigEncryption, provider.LDAPAttributes, provider.IDPOptions, diff --git a/internal/command/org_idp_model.go b/internal/command/org_idp_model.go index df00096095..3baea11495 100644 --- a/internal/command/org_idp_model.go +++ b/internal/command/org_idp_model.go @@ -70,6 +70,7 @@ func (wm *OrgOAuthIDPWriteModel) NewChangedEvent( userEndpoint, idAttribute string, scopes []string, + usePKCE bool, options idp.Options, ) (*org.OAuthIDPChangedEvent, error) { @@ -83,6 +84,7 @@ func (wm *OrgOAuthIDPWriteModel) NewChangedEvent( userEndpoint, idAttribute, scopes, + usePKCE, options, ) if err != nil || len(changes) == 0 { @@ -176,7 +178,7 @@ func (wm *OrgOIDCIDPWriteModel) NewChangedEvent( clientSecretString string, secretCrypto crypto.EncryptionAlgorithm, scopes []string, - idTokenMapping bool, + idTokenMapping, usePKCE bool, options idp.Options, ) (*org.OIDCIDPChangedEvent, error) { @@ -188,6 +190,7 @@ func (wm *OrgOIDCIDPWriteModel) NewChangedEvent( secretCrypto, scopes, idTokenMapping, + usePKCE, options, ) if err != nil || len(changes) == 0 { @@ -778,6 +781,7 @@ func (wm *OrgLDAPIDPWriteModel) NewChangedEvent( userObjectClasses []string, userFilters []string, timeout time.Duration, + rootCA []byte, secretCrypto crypto.EncryptionAlgorithm, attributes idp.LDAPAttributes, options idp.Options, @@ -794,6 +798,7 @@ func (wm *OrgLDAPIDPWriteModel) NewChangedEvent( userObjectClasses, userFilters, timeout, + rootCA, secretCrypto, attributes, options, diff --git a/internal/command/org_idp_test.go b/internal/command/org_idp_test.go index 75321bb603..25115f71fe 100644 --- a/internal/command/org_idp_test.go +++ b/internal/command/org_idp_test.go @@ -210,6 +210,7 @@ func TestCommandSide_AddOrgGenericOAuthProvider(t *testing.T) { "user", "idAttribute", nil, + false, idp.Options{}, ), ), @@ -256,6 +257,7 @@ func TestCommandSide_AddOrgGenericOAuthProvider(t *testing.T) { "user", "idAttribute", []string{"user"}, + true, idp.Options{ IsCreationAllowed: true, IsLinkingAllowed: true, @@ -280,6 +282,7 @@ func TestCommandSide_AddOrgGenericOAuthProvider(t *testing.T) { UserEndpoint: "user", Scopes: []string{"user"}, IDAttribute: "idAttribute", + UsePKCE: true, IDPOptions: idp.Options{ IsCreationAllowed: true, IsLinkingAllowed: true, @@ -520,6 +523,7 @@ func TestCommandSide_UpdateOrgGenericOAuthIDP(t *testing.T) { "user", "idAttribute", nil, + false, idp.Options{}, )), ), @@ -536,6 +540,7 @@ func TestCommandSide_UpdateOrgGenericOAuthIDP(t *testing.T) { TokenEndpoint: "token", UserEndpoint: "user", IDAttribute: "idAttribute", + UsePKCE: false, }, }, res: res{ @@ -563,6 +568,7 @@ func TestCommandSide_UpdateOrgGenericOAuthIDP(t *testing.T) { "user", "idAttribute", nil, + false, idp.Options{}, )), ), @@ -585,6 +591,7 @@ func TestCommandSide_UpdateOrgGenericOAuthIDP(t *testing.T) { idp.ChangeOAuthUserEndpoint("new user"), idp.ChangeOAuthScopes([]string{"openid", "profile"}), idp.ChangeOAuthIDAttribute("newAttribute"), + idp.ChangeOAuthUsePKCE(true), idp.ChangeOAuthOptions(idp.OptionChanges{ IsCreationAllowed: &t, IsLinkingAllowed: &t, @@ -612,6 +619,7 @@ func TestCommandSide_UpdateOrgGenericOAuthIDP(t *testing.T) { UserEndpoint: "new user", Scopes: []string{"openid", "profile"}, IDAttribute: "newAttribute", + UsePKCE: true, IDPOptions: idp.Options{ IsCreationAllowed: true, IsLinkingAllowed: true, @@ -763,6 +771,7 @@ func TestCommandSide_AddOrgGenericOIDCIDP(t *testing.T) { }, nil, false, + false, idp.Options{}, ), ), @@ -804,6 +813,7 @@ func TestCommandSide_AddOrgGenericOIDCIDP(t *testing.T) { }, []string{openid.ScopeOpenID}, true, + true, idp.Options{ IsCreationAllowed: true, IsLinkingAllowed: true, @@ -826,6 +836,7 @@ func TestCommandSide_AddOrgGenericOIDCIDP(t *testing.T) { ClientSecret: "clientSecret", Scopes: []string{openid.ScopeOpenID}, IsIDTokenMapping: true, + UsePKCE: true, IDPOptions: idp.Options{ IsCreationAllowed: true, IsLinkingAllowed: true, @@ -995,6 +1006,7 @@ func TestCommandSide_UpdateOrgGenericOIDCIDP(t *testing.T) { }, nil, false, + false, idp.Options{}, )), ), @@ -1033,6 +1045,7 @@ func TestCommandSide_UpdateOrgGenericOIDCIDP(t *testing.T) { }, nil, false, + false, idp.Options{}, )), ), @@ -1053,6 +1066,7 @@ func TestCommandSide_UpdateOrgGenericOIDCIDP(t *testing.T) { }), idp.ChangeOIDCScopes([]string{"openid", "profile"}), idp.ChangeOIDCIsIDTokenMapping(true), + idp.ChangeOIDCUsePKCE(true), idp.ChangeOIDCOptions(idp.OptionChanges{ IsCreationAllowed: &t, IsLinkingAllowed: &t, @@ -1078,6 +1092,7 @@ func TestCommandSide_UpdateOrgGenericOIDCIDP(t *testing.T) { ClientSecret: "newSecret", Scopes: []string{"openid", "profile"}, IsIDTokenMapping: true, + UsePKCE: true, IDPOptions: idp.Options{ IsCreationAllowed: true, IsLinkingAllowed: true, @@ -1225,6 +1240,7 @@ func TestCommandSide_MigrateOrgGenericOIDCToAzureADProvider(t *testing.T) { }, nil, false, + false, idp.Options{}, )), ), @@ -1284,6 +1300,7 @@ func TestCommandSide_MigrateOrgGenericOIDCToAzureADProvider(t *testing.T) { }, nil, false, + false, idp.Options{}, )), ), @@ -1452,6 +1469,7 @@ func TestCommandSide_MigrateOrgOIDCToGoogleIDP(t *testing.T) { }, nil, false, + false, idp.Options{}, )), ), @@ -1505,6 +1523,7 @@ func TestCommandSide_MigrateOrgOIDCToGoogleIDP(t *testing.T) { }, nil, false, + false, idp.Options{}, )), ), @@ -4328,6 +4347,7 @@ func TestCommandSide_AddOrgLDAPIDP(t *testing.T) { []string{"object"}, []string{"filter"}, time.Second*30, + nil, idp.LDAPAttributes{}, idp.Options{}, ), @@ -4380,6 +4400,7 @@ func TestCommandSide_AddOrgLDAPIDP(t *testing.T) { []string{"object"}, []string{"filter"}, time.Second*30, + []byte("certificate"), idp.LDAPAttributes{ IDAttribute: "id", FirstNameAttribute: "firstName", @@ -4421,6 +4442,7 @@ func TestCommandSide_AddOrgLDAPIDP(t *testing.T) { UserObjectClasses: []string{"object"}, UserFilters: []string{"filter"}, Timeout: time.Second * 30, + RootCA: []byte("certificate"), LDAPAttributes: idp.LDAPAttributes{ IDAttribute: "id", FirstNameAttribute: "firstName", @@ -4706,6 +4728,7 @@ func TestCommandSide_UpdateOrgLDAPIDP(t *testing.T) { []string{"object"}, []string{"filter"}, time.Second*30, + []byte("certificate"), idp.LDAPAttributes{}, idp.Options{}, )), @@ -4725,6 +4748,7 @@ func TestCommandSide_UpdateOrgLDAPIDP(t *testing.T) { UserFilters: []string{"filter"}, UserBase: "user", Timeout: time.Second * 30, + RootCA: []byte("certificate"), }, }, res: res{ @@ -4754,6 +4778,7 @@ func TestCommandSide_UpdateOrgLDAPIDP(t *testing.T) { []string{"object"}, []string{"filter"}, time.Second*30, + []byte("certificate"), idp.LDAPAttributes{}, idp.Options{}, )), @@ -4823,6 +4848,7 @@ func TestCommandSide_UpdateOrgLDAPIDP(t *testing.T) { UserObjectClasses: []string{"new object"}, UserFilters: []string{"new filter"}, Timeout: time.Second * 20, + RootCA: []byte("certificate"), LDAPAttributes: idp.LDAPAttributes{ IDAttribute: "new id", FirstNameAttribute: "new firstName", diff --git a/internal/command/session_test.go b/internal/command/session_test.go index 5fba985148..60027d3a05 100644 --- a/internal/command/session_test.go +++ b/internal/command/session_test.go @@ -837,6 +837,7 @@ func TestCommands_updateSession(t *testing.T) { nil, nil, "idpID", + nil, ), ), eventFromEventPusher( diff --git a/internal/domain/auth_request.go b/internal/domain/auth_request.go index 85ec340f67..c880c5159e 100644 --- a/internal/domain/auth_request.go +++ b/internal/domain/auth_request.go @@ -43,6 +43,7 @@ type AuthRequest struct { ApplicationResourceOwner string PrivateLabelingSetting PrivateLabelingSetting SelectedIDPConfigID string + SelectedIDPConfigArgs map[string]any LinkingUsers []*ExternalUser PossibleSteps []NextStep `json:"-"` PasswordVerified bool diff --git a/internal/domain/request.go b/internal/domain/request.go index 1b54cfa41c..92e45c0d2f 100644 --- a/internal/domain/request.go +++ b/internal/domain/request.go @@ -62,11 +62,13 @@ func (a *AuthRequestSAML) IsValid() bool { } type AuthRequestDevice struct { - ClientID string - DeviceCode string - UserCode string - Scopes []string - Audience []string + ClientID string + DeviceCode string + UserCode string + Scopes []string + Audience []string + AppName string + ProjectName string } func (*AuthRequestDevice) Type() AuthRequestType { diff --git a/internal/eventstore/aggregate.go b/internal/eventstore/aggregate.go index 87282e9007..6c9157b7eb 100644 --- a/internal/eventstore/aggregate.go +++ b/internal/eventstore/aggregate.go @@ -78,15 +78,15 @@ func AggregateFromWriteModelCtx( // Aggregate is the basic implementation of Aggregater type Aggregate struct { // ID is the unique identitfier of this aggregate - ID string `json:"-"` + ID string `json:"id"` // Type is the name of the aggregate. - Type AggregateType `json:"-"` + Type AggregateType `json:"type"` // ResourceOwner is the org this aggregates belongs to - ResourceOwner string `json:"-"` + ResourceOwner string `json:"resourceOwner"` // InstanceID is the instance this aggregate belongs to - InstanceID string `json:"-"` + InstanceID string `json:"instanceId"` // Version is the semver this aggregate represents - Version Version `json:"-"` + Version Version `json:"version"` } // AggregateType is the object name diff --git a/internal/eventstore/event_base.go b/internal/eventstore/event_base.go index 45706641d8..ed81e95320 100644 --- a/internal/eventstore/event_base.go +++ b/internal/eventstore/event_base.go @@ -22,7 +22,7 @@ type BaseEvent struct { ID string EventType EventType `json:"-"` - Agg *Aggregate + Agg *Aggregate `json:"-"` Seq uint64 Pos float64 diff --git a/internal/eventstore/handler/v2/handler.go b/internal/eventstore/handler/v2/handler.go index 2c2f88f8a0..03805f360b 100644 --- a/internal/eventstore/handler/v2/handler.go +++ b/internal/eventstore/handler/v2/handler.go @@ -263,12 +263,16 @@ func (h *Handler) triggerInstances(ctx context.Context, instances []string, trig // simple implementation of do while _, err := h.Trigger(instanceCtx, triggerOpts...) - h.log().WithField("instance", instance).OnError(err).Debug("trigger failed") + // skip retry if everything is fine + if err == nil { + continue + } + h.log().WithField("instance", instance).WithError(err).Debug("trigger failed") time.Sleep(h.retryFailedAfter) // retry if trigger failed for ; err != nil; _, err = h.Trigger(instanceCtx, triggerOpts...) { time.Sleep(h.retryFailedAfter) - h.log().WithField("instance", instance).OnError(err).Debug("trigger failed") + h.log().WithField("instance", instance).WithError(err).Debug("trigger failed") } } } diff --git a/internal/eventstore/repository/mock/repository.mock.impl.go b/internal/eventstore/repository/mock/repository.mock.impl.go index 9ae0b6b1ea..ced76953cb 100644 --- a/internal/eventstore/repository/mock/repository.mock.impl.go +++ b/internal/eventstore/repository/mock/repository.mock.impl.go @@ -144,7 +144,17 @@ func (m *MockRepository) ExpectPushFailed(err error, expectedCommands []eventsto assert.Equal(m.MockPusher.ctrl.T, expectedCommand.Creator(), commands[i].Creator()) assert.Equal(m.MockPusher.ctrl.T, expectedCommand.Type(), commands[i].Type()) assert.Equal(m.MockPusher.ctrl.T, expectedCommand.Revision(), commands[i].Revision()) - assert.Equal(m.MockPusher.ctrl.T, expectedCommand.Payload(), commands[i].Payload()) + var expectedPayload []byte + expectedPayload, ok := expectedCommand.Payload().([]byte) + if !ok { + expectedPayload, _ = json.Marshal(expectedCommand.Payload()) + } + if string(expectedPayload) == "" { + expectedPayload = []byte("null") + } + gotPayload, _ := json.Marshal(commands[i].Payload()) + + assert.Equal(m.MockPusher.ctrl.T, expectedPayload, gotPayload) assert.ElementsMatch(m.MockPusher.ctrl.T, expectedCommand.UniqueConstraints(), commands[i].UniqueConstraints()) } diff --git a/internal/feature/feature.go b/internal/feature/feature.go index d9a2d6352d..638917fd68 100644 --- a/internal/feature/feature.go +++ b/internal/feature/feature.go @@ -24,6 +24,7 @@ const ( KeyEnableBackChannelLogout KeyLoginV2 KeyPermissionCheckV2 + KeyConsoleUseV2UserApi ) //go:generate enumer -type Level -transform snake -trimprefix Level @@ -54,6 +55,7 @@ type Features struct { EnableBackChannelLogout bool `json:"enable_back_channel_logout,omitempty"` LoginV2 LoginV2 `json:"login_v2,omitempty"` PermissionCheckV2 bool `json:"permission_check_v2,omitempty"` + ConsoleUseV2UserApi bool `json:"console_use_v2_user_api,omitempty"` } type ImprovedPerformanceType int32 diff --git a/internal/feature/key_enumer.go b/internal/feature/key_enumer.go index 3a805df807..5a37b96270 100644 --- a/internal/feature/key_enumer.go +++ b/internal/feature/key_enumer.go @@ -7,11 +7,11 @@ import ( "strings" ) -const _KeyName = "unspecifiedlogin_default_orgtrigger_introspection_projectionslegacy_introspectionuser_schematoken_exchangeactionsimproved_performanceweb_keydebug_oidc_parent_erroroidc_single_v1_session_terminationdisable_user_token_eventenable_back_channel_logoutlogin_v2permission_check_v2" +const _KeyName = "unspecifiedlogin_default_orgtrigger_introspection_projectionslegacy_introspectionuser_schematoken_exchangeactionsimproved_performanceweb_keydebug_oidc_parent_erroroidc_single_v1_session_terminationdisable_user_token_eventenable_back_channel_logoutlogin_v2permission_check_v2console_use_v2_user_api" -var _KeyIndex = [...]uint16{0, 11, 28, 61, 81, 92, 106, 113, 133, 140, 163, 197, 221, 247, 255, 274} +var _KeyIndex = [...]uint16{0, 11, 28, 61, 81, 92, 106, 113, 133, 140, 163, 197, 221, 247, 255, 274, 297} -const _KeyLowerName = "unspecifiedlogin_default_orgtrigger_introspection_projectionslegacy_introspectionuser_schematoken_exchangeactionsimproved_performanceweb_keydebug_oidc_parent_erroroidc_single_v1_session_terminationdisable_user_token_eventenable_back_channel_logoutlogin_v2permission_check_v2" +const _KeyLowerName = "unspecifiedlogin_default_orgtrigger_introspection_projectionslegacy_introspectionuser_schematoken_exchangeactionsimproved_performanceweb_keydebug_oidc_parent_erroroidc_single_v1_session_terminationdisable_user_token_eventenable_back_channel_logoutlogin_v2permission_check_v2console_use_v2_user_api" func (i Key) String() string { if i < 0 || i >= Key(len(_KeyIndex)-1) { @@ -39,9 +39,10 @@ func _KeyNoOp() { _ = x[KeyEnableBackChannelLogout-(12)] _ = x[KeyLoginV2-(13)] _ = x[KeyPermissionCheckV2-(14)] + _ = x[KeyConsoleUseV2UserApi-(15)] } -var _KeyValues = []Key{KeyUnspecified, KeyLoginDefaultOrg, KeyTriggerIntrospectionProjections, KeyLegacyIntrospection, KeyUserSchema, KeyTokenExchange, KeyActions, KeyImprovedPerformance, KeyWebKey, KeyDebugOIDCParentError, KeyOIDCSingleV1SessionTermination, KeyDisableUserTokenEvent, KeyEnableBackChannelLogout, KeyLoginV2, KeyPermissionCheckV2} +var _KeyValues = []Key{KeyUnspecified, KeyLoginDefaultOrg, KeyTriggerIntrospectionProjections, KeyLegacyIntrospection, KeyUserSchema, KeyTokenExchange, KeyActions, KeyImprovedPerformance, KeyWebKey, KeyDebugOIDCParentError, KeyOIDCSingleV1SessionTermination, KeyDisableUserTokenEvent, KeyEnableBackChannelLogout, KeyLoginV2, KeyPermissionCheckV2, KeyConsoleUseV2UserApi} var _KeyNameToValueMap = map[string]Key{ _KeyName[0:11]: KeyUnspecified, @@ -74,6 +75,8 @@ var _KeyNameToValueMap = map[string]Key{ _KeyLowerName[247:255]: KeyLoginV2, _KeyName[255:274]: KeyPermissionCheckV2, _KeyLowerName[255:274]: KeyPermissionCheckV2, + _KeyName[274:297]: KeyConsoleUseV2UserApi, + _KeyLowerName[274:297]: KeyConsoleUseV2UserApi, } var _KeyNames = []string{ @@ -92,6 +95,7 @@ var _KeyNames = []string{ _KeyName[221:247], _KeyName[247:255], _KeyName[255:274], + _KeyName[274:297], } // KeyString retrieves an enum value from the enum constants string name. diff --git a/internal/idp/providers/apple/session.go b/internal/idp/providers/apple/session.go index 5e9143f050..eee68fa2a5 100644 --- a/internal/idp/providers/apple/session.go +++ b/internal/idp/providers/apple/session.go @@ -17,6 +17,10 @@ type Session struct { UserFormValue string } +func NewSession(provider *Provider, code, userFormValue string) *Session { + return &Session{Session: oidc.NewSession(provider.Provider, code, nil), UserFormValue: userFormValue} +} + type userFormValue struct { Name userNamesFormValue `json:"name,omitempty" schema:"name"` } diff --git a/internal/idp/providers/azuread/session.go b/internal/idp/providers/azuread/session.go index a9d8df2e8c..4b0a6fb844 100644 --- a/internal/idp/providers/azuread/session.go +++ b/internal/idp/providers/azuread/session.go @@ -20,6 +20,10 @@ type Session struct { OAuthSession *oauth.Session } +func NewSession(provider *Provider, code string) *Session { + return &Session{Provider: provider, Code: code} +} + // GetAuth implements the [idp.Provider] interface by calling the wrapped [oauth.Session]. func (s *Session) GetAuth(ctx context.Context) (content string, redirect bool) { return s.oauth().GetAuth(ctx) @@ -39,6 +43,11 @@ func (s *Session) RetrievePreviousID() (string, error) { return userinfo.Subject, nil } +// PersistentParameters implements the [idp.Session] interface. +func (s *Session) PersistentParameters() map[string]any { + return nil +} + // FetchUser implements the [idp.Session] interface. // It will execute an OAuth 2.0 code exchange if needed to retrieve the access token, // call the specified userEndpoint and map the received information into an [idp.User]. diff --git a/internal/idp/providers/jwt/session.go b/internal/idp/providers/jwt/session.go index 54fcc039eb..6df08a6998 100644 --- a/internal/idp/providers/jwt/session.go +++ b/internal/idp/providers/jwt/session.go @@ -30,11 +30,20 @@ type Session struct { Tokens *oidc.Tokens[*oidc.IDTokenClaims] } +func NewSession(provider *Provider, tokens *oidc.Tokens[*oidc.IDTokenClaims]) *Session { + return &Session{Provider: provider, Tokens: tokens} +} + // GetAuth implements the [idp.Session] interface. func (s *Session) GetAuth(ctx context.Context) (string, bool) { return idp.Redirect(s.AuthURL) } +// PersistentParameters implements the [idp.Session] interface. +func (s *Session) PersistentParameters() map[string]any { + return nil +} + // FetchUser implements the [idp.Session] interface. // It will map the received idToken into an [idp.User]. func (s *Session) FetchUser(ctx context.Context) (user idp.User, err error) { diff --git a/internal/idp/providers/ldap/ldap.go b/internal/idp/providers/ldap/ldap.go index a42ebf2379..567356d417 100644 --- a/internal/idp/providers/ldap/ldap.go +++ b/internal/idp/providers/ldap/ldap.go @@ -23,6 +23,7 @@ type Provider struct { userObjectClasses []string userFilters []string timeout time.Duration + rootCA []byte loginUrl string @@ -185,6 +186,7 @@ func New( userObjectClasses []string, userFilters []string, timeout time.Duration, + rootCA []byte, loginUrl string, options ...ProviderOpts, ) *Provider { @@ -199,6 +201,7 @@ func New( userObjectClasses: userObjectClasses, userFilters: userFilters, timeout: timeout, + rootCA: rootCA, loginUrl: loginUrl, } for _, option := range options { diff --git a/internal/idp/providers/ldap/ldap_test.go b/internal/idp/providers/ldap/ldap_test.go index d00680da1a..8b9f08defa 100644 --- a/internal/idp/providers/ldap/ldap_test.go +++ b/internal/idp/providers/ldap/ldap_test.go @@ -18,11 +18,13 @@ func TestProvider_Options(t *testing.T) { userObjectClasses []string userFilters []string timeout time.Duration + rootCA []byte loginUrl string opts []ProviderOpts } type want struct { name string + rootCA []byte startTls bool linkingAllowed bool creationAllowed bool @@ -114,6 +116,7 @@ func TestProvider_Options(t *testing.T) { userObjectClasses: []string{"object"}, userFilters: []string{"filter"}, timeout: 30 * time.Second, + rootCA: []byte("certificate"), loginUrl: "url", opts: []ProviderOpts{ WithoutStartTLS(), @@ -138,6 +141,7 @@ func TestProvider_Options(t *testing.T) { }, want: want{ name: "ldap", + rootCA: []byte("certificate"), startTls: false, linkingAllowed: true, creationAllowed: true, @@ -172,11 +176,13 @@ func TestProvider_Options(t *testing.T) { tt.fields.userObjectClasses, tt.fields.userFilters, tt.fields.timeout, + tt.fields.rootCA, tt.fields.loginUrl, tt.fields.opts..., ) a.Equal(tt.want.name, provider.Name()) + a.Equal(tt.want.rootCA, provider.rootCA) a.Equal(tt.want.startTls, provider.startTLS) a.Equal(tt.want.linkingAllowed, provider.IsLinkingAllowed()) a.Equal(tt.want.creationAllowed, provider.IsCreationAllowed()) diff --git a/internal/idp/providers/ldap/session.go b/internal/idp/providers/ldap/session.go index c3ca5c6364..0a6a87ba3d 100644 --- a/internal/idp/providers/ldap/session.go +++ b/internal/idp/providers/ldap/session.go @@ -3,6 +3,7 @@ package ldap import ( "context" "crypto/tls" + "crypto/x509" "encoding/base64" "errors" "net" @@ -21,6 +22,7 @@ import ( var ErrNoSingleUser = errors.New("user does not exist or too many entries returned") var ErrFailedLogin = errors.New("user failed to login") +var ErrUnableToAppendRootCA = errors.New("unable to append rootCA") var _ idp.Session = (*Session)(nil) @@ -32,11 +34,21 @@ type Session struct { Entry *ldap.Entry } +func NewSession(provider *Provider, username, password string) *Session { + return &Session{Provider: provider, User: username, Password: password} +} + // GetAuth implements the [idp.Session] interface. func (s *Session) GetAuth(ctx context.Context) (string, bool) { return idp.Redirect(s.loginUrl) } +// PersistentParameters implements the [idp.Session] interface. +func (s *Session) PersistentParameters() map[string]any { + return nil +} + +// FetchUser implements the [idp.Session] interface. func (s *Session) FetchUser(_ context.Context) (_ idp.User, err error) { var user *ldap.Entry for _, server := range s.Provider.servers { @@ -49,7 +61,9 @@ func (s *Session) FetchUser(_ context.Context) (_ idp.User, err error) { s.Provider.userObjectClasses, s.Provider.userFilters, s.User, - s.Password, s.Provider.timeout) + s.Password, + s.Provider.timeout, + s.Provider.rootCA) // If there were invalid credentials or multiple users with the credentials cancel process if err != nil && (errors.Is(err, ErrFailedLogin) || errors.Is(err, ErrNoSingleUser)) { return nil, err @@ -94,8 +108,9 @@ func tryBind( username string, password string, timeout time.Duration, + rootCA []byte, ) (*ldap.Entry, error) { - conn, err := getConnection(server, startTLS, timeout) + conn, err := getConnection(server, startTLS, timeout, rootCA) if err != nil { return nil, err } @@ -114,6 +129,7 @@ func tryBind( username, password, timeout, + rootCA, ) } @@ -121,21 +137,37 @@ func getConnection( server string, startTLS bool, timeout time.Duration, + rootCA []byte, ) (*ldap.Conn, error) { if timeout == 0 { timeout = ldap.DefaultTimeout } - conn, err := ldap.DialURL(server, ldap.DialWithDialer(&net.Dialer{Timeout: timeout})) - if err != nil { - return nil, err - } + dialer := make([]ldap.DialOpt, 1, 2) + dialer[0] = ldap.DialWithDialer(&net.Dialer{Timeout: timeout}) u, err := url.Parse(server) if err != nil { return nil, err } - if u.Scheme == "ldaps" && startTLS { + + if u.Scheme == "ldaps" && len(rootCA) > 0 { + rootCAs := x509.NewCertPool() + if ok := rootCAs.AppendCertsFromPEM(rootCA); !ok { + return nil, ErrUnableToAppendRootCA + } + + dialer = append(dialer, ldap.DialWithTLSConfig(&tls.Config{ + RootCAs: rootCAs, + })) + } + + conn, err := ldap.DialURL(server, dialer...) + if err != nil { + return nil, err + } + + if u.Scheme == "ldap" && startTLS { err = conn.StartTLS(&tls.Config{ServerName: u.Host}) if err != nil { return nil, err @@ -153,6 +185,7 @@ func trySearchAndUserBind( username string, password string, timeout time.Duration, + rootCA []byte, ) (*ldap.Entry, error) { searchQuery := queriesAndToSearchQuery( objectClassesToSearchQuery(objectClasses), diff --git a/internal/idp/providers/oauth/oauth2.go b/internal/idp/providers/oauth/oauth2.go index 910ceb1b9c..e9c627509a 100644 --- a/internal/idp/providers/oauth/oauth2.go +++ b/internal/idp/providers/oauth/oauth2.go @@ -23,6 +23,7 @@ type Provider struct { isCreationAllowed bool isAutoCreation bool isAutoUpdate bool + generateVerifier func() string } type ProviderOpts func(provider *Provider) @@ -66,9 +67,10 @@ func WithRelyingPartyOption(option rp.Option) ProviderOpts { // New creates a generic OAuth 2.0 provider func New(config *oauth2.Config, name, userEndpoint string, userMapper func() idp.User, options ...ProviderOpts) (provider *Provider, err error) { provider = &Provider{ - name: name, - userEndpoint: userEndpoint, - userMapper: userMapper, + name: name, + userEndpoint: userEndpoint, + userMapper: userMapper, + generateVerifier: oauth2.GenerateVerifier, } for _, option := range options { option(provider) @@ -99,8 +101,15 @@ func (p *Provider) BeginAuth(ctx context.Context, state string, params ...idp.Pa if !loginHintSet { opts = append(opts, rp.WithPrompt(oidc.PromptSelectAccount)) } + + var codeVerifier string + if p.RelyingParty.IsPKCE() { + codeVerifier = p.generateVerifier() + opts = append(opts, rp.WithCodeChallenge(oidc.NewSHACodeChallenge(codeVerifier))) + } + url := rp.AuthURL(state, p.RelyingParty, opts...) - return &Session{AuthURL: url, Provider: p}, nil + return &Session{AuthURL: url, Provider: p, CodeVerifier: codeVerifier}, nil } func loginHint(hint string) rp.AuthURLOpt { diff --git a/internal/idp/providers/oauth/oauth2_test.go b/internal/idp/providers/oauth/oauth2_test.go index 814a7ac9c2..984315ac1f 100644 --- a/internal/idp/providers/oauth/oauth2_test.go +++ b/internal/idp/providers/oauth/oauth2_test.go @@ -18,6 +18,7 @@ func TestProvider_BeginAuth(t *testing.T) { name string userEndpoint string userMapper func() idp.User + options []ProviderOpts } tests := []struct { name string @@ -25,7 +26,7 @@ func TestProvider_BeginAuth(t *testing.T) { want idp.Session }{ { - name: "successful auth", + name: "successful auth without PKCE", fields: fields{ config: &oauth2.Config{ ClientID: "clientID", @@ -40,14 +41,40 @@ func TestProvider_BeginAuth(t *testing.T) { }, want: &Session{AuthURL: "https://oauth2.com/authorize?client_id=clientID&prompt=select_account&redirect_uri=redirectURI&response_type=code&scope=user&state=testState"}, }, + { + name: "successful auth with PKCE", + fields: fields{ + config: &oauth2.Config{ + ClientID: "clientID", + ClientSecret: "clientSecret", + Endpoint: oauth2.Endpoint{ + AuthURL: "https://oauth2.com/authorize", + TokenURL: "https://oauth2.com/token", + }, + RedirectURL: "redirectURI", + Scopes: []string{"user"}, + }, + options: []ProviderOpts{ + WithLinkingAllowed(), + WithCreationAllowed(), + WithAutoCreation(), + WithAutoUpdate(), + WithRelyingPartyOption(rp.WithPKCE(nil)), + }, + }, + want: &Session{AuthURL: "https://oauth2.com/authorize?client_id=clientID&code_challenge=2ZoH_a01aprzLkwVbjlPsBo4m8mJ_zOKkaDqYM7Oh5w&code_challenge_method=S256&prompt=select_account&redirect_uri=redirectURI&response_type=code&scope=user&state=testState"}, + }, } for _, tt := range tests { t.Run(tt.name, func(t *testing.T) { a := assert.New(t) r := require.New(t) - provider, err := New(tt.fields.config, tt.fields.name, tt.fields.userEndpoint, tt.fields.userMapper) + provider, err := New(tt.fields.config, tt.fields.name, tt.fields.userEndpoint, tt.fields.userMapper, tt.fields.options...) r.NoError(err) + provider.generateVerifier = func() string { + return "pkceOAuthVerifier" + } ctx := context.Background() session, err := provider.BeginAuth(ctx, "testState") diff --git a/internal/idp/providers/oauth/session.go b/internal/idp/providers/oauth/session.go index 065ad3b213..aca22234a2 100644 --- a/internal/idp/providers/oauth/session.go +++ b/internal/idp/providers/oauth/session.go @@ -14,22 +14,40 @@ import ( var ErrCodeMissing = errors.New("no auth code provided") +const ( + CodeVerifier = "codeVerifier" +) + var _ idp.Session = (*Session)(nil) // Session is the [idp.Session] implementation for the OAuth2.0 provider. type Session struct { - AuthURL string - Code string - Tokens *oidc.Tokens[*oidc.IDTokenClaims] + AuthURL string + CodeVerifier string + Code string + Tokens *oidc.Tokens[*oidc.IDTokenClaims] Provider *Provider } +func NewSession(provider *Provider, code string, idpArguments map[string]any) *Session { + verifier, _ := idpArguments[CodeVerifier].(string) + return &Session{Provider: provider, Code: code, CodeVerifier: verifier} +} + // GetAuth implements the [idp.Session] interface. func (s *Session) GetAuth(ctx context.Context) (string, bool) { return idp.Redirect(s.AuthURL) } +// PersistentParameters implements the [idp.Session] interface. +func (s *Session) PersistentParameters() map[string]any { + if s.CodeVerifier == "" { + return nil + } + return map[string]any{CodeVerifier: s.CodeVerifier} +} + // FetchUser implements the [idp.Session] interface. // It will execute an OAuth 2.0 code exchange if needed to retrieve the access token, // call the specified userEndpoint and map the received information into an [idp.User]. @@ -55,7 +73,11 @@ func (s *Session) authorize(ctx context.Context) (err error) { if s.Code == "" { return ErrCodeMissing } - s.Tokens, err = rp.CodeExchange[*oidc.IDTokenClaims](ctx, s.Code, s.Provider.RelyingParty) + var opts []rp.CodeExchangeOpt + if s.CodeVerifier != "" { + opts = append(opts, rp.WithCodeVerifier(s.CodeVerifier)) + } + s.Tokens, err = rp.CodeExchange[*oidc.IDTokenClaims](ctx, s.Code, s.Provider.RelyingParty, opts...) return err } diff --git a/internal/idp/providers/oidc/oidc.go b/internal/idp/providers/oidc/oidc.go index f122230c3a..cd3ac764fd 100644 --- a/internal/idp/providers/oidc/oidc.go +++ b/internal/idp/providers/oidc/oidc.go @@ -24,6 +24,7 @@ type Provider struct { useIDToken bool userInfoMapper func(info *oidc.UserInfo) idp.User authOptions []func(bool) rp.AuthURLOpt + generateVerifier func() string } type ProviderOpts func(provider *Provider) @@ -102,8 +103,9 @@ var DefaultMapper UserInfoMapper = func(info *oidc.UserInfo) idp.User { // New creates a generic OIDC provider func New(name, issuer, clientID, clientSecret, redirectURI string, scopes []string, userInfoMapper UserInfoMapper, options ...ProviderOpts) (provider *Provider, err error) { provider = &Provider{ - name: name, - userInfoMapper: userInfoMapper, + name: name, + userInfoMapper: userInfoMapper, + generateVerifier: oauth2.GenerateVerifier, } for _, option := range options { option(provider) @@ -150,8 +152,15 @@ func (p *Provider) BeginAuth(ctx context.Context, state string, params ...idp.Pa opts = append(opts, opt) } } + + var codeVerifier string + if p.RelyingParty.IsPKCE() { + codeVerifier = p.generateVerifier() + opts = append(opts, rp.WithCodeChallenge(oidc.NewSHACodeChallenge(codeVerifier))) + } + url := rp.AuthURL(state, p.RelyingParty, opts...) - return &Session{AuthURL: url, Provider: p}, nil + return &Session{AuthURL: url, Provider: p, CodeVerifier: codeVerifier}, nil } func loginHint(hint string) rp.AuthURLOpt { diff --git a/internal/idp/providers/oidc/oidc_test.go b/internal/idp/providers/oidc/oidc_test.go index d510bf15c2..a46f09f13f 100644 --- a/internal/idp/providers/oidc/oidc_test.go +++ b/internal/idp/providers/oidc/oidc_test.go @@ -31,7 +31,7 @@ func TestProvider_BeginAuth(t *testing.T) { want idp.Session }{ { - name: "successful auth", + name: "successful auth without PKCE", fields: fields{ name: "oidc", issuer: "https://issuer.com", @@ -55,6 +55,31 @@ func TestProvider_BeginAuth(t *testing.T) { }, want: &Session{AuthURL: "https://issuer.com/authorize?client_id=clientID&prompt=select_account&redirect_uri=redirectURI&response_type=code&scope=openid&state=testState"}, }, + { + name: "successful auth with PKCE", + fields: fields{ + name: "oidc", + issuer: "https://issuer.com", + clientID: "clientID", + clientSecret: "clientSecret", + redirectURI: "redirectURI", + scopes: []string{"openid"}, + userMapper: DefaultMapper, + httpMock: func(issuer string) { + gock.New(issuer). + Get(oidc.DiscoveryEndpoint). + Reply(200). + JSON(&oidc.DiscoveryConfiguration{ + Issuer: issuer, + AuthorizationEndpoint: issuer + "/authorize", + TokenEndpoint: issuer + "/token", + UserinfoEndpoint: issuer + "/userinfo", + }) + }, + opts: []ProviderOpts{WithSelectAccount(), WithRelyingPartyOption(rp.WithPKCE(nil))}, + }, + want: &Session{AuthURL: "https://issuer.com/authorize?client_id=clientID&code_challenge=2ZoH_a01aprzLkwVbjlPsBo4m8mJ_zOKkaDqYM7Oh5w&code_challenge_method=S256&prompt=select_account&redirect_uri=redirectURI&response_type=code&scope=openid&state=testState"}, + }, } for _, tt := range tests { t.Run(tt.name, func(t *testing.T) { @@ -65,6 +90,9 @@ func TestProvider_BeginAuth(t *testing.T) { provider, err := New(tt.fields.name, tt.fields.issuer, tt.fields.clientID, tt.fields.clientSecret, tt.fields.redirectURI, tt.fields.scopes, tt.fields.userMapper, tt.fields.opts...) r.NoError(err) + provider.generateVerifier = func() string { + return "pkceOAuthVerifier" + } ctx := context.Background() session, err := provider.BeginAuth(ctx, "testState") diff --git a/internal/idp/providers/oidc/session.go b/internal/idp/providers/oidc/session.go index bd6303f2e5..b17a3b0a0b 100644 --- a/internal/idp/providers/oidc/session.go +++ b/internal/idp/providers/oidc/session.go @@ -10,6 +10,7 @@ import ( "github.com/zitadel/zitadel/internal/domain" "github.com/zitadel/zitadel/internal/idp" + "github.com/zitadel/zitadel/internal/idp/providers/oauth" ) var ErrCodeMissing = errors.New("no auth code provided") @@ -18,10 +19,16 @@ var _ idp.Session = (*Session)(nil) // Session is the [idp.Session] implementation for the OIDC provider. type Session struct { - Provider *Provider - AuthURL string - Code string - Tokens *oidc.Tokens[*oidc.IDTokenClaims] + Provider *Provider + AuthURL string + CodeVerifier string + Code string + Tokens *oidc.Tokens[*oidc.IDTokenClaims] +} + +func NewSession(provider *Provider, code string, idpArguments map[string]any) *Session { + verifier, _ := idpArguments[oauth.CodeVerifier].(string) + return &Session{Provider: provider, Code: code, CodeVerifier: verifier} } // GetAuth implements the [idp.Session] interface. @@ -29,6 +36,14 @@ func (s *Session) GetAuth(ctx context.Context) (string, bool) { return idp.Redirect(s.AuthURL) } +// PersistentParameters implements the [idp.Session] interface. +func (s *Session) PersistentParameters() map[string]any { + if s.CodeVerifier == "" { + return nil + } + return map[string]any{oauth.CodeVerifier: s.CodeVerifier} +} + // FetchUser implements the [idp.Session] interface. // It will execute an OIDC code exchange if needed to retrieve the tokens, // call the userinfo endpoint and map the received information into an [idp.User]. @@ -61,7 +76,11 @@ func (s *Session) Authorize(ctx context.Context) (err error) { if s.Code == "" { return ErrCodeMissing } - s.Tokens, err = rp.CodeExchange[*oidc.IDTokenClaims](ctx, s.Code, s.Provider.RelyingParty) + var opts []rp.CodeExchangeOpt + if s.CodeVerifier != "" { + opts = append(opts, rp.WithCodeVerifier(s.CodeVerifier)) + } + s.Tokens, err = rp.CodeExchange[*oidc.IDTokenClaims](ctx, s.Code, s.Provider.RelyingParty, opts...) return err } diff --git a/internal/idp/providers/saml/session.go b/internal/idp/providers/saml/session.go index 49a04e49cb..b0748d33a3 100644 --- a/internal/idp/providers/saml/session.go +++ b/internal/idp/providers/saml/session.go @@ -60,6 +60,11 @@ func (s *Session) GetAuth(ctx context.Context) (string, bool) { return idp.Form(resp.content.String()) } +// PersistentParameters implements the [idp.Session] interface. +func (s *Session) PersistentParameters() map[string]any { + return nil +} + // FetchUser implements the [idp.Session] interface. func (s *Session) FetchUser(ctx context.Context) (user idp.User, err error) { if s.RequestID == "" || s.Request == nil { diff --git a/internal/idp/session.go b/internal/idp/session.go index 6d6519a54c..ab54bcabaa 100644 --- a/internal/idp/session.go +++ b/internal/idp/session.go @@ -7,6 +7,7 @@ import ( // Session is the minimal implementation for a session of a 3rd party authentication [Provider] type Session interface { GetAuth(ctx context.Context) (content string, redirect bool) + PersistentParameters() map[string]any FetchUser(ctx context.Context) (User, error) } diff --git a/internal/integration/assert.go b/internal/integration/assert.go index 77d7558b55..22432a3a84 100644 --- a/internal/integration/assert.go +++ b/internal/integration/assert.go @@ -19,6 +19,7 @@ import ( type Details interface { comparable GetSequence() uint64 + GetCreationDate() *timestamppb.Timestamp GetChangeDate() *timestamppb.Timestamp GetResourceOwner() string } @@ -62,6 +63,12 @@ func AssertDetails[D Details, M DetailsMsg[D]](t assert.TestingT, expected, actu assert.NotZero(t, gotDetails.GetSequence()) + if wantDetails.GetCreationDate() != nil { + wantCreationDate := time.Now() + gotCreationDate := gotDetails.GetCreationDate().AsTime() + assert.WithinRange(t, gotCreationDate, wantCreationDate.Add(-time.Minute), wantCreationDate.Add(time.Minute)) + } + if wantDetails.GetChangeDate() != nil { wantChangeDate := time.Now() gotChangeDate := gotDetails.GetChangeDate().AsTime() diff --git a/internal/integration/client.go b/internal/integration/client.go index cefaf0ef42..a480a86ce0 100644 --- a/internal/integration/client.go +++ b/internal/integration/client.go @@ -526,101 +526,20 @@ func (i *Instance) AddSAMLPostProvider(ctx context.Context) string { return resp.GetId() } -/* -func (s *Instance) CreateIntent(t *testing.T, ctx context.Context, idpID string) string { - resp, err := i.Client.UserV2.StartIdentityProviderIntent(ctx, &user.StartIdentityProviderIntentRequest{ +func (i *Instance) CreateIntent(ctx context.Context, idpID string) *user_v2.StartIdentityProviderIntentResponse { + resp, err := i.Client.UserV2.StartIdentityProviderIntent(ctx, &user_v2.StartIdentityProviderIntentRequest{ IdpId: idpID, - Content: &user.StartIdentityProviderIntentRequest_Urls{ - Urls: &user.RedirectURLs{ + Content: &user_v2.StartIdentityProviderIntentRequest_Urls{ + Urls: &user_v2.RedirectURLs{ SuccessUrl: "https://example.com/success", FailureUrl: "https://example.com/failure", }, - AutoLinking: idp.AutoLinkingOption_AUTO_LINKING_OPTION_USERNAME, }, }) logging.OnError(err).Fatal("create generic OAuth idp") return resp } -func (i *Instance) CreateIntent(t *testing.T, ctx context.Context, idpID string) string { - ctx = authz.WithInstance(context.WithoutCancel(ctx), s.Instance) - writeModel, _, err := s.Commands.CreateIntent(ctx, idpID, "https://example.com/success", "https://example.com/failure", s.Instance.InstanceID()) - require.NoError(t, err) - return writeModel.AggregateID -} - -func (i *Instance) CreateSuccessfulOAuthIntent(t *testing.T, ctx context.Context, idpID, userID, idpUserID string) (string, string, time.Time, uint64) { - ctx = authz.WithInstance(context.WithoutCancel(ctx), s.Instance) - intentID := s.CreateIntent(t, ctx, idpID) - writeModel, err := s.Commands.GetIntentWriteModel(ctx, intentID, s.Instance.InstanceID()) - require.NoError(t, err) - idpUser := openid.NewUser( - &oidc.UserInfo{ - Subject: idpUserID, - UserInfoProfile: oidc.UserInfoProfile{ - PreferredUsername: "username", - }, - }, - ) - idpSession := &openid.Session{ - Tokens: &oidc.Tokens[*oidc.IDTokenClaims]{ - Token: &oauth2.Token{ - AccessToken: "accessToken", - }, - IDToken: "idToken", - }, - } - token, err := s.Commands.SucceedIDPIntent(ctx, writeModel, idpUser, idpSession, userID) - require.NoError(t, err) - return intentID, token, writeModel.ChangeDate, writeModel.ProcessedSequence -} - -func (s *Instance) CreateSuccessfulLDAPIntent(t *testing.T, ctx context.Context, idpID, userID, idpUserID string) (string, string, time.Time, uint64) { - ctx = authz.WithInstance(context.WithoutCancel(ctx), s.Instance) - intentID := s.CreateIntent(t, ctx, idpID) - writeModel, err := s.Commands.GetIntentWriteModel(ctx, intentID, s.Instance.InstanceID()) - require.NoError(t, err) - username := "username" - lang := language.Make("en") - idpUser := ldap.NewUser( - idpUserID, - "", - "", - "", - "", - username, - "", - false, - "", - false, - lang, - "", - "", - ) - attributes := map[string][]string{"id": {idpUserID}, "username": {username}, "language": {lang.String()}} - token, err := s.Commands.SucceedLDAPIDPIntent(ctx, writeModel, idpUser, userID, attributes) - require.NoError(t, err) - return intentID, token, writeModel.ChangeDate, writeModel.ProcessedSequence -} - -func (s *Instance) CreateSuccessfulSAMLIntent(t *testing.T, ctx context.Context, idpID, userID, idpUserID string) (string, string, time.Time, uint64) { - ctx = authz.WithInstance(context.WithoutCancel(ctx), s.Instance) - intentID := s.CreateIntent(t, ctx, idpID) - writeModel, err := s.Server.Commands.GetIntentWriteModel(ctx, intentID, s.Instance.InstanceID()) - require.NoError(t, err) - - idpUser := &saml.UserMapper{ - ID: idpUserID, - Attributes: map[string][]string{"attribute1": {"value1"}}, - } - assertion := &crewjam_saml.Assertion{ID: "id"} - - token, err := s.Server.Commands.SucceedSAMLIDPIntent(ctx, writeModel, idpUser, userID, assertion) - require.NoError(t, err) - return intentID, token, writeModel.ChangeDate, writeModel.ProcessedSequence -} -*/ - func (i *Instance) CreateVerifiedWebAuthNSession(t *testing.T, ctx context.Context, userID string) (id, token string, start, change time.Time) { return i.CreateVerifiedWebAuthNSessionWithLifetime(t, ctx, userID, 0) } diff --git a/internal/integration/instance.go b/internal/integration/instance.go index 6113bf0e37..66e2cf18ec 100644 --- a/internal/integration/instance.go +++ b/internal/integration/instance.go @@ -97,22 +97,6 @@ type Instance struct { WebAuthN *webauthn.Client } -// GetFirstInstance returns the default instance and org information, -// with authorized machine users. -// Using the first instance is not recommended as parallel test might -// interfere with each other. -// It is recommended to use [NewInstance] instead. -func GetFirstInstance(ctx context.Context) *Instance { - i := &Instance{ - Config: loadedConfig, - Domain: loadedConfig.Hostname, - } - token := loadInstanceOwnerPAT() - i.setClient(ctx) - i.setupInstance(ctx, token) - return i -} - // NewInstance returns a new instance that can be used for integration tests. // The instance contains a gRPC client connected to the domain of this instance. // The included users are the IAM_OWNER, ORG_OWNER of the default org and diff --git a/internal/integration/oidc.go b/internal/integration/oidc.go index 4d7f5277c9..19742741ab 100644 --- a/internal/integration/oidc.go +++ b/internal/integration/oidc.go @@ -466,3 +466,11 @@ func (i *Instance) CreateOIDCJWTProfileClient(ctx context.Context) (machine *man return machine, name, keyResp.GetKeyDetails(), nil } + +func (i *Instance) CreateDeviceAuthorizationRequest(ctx context.Context, clientID string, scopes ...string) (*oidc.DeviceAuthorizationResponse, error) { + provider, err := i.CreateRelyingParty(ctx, clientID, "", scopes...) + if err != nil { + return nil, err + } + return rp.DeviceAuthorization(ctx, scopes, provider, nil) +} diff --git a/internal/integration/sink/server.go b/internal/integration/sink/server.go index 959353ae5f..2c79081e98 100644 --- a/internal/integration/sink/server.go +++ b/internal/integration/sink/server.go @@ -3,6 +3,9 @@ package sink import ( + "bytes" + "context" + "encoding/json" "errors" "io" "net/http" @@ -10,11 +13,22 @@ import ( "path" "sync" "sync/atomic" + "time" + crewjam_saml "github.com/crewjam/saml" "github.com/go-chi/chi/v5" "github.com/gorilla/websocket" "github.com/sirupsen/logrus" "github.com/zitadel/logging" + "github.com/zitadel/oidc/v3/pkg/oidc" + "golang.org/x/oauth2" + "golang.org/x/text/language" + + "github.com/zitadel/zitadel/internal/api/authz" + "github.com/zitadel/zitadel/internal/command" + "github.com/zitadel/zitadel/internal/idp/providers/ldap" + openid "github.com/zitadel/zitadel/internal/idp/providers/oidc" + "github.com/zitadel/zitadel/internal/idp/providers/saml" ) const ( @@ -33,6 +47,60 @@ func CallURL(ch Channel) string { return u.String() } +func SuccessfulOAuthIntent(instanceID, idpID, idpUserID, userID string) (string, string, time.Time, uint64, error) { + u := url.URL{ + Scheme: "http", + Host: host, + Path: successfulIntentOAuthPath(), + } + resp, err := callIntent(u.String(), &SuccessfulIntentRequest{ + InstanceID: instanceID, + IDPID: idpID, + IDPUserID: idpUserID, + UserID: userID, + }) + if err != nil { + return "", "", time.Time{}, uint64(0), err + } + return resp.IntentID, resp.Token, resp.ChangeDate, resp.Sequence, nil +} + +func SuccessfulSAMLIntent(instanceID, idpID, idpUserID, userID string) (string, string, time.Time, uint64, error) { + u := url.URL{ + Scheme: "http", + Host: host, + Path: successfulIntentSAMLPath(), + } + resp, err := callIntent(u.String(), &SuccessfulIntentRequest{ + InstanceID: instanceID, + IDPID: idpID, + IDPUserID: idpUserID, + UserID: userID, + }) + if err != nil { + return "", "", time.Time{}, uint64(0), err + } + return resp.IntentID, resp.Token, resp.ChangeDate, resp.Sequence, nil +} + +func SuccessfulLDAPIntent(instanceID, idpID, idpUserID, userID string) (string, string, time.Time, uint64, error) { + u := url.URL{ + Scheme: "http", + Host: host, + Path: successfulIntentLDAPPath(), + } + resp, err := callIntent(u.String(), &SuccessfulIntentRequest{ + InstanceID: instanceID, + IDPID: idpID, + IDPUserID: idpUserID, + UserID: userID, + }) + if err != nil { + return "", "", time.Time{}, uint64(0), err + } + return resp.IntentID, resp.Token, resp.ChangeDate, resp.Sequence, nil +} + // StartServer starts a simple HTTP server on localhost:8081 // ZITADEL can use the server to send HTTP requests which can be // used to validate tests through [Subscribe]rs. @@ -41,7 +109,7 @@ func CallURL(ch Channel) string { // [CallURL] can be used to obtain the full URL for a given Channel. // // This function is only active when the `integration` build tag is enabled -func StartServer() (close func()) { +func StartServer(commands *command.Commands) (close func()) { router := chi.NewRouter() for _, ch := range ChannelValues() { fwd := &forwarder{ @@ -50,6 +118,9 @@ func StartServer() (close func()) { } router.HandleFunc(rootPath(ch), fwd.receiveHandler) router.HandleFunc(subscribePath(ch), fwd.subscriptionHandler) + router.HandleFunc(successfulIntentOAuthPath(), successfulIntentHandler(commands, createSuccessfulOAuthIntent)) + router.HandleFunc(successfulIntentSAMLPath(), successfulIntentHandler(commands, createSuccessfulSAMLIntent)) + router.HandleFunc(successfulIntentLDAPPath(), successfulIntentHandler(commands, createSuccessfulLDAPIntent)) } s := &http.Server{ Addr: listenAddr, @@ -76,6 +147,26 @@ func subscribePath(c Channel) string { return path.Join("/", c.String(), "subscribe") } +func intentPath() string { + return path.Join("/", "intent") +} + +func successfulIntentPath() string { + return path.Join(intentPath(), "/", "successful") +} + +func successfulIntentOAuthPath() string { + return path.Join(successfulIntentPath(), "/", "oauth") +} + +func successfulIntentSAMLPath() string { + return path.Join(successfulIntentPath(), "/", "saml") +} + +func successfulIntentLDAPPath() string { + return path.Join(successfulIntentPath(), "/", "ldap") +} + // forwarder handles incoming HTTP requests from ZITADEL and // forwards them to all subscribed web sockets. type forwarder struct { @@ -165,3 +256,165 @@ func readLoop(ws *websocket.Conn) (done chan error) { return done } + +type SuccessfulIntentRequest struct { + InstanceID string `json:"instance_id"` + IDPID string `json:"idp_id"` + IDPUserID string `json:"idp_user_id"` + UserID string `json:"user_id"` +} +type SuccessfulIntentResponse struct { + IntentID string `json:"intent_id"` + Token string `json:"token"` + ChangeDate time.Time `json:"change_date"` + Sequence uint64 `json:"sequence"` +} + +func callIntent(url string, req *SuccessfulIntentRequest) (*SuccessfulIntentResponse, error) { + data, err := json.Marshal(req) + if err != nil { + return nil, err + } + + resp, err := http.Post(url, "application/json", io.NopCloser(bytes.NewReader(data))) + if err != nil { + return nil, err + } + + body, err := io.ReadAll(resp.Body) + if err != nil { + return nil, err + } + defer resp.Body.Close() + if resp.StatusCode != http.StatusOK { + return nil, errors.New(string(body)) + } + result := new(SuccessfulIntentResponse) + if err := json.Unmarshal(body, result); err != nil { + return nil, err + } + return result, nil +} + +func successfulIntentHandler(cmd *command.Commands, createIntent func(ctx context.Context, cmd *command.Commands, req *SuccessfulIntentRequest) (*SuccessfulIntentResponse, error)) func(w http.ResponseWriter, r *http.Request) { + return func(w http.ResponseWriter, r *http.Request) { + body, err := io.ReadAll(r.Body) + if err != nil { + http.Error(w, err.Error(), http.StatusBadRequest) + return + } + + req := &SuccessfulIntentRequest{} + if err := json.Unmarshal(body, req); err != nil { + } + + ctx := authz.WithInstanceID(r.Context(), req.InstanceID) + resp, err := createIntent(ctx, cmd, req) + if err != nil { + http.Error(w, err.Error(), http.StatusBadRequest) + return + } + + data, err := json.Marshal(resp) + if err != nil { + http.Error(w, err.Error(), http.StatusBadRequest) + return + } + w.Write(data) + return + } +} + +func createIntent(ctx context.Context, cmd *command.Commands, instanceID, idpID string) (string, error) { + writeModel, _, err := cmd.CreateIntent(ctx, "", idpID, "https://example.com/success", "https://example.com/failure", instanceID, nil) + if err != nil { + return "", err + } + return writeModel.AggregateID, nil +} + +func createSuccessfulOAuthIntent(ctx context.Context, cmd *command.Commands, req *SuccessfulIntentRequest) (*SuccessfulIntentResponse, error) { + intentID, err := createIntent(ctx, cmd, req.InstanceID, req.IDPID) + writeModel, err := cmd.GetIntentWriteModel(ctx, intentID, req.InstanceID) + idpUser := openid.NewUser( + &oidc.UserInfo{ + Subject: req.IDPUserID, + UserInfoProfile: oidc.UserInfoProfile{ + PreferredUsername: "username", + }, + }, + ) + idpSession := &openid.Session{ + Tokens: &oidc.Tokens[*oidc.IDTokenClaims]{ + Token: &oauth2.Token{ + AccessToken: "accessToken", + }, + IDToken: "idToken", + }, + } + token, err := cmd.SucceedIDPIntent(ctx, writeModel, idpUser, idpSession, req.UserID) + if err != nil { + return nil, err + } + return &SuccessfulIntentResponse{ + intentID, + token, + writeModel.ChangeDate, + writeModel.ProcessedSequence, + }, nil +} + +func createSuccessfulSAMLIntent(ctx context.Context, cmd *command.Commands, req *SuccessfulIntentRequest) (*SuccessfulIntentResponse, error) { + intentID, err := createIntent(ctx, cmd, req.InstanceID, req.IDPID) + writeModel, err := cmd.GetIntentWriteModel(ctx, intentID, req.InstanceID) + + idpUser := &saml.UserMapper{ + ID: req.IDPUserID, + Attributes: map[string][]string{"attribute1": {"value1"}}, + } + assertion := &crewjam_saml.Assertion{ID: "id"} + + token, err := cmd.SucceedSAMLIDPIntent(ctx, writeModel, idpUser, req.UserID, assertion) + if err != nil { + return nil, err + } + return &SuccessfulIntentResponse{ + intentID, + token, + writeModel.ChangeDate, + writeModel.ProcessedSequence, + }, nil +} + +func createSuccessfulLDAPIntent(ctx context.Context, cmd *command.Commands, req *SuccessfulIntentRequest) (*SuccessfulIntentResponse, error) { + intentID, err := createIntent(ctx, cmd, req.InstanceID, req.IDPID) + writeModel, err := cmd.GetIntentWriteModel(ctx, intentID, req.InstanceID) + username := "username" + lang := language.Make("en") + idpUser := ldap.NewUser( + req.IDPUserID, + "", + "", + "", + "", + username, + "", + false, + "", + false, + lang, + "", + "", + ) + attributes := map[string][]string{"id": {req.IDPUserID}, "username": {username}, "language": {lang.String()}} + token, err := cmd.SucceedLDAPIDPIntent(ctx, writeModel, idpUser, req.UserID, attributes) + if err != nil { + return nil, err + } + return &SuccessfulIntentResponse{ + intentID, + token, + writeModel.ChangeDate, + writeModel.ProcessedSequence, + }, nil +} diff --git a/internal/integration/sink/stub.go b/internal/integration/sink/stub.go index 01d1047f34..62e1d541e1 100644 --- a/internal/integration/sink/stub.go +++ b/internal/integration/sink/stub.go @@ -2,8 +2,10 @@ package sink +import "github.com/zitadel/zitadel/internal/command" + // StartServer and its returned close function are a no-op // when the `integration` build tag is disabled. -func StartServer() (close func()) { +func StartServer(cmd *command.Commands) (close func()) { return func() {} } diff --git a/internal/notification/channels/channel.go b/internal/notification/channels/channel.go index 5f4f8f4d88..d491ae894d 100644 --- a/internal/notification/channels/channel.go +++ b/internal/notification/channels/channel.go @@ -3,7 +3,7 @@ package channels import "github.com/zitadel/zitadel/internal/eventstore" type Message interface { - GetTriggeringEvent() eventstore.Event + GetTriggeringEventType() eventstore.EventType GetContent() (string, error) } diff --git a/internal/notification/channels/instrumenting/logging.go b/internal/notification/channels/instrumenting/logging.go index 6904f7c263..421ed1bbfb 100644 --- a/internal/notification/channels/instrumenting/logging.go +++ b/internal/notification/channels/instrumenting/logging.go @@ -13,7 +13,7 @@ func logMessages(ctx context.Context, channel channels.NotificationChannel) chan return channels.HandleMessageFunc(func(message channels.Message) error { logEntry := logging.WithFields( "instance", authz.GetInstance(ctx).InstanceID(), - "triggering_event_type", message.GetTriggeringEvent().Type(), + "triggering_event_type", message.GetTriggeringEventType(), ) logEntry.Debug("sending notification") err := channel.HandleMessage(message) diff --git a/internal/notification/channels/instrumenting/metrics.go b/internal/notification/channels/instrumenting/metrics.go index 09a402e63a..7033fbab51 100644 --- a/internal/notification/channels/instrumenting/metrics.go +++ b/internal/notification/channels/instrumenting/metrics.go @@ -24,7 +24,7 @@ func countMessages(ctx context.Context, channel channels.NotificationChannel, su func addCount(ctx context.Context, metricName string, message channels.Message) { labels := map[string]attribute.Value{ - "triggering_event_type": attribute.StringValue(string(message.GetTriggeringEvent().Type())), + "triggering_event_type": attribute.StringValue(string(message.GetTriggeringEventType())), } addCountErr := metrics.AddCount(ctx, metricName, 1, labels) logging.WithFields("name", metricName, "labels", labels).OnError(addCountErr).Error("incrementing counter metric failed") diff --git a/internal/notification/channels/twilio/channel.go b/internal/notification/channels/twilio/channel.go index e13f45e00b..d6024b63dc 100644 --- a/internal/notification/channels/twilio/channel.go +++ b/internal/notification/channels/twilio/channel.go @@ -9,7 +9,6 @@ import ( verify "github.com/twilio/twilio-go/rest/verify/v2" "github.com/zitadel/logging" - "github.com/zitadel/zitadel/internal/eventstore" "github.com/zitadel/zitadel/internal/notification/channels" "github.com/zitadel/zitadel/internal/notification/messages" "github.com/zitadel/zitadel/internal/zerrors" @@ -39,15 +38,14 @@ func InitChannel(config Config) channels.NotificationChannel { // as it would be a waste of resources and could potentially result in a rate limit. var twilioErr *twilioClient.TwilioRestError if errors.As(err, &twilioErr) && twilioErr.Status >= 400 && twilioErr.Status < 500 { - userID, notificationID := userAndNotificationIDsFromEvent(twilioMsg.TriggeringEvent) logging.WithFields( "error", twilioErr.Message, "status", twilioErr.Status, "code", twilioErr.Code, - "instanceID", twilioMsg.TriggeringEvent.Aggregate().InstanceID, - "userID", userID, - "notificationID", notificationID). - Warn("twilio create verification error") + "instanceID", twilioMsg.InstanceID, + "jobID", twilioMsg.JobID, + "userID", twilioMsg.UserID, + ).Warn("twilio create verification error") return channels.NewCancelError(twilioErr) } @@ -76,24 +74,3 @@ func InitChannel(config Config) channels.NotificationChannel { return nil }) } - -func userAndNotificationIDsFromEvent(event eventstore.Event) (userID, notificationID string) { - aggID := event.Aggregate().ID - - // we cannot cast to the actual event type because of circular dependencies - // so we just check the type... - if event.Aggregate().Type != aggregateTypeNotification { - // in case it's not a notification event, we can directly return the aggregate ID (as it's a user event) - return aggID, "" - } - // ...and unmarshal the event data from the notification event into a struct that contains the fields we need - var data struct { - Request struct { - UserID string `json:"userID"` - } `json:"request"` - } - if err := event.Unmarshal(&data); err != nil { - return "", aggID - } - return data.Request.UserID, aggID -} diff --git a/internal/notification/handlers/back_channel_logout.go b/internal/notification/handlers/back_channel_logout.go index 43d98ada11..f1a99146ca 100644 --- a/internal/notification/handlers/back_channel_logout.go +++ b/internal/notification/handlers/back_channel_logout.go @@ -191,7 +191,7 @@ func (u *backChannelLogoutNotifier) sendLogoutToken(ctx context.Context, oidcSes if err != nil { return err } - err = types.SendSecurityTokenEvent(ctx, set.Config{CallURL: oidcSession.BackChannelLogoutURI}, u.channels, &LogoutTokenMessage{LogoutToken: token}, e).WithoutTemplate() + err = types.SendSecurityTokenEvent(ctx, set.Config{CallURL: oidcSession.BackChannelLogoutURI}, u.channels, &LogoutTokenMessage{LogoutToken: token}, e.Type()).WithoutTemplate() if err != nil { return err } @@ -247,7 +247,7 @@ func (b *backChannelLogoutSession) AppendEvents(events ...eventstore.Event) { BackChannelLogoutURI: e.BackChannelLogoutURI, }) case *sessionlogout.BackChannelLogoutSentEvent: - slices.DeleteFunc(b.sessions, func(session backChannelLogoutOIDCSessions) bool { + b.sessions = slices.DeleteFunc(b.sessions, func(session backChannelLogoutOIDCSessions) bool { return session.OIDCSessionID == e.OIDCSessionID }) } diff --git a/internal/notification/handlers/commands.go b/internal/notification/handlers/commands.go index 90b66bdf48..07969a6bba 100644 --- a/internal/notification/handlers/commands.go +++ b/internal/notification/handlers/commands.go @@ -2,19 +2,13 @@ package handlers import ( "context" - "database/sql" - "github.com/zitadel/zitadel/internal/command" "github.com/zitadel/zitadel/internal/notification/senders" "github.com/zitadel/zitadel/internal/repository/milestone" "github.com/zitadel/zitadel/internal/repository/quota" ) type Commands interface { - RequestNotification(ctx context.Context, instanceID string, request *command.NotificationRequest) error - NotificationCanceled(ctx context.Context, tx *sql.Tx, id, resourceOwner string, err error) error - NotificationRetryRequested(ctx context.Context, tx *sql.Tx, id, resourceOwner string, request *command.NotificationRetryRequest, err error) error - NotificationSent(ctx context.Context, tx *sql.Tx, id, instanceID string) error HumanInitCodeSent(ctx context.Context, orgID, userID string) error HumanEmailVerificationCodeSent(ctx context.Context, orgID, userID string) error PasswordCodeSent(ctx context.Context, orgID, userID string, generatorInfo *senders.CodeGeneratorInfo) error diff --git a/internal/notification/handlers/ctx.go b/internal/notification/handlers/ctx.go index 8f499814aa..b091a61cdd 100644 --- a/internal/notification/handlers/ctx.go +++ b/internal/notification/handlers/ctx.go @@ -15,7 +15,7 @@ func HandlerContext(event *eventstore.Aggregate) context.Context { } func ContextWithNotifier(ctx context.Context, aggregate *eventstore.Aggregate) context.Context { - return authz.SetCtxData(ctx, authz.CtxData{UserID: NotifyUserID, OrgID: aggregate.ResourceOwner}) + return authz.WithInstanceID(authz.SetCtxData(ctx, authz.CtxData{UserID: NotifyUserID, OrgID: aggregate.ResourceOwner}), aggregate.InstanceID) } func (n *NotificationQueries) HandlerContext(event *eventstore.Aggregate) (context.Context, error) { diff --git a/internal/notification/handlers/gen_mock.go b/internal/notification/handlers/gen_mock.go index e248633361..5732e29e2f 100644 --- a/internal/notification/handlers/gen_mock.go +++ b/internal/notification/handlers/gen_mock.go @@ -2,3 +2,4 @@ package handlers //go:generate mockgen -package mock -destination ./mock/queries.mock.go github.com/zitadel/zitadel/internal/notification/handlers Queries //go:generate mockgen -package mock -destination ./mock/commands.mock.go github.com/zitadel/zitadel/internal/notification/handlers Commands +//go:generate mockgen -package mock -destination ./mock/queue.mock.go github.com/zitadel/zitadel/internal/notification/handlers Queue diff --git a/internal/notification/handlers/mock/commands.mock.go b/internal/notification/handlers/mock/commands.mock.go index de32ce067c..7d41c30f30 100644 --- a/internal/notification/handlers/mock/commands.mock.go +++ b/internal/notification/handlers/mock/commands.mock.go @@ -11,10 +11,8 @@ package mock import ( context "context" - sql "database/sql" reflect "reflect" - command "github.com/zitadel/zitadel/internal/command" senders "github.com/zitadel/zitadel/internal/notification/senders" milestone "github.com/zitadel/zitadel/internal/repository/milestone" quota "github.com/zitadel/zitadel/internal/repository/quota" @@ -156,48 +154,6 @@ func (mr *MockCommandsMockRecorder) MilestonePushed(arg0, arg1, arg2, arg3 any) return mr.mock.ctrl.RecordCallWithMethodType(mr.mock, "MilestonePushed", reflect.TypeOf((*MockCommands)(nil).MilestonePushed), arg0, arg1, arg2, arg3) } -// NotificationCanceled mocks base method. -func (m *MockCommands) NotificationCanceled(arg0 context.Context, arg1 *sql.Tx, arg2, arg3 string, arg4 error) error { - m.ctrl.T.Helper() - ret := m.ctrl.Call(m, "NotificationCanceled", arg0, arg1, arg2, arg3, arg4) - ret0, _ := ret[0].(error) - return ret0 -} - -// NotificationCanceled indicates an expected call of NotificationCanceled. -func (mr *MockCommandsMockRecorder) NotificationCanceled(arg0, arg1, arg2, arg3, arg4 any) *gomock.Call { - mr.mock.ctrl.T.Helper() - return mr.mock.ctrl.RecordCallWithMethodType(mr.mock, "NotificationCanceled", reflect.TypeOf((*MockCommands)(nil).NotificationCanceled), arg0, arg1, arg2, arg3, arg4) -} - -// NotificationRetryRequested mocks base method. -func (m *MockCommands) NotificationRetryRequested(arg0 context.Context, arg1 *sql.Tx, arg2, arg3 string, arg4 *command.NotificationRetryRequest, arg5 error) error { - m.ctrl.T.Helper() - ret := m.ctrl.Call(m, "NotificationRetryRequested", arg0, arg1, arg2, arg3, arg4, arg5) - ret0, _ := ret[0].(error) - return ret0 -} - -// NotificationRetryRequested indicates an expected call of NotificationRetryRequested. -func (mr *MockCommandsMockRecorder) NotificationRetryRequested(arg0, arg1, arg2, arg3, arg4, arg5 any) *gomock.Call { - mr.mock.ctrl.T.Helper() - return mr.mock.ctrl.RecordCallWithMethodType(mr.mock, "NotificationRetryRequested", reflect.TypeOf((*MockCommands)(nil).NotificationRetryRequested), arg0, arg1, arg2, arg3, arg4, arg5) -} - -// NotificationSent mocks base method. -func (m *MockCommands) NotificationSent(arg0 context.Context, arg1 *sql.Tx, arg2, arg3 string) error { - m.ctrl.T.Helper() - ret := m.ctrl.Call(m, "NotificationSent", arg0, arg1, arg2, arg3) - ret0, _ := ret[0].(error) - return ret0 -} - -// NotificationSent indicates an expected call of NotificationSent. -func (mr *MockCommandsMockRecorder) NotificationSent(arg0, arg1, arg2, arg3 any) *gomock.Call { - mr.mock.ctrl.T.Helper() - return mr.mock.ctrl.RecordCallWithMethodType(mr.mock, "NotificationSent", reflect.TypeOf((*MockCommands)(nil).NotificationSent), arg0, arg1, arg2, arg3) -} - // OTPEmailSent mocks base method. func (m *MockCommands) OTPEmailSent(arg0 context.Context, arg1, arg2 string) error { m.ctrl.T.Helper() @@ -254,20 +210,6 @@ func (mr *MockCommandsMockRecorder) PasswordCodeSent(arg0, arg1, arg2, arg3 any) return mr.mock.ctrl.RecordCallWithMethodType(mr.mock, "PasswordCodeSent", reflect.TypeOf((*MockCommands)(nil).PasswordCodeSent), arg0, arg1, arg2, arg3) } -// RequestNotification mocks base method. -func (m *MockCommands) RequestNotification(arg0 context.Context, arg1 string, arg2 *command.NotificationRequest) error { - m.ctrl.T.Helper() - ret := m.ctrl.Call(m, "RequestNotification", arg0, arg1, arg2) - ret0, _ := ret[0].(error) - return ret0 -} - -// RequestNotification indicates an expected call of RequestNotification. -func (mr *MockCommandsMockRecorder) RequestNotification(arg0, arg1, arg2 any) *gomock.Call { - mr.mock.ctrl.T.Helper() - return mr.mock.ctrl.RecordCallWithMethodType(mr.mock, "RequestNotification", reflect.TypeOf((*MockCommands)(nil).RequestNotification), arg0, arg1, arg2) -} - // UsageNotificationSent mocks base method. func (m *MockCommands) UsageNotificationSent(arg0 context.Context, arg1 *quota.NotificationDueEvent) error { m.ctrl.T.Helper() diff --git a/internal/notification/handlers/mock/queue.mock.go b/internal/notification/handlers/mock/queue.mock.go new file mode 100644 index 0000000000..e1387595db --- /dev/null +++ b/internal/notification/handlers/mock/queue.mock.go @@ -0,0 +1,61 @@ +// Code generated by MockGen. DO NOT EDIT. +// Source: github.com/zitadel/zitadel/internal/notification/handlers (interfaces: Queue) +// +// Generated by this command: +// +// mockgen -package mock -destination ./mock/queue.mock.go github.com/zitadel/zitadel/internal/notification/handlers Queue +// + +// Package mock is a generated GoMock package. +package mock + +import ( + context "context" + reflect "reflect" + + river "github.com/riverqueue/river" + queue "github.com/zitadel/zitadel/internal/queue" + gomock "go.uber.org/mock/gomock" +) + +// MockQueue is a mock of Queue interface. +type MockQueue struct { + ctrl *gomock.Controller + recorder *MockQueueMockRecorder +} + +// MockQueueMockRecorder is the mock recorder for MockQueue. +type MockQueueMockRecorder struct { + mock *MockQueue +} + +// NewMockQueue creates a new mock instance. +func NewMockQueue(ctrl *gomock.Controller) *MockQueue { + mock := &MockQueue{ctrl: ctrl} + mock.recorder = &MockQueueMockRecorder{mock} + return mock +} + +// EXPECT returns an object that allows the caller to indicate expected use. +func (m *MockQueue) EXPECT() *MockQueueMockRecorder { + return m.recorder +} + +// Insert mocks base method. +func (m *MockQueue) Insert(arg0 context.Context, arg1 river.JobArgs, arg2 ...queue.InsertOpt) error { + m.ctrl.T.Helper() + varargs := []any{arg0, arg1} + for _, a := range arg2 { + varargs = append(varargs, a) + } + ret := m.ctrl.Call(m, "Insert", varargs...) + ret0, _ := ret[0].(error) + return ret0 +} + +// Insert indicates an expected call of Insert. +func (mr *MockQueueMockRecorder) Insert(arg0, arg1 any, arg2 ...any) *gomock.Call { + mr.mock.ctrl.T.Helper() + varargs := append([]any{arg0, arg1}, arg2...) + return mr.mock.ctrl.RecordCallWithMethodType(mr.mock, "Insert", reflect.TypeOf((*MockQueue)(nil).Insert), varargs...) +} diff --git a/internal/notification/handlers/notification_worker.go b/internal/notification/handlers/notification_worker.go index 9c00552acb..e2f1d58153 100644 --- a/internal/notification/handlers/notification_worker.go +++ b/internal/notification/handlers/notification_worker.go @@ -2,18 +2,16 @@ package handlers import ( "context" - "database/sql" "errors" - "math/rand/v2" - "slices" + "fmt" + "strconv" "strings" "time" + "github.com/riverqueue/river" "github.com/zitadel/logging" "github.com/zitadel/zitadel/internal/api/authz" - "github.com/zitadel/zitadel/internal/api/call" - "github.com/zitadel/zitadel/internal/command" "github.com/zitadel/zitadel/internal/crypto" "github.com/zitadel/zitadel/internal/database" "github.com/zitadel/zitadel/internal/domain" @@ -22,7 +20,7 @@ import ( "github.com/zitadel/zitadel/internal/notification/senders" "github.com/zitadel/zitadel/internal/notification/types" "github.com/zitadel/zitadel/internal/query" - "github.com/zitadel/zitadel/internal/repository/instance" + "github.com/zitadel/zitadel/internal/queue" "github.com/zitadel/zitadel/internal/repository/notification" ) @@ -32,6 +30,8 @@ const ( ) type NotificationWorker struct { + river.WorkerDefaults[*notification.Request] + commands Commands queries *NotificationQueries es *eventstore.Eventstore @@ -39,22 +39,53 @@ type NotificationWorker struct { channels types.ChannelChains config WorkerConfig now nowFunc - backOff func(current time.Duration) time.Duration +} + +func (w *NotificationWorker) Timeout(*river.Job[*notification.Request]) time.Duration { + return w.config.TransactionDuration +} + +// Work implements [river.Worker]. +func (w *NotificationWorker) Work(ctx context.Context, job *river.Job[*notification.Request]) error { + ctx = ContextWithNotifier(ctx, job.Args.Aggregate) + + // if the notification is too old, we can directly cancel + if job.CreatedAt.Add(w.config.MaxTtl).Before(w.now()) { + return river.JobCancel(errors.New("notification is too old")) + } + + // We do not trigger the projection to reduce load on the database. By the time the notification is processed, + // the user should be projected anyway. If not, it will just wait for the next run. + // We are aware that the user can change during the time the notification is in the queue. + notifyUser, err := w.queries.GetNotifyUserByID(ctx, false, job.Args.UserID) + if err != nil { + return err + } + + // The domain claimed event requires the domain as argument, but lacks the user when creating the request event. + // Since we set it into the request arguments, it will be passed into a potential retry event. + if job.Args.RequiresPreviousDomain && job.Args.Args != nil && job.Args.Args.Domain == "" { + index := strings.LastIndex(notifyUser.LastEmail, "@") + job.Args.Args.Domain = notifyUser.LastEmail[index+1:] + } + + err = w.sendNotificationQueue(ctx, job.Args, strconv.Itoa(int(job.ID)), notifyUser) + if err == nil { + return nil + } + // if the error explicitly specifies, we cancel the notification + if errors.Is(err, &channels.CancelError{}) { + return river.JobCancel(err) + } + return err } type WorkerConfig struct { LegacyEnabled bool Workers uint8 - BulkLimit uint16 - RequeueEvery time.Duration - RetryWorkers uint8 - RetryRequeueEvery time.Duration TransactionDuration time.Duration - MaxAttempts uint8 MaxTtl time.Duration - MinRetryDelay time.Duration - MaxRetryDelay time.Duration - RetryDelayFactor float32 + MaxAttempts uint8 } // nowFunc makes [time.Now] mockable @@ -78,11 +109,8 @@ func NewNotificationWorker( es *eventstore.Eventstore, client *database.DB, channels types.ChannelChains, + queue *queue.Queue, ) *NotificationWorker { - // make sure the delay does not get less - if config.RetryDelayFactor < 1 { - config.RetryDelayFactor = 1 - } w := &NotificationWorker{ config: config, commands: commands, @@ -92,102 +120,31 @@ func NewNotificationWorker( channels: channels, now: time.Now, } - w.backOff = w.exponentialBackOff + if !config.LegacyEnabled { + queue.AddWorkers(w) + } return w } -func (w *NotificationWorker) Start(ctx context.Context) { - if w.config.LegacyEnabled { - return - } - for i := 0; i < int(w.config.Workers); i++ { - go w.schedule(ctx, i, false) - } - for i := 0; i < int(w.config.RetryWorkers); i++ { - go w.schedule(ctx, i, true) +var _ river.Worker[*notification.Request] = (*NotificationWorker)(nil) + +func (w *NotificationWorker) Register(workers *river.Workers, queues map[string]river.QueueConfig) { + river.AddWorker(workers, w) + queues[notification.QueueName] = river.QueueConfig{ + MaxWorkers: int(w.config.Workers), } } -func (w *NotificationWorker) reduceNotificationRequested(ctx, txCtx context.Context, tx *sql.Tx, event *notification.RequestedEvent) (err error) { - ctx = ContextWithNotifier(ctx, event.Aggregate()) - - // if the notification is too old, we can directly cancel - if event.CreatedAt().Add(w.config.MaxTtl).Before(w.now()) { - return w.commands.NotificationCanceled(txCtx, tx, event.Aggregate().ID, event.Aggregate().ResourceOwner, nil) - } - - // Get the notify user first, so if anything fails afterward we have the current state of the user - // and can pass that to the retry request. - // We do not trigger the projection to reduce load on the database. By the time the notification is processed, - // the user should be projected anyway. If not, it will just wait for the next run. - notifyUser, err := w.queries.GetNotifyUserByID(ctx, false, event.UserID) - if err != nil { - return err - } - - // The domain claimed event requires the domain as argument, but lacks the user when creating the request event. - // Since we set it into the request arguments, it will be passed into a potential retry event. - if event.RequiresPreviousDomain && event.Request.Args != nil && event.Request.Args.Domain == "" { - index := strings.LastIndex(notifyUser.LastEmail, "@") - event.Request.Args.Domain = notifyUser.LastEmail[index+1:] - } - - err = w.sendNotification(ctx, txCtx, tx, event.Request, notifyUser, event) - if err == nil { - return nil - } - // if retries are disabled or if the error explicitly specifies, we cancel the notification - if w.config.MaxAttempts <= 1 || errors.Is(err, &channels.CancelError{}) { - return w.commands.NotificationCanceled(txCtx, tx, event.Aggregate().ID, event.Aggregate().ResourceOwner, err) - } - // otherwise we retry after a backoff delay - return w.commands.NotificationRetryRequested( - txCtx, - tx, - event.Aggregate().ID, - event.Aggregate().ResourceOwner, - notificationEventToRequest(event.Request, notifyUser, w.backOff(0)), - err, - ) -} - -func (w *NotificationWorker) reduceNotificationRetry(ctx, txCtx context.Context, tx *sql.Tx, event *notification.RetryRequestedEvent) (err error) { - ctx = ContextWithNotifier(ctx, event.Aggregate()) - - // if the notification is too old, we can directly cancel - if event.CreatedAt().Add(w.config.MaxTtl).Before(w.now()) { - return w.commands.NotificationCanceled(txCtx, tx, event.Aggregate().ID, event.Aggregate().ResourceOwner, err) - } - - if event.CreatedAt().Add(event.BackOff).After(w.now()) { - return nil - } - err = w.sendNotification(ctx, txCtx, tx, event.Request, event.NotifyUser, event) - if err == nil { - return nil - } - // if the max attempts are reached or if the error explicitly specifies, we cancel the notification - if event.Sequence() >= uint64(w.config.MaxAttempts) || errors.Is(err, &channels.CancelError{}) { - return w.commands.NotificationCanceled(txCtx, tx, event.Aggregate().ID, event.Aggregate().ResourceOwner, err) - } - // otherwise we retry after a backoff delay - return w.commands.NotificationRetryRequested(txCtx, tx, event.Aggregate().ID, event.Aggregate().ResourceOwner, notificationEventToRequest( - event.Request, - event.NotifyUser, - w.backOff(event.BackOff), - ), err) -} - -func (w *NotificationWorker) sendNotification(ctx, txCtx context.Context, tx *sql.Tx, request notification.Request, notifyUser *query.NotifyUser, e eventstore.Event) error { - ctx, err := enrichCtx(ctx, request.TriggeredAtOrigin) - if err != nil { - return channels.NewCancelError(err) - } - +func (w *NotificationWorker) sendNotificationQueue(ctx context.Context, request *notification.Request, jobID string, notifyUser *query.NotifyUser) error { // check early that a "sent" handler exists, otherwise we can cancel early sentHandler, ok := sentHandlers[request.EventType] if !ok { logging.Errorf(`no "sent" handler registered for %s`, request.EventType) + return channels.NewCancelError(fmt.Errorf("no sent handler registered for %s", request.EventType)) + } + + ctx, err := enrichCtx(ctx, request.TriggeredAtOrigin) + if err != nil { return channels.NewCancelError(err) } @@ -217,9 +174,9 @@ func (w *NotificationWorker) sendNotification(ctx, txCtx context.Context, tx *sq if err != nil { return err } - notify = types.SendEmail(ctx, w.channels, string(template.Template), translator, notifyUser, colors, e) + notify = types.SendEmail(ctx, w.channels, string(template.Template), translator, notifyUser, colors, request.EventType) case domain.NotificationTypeSms: - notify = types.SendSMS(ctx, w.channels, translator, notifyUser, colors, e, generatorInfo) + notify = types.SendSMS(ctx, w.channels, translator, notifyUser, colors, request.EventType, request.Aggregate.InstanceID, jobID, generatorInfo) } args := request.Args.ToMap() @@ -229,272 +186,12 @@ func (w *NotificationWorker) sendNotification(ctx, txCtx context.Context, tx *sq args[OTP] = code } - if err := notify(request.URLTemplate, args, request.MessageType, request.UnverifiedNotificationChannel); err != nil { + if err = notify(request.URLTemplate, args, request.MessageType, request.UnverifiedNotificationChannel); err != nil { return err } - err = w.commands.NotificationSent(txCtx, tx, e.Aggregate().ID, e.Aggregate().ResourceOwner) - if err != nil { - // In case the notification event cannot be pushed, we most likely cannot create a retry or cancel event. - // Therefore, we'll only log the error and also do not need to try to push to the user / session. - logging.WithFields("instanceID", authz.GetInstance(ctx).InstanceID(), "notification", e.Aggregate().ID). - OnError(err).Error("could not set sent notification event") - return nil - } - err = sentHandler(txCtx, w.commands, request.NotificationAggregateID(), request.NotificationAggregateResourceOwner(), generatorInfo, args) - logging.WithFields("instanceID", authz.GetInstance(ctx).InstanceID(), "notification", e.Aggregate().ID). + + err = sentHandler(authz.WithInstanceID(ctx, request.Aggregate.InstanceID), w.commands, request.Aggregate.ID, request.Aggregate.ResourceOwner, generatorInfo, args) + logging.WithFields("instanceID", request.Aggregate.InstanceID, "notification", request.Aggregate.ID). OnError(err).Error("could not set notification event on aggregate") return nil } - -func (w *NotificationWorker) exponentialBackOff(current time.Duration) time.Duration { - if current >= w.config.MaxRetryDelay { - return w.config.MaxRetryDelay - } - if current < w.config.MinRetryDelay { - current = w.config.MinRetryDelay - } - t := time.Duration(rand.Int64N(int64(w.config.RetryDelayFactor*float32(current.Nanoseconds()))-current.Nanoseconds()) + current.Nanoseconds()) - if t > w.config.MaxRetryDelay { - return w.config.MaxRetryDelay - } - return t -} - -func notificationEventToRequest(e notification.Request, notifyUser *query.NotifyUser, backoff time.Duration) *command.NotificationRetryRequest { - return &command.NotificationRetryRequest{ - NotificationRequest: command.NotificationRequest{ - UserID: e.UserID, - UserResourceOwner: e.UserResourceOwner, - TriggerOrigin: e.TriggeredAtOrigin, - URLTemplate: e.URLTemplate, - Code: e.Code, - CodeExpiry: e.CodeExpiry, - EventType: e.EventType, - NotificationType: e.NotificationType, - MessageType: e.MessageType, - UnverifiedNotificationChannel: e.UnverifiedNotificationChannel, - Args: e.Args, - AggregateID: e.AggregateID, - AggregateResourceOwner: e.AggregateResourceOwner, - IsOTP: e.IsOTP, - }, - BackOff: backoff, - NotifyUser: notifyUser, - } -} - -func (w *NotificationWorker) schedule(ctx context.Context, workerID int, retry bool) { - t := time.NewTimer(0) - - for { - select { - case <-ctx.Done(): - t.Stop() - w.log(workerID, retry).Info("scheduler stopped") - return - case <-t.C: - instances, err := w.queryInstances(ctx, retry) - w.log(workerID, retry).OnError(err).Error("unable to query instances") - - w.triggerInstances(call.WithTimestamp(ctx), instances, workerID, retry) - if retry { - t.Reset(w.config.RetryRequeueEvery) - continue - } - t.Reset(w.config.RequeueEvery) - } - } -} - -func (w *NotificationWorker) log(workerID int, retry bool) *logging.Entry { - return logging.WithFields("notification worker", workerID, "retries", retry) -} - -func (w *NotificationWorker) queryInstances(ctx context.Context, retry bool) ([]string, error) { - return w.queries.ActiveInstances(), nil -} - -func (w *NotificationWorker) triggerInstances(ctx context.Context, instances []string, workerID int, retry bool) { - for _, instance := range instances { - instanceCtx := authz.WithInstanceID(ctx, instance) - - err := w.trigger(instanceCtx, workerID, retry) - w.log(workerID, retry).WithField("instance", instance).OnError(err).Info("trigger failed") - } -} - -func (w *NotificationWorker) trigger(ctx context.Context, workerID int, retry bool) (err error) { - txCtx := ctx - if w.config.TransactionDuration > 0 { - var cancel, cancelTx func() - txCtx, cancelTx = context.WithCancel(ctx) - defer cancelTx() - ctx, cancel = context.WithTimeout(ctx, w.config.TransactionDuration) - defer cancel() - } - tx, err := w.client.BeginTx(txCtx, nil) - if err != nil { - return err - } - defer func() { - err = database.CloseTransaction(tx, err) - }() - - events, err := w.searchEvents(txCtx, tx, retry) - if err != nil { - return err - } - - // If there aren't any events or no unlocked event terminate early and start a new run. - if len(events) == 0 { - return nil - } - - w.log(workerID, retry). - WithField("instanceID", authz.GetInstance(ctx).InstanceID()). - WithField("events", len(events)). - Info("handling notification events") - - for _, event := range events { - var err error - switch e := event.(type) { - case *notification.RequestedEvent: - w.createSavepoint(txCtx, tx, event, workerID, retry) - err = w.reduceNotificationRequested(ctx, txCtx, tx, e) - case *notification.RetryRequestedEvent: - w.createSavepoint(txCtx, tx, event, workerID, retry) - err = w.reduceNotificationRetry(ctx, txCtx, tx, e) - } - if err != nil { - w.log(workerID, retry).OnError(err). - WithField("instanceID", authz.GetInstance(ctx).InstanceID()). - WithField("notificationID", event.Aggregate().ID). - WithField("sequence", event.Sequence()). - WithField("type", event.Type()). - Error("could not handle notification event") - // if we have an error, we rollback to the savepoint and continue with the next event - // we use the txCtx to make sure we can rollback the transaction in case the ctx is canceled - w.rollbackToSavepoint(txCtx, tx, event, workerID, retry) - } - // if the context is canceled, we stop the processing - if ctx.Err() != nil { - return nil - } - } - return nil -} - -func (w *NotificationWorker) latestRetries(events []eventstore.Event) []eventstore.Event { - for i := len(events) - 1; i > 0; i-- { - // since we delete during the iteration, we need to make sure we don't panic - if len(events) <= i { - continue - } - // delete all the previous retries of the same notification - events = slices.DeleteFunc(events, func(e eventstore.Event) bool { - return e.Aggregate().ID == events[i].Aggregate().ID && - e.Sequence() < events[i].Sequence() - }) - } - return events -} - -func (w *NotificationWorker) createSavepoint(ctx context.Context, tx *sql.Tx, event eventstore.Event, workerID int, retry bool) { - _, err := tx.ExecContext(ctx, "SAVEPOINT notification_send") - w.log(workerID, retry).OnError(err). - WithField("instanceID", authz.GetInstance(ctx).InstanceID()). - WithField("notificationID", event.Aggregate().ID). - WithField("sequence", event.Sequence()). - WithField("type", event.Type()). - Error("could not create savepoint for notification event") -} - -func (w *NotificationWorker) rollbackToSavepoint(ctx context.Context, tx *sql.Tx, event eventstore.Event, workerID int, retry bool) { - _, err := tx.ExecContext(ctx, "ROLLBACK TO SAVEPOINT notification_send") - w.log(workerID, retry).OnError(err). - WithField("instanceID", authz.GetInstance(ctx).InstanceID()). - WithField("notificationID", event.Aggregate().ID). - WithField("sequence", event.Sequence()). - WithField("type", event.Type()). - Error("could not rollback to savepoint for notification event") -} - -func (w *NotificationWorker) searchEvents(ctx context.Context, tx *sql.Tx, retry bool) ([]eventstore.Event, error) { - if retry { - return w.searchRetryEvents(ctx, tx) - } - // query events and lock them for update (with skip locked) - searchQuery := eventstore.NewSearchQueryBuilder(eventstore.ColumnsEvent). - LockRowsDuringTx(tx, eventstore.LockOptionSkipLocked). - // Messages older than the MaxTTL, we can be ignored. - // The first attempt of a retry might still be older than the TTL and needs to be filtered out later on. - CreationDateAfter(w.now().Add(-1*w.config.MaxTtl)). - Limit(uint64(w.config.BulkLimit)). - AddQuery(). - AggregateTypes(notification.AggregateType). - EventTypes(notification.RequestedType). - Builder(). - ExcludeAggregateIDs(). - EventTypes(notification.RetryRequestedType, notification.CanceledType, notification.SentType). - AggregateTypes(notification.AggregateType). - Builder() - //nolint:staticcheck - return w.es.Filter(ctx, searchQuery) -} - -func (w *NotificationWorker) searchRetryEvents(ctx context.Context, tx *sql.Tx) ([]eventstore.Event, error) { - // query events and lock them for update (with skip locked) - searchQuery := eventstore.NewSearchQueryBuilder(eventstore.ColumnsEvent). - LockRowsDuringTx(tx, eventstore.LockOptionSkipLocked). - // Messages older than the MaxTTL, we can be ignored. - // The first attempt of a retry might still be older than the TTL and needs to be filtered out later on. - CreationDateAfter(w.now().Add(-1*w.config.MaxTtl)). - AddQuery(). - AggregateTypes(notification.AggregateType). - EventTypes(notification.RetryRequestedType). - Builder(). - ExcludeAggregateIDs(). - EventTypes(notification.CanceledType, notification.SentType). - AggregateTypes(notification.AggregateType). - Builder() - //nolint:staticcheck - events, err := w.es.Filter(ctx, searchQuery) - if err != nil { - return nil, err - } - return w.latestRetries(events), nil -} - -type existingInstances []string - -// AppendEvents implements eventstore.QueryReducer. -func (ai *existingInstances) AppendEvents(events ...eventstore.Event) { - for _, event := range events { - switch event.Type() { - case instance.InstanceAddedEventType: - *ai = append(*ai, event.Aggregate().InstanceID) - case instance.InstanceRemovedEventType: - *ai = slices.DeleteFunc(*ai, func(s string) bool { - return s == event.Aggregate().InstanceID - }) - } - } -} - -// Query implements eventstore.QueryReducer. -func (*existingInstances) Query() *eventstore.SearchQueryBuilder { - return eventstore.NewSearchQueryBuilder(eventstore.ColumnsEvent). - AddQuery(). - AggregateTypes(instance.AggregateType). - EventTypes( - instance.InstanceAddedEventType, - instance.InstanceRemovedEventType, - ). - Builder() -} - -// Reduce implements eventstore.QueryReducer. -// reduce is not used as events are reduced during AppendEvents -func (*existingInstances) Reduce() error { - return nil -} diff --git a/internal/notification/handlers/notification_worker_test.go b/internal/notification/handlers/notification_worker_test.go index 40b3197d37..90c6de51fe 100644 --- a/internal/notification/handlers/notification_worker_test.go +++ b/internal/notification/handlers/notification_worker_test.go @@ -2,22 +2,21 @@ package handlers import ( "context" - "database/sql" "errors" "fmt" "testing" "time" "github.com/muhlemmer/gu" + "github.com/riverqueue/river" + "github.com/riverqueue/river/rivertype" "github.com/stretchr/testify/assert" "go.uber.org/mock/gomock" "github.com/zitadel/zitadel/internal/api/authz" "github.com/zitadel/zitadel/internal/api/ui/login" - "github.com/zitadel/zitadel/internal/command" "github.com/zitadel/zitadel/internal/domain" "github.com/zitadel/zitadel/internal/eventstore" - "github.com/zitadel/zitadel/internal/eventstore/repository" es_repo_mock "github.com/zitadel/zitadel/internal/eventstore/repository/mock" "github.com/zitadel/zitadel/internal/notification/channels/email" channel_mock "github.com/zitadel/zitadel/internal/notification/channels/mock" @@ -51,7 +50,6 @@ func Test_userNotifier_reduceNotificationRequested(t *testing.T) { name: "too old", test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fieldsWorker, a argsWorker, w wantWorker) { codeAlg, code := cryptoValue(t, ctrl, "testcode") - commands.EXPECT().NotificationCanceled(gomock.Any(), gomock.Any(), notificationID, instanceID, nil).Return(nil) return fieldsWorker{ queries: queries, commands: commands, @@ -62,19 +60,18 @@ func Test_userNotifier_reduceNotificationRequested(t *testing.T) { now: testNow, }, argsWorker{ - event: ¬ification.RequestedEvent{ - BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ - InstanceID: instanceID, - AggregateID: notificationID, - ResourceOwner: sql.NullString{String: instanceID}, - CreationDate: time.Now().Add(-1 * time.Hour), - Typ: notification.RequestedType, - }), - Request: notification.Request{ + job: &river.Job[*notification.Request]{ + JobRow: &rivertype.JobRow{ + CreatedAt: time.Now().Add(-1 * time.Hour), + }, + Args: ¬ification.Request{ + Aggregate: &eventstore.Aggregate{ + InstanceID: instanceID, + ID: notificationID, + ResourceOwner: instanceID, + }, UserID: userID, UserResourceOwner: orgID, - AggregateID: "", - AggregateResourceOwner: "", TriggeredAtOrigin: eventOrigin, EventType: user.HumanInviteCodeAddedType, MessageType: domain.InviteUserMessageType, @@ -90,7 +87,12 @@ func Test_userNotifier_reduceNotificationRequested(t *testing.T) { }, }, }, - }, w + }, + wantWorker{ + err: func(tt assert.TestingT, err error, i ...interface{}) bool { + return errors.Is(err, new(river.JobCancelError)) + }, + } }, }, { @@ -99,13 +101,13 @@ func Test_userNotifier_reduceNotificationRequested(t *testing.T) { givenTemplate := "{{.LogoURL}}" expectContent := fmt.Sprintf("%s%s/%s/%s", eventOrigin, assetsPath, policyID, logoURL) w.message = &messages.Email{ - Recipients: []string{lastEmail}, - Subject: "Invitation to APP", - Content: expectContent, + Recipients: []string{lastEmail}, + Subject: "Invitation to APP", + Content: expectContent, + TriggeringEventType: user.HumanInviteCodeAddedType, } codeAlg, code := cryptoValue(t, ctrl, "testcode") expectTemplateWithNotifyUserQueries(queries, givenTemplate) - commands.EXPECT().NotificationSent(gomock.Any(), gomock.Any(), notificationID, instanceID).Return(nil) commands.EXPECT().InviteCodeSent(gomock.Any(), orgID, userID).Return(nil) return fieldsWorker{ queries: queries, @@ -117,19 +119,18 @@ func Test_userNotifier_reduceNotificationRequested(t *testing.T) { now: testNow, }, argsWorker{ - event: ¬ification.RequestedEvent{ - BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ - InstanceID: instanceID, - AggregateID: notificationID, - ResourceOwner: sql.NullString{String: instanceID}, - CreationDate: time.Now().UTC(), - Typ: notification.RequestedType, - }), - Request: notification.Request{ + job: &river.Job[*notification.Request]{ + JobRow: &rivertype.JobRow{ + CreatedAt: time.Now(), + }, + Args: ¬ification.Request{ + Aggregate: &eventstore.Aggregate{ + InstanceID: instanceID, + ID: userID, + ResourceOwner: orgID, + }, UserID: userID, UserResourceOwner: orgID, - AggregateID: "", - AggregateResourceOwner: "", TriggeredAtOrigin: eventOrigin, EventType: user.HumanInviteCodeAddedType, MessageType: domain.InviteUserMessageType, @@ -145,7 +146,8 @@ func Test_userNotifier_reduceNotificationRequested(t *testing.T) { }, }, }, - }, w + }, + w }, }, { @@ -159,10 +161,13 @@ func Test_userNotifier_reduceNotificationRequested(t *testing.T) { SenderPhoneNumber: "senderNumber", RecipientPhoneNumber: verifiedPhone, Content: expectContent, + TriggeringEventType: session.OTPSMSChallengedType, + InstanceID: instanceID, + JobID: "1", + UserID: userID, } codeAlg, code := cryptoValue(t, ctrl, testCode) expectTemplateWithNotifyUserQueriesSMS(queries) - commands.EXPECT().NotificationSent(gomock.Any(), gomock.Any(), notificationID, instanceID).Return(nil) commands.EXPECT().OTPSMSSent(gomock.Any(), sessionID, instanceID, &senders.CodeGeneratorInfo{ ID: smsProviderID, VerificationID: verificationID, @@ -177,19 +182,19 @@ func Test_userNotifier_reduceNotificationRequested(t *testing.T) { now: testNow, }, argsWorker{ - event: ¬ification.RequestedEvent{ - BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ - InstanceID: instanceID, - AggregateID: notificationID, - ResourceOwner: sql.NullString{String: instanceID}, - CreationDate: time.Now().UTC(), - Typ: notification.RequestedType, - }), - Request: notification.Request{ + job: &river.Job[*notification.Request]{ + JobRow: &rivertype.JobRow{ + CreatedAt: time.Now(), + ID: 1, + }, + Args: ¬ification.Request{ + Aggregate: &eventstore.Aggregate{ + InstanceID: instanceID, + ID: sessionID, + ResourceOwner: instanceID, + }, UserID: userID, UserResourceOwner: orgID, - AggregateID: sessionID, - AggregateResourceOwner: instanceID, TriggeredAtOrigin: eventOrigin, EventType: session.OTPSMSChallengedType, MessageType: domain.VerifySMSOTPMessageType, @@ -216,12 +221,12 @@ func Test_userNotifier_reduceNotificationRequested(t *testing.T) { givenTemplate := "{{.LogoURL}}" expectContent := fmt.Sprintf("%s%s/%s/%s", eventOrigin, assetsPath, policyID, logoURL) w.message = &messages.Email{ - Recipients: []string{verifiedEmail}, - Subject: "Domain has been claimed", - Content: expectContent, + Recipients: []string{verifiedEmail}, + Subject: "Domain has been claimed", + Content: expectContent, + TriggeringEventType: user.UserDomainClaimedType, } expectTemplateWithNotifyUserQueries(queries, givenTemplate) - commands.EXPECT().NotificationSent(gomock.Any(), gomock.Any(), notificationID, instanceID).Return(nil) commands.EXPECT().UserDomainClaimedSent(gomock.Any(), orgID, userID).Return(nil) return fieldsWorker{ queries: queries, @@ -233,19 +238,18 @@ func Test_userNotifier_reduceNotificationRequested(t *testing.T) { now: testNow, }, argsWorker{ - event: ¬ification.RequestedEvent{ - BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ - InstanceID: instanceID, - AggregateID: notificationID, - ResourceOwner: sql.NullString{String: instanceID}, - CreationDate: time.Now().UTC(), - Typ: notification.RequestedType, - }), - Request: notification.Request{ + job: &river.Job[*notification.Request]{ + JobRow: &rivertype.JobRow{ + CreatedAt: time.Now(), + }, + Args: ¬ification.Request{ + Aggregate: &eventstore.Aggregate{ + InstanceID: instanceID, + ID: userID, + ResourceOwner: orgID, + }, UserID: userID, UserResourceOwner: orgID, - AggregateID: "", - AggregateResourceOwner: "", TriggeredAtOrigin: eventOrigin, EventType: user.UserDomainClaimedType, MessageType: domain.DomainClaimedMessageType, @@ -270,47 +274,17 @@ func Test_userNotifier_reduceNotificationRequested(t *testing.T) { givenTemplate := "{{.LogoURL}}" expectContent := fmt.Sprintf("%s%s/%s/%s", eventOrigin, assetsPath, policyID, logoURL) w.message = &messages.Email{ - Recipients: []string{lastEmail}, - Subject: "Invitation to APP", - Content: expectContent, + Recipients: []string{lastEmail}, + Subject: "Invitation to APP", + Content: expectContent, + TriggeringEventType: user.HumanInviteCodeAddedType, } w.sendError = sendError + w.err = func(tt assert.TestingT, err error, i ...interface{}) bool { + return errors.Is(err, sendError) + } codeAlg, code := cryptoValue(t, ctrl, "testcode") expectTemplateWithNotifyUserQueries(queries, givenTemplate) - commands.EXPECT().NotificationRetryRequested(gomock.Any(), gomock.Any(), notificationID, instanceID, - &command.NotificationRetryRequest{ - NotificationRequest: command.NotificationRequest{ - UserID: userID, - UserResourceOwner: orgID, - AggregateID: "", - AggregateResourceOwner: "", - TriggerOrigin: eventOrigin, - EventType: user.HumanInviteCodeAddedType, - MessageType: domain.InviteUserMessageType, - NotificationType: domain.NotificationTypeEmail, - URLTemplate: fmt.Sprintf("%s/ui/login/user/invite?userID=%s&loginname={{.LoginName}}&code={{.Code}}&orgID=%s&authRequestID=%s", eventOrigin, userID, orgID, authRequestID), - CodeExpiry: 1 * time.Hour, - Code: code, - UnverifiedNotificationChannel: true, - IsOTP: false, - RequiresPreviousDomain: false, - Args: &domain.NotificationArguments{ - ApplicationName: "APP", - }, - }, - BackOff: 1 * time.Second, - NotifyUser: &query.NotifyUser{ - ID: userID, - ResourceOwner: orgID, - LastEmail: lastEmail, - VerifiedEmail: verifiedEmail, - PreferredLoginName: preferredLoginName, - LastPhone: lastPhone, - VerifiedPhone: verifiedPhone, - }, - }, - sendError, - ).Return(nil) return fieldsWorker{ queries: queries, commands: commands, @@ -320,22 +294,21 @@ func Test_userNotifier_reduceNotificationRequested(t *testing.T) { userDataCrypto: codeAlg, now: testNow, backOff: testBackOff, - maxAttempts: 2, }, argsWorker{ - event: ¬ification.RequestedEvent{ - BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ - InstanceID: instanceID, - AggregateID: notificationID, - ResourceOwner: sql.NullString{String: instanceID}, - CreationDate: time.Now().UTC(), - Typ: notification.RequestedType, - }), - Request: notification.Request{ + job: &river.Job[*notification.Request]{ + JobRow: &rivertype.JobRow{ + ID: 1, + CreatedAt: time.Now(), + }, + Args: ¬ification.Request{ + Aggregate: &eventstore.Aggregate{ + InstanceID: instanceID, + ID: notificationID, + ResourceOwner: instanceID, + }, UserID: userID, UserResourceOwner: orgID, - AggregateID: "", - AggregateResourceOwner: "", TriggeredAtOrigin: eventOrigin, EventType: user.HumanInviteCodeAddedType, MessageType: domain.InviteUserMessageType, @@ -351,7 +324,8 @@ func Test_userNotifier_reduceNotificationRequested(t *testing.T) { }, }, }, - }, w + }, + w }, }, { @@ -360,315 +334,18 @@ func Test_userNotifier_reduceNotificationRequested(t *testing.T) { givenTemplate := "{{.LogoURL}}" expectContent := fmt.Sprintf("%s%s/%s/%s", eventOrigin, assetsPath, policyID, logoURL) w.message = &messages.Email{ - Recipients: []string{lastEmail}, - Subject: "Invitation to APP", - Content: expectContent, + Recipients: []string{lastEmail}, + Subject: "Invitation to APP", + Content: expectContent, + TriggeringEventType: user.HumanInviteCodeAddedType, } w.sendError = sendError - codeAlg, code := cryptoValue(t, ctrl, "testcode") - expectTemplateWithNotifyUserQueries(queries, givenTemplate) - commands.EXPECT().NotificationCanceled(gomock.Any(), gomock.Any(), notificationID, instanceID, sendError).Return(nil) - return fieldsWorker{ - queries: queries, - commands: commands, - es: eventstore.NewEventstore(&eventstore.Config{ - Querier: es_repo_mock.NewRepo(t).MockQuerier, - }), - userDataCrypto: codeAlg, - now: testNow, - backOff: testBackOff, - maxAttempts: 1, - }, - argsWorker{ - event: ¬ification.RequestedEvent{ - BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ - InstanceID: instanceID, - AggregateID: notificationID, - ResourceOwner: sql.NullString{String: instanceID}, - CreationDate: time.Now().UTC(), - Seq: 1, - Typ: notification.RequestedType, - }), - Request: notification.Request{ - UserID: userID, - UserResourceOwner: orgID, - AggregateID: "", - AggregateResourceOwner: "", - TriggeredAtOrigin: eventOrigin, - EventType: user.HumanInviteCodeAddedType, - MessageType: domain.InviteUserMessageType, - NotificationType: domain.NotificationTypeEmail, - URLTemplate: fmt.Sprintf("%s/ui/login/user/invite?userID=%s&loginname={{.LoginName}}&code={{.Code}}&orgID=%s&authRequestID=%s", eventOrigin, userID, orgID, authRequestID), - CodeExpiry: 1 * time.Hour, - Code: code, - UnverifiedNotificationChannel: true, - IsOTP: false, - RequiresPreviousDomain: false, - Args: &domain.NotificationArguments{ - ApplicationName: "APP", - }, - }, - }, - }, w - }, - }, - } - for _, tt := range tests { - t.Run(tt.name, func(t *testing.T) { - ctrl := gomock.NewController(t) - queries := mock.NewMockQueries(ctrl) - commands := mock.NewMockCommands(ctrl) - f, a, w := tt.test(ctrl, queries, commands) - err := newNotificationWorker(t, ctrl, queries, f, a, w).reduceNotificationRequested( - authz.WithInstanceID(context.Background(), instanceID), - authz.WithInstanceID(context.Background(), instanceID), - &sql.Tx{}, - a.event.(*notification.RequestedEvent)) - if w.err != nil { - w.err(t, err) - } else { - assert.NoError(t, err) - } - }) - } -} + w.err = func(tt assert.TestingT, err error, i ...interface{}) bool { + return err != nil + } -func Test_userNotifier_reduceNotificationRetry(t *testing.T) { - testNow := time.Now - testBackOff := func(current time.Duration) time.Duration { - return time.Second - } - sendError := errors.New("send error") - tests := []struct { - name string - test func(*gomock.Controller, *mock.MockQueries, *mock.MockCommands) (fieldsWorker, argsWorker, wantWorker) - }{ - { - name: "too old", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fieldsWorker, a argsWorker, w wantWorker) { codeAlg, code := cryptoValue(t, ctrl, "testcode") - commands.EXPECT().NotificationCanceled(gomock.Any(), gomock.Any(), notificationID, instanceID, nil).Return(nil) - return fieldsWorker{ - queries: queries, - commands: commands, - es: eventstore.NewEventstore(&eventstore.Config{ - Querier: es_repo_mock.NewRepo(t).MockQuerier, - }), - userDataCrypto: codeAlg, - now: testNow, - }, - argsWorker{ - event: ¬ification.RetryRequestedEvent{ - BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ - InstanceID: instanceID, - AggregateID: notificationID, - ResourceOwner: sql.NullString{String: instanceID}, - CreationDate: time.Now().Add(-1 * time.Hour), - Typ: notification.RequestedType, - }), - Request: notification.Request{ - UserID: userID, - UserResourceOwner: orgID, - AggregateID: "", - AggregateResourceOwner: "", - TriggeredAtOrigin: eventOrigin, - EventType: user.HumanInviteCodeAddedType, - MessageType: domain.InviteUserMessageType, - NotificationType: domain.NotificationTypeEmail, - URLTemplate: fmt.Sprintf("%s/ui/login/user/invite?userID=%s&loginname={{.LoginName}}&code={{.Code}}&orgID=%s&authRequestID=%s", eventOrigin, userID, orgID, authRequestID), - CodeExpiry: 1 * time.Hour, - Code: code, - UnverifiedNotificationChannel: true, - IsOTP: false, - RequiresPreviousDomain: false, - Args: &domain.NotificationArguments{ - ApplicationName: "APP", - }, - }, - BackOff: 1 * time.Second, - NotifyUser: &query.NotifyUser{ - ID: userID, - ResourceOwner: orgID, - LastEmail: lastEmail, - VerifiedEmail: verifiedEmail, - PreferredLoginName: preferredLoginName, - LastPhone: lastPhone, - VerifiedPhone: verifiedPhone, - }, - }, - }, w - }, - }, - { - name: "backoff not done", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fieldsWorker, a argsWorker, w wantWorker) { - codeAlg, code := cryptoValue(t, ctrl, "testcode") - return fieldsWorker{ - queries: queries, - commands: commands, - es: eventstore.NewEventstore(&eventstore.Config{ - Querier: es_repo_mock.NewRepo(t).MockQuerier, - }), - userDataCrypto: codeAlg, - now: testNow, - }, - argsWorker{ - event: ¬ification.RetryRequestedEvent{ - BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ - InstanceID: instanceID, - AggregateID: notificationID, - ResourceOwner: sql.NullString{String: instanceID}, - CreationDate: time.Now(), - Typ: notification.RequestedType, - Seq: 2, - }), - Request: notification.Request{ - UserID: userID, - UserResourceOwner: orgID, - AggregateID: "", - AggregateResourceOwner: "", - TriggeredAtOrigin: eventOrigin, - EventType: user.HumanInviteCodeAddedType, - MessageType: domain.InviteUserMessageType, - NotificationType: domain.NotificationTypeEmail, - URLTemplate: fmt.Sprintf("%s/ui/login/user/invite?userID=%s&loginname={{.LoginName}}&code={{.Code}}&orgID=%s&authRequestID=%s", eventOrigin, userID, orgID, authRequestID), - CodeExpiry: 1 * time.Hour, - Code: code, - UnverifiedNotificationChannel: true, - IsOTP: false, - RequiresPreviousDomain: false, - Args: &domain.NotificationArguments{ - ApplicationName: "APP", - }, - }, - BackOff: 10 * time.Second, - NotifyUser: &query.NotifyUser{ - ID: userID, - ResourceOwner: orgID, - LastEmail: lastEmail, - VerifiedEmail: verifiedEmail, - PreferredLoginName: preferredLoginName, - LastPhone: lastPhone, - VerifiedPhone: verifiedPhone, - }, - }, - }, w - }, - }, - { - name: "send ok", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fieldsWorker, a argsWorker, w wantWorker) { - givenTemplate := "{{.LogoURL}}" - expectContent := fmt.Sprintf("%s%s/%s/%s", eventOrigin, assetsPath, policyID, logoURL) - w.message = &messages.Email{ - Recipients: []string{lastEmail}, - Subject: "Invitation to APP", - Content: expectContent, - } - codeAlg, code := cryptoValue(t, ctrl, "testcode") - expectTemplateQueries(queries, givenTemplate) - commands.EXPECT().NotificationSent(gomock.Any(), gomock.Any(), notificationID, instanceID).Return(nil) - commands.EXPECT().InviteCodeSent(gomock.Any(), orgID, userID).Return(nil) - return fieldsWorker{ - queries: queries, - commands: commands, - es: eventstore.NewEventstore(&eventstore.Config{ - Querier: es_repo_mock.NewRepo(t).MockQuerier, - }), - userDataCrypto: codeAlg, - now: testNow, - maxAttempts: 3, - }, - argsWorker{ - event: ¬ification.RetryRequestedEvent{ - BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ - InstanceID: instanceID, - AggregateID: notificationID, - ResourceOwner: sql.NullString{String: instanceID}, - CreationDate: time.Now().Add(-2 * time.Second), - Typ: notification.RequestedType, - Seq: 2, - }), - Request: notification.Request{ - UserID: userID, - UserResourceOwner: orgID, - AggregateID: "", - AggregateResourceOwner: "", - TriggeredAtOrigin: eventOrigin, - EventType: user.HumanInviteCodeAddedType, - MessageType: domain.InviteUserMessageType, - NotificationType: domain.NotificationTypeEmail, - URLTemplate: fmt.Sprintf("%s/ui/login/user/invite?userID=%s&loginname={{.LoginName}}&code={{.Code}}&orgID=%s&authRequestID=%s", eventOrigin, userID, orgID, authRequestID), - CodeExpiry: 1 * time.Hour, - Code: code, - UnverifiedNotificationChannel: true, - IsOTP: false, - RequiresPreviousDomain: false, - Args: &domain.NotificationArguments{ - ApplicationName: "APP", - }, - }, - BackOff: 1 * time.Second, - NotifyUser: &query.NotifyUser{ - ID: userID, - ResourceOwner: orgID, - LastEmail: lastEmail, - VerifiedEmail: verifiedEmail, - PreferredLoginName: preferredLoginName, - LastPhone: lastPhone, - VerifiedPhone: verifiedPhone, - }, - }, - }, w - }, - }, - { - name: "send failed, retry", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fieldsWorker, a argsWorker, w wantWorker) { - givenTemplate := "{{.LogoURL}}" - expectContent := fmt.Sprintf("%s%s/%s/%s", eventOrigin, assetsPath, policyID, logoURL) - w.message = &messages.Email{ - Recipients: []string{lastEmail}, - Subject: "Invitation to APP", - Content: expectContent, - } - w.sendError = sendError - codeAlg, code := cryptoValue(t, ctrl, "testcode") - expectTemplateQueries(queries, givenTemplate) - commands.EXPECT().NotificationRetryRequested(gomock.Any(), gomock.Any(), notificationID, instanceID, - &command.NotificationRetryRequest{ - NotificationRequest: command.NotificationRequest{ - UserID: userID, - UserResourceOwner: orgID, - AggregateID: "", - AggregateResourceOwner: "", - TriggerOrigin: eventOrigin, - EventType: user.HumanInviteCodeAddedType, - MessageType: domain.InviteUserMessageType, - NotificationType: domain.NotificationTypeEmail, - URLTemplate: fmt.Sprintf("%s/ui/login/user/invite?userID=%s&loginname={{.LoginName}}&code={{.Code}}&orgID=%s&authRequestID=%s", eventOrigin, userID, orgID, authRequestID), - CodeExpiry: 1 * time.Hour, - Code: code, - UnverifiedNotificationChannel: true, - IsOTP: false, - RequiresPreviousDomain: false, - Args: &domain.NotificationArguments{ - ApplicationName: "APP", - }, - }, - BackOff: 1 * time.Second, - NotifyUser: &query.NotifyUser{ - ID: userID, - ResourceOwner: orgID, - LastEmail: lastEmail, - VerifiedEmail: verifiedEmail, - PreferredLoginName: preferredLoginName, - LastPhone: lastPhone, - VerifiedPhone: verifiedPhone, - }, - }, - sendError, - ).Return(nil) + expectTemplateWithNotifyUserQueries(queries, givenTemplate) return fieldsWorker{ queries: queries, commands: commands, @@ -678,23 +355,20 @@ func Test_userNotifier_reduceNotificationRetry(t *testing.T) { userDataCrypto: codeAlg, now: testNow, backOff: testBackOff, - maxAttempts: 3, }, argsWorker{ - event: ¬ification.RetryRequestedEvent{ - BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ - InstanceID: instanceID, - AggregateID: notificationID, - ResourceOwner: sql.NullString{String: instanceID}, - CreationDate: time.Now().Add(-2 * time.Second), - Typ: notification.RequestedType, - Seq: 2, - }), - Request: notification.Request{ + job: &river.Job[*notification.Request]{ + JobRow: &rivertype.JobRow{ + CreatedAt: time.Now(), + }, + Args: ¬ification.Request{ + Aggregate: &eventstore.Aggregate{ + InstanceID: instanceID, + ID: userID, + ResourceOwner: orgID, + }, UserID: userID, UserResourceOwner: orgID, - AggregateID: "", - AggregateResourceOwner: "", TriggeredAtOrigin: eventOrigin, EventType: user.HumanInviteCodeAddedType, MessageType: domain.InviteUserMessageType, @@ -709,86 +383,9 @@ func Test_userNotifier_reduceNotificationRetry(t *testing.T) { ApplicationName: "APP", }, }, - BackOff: 1 * time.Second, - NotifyUser: &query.NotifyUser{ - ID: userID, - ResourceOwner: orgID, - LastEmail: lastEmail, - VerifiedEmail: verifiedEmail, - PreferredLoginName: preferredLoginName, - LastPhone: lastPhone, - VerifiedPhone: verifiedPhone, - }, }, - }, w - }, - }, - { - name: "send failed (max attempts), cancel", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fieldsWorker, a argsWorker, w wantWorker) { - givenTemplate := "{{.LogoURL}}" - expectContent := fmt.Sprintf("%s%s/%s/%s", eventOrigin, assetsPath, policyID, logoURL) - w.message = &messages.Email{ - Recipients: []string{lastEmail}, - Subject: "Invitation to APP", - Content: expectContent, - } - w.sendError = sendError - codeAlg, code := cryptoValue(t, ctrl, "testcode") - expectTemplateQueries(queries, givenTemplate) - commands.EXPECT().NotificationCanceled(gomock.Any(), gomock.Any(), notificationID, instanceID, sendError).Return(nil) - return fieldsWorker{ - queries: queries, - commands: commands, - es: eventstore.NewEventstore(&eventstore.Config{ - Querier: es_repo_mock.NewRepo(t).MockQuerier, - }), - userDataCrypto: codeAlg, - now: testNow, - backOff: testBackOff, - maxAttempts: 2, }, - argsWorker{ - event: ¬ification.RetryRequestedEvent{ - BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ - InstanceID: instanceID, - AggregateID: notificationID, - ResourceOwner: sql.NullString{String: instanceID}, - CreationDate: time.Now().Add(-2 * time.Second), - Seq: 2, - Typ: notification.RequestedType, - }), - Request: notification.Request{ - UserID: userID, - UserResourceOwner: orgID, - AggregateID: "", - AggregateResourceOwner: "", - TriggeredAtOrigin: eventOrigin, - EventType: user.HumanInviteCodeAddedType, - MessageType: domain.InviteUserMessageType, - NotificationType: domain.NotificationTypeEmail, - URLTemplate: fmt.Sprintf("%s/ui/login/user/invite?userID=%s&loginname={{.LoginName}}&code={{.Code}}&orgID=%s&authRequestID=%s", eventOrigin, userID, orgID, authRequestID), - CodeExpiry: 1 * time.Hour, - Code: code, - UnverifiedNotificationChannel: true, - IsOTP: false, - RequiresPreviousDomain: false, - Args: &domain.NotificationArguments{ - ApplicationName: "APP", - }, - }, - BackOff: 1 * time.Second, - NotifyUser: &query.NotifyUser{ - ID: userID, - ResourceOwner: orgID, - LastEmail: lastEmail, - VerifiedEmail: verifiedEmail, - PreferredLoginName: preferredLoginName, - LastPhone: lastPhone, - VerifiedPhone: verifiedPhone, - }, - }, - }, w + w }, }, } @@ -798,11 +395,9 @@ func Test_userNotifier_reduceNotificationRetry(t *testing.T) { queries := mock.NewMockQueries(ctrl) commands := mock.NewMockCommands(ctrl) f, a, w := tt.test(ctrl, queries, commands) - err := newNotificationWorker(t, ctrl, queries, f, a, w).reduceNotificationRetry( + err := newNotificationWorker(t, ctrl, queries, f, w).Work( authz.WithInstanceID(context.Background(), instanceID), - authz.WithInstanceID(context.Background(), instanceID), - &sql.Tx{}, - a.event.(*notification.RetryRequestedEvent), + a.job, ) if w.err != nil { w.err(t, err) @@ -813,22 +408,18 @@ func Test_userNotifier_reduceNotificationRetry(t *testing.T) { } } -func newNotificationWorker(t *testing.T, ctrl *gomock.Controller, queries *mock.MockQueries, f fieldsWorker, a argsWorker, w wantWorker) *NotificationWorker { +func newNotificationWorker(t *testing.T, ctrl *gomock.Controller, queries *mock.MockQueries, f fieldsWorker, w wantWorker) *NotificationWorker { queries.EXPECT().NotificationProviderByIDAndType(gomock.Any(), gomock.Any(), gomock.Any()).AnyTimes().Return(&query.DebugNotificationProvider{}, nil) smtpAlg, _ := cryptoValue(t, ctrl, "smtppw") channel := channel_mock.NewMockNotificationChannel(ctrl) - if w.err == nil { - if w.message != nil { - w.message.TriggeringEvent = a.event - channel.EXPECT().HandleMessage(w.message).Return(w.sendError) - } - if w.messageSMS != nil { - w.messageSMS.TriggeringEvent = a.event - channel.EXPECT().HandleMessage(w.messageSMS).DoAndReturn(func(message *messages.SMS) error { - message.VerificationID = gu.Ptr(verificationID) - return w.sendError - }) - } + if w.message != nil { + channel.EXPECT().HandleMessage(w.message).Return(w.sendError) + } + if w.messageSMS != nil { + channel.EXPECT().HandleMessage(w.messageSMS).DoAndReturn(func(message *messages.SMS) error { + message.VerificationID = gu.Ptr(verificationID) + return w.sendError + }) } return &NotificationWorker{ commands: f.commands, @@ -878,88 +469,9 @@ func newNotificationWorker(t *testing.T, ctrl *gomock.Controller, queries *mock. }, config: WorkerConfig{ Workers: 1, - BulkLimit: 10, - RequeueEvery: 2 * time.Second, TransactionDuration: 5 * time.Second, - MaxAttempts: f.maxAttempts, MaxTtl: 5 * time.Minute, - MinRetryDelay: 1 * time.Second, - MaxRetryDelay: 10 * time.Second, - RetryDelayFactor: 2, }, - now: f.now, - backOff: f.backOff, - } -} - -func TestNotificationWorker_exponentialBackOff(t *testing.T) { - type fields struct { - config WorkerConfig - } - type args struct { - current time.Duration - } - tests := []struct { - name string - fields fields - args args - wantMin time.Duration - wantMax time.Duration - }{ - { - name: "less than min, min - 1.5*min", - fields: fields{ - config: WorkerConfig{ - MinRetryDelay: 1 * time.Second, - MaxRetryDelay: 5 * time.Second, - RetryDelayFactor: 1.5, - }, - }, - args: args{ - current: 0, - }, - wantMin: 1000 * time.Millisecond, - wantMax: 1500 * time.Millisecond, - }, - { - name: "current, 1.5*current - max", - fields: fields{ - config: WorkerConfig{ - MinRetryDelay: 1 * time.Second, - MaxRetryDelay: 5 * time.Second, - RetryDelayFactor: 1.5, - }, - }, - args: args{ - current: 4 * time.Second, - }, - wantMin: 4000 * time.Millisecond, - wantMax: 5000 * time.Millisecond, - }, - { - name: "max, max", - fields: fields{ - config: WorkerConfig{ - MinRetryDelay: 1 * time.Second, - MaxRetryDelay: 5 * time.Second, - RetryDelayFactor: 1.5, - }, - }, - args: args{ - current: 5 * time.Second, - }, - wantMin: 5000 * time.Millisecond, - wantMax: 5000 * time.Millisecond, - }, - } - for _, tt := range tests { - t.Run(tt.name, func(t *testing.T) { - w := &NotificationWorker{ - config: tt.fields.config, - } - b := w.exponentialBackOff(tt.args.current) - assert.GreaterOrEqual(t, b, tt.wantMin) - assert.LessOrEqual(t, b, tt.wantMax) - }) + now: f.now, } } diff --git a/internal/notification/handlers/queue.go b/internal/notification/handlers/queue.go new file mode 100644 index 0000000000..3d6bc3b463 --- /dev/null +++ b/internal/notification/handlers/queue.go @@ -0,0 +1,13 @@ +package handlers + +import ( + "context" + + "github.com/riverqueue/river" + + "github.com/zitadel/zitadel/internal/queue" +) + +type Queue interface { + Insert(ctx context.Context, args river.JobArgs, opts ...queue.InsertOpt) error +} diff --git a/internal/notification/handlers/quota_notifier.go b/internal/notification/handlers/quota_notifier.go index c455b9955c..f308291243 100644 --- a/internal/notification/handlers/quota_notifier.go +++ b/internal/notification/handlers/quota_notifier.go @@ -36,7 +36,6 @@ func NewQuotaNotifier( queries: queries, channels: channels, }) - } func (*quotaNotifier) Name() string { @@ -72,7 +71,7 @@ func (u *quotaNotifier) reduceNotificationDue(event eventstore.Event) (*handler. if alreadyHandled { return nil } - err = types.SendJSON(ctx, webhook.Config{CallURL: e.CallURL, Method: http.MethodPost}, u.channels, e, e).WithoutTemplate() + err = types.SendJSON(ctx, webhook.Config{CallURL: e.CallURL, Method: http.MethodPost}, u.channels, e, e.Type()).WithoutTemplate() if err != nil { return err } diff --git a/internal/notification/handlers/telemetry_pusher.go b/internal/notification/handlers/telemetry_pusher.go index be41074bc6..7e510a2b4c 100644 --- a/internal/notification/handlers/telemetry_pusher.go +++ b/internal/notification/handlers/telemetry_pusher.go @@ -104,7 +104,7 @@ func (t *telemetryPusher) pushMilestone(ctx context.Context, e *milestone.Reache Type: e.MilestoneType, ReachedDate: e.GetReachedDate(), }, - e, + e.EventType, ).WithoutTemplate(); err != nil { return err } diff --git a/internal/notification/handlers/user_notifier.go b/internal/notification/handlers/user_notifier.go index c24b87c2f6..f36f5d828c 100644 --- a/internal/notification/handlers/user_notifier.go +++ b/internal/notification/handlers/user_notifier.go @@ -7,12 +7,13 @@ import ( http_util "github.com/zitadel/zitadel/internal/api/http" "github.com/zitadel/zitadel/internal/api/ui/console" "github.com/zitadel/zitadel/internal/api/ui/login" - "github.com/zitadel/zitadel/internal/command" "github.com/zitadel/zitadel/internal/domain" "github.com/zitadel/zitadel/internal/eventstore" "github.com/zitadel/zitadel/internal/eventstore/handler/v2" "github.com/zitadel/zitadel/internal/notification/senders" "github.com/zitadel/zitadel/internal/notification/types" + "github.com/zitadel/zitadel/internal/queue" + "github.com/zitadel/zitadel/internal/repository/notification" "github.com/zitadel/zitadel/internal/repository/session" "github.com/zitadel/zitadel/internal/repository/user" "github.com/zitadel/zitadel/internal/zerrors" @@ -86,9 +87,11 @@ const ( ) type userNotifier struct { - commands Commands queries *NotificationQueries otpEmailTmpl string + + queue Queue + maxAttempts uint8 } func NewUserNotifier( @@ -98,15 +101,17 @@ func NewUserNotifier( queries *NotificationQueries, channels types.ChannelChains, otpEmailTmpl string, - legacyMode bool, + workerConfig WorkerConfig, + queue Queue, ) *handler.Handler { - if legacyMode { + if workerConfig.LegacyEnabled { return NewUserNotifierLegacy(ctx, config, commands, queries, channels, otpEmailTmpl) } return handler.NewHandler(ctx, &config, &userNotifier{ - commands: commands, queries: queries, otpEmailTmpl: otpEmailTmpl, + queue: queue, + maxAttempts: workerConfig.MaxAttempts, }) } @@ -198,7 +203,6 @@ func (u *userNotifier) reduceInitCodeAdded(event eventstore.Event) (*handler.Sta if !ok { return nil, zerrors.ThrowInvalidArgumentf(nil, "HANDL-EFe2f", "reduce.wrong.event.type %s", user.HumanInitialCodeAddedType) } - return handler.NewStatement(event, func(ex handler.Executer, projectionName string) error { ctx := HandlerContext(event.Aggregate()) alreadyHandled, err := u.checkIfCodeAlreadyHandledOrExpired(ctx, event, e.Expiry, nil, @@ -215,23 +219,26 @@ func (u *userNotifier) reduceInitCodeAdded(event eventstore.Event) (*handler.Sta return err } origin := http_util.DomainContext(ctx).Origin() - return u.commands.RequestNotification( - ctx, - e.Aggregate().ResourceOwner, - command.NewNotificationRequest( - e.Aggregate().ID, - e.Aggregate().ResourceOwner, - origin, - e.EventType, - domain.NotificationTypeEmail, - domain.InitCodeMessageType, - ). - WithURLTemplate(login.InitUserLinkTemplate(origin, e.Aggregate().ID, e.Aggregate().ResourceOwner, e.AuthRequestID)). - WithCode(e.Code, e.Expiry). - WithArgs(&domain.NotificationArguments{ + return u.queue.Insert(ctx, + ¬ification.Request{ + Aggregate: e.Aggregate(), + UserID: e.Aggregate().ID, + UserResourceOwner: e.Aggregate().ResourceOwner, + TriggeredAtOrigin: origin, + EventType: e.EventType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.InitCodeMessageType, + Code: e.Code, + CodeExpiry: e.Expiry, + IsOTP: false, + UnverifiedNotificationChannel: true, + URLTemplate: login.InitUserLinkTemplate(origin, e.Aggregate().ID, e.Aggregate().ResourceOwner, e.AuthRequestID), + Args: &domain.NotificationArguments{ AuthRequestID: e.AuthRequestID, - }). - WithUnverifiedChannel(), + }, + }, + queue.WithQueueName(notification.QueueName), + queue.WithMaxAttempts(u.maxAttempts), ) }), nil } @@ -262,23 +269,26 @@ func (u *userNotifier) reduceEmailCodeAdded(event eventstore.Event) (*handler.St return err } origin := http_util.DomainContext(ctx).Origin() - - return u.commands.RequestNotification(ctx, - e.Aggregate().ResourceOwner, - command.NewNotificationRequest( - e.Aggregate().ID, - e.Aggregate().ResourceOwner, - origin, - e.EventType, - domain.NotificationTypeEmail, - domain.VerifyEmailMessageType, - ). - WithURLTemplate(u.emailCodeTemplate(origin, e)). - WithCode(e.Code, e.Expiry). - WithArgs(&domain.NotificationArguments{ + return u.queue.Insert(ctx, + ¬ification.Request{ + Aggregate: e.Aggregate(), + UserID: e.Aggregate().ID, + UserResourceOwner: e.Aggregate().ResourceOwner, + TriggeredAtOrigin: origin, + EventType: e.EventType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.VerifyEmailMessageType, + Code: e.Code, + CodeExpiry: e.Expiry, + IsOTP: false, + UnverifiedNotificationChannel: true, + URLTemplate: u.emailCodeTemplate(origin, e), + Args: &domain.NotificationArguments{ AuthRequestID: e.AuthRequestID, - }). - WithUnverifiedChannel(), + }, + }, + queue.WithQueueName(notification.QueueName), + queue.WithMaxAttempts(u.maxAttempts), ) }), nil } @@ -315,22 +325,26 @@ func (u *userNotifier) reducePasswordCodeAdded(event eventstore.Event) (*handler return err } origin := http_util.DomainContext(ctx).Origin() - return u.commands.RequestNotification(ctx, - e.Aggregate().ResourceOwner, - command.NewNotificationRequest( - e.Aggregate().ID, - e.Aggregate().ResourceOwner, - origin, - e.EventType, - e.NotificationType, - domain.PasswordResetMessageType, - ). - WithURLTemplate(u.passwordCodeTemplate(origin, e)). - WithCode(e.Code, e.Expiry). - WithArgs(&domain.NotificationArguments{ + return u.queue.Insert(ctx, + ¬ification.Request{ + Aggregate: e.Aggregate(), + UserID: e.Aggregate().ID, + UserResourceOwner: e.Aggregate().ResourceOwner, + TriggeredAtOrigin: origin, + EventType: e.EventType, + NotificationType: e.NotificationType, + MessageType: domain.PasswordResetMessageType, + Code: e.Code, + CodeExpiry: e.Expiry, + IsOTP: false, + UnverifiedNotificationChannel: true, + URLTemplate: u.passwordCodeTemplate(origin, e), + Args: &domain.NotificationArguments{ AuthRequestID: e.AuthRequestID, - }). - WithUnverifiedChannel(), + }, + }, + queue.WithQueueName(notification.QueueName), + queue.WithMaxAttempts(u.maxAttempts), ) }), nil } @@ -363,19 +377,22 @@ func (u *userNotifier) reduceOTPSMSCodeAdded(event eventstore.Event) (*handler.S if err != nil { return err } - return u.commands.RequestNotification(ctx, - e.Aggregate().ResourceOwner, - command.NewNotificationRequest( - e.Aggregate().ID, - e.Aggregate().ResourceOwner, - http_util.DomainContext(ctx).Origin(), - e.EventType, - domain.NotificationTypeSms, - domain.VerifySMSOTPMessageType, - ). - WithCode(e.Code, e.Expiry). - WithArgs(otpArgs(ctx, e.Expiry)). - WithOTP(), + return u.queue.Insert(ctx, + ¬ification.Request{ + Aggregate: e.Aggregate(), + UserID: e.Aggregate().ID, + UserResourceOwner: e.Aggregate().ResourceOwner, + TriggeredAtOrigin: http_util.DomainContext(ctx).Origin(), + EventType: e.EventType, + NotificationType: domain.NotificationTypeSms, + MessageType: domain.VerifySMSOTPMessageType, + Code: e.Code, + CodeExpiry: e.Expiry, + IsOTP: true, + Args: otpArgs(ctx, e.Expiry), + }, + queue.WithQueueName(notification.QueueName), + queue.WithMaxAttempts(u.maxAttempts), ) }), nil } @@ -412,20 +429,22 @@ func (u *userNotifier) reduceSessionOTPSMSChallenged(event eventstore.Event) (*h args := otpArgs(ctx, e.Expiry) args.SessionID = e.Aggregate().ID - return u.commands.RequestNotification(ctx, - s.UserFactor.ResourceOwner, - command.NewNotificationRequest( - s.UserFactor.UserID, - s.UserFactor.ResourceOwner, - http_util.DomainContext(ctx).Origin(), - e.EventType, - domain.NotificationTypeSms, - domain.VerifySMSOTPMessageType, - ). - WithAggregate(e.Aggregate().ID, e.Aggregate().ResourceOwner). - WithCode(e.Code, e.Expiry). - WithOTP(). - WithArgs(args), + return u.queue.Insert(ctx, + ¬ification.Request{ + Aggregate: e.Aggregate(), + UserID: s.UserFactor.UserID, + UserResourceOwner: s.UserFactor.ResourceOwner, + TriggeredAtOrigin: http_util.DomainContext(ctx).Origin(), + EventType: e.EventType, + NotificationType: domain.NotificationTypeSms, + MessageType: domain.VerifySMSOTPMessageType, + Code: e.Code, + CodeExpiry: e.Expiry, + IsOTP: true, + Args: args, + }, + queue.WithQueueName(notification.QueueName), + queue.WithMaxAttempts(u.maxAttempts), ) }), nil } @@ -459,20 +478,23 @@ func (u *userNotifier) reduceOTPEmailCodeAdded(event eventstore.Event) (*handler } args := otpArgs(ctx, e.Expiry) args.AuthRequestID = authRequestID - return u.commands.RequestNotification(ctx, - e.Aggregate().ResourceOwner, - command.NewNotificationRequest( - e.Aggregate().ID, - e.Aggregate().ResourceOwner, - origin, - e.EventType, - domain.NotificationTypeEmail, - domain.VerifyEmailOTPMessageType, - ). - WithURLTemplate(login.OTPLinkTemplate(origin, authRequestID, domain.MFATypeOTPEmail)). - WithCode(e.Code, e.Expiry). - WithOTP(). - WithArgs(args), + return u.queue.Insert(ctx, + ¬ification.Request{ + Aggregate: e.Aggregate(), + UserID: e.Aggregate().ID, + UserResourceOwner: e.Aggregate().ResourceOwner, + TriggeredAtOrigin: origin, + EventType: e.EventType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.VerifyEmailOTPMessageType, + Code: e.Code, + CodeExpiry: e.Expiry, + IsOTP: true, + URLTemplate: login.OTPLinkTemplate(origin, authRequestID, domain.MFATypeOTPEmail), + Args: args, + }, + queue.WithQueueName(notification.QueueName), + queue.WithMaxAttempts(u.maxAttempts), ) }), nil } @@ -509,21 +531,23 @@ func (u *userNotifier) reduceSessionOTPEmailChallenged(event eventstore.Event) ( args := otpArgs(ctx, e.Expiry) args.SessionID = e.Aggregate().ID - return u.commands.RequestNotification(ctx, - s.UserFactor.ResourceOwner, - command.NewNotificationRequest( - s.UserFactor.UserID, - s.UserFactor.ResourceOwner, - origin, - e.EventType, - domain.NotificationTypeEmail, - domain.VerifyEmailOTPMessageType, - ). - WithAggregate(e.Aggregate().ID, e.Aggregate().ResourceOwner). - WithURLTemplate(u.otpEmailTemplate(origin, e)). - WithCode(e.Code, e.Expiry). - WithOTP(). - WithArgs(args), + return u.queue.Insert(ctx, + ¬ification.Request{ + Aggregate: e.Aggregate(), + UserID: s.UserFactor.UserID, + UserResourceOwner: s.UserFactor.ResourceOwner, + TriggeredAtOrigin: origin, + EventType: e.EventType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.VerifyEmailOTPMessageType, + Code: e.Code, + CodeExpiry: e.Expiry, + IsOTP: true, + URLTemplate: u.otpEmailTemplate(origin, e), + Args: args, + }, + queue.WithQueueName(notification.QueueName), + queue.WithMaxAttempts(u.maxAttempts), ) }), nil } @@ -564,22 +588,24 @@ func (u *userNotifier) reduceDomainClaimed(event eventstore.Event) (*handler.Sta return err } origin := http_util.DomainContext(ctx).Origin() - return u.commands.RequestNotification(ctx, - e.Aggregate().ResourceOwner, - command.NewNotificationRequest( - e.Aggregate().ID, - e.Aggregate().ResourceOwner, - origin, - e.EventType, - domain.NotificationTypeEmail, - domain.DomainClaimedMessageType, - ). - WithURLTemplate(login.LoginLink(origin, e.Aggregate().ResourceOwner)). - WithUnverifiedChannel(). - WithPreviousDomain(). - WithArgs(&domain.NotificationArguments{ + return u.queue.Insert(ctx, + ¬ification.Request{ + Aggregate: e.Aggregate(), + UserID: e.Aggregate().ID, + UserResourceOwner: e.Aggregate().ResourceOwner, + TriggeredAtOrigin: origin, + EventType: e.EventType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.DomainClaimedMessageType, + URLTemplate: login.LoginLink(origin, e.Aggregate().ResourceOwner), + UnverifiedNotificationChannel: true, + Args: &domain.NotificationArguments{ TempUsername: e.UserName, - }), + }, + RequiresPreviousDomain: true, + }, + queue.WithQueueName(notification.QueueName), + queue.WithMaxAttempts(u.maxAttempts), ) }), nil } @@ -607,21 +633,24 @@ func (u *userNotifier) reducePasswordlessCodeRequested(event eventstore.Event) ( return err } origin := http_util.DomainContext(ctx).Origin() - return u.commands.RequestNotification(ctx, - e.Aggregate().ResourceOwner, - command.NewNotificationRequest( - e.Aggregate().ID, - e.Aggregate().ResourceOwner, - origin, - e.EventType, - domain.NotificationTypeEmail, - domain.PasswordlessRegistrationMessageType, - ). - WithURLTemplate(u.passwordlessCodeTemplate(origin, e)). - WithCode(e.Code, e.Expiry). - WithArgs(&domain.NotificationArguments{ + return u.queue.Insert(ctx, + ¬ification.Request{ + Aggregate: e.Aggregate(), + UserID: e.Aggregate().ID, + UserResourceOwner: e.Aggregate().ResourceOwner, + TriggeredAtOrigin: origin, + EventType: e.EventType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.PasswordlessRegistrationMessageType, + URLTemplate: u.passwordlessCodeTemplate(origin, e), + Args: &domain.NotificationArguments{ CodeID: e.ID, - }), + }, + CodeExpiry: e.Expiry, + Code: e.Code, + }, + queue.WithQueueName(notification.QueueName), + queue.WithMaxAttempts(u.maxAttempts), ) }), nil } @@ -664,18 +693,20 @@ func (u *userNotifier) reducePasswordChanged(event eventstore.Event) (*handler.S } origin := http_util.DomainContext(ctx).Origin() - return u.commands.RequestNotification(ctx, - e.Aggregate().ResourceOwner, - command.NewNotificationRequest( - e.Aggregate().ID, - e.Aggregate().ResourceOwner, - origin, - e.EventType, - domain.NotificationTypeEmail, - domain.PasswordChangeMessageType, - ). - WithURLTemplate(console.LoginHintLink(origin, "{{.PreferredLoginName}}")). - WithUnverifiedChannel(), + return u.queue.Insert(ctx, + ¬ification.Request{ + Aggregate: e.Aggregate(), + UserID: e.Aggregate().ID, + UserResourceOwner: e.Aggregate().ResourceOwner, + TriggeredAtOrigin: origin, + EventType: e.EventType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.PasswordChangeMessageType, + URLTemplate: console.LoginHintLink(origin, "{{.PreferredLoginName}}"), + UnverifiedNotificationChannel: true, + }, + queue.WithQueueName(notification.QueueName), + queue.WithMaxAttempts(u.maxAttempts), ) }), nil } @@ -706,21 +737,24 @@ func (u *userNotifier) reducePhoneCodeAdded(event eventstore.Event) (*handler.St return err } - return u.commands.RequestNotification(ctx, - e.Aggregate().ResourceOwner, - command.NewNotificationRequest( - e.Aggregate().ID, - e.Aggregate().ResourceOwner, - http_util.DomainContext(ctx).Origin(), - e.EventType, - domain.NotificationTypeSms, - domain.VerifyPhoneMessageType, - ). - WithCode(e.Code, e.Expiry). - WithUnverifiedChannel(). - WithArgs(&domain.NotificationArguments{ + return u.queue.Insert(ctx, + ¬ification.Request{ + Aggregate: e.Aggregate(), + UserID: e.Aggregate().ID, + UserResourceOwner: e.Aggregate().ResourceOwner, + TriggeredAtOrigin: http_util.DomainContext(ctx).Origin(), + EventType: e.EventType, + NotificationType: domain.NotificationTypeSms, + MessageType: domain.VerifyPhoneMessageType, + CodeExpiry: e.Expiry, + Code: e.Code, + UnverifiedNotificationChannel: true, + Args: &domain.NotificationArguments{ Domain: http_util.DomainContext(ctx).RequestedDomain(), - }), + }, + }, + queue.WithQueueName(notification.QueueName), + queue.WithMaxAttempts(u.maxAttempts), ) }), nil } @@ -755,23 +789,26 @@ func (u *userNotifier) reduceInviteCodeAdded(event eventstore.Event) (*handler.S if applicationName == "" { applicationName = "ZITADEL" } - return u.commands.RequestNotification(ctx, - e.Aggregate().ResourceOwner, - command.NewNotificationRequest( - e.Aggregate().ID, - e.Aggregate().ResourceOwner, - origin, - e.EventType, - domain.NotificationTypeEmail, - domain.InviteUserMessageType, - ). - WithURLTemplate(u.inviteCodeTemplate(origin, e)). - WithCode(e.Code, e.Expiry). - WithUnverifiedChannel(). - WithArgs(&domain.NotificationArguments{ + return u.queue.Insert(ctx, + ¬ification.Request{ + Aggregate: e.Aggregate(), + UserID: e.Aggregate().ID, + UserResourceOwner: e.Aggregate().ResourceOwner, + TriggeredAtOrigin: origin, + EventType: e.EventType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.InviteUserMessageType, + CodeExpiry: e.Expiry, + Code: e.Code, + UnverifiedNotificationChannel: true, + URLTemplate: u.inviteCodeTemplate(origin, e), + Args: &domain.NotificationArguments{ AuthRequestID: e.AuthRequestID, ApplicationName: applicationName, - }), + }, + }, + queue.WithQueueName(notification.QueueName), + queue.WithMaxAttempts(u.maxAttempts), ) }), nil } diff --git a/internal/notification/handlers/user_notifier_legacy.go b/internal/notification/handlers/user_notifier_legacy.go index 64fc2f014a..1921510bf3 100644 --- a/internal/notification/handlers/user_notifier_legacy.go +++ b/internal/notification/handlers/user_notifier_legacy.go @@ -171,7 +171,7 @@ func (u *userNotifierLegacy) reduceInitCodeAdded(event eventstore.Event) (*handl if err != nil { return err } - err = types.SendEmail(ctx, u.channels, string(template.Template), translator, notifyUser, colors, e). + err = types.SendEmail(ctx, u.channels, string(template.Template), translator, notifyUser, colors, e.Type()). SendUserInitCode(ctx, notifyUser, code, e.AuthRequestID) if err != nil { if errors.Is(err, &channels.CancelError{}) { @@ -232,7 +232,7 @@ func (u *userNotifierLegacy) reduceEmailCodeAdded(event eventstore.Event) (*hand if err != nil { return err } - err = types.SendEmail(ctx, u.channels, string(template.Template), translator, notifyUser, colors, e). + err = types.SendEmail(ctx, u.channels, string(template.Template), translator, notifyUser, colors, event.Type()). SendEmailVerificationCode(ctx, notifyUser, code, e.URLTemplate, e.AuthRequestID) if err != nil { if errors.Is(err, &channels.CancelError{}) { @@ -296,9 +296,9 @@ func (u *userNotifierLegacy) reducePasswordCodeAdded(event eventstore.Event) (*h return err } generatorInfo := new(senders.CodeGeneratorInfo) - notify := types.SendEmail(ctx, u.channels, string(template.Template), translator, notifyUser, colors, e) + notify := types.SendEmail(ctx, u.channels, string(template.Template), translator, notifyUser, colors, event.Type()) if e.NotificationType == domain.NotificationTypeSms { - notify = types.SendSMS(ctx, u.channels, translator, notifyUser, colors, e, generatorInfo) + notify = types.SendSMS(ctx, u.channels, translator, notifyUser, colors, e.Type(), e.Aggregate().InstanceID, e.ID, generatorInfo) } err = notify.SendPasswordCode(ctx, notifyUser, code, e.URLTemplate, e.AuthRequestID) if err != nil { @@ -396,7 +396,7 @@ func (u *userNotifierLegacy) reduceOTPSMS( return nil, err } generatorInfo := new(senders.CodeGeneratorInfo) - notify := types.SendSMS(ctx, u.channels, translator, notifyUser, colors, event, generatorInfo) + notify := types.SendSMS(ctx, u.channels, translator, notifyUser, colors, event.Type(), event.Aggregate().InstanceID, event.Aggregate().ID, generatorInfo) err = notify.SendOTPSMSCode(ctx, plainCode, expiry) if err != nil { if errors.Is(err, &channels.CancelError{}) { @@ -522,7 +522,7 @@ func (u *userNotifierLegacy) reduceOTPEmail( if err != nil { return nil, err } - notify := types.SendEmail(ctx, u.channels, string(template.Template), translator, notifyUser, colors, event) + notify := types.SendEmail(ctx, u.channels, string(template.Template), translator, notifyUser, colors, event.Type()) err = notify.SendOTPEmailCode(ctx, url, plainCode, expiry) if err != nil { if errors.Is(err, &channels.CancelError{}) { @@ -576,7 +576,7 @@ func (u *userNotifierLegacy) reduceDomainClaimed(event eventstore.Event) (*handl if err != nil { return err } - err = types.SendEmail(ctx, u.channels, string(template.Template), translator, notifyUser, colors, e). + err = types.SendEmail(ctx, u.channels, string(template.Template), translator, notifyUser, colors, event.Type()). SendDomainClaimed(ctx, notifyUser, e.UserName) if err != nil { if errors.Is(err, &channels.CancelError{}) { @@ -634,7 +634,7 @@ func (u *userNotifierLegacy) reducePasswordlessCodeRequested(event eventstore.Ev if err != nil { return err } - err = types.SendEmail(ctx, u.channels, string(template.Template), translator, notifyUser, colors, e). + err = types.SendEmail(ctx, u.channels, string(template.Template), translator, notifyUser, colors, event.Type()). SendPasswordlessRegistrationLink(ctx, notifyUser, code, e.ID, e.URLTemplate) if err != nil { if errors.Is(err, &channels.CancelError{}) { @@ -697,7 +697,7 @@ func (u *userNotifierLegacy) reducePasswordChanged(event eventstore.Event) (*han if err != nil { return err } - err = types.SendEmail(ctx, u.channels, string(template.Template), translator, notifyUser, colors, e). + err = types.SendEmail(ctx, u.channels, string(template.Template), translator, notifyUser, colors, event.Type()). SendPasswordChange(ctx, notifyUser) if err != nil { if errors.Is(err, &channels.CancelError{}) { @@ -756,7 +756,7 @@ func (u *userNotifierLegacy) reducePhoneCodeAdded(event eventstore.Event) (*hand return err } generatorInfo := new(senders.CodeGeneratorInfo) - if err = types.SendSMS(ctx, u.channels, translator, notifyUser, colors, e, generatorInfo). + if err = types.SendSMS(ctx, u.channels, translator, notifyUser, colors, e.Type(), e.Aggregate().InstanceID, e.ID, generatorInfo). SendPhoneVerificationCode(ctx, code); err != nil { if errors.Is(err, &channels.CancelError{}) { // if the notification was canceled, we don't want to return the error, so there is no retry @@ -814,7 +814,7 @@ func (u *userNotifierLegacy) reduceInviteCodeAdded(event eventstore.Event) (*han if err != nil { return err } - notify := types.SendEmail(ctx, u.channels, string(template.Template), translator, notifyUser, colors, e) + notify := types.SendEmail(ctx, u.channels, string(template.Template), translator, notifyUser, colors, event.Type()) err = notify.SendInviteCode(ctx, notifyUser, code, e.ApplicationName, e.URLTemplate, e.AuthRequestID) if err != nil { if errors.Is(err, &channels.CancelError{}) { diff --git a/internal/notification/handlers/user_notifier_legacy_test.go b/internal/notification/handlers/user_notifier_legacy_test.go index a0459938d8..a4c24fd196 100644 --- a/internal/notification/handlers/user_notifier_legacy_test.go +++ b/internal/notification/handlers/user_notifier_legacy_test.go @@ -611,328 +611,331 @@ func Test_userNotifierLegacy_reducePasswordCodeAdded(t *testing.T) { tests := []struct { name string test func(*gomock.Controller, *mock.MockQueries, *mock.MockCommands) (fields, args, wantLegacy) - }{{ - name: "asset url with event trigger url", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w wantLegacy) { - givenTemplate := "{{.LogoURL}}" - expectContent := fmt.Sprintf("%s%s/%s/%s", eventOrigin, assetsPath, policyID, logoURL) - w.message = &wantLegacyEmail{ - email: &messages.Email{ - Recipients: []string{lastEmail}, - Subject: expectMailSubject, - Content: expectContent, - }, - } - codeAlg, code := cryptoValue(t, ctrl, "testcode") - expectTemplateWithNotifyUserQueries(queries, givenTemplate) - commands.EXPECT().PasswordCodeSent(gomock.Any(), orgID, userID, &senders.CodeGeneratorInfo{}).Return(nil) - return fields{ - queries: queries, - commands: commands, - es: eventstore.NewEventstore(&eventstore.Config{ - Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, - }), - userDataCrypto: codeAlg, - }, args{ - event: &user.HumanPasswordCodeAddedEvent{ - BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ - AggregateID: userID, - ResourceOwner: sql.NullString{String: orgID}, - CreationDate: time.Now().UTC(), - }), - Code: code, - Expiry: time.Hour, - URLTemplate: "", - CodeReturned: false, - TriggeredAtOrigin: eventOrigin, + }{ + { + name: "asset url with event trigger url", + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w wantLegacy) { + givenTemplate := "{{.LogoURL}}" + expectContent := fmt.Sprintf("%s%s/%s/%s", eventOrigin, assetsPath, policyID, logoURL) + w.message = &wantLegacyEmail{ + email: &messages.Email{ + Recipients: []string{lastEmail}, + Subject: expectMailSubject, + Content: expectContent, }, - }, w - }, - }, { - name: "asset url without event trigger url", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w wantLegacy) { - givenTemplate := "{{.LogoURL}}" - expectContent := fmt.Sprintf("%s://%s:%d%s/%s/%s", externalProtocol, instancePrimaryDomain, externalPort, assetsPath, policyID, logoURL) - w.message = &wantLegacyEmail{ - email: &messages.Email{ - Recipients: []string{lastEmail}, - Subject: expectMailSubject, - Content: expectContent, - }, - } - codeAlg, code := cryptoValue(t, ctrl, "testcode") - queries.EXPECT().SearchInstanceDomains(gomock.Any(), gomock.Any()).Return(&query.InstanceDomains{ - Domains: []*query.InstanceDomain{{ - Domain: instancePrimaryDomain, - IsPrimary: true, - }}, - }, nil) - expectTemplateWithNotifyUserQueries(queries, givenTemplate) - commands.EXPECT().PasswordCodeSent(gomock.Any(), orgID, userID, &senders.CodeGeneratorInfo{}).Return(nil) - return fields{ - queries: queries, - commands: commands, - es: eventstore.NewEventstore(&eventstore.Config{ - Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, - }), - userDataCrypto: codeAlg, - }, args{ - event: &user.HumanPasswordCodeAddedEvent{ - BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ - AggregateID: userID, - ResourceOwner: sql.NullString{String: orgID}, - CreationDate: time.Now().UTC(), + } + codeAlg, code := cryptoValue(t, ctrl, "testcode") + expectTemplateWithNotifyUserQueries(queries, givenTemplate) + commands.EXPECT().PasswordCodeSent(gomock.Any(), orgID, userID, &senders.CodeGeneratorInfo{}).Return(nil) + return fields{ + queries: queries, + commands: commands, + es: eventstore.NewEventstore(&eventstore.Config{ + Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), - Code: code, - Expiry: time.Hour, - URLTemplate: "", - CodeReturned: false, + userDataCrypto: codeAlg, + }, args{ + event: &user.HumanPasswordCodeAddedEvent{ + BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ + AggregateID: userID, + ResourceOwner: sql.NullString{String: orgID}, + CreationDate: time.Now().UTC(), + }), + Code: code, + Expiry: time.Hour, + URLTemplate: "", + CodeReturned: false, + TriggeredAtOrigin: eventOrigin, + }, + }, w + }, + }, { + name: "asset url without event trigger url", + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w wantLegacy) { + givenTemplate := "{{.LogoURL}}" + expectContent := fmt.Sprintf("%s://%s:%d%s/%s/%s", externalProtocol, instancePrimaryDomain, externalPort, assetsPath, policyID, logoURL) + w.message = &wantLegacyEmail{ + email: &messages.Email{ + Recipients: []string{lastEmail}, + Subject: expectMailSubject, + Content: expectContent, }, - }, w - }, - }, { - name: "button url with event trigger url", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w wantLegacy) { - givenTemplate := "{{.URL}}" - testCode := "testcode" - expectContent := fmt.Sprintf("%s/ui/login/password/init?authRequestID=%s&code=%s&orgID=%s&userID=%s", eventOrigin, "", testCode, orgID, userID) - w.message = &wantLegacyEmail{ - email: &messages.Email{ - Recipients: []string{lastEmail}, - Subject: expectMailSubject, - Content: expectContent, - }, - } - codeAlg, code := cryptoValue(t, ctrl, testCode) - expectTemplateWithNotifyUserQueries(queries, givenTemplate) - commands.EXPECT().PasswordCodeSent(gomock.Any(), orgID, userID, &senders.CodeGeneratorInfo{}).Return(nil) - return fields{ - queries: queries, - commands: commands, - es: eventstore.NewEventstore(&eventstore.Config{ - Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, - }), - userDataCrypto: codeAlg, - SMSTokenCrypto: nil, - }, args{ - event: &user.HumanPasswordCodeAddedEvent{ - BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ - AggregateID: userID, - ResourceOwner: sql.NullString{String: orgID}, - CreationDate: time.Now().UTC(), + } + codeAlg, code := cryptoValue(t, ctrl, "testcode") + queries.EXPECT().SearchInstanceDomains(gomock.Any(), gomock.Any()).Return(&query.InstanceDomains{ + Domains: []*query.InstanceDomain{{ + Domain: instancePrimaryDomain, + IsPrimary: true, + }}, + }, nil) + expectTemplateWithNotifyUserQueries(queries, givenTemplate) + commands.EXPECT().PasswordCodeSent(gomock.Any(), orgID, userID, &senders.CodeGeneratorInfo{}).Return(nil) + return fields{ + queries: queries, + commands: commands, + es: eventstore.NewEventstore(&eventstore.Config{ + Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), - Code: code, - Expiry: time.Hour, - URLTemplate: "", - CodeReturned: false, - TriggeredAtOrigin: eventOrigin, + userDataCrypto: codeAlg, + }, args{ + event: &user.HumanPasswordCodeAddedEvent{ + BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ + AggregateID: userID, + ResourceOwner: sql.NullString{String: orgID}, + CreationDate: time.Now().UTC(), + }), + Code: code, + Expiry: time.Hour, + URLTemplate: "", + CodeReturned: false, + }, + }, w + }, + }, { + name: "button url with event trigger url", + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w wantLegacy) { + givenTemplate := "{{.URL}}" + testCode := "testcode" + expectContent := fmt.Sprintf("%s/ui/login/password/init?authRequestID=%s&code=%s&orgID=%s&userID=%s", eventOrigin, "", testCode, orgID, userID) + w.message = &wantLegacyEmail{ + email: &messages.Email{ + Recipients: []string{lastEmail}, + Subject: expectMailSubject, + Content: expectContent, }, - }, w - }, - }, { - name: "button url without event trigger url", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w wantLegacy) { - givenTemplate := "{{.URL}}" - testCode := "testcode" - expectContent := fmt.Sprintf("%s://%s:%d/ui/login/password/init?authRequestID=%s&code=%s&orgID=%s&userID=%s", externalProtocol, instancePrimaryDomain, externalPort, "", testCode, orgID, userID) - w.message = &wantLegacyEmail{ - email: &messages.Email{ - Recipients: []string{lastEmail}, - Subject: expectMailSubject, - Content: expectContent, - }, - } - codeAlg, code := cryptoValue(t, ctrl, testCode) - queries.EXPECT().SearchInstanceDomains(gomock.Any(), gomock.Any()).Return(&query.InstanceDomains{ - Domains: []*query.InstanceDomain{{ - Domain: instancePrimaryDomain, - IsPrimary: true, - }}, - }, nil) - expectTemplateWithNotifyUserQueries(queries, givenTemplate) - commands.EXPECT().PasswordCodeSent(gomock.Any(), orgID, userID, &senders.CodeGeneratorInfo{}).Return(nil) - return fields{ - queries: queries, - commands: commands, - es: eventstore.NewEventstore(&eventstore.Config{ - Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, - }), - userDataCrypto: codeAlg, - }, args{ - event: &user.HumanPasswordCodeAddedEvent{ - BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ - AggregateID: userID, - ResourceOwner: sql.NullString{String: orgID}, - CreationDate: time.Now().UTC(), + } + codeAlg, code := cryptoValue(t, ctrl, testCode) + expectTemplateWithNotifyUserQueries(queries, givenTemplate) + commands.EXPECT().PasswordCodeSent(gomock.Any(), orgID, userID, &senders.CodeGeneratorInfo{}).Return(nil) + return fields{ + queries: queries, + commands: commands, + es: eventstore.NewEventstore(&eventstore.Config{ + Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), - Code: code, - Expiry: time.Hour, - URLTemplate: "", - CodeReturned: false, + userDataCrypto: codeAlg, + SMSTokenCrypto: nil, + }, args{ + event: &user.HumanPasswordCodeAddedEvent{ + BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ + AggregateID: userID, + ResourceOwner: sql.NullString{String: orgID}, + CreationDate: time.Now().UTC(), + }), + Code: code, + Expiry: time.Hour, + URLTemplate: "", + CodeReturned: false, + TriggeredAtOrigin: eventOrigin, + }, + }, w + }, + }, { + name: "button url without event trigger url", + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w wantLegacy) { + givenTemplate := "{{.URL}}" + testCode := "testcode" + expectContent := fmt.Sprintf("%s://%s:%d/ui/login/password/init?authRequestID=%s&code=%s&orgID=%s&userID=%s", externalProtocol, instancePrimaryDomain, externalPort, "", testCode, orgID, userID) + w.message = &wantLegacyEmail{ + email: &messages.Email{ + Recipients: []string{lastEmail}, + Subject: expectMailSubject, + Content: expectContent, }, - }, w - }, - }, { - name: "button url without event trigger url with authRequestID", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w wantLegacy) { - givenTemplate := "{{.URL}}" - testCode := "testcode" - expectContent := fmt.Sprintf("%s://%s:%d/ui/login/password/init?authRequestID=%s&code=%s&orgID=%s&userID=%s", externalProtocol, instancePrimaryDomain, externalPort, authRequestID, testCode, orgID, userID) - w.message = &wantLegacyEmail{ - email: &messages.Email{ - Recipients: []string{lastEmail}, - Subject: expectMailSubject, - Content: expectContent, - }, - } - codeAlg, code := cryptoValue(t, ctrl, testCode) - queries.EXPECT().SearchInstanceDomains(gomock.Any(), gomock.Any()).Return(&query.InstanceDomains{ - Domains: []*query.InstanceDomain{{ - Domain: instancePrimaryDomain, - IsPrimary: true, - }}, - }, nil) - expectTemplateWithNotifyUserQueries(queries, givenTemplate) - commands.EXPECT().PasswordCodeSent(gomock.Any(), orgID, userID, &senders.CodeGeneratorInfo{}).Return(nil) - return fields{ - queries: queries, - commands: commands, - es: eventstore.NewEventstore(&eventstore.Config{ - Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, - }), - userDataCrypto: codeAlg, - }, args{ - event: &user.HumanPasswordCodeAddedEvent{ - BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ - AggregateID: userID, - ResourceOwner: sql.NullString{String: orgID}, - CreationDate: time.Now().UTC(), + } + codeAlg, code := cryptoValue(t, ctrl, testCode) + queries.EXPECT().SearchInstanceDomains(gomock.Any(), gomock.Any()).Return(&query.InstanceDomains{ + Domains: []*query.InstanceDomain{{ + Domain: instancePrimaryDomain, + IsPrimary: true, + }}, + }, nil) + expectTemplateWithNotifyUserQueries(queries, givenTemplate) + commands.EXPECT().PasswordCodeSent(gomock.Any(), orgID, userID, &senders.CodeGeneratorInfo{}).Return(nil) + return fields{ + queries: queries, + commands: commands, + es: eventstore.NewEventstore(&eventstore.Config{ + Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), - Code: code, - Expiry: time.Hour, - URLTemplate: "", - CodeReturned: false, - AuthRequestID: authRequestID, + userDataCrypto: codeAlg, + }, args{ + event: &user.HumanPasswordCodeAddedEvent{ + BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ + AggregateID: userID, + ResourceOwner: sql.NullString{String: orgID}, + CreationDate: time.Now().UTC(), + }), + Code: code, + Expiry: time.Hour, + URLTemplate: "", + CodeReturned: false, + }, + }, w + }, + }, { + name: "button url without event trigger url with authRequestID", + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w wantLegacy) { + givenTemplate := "{{.URL}}" + testCode := "testcode" + expectContent := fmt.Sprintf("%s://%s:%d/ui/login/password/init?authRequestID=%s&code=%s&orgID=%s&userID=%s", externalProtocol, instancePrimaryDomain, externalPort, authRequestID, testCode, orgID, userID) + w.message = &wantLegacyEmail{ + email: &messages.Email{ + Recipients: []string{lastEmail}, + Subject: expectMailSubject, + Content: expectContent, }, - }, w - }, - }, { - name: "button url with url template and event trigger url", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w wantLegacy) { - givenTemplate := "{{.URL}}" - urlTemplate := "https://my.custom.url/org/{{.OrgID}}/user/{{.UserID}}/verify/{{.Code}}" - testCode := "testcode" - expectContent := fmt.Sprintf("https://my.custom.url/org/%s/user/%s/verify/%s", orgID, userID, testCode) - w.message = &wantLegacyEmail{ - email: &messages.Email{ - Recipients: []string{lastEmail}, - Subject: expectMailSubject, - Content: expectContent, - }, - } - codeAlg, code := cryptoValue(t, ctrl, testCode) - expectTemplateWithNotifyUserQueries(queries, givenTemplate) - commands.EXPECT().PasswordCodeSent(gomock.Any(), orgID, userID, &senders.CodeGeneratorInfo{}).Return(nil) - return fields{ - queries: queries, - commands: commands, - es: eventstore.NewEventstore(&eventstore.Config{ - Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, - }), - userDataCrypto: codeAlg, - SMSTokenCrypto: nil, - }, args{ - event: &user.HumanPasswordCodeAddedEvent{ - BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ - AggregateID: userID, - ResourceOwner: sql.NullString{String: orgID}, - CreationDate: time.Now().UTC(), + } + codeAlg, code := cryptoValue(t, ctrl, testCode) + queries.EXPECT().SearchInstanceDomains(gomock.Any(), gomock.Any()).Return(&query.InstanceDomains{ + Domains: []*query.InstanceDomain{{ + Domain: instancePrimaryDomain, + IsPrimary: true, + }}, + }, nil) + expectTemplateWithNotifyUserQueries(queries, givenTemplate) + commands.EXPECT().PasswordCodeSent(gomock.Any(), orgID, userID, &senders.CodeGeneratorInfo{}).Return(nil) + return fields{ + queries: queries, + commands: commands, + es: eventstore.NewEventstore(&eventstore.Config{ + Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), - Code: code, - Expiry: time.Hour, - URLTemplate: urlTemplate, - CodeReturned: false, - TriggeredAtOrigin: eventOrigin, + userDataCrypto: codeAlg, + }, args{ + event: &user.HumanPasswordCodeAddedEvent{ + BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ + AggregateID: userID, + ResourceOwner: sql.NullString{String: orgID}, + CreationDate: time.Now().UTC(), + }), + Code: code, + Expiry: time.Hour, + URLTemplate: "", + CodeReturned: false, + AuthRequestID: authRequestID, + }, + }, w + }, + }, { + name: "button url with url template and event trigger url", + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w wantLegacy) { + givenTemplate := "{{.URL}}" + urlTemplate := "https://my.custom.url/org/{{.OrgID}}/user/{{.UserID}}/verify/{{.Code}}" + testCode := "testcode" + expectContent := fmt.Sprintf("https://my.custom.url/org/%s/user/%s/verify/%s", orgID, userID, testCode) + w.message = &wantLegacyEmail{ + email: &messages.Email{ + Recipients: []string{lastEmail}, + Subject: expectMailSubject, + Content: expectContent, }, - }, w - }, - }, { - name: "external code", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w wantLegacy) { - givenTemplate := "{{.URL}}" - expectContent := "We received a password reset request. Please use the button below to reset your password. (Code ) If you didn't ask for this mail, please ignore it." - w.messageSMS = &wantLegacySMS{ - sms: &messages.SMS{ - SenderPhoneNumber: "senderNumber", - RecipientPhoneNumber: lastPhone, - Content: expectContent, - }, - } - expectTemplateWithNotifyUserQueries(queries, givenTemplate) - commands.EXPECT().PasswordCodeSent(gomock.Any(), orgID, userID, &senders.CodeGeneratorInfo{ID: smsProviderID, VerificationID: verificationID}).Return(nil) - return fields{ - queries: queries, - commands: commands, - es: eventstore.NewEventstore(&eventstore.Config{ - Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, - }), - SMSTokenCrypto: nil, - }, args{ - event: &user.HumanPasswordCodeAddedEvent{ - BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ - AggregateID: userID, - ResourceOwner: sql.NullString{String: orgID}, - CreationDate: time.Now().UTC(), + } + codeAlg, code := cryptoValue(t, ctrl, testCode) + expectTemplateWithNotifyUserQueries(queries, givenTemplate) + commands.EXPECT().PasswordCodeSent(gomock.Any(), orgID, userID, &senders.CodeGeneratorInfo{}).Return(nil) + return fields{ + queries: queries, + commands: commands, + es: eventstore.NewEventstore(&eventstore.Config{ + Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), - Code: nil, - Expiry: 0, - URLTemplate: "", - CodeReturned: false, - NotificationType: domain.NotificationTypeSms, - GeneratorID: smsProviderID, - TriggeredAtOrigin: eventOrigin, + userDataCrypto: codeAlg, + SMSTokenCrypto: nil, + }, args{ + event: &user.HumanPasswordCodeAddedEvent{ + BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ + AggregateID: userID, + ResourceOwner: sql.NullString{String: orgID}, + CreationDate: time.Now().UTC(), + }), + Code: code, + Expiry: time.Hour, + URLTemplate: urlTemplate, + CodeReturned: false, + TriggeredAtOrigin: eventOrigin, + }, + }, w + }, + }, { + name: "external code", + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w wantLegacy) { + givenTemplate := "{{.URL}}" + expectContent := "We received a password reset request. Please use the button below to reset your password. (Code ) If you didn't ask for this mail, please ignore it." + w.messageSMS = &wantLegacySMS{ + sms: &messages.SMS{ + SenderPhoneNumber: "senderNumber", + RecipientPhoneNumber: lastPhone, + Content: expectContent, + UserID: userID, }, - }, w - }, - }, { - name: "cancel error, no reduce error expected", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w wantLegacy) { - givenTemplate := "{{.URL}}" - expectContent := "We received a password reset request. Please use the button below to reset your password. (Code ) If you didn't ask for this mail, please ignore it." - w.messageSMS = &wantLegacySMS{ - sms: &messages.SMS{ - SenderPhoneNumber: "senderNumber", - RecipientPhoneNumber: lastPhone, - Content: expectContent, - }, - err: channels.NewCancelError(nil), - } - expectTemplateWithNotifyUserQueries(queries, givenTemplate) - return fields{ - queries: queries, - commands: commands, - es: eventstore.NewEventstore(&eventstore.Config{ - Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, - }), - SMSTokenCrypto: nil, - }, args{ - event: &user.HumanPasswordCodeAddedEvent{ - BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ - AggregateID: userID, - ResourceOwner: sql.NullString{String: orgID}, - CreationDate: time.Now().UTC(), + } + expectTemplateWithNotifyUserQueries(queries, givenTemplate) + commands.EXPECT().PasswordCodeSent(gomock.Any(), orgID, userID, &senders.CodeGeneratorInfo{ID: smsProviderID, VerificationID: verificationID}).Return(nil) + return fields{ + queries: queries, + commands: commands, + es: eventstore.NewEventstore(&eventstore.Config{ + Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), - Code: nil, - Expiry: 0, - URLTemplate: "", - CodeReturned: false, - NotificationType: domain.NotificationTypeSms, - GeneratorID: smsProviderID, - TriggeredAtOrigin: eventOrigin, + SMSTokenCrypto: nil, + }, args{ + event: &user.HumanPasswordCodeAddedEvent{ + BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ + AggregateID: userID, + ResourceOwner: sql.NullString{String: orgID}, + CreationDate: time.Now().UTC(), + }), + Code: nil, + Expiry: 0, + URLTemplate: "", + CodeReturned: false, + NotificationType: domain.NotificationTypeSms, + GeneratorID: smsProviderID, + TriggeredAtOrigin: eventOrigin, + }, + }, w + }, + }, { + name: "cancel error, no reduce error expected", + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w wantLegacy) { + givenTemplate := "{{.URL}}" + expectContent := "We received a password reset request. Please use the button below to reset your password. (Code ) If you didn't ask for this mail, please ignore it." + w.messageSMS = &wantLegacySMS{ + sms: &messages.SMS{ + SenderPhoneNumber: "senderNumber", + RecipientPhoneNumber: lastPhone, + Content: expectContent, + UserID: userID, }, - }, w + err: channels.NewCancelError(nil), + } + expectTemplateWithNotifyUserQueries(queries, givenTemplate) + return fields{ + queries: queries, + commands: commands, + es: eventstore.NewEventstore(&eventstore.Config{ + Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, + }), + SMSTokenCrypto: nil, + }, args{ + event: &user.HumanPasswordCodeAddedEvent{ + BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ + AggregateID: userID, + ResourceOwner: sql.NullString{String: orgID}, + CreationDate: time.Now().UTC(), + }), + Code: nil, + Expiry: 0, + URLTemplate: "", + CodeReturned: false, + NotificationType: domain.NotificationTypeSms, + GeneratorID: smsProviderID, + TriggeredAtOrigin: eventOrigin, + }, + }, w + }, }, - }, } for _, tt := range tests { t.Run(tt.name, func(t *testing.T) { @@ -1774,131 +1777,138 @@ func Test_userNotifierLegacy_reduceOTPSMSChallenged(t *testing.T) { tests := []struct { name string test func(*gomock.Controller, *mock.MockQueries, *mock.MockCommands) (fields, args, wantLegacy) - }{{ - name: "asset url with event trigger url", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w wantLegacy) { - testCode := "" - expiry := 0 * time.Hour - expectContent := fmt.Sprintf(`%[1]s is your one-time password for %[2]s. Use it within the next %[3]s. + }{ + { + name: "asset url with event trigger url", + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w wantLegacy) { + testCode := "" + expiry := 0 * time.Hour + expectContent := fmt.Sprintf(`%[1]s is your one-time password for %[2]s. Use it within the next %[3]s. @%[2]s #%[1]s`, testCode, eventOriginDomain, expiry) - w.messageSMS = &wantLegacySMS{ - sms: &messages.SMS{ - SenderPhoneNumber: "senderNumber", - RecipientPhoneNumber: verifiedPhone, - Content: expectContent, - }, - } - expectTemplateWithNotifyUserQueriesSMS(queries) - queries.EXPECT().SessionByID(gomock.Any(), gomock.Any(), userID, gomock.Any(), nil).Return(&query.Session{}, nil) - commands.EXPECT().OTPSMSSent(gomock.Any(), userID, orgID, &senders.CodeGeneratorInfo{ID: smsProviderID, VerificationID: verificationID}).Return(nil) - return fields{ - queries: queries, - commands: commands, - es: eventstore.NewEventstore(&eventstore.Config{ - Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, - }), - }, args{ - event: &session.OTPSMSChallengedEvent{ - BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ - AggregateID: userID, - ResourceOwner: sql.NullString{String: orgID}, - CreationDate: time.Now().UTC(), - }), - Code: nil, - Expiry: expiry, - CodeReturned: false, - GeneratorID: smsProviderID, - TriggeredAtOrigin: eventOrigin, + w.messageSMS = &wantLegacySMS{ + sms: &messages.SMS{ + SenderPhoneNumber: "senderNumber", + RecipientPhoneNumber: verifiedPhone, + Content: expectContent, + JobID: userID, + UserID: userID, }, - }, w - }, - }, { - name: "asset url without event trigger url", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w wantLegacy) { - testCode := "" - expiry := 0 * time.Hour - expectContent := fmt.Sprintf(`%[1]s is your one-time password for %[2]s. Use it within the next %[3]s. + } + expectTemplateWithNotifyUserQueriesSMS(queries) + queries.EXPECT().SessionByID(gomock.Any(), gomock.Any(), userID, gomock.Any(), nil).Return(&query.Session{}, nil) + commands.EXPECT().OTPSMSSent(gomock.Any(), userID, orgID, &senders.CodeGeneratorInfo{ID: smsProviderID, VerificationID: verificationID}).Return(nil) + return fields{ + queries: queries, + commands: commands, + es: eventstore.NewEventstore(&eventstore.Config{ + Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, + }), + }, args{ + event: &session.OTPSMSChallengedEvent{ + BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ + AggregateID: userID, + ResourceOwner: sql.NullString{String: orgID}, + CreationDate: time.Now().UTC(), + }), + Code: nil, + Expiry: expiry, + CodeReturned: false, + GeneratorID: smsProviderID, + TriggeredAtOrigin: eventOrigin, + }, + }, w + }, + }, { + name: "asset url without event trigger url", + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w wantLegacy) { + testCode := "" + expiry := 0 * time.Hour + expectContent := fmt.Sprintf(`%[1]s is your one-time password for %[2]s. Use it within the next %[3]s. @%[2]s #%[1]s`, testCode, instancePrimaryDomain, expiry) - w.messageSMS = &wantLegacySMS{ - sms: &messages.SMS{ - SenderPhoneNumber: "senderNumber", - RecipientPhoneNumber: verifiedPhone, - Content: expectContent, - }, - } - expectTemplateWithNotifyUserQueriesSMS(queries) - queries.EXPECT().SessionByID(gomock.Any(), gomock.Any(), userID, gomock.Any(), nil).Return(&query.Session{}, nil) - queries.EXPECT().SearchInstanceDomains(gomock.Any(), gomock.Any()).Return(&query.InstanceDomains{ - Domains: []*query.InstanceDomain{{ - Domain: instancePrimaryDomain, - IsPrimary: true, - }}, - }, nil) - commands.EXPECT().OTPSMSSent(gomock.Any(), userID, orgID, &senders.CodeGeneratorInfo{ID: smsProviderID, VerificationID: verificationID}).Return(nil) - return fields{ - queries: queries, - commands: commands, - es: eventstore.NewEventstore(&eventstore.Config{ - Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, - }), - }, args{ - event: &session.OTPSMSChallengedEvent{ - BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ - AggregateID: userID, - ResourceOwner: sql.NullString{String: orgID}, - CreationDate: time.Now().UTC(), - }), - Code: nil, - Expiry: expiry, - CodeReturned: false, - GeneratorID: smsProviderID, + w.messageSMS = &wantLegacySMS{ + sms: &messages.SMS{ + SenderPhoneNumber: "senderNumber", + RecipientPhoneNumber: verifiedPhone, + Content: expectContent, + JobID: userID, + UserID: userID, }, - }, w - }, - }, { - name: "cancel error, no reduce error expected", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w wantLegacy) { - testCode := "" - expiry := 0 * time.Hour - expectContent := fmt.Sprintf(`%[1]s is your one-time password for %[2]s. Use it within the next %[3]s. + } + expectTemplateWithNotifyUserQueriesSMS(queries) + queries.EXPECT().SessionByID(gomock.Any(), gomock.Any(), userID, gomock.Any(), nil).Return(&query.Session{}, nil) + queries.EXPECT().SearchInstanceDomains(gomock.Any(), gomock.Any()).Return(&query.InstanceDomains{ + Domains: []*query.InstanceDomain{{ + Domain: instancePrimaryDomain, + IsPrimary: true, + }}, + }, nil) + commands.EXPECT().OTPSMSSent(gomock.Any(), userID, orgID, &senders.CodeGeneratorInfo{ID: smsProviderID, VerificationID: verificationID}).Return(nil) + return fields{ + queries: queries, + commands: commands, + es: eventstore.NewEventstore(&eventstore.Config{ + Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, + }), + }, args{ + event: &session.OTPSMSChallengedEvent{ + BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ + AggregateID: userID, + ResourceOwner: sql.NullString{String: orgID}, + CreationDate: time.Now().UTC(), + }), + Code: nil, + Expiry: expiry, + CodeReturned: false, + GeneratorID: smsProviderID, + }, + }, w + }, + }, { + name: "cancel error, no reduce error expected", + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w wantLegacy) { + testCode := "" + expiry := 0 * time.Hour + expectContent := fmt.Sprintf(`%[1]s is your one-time password for %[2]s. Use it within the next %[3]s. @%[2]s #%[1]s`, testCode, instancePrimaryDomain, expiry) - w.messageSMS = &wantLegacySMS{ - sms: &messages.SMS{ - SenderPhoneNumber: "senderNumber", - RecipientPhoneNumber: verifiedPhone, - Content: expectContent, - }, - err: channels.NewCancelError(nil), - } - expectTemplateWithNotifyUserQueriesSMS(queries) - queries.EXPECT().SessionByID(gomock.Any(), gomock.Any(), userID, gomock.Any(), nil).Return(&query.Session{}, nil) - queries.EXPECT().SearchInstanceDomains(gomock.Any(), gomock.Any()).Return(&query.InstanceDomains{ - Domains: []*query.InstanceDomain{{ - Domain: instancePrimaryDomain, - IsPrimary: true, - }}, - }, nil) - return fields{ - queries: queries, - commands: commands, - es: eventstore.NewEventstore(&eventstore.Config{ - Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, - }), - }, args{ - event: &session.OTPSMSChallengedEvent{ - BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ - AggregateID: userID, - ResourceOwner: sql.NullString{String: orgID}, - CreationDate: time.Now().UTC(), - }), - Code: nil, - Expiry: expiry, - CodeReturned: false, - GeneratorID: smsProviderID, + w.messageSMS = &wantLegacySMS{ + sms: &messages.SMS{ + SenderPhoneNumber: "senderNumber", + RecipientPhoneNumber: verifiedPhone, + Content: expectContent, + JobID: userID, + UserID: userID, }, - }, w + err: channels.NewCancelError(nil), + } + expectTemplateWithNotifyUserQueriesSMS(queries) + queries.EXPECT().SessionByID(gomock.Any(), gomock.Any(), userID, gomock.Any(), nil).Return(&query.Session{}, nil) + queries.EXPECT().SearchInstanceDomains(gomock.Any(), gomock.Any()).Return(&query.InstanceDomains{ + Domains: []*query.InstanceDomain{{ + Domain: instancePrimaryDomain, + IsPrimary: true, + }}, + }, nil) + return fields{ + queries: queries, + commands: commands, + es: eventstore.NewEventstore(&eventstore.Config{ + Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, + }), + }, args{ + event: &session.OTPSMSChallengedEvent{ + BaseEvent: *eventstore.BaseEventFromRepo(&repository.Event{ + AggregateID: userID, + ResourceOwner: sql.NullString{String: orgID}, + CreationDate: time.Now().UTC(), + }), + Code: nil, + Expiry: expiry, + CodeReturned: false, + GeneratorID: smsProviderID, + }, + }, w + }, }, - }, } for _, tt := range tests { t.Run(tt.name, func(t *testing.T) { @@ -1938,11 +1948,11 @@ func newUserNotifierLegacy(t *testing.T, ctrl *gomock.Controller, queries *mock. channel := channel_mock.NewMockNotificationChannel(ctrl) if w.err == nil { if w.message != nil { - w.message.email.TriggeringEvent = a.event + w.message.email.TriggeringEventType = a.event.Type() channel.EXPECT().HandleMessage(w.message.email).Return(w.message.err) } if w.messageSMS != nil { - w.messageSMS.sms.TriggeringEvent = a.event + w.messageSMS.sms.TriggeringEventType = a.event.Type() channel.EXPECT().HandleMessage(w.messageSMS.sms).DoAndReturn(func(message *messages.SMS) error { message.VerificationID = gu.Ptr(verificationID) return w.messageSMS.err diff --git a/internal/notification/handlers/user_notifier_test.go b/internal/notification/handlers/user_notifier_test.go index b7b7ceb446..f7090f0146 100644 --- a/internal/notification/handlers/user_notifier_test.go +++ b/internal/notification/handlers/user_notifier_test.go @@ -7,11 +7,11 @@ import ( "testing" "time" + "github.com/riverqueue/river" "github.com/stretchr/testify/assert" "go.uber.org/mock/gomock" "golang.org/x/text/language" - "github.com/zitadel/zitadel/internal/command" "github.com/zitadel/zitadel/internal/crypto" "github.com/zitadel/zitadel/internal/domain" "github.com/zitadel/zitadel/internal/eventstore" @@ -26,6 +26,7 @@ import ( "github.com/zitadel/zitadel/internal/notification/senders" "github.com/zitadel/zitadel/internal/notification/types" "github.com/zitadel/zitadel/internal/query" + "github.com/zitadel/zitadel/internal/repository/notification" "github.com/zitadel/zitadel/internal/repository/session" "github.com/zitadel/zitadel/internal/repository/user" ) @@ -61,33 +62,41 @@ const ( func Test_userNotifier_reduceInitCodeAdded(t *testing.T) { tests := []struct { name string - test func(*gomock.Controller, *mock.MockQueries, *mock.MockCommands) (fields, args, want) + test func(*gomock.Controller, *mock.MockQueries, *mock.MockQueue) (fields, args, want) }{ { name: "with event trigger", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, q *mock.MockQueue) (f fields, a args, w want) { _, code := cryptoValue(t, ctrl, "testcode") - commands.EXPECT().RequestNotification(gomock.Any(), orgID, &command.NotificationRequest{ - UserID: userID, - UserResourceOwner: orgID, - TriggerOrigin: eventOrigin, - URLTemplate: fmt.Sprintf("%s/ui/login/user/init?userID=%s&loginname={{.LoginName}}&code={{.Code}}&orgID=%s&passwordset={{.PasswordSet}}&authRequestID=%s", - eventOrigin, userID, orgID, authRequestID), - Code: code, - CodeExpiry: time.Hour, - EventType: user.HumanInitialCodeAddedType, - NotificationType: domain.NotificationTypeEmail, - MessageType: domain.InitCodeMessageType, - UnverifiedNotificationChannel: true, - Args: &domain.NotificationArguments{AuthRequestID: authRequestID}, - AggregateID: "", - AggregateResourceOwner: "", - IsOTP: false, - RequiresPreviousDomain: false, - }).Return(nil) + q.EXPECT().Insert( + gomock.Any(), + ¬ification.Request{ + Aggregate: &eventstore.Aggregate{ + ID: userID, + InstanceID: instanceID, + ResourceOwner: orgID, + }, + UserID: userID, + UserResourceOwner: orgID, + TriggeredAtOrigin: eventOrigin, + URLTemplate: fmt.Sprintf("%s/ui/login/user/init?userID=%s&loginname={{.LoginName}}&code={{.Code}}&orgID=%s&passwordset={{.PasswordSet}}&authRequestID=%s", + eventOrigin, userID, orgID, authRequestID), + Code: code, + CodeExpiry: time.Hour, + EventType: user.HumanInitialCodeAddedType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.InitCodeMessageType, + UnverifiedNotificationChannel: true, + Args: &domain.NotificationArguments{AuthRequestID: authRequestID}, + IsOTP: false, + RequiresPreviousDomain: false, + }, + gomock.Any(), + gomock.Any(), + ).Return(nil) return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: q, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), @@ -110,7 +119,7 @@ func Test_userNotifier_reduceInitCodeAdded(t *testing.T) { }, { name: "without event trigger", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { _, code := cryptoValue(t, ctrl, "testcode") queries.EXPECT().SearchInstanceDomains(gomock.Any(), gomock.Any()).Return(&query.InstanceDomains{ Domains: []*query.InstanceDomain{{ @@ -118,27 +127,35 @@ func Test_userNotifier_reduceInitCodeAdded(t *testing.T) { IsPrimary: true, }}, }, nil) - commands.EXPECT().RequestNotification(gomock.Any(), orgID, &command.NotificationRequest{ - UserID: userID, - UserResourceOwner: orgID, - TriggerOrigin: fmt.Sprintf("%s://%s:%d", externalProtocol, instancePrimaryDomain, externalPort), - URLTemplate: fmt.Sprintf("%s://%s:%d/ui/login/user/init?userID=%s&loginname={{.LoginName}}&code={{.Code}}&orgID=%s&passwordset={{.PasswordSet}}&authRequestID=%s", - externalProtocol, instancePrimaryDomain, externalPort, userID, orgID, authRequestID), - Code: code, - CodeExpiry: time.Hour, - EventType: user.HumanInitialCodeAddedType, - NotificationType: domain.NotificationTypeEmail, - MessageType: domain.InitCodeMessageType, - UnverifiedNotificationChannel: true, - Args: &domain.NotificationArguments{AuthRequestID: authRequestID}, - AggregateID: "", - AggregateResourceOwner: "", - IsOTP: false, - RequiresPreviousDomain: false, - }).Return(nil) + queue.EXPECT().Insert( + gomock.Any(), + ¬ification.Request{ + Aggregate: &eventstore.Aggregate{ + ID: userID, + InstanceID: instanceID, + ResourceOwner: orgID, + }, + UserID: userID, + UserResourceOwner: orgID, + TriggeredAtOrigin: fmt.Sprintf("%s://%s:%d", externalProtocol, instancePrimaryDomain, externalPort), + URLTemplate: fmt.Sprintf("%s://%s:%d/ui/login/user/init?userID=%s&loginname={{.LoginName}}&code={{.Code}}&orgID=%s&passwordset={{.PasswordSet}}&authRequestID=%s", + externalProtocol, instancePrimaryDomain, externalPort, userID, orgID, authRequestID), + Code: code, + CodeExpiry: time.Hour, + EventType: user.HumanInitialCodeAddedType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.InitCodeMessageType, + UnverifiedNotificationChannel: true, + Args: &domain.NotificationArguments{AuthRequestID: authRequestID}, + IsOTP: false, + RequiresPreviousDomain: false, + }, + gomock.Any(), + gomock.Any(), + ).Return(nil) return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), @@ -163,9 +180,9 @@ func Test_userNotifier_reduceInitCodeAdded(t *testing.T) { t.Run(tt.name, func(t *testing.T) { ctrl := gomock.NewController(t) queries := mock.NewMockQueries(ctrl) - commands := mock.NewMockCommands(ctrl) - f, a, w := tt.test(ctrl, queries, commands) - stmt, err := newUserNotifier(t, ctrl, queries, f, a, w).reduceInitCodeAdded(a.event) + queue := mock.NewMockQueue(ctrl) + f, a, w := tt.test(ctrl, queries, queue) + stmt, err := newUserNotifier(t, ctrl, queries, f).reduceInitCodeAdded(a.event) if w.err != nil { w.err(t, err) } else { @@ -184,33 +201,41 @@ func Test_userNotifier_reduceInitCodeAdded(t *testing.T) { func Test_userNotifier_reduceEmailCodeAdded(t *testing.T) { tests := []struct { name string - test func(*gomock.Controller, *mock.MockQueries, *mock.MockCommands) (fields, args, want) + test func(*gomock.Controller, *mock.MockQueries, *mock.MockQueue) (fields, args, want) }{ { name: "with event trigger", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { _, code := cryptoValue(t, ctrl, "testcode") - commands.EXPECT().RequestNotification(gomock.Any(), orgID, &command.NotificationRequest{ - UserID: userID, - UserResourceOwner: orgID, - TriggerOrigin: eventOrigin, - URLTemplate: fmt.Sprintf("%s/ui/login/mail/verification?userID=%s&code={{.Code}}&orgID=%s&authRequestID=%s", - eventOrigin, userID, orgID, authRequestID), - Code: code, - CodeExpiry: time.Hour, - EventType: user.HumanEmailCodeAddedType, - NotificationType: domain.NotificationTypeEmail, - MessageType: domain.VerifyEmailMessageType, - UnverifiedNotificationChannel: true, - Args: &domain.NotificationArguments{AuthRequestID: authRequestID}, - AggregateID: "", - AggregateResourceOwner: "", - IsOTP: false, - RequiresPreviousDomain: false, - }).Return(nil) + queue.EXPECT().Insert( + gomock.Any(), + ¬ification.Request{ + Aggregate: &eventstore.Aggregate{ + ID: userID, + InstanceID: instanceID, + ResourceOwner: orgID, + }, + UserID: userID, + UserResourceOwner: orgID, + TriggeredAtOrigin: eventOrigin, + URLTemplate: fmt.Sprintf("%s/ui/login/mail/verification?userID=%s&code={{.Code}}&orgID=%s&authRequestID=%s", + eventOrigin, userID, orgID, authRequestID), + Code: code, + CodeExpiry: time.Hour, + EventType: user.HumanEmailCodeAddedType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.VerifyEmailMessageType, + UnverifiedNotificationChannel: true, + Args: &domain.NotificationArguments{AuthRequestID: authRequestID}, + IsOTP: false, + RequiresPreviousDomain: false, + }, + gomock.Any(), + gomock.Any(), + ).Return(nil) return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), @@ -235,7 +260,7 @@ func Test_userNotifier_reduceEmailCodeAdded(t *testing.T) { }, { name: "without event trigger", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { _, code := cryptoValue(t, ctrl, "testcode") queries.EXPECT().SearchInstanceDomains(gomock.Any(), gomock.Any()).Return(&query.InstanceDomains{ Domains: []*query.InstanceDomain{{ @@ -244,27 +269,35 @@ func Test_userNotifier_reduceEmailCodeAdded(t *testing.T) { }}, }, nil) - commands.EXPECT().RequestNotification(gomock.Any(), orgID, &command.NotificationRequest{ - UserID: userID, - UserResourceOwner: orgID, - TriggerOrigin: fmt.Sprintf("%s://%s:%d", externalProtocol, instancePrimaryDomain, externalPort), - URLTemplate: fmt.Sprintf("%s://%s:%d/ui/login/mail/verification?userID=%s&code={{.Code}}&orgID=%s&authRequestID=%s", - externalProtocol, instancePrimaryDomain, externalPort, userID, orgID, authRequestID), - Code: code, - CodeExpiry: time.Hour, - EventType: user.HumanEmailCodeAddedType, - NotificationType: domain.NotificationTypeEmail, - MessageType: domain.VerifyEmailMessageType, - UnverifiedNotificationChannel: true, - Args: &domain.NotificationArguments{AuthRequestID: authRequestID}, - AggregateID: "", - AggregateResourceOwner: "", - IsOTP: false, - RequiresPreviousDomain: false, - }).Return(nil) + queue.EXPECT().Insert( + gomock.Any(), + ¬ification.Request{ + Aggregate: &eventstore.Aggregate{ + ID: userID, + InstanceID: instanceID, + ResourceOwner: orgID, + }, + UserID: userID, + UserResourceOwner: orgID, + TriggeredAtOrigin: fmt.Sprintf("%s://%s:%d", externalProtocol, instancePrimaryDomain, externalPort), + URLTemplate: fmt.Sprintf("%s://%s:%d/ui/login/mail/verification?userID=%s&code={{.Code}}&orgID=%s&authRequestID=%s", + externalProtocol, instancePrimaryDomain, externalPort, userID, orgID, authRequestID), + Code: code, + CodeExpiry: time.Hour, + EventType: user.HumanEmailCodeAddedType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.VerifyEmailMessageType, + UnverifiedNotificationChannel: true, + Args: &domain.NotificationArguments{AuthRequestID: authRequestID}, + IsOTP: false, + RequiresPreviousDomain: false, + }, + gomock.Any(), + gomock.Any(), + ).Return(nil) return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), @@ -288,12 +321,12 @@ func Test_userNotifier_reduceEmailCodeAdded(t *testing.T) { }, { name: "return code", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { w.noOperation = true _, code := cryptoValue(t, ctrl, "testcode") return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).MockQuerier, }), @@ -321,9 +354,9 @@ func Test_userNotifier_reduceEmailCodeAdded(t *testing.T) { t.Run(tt.name, func(t *testing.T) { ctrl := gomock.NewController(t) queries := mock.NewMockQueries(ctrl) - commands := mock.NewMockCommands(ctrl) - f, a, w := tt.test(ctrl, queries, commands) - stmt, err := newUserNotifier(t, ctrl, queries, f, a, w).reduceEmailCodeAdded(a.event) + queue := mock.NewMockQueue(ctrl) + f, a, w := tt.test(ctrl, queries, queue) + stmt, err := newUserNotifier(t, ctrl, queries, f).reduceEmailCodeAdded(a.event) if w.err != nil { w.err(t, err) } else { @@ -346,33 +379,41 @@ func Test_userNotifier_reduceEmailCodeAdded(t *testing.T) { func Test_userNotifier_reducePasswordCodeAdded(t *testing.T) { tests := []struct { name string - test func(*gomock.Controller, *mock.MockQueries, *mock.MockCommands) (fields, args, want) + test func(*gomock.Controller, *mock.MockQueries, *mock.MockQueue) (fields, args, want) }{ { name: "with event trigger", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { _, code := cryptoValue(t, ctrl, "testcode") - commands.EXPECT().RequestNotification(gomock.Any(), orgID, &command.NotificationRequest{ - UserID: userID, - UserResourceOwner: orgID, - TriggerOrigin: eventOrigin, - URLTemplate: fmt.Sprintf("%s/ui/login/password/init?userID=%s&code={{.Code}}&orgID=%s&authRequestID=%s", - eventOrigin, userID, orgID, authRequestID), - Code: code, - CodeExpiry: time.Hour, - EventType: user.HumanPasswordCodeAddedType, - NotificationType: domain.NotificationTypeEmail, - MessageType: domain.PasswordResetMessageType, - UnverifiedNotificationChannel: true, - Args: &domain.NotificationArguments{AuthRequestID: authRequestID}, - AggregateID: "", - AggregateResourceOwner: "", - IsOTP: false, - RequiresPreviousDomain: false, - }).Return(nil) + queue.EXPECT().Insert( + gomock.Any(), + ¬ification.Request{ + Aggregate: &eventstore.Aggregate{ + ID: userID, + InstanceID: instanceID, + ResourceOwner: orgID, + }, + UserID: userID, + UserResourceOwner: orgID, + TriggeredAtOrigin: eventOrigin, + URLTemplate: fmt.Sprintf("%s/ui/login/password/init?userID=%s&code={{.Code}}&orgID=%s&authRequestID=%s", + eventOrigin, userID, orgID, authRequestID), + Code: code, + CodeExpiry: time.Hour, + EventType: user.HumanPasswordCodeAddedType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.PasswordResetMessageType, + UnverifiedNotificationChannel: true, + Args: &domain.NotificationArguments{AuthRequestID: authRequestID}, + IsOTP: false, + RequiresPreviousDomain: false, + }, + gomock.Any(), + gomock.Any(), + ).Return(nil) return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), @@ -397,7 +438,7 @@ func Test_userNotifier_reducePasswordCodeAdded(t *testing.T) { }, { name: "asset url without event trigger url", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { _, code := cryptoValue(t, ctrl, "testcode") queries.EXPECT().SearchInstanceDomains(gomock.Any(), gomock.Any()).Return(&query.InstanceDomains{ Domains: []*query.InstanceDomain{{ @@ -405,27 +446,35 @@ func Test_userNotifier_reducePasswordCodeAdded(t *testing.T) { IsPrimary: true, }}, }, nil) - commands.EXPECT().RequestNotification(gomock.Any(), orgID, &command.NotificationRequest{ - UserID: userID, - UserResourceOwner: orgID, - TriggerOrigin: fmt.Sprintf("%s://%s:%d", externalProtocol, instancePrimaryDomain, externalPort), - URLTemplate: fmt.Sprintf("%s://%s:%d/ui/login/password/init?userID=%s&code={{.Code}}&orgID=%s&authRequestID=%s", - externalProtocol, instancePrimaryDomain, externalPort, userID, orgID, authRequestID), - Code: code, - CodeExpiry: time.Hour, - EventType: user.HumanPasswordCodeAddedType, - NotificationType: domain.NotificationTypeEmail, - MessageType: domain.PasswordResetMessageType, - UnverifiedNotificationChannel: true, - Args: &domain.NotificationArguments{AuthRequestID: authRequestID}, - AggregateID: "", - AggregateResourceOwner: "", - IsOTP: false, - RequiresPreviousDomain: false, - }).Return(nil) + queue.EXPECT().Insert( + gomock.Any(), + ¬ification.Request{ + Aggregate: &eventstore.Aggregate{ + ID: userID, + InstanceID: instanceID, + ResourceOwner: orgID, + }, + UserID: userID, + UserResourceOwner: orgID, + TriggeredAtOrigin: fmt.Sprintf("%s://%s:%d", externalProtocol, instancePrimaryDomain, externalPort), + URLTemplate: fmt.Sprintf("%s://%s:%d/ui/login/password/init?userID=%s&code={{.Code}}&orgID=%s&authRequestID=%s", + externalProtocol, instancePrimaryDomain, externalPort, userID, orgID, authRequestID), + Code: code, + CodeExpiry: time.Hour, + EventType: user.HumanPasswordCodeAddedType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.PasswordResetMessageType, + UnverifiedNotificationChannel: true, + Args: &domain.NotificationArguments{AuthRequestID: authRequestID}, + IsOTP: false, + RequiresPreviousDomain: false, + }, + gomock.Any(), + gomock.Any(), + ).Return(nil) return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), @@ -449,28 +498,36 @@ func Test_userNotifier_reducePasswordCodeAdded(t *testing.T) { }, { name: "external code", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { - commands.EXPECT().RequestNotification(gomock.Any(), orgID, &command.NotificationRequest{ - UserID: userID, - UserResourceOwner: orgID, - TriggerOrigin: eventOrigin, - URLTemplate: fmt.Sprintf("%s/ui/login/password/init?userID=%s&code={{.Code}}&orgID=%s&authRequestID=%s", - eventOrigin, userID, orgID, authRequestID), - Code: nil, - CodeExpiry: 0, - EventType: user.HumanPasswordCodeAddedType, - NotificationType: domain.NotificationTypeSms, - MessageType: domain.PasswordResetMessageType, - UnverifiedNotificationChannel: true, - Args: &domain.NotificationArguments{AuthRequestID: authRequestID}, - AggregateID: "", - AggregateResourceOwner: "", - IsOTP: false, - RequiresPreviousDomain: false, - }).Return(nil) + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { + queue.EXPECT().Insert( + gomock.Any(), + ¬ification.Request{ + Aggregate: &eventstore.Aggregate{ + ID: userID, + InstanceID: instanceID, + ResourceOwner: orgID, + }, + UserID: userID, + UserResourceOwner: orgID, + TriggeredAtOrigin: eventOrigin, + URLTemplate: fmt.Sprintf("%s/ui/login/password/init?userID=%s&code={{.Code}}&orgID=%s&authRequestID=%s", + eventOrigin, userID, orgID, authRequestID), + Code: nil, + CodeExpiry: 0, + EventType: user.HumanPasswordCodeAddedType, + NotificationType: domain.NotificationTypeSms, + MessageType: domain.PasswordResetMessageType, + UnverifiedNotificationChannel: true, + Args: &domain.NotificationArguments{AuthRequestID: authRequestID}, + IsOTP: false, + RequiresPreviousDomain: false, + }, + gomock.Any(), + gomock.Any(), + ).Return(nil) return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), @@ -497,12 +554,12 @@ func Test_userNotifier_reducePasswordCodeAdded(t *testing.T) { }, { name: "return code", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { w.noOperation = true _, code := cryptoValue(t, ctrl, "testcode") return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).MockQuerier, }), @@ -532,9 +589,9 @@ func Test_userNotifier_reducePasswordCodeAdded(t *testing.T) { t.Run(tt.name, func(t *testing.T) { ctrl := gomock.NewController(t) queries := mock.NewMockQueries(ctrl) - commands := mock.NewMockCommands(ctrl) - f, a, w := tt.test(ctrl, queries, commands) - stmt, err := newUserNotifier(t, ctrl, queries, f, a, w).reducePasswordCodeAdded(a.event) + queue := mock.NewMockQueue(ctrl) + f, a, w := tt.test(ctrl, queries, queue) + stmt, err := newUserNotifier(t, ctrl, queries, f).reducePasswordCodeAdded(a.event) if w.err != nil { w.err(t, err) } else { @@ -557,31 +614,39 @@ func Test_userNotifier_reducePasswordCodeAdded(t *testing.T) { func Test_userNotifier_reduceDomainClaimed(t *testing.T) { tests := []struct { name string - test func(*gomock.Controller, *mock.MockQueries, *mock.MockCommands) (fields, args, want) + test func(*gomock.Controller, *mock.MockQueries, *mock.MockQueue) (fields, args, want) }{{ name: "with event trigger", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { - commands.EXPECT().RequestNotification(gomock.Any(), orgID, &command.NotificationRequest{ - UserID: userID, - UserResourceOwner: orgID, - TriggerOrigin: eventOrigin, - URLTemplate: fmt.Sprintf("%s/ui/login/login?orgID=%s", - eventOrigin, orgID), - Code: nil, - CodeExpiry: 0, - EventType: user.UserDomainClaimedType, - NotificationType: domain.NotificationTypeEmail, - MessageType: domain.DomainClaimedMessageType, - UnverifiedNotificationChannel: true, - Args: &domain.NotificationArguments{TempUsername: "newUsername"}, - AggregateID: "", - AggregateResourceOwner: "", - IsOTP: false, - RequiresPreviousDomain: true, - }).Return(nil) + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { + queue.EXPECT().Insert( + gomock.Any(), + ¬ification.Request{ + Aggregate: &eventstore.Aggregate{ + ID: userID, + InstanceID: instanceID, + ResourceOwner: orgID, + }, + UserID: userID, + UserResourceOwner: orgID, + TriggeredAtOrigin: eventOrigin, + URLTemplate: fmt.Sprintf("%s/ui/login/login?orgID=%s", + eventOrigin, orgID), + Code: nil, + CodeExpiry: 0, + EventType: user.UserDomainClaimedType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.DomainClaimedMessageType, + UnverifiedNotificationChannel: true, + Args: &domain.NotificationArguments{TempUsername: "newUsername"}, + IsOTP: false, + RequiresPreviousDomain: true, + }, + gomock.Any(), + gomock.Any(), + ).Return(nil) return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), @@ -601,34 +666,42 @@ func Test_userNotifier_reduceDomainClaimed(t *testing.T) { }, }, { name: "without event trigger", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { queries.EXPECT().SearchInstanceDomains(gomock.Any(), gomock.Any()).Return(&query.InstanceDomains{ Domains: []*query.InstanceDomain{{ Domain: instancePrimaryDomain, IsPrimary: true, }}, }, nil) - commands.EXPECT().RequestNotification(gomock.Any(), orgID, &command.NotificationRequest{ - UserID: userID, - UserResourceOwner: orgID, - TriggerOrigin: fmt.Sprintf("%s://%s:%d", externalProtocol, instancePrimaryDomain, externalPort), - URLTemplate: fmt.Sprintf("%s://%s:%d/ui/login/login?orgID=%s", - externalProtocol, instancePrimaryDomain, externalPort, orgID), - Code: nil, - CodeExpiry: 0, - EventType: user.UserDomainClaimedType, - NotificationType: domain.NotificationTypeEmail, - MessageType: domain.DomainClaimedMessageType, - UnverifiedNotificationChannel: true, - Args: &domain.NotificationArguments{TempUsername: "newUsername"}, - AggregateID: "", - AggregateResourceOwner: "", - IsOTP: false, - RequiresPreviousDomain: true, - }).Return(nil) + queue.EXPECT().Insert( + gomock.Any(), + ¬ification.Request{ + Aggregate: &eventstore.Aggregate{ + ID: userID, + InstanceID: instanceID, + ResourceOwner: orgID, + }, + UserID: userID, + UserResourceOwner: orgID, + TriggeredAtOrigin: fmt.Sprintf("%s://%s:%d", externalProtocol, instancePrimaryDomain, externalPort), + URLTemplate: fmt.Sprintf("%s://%s:%d/ui/login/login?orgID=%s", + externalProtocol, instancePrimaryDomain, externalPort, orgID), + Code: nil, + CodeExpiry: 0, + EventType: user.UserDomainClaimedType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.DomainClaimedMessageType, + UnverifiedNotificationChannel: true, + Args: &domain.NotificationArguments{TempUsername: "newUsername"}, + IsOTP: false, + RequiresPreviousDomain: true, + }, + gomock.Any(), + gomock.Any(), + ).Return(nil) return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), @@ -650,9 +723,9 @@ func Test_userNotifier_reduceDomainClaimed(t *testing.T) { t.Run(tt.name, func(t *testing.T) { ctrl := gomock.NewController(t) queries := mock.NewMockQueries(ctrl) - commands := mock.NewMockCommands(ctrl) - f, a, w := tt.test(ctrl, queries, commands) - stmt, err := newUserNotifier(t, ctrl, queries, f, a, w).reduceDomainClaimed(a.event) + queue := mock.NewMockQueue(ctrl) + f, a, w := tt.test(ctrl, queries, queue) + stmt, err := newUserNotifier(t, ctrl, queries, f).reduceDomainClaimed(a.event) if w.err != nil { w.err(t, err) } else { @@ -671,32 +744,40 @@ func Test_userNotifier_reduceDomainClaimed(t *testing.T) { func Test_userNotifier_reducePasswordlessCodeRequested(t *testing.T) { tests := []struct { name string - test func(*gomock.Controller, *mock.MockQueries, *mock.MockCommands) (fields, args, want) + test func(*gomock.Controller, *mock.MockQueries, *mock.MockQueue) (fields, args, want) }{ { name: "with event trigger", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { _, code := cryptoValue(t, ctrl, "testcode") - commands.EXPECT().RequestNotification(gomock.Any(), orgID, &command.NotificationRequest{ - UserID: userID, - UserResourceOwner: orgID, - TriggerOrigin: eventOrigin, - URLTemplate: fmt.Sprintf("%s/ui/login/login/passwordless/init?userID=%s&orgID=%s&codeID=%s&code={{.Code}}", eventOrigin, userID, orgID, codeID), - Code: code, - CodeExpiry: time.Hour, - EventType: user.HumanPasswordlessInitCodeAddedType, - NotificationType: domain.NotificationTypeEmail, - MessageType: domain.PasswordlessRegistrationMessageType, - UnverifiedNotificationChannel: false, - Args: &domain.NotificationArguments{CodeID: codeID}, - AggregateID: "", - AggregateResourceOwner: "", - IsOTP: false, - RequiresPreviousDomain: false, - }).Return(nil) + queue.EXPECT().Insert( + gomock.Any(), + ¬ification.Request{ + Aggregate: &eventstore.Aggregate{ + ID: userID, + InstanceID: instanceID, + ResourceOwner: orgID, + }, + UserID: userID, + UserResourceOwner: orgID, + TriggeredAtOrigin: eventOrigin, + URLTemplate: fmt.Sprintf("%s/ui/login/login/passwordless/init?userID=%s&orgID=%s&codeID=%s&code={{.Code}}", eventOrigin, userID, orgID, codeID), + Code: code, + CodeExpiry: time.Hour, + EventType: user.HumanPasswordlessInitCodeAddedType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.PasswordlessRegistrationMessageType, + UnverifiedNotificationChannel: false, + Args: &domain.NotificationArguments{CodeID: codeID}, + IsOTP: false, + RequiresPreviousDomain: false, + }, + gomock.Any(), + gomock.Any(), + ).Return(nil) return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), @@ -721,7 +802,7 @@ func Test_userNotifier_reducePasswordlessCodeRequested(t *testing.T) { }, { name: "without event trigger", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { _, code := cryptoValue(t, ctrl, "testCode") queries.EXPECT().SearchInstanceDomains(gomock.Any(), gomock.Any()).Return(&query.InstanceDomains{ Domains: []*query.InstanceDomain{{ @@ -729,26 +810,34 @@ func Test_userNotifier_reducePasswordlessCodeRequested(t *testing.T) { IsPrimary: true, }}, }, nil) - commands.EXPECT().RequestNotification(gomock.Any(), orgID, &command.NotificationRequest{ - UserID: userID, - UserResourceOwner: orgID, - TriggerOrigin: fmt.Sprintf("%s://%s:%d", externalProtocol, instancePrimaryDomain, externalPort), - URLTemplate: fmt.Sprintf("%s://%s:%d/ui/login/login/passwordless/init?userID=%s&orgID=%s&codeID=%s&code={{.Code}}", externalProtocol, instancePrimaryDomain, externalPort, userID, orgID, codeID), - Code: code, - CodeExpiry: time.Hour, - EventType: user.HumanPasswordlessInitCodeAddedType, - NotificationType: domain.NotificationTypeEmail, - MessageType: domain.PasswordlessRegistrationMessageType, - UnverifiedNotificationChannel: false, - Args: &domain.NotificationArguments{CodeID: codeID}, - AggregateID: "", - AggregateResourceOwner: "", - IsOTP: false, - RequiresPreviousDomain: false, - }).Return(nil) + queue.EXPECT().Insert( + gomock.Any(), + ¬ification.Request{ + Aggregate: &eventstore.Aggregate{ + ID: userID, + InstanceID: instanceID, + ResourceOwner: orgID, + }, + UserID: userID, + UserResourceOwner: orgID, + TriggeredAtOrigin: fmt.Sprintf("%s://%s:%d", externalProtocol, instancePrimaryDomain, externalPort), + URLTemplate: fmt.Sprintf("%s://%s:%d/ui/login/login/passwordless/init?userID=%s&orgID=%s&codeID=%s&code={{.Code}}", externalProtocol, instancePrimaryDomain, externalPort, userID, orgID, codeID), + Code: code, + CodeExpiry: time.Hour, + EventType: user.HumanPasswordlessInitCodeAddedType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.PasswordlessRegistrationMessageType, + UnverifiedNotificationChannel: false, + Args: &domain.NotificationArguments{CodeID: codeID}, + IsOTP: false, + RequiresPreviousDomain: false, + }, + gomock.Any(), + gomock.Any(), + ).Return(nil) return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), @@ -772,12 +861,12 @@ func Test_userNotifier_reducePasswordlessCodeRequested(t *testing.T) { }, { name: "return code", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { w.noOperation = true _, code := cryptoValue(t, ctrl, "testcode") return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).MockQuerier, }), @@ -805,9 +894,9 @@ func Test_userNotifier_reducePasswordlessCodeRequested(t *testing.T) { t.Run(tt.name, func(t *testing.T) { ctrl := gomock.NewController(t) queries := mock.NewMockQueries(ctrl) - commands := mock.NewMockCommands(ctrl) - f, a, w := tt.test(ctrl, queries, commands) - stmt, err := newUserNotifier(t, ctrl, queries, f, a, w).reducePasswordlessCodeRequested(a.event) + queue := mock.NewMockQueue(ctrl) + f, a, w := tt.test(ctrl, queries, queue) + stmt, err := newUserNotifier(t, ctrl, queries, f).reducePasswordlessCodeRequested(a.event) if w.err != nil { w.err(t, err) } else { @@ -830,34 +919,42 @@ func Test_userNotifier_reducePasswordlessCodeRequested(t *testing.T) { func Test_userNotifier_reducePasswordChanged(t *testing.T) { tests := []struct { name string - test func(*gomock.Controller, *mock.MockQueries, *mock.MockCommands) (fields, args, want) + test func(*gomock.Controller, *mock.MockQueries, *mock.MockQueue) (fields, args, want) }{ { name: "with event trigger", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { queries.EXPECT().NotificationPolicyByOrg(gomock.Any(), gomock.Any(), orgID, gomock.Any()).Return(&query.NotificationPolicy{ PasswordChange: true, }, nil) - commands.EXPECT().RequestNotification(gomock.Any(), orgID, &command.NotificationRequest{ - UserID: userID, - UserResourceOwner: orgID, - TriggerOrigin: eventOrigin, - URLTemplate: fmt.Sprintf("%s/ui/console?login_hint={{.PreferredLoginName}}", eventOrigin), - Code: nil, - CodeExpiry: 0, - EventType: user.HumanPasswordChangedType, - NotificationType: domain.NotificationTypeEmail, - MessageType: domain.PasswordChangeMessageType, - UnverifiedNotificationChannel: true, - Args: nil, - AggregateID: "", - AggregateResourceOwner: "", - IsOTP: false, - RequiresPreviousDomain: false, - }).Return(nil) + queue.EXPECT().Insert( + gomock.Any(), + ¬ification.Request{ + Aggregate: &eventstore.Aggregate{ + ID: userID, + InstanceID: instanceID, + ResourceOwner: orgID, + }, + UserID: userID, + UserResourceOwner: orgID, + TriggeredAtOrigin: eventOrigin, + URLTemplate: fmt.Sprintf("%s/ui/console?login_hint={{.PreferredLoginName}}", eventOrigin), + Code: nil, + CodeExpiry: 0, + EventType: user.HumanPasswordChangedType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.PasswordChangeMessageType, + UnverifiedNotificationChannel: true, + Args: nil, + IsOTP: false, + RequiresPreviousDomain: false, + }, + gomock.Any(), + gomock.Any(), + ).Return(nil) return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), @@ -877,7 +974,7 @@ func Test_userNotifier_reducePasswordChanged(t *testing.T) { }, { name: "without event trigger", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { queries.EXPECT().NotificationPolicyByOrg(gomock.Any(), gomock.Any(), orgID, gomock.Any()).Return(&query.NotificationPolicy{ PasswordChange: true, }, nil) @@ -887,27 +984,35 @@ func Test_userNotifier_reducePasswordChanged(t *testing.T) { IsPrimary: true, }}, }, nil) - commands.EXPECT().RequestNotification(gomock.Any(), orgID, &command.NotificationRequest{ - UserID: userID, - UserResourceOwner: orgID, - TriggerOrigin: fmt.Sprintf("%s://%s:%d", externalProtocol, instancePrimaryDomain, externalPort), - URLTemplate: fmt.Sprintf("%s://%s:%d/ui/console?login_hint={{.PreferredLoginName}}", - externalProtocol, instancePrimaryDomain, externalPort), - Code: nil, - CodeExpiry: 0, - EventType: user.HumanPasswordChangedType, - NotificationType: domain.NotificationTypeEmail, - MessageType: domain.PasswordChangeMessageType, - UnverifiedNotificationChannel: true, - Args: nil, - AggregateID: "", - AggregateResourceOwner: "", - IsOTP: false, - RequiresPreviousDomain: false, - }).Return(nil) + queue.EXPECT().Insert( + gomock.Any(), + ¬ification.Request{ + Aggregate: &eventstore.Aggregate{ + ID: userID, + InstanceID: instanceID, + ResourceOwner: orgID, + }, + UserID: userID, + UserResourceOwner: orgID, + TriggeredAtOrigin: fmt.Sprintf("%s://%s:%d", externalProtocol, instancePrimaryDomain, externalPort), + URLTemplate: fmt.Sprintf("%s://%s:%d/ui/console?login_hint={{.PreferredLoginName}}", + externalProtocol, instancePrimaryDomain, externalPort), + Code: nil, + CodeExpiry: 0, + EventType: user.HumanPasswordChangedType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.PasswordChangeMessageType, + UnverifiedNotificationChannel: true, + Args: nil, + IsOTP: false, + RequiresPreviousDomain: false, + }, + gomock.Any(), + gomock.Any(), + ).Return(nil) return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), @@ -925,13 +1030,13 @@ func Test_userNotifier_reducePasswordChanged(t *testing.T) { }, }, { name: "no notification", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { queries.EXPECT().NotificationPolicyByOrg(gomock.Any(), gomock.Any(), orgID, gomock.Any()).Return(&query.NotificationPolicy{ PasswordChange: false, }, nil) return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), @@ -953,9 +1058,9 @@ func Test_userNotifier_reducePasswordChanged(t *testing.T) { t.Run(tt.name, func(t *testing.T) { ctrl := gomock.NewController(t) queries := mock.NewMockQueries(ctrl) - commands := mock.NewMockCommands(ctrl) - f, a, w := tt.test(ctrl, queries, commands) - stmt, err := newUserNotifier(t, ctrl, queries, f, a, w).reducePasswordChanged(a.event) + queue := mock.NewMockQueue(ctrl) + f, a, w := tt.test(ctrl, queries, queue) + stmt, err := newUserNotifier(t, ctrl, queries, f).reducePasswordChanged(a.event) if w.err != nil { w.err(t, err) } else { @@ -974,11 +1079,11 @@ func Test_userNotifier_reducePasswordChanged(t *testing.T) { func Test_userNotifier_reduceOTPEmailChallenged(t *testing.T) { tests := []struct { name string - test func(*gomock.Controller, *mock.MockQueries, *mock.MockCommands) (fields, args, want) + test func(*gomock.Controller, *mock.MockQueries, *mock.MockQueue) (fields, args, want) }{ { name: "url with event trigger", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { _, code := cryptoValue(t, ctrl, "testCode") queries.EXPECT().SessionByID(gomock.Any(), gomock.Any(), sessionID, gomock.Any(), nil).Return(&query.Session{ ID: sessionID, @@ -988,31 +1093,39 @@ func Test_userNotifier_reduceOTPEmailChallenged(t *testing.T) { ResourceOwner: orgID, }, }, nil) - commands.EXPECT().RequestNotification(gomock.Any(), orgID, &command.NotificationRequest{ - UserID: userID, - UserResourceOwner: orgID, - TriggerOrigin: eventOrigin, - URLTemplate: fmt.Sprintf("%s/otp/verify?loginName={{.LoginName}}&code={{.Code}}", eventOrigin), - Code: code, - CodeExpiry: time.Hour, - EventType: session.OTPEmailChallengedType, - NotificationType: domain.NotificationTypeEmail, - MessageType: domain.VerifyEmailOTPMessageType, - UnverifiedNotificationChannel: false, - Args: &domain.NotificationArguments{ - Domain: eventOriginDomain, - Expiry: 1 * time.Hour, - Origin: eventOrigin, - SessionID: sessionID, + queue.EXPECT().Insert( + gomock.Any(), + ¬ification.Request{ + Aggregate: &eventstore.Aggregate{ + ID: sessionID, + InstanceID: instanceID, + ResourceOwner: instanceID, + }, + UserID: userID, + UserResourceOwner: orgID, + TriggeredAtOrigin: eventOrigin, + URLTemplate: fmt.Sprintf("%s/otp/verify?loginName={{.LoginName}}&code={{.Code}}", eventOrigin), + Code: code, + CodeExpiry: time.Hour, + EventType: session.OTPEmailChallengedType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.VerifyEmailOTPMessageType, + UnverifiedNotificationChannel: false, + Args: &domain.NotificationArguments{ + Domain: eventOriginDomain, + Expiry: 1 * time.Hour, + Origin: eventOrigin, + SessionID: sessionID, + }, + IsOTP: true, + RequiresPreviousDomain: false, }, - AggregateID: sessionID, - AggregateResourceOwner: instanceID, - IsOTP: true, - RequiresPreviousDomain: false, - }).Return(nil) + gomock.Any(), + gomock.Any(), + ).Return(nil) return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), @@ -1036,7 +1149,7 @@ func Test_userNotifier_reduceOTPEmailChallenged(t *testing.T) { }, { name: "without event trigger", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { _, code := cryptoValue(t, ctrl, "testCode") queries.EXPECT().SearchInstanceDomains(gomock.Any(), gomock.Any()).Return(&query.InstanceDomains{ Domains: []*query.InstanceDomain{{ @@ -1052,31 +1165,39 @@ func Test_userNotifier_reduceOTPEmailChallenged(t *testing.T) { ResourceOwner: orgID, }, }, nil) - commands.EXPECT().RequestNotification(gomock.Any(), orgID, &command.NotificationRequest{ - UserID: userID, - UserResourceOwner: orgID, - TriggerOrigin: fmt.Sprintf("%s://%s:%d", externalProtocol, instancePrimaryDomain, externalPort), - URLTemplate: fmt.Sprintf("%s://%s:%d/otp/verify?loginName={{.LoginName}}&code={{.Code}}", externalProtocol, instancePrimaryDomain, externalPort), - Code: code, - CodeExpiry: time.Hour, - EventType: session.OTPEmailChallengedType, - NotificationType: domain.NotificationTypeEmail, - MessageType: domain.VerifyEmailOTPMessageType, - UnverifiedNotificationChannel: false, - Args: &domain.NotificationArguments{ - Domain: instancePrimaryDomain, - Expiry: 1 * time.Hour, - Origin: fmt.Sprintf("%s://%s:%d", externalProtocol, instancePrimaryDomain, externalPort), - SessionID: sessionID, + queue.EXPECT().Insert( + gomock.Any(), + ¬ification.Request{ + UserID: userID, + UserResourceOwner: orgID, + TriggeredAtOrigin: fmt.Sprintf("%s://%s:%d", externalProtocol, instancePrimaryDomain, externalPort), + URLTemplate: fmt.Sprintf("%s://%s:%d/otp/verify?loginName={{.LoginName}}&code={{.Code}}", externalProtocol, instancePrimaryDomain, externalPort), + Code: code, + CodeExpiry: time.Hour, + EventType: session.OTPEmailChallengedType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.VerifyEmailOTPMessageType, + UnverifiedNotificationChannel: false, + Args: &domain.NotificationArguments{ + Domain: instancePrimaryDomain, + Expiry: 1 * time.Hour, + Origin: fmt.Sprintf("%s://%s:%d", externalProtocol, instancePrimaryDomain, externalPort), + SessionID: sessionID, + }, + Aggregate: &eventstore.Aggregate{ + ID: sessionID, + InstanceID: instanceID, + ResourceOwner: instanceID, + }, + IsOTP: true, + RequiresPreviousDomain: false, }, - AggregateID: sessionID, - AggregateResourceOwner: instanceID, - IsOTP: true, - RequiresPreviousDomain: false, - }).Return(nil) + gomock.Any(), + gomock.Any(), + ).Return(nil) return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), @@ -1098,12 +1219,12 @@ func Test_userNotifier_reduceOTPEmailChallenged(t *testing.T) { }, { name: "return code", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { w.noOperation = true _, code := cryptoValue(t, ctrl, "testCode") return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).MockQuerier, }), @@ -1127,7 +1248,7 @@ func Test_userNotifier_reduceOTPEmailChallenged(t *testing.T) { }, { name: "url template", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { _, code := cryptoValue(t, ctrl, "testCode") queries.EXPECT().SessionByID(gomock.Any(), gomock.Any(), sessionID, gomock.Any(), nil).Return(&query.Session{ ID: sessionID, @@ -1137,31 +1258,39 @@ func Test_userNotifier_reduceOTPEmailChallenged(t *testing.T) { ResourceOwner: orgID, }, }, nil) - commands.EXPECT().RequestNotification(gomock.Any(), orgID, &command.NotificationRequest{ - UserID: userID, - UserResourceOwner: orgID, - TriggerOrigin: eventOrigin, - URLTemplate: "/verify-otp?sessionID={{.SessionID}}", - Code: code, - CodeExpiry: time.Hour, - EventType: session.OTPEmailChallengedType, - NotificationType: domain.NotificationTypeEmail, - MessageType: domain.VerifyEmailOTPMessageType, - UnverifiedNotificationChannel: false, - Args: &domain.NotificationArguments{ - Domain: eventOriginDomain, - Expiry: 1 * time.Hour, - Origin: eventOrigin, - SessionID: sessionID, + queue.EXPECT().Insert( + gomock.Any(), + ¬ification.Request{ + UserID: userID, + UserResourceOwner: orgID, + TriggeredAtOrigin: eventOrigin, + URLTemplate: "/verify-otp?sessionID={{.SessionID}}", + Code: code, + CodeExpiry: time.Hour, + EventType: session.OTPEmailChallengedType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.VerifyEmailOTPMessageType, + UnverifiedNotificationChannel: false, + Args: &domain.NotificationArguments{ + Domain: eventOriginDomain, + Expiry: 1 * time.Hour, + Origin: eventOrigin, + SessionID: sessionID, + }, + Aggregate: &eventstore.Aggregate{ + ID: sessionID, + InstanceID: instanceID, + ResourceOwner: instanceID, + }, + IsOTP: true, + RequiresPreviousDomain: false, }, - AggregateID: sessionID, - AggregateResourceOwner: instanceID, - IsOTP: true, - RequiresPreviousDomain: false, - }).Return(nil) + gomock.Any(), + gomock.Any(), + ).Return(nil) return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), @@ -1188,9 +1317,9 @@ func Test_userNotifier_reduceOTPEmailChallenged(t *testing.T) { t.Run(tt.name, func(t *testing.T) { ctrl := gomock.NewController(t) queries := mock.NewMockQueries(ctrl) - commands := mock.NewMockCommands(ctrl) - f, a, w := tt.test(ctrl, queries, commands) - stmt, err := newUserNotifier(t, ctrl, queries, f, a, w).reduceSessionOTPEmailChallenged(a.event) + queue := mock.NewMockQueue(ctrl) + f, a, w := tt.test(ctrl, queries, queue) + stmt, err := newUserNotifier(t, ctrl, queries, f).reduceSessionOTPEmailChallenged(a.event) if w.err != nil { w.err(t, err) } else { @@ -1213,11 +1342,11 @@ func Test_userNotifier_reduceOTPEmailChallenged(t *testing.T) { func Test_userNotifier_reduceOTPSMSChallenged(t *testing.T) { tests := []struct { name string - test func(*gomock.Controller, *mock.MockQueries, *mock.MockCommands) (fields, args, want) + test func(*gomock.Controller, *mock.MockQueries, *mock.MockQueue) (fields, args, want) }{ { name: "with event trigger", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { testCode := "testcode" _, code := cryptoValue(t, ctrl, testCode) queries.EXPECT().SessionByID(gomock.Any(), gomock.Any(), sessionID, gomock.Any(), nil).Return(&query.Session{ @@ -1228,31 +1357,39 @@ func Test_userNotifier_reduceOTPSMSChallenged(t *testing.T) { ResourceOwner: orgID, }, }, nil) - commands.EXPECT().RequestNotification(gomock.Any(), orgID, &command.NotificationRequest{ - UserID: userID, - UserResourceOwner: orgID, - TriggerOrigin: eventOrigin, - URLTemplate: "", - Code: code, - CodeExpiry: time.Hour, - EventType: session.OTPSMSChallengedType, - NotificationType: domain.NotificationTypeSms, - MessageType: domain.VerifySMSOTPMessageType, - UnverifiedNotificationChannel: false, - Args: &domain.NotificationArguments{ - Domain: eventOriginDomain, - Expiry: 1 * time.Hour, - Origin: eventOrigin, - SessionID: sessionID, + queue.EXPECT().Insert( + gomock.Any(), + ¬ification.Request{ + UserID: userID, + UserResourceOwner: orgID, + TriggeredAtOrigin: eventOrigin, + URLTemplate: "", + Code: code, + CodeExpiry: time.Hour, + EventType: session.OTPSMSChallengedType, + NotificationType: domain.NotificationTypeSms, + MessageType: domain.VerifySMSOTPMessageType, + UnverifiedNotificationChannel: false, + Args: &domain.NotificationArguments{ + Domain: eventOriginDomain, + Expiry: 1 * time.Hour, + Origin: eventOrigin, + SessionID: sessionID, + }, + Aggregate: &eventstore.Aggregate{ + ID: sessionID, + InstanceID: instanceID, + ResourceOwner: instanceID, + }, + IsOTP: true, + RequiresPreviousDomain: false, }, - AggregateID: sessionID, - AggregateResourceOwner: instanceID, - IsOTP: true, - RequiresPreviousDomain: false, - }).Return(nil) + gomock.Any(), + gomock.Any(), + ).Return(nil) return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), @@ -1275,7 +1412,7 @@ func Test_userNotifier_reduceOTPSMSChallenged(t *testing.T) { }, { name: "without event trigger", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { testCode := "testcode" _, code := cryptoValue(t, ctrl, testCode) queries.EXPECT().SearchInstanceDomains(gomock.Any(), gomock.Any()).Return(&query.InstanceDomains{ @@ -1292,31 +1429,39 @@ func Test_userNotifier_reduceOTPSMSChallenged(t *testing.T) { ResourceOwner: orgID, }, }, nil) - commands.EXPECT().RequestNotification(gomock.Any(), orgID, &command.NotificationRequest{ - UserID: userID, - UserResourceOwner: orgID, - TriggerOrigin: fmt.Sprintf("%s://%s:%d", externalProtocol, instancePrimaryDomain, externalPort), - URLTemplate: "", - Code: code, - CodeExpiry: time.Hour, - EventType: session.OTPSMSChallengedType, - NotificationType: domain.NotificationTypeSms, - MessageType: domain.VerifySMSOTPMessageType, - UnverifiedNotificationChannel: false, - Args: &domain.NotificationArguments{ - Domain: instancePrimaryDomain, - Expiry: 1 * time.Hour, - Origin: fmt.Sprintf("%s://%s:%d", externalProtocol, instancePrimaryDomain, externalPort), - SessionID: sessionID, + queue.EXPECT().Insert( + gomock.Any(), + ¬ification.Request{ + UserID: userID, + UserResourceOwner: orgID, + TriggeredAtOrigin: fmt.Sprintf("%s://%s:%d", externalProtocol, instancePrimaryDomain, externalPort), + URLTemplate: "", + Code: code, + CodeExpiry: time.Hour, + EventType: session.OTPSMSChallengedType, + NotificationType: domain.NotificationTypeSms, + MessageType: domain.VerifySMSOTPMessageType, + UnverifiedNotificationChannel: false, + Args: &domain.NotificationArguments{ + Domain: instancePrimaryDomain, + Expiry: 1 * time.Hour, + Origin: fmt.Sprintf("%s://%s:%d", externalProtocol, instancePrimaryDomain, externalPort), + SessionID: sessionID, + }, + Aggregate: &eventstore.Aggregate{ + ID: sessionID, + InstanceID: instanceID, + ResourceOwner: instanceID, + }, + IsOTP: true, + RequiresPreviousDomain: false, }, - AggregateID: sessionID, - AggregateResourceOwner: instanceID, - IsOTP: true, - RequiresPreviousDomain: false, - }).Return(nil) + gomock.Any(), + gomock.Any(), + ).Return(nil) return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), @@ -1338,7 +1483,7 @@ func Test_userNotifier_reduceOTPSMSChallenged(t *testing.T) { }, { name: "external code", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { queries.EXPECT().SessionByID(gomock.Any(), gomock.Any(), sessionID, gomock.Any(), nil).Return(&query.Session{ ID: sessionID, ResourceOwner: instanceID, @@ -1347,31 +1492,39 @@ func Test_userNotifier_reduceOTPSMSChallenged(t *testing.T) { ResourceOwner: orgID, }, }, nil) - commands.EXPECT().RequestNotification(gomock.Any(), orgID, &command.NotificationRequest{ - UserID: userID, - UserResourceOwner: orgID, - TriggerOrigin: eventOrigin, - URLTemplate: "", - Code: nil, - CodeExpiry: 0, - EventType: session.OTPSMSChallengedType, - NotificationType: domain.NotificationTypeSms, - MessageType: domain.VerifySMSOTPMessageType, - UnverifiedNotificationChannel: false, - Args: &domain.NotificationArguments{ - Domain: eventOriginDomain, - Expiry: 0 * time.Hour, - Origin: eventOrigin, - SessionID: sessionID, + queue.EXPECT().Insert( + gomock.Any(), + ¬ification.Request{ + UserID: userID, + UserResourceOwner: orgID, + TriggeredAtOrigin: eventOrigin, + URLTemplate: "", + Code: nil, + CodeExpiry: 0, + EventType: session.OTPSMSChallengedType, + NotificationType: domain.NotificationTypeSms, + MessageType: domain.VerifySMSOTPMessageType, + UnverifiedNotificationChannel: false, + Args: &domain.NotificationArguments{ + Domain: eventOriginDomain, + Expiry: 0 * time.Hour, + Origin: eventOrigin, + SessionID: sessionID, + }, + Aggregate: &eventstore.Aggregate{ + ID: sessionID, + InstanceID: instanceID, + ResourceOwner: instanceID, + }, + IsOTP: true, + RequiresPreviousDomain: false, }, - AggregateID: sessionID, - AggregateResourceOwner: instanceID, - IsOTP: true, - RequiresPreviousDomain: false, - }).Return(nil) + gomock.Any(), + gomock.Any(), + ).Return(nil) return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), @@ -1394,12 +1547,12 @@ func Test_userNotifier_reduceOTPSMSChallenged(t *testing.T) { }, { name: "return code", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { w.noOperation = true _, code := cryptoValue(t, ctrl, "testCode") return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).MockQuerier, }), @@ -1425,9 +1578,9 @@ func Test_userNotifier_reduceOTPSMSChallenged(t *testing.T) { t.Run(tt.name, func(t *testing.T) { ctrl := gomock.NewController(t) queries := mock.NewMockQueries(ctrl) - commands := mock.NewMockCommands(ctrl) - f, a, w := tt.test(ctrl, queries, commands) - stmt, err := newUserNotifier(t, ctrl, queries, f, a, w).reduceSessionOTPSMSChallenged(a.event) + queue := mock.NewMockQueue(ctrl) + f, a, w := tt.test(ctrl, queries, queue) + stmt, err := newUserNotifier(t, ctrl, queries, f).reduceSessionOTPSMSChallenged(a.event) if w.err != nil { w.err(t, err) } else { @@ -1450,35 +1603,43 @@ func Test_userNotifier_reduceOTPSMSChallenged(t *testing.T) { func Test_userNotifier_reduceInviteCodeAdded(t *testing.T) { tests := []struct { name string - test func(*gomock.Controller, *mock.MockQueries, *mock.MockCommands) (fields, args, want) + test func(*gomock.Controller, *mock.MockQueries, *mock.MockQueue) (fields, args, want) }{ { name: "with event trigger", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { _, code := cryptoValue(t, ctrl, "testcode") - commands.EXPECT().RequestNotification(gomock.Any(), orgID, &command.NotificationRequest{ - UserID: userID, - UserResourceOwner: orgID, - TriggerOrigin: eventOrigin, - URLTemplate: fmt.Sprintf("%s/ui/login/user/invite?userID=%s&loginname={{.LoginName}}&code={{.Code}}&orgID=%s&authRequestID=%s", eventOrigin, userID, orgID, authRequestID), - Code: code, - CodeExpiry: time.Hour, - EventType: user.HumanInviteCodeAddedType, - NotificationType: domain.NotificationTypeEmail, - MessageType: domain.InviteUserMessageType, - UnverifiedNotificationChannel: true, - Args: &domain.NotificationArguments{ - ApplicationName: "ZITADEL", - AuthRequestID: authRequestID, + queue.EXPECT().Insert( + gomock.Any(), + ¬ification.Request{ + UserID: userID, + UserResourceOwner: orgID, + TriggeredAtOrigin: eventOrigin, + URLTemplate: fmt.Sprintf("%s/ui/login/user/invite?userID=%s&loginname={{.LoginName}}&code={{.Code}}&orgID=%s&authRequestID=%s", eventOrigin, userID, orgID, authRequestID), + Code: code, + CodeExpiry: time.Hour, + EventType: user.HumanInviteCodeAddedType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.InviteUserMessageType, + UnverifiedNotificationChannel: true, + Args: &domain.NotificationArguments{ + ApplicationName: "ZITADEL", + AuthRequestID: authRequestID, + }, + Aggregate: &eventstore.Aggregate{ + ID: userID, + InstanceID: instanceID, + ResourceOwner: orgID, + }, + IsOTP: false, + RequiresPreviousDomain: false, }, - AggregateID: "", - AggregateResourceOwner: "", - IsOTP: false, - RequiresPreviousDomain: false, - }).Return(nil) + gomock.Any(), + gomock.Any(), + ).Return(nil) return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), @@ -1503,7 +1664,7 @@ func Test_userNotifier_reduceInviteCodeAdded(t *testing.T) { }, { name: "without event trigger", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { _, code := cryptoValue(t, ctrl, "testCode") queries.EXPECT().SearchInstanceDomains(gomock.Any(), gomock.Any()).Return(&query.InstanceDomains{ Domains: []*query.InstanceDomain{{ @@ -1511,29 +1672,37 @@ func Test_userNotifier_reduceInviteCodeAdded(t *testing.T) { IsPrimary: true, }}, }, nil) - commands.EXPECT().RequestNotification(gomock.Any(), orgID, &command.NotificationRequest{ - UserID: userID, - UserResourceOwner: orgID, - TriggerOrigin: fmt.Sprintf("%s://%s:%d", externalProtocol, instancePrimaryDomain, externalPort), - URLTemplate: fmt.Sprintf("%s://%s:%d/ui/login/user/invite?userID=%s&loginname={{.LoginName}}&code={{.Code}}&orgID=%s&authRequestID=%s", externalProtocol, instancePrimaryDomain, externalPort, userID, orgID, authRequestID), - Code: code, - CodeExpiry: time.Hour, - EventType: user.HumanInviteCodeAddedType, - NotificationType: domain.NotificationTypeEmail, - MessageType: domain.InviteUserMessageType, - UnverifiedNotificationChannel: true, - Args: &domain.NotificationArguments{ - ApplicationName: "ZITADEL", - AuthRequestID: authRequestID, + queue.EXPECT().Insert( + gomock.Any(), + ¬ification.Request{ + UserID: userID, + UserResourceOwner: orgID, + TriggeredAtOrigin: fmt.Sprintf("%s://%s:%d", externalProtocol, instancePrimaryDomain, externalPort), + URLTemplate: fmt.Sprintf("%s://%s:%d/ui/login/user/invite?userID=%s&loginname={{.LoginName}}&code={{.Code}}&orgID=%s&authRequestID=%s", externalProtocol, instancePrimaryDomain, externalPort, userID, orgID, authRequestID), + Code: code, + CodeExpiry: time.Hour, + EventType: user.HumanInviteCodeAddedType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.InviteUserMessageType, + UnverifiedNotificationChannel: true, + Args: &domain.NotificationArguments{ + ApplicationName: "ZITADEL", + AuthRequestID: authRequestID, + }, + Aggregate: &eventstore.Aggregate{ + ID: userID, + InstanceID: instanceID, + ResourceOwner: orgID, + }, + IsOTP: false, + RequiresPreviousDomain: false, }, - AggregateID: "", - AggregateResourceOwner: "", - IsOTP: false, - RequiresPreviousDomain: false, - }).Return(nil) + gomock.Any(), + gomock.Any(), + ).Return(nil) return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), @@ -1557,12 +1726,12 @@ func Test_userNotifier_reduceInviteCodeAdded(t *testing.T) { }, { name: "return code", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { w.noOperation = true _, code := cryptoValue(t, ctrl, "testcode") return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).MockQuerier, }), @@ -1587,31 +1756,39 @@ func Test_userNotifier_reduceInviteCodeAdded(t *testing.T) { }, { name: "url template", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { _, code := cryptoValue(t, ctrl, "testcode") - commands.EXPECT().RequestNotification(gomock.Any(), orgID, &command.NotificationRequest{ - UserID: userID, - UserResourceOwner: orgID, - TriggerOrigin: eventOrigin, - URLTemplate: "/passwordless-init?userID={{.UserID}}", - Code: code, - CodeExpiry: time.Hour, - EventType: user.HumanInviteCodeAddedType, - NotificationType: domain.NotificationTypeEmail, - MessageType: domain.InviteUserMessageType, - UnverifiedNotificationChannel: true, - Args: &domain.NotificationArguments{ - ApplicationName: "ZITADEL", - AuthRequestID: authRequestID, + queue.EXPECT().Insert( + gomock.Any(), + ¬ification.Request{ + UserID: userID, + UserResourceOwner: orgID, + TriggeredAtOrigin: eventOrigin, + URLTemplate: "/passwordless-init?userID={{.UserID}}", + Code: code, + CodeExpiry: time.Hour, + EventType: user.HumanInviteCodeAddedType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.InviteUserMessageType, + UnverifiedNotificationChannel: true, + Args: &domain.NotificationArguments{ + ApplicationName: "ZITADEL", + AuthRequestID: authRequestID, + }, + Aggregate: &eventstore.Aggregate{ + ID: userID, + InstanceID: instanceID, + ResourceOwner: orgID, + }, + IsOTP: false, + RequiresPreviousDomain: false, }, - AggregateID: "", - AggregateResourceOwner: "", - IsOTP: false, - RequiresPreviousDomain: false, - }).Return(nil) + gomock.Any(), + gomock.Any(), + ).Return(nil) return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), @@ -1636,31 +1813,39 @@ func Test_userNotifier_reduceInviteCodeAdded(t *testing.T) { }, { name: "application name", - test: func(ctrl *gomock.Controller, queries *mock.MockQueries, commands *mock.MockCommands) (f fields, a args, w want) { + test: func(ctrl *gomock.Controller, queries *mock.MockQueries, queue *mock.MockQueue) (f fields, a args, w want) { _, code := cryptoValue(t, ctrl, "testcode") - commands.EXPECT().RequestNotification(gomock.Any(), orgID, &command.NotificationRequest{ - UserID: userID, - UserResourceOwner: orgID, - TriggerOrigin: eventOrigin, - URLTemplate: fmt.Sprintf("%s/ui/login/user/invite?userID=%s&loginname={{.LoginName}}&code={{.Code}}&orgID=%s&authRequestID=%s", eventOrigin, userID, orgID, authRequestID), - Code: code, - CodeExpiry: time.Hour, - EventType: user.HumanInviteCodeAddedType, - NotificationType: domain.NotificationTypeEmail, - MessageType: domain.InviteUserMessageType, - UnverifiedNotificationChannel: true, - Args: &domain.NotificationArguments{ - ApplicationName: "APP", - AuthRequestID: authRequestID, + queue.EXPECT().Insert( + gomock.Any(), + ¬ification.Request{ + UserID: userID, + UserResourceOwner: orgID, + TriggeredAtOrigin: eventOrigin, + URLTemplate: fmt.Sprintf("%s/ui/login/user/invite?userID=%s&loginname={{.LoginName}}&code={{.Code}}&orgID=%s&authRequestID=%s", eventOrigin, userID, orgID, authRequestID), + Code: code, + CodeExpiry: time.Hour, + EventType: user.HumanInviteCodeAddedType, + NotificationType: domain.NotificationTypeEmail, + MessageType: domain.InviteUserMessageType, + UnverifiedNotificationChannel: true, + Args: &domain.NotificationArguments{ + ApplicationName: "APP", + AuthRequestID: authRequestID, + }, + Aggregate: &eventstore.Aggregate{ + ID: userID, + InstanceID: instanceID, + ResourceOwner: orgID, + }, + IsOTP: false, + RequiresPreviousDomain: false, }, - AggregateID: "", - AggregateResourceOwner: "", - IsOTP: false, - RequiresPreviousDomain: false, - }).Return(nil) + gomock.Any(), + gomock.Any(), + ).Return(nil) return fields{ - queries: queries, - commands: commands, + queries: queries, + queue: queue, es: eventstore.NewEventstore(&eventstore.Config{ Querier: es_repo_mock.NewRepo(t).ExpectFilterEvents().MockQuerier, }), @@ -1689,9 +1874,9 @@ func Test_userNotifier_reduceInviteCodeAdded(t *testing.T) { t.Run(tt.name, func(t *testing.T) { ctrl := gomock.NewController(t) queries := mock.NewMockQueries(ctrl) - commands := mock.NewMockCommands(ctrl) - f, a, w := tt.test(ctrl, queries, commands) - stmt, err := newUserNotifier(t, ctrl, queries, f, a, w).reduceInviteCodeAdded(a.event) + queue := mock.NewMockQueue(ctrl) + f, a, w := tt.test(ctrl, queries, queue) + stmt, err := newUserNotifier(t, ctrl, queries, f).reduceInviteCodeAdded(a.event) if w.err != nil { w.err(t, err) } else { @@ -1713,6 +1898,7 @@ func Test_userNotifier_reduceInviteCodeAdded(t *testing.T) { type fields struct { queries *mock.MockQueries + queue *mock.MockQueue commands *mock.MockCommands es *eventstore.Eventstore userDataCrypto crypto.EncryptionAlgorithm @@ -1726,13 +1912,12 @@ type fieldsWorker struct { SMSTokenCrypto crypto.EncryptionAlgorithm now nowFunc backOff func(current time.Duration) time.Duration - maxAttempts uint8 } type args struct { event eventstore.Event } type argsWorker struct { - event eventstore.Event + job *river.Job[*notification.Request] } type want struct { noOperation bool @@ -1745,11 +1930,11 @@ type wantWorker struct { err assert.ErrorAssertionFunc } -func newUserNotifier(t *testing.T, ctrl *gomock.Controller, queries *mock.MockQueries, f fields, a args, w want) *userNotifier { +func newUserNotifier(t *testing.T, ctrl *gomock.Controller, queries *mock.MockQueries, f fields) *userNotifier { queries.EXPECT().NotificationProviderByIDAndType(gomock.Any(), gomock.Any(), gomock.Any()).AnyTimes().Return(&query.DebugNotificationProvider{}, nil) smtpAlg, _ := cryptoValue(t, ctrl, "smtppw") return &userNotifier{ - commands: f.commands, + queue: f.queue, queries: NewNotificationQueries( f.queries, f.es, diff --git a/internal/notification/messages/email.go b/internal/notification/messages/email.go index ff5931898f..019d1d09d8 100644 --- a/internal/notification/messages/email.go +++ b/internal/notification/messages/email.go @@ -19,15 +19,15 @@ var ( var _ channels.Message = (*Email)(nil) type Email struct { - Recipients []string - BCC []string - CC []string - SenderEmail string - SenderName string - ReplyToAddress string - Subject string - Content string - TriggeringEvent eventstore.Event + Recipients []string + BCC []string + CC []string + SenderEmail string + SenderName string + ReplyToAddress string + Subject string + Content string + TriggeringEventType eventstore.EventType } func (msg *Email) GetContent() (string, error) { @@ -61,8 +61,8 @@ func (msg *Email) GetContent() (string, error) { return message, nil } -func (msg *Email) GetTriggeringEvent() eventstore.Event { - return msg.TriggeringEvent +func (msg *Email) GetTriggeringEventType() eventstore.EventType { + return msg.TriggeringEventType } func isHTML(input string) bool { diff --git a/internal/notification/messages/form.go b/internal/notification/messages/form.go index 5e9a97ca68..1f3b22e39c 100644 --- a/internal/notification/messages/form.go +++ b/internal/notification/messages/form.go @@ -12,8 +12,8 @@ import ( var _ channels.Message = (*Form)(nil) type Form struct { - Serializable any - TriggeringEvent eventstore.Event + Serializable any + TriggeringEventType eventstore.EventType } func (msg *Form) GetContent() (string, error) { @@ -22,6 +22,6 @@ func (msg *Form) GetContent() (string, error) { return values.Encode(), err } -func (msg *Form) GetTriggeringEvent() eventstore.Event { - return msg.TriggeringEvent +func (msg *Form) GetTriggeringEventType() eventstore.EventType { + return msg.TriggeringEventType } diff --git a/internal/notification/messages/json.go b/internal/notification/messages/json.go index be092f430b..5abc21873f 100644 --- a/internal/notification/messages/json.go +++ b/internal/notification/messages/json.go @@ -10,8 +10,8 @@ import ( var _ channels.Message = (*JSON)(nil) type JSON struct { - Serializable interface{} - TriggeringEvent eventstore.Event + Serializable interface{} + TriggeringEventType eventstore.EventType } func (msg *JSON) GetContent() (string, error) { @@ -19,6 +19,6 @@ func (msg *JSON) GetContent() (string, error) { return string(bytes), err } -func (msg *JSON) GetTriggeringEvent() eventstore.Event { - return msg.TriggeringEvent +func (msg *JSON) GetTriggeringEventType() eventstore.EventType { + return msg.TriggeringEventType } diff --git a/internal/notification/messages/sms.go b/internal/notification/messages/sms.go index 0dfaea8772..8c53531242 100644 --- a/internal/notification/messages/sms.go +++ b/internal/notification/messages/sms.go @@ -11,16 +11,19 @@ type SMS struct { SenderPhoneNumber string RecipientPhoneNumber string Content string - TriggeringEvent eventstore.Event + TriggeringEventType eventstore.EventType // VerificationID is set by the sender VerificationID *string + InstanceID string + JobID string + UserID string } func (msg *SMS) GetContent() (string, error) { return msg.Content, nil } -func (msg *SMS) GetTriggeringEvent() eventstore.Event { - return msg.TriggeringEvent +func (msg *SMS) GetTriggeringEventType() eventstore.EventType { + return msg.TriggeringEventType } diff --git a/internal/notification/projections.go b/internal/notification/projections.go index 38e1f1c347..6a0296f3bf 100644 --- a/internal/notification/projections.go +++ b/internal/notification/projections.go @@ -13,6 +13,7 @@ import ( _ "github.com/zitadel/zitadel/internal/notification/statik" "github.com/zitadel/zitadel/internal/query" "github.com/zitadel/zitadel/internal/query/projection" + "github.com/zitadel/zitadel/internal/queue" ) var ( @@ -35,10 +36,15 @@ func Register( userEncryption, smtpEncryption, smsEncryption, keysEncryptionAlg crypto.EncryptionAlgorithm, tokenLifetime time.Duration, client *database.DB, + queue *queue.Queue, ) { + if !notificationWorkerConfig.LegacyEnabled { + queue.ShouldStart() + } + q := handlers.NewNotificationQueries(queries, es, externalDomain, externalPort, externalSecure, fileSystemPath, userEncryption, smtpEncryption, smsEncryption) c := newChannels(q) - projections = append(projections, handlers.NewUserNotifier(ctx, projection.ApplyCustomConfig(userHandlerCustomConfig), commands, q, c, otpEmailTmpl, notificationWorkerConfig.LegacyEnabled)) + projections = append(projections, handlers.NewUserNotifier(ctx, projection.ApplyCustomConfig(userHandlerCustomConfig), commands, q, c, otpEmailTmpl, notificationWorkerConfig, queue)) projections = append(projections, handlers.NewQuotaNotifier(ctx, projection.ApplyCustomConfig(quotaHandlerCustomConfig), commands, q, c)) projections = append(projections, handlers.NewBackChannelLogoutNotifier( ctx, @@ -53,14 +59,13 @@ func Register( if telemetryCfg.Enabled { projections = append(projections, handlers.NewTelemetryPusher(ctx, telemetryCfg, projection.ApplyCustomConfig(telemetryHandlerCustomConfig), commands, q, c)) } - worker = handlers.NewNotificationWorker(notificationWorkerConfig, commands, q, es, client, c) + worker = handlers.NewNotificationWorker(notificationWorkerConfig, commands, q, es, client, c, queue) } func Start(ctx context.Context) { for _, projection := range projections { projection.Start(ctx) } - worker.Start(ctx) } func ProjectInstance(ctx context.Context) error { diff --git a/internal/notification/types/notification.go b/internal/notification/types/notification.go index db791851bc..7b6aff6010 100644 --- a/internal/notification/types/notification.go +++ b/internal/notification/types/notification.go @@ -39,7 +39,7 @@ func SendEmail( translator *i18n.Translator, user *query.NotifyUser, colors *query.LabelPolicy, - triggeringEvent eventstore.Event, + triggeringEventType eventstore.EventType, ) Notify { return func( urlTmpl string, @@ -66,7 +66,7 @@ func SendEmail( data, args, allowUnverifiedNotificationChannel, - triggeringEvent, + triggeringEventType, ) } } @@ -102,7 +102,9 @@ func SendSMS( translator *i18n.Translator, user *query.NotifyUser, colors *query.LabelPolicy, - triggeringEvent eventstore.Event, + triggeringEventType eventstore.EventType, + instanceID string, + jobID string, generatorInfo *senders.CodeGeneratorInfo, ) Notify { return func( @@ -124,7 +126,9 @@ func SendSMS( data, args, allowUnverifiedNotificationChannel, - triggeringEvent, + triggeringEventType, + instanceID, + jobID, generatorInfo, ) } @@ -135,7 +139,7 @@ func SendJSON( webhookConfig webhook.Config, channels ChannelChains, serializable interface{}, - triggeringEvent eventstore.Event, + triggeringEventType eventstore.EventType, ) Notify { return func(_ string, _ map[string]interface{}, _ string, _ bool) error { return handleWebhook( @@ -143,7 +147,7 @@ func SendJSON( webhookConfig, channels, serializable, - triggeringEvent, + triggeringEventType, ) } } @@ -153,7 +157,7 @@ func SendSecurityTokenEvent( setConfig set.Config, channels ChannelChains, token any, - triggeringEvent eventstore.Event, + triggeringEventType eventstore.EventType, ) Notify { return func(_ string, _ map[string]interface{}, _ string, _ bool) error { return handleSecurityTokenEvent( @@ -161,7 +165,7 @@ func SendSecurityTokenEvent( setConfig, channels, token, - triggeringEvent, + triggeringEventType, ) } } diff --git a/internal/notification/types/security_token_event.go b/internal/notification/types/security_token_event.go index d8a1d26006..34a7389975 100644 --- a/internal/notification/types/security_token_event.go +++ b/internal/notification/types/security_token_event.go @@ -13,11 +13,11 @@ func handleSecurityTokenEvent( setConfig set.Config, channels ChannelChains, token any, - triggeringEvent eventstore.Event, + triggeringEventType eventstore.EventType, ) error { message := &messages.Form{ - Serializable: token, - TriggeringEvent: triggeringEvent, + Serializable: token, + TriggeringEventType: triggeringEventType, } setChannels, err := channels.SecurityTokenEvent(ctx, setConfig) if err != nil { diff --git a/internal/notification/types/user_email.go b/internal/notification/types/user_email.go index d32ee868f0..626625b5ab 100644 --- a/internal/notification/types/user_email.go +++ b/internal/notification/types/user_email.go @@ -23,7 +23,7 @@ func generateEmail( data templates.TemplateData, args map[string]interface{}, lastEmail bool, - triggeringEvent eventstore.Event, + triggeringEventType eventstore.EventType, ) error { emailChannels, config, err := channels.Email(ctx) logging.OnError(err).Error("could not create email channel") @@ -38,10 +38,10 @@ func generateEmail( } if config.SMTPConfig != nil { message := &messages.Email{ - Recipients: []string{recipient}, - Subject: data.Subject, - Content: html.UnescapeString(template), - TriggeringEvent: triggeringEvent, + Recipients: []string{recipient}, + Subject: data.Subject, + Content: html.UnescapeString(template), + TriggeringEventType: triggeringEventType, } return emailChannels.HandleMessage(message) } @@ -52,7 +52,7 @@ func generateEmail( } contextInfo := map[string]interface{}{ "recipientEmailAddress": recipient, - "eventType": triggeringEvent.Type(), + "eventType": triggeringEventType, "provider": config.ProviderConfig, } @@ -62,7 +62,7 @@ func generateEmail( TemplateData: data, Args: caseArgs, }, - TriggeringEvent: triggeringEvent, + TriggeringEventType: triggeringEventType, } webhookChannels, err := channels.Webhook(ctx, *config.WebhookConfig) if err != nil { diff --git a/internal/notification/types/user_phone.go b/internal/notification/types/user_phone.go index 3ee202dfab..d0709a6cc0 100644 --- a/internal/notification/types/user_phone.go +++ b/internal/notification/types/user_phone.go @@ -28,7 +28,9 @@ func generateSms( data templates.TemplateData, args map[string]interface{}, lastPhone bool, - triggeringEvent eventstore.Event, + triggeringEventType eventstore.EventType, + instanceID string, + jobID string, generatorInfo *senders.CodeGeneratorInfo, ) error { smsChannels, config, err := channels.SMS(ctx) @@ -51,7 +53,10 @@ func generateSms( SenderPhoneNumber: number, RecipientPhoneNumber: recipient, Content: data.Text, - TriggeringEvent: triggeringEvent, + TriggeringEventType: triggeringEventType, + InstanceID: instanceID, + JobID: jobID, + UserID: user.ID, } err = smsChannels.HandleMessage(message) if err != nil { @@ -70,7 +75,7 @@ func generateSms( } contextInfo := map[string]interface{}{ "recipientPhoneNumber": recipient, - "eventType": triggeringEvent.Type(), + "eventType": triggeringEventType, "provider": config.ProviderConfig, } @@ -80,7 +85,7 @@ func generateSms( Args: caseArgs, ContextInfo: contextInfo, }, - TriggeringEvent: triggeringEvent, + TriggeringEventType: triggeringEventType, } webhookChannels, err := channels.Webhook(ctx, *config.WebhookConfig) if err != nil { diff --git a/internal/notification/types/webhook.go b/internal/notification/types/webhook.go index 465be289d1..3ffefd7e26 100644 --- a/internal/notification/types/webhook.go +++ b/internal/notification/types/webhook.go @@ -13,11 +13,11 @@ func handleWebhook( webhookConfig webhook.Config, channels ChannelChains, serializable interface{}, - triggeringEvent eventstore.Event, + triggeringEventType eventstore.EventType, ) error { message := &messages.JSON{ - Serializable: serializable, - TriggeringEvent: triggeringEvent, + Serializable: serializable, + TriggeringEventType: triggeringEventType, } webhookChannels, err := channels.Webhook(ctx, webhookConfig) if err != nil { diff --git a/internal/query/device_auth.go b/internal/query/device_auth.go index d63bfe0209..e42b5a114e 100644 --- a/internal/query/device_auth.go +++ b/internal/query/device_auth.go @@ -86,15 +86,24 @@ var deviceAuthSelectColumns = []string{ DeviceAuthRequestColumnUserCode.identifier(), DeviceAuthRequestColumnScopes.identifier(), DeviceAuthRequestColumnAudience.identifier(), + AppColumnName.identifier(), + ProjectColumnName.identifier(), } func prepareDeviceAuthQuery(ctx context.Context, db prepareDatabase) (sq.SelectBuilder, func(*sql.Row) (*domain.AuthRequestDevice, error)) { - return sq.Select(deviceAuthSelectColumns...).From(deviceAuthRequestTable.identifier()).PlaceholderFormat(sq.Dollar), + return sq.Select(deviceAuthSelectColumns...). + From(deviceAuthRequestTable.identifier()). + LeftJoin(join(AppOIDCConfigColumnClientID, DeviceAuthRequestColumnClientID)). + LeftJoin(join(AppColumnID, AppOIDCConfigColumnAppID)). + LeftJoin(join(ProjectColumnID, AppColumnProjectID)). + PlaceholderFormat(sq.Dollar), func(row *sql.Row) (*domain.AuthRequestDevice, error) { dst := new(domain.AuthRequestDevice) var ( - scopes database.TextArray[string] - audience database.TextArray[string] + scopes database.TextArray[string] + audience database.TextArray[string] + appName sql.NullString + projectName sql.NullString ) err := row.Scan( @@ -103,15 +112,20 @@ func prepareDeviceAuthQuery(ctx context.Context, db prepareDatabase) (sq.SelectB &dst.UserCode, &scopes, &audience, + &appName, + &projectName, ) if errors.Is(err, sql.ErrNoRows) { - return nil, zerrors.ThrowNotFound(err, "QUERY-Sah9a", "Errors.DeviceAuth.NotExisting") + return nil, zerrors.ThrowNotFound(err, "QUERY-Sah9a", "Errors.DeviceAuth.NotFound") } if err != nil { return nil, zerrors.ThrowInternal(err, "QUERY-Voo3o", "Errors.Internal") } dst.Scopes = scopes dst.Audience = audience + dst.AppName = appName.String + dst.ProjectName = projectName.String + return dst, nil } } diff --git a/internal/query/device_auth_test.go b/internal/query/device_auth_test.go index f81a11b411..6f0f82b3be 100644 --- a/internal/query/device_auth_test.go +++ b/internal/query/device_auth_test.go @@ -24,8 +24,17 @@ const ( ` projections.device_auth_requests2.device_code,` + ` projections.device_auth_requests2.user_code,` + ` projections.device_auth_requests2.scopes,` + - ` projections.device_auth_requests2.audience` + - ` FROM projections.device_auth_requests2` + ` projections.device_auth_requests2.audience,` + + ` projections.apps7.name,` + + ` projections.projects4.name` + + ` FROM projections.device_auth_requests2` + + ` LEFT JOIN projections.apps7_oidc_configs` + + ` ON projections.device_auth_requests2.client_id = projections.apps7_oidc_configs.client_id` + + ` AND projections.device_auth_requests2.instance_id = projections.apps7_oidc_configs.instance_id` + + ` LEFT JOIN projections.apps7 ON projections.apps7_oidc_configs.app_id = projections.apps7.id` + + ` AND projections.apps7_oidc_configs.instance_id = projections.apps7.instance_id` + + ` LEFT JOIN projections.projects4 ON projections.apps7.project_id = projections.projects4.id` + + ` AND projections.apps7.instance_id = projections.projects4.instance_id` expectedDeviceAuthWhereUserCodeQueryC = expectedDeviceAuthQueryC + ` WHERE projections.device_auth_requests2.instance_id = $1` + ` AND projections.device_auth_requests2.user_code = $2` @@ -40,13 +49,17 @@ var ( "user-code", database.TextArray[string]{"a", "b", "c"}, []string{"projectID", "clientID"}, + "appName", + "projectName", } expectedDeviceAuth = &domain.AuthRequestDevice{ - ClientID: "client-id", - DeviceCode: "device1", - UserCode: "user-code", - Scopes: []string{"a", "b", "c"}, - Audience: []string{"projectID", "clientID"}, + ClientID: "client-id", + DeviceCode: "device1", + UserCode: "user-code", + Scopes: []string{"a", "b", "c"}, + Audience: []string{"projectID", "clientID"}, + AppName: "appName", + ProjectName: "projectName", } ) diff --git a/internal/query/idp_template.go b/internal/query/idp_template.go index dd36cee196..a63cb6f485 100644 --- a/internal/query/idp_template.go +++ b/internal/query/idp_template.go @@ -64,6 +64,7 @@ type OAuthIDPTemplate struct { UserEndpoint string Scopes database.TextArray[string] IDAttribute string + UsePKCE bool } type OIDCIDPTemplate struct { @@ -73,6 +74,7 @@ type OIDCIDPTemplate struct { Issuer string Scopes database.TextArray[string] IsIDTokenMapping bool + UsePKCE bool } type JWTIDPTemplate struct { @@ -142,6 +144,7 @@ type LDAPIDPTemplate struct { UserObjectClasses []string UserFilters []string Timeout time.Duration + RootCA []byte idp.LDAPAttributes } @@ -277,6 +280,10 @@ var ( name: projection.OAuthIDAttributeCol, table: oauthIdpTemplateTable, } + OAuthUsePKCECol = Column{ + name: projection.OAuthUsePKCECol, + table: oauthIdpTemplateTable, + } ) var ( @@ -312,6 +319,10 @@ var ( name: projection.OIDCIDTokenMappingCol, table: oidcIdpTemplateTable, } + OIDCUsePKCECol = Column{ + name: projection.OIDCUsePKCECol, + table: oidcIdpTemplateTable, + } ) var ( @@ -580,6 +591,10 @@ var ( name: projection.LDAPTimeoutCol, table: ldapIdpTemplateTable, } + LDAPRootCACol = Column{ + name: projection.LDAPRootCACol, + table: ldapIdpTemplateTable, + } LDAPIDAttributeCol = Column{ name: projection.LDAPIDAttributeCol, table: ldapIdpTemplateTable, @@ -874,6 +889,7 @@ func prepareIDPTemplateByIDQuery(ctx context.Context, db prepareDatabase) (sq.Se OAuthUserEndpointCol.identifier(), OAuthScopesCol.identifier(), OAuthIDAttributeCol.identifier(), + OAuthUsePKCECol.identifier(), // oidc OIDCIDCol.identifier(), OIDCIssuerCol.identifier(), @@ -881,6 +897,7 @@ func prepareIDPTemplateByIDQuery(ctx context.Context, db prepareDatabase) (sq.Se OIDCClientSecretCol.identifier(), OIDCScopesCol.identifier(), OIDCIDTokenMappingCol.identifier(), + OIDCUsePKCECol.identifier(), // jwt JWTIDCol.identifier(), JWTIssuerCol.identifier(), @@ -943,6 +960,7 @@ func prepareIDPTemplateByIDQuery(ctx context.Context, db prepareDatabase) (sq.Se LDAPUserObjectClassesCol.identifier(), LDAPUserFiltersCol.identifier(), LDAPTimeoutCol.identifier(), + LDAPRootCACol.identifier(), LDAPIDAttributeCol.identifier(), LDAPFirstNameAttributeCol.identifier(), LDAPLastNameAttributeCol.identifier(), @@ -990,6 +1008,7 @@ func prepareIDPTemplateByIDQuery(ctx context.Context, db prepareDatabase) (sq.Se oauthUserEndpoint := sql.NullString{} oauthScopes := database.TextArray[string]{} oauthIDAttribute := sql.NullString{} + oauthUserPKCE := sql.NullBool{} oidcID := sql.NullString{} oidcIssuer := sql.NullString{} @@ -997,6 +1016,7 @@ func prepareIDPTemplateByIDQuery(ctx context.Context, db prepareDatabase) (sq.Se oidcClientSecret := new(crypto.CryptoValue) oidcScopes := database.TextArray[string]{} oidcIDTokenMapping := sql.NullBool{} + oidcUserPKCE := sql.NullBool{} jwtID := sql.NullString{} jwtIssuer := sql.NullString{} @@ -1059,6 +1079,7 @@ func prepareIDPTemplateByIDQuery(ctx context.Context, db prepareDatabase) (sq.Se ldapUserObjectClasses := database.TextArray[string]{} ldapUserFilters := database.TextArray[string]{} ldapTimeout := sql.NullInt64{} + var ldapRootCA []byte ldapIDAttribute := sql.NullString{} ldapFirstNameAttribute := sql.NullString{} ldapLastNameAttribute := sql.NullString{} @@ -1104,6 +1125,7 @@ func prepareIDPTemplateByIDQuery(ctx context.Context, db prepareDatabase) (sq.Se &oauthUserEndpoint, &oauthScopes, &oauthIDAttribute, + &oauthUserPKCE, // oidc &oidcID, &oidcIssuer, @@ -1111,6 +1133,7 @@ func prepareIDPTemplateByIDQuery(ctx context.Context, db prepareDatabase) (sq.Se &oidcClientSecret, &oidcScopes, &oidcIDTokenMapping, + &oidcUserPKCE, // jwt &jwtID, &jwtIssuer, @@ -1173,6 +1196,7 @@ func prepareIDPTemplateByIDQuery(ctx context.Context, db prepareDatabase) (sq.Se &ldapUserObjectClasses, &ldapUserFilters, &ldapTimeout, + &ldapRootCA, &ldapIDAttribute, &ldapFirstNameAttribute, &ldapLastNameAttribute, @@ -1213,6 +1237,7 @@ func prepareIDPTemplateByIDQuery(ctx context.Context, db prepareDatabase) (sq.Se UserEndpoint: oauthUserEndpoint.String, Scopes: oauthScopes, IDAttribute: oauthIDAttribute.String, + UsePKCE: oauthUserPKCE.Bool, } } if oidcID.Valid { @@ -1223,6 +1248,7 @@ func prepareIDPTemplateByIDQuery(ctx context.Context, db prepareDatabase) (sq.Se Issuer: oidcIssuer.String, Scopes: oidcScopes, IsIDTokenMapping: oidcIDTokenMapping.Bool, + UsePKCE: oidcUserPKCE.Bool, } } if jwtID.Valid { @@ -1312,6 +1338,7 @@ func prepareIDPTemplateByIDQuery(ctx context.Context, db prepareDatabase) (sq.Se UserObjectClasses: ldapUserObjectClasses, UserFilters: ldapUserFilters, Timeout: time.Duration(ldapTimeout.Int64), + RootCA: ldapRootCA, LDAPAttributes: idp.LDAPAttributes{ IDAttribute: ldapIDAttribute.String, FirstNameAttribute: ldapFirstNameAttribute.String, @@ -1369,6 +1396,7 @@ func prepareIDPTemplatesQuery(ctx context.Context, db prepareDatabase) (sq.Selec OAuthUserEndpointCol.identifier(), OAuthScopesCol.identifier(), OAuthIDAttributeCol.identifier(), + OAuthUsePKCECol.identifier(), // oidc OIDCIDCol.identifier(), OIDCIssuerCol.identifier(), @@ -1376,6 +1404,7 @@ func prepareIDPTemplatesQuery(ctx context.Context, db prepareDatabase) (sq.Selec OIDCClientSecretCol.identifier(), OIDCScopesCol.identifier(), OIDCIDTokenMappingCol.identifier(), + OIDCUsePKCECol.identifier(), // jwt JWTIDCol.identifier(), JWTIssuerCol.identifier(), @@ -1438,6 +1467,7 @@ func prepareIDPTemplatesQuery(ctx context.Context, db prepareDatabase) (sq.Selec LDAPUserObjectClassesCol.identifier(), LDAPUserFiltersCol.identifier(), LDAPTimeoutCol.identifier(), + LDAPRootCACol.identifier(), LDAPIDAttributeCol.identifier(), LDAPFirstNameAttributeCol.identifier(), LDAPLastNameAttributeCol.identifier(), @@ -1490,6 +1520,7 @@ func prepareIDPTemplatesQuery(ctx context.Context, db prepareDatabase) (sq.Selec oauthUserEndpoint := sql.NullString{} oauthScopes := database.TextArray[string]{} oauthIDAttribute := sql.NullString{} + oauthUserPKCE := sql.NullBool{} oidcID := sql.NullString{} oidcIssuer := sql.NullString{} @@ -1497,6 +1528,7 @@ func prepareIDPTemplatesQuery(ctx context.Context, db prepareDatabase) (sq.Selec oidcClientSecret := new(crypto.CryptoValue) oidcScopes := database.TextArray[string]{} oidcIDTokenMapping := sql.NullBool{} + oidcUserPKCE := sql.NullBool{} jwtID := sql.NullString{} jwtIssuer := sql.NullString{} @@ -1559,6 +1591,7 @@ func prepareIDPTemplatesQuery(ctx context.Context, db prepareDatabase) (sq.Selec ldapUserObjectClasses := database.TextArray[string]{} ldapUserFilters := database.TextArray[string]{} ldapTimeout := sql.NullInt64{} + var ldapRootCA []byte ldapIDAttribute := sql.NullString{} ldapFirstNameAttribute := sql.NullString{} ldapLastNameAttribute := sql.NullString{} @@ -1604,6 +1637,7 @@ func prepareIDPTemplatesQuery(ctx context.Context, db prepareDatabase) (sq.Selec &oauthUserEndpoint, &oauthScopes, &oauthIDAttribute, + &oauthUserPKCE, // oidc &oidcID, &oidcIssuer, @@ -1611,6 +1645,7 @@ func prepareIDPTemplatesQuery(ctx context.Context, db prepareDatabase) (sq.Selec &oidcClientSecret, &oidcScopes, &oidcIDTokenMapping, + &oidcUserPKCE, // jwt &jwtID, &jwtIssuer, @@ -1673,6 +1708,7 @@ func prepareIDPTemplatesQuery(ctx context.Context, db prepareDatabase) (sq.Selec &ldapUserObjectClasses, &ldapUserFilters, &ldapTimeout, + &ldapRootCA, &ldapIDAttribute, &ldapFirstNameAttribute, &ldapLastNameAttribute, @@ -1712,6 +1748,7 @@ func prepareIDPTemplatesQuery(ctx context.Context, db prepareDatabase) (sq.Selec UserEndpoint: oauthUserEndpoint.String, Scopes: oauthScopes, IDAttribute: oauthIDAttribute.String, + UsePKCE: oauthUserPKCE.Bool, } } if oidcID.Valid { @@ -1722,6 +1759,7 @@ func prepareIDPTemplatesQuery(ctx context.Context, db prepareDatabase) (sq.Selec Issuer: oidcIssuer.String, Scopes: oidcScopes, IsIDTokenMapping: oidcIDTokenMapping.Bool, + UsePKCE: oidcUserPKCE.Bool, } } if jwtID.Valid { @@ -1811,6 +1849,7 @@ func prepareIDPTemplatesQuery(ctx context.Context, db prepareDatabase) (sq.Selec UserObjectClasses: ldapUserObjectClasses, UserFilters: ldapUserFilters, Timeout: time.Duration(ldapTimeout.Int64), + RootCA: ldapRootCA, LDAPAttributes: idp.LDAPAttributes{ IDAttribute: ldapIDAttribute.String, FirstNameAttribute: ldapFirstNameAttribute.String, diff --git a/internal/query/idp_template_test.go b/internal/query/idp_template_test.go index c5bee3a000..bee19e492a 100644 --- a/internal/query/idp_template_test.go +++ b/internal/query/idp_template_test.go @@ -39,6 +39,7 @@ var ( ` projections.idp_templates6_oauth2.user_endpoint,` + ` projections.idp_templates6_oauth2.scopes,` + ` projections.idp_templates6_oauth2.id_attribute,` + + ` projections.idp_templates6_oauth2.use_pkce,` + // oidc ` projections.idp_templates6_oidc.idp_id,` + ` projections.idp_templates6_oidc.issuer,` + @@ -46,6 +47,7 @@ var ( ` projections.idp_templates6_oidc.client_secret,` + ` projections.idp_templates6_oidc.scopes,` + ` projections.idp_templates6_oidc.id_token_mapping,` + + ` projections.idp_templates6_oidc.use_pkce,` + // jwt ` projections.idp_templates6_jwt.idp_id,` + ` projections.idp_templates6_jwt.issuer,` + @@ -98,29 +100,30 @@ var ( ` projections.idp_templates6_saml.name_id_format,` + ` projections.idp_templates6_saml.transient_mapping_attribute_name,` + // ldap - ` projections.idp_templates6_ldap2.idp_id,` + - ` projections.idp_templates6_ldap2.servers,` + - ` projections.idp_templates6_ldap2.start_tls,` + - ` projections.idp_templates6_ldap2.base_dn,` + - ` projections.idp_templates6_ldap2.bind_dn,` + - ` projections.idp_templates6_ldap2.bind_password,` + - ` projections.idp_templates6_ldap2.user_base,` + - ` projections.idp_templates6_ldap2.user_object_classes,` + - ` projections.idp_templates6_ldap2.user_filters,` + - ` projections.idp_templates6_ldap2.timeout,` + - ` projections.idp_templates6_ldap2.id_attribute,` + - ` projections.idp_templates6_ldap2.first_name_attribute,` + - ` projections.idp_templates6_ldap2.last_name_attribute,` + - ` projections.idp_templates6_ldap2.display_name_attribute,` + - ` projections.idp_templates6_ldap2.nick_name_attribute,` + - ` projections.idp_templates6_ldap2.preferred_username_attribute,` + - ` projections.idp_templates6_ldap2.email_attribute,` + - ` projections.idp_templates6_ldap2.email_verified,` + - ` projections.idp_templates6_ldap2.phone_attribute,` + - ` projections.idp_templates6_ldap2.phone_verified_attribute,` + - ` projections.idp_templates6_ldap2.preferred_language_attribute,` + - ` projections.idp_templates6_ldap2.avatar_url_attribute,` + - ` projections.idp_templates6_ldap2.profile_attribute,` + + ` projections.idp_templates6_ldap3.idp_id,` + + ` projections.idp_templates6_ldap3.servers,` + + ` projections.idp_templates6_ldap3.start_tls,` + + ` projections.idp_templates6_ldap3.base_dn,` + + ` projections.idp_templates6_ldap3.bind_dn,` + + ` projections.idp_templates6_ldap3.bind_password,` + + ` projections.idp_templates6_ldap3.user_base,` + + ` projections.idp_templates6_ldap3.user_object_classes,` + + ` projections.idp_templates6_ldap3.user_filters,` + + ` projections.idp_templates6_ldap3.timeout,` + + ` projections.idp_templates6_ldap3.rootCA,` + + ` projections.idp_templates6_ldap3.id_attribute,` + + ` projections.idp_templates6_ldap3.first_name_attribute,` + + ` projections.idp_templates6_ldap3.last_name_attribute,` + + ` projections.idp_templates6_ldap3.display_name_attribute,` + + ` projections.idp_templates6_ldap3.nick_name_attribute,` + + ` projections.idp_templates6_ldap3.preferred_username_attribute,` + + ` projections.idp_templates6_ldap3.email_attribute,` + + ` projections.idp_templates6_ldap3.email_verified,` + + ` projections.idp_templates6_ldap3.phone_attribute,` + + ` projections.idp_templates6_ldap3.phone_verified_attribute,` + + ` projections.idp_templates6_ldap3.preferred_language_attribute,` + + ` projections.idp_templates6_ldap3.avatar_url_attribute,` + + ` projections.idp_templates6_ldap3.profile_attribute,` + // apple ` projections.idp_templates6_apple.idp_id,` + ` projections.idp_templates6_apple.client_id,` + @@ -139,7 +142,7 @@ var ( ` LEFT JOIN projections.idp_templates6_gitlab_self_hosted ON projections.idp_templates6.id = projections.idp_templates6_gitlab_self_hosted.idp_id AND projections.idp_templates6.instance_id = projections.idp_templates6_gitlab_self_hosted.instance_id` + ` LEFT JOIN projections.idp_templates6_google ON projections.idp_templates6.id = projections.idp_templates6_google.idp_id AND projections.idp_templates6.instance_id = projections.idp_templates6_google.instance_id` + ` LEFT JOIN projections.idp_templates6_saml ON projections.idp_templates6.id = projections.idp_templates6_saml.idp_id AND projections.idp_templates6.instance_id = projections.idp_templates6_saml.instance_id` + - ` LEFT JOIN projections.idp_templates6_ldap2 ON projections.idp_templates6.id = projections.idp_templates6_ldap2.idp_id AND projections.idp_templates6.instance_id = projections.idp_templates6_ldap2.instance_id` + + ` LEFT JOIN projections.idp_templates6_ldap3 ON projections.idp_templates6.id = projections.idp_templates6_ldap3.idp_id AND projections.idp_templates6.instance_id = projections.idp_templates6_ldap3.instance_id` + ` LEFT JOIN projections.idp_templates6_apple ON projections.idp_templates6.id = projections.idp_templates6_apple.idp_id AND projections.idp_templates6.instance_id = projections.idp_templates6_apple.instance_id` + ` AS OF SYSTEM TIME '-1 ms'` idpTemplateCols = []string{ @@ -166,6 +169,7 @@ var ( "user_endpoint", "scopes", "id_attribute", + "use_pkce", // oidc config "id_id", "issuer", @@ -173,6 +177,7 @@ var ( "client_secret", "scopes", "id_token_mapping", + "use_pkce", // jwt "idp_id", "issuer", @@ -235,6 +240,7 @@ var ( "user_object_classes", "user_filters", "timeout", + "rootCA", "id_attribute", "first_name_attribute", "last_name_attribute", @@ -279,6 +285,7 @@ var ( ` projections.idp_templates6_oauth2.user_endpoint,` + ` projections.idp_templates6_oauth2.scopes,` + ` projections.idp_templates6_oauth2.id_attribute,` + + ` projections.idp_templates6_oauth2.use_pkce,` + // oidc ` projections.idp_templates6_oidc.idp_id,` + ` projections.idp_templates6_oidc.issuer,` + @@ -286,6 +293,7 @@ var ( ` projections.idp_templates6_oidc.client_secret,` + ` projections.idp_templates6_oidc.scopes,` + ` projections.idp_templates6_oidc.id_token_mapping,` + + ` projections.idp_templates6_oidc.use_pkce,` + // jwt ` projections.idp_templates6_jwt.idp_id,` + ` projections.idp_templates6_jwt.issuer,` + @@ -338,29 +346,30 @@ var ( ` projections.idp_templates6_saml.name_id_format,` + ` projections.idp_templates6_saml.transient_mapping_attribute_name,` + // ldap - ` projections.idp_templates6_ldap2.idp_id,` + - ` projections.idp_templates6_ldap2.servers,` + - ` projections.idp_templates6_ldap2.start_tls,` + - ` projections.idp_templates6_ldap2.base_dn,` + - ` projections.idp_templates6_ldap2.bind_dn,` + - ` projections.idp_templates6_ldap2.bind_password,` + - ` projections.idp_templates6_ldap2.user_base,` + - ` projections.idp_templates6_ldap2.user_object_classes,` + - ` projections.idp_templates6_ldap2.user_filters,` + - ` projections.idp_templates6_ldap2.timeout,` + - ` projections.idp_templates6_ldap2.id_attribute,` + - ` projections.idp_templates6_ldap2.first_name_attribute,` + - ` projections.idp_templates6_ldap2.last_name_attribute,` + - ` projections.idp_templates6_ldap2.display_name_attribute,` + - ` projections.idp_templates6_ldap2.nick_name_attribute,` + - ` projections.idp_templates6_ldap2.preferred_username_attribute,` + - ` projections.idp_templates6_ldap2.email_attribute,` + - ` projections.idp_templates6_ldap2.email_verified,` + - ` projections.idp_templates6_ldap2.phone_attribute,` + - ` projections.idp_templates6_ldap2.phone_verified_attribute,` + - ` projections.idp_templates6_ldap2.preferred_language_attribute,` + - ` projections.idp_templates6_ldap2.avatar_url_attribute,` + - ` projections.idp_templates6_ldap2.profile_attribute,` + + ` projections.idp_templates6_ldap3.idp_id,` + + ` projections.idp_templates6_ldap3.servers,` + + ` projections.idp_templates6_ldap3.start_tls,` + + ` projections.idp_templates6_ldap3.base_dn,` + + ` projections.idp_templates6_ldap3.bind_dn,` + + ` projections.idp_templates6_ldap3.bind_password,` + + ` projections.idp_templates6_ldap3.user_base,` + + ` projections.idp_templates6_ldap3.user_object_classes,` + + ` projections.idp_templates6_ldap3.user_filters,` + + ` projections.idp_templates6_ldap3.timeout,` + + ` projections.idp_templates6_ldap3.rootCA,` + + ` projections.idp_templates6_ldap3.id_attribute,` + + ` projections.idp_templates6_ldap3.first_name_attribute,` + + ` projections.idp_templates6_ldap3.last_name_attribute,` + + ` projections.idp_templates6_ldap3.display_name_attribute,` + + ` projections.idp_templates6_ldap3.nick_name_attribute,` + + ` projections.idp_templates6_ldap3.preferred_username_attribute,` + + ` projections.idp_templates6_ldap3.email_attribute,` + + ` projections.idp_templates6_ldap3.email_verified,` + + ` projections.idp_templates6_ldap3.phone_attribute,` + + ` projections.idp_templates6_ldap3.phone_verified_attribute,` + + ` projections.idp_templates6_ldap3.preferred_language_attribute,` + + ` projections.idp_templates6_ldap3.avatar_url_attribute,` + + ` projections.idp_templates6_ldap3.profile_attribute,` + // apple ` projections.idp_templates6_apple.idp_id,` + ` projections.idp_templates6_apple.client_id,` + @@ -380,7 +389,7 @@ var ( ` LEFT JOIN projections.idp_templates6_gitlab_self_hosted ON projections.idp_templates6.id = projections.idp_templates6_gitlab_self_hosted.idp_id AND projections.idp_templates6.instance_id = projections.idp_templates6_gitlab_self_hosted.instance_id` + ` LEFT JOIN projections.idp_templates6_google ON projections.idp_templates6.id = projections.idp_templates6_google.idp_id AND projections.idp_templates6.instance_id = projections.idp_templates6_google.instance_id` + ` LEFT JOIN projections.idp_templates6_saml ON projections.idp_templates6.id = projections.idp_templates6_saml.idp_id AND projections.idp_templates6.instance_id = projections.idp_templates6_saml.instance_id` + - ` LEFT JOIN projections.idp_templates6_ldap2 ON projections.idp_templates6.id = projections.idp_templates6_ldap2.idp_id AND projections.idp_templates6.instance_id = projections.idp_templates6_ldap2.instance_id` + + ` LEFT JOIN projections.idp_templates6_ldap3 ON projections.idp_templates6.id = projections.idp_templates6_ldap3.idp_id AND projections.idp_templates6.instance_id = projections.idp_templates6_ldap3.instance_id` + ` LEFT JOIN projections.idp_templates6_apple ON projections.idp_templates6.id = projections.idp_templates6_apple.idp_id AND projections.idp_templates6.instance_id = projections.idp_templates6_apple.instance_id` + ` AS OF SYSTEM TIME '-1 ms'` idpTemplatesCols = []string{ @@ -407,6 +416,7 @@ var ( "user_endpoint", "scopes", "id_attribute", + "use_pkce", // oidc config "id_id", "issuer", @@ -414,6 +424,7 @@ var ( "client_secret", "scopes", "id_token_mapping", + "use_pkce", // jwt "idp_id", "issuer", @@ -476,6 +487,7 @@ var ( "user_object_classes", "user_filters", "timeout", + "rootCA", "id_attribute", "first_name_attribute", "last_name_attribute", @@ -560,6 +572,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { "user", database.TextArray[string]{"profile"}, "id-attribute", + true, // oidc nil, nil, @@ -567,6 +580,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // jwt nil, nil, @@ -642,6 +656,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // apple nil, nil, @@ -676,6 +691,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { UserEndpoint: "user", Scopes: []string{"profile"}, IDAttribute: "id-attribute", + UsePKCE: true, }, }, }, @@ -710,6 +726,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // oidc "idp-id", "issuer", @@ -717,6 +734,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, database.TextArray[string]{"profile"}, true, + true, // jwt nil, nil, @@ -792,6 +810,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // apple nil, nil, @@ -824,6 +843,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { ClientSecret: nil, Scopes: []string{"profile"}, IsIDTokenMapping: true, + UsePKCE: true, }, }, }, @@ -858,6 +878,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // oidc nil, nil, @@ -865,6 +886,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // jwt "idp-id", "issuer", @@ -940,6 +962,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // apple nil, nil, @@ -1005,6 +1028,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // oidc nil, nil, @@ -1012,6 +1036,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // jwt nil, nil, @@ -1087,6 +1112,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // apple nil, nil, @@ -1151,6 +1177,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // oidc nil, nil, @@ -1158,6 +1185,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // jwt nil, nil, @@ -1233,6 +1261,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // apple nil, nil, @@ -1297,6 +1326,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // oidc nil, nil, @@ -1304,6 +1334,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // jwt nil, nil, @@ -1379,6 +1410,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // apple nil, nil, @@ -1444,6 +1476,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // oidc nil, nil, @@ -1451,6 +1484,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // jwt nil, nil, @@ -1526,6 +1560,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // apple nil, nil, @@ -1590,6 +1625,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // oidc nil, nil, @@ -1597,6 +1633,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // jwt nil, nil, @@ -1672,6 +1709,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // apple nil, nil, @@ -1740,6 +1778,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // oidc nil, nil, @@ -1747,6 +1786,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // jwt nil, nil, @@ -1809,6 +1849,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { database.TextArray[string]{"object"}, database.TextArray[string]{"filter"}, time.Duration(30000000000), + []byte("certificate"), "id", "first", "last", @@ -1857,6 +1898,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { UserObjectClasses: []string{"object"}, UserFilters: []string{"filter"}, Timeout: time.Duration(30000000000), + RootCA: []byte("certificate"), LDAPAttributes: idp.LDAPAttributes{ IDAttribute: "id", FirstNameAttribute: "first", @@ -1906,6 +1948,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // oidc nil, nil, @@ -1913,6 +1956,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // jwt nil, nil, @@ -1988,6 +2032,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // apple "idp-id", "client_id", @@ -2054,6 +2099,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // oidc nil, nil, @@ -2061,6 +2107,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // jwt nil, nil, @@ -2136,6 +2183,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // apple nil, nil, @@ -2230,6 +2278,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // oidc nil, nil, @@ -2237,6 +2286,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // jwt nil, nil, @@ -2299,6 +2349,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { database.TextArray[string]{"object"}, database.TextArray[string]{"filter"}, time.Duration(30000000000), + []byte("certificate"), "id", "first", "last", @@ -2353,6 +2404,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { UserObjectClasses: []string{"object"}, UserFilters: []string{"filter"}, Timeout: time.Duration(30000000000), + RootCA: []byte("certificate"), LDAPAttributes: idp.LDAPAttributes{ IDAttribute: "id", FirstNameAttribute: "first", @@ -2405,6 +2457,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // oidc nil, nil, @@ -2412,6 +2465,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // jwt nil, nil, @@ -2487,6 +2541,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // apple nil, nil, @@ -2554,6 +2609,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // oidc nil, nil, @@ -2561,6 +2617,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // jwt nil, nil, @@ -2623,6 +2680,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { database.TextArray[string]{"object"}, database.TextArray[string]{"filter"}, time.Duration(30000000000), + []byte("certificate"), "id", "first", "last", @@ -2668,6 +2726,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // oidc nil, nil, @@ -2675,6 +2734,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // jwt nil, nil, @@ -2750,6 +2810,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // apple nil, nil, @@ -2782,6 +2843,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // oidc nil, nil, @@ -2789,6 +2851,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // jwt nil, nil, @@ -2864,6 +2927,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // apple nil, nil, @@ -2896,6 +2960,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { "user", database.TextArray[string]{"profile"}, "id-attribute", + true, // oidc nil, nil, @@ -2903,6 +2968,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // jwt nil, nil, @@ -2978,6 +3044,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // apple nil, nil, @@ -3010,6 +3077,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // oidc "idp-id-oidc", "issuer", @@ -3017,6 +3085,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, database.TextArray[string]{"profile"}, true, + true, // jwt nil, nil, @@ -3092,6 +3161,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // apple nil, nil, @@ -3124,6 +3194,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // oidc nil, nil, @@ -3131,6 +3202,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // jwt "idp-id-jwt", "issuer", @@ -3206,6 +3278,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { nil, nil, nil, + nil, // apple nil, nil, @@ -3247,6 +3320,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { UserObjectClasses: []string{"object"}, UserFilters: []string{"filter"}, Timeout: time.Duration(30000000000), + RootCA: []byte("certificate"), LDAPAttributes: idp.LDAPAttributes{ IDAttribute: "id", FirstNameAttribute: "first", @@ -3337,6 +3411,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { UserEndpoint: "user", Scopes: []string{"profile"}, IDAttribute: "id-attribute", + UsePKCE: true, }, }, { @@ -3361,6 +3436,7 @@ func Test_IDPTemplateTemplatesPrepares(t *testing.T) { ClientSecret: nil, Scopes: []string{"profile"}, IsIDTokenMapping: true, + UsePKCE: true, }, }, { diff --git a/internal/query/instance_features.go b/internal/query/instance_features.go index 646404ce6c..911edaa606 100644 --- a/internal/query/instance_features.go +++ b/internal/query/instance_features.go @@ -23,6 +23,7 @@ type InstanceFeatures struct { EnableBackChannelLogout FeatureSource[bool] LoginV2 FeatureSource[*feature.LoginV2] PermissionCheckV2 FeatureSource[bool] + ConsoleUseV2UserApi FeatureSource[bool] } func (q *Queries) GetInstanceFeatures(ctx context.Context, cascade bool) (_ *InstanceFeatures, err error) { diff --git a/internal/query/instance_features_model.go b/internal/query/instance_features_model.go index b9839bf359..11deb30f34 100644 --- a/internal/query/instance_features_model.go +++ b/internal/query/instance_features_model.go @@ -76,6 +76,7 @@ func (m *InstanceFeaturesReadModel) Query() *eventstore.SearchQueryBuilder { feature_v2.InstanceEnableBackChannelLogout, feature_v2.InstanceLoginVersion, feature_v2.InstancePermissionCheckV2, + feature_v2.InstanceConsoleUseV2UserApi, ). Builder().ResourceOwner(m.ResourceOwner) } @@ -142,6 +143,8 @@ func reduceInstanceFeatureSet[T any](features *InstanceFeatures, event *feature_ features.LoginV2.set(level, event.Value) case feature.KeyPermissionCheckV2: features.PermissionCheckV2.set(level, event.Value) + case feature.KeyConsoleUseV2UserApi: + features.ConsoleUseV2UserApi.set(level, event.Value) } return nil } diff --git a/internal/query/permission.go b/internal/query/permission.go index 96d7db6c6a..aeda33e541 100644 --- a/internal/query/permission.go +++ b/internal/query/permission.go @@ -11,8 +11,9 @@ import ( ) const ( - // eventstore.permitted_orgs(instanceid text, userid text, perm text) - wherePermittedOrgsClause = "%s = ANY(eventstore.permitted_orgs(?, ?, ?))" + // eventstore.permitted_orgs(instanceid text, userid text, perm text, filter_orgs text) + wherePermittedOrgsClause = "%s = ANY(eventstore.permitted_orgs(?, ?, ?, ?))" + wherePermittedOrgsOrCurrentUserClause = "(" + wherePermittedOrgsClause + " OR %s = ?" + ")" ) // wherePermittedOrgs sets a `WHERE` clause to the query that filters the orgs @@ -23,13 +24,29 @@ const ( // and is typically the `resource_owner` column in ZITADEL. // We use full identifiers in the query builder so this function should be // called with something like `UserResourceOwnerCol.identifier()` for example. -func wherePermittedOrgs(ctx context.Context, query sq.SelectBuilder, orgIDColumn, permission string) sq.SelectBuilder { +func wherePermittedOrgs(ctx context.Context, query sq.SelectBuilder, filterOrgIds, orgIDColumn, permission string) sq.SelectBuilder { userID := authz.GetCtxData(ctx).UserID logging.WithFields("permission_check_v2_flag", authz.GetFeatures(ctx).PermissionCheckV2, "org_id_column", orgIDColumn, "permission", permission, "user_id", userID).Debug("permitted orgs check used") + return query.Where( fmt.Sprintf(wherePermittedOrgsClause, orgIDColumn), authz.GetInstance(ctx).InstanceID(), userID, permission, + filterOrgIds, + ) +} + +func wherePermittedOrgsOrCurrentUser(ctx context.Context, query sq.SelectBuilder, filterOrgIds, orgIDColumn, userIdColum, permission string) sq.SelectBuilder { + userID := authz.GetCtxData(ctx).UserID + logging.WithFields("permission_check_v2_flag", authz.GetFeatures(ctx).PermissionCheckV2, "org_id_column", orgIDColumn, "user_id_colum", userIdColum, "permission", permission, "user_id", userID).Debug("permitted orgs check used") + + return query.Where( + fmt.Sprintf(wherePermittedOrgsOrCurrentUserClause, orgIDColumn, userIdColum), + authz.GetInstance(ctx).InstanceID(), + userID, + permission, + filterOrgIds, + userID, ) } diff --git a/internal/query/projection/idp_template.go b/internal/query/projection/idp_template.go index a9d38cfebb..47033e6bbb 100644 --- a/internal/query/projection/idp_template.go +++ b/internal/query/projection/idp_template.go @@ -40,7 +40,7 @@ const ( IDPTemplateGitLabSuffix = "gitlab" IDPTemplateGitLabSelfHostedSuffix = "gitlab_self_hosted" IDPTemplateGoogleSuffix = "google" - IDPTemplateLDAPSuffix = "ldap2" + IDPTemplateLDAPSuffix = "ldap3" IDPTemplateAppleSuffix = "apple" IDPTemplateSAMLSuffix = "saml" @@ -70,6 +70,7 @@ const ( OAuthUserEndpointCol = "user_endpoint" OAuthScopesCol = "scopes" OAuthIDAttributeCol = "id_attribute" + OAuthUsePKCECol = "use_pkce" OIDCIDCol = "idp_id" OIDCInstanceIDCol = "instance_id" @@ -78,6 +79,7 @@ const ( OIDCClientSecretCol = "client_secret" OIDCScopesCol = "scopes" OIDCIDTokenMappingCol = "id_token_mapping" + OIDCUsePKCECol = "use_pkce" JWTIDCol = "idp_id" JWTInstanceIDCol = "instance_id" @@ -139,6 +141,7 @@ const ( LDAPUserObjectClassesCol = "user_object_classes" LDAPUserFiltersCol = "user_filters" LDAPTimeoutCol = "timeout" + LDAPRootCACol = "rootCA" LDAPIDAttributeCol = "id_attribute" LDAPFirstNameAttributeCol = "first_name_attribute" LDAPLastNameAttributeCol = "last_name_attribute" @@ -216,6 +219,7 @@ func (*idpTemplateProjection) Init() *old_handler.Check { handler.NewColumn(OAuthUserEndpointCol, handler.ColumnTypeText), handler.NewColumn(OAuthScopesCol, handler.ColumnTypeTextArray, handler.Nullable()), handler.NewColumn(OAuthIDAttributeCol, handler.ColumnTypeText), + handler.NewColumn(OAuthUsePKCECol, handler.ColumnTypeBool, handler.Default(false)), }, handler.NewPrimaryKey(OAuthInstanceIDCol, OAuthIDCol), IDPTemplateOAuthSuffix, @@ -229,6 +233,7 @@ func (*idpTemplateProjection) Init() *old_handler.Check { handler.NewColumn(OIDCClientSecretCol, handler.ColumnTypeJSONB), handler.NewColumn(OIDCScopesCol, handler.ColumnTypeTextArray, handler.Nullable()), handler.NewColumn(OIDCIDTokenMappingCol, handler.ColumnTypeBool, handler.Default(false)), + handler.NewColumn(OIDCUsePKCECol, handler.ColumnTypeBool, handler.Default(false)), }, handler.NewPrimaryKey(OIDCInstanceIDCol, OIDCIDCol), IDPTemplateOIDCSuffix, @@ -330,6 +335,7 @@ func (*idpTemplateProjection) Init() *old_handler.Check { handler.NewColumn(LDAPUserObjectClassesCol, handler.ColumnTypeTextArray), handler.NewColumn(LDAPUserFiltersCol, handler.ColumnTypeTextArray), handler.NewColumn(LDAPTimeoutCol, handler.ColumnTypeInt64), + handler.NewColumn(LDAPRootCACol, handler.ColumnTypeBytes, handler.Nullable()), handler.NewColumn(LDAPIDAttributeCol, handler.ColumnTypeText, handler.Nullable()), handler.NewColumn(LDAPFirstNameAttributeCol, handler.ColumnTypeText, handler.Nullable()), handler.NewColumn(LDAPLastNameAttributeCol, handler.ColumnTypeText, handler.Nullable()), @@ -720,6 +726,7 @@ func (p *idpTemplateProjection) reduceOAuthIDPAdded(event eventstore.Event) (*ha handler.NewCol(OAuthUserEndpointCol, idpEvent.UserEndpoint), handler.NewCol(OAuthScopesCol, database.TextArray[string](idpEvent.Scopes)), handler.NewCol(OAuthIDAttributeCol, idpEvent.IDAttribute), + handler.NewCol(OAuthUsePKCECol, idpEvent.UsePKCE), }, handler.WithTableSuffix(IDPTemplateOAuthSuffix), ), @@ -811,6 +818,7 @@ func (p *idpTemplateProjection) reduceOIDCIDPAdded(event eventstore.Event) (*han handler.NewCol(OIDCClientSecretCol, idpEvent.ClientSecret), handler.NewCol(OIDCScopesCol, database.TextArray[string](idpEvent.Scopes)), handler.NewCol(OIDCIDTokenMappingCol, idpEvent.IsIDTokenMapping), + handler.NewCol(OIDCUsePKCECol, idpEvent.UsePKCE), }, handler.WithTableSuffix(IDPTemplateOIDCSuffix), ), @@ -1152,6 +1160,7 @@ func (p *idpTemplateProjection) reduceOldOIDCConfigAdded(event eventstore.Event) handler.NewCol(OIDCClientSecretCol, idpEvent.ClientSecret), handler.NewCol(OIDCScopesCol, database.TextArray[string](idpEvent.Scopes)), handler.NewCol(OIDCIDTokenMappingCol, true), + handler.NewCol(OIDCUsePKCECol, false), }, handler.WithTableSuffix(IDPTemplateOIDCSuffix), ), @@ -1896,6 +1905,7 @@ func (p *idpTemplateProjection) reduceLDAPIDPAdded(event eventstore.Event) (*han handler.NewCol(LDAPUserObjectClassesCol, database.TextArray[string](idpEvent.UserObjectClasses)), handler.NewCol(LDAPUserFiltersCol, database.TextArray[string](idpEvent.UserFilters)), handler.NewCol(LDAPTimeoutCol, idpEvent.Timeout), + handler.NewCol(LDAPRootCACol, idpEvent.RootCA), handler.NewCol(LDAPIDAttributeCol, idpEvent.IDAttribute), handler.NewCol(LDAPFirstNameAttributeCol, idpEvent.FirstNameAttribute), handler.NewCol(LDAPLastNameAttributeCol, idpEvent.LastNameAttribute), @@ -2250,6 +2260,9 @@ func reduceOAuthIDPChangedColumns(idpEvent idp.OAuthIDPChangedEvent) []handler.C if idpEvent.IDAttribute != nil { oauthCols = append(oauthCols, handler.NewCol(OAuthIDAttributeCol, *idpEvent.IDAttribute)) } + if idpEvent.UsePKCE != nil { + oauthCols = append(oauthCols, handler.NewCol(OAuthUsePKCECol, *idpEvent.UsePKCE)) + } return oauthCols } @@ -2270,6 +2283,9 @@ func reduceOIDCIDPChangedColumns(idpEvent idp.OIDCIDPChangedEvent) []handler.Col if idpEvent.IsIDTokenMapping != nil { oidcCols = append(oidcCols, handler.NewCol(OIDCIDTokenMappingCol, *idpEvent.IsIDTokenMapping)) } + if idpEvent.UsePKCE != nil { + oidcCols = append(oidcCols, handler.NewCol(OIDCUsePKCECol, *idpEvent.UsePKCE)) + } return oidcCols } @@ -2421,6 +2437,9 @@ func reduceLDAPIDPChangedColumns(idpEvent idp.LDAPIDPChangedEvent) []handler.Col if idpEvent.Timeout != nil { ldapCols = append(ldapCols, handler.NewCol(LDAPTimeoutCol, *idpEvent.Timeout)) } + if idpEvent.RootCA != nil { + ldapCols = append(ldapCols, handler.NewCol(LDAPRootCACol, idpEvent.RootCA)) + } if idpEvent.IDAttribute != nil { ldapCols = append(ldapCols, handler.NewCol(LDAPIDAttributeCol, *idpEvent.IDAttribute)) } diff --git a/internal/query/projection/idp_template_test.go b/internal/query/projection/idp_template_test.go index 6f096a94ce..74adfe22c0 100644 --- a/internal/query/projection/idp_template_test.go +++ b/internal/query/projection/idp_template_test.go @@ -192,6 +192,7 @@ func TestIDPTemplateProjection_reducesOAuth(t *testing.T) { "userEndpoint": "user", "scopes": ["profile"], "idAttribute": "id-attribute", + "usePKCE": false, "isCreationAllowed": true, "isLinkingAllowed": true, "isAutoCreation": true, @@ -227,7 +228,7 @@ func TestIDPTemplateProjection_reducesOAuth(t *testing.T) { }, }, { - expectedStmt: "INSERT INTO projections.idp_templates6_oauth2 (idp_id, instance_id, client_id, client_secret, authorization_endpoint, token_endpoint, user_endpoint, scopes, id_attribute) VALUES ($1, $2, $3, $4, $5, $6, $7, $8, $9)", + expectedStmt: "INSERT INTO projections.idp_templates6_oauth2 (idp_id, instance_id, client_id, client_secret, authorization_endpoint, token_endpoint, user_endpoint, scopes, id_attribute, use_pkce) VALUES ($1, $2, $3, $4, $5, $6, $7, $8, $9, $10)", expectedArgs: []interface{}{ "idp-id", "instance-id", @@ -238,6 +239,7 @@ func TestIDPTemplateProjection_reducesOAuth(t *testing.T) { "user", database.TextArray[string]{"profile"}, "id-attribute", + false, }, }, }, @@ -265,6 +267,7 @@ func TestIDPTemplateProjection_reducesOAuth(t *testing.T) { "userEndpoint": "user", "scopes": ["profile"], "idAttribute": "id-attribute", + "usePKCE": true, "isCreationAllowed": true, "isLinkingAllowed": true, "isAutoCreation": true, @@ -300,7 +303,7 @@ func TestIDPTemplateProjection_reducesOAuth(t *testing.T) { }, }, { - expectedStmt: "INSERT INTO projections.idp_templates6_oauth2 (idp_id, instance_id, client_id, client_secret, authorization_endpoint, token_endpoint, user_endpoint, scopes, id_attribute) VALUES ($1, $2, $3, $4, $5, $6, $7, $8, $9)", + expectedStmt: "INSERT INTO projections.idp_templates6_oauth2 (idp_id, instance_id, client_id, client_secret, authorization_endpoint, token_endpoint, user_endpoint, scopes, id_attribute, use_pkce) VALUES ($1, $2, $3, $4, $5, $6, $7, $8, $9, $10)", expectedArgs: []interface{}{ "idp-id", "instance-id", @@ -311,6 +314,7 @@ func TestIDPTemplateProjection_reducesOAuth(t *testing.T) { "user", database.TextArray[string]{"profile"}, "id-attribute", + true, }, }, }, @@ -380,6 +384,7 @@ func TestIDPTemplateProjection_reducesOAuth(t *testing.T) { "userEndpoint": "user", "scopes": ["profile"], "idAttribute": "id-attribute", + "usePKCE": true, "isCreationAllowed": true, "isLinkingAllowed": true, "isAutoCreation": true, @@ -410,7 +415,7 @@ func TestIDPTemplateProjection_reducesOAuth(t *testing.T) { }, }, { - expectedStmt: "UPDATE projections.idp_templates6_oauth2 SET (client_id, client_secret, authorization_endpoint, token_endpoint, user_endpoint, scopes, id_attribute) = ($1, $2, $3, $4, $5, $6, $7) WHERE (idp_id = $8) AND (instance_id = $9)", + expectedStmt: "UPDATE projections.idp_templates6_oauth2 SET (client_id, client_secret, authorization_endpoint, token_endpoint, user_endpoint, scopes, id_attribute, use_pkce) = ($1, $2, $3, $4, $5, $6, $7, $8) WHERE (idp_id = $9) AND (instance_id = $10)", expectedArgs: []interface{}{ "client_id", anyArg{}, @@ -419,6 +424,7 @@ func TestIDPTemplateProjection_reducesOAuth(t *testing.T) { "user", database.TextArray[string]{"profile"}, "id-attribute", + true, "idp-id", "instance-id", }, @@ -2117,6 +2123,7 @@ func TestIDPTemplateProjection_reducesLDAP(t *testing.T) { "userObjectClasses": ["object"], "userFilters": ["filter"], "timeout": 30000000000, + "rootcA": `+stringToJSONByte("certificate")+`, "idAttribute": "id", "firstNameAttribute": "first", "lastNameAttribute": "last", @@ -2165,7 +2172,7 @@ func TestIDPTemplateProjection_reducesLDAP(t *testing.T) { }, }, { - expectedStmt: "INSERT INTO projections.idp_templates6_ldap2 (idp_id, instance_id, servers, start_tls, base_dn, bind_dn, bind_password, user_base, user_object_classes, user_filters, timeout, id_attribute, first_name_attribute, last_name_attribute, display_name_attribute, nick_name_attribute, preferred_username_attribute, email_attribute, email_verified, phone_attribute, phone_verified_attribute, preferred_language_attribute, avatar_url_attribute, profile_attribute) VALUES ($1, $2, $3, $4, $5, $6, $7, $8, $9, $10, $11, $12, $13, $14, $15, $16, $17, $18, $19, $20, $21, $22, $23, $24)", + expectedStmt: "INSERT INTO projections.idp_templates6_ldap3 (idp_id, instance_id, servers, start_tls, base_dn, bind_dn, bind_password, user_base, user_object_classes, user_filters, timeout, rootCA, id_attribute, first_name_attribute, last_name_attribute, display_name_attribute, nick_name_attribute, preferred_username_attribute, email_attribute, email_verified, phone_attribute, phone_verified_attribute, preferred_language_attribute, avatar_url_attribute, profile_attribute) VALUES ($1, $2, $3, $4, $5, $6, $7, $8, $9, $10, $11, $12, $13, $14, $15, $16, $17, $18, $19, $20, $21, $22, $23, $24, $25)", expectedArgs: []interface{}{ "idp-id", "instance-id", @@ -2178,6 +2185,7 @@ func TestIDPTemplateProjection_reducesLDAP(t *testing.T) { database.TextArray[string]{"object"}, database.TextArray[string]{"filter"}, time.Duration(30000000000), + []byte("certificate"), "id", "first", "last", @@ -2220,6 +2228,7 @@ func TestIDPTemplateProjection_reducesLDAP(t *testing.T) { "userObjectClasses": ["object"], "userFilters": ["filter"], "timeout": 30000000000, + "rootcA": `+stringToJSONByte("certificate")+`, "idAttribute": "id", "firstNameAttribute": "first", "lastNameAttribute": "last", @@ -2268,7 +2277,7 @@ func TestIDPTemplateProjection_reducesLDAP(t *testing.T) { }, }, { - expectedStmt: "INSERT INTO projections.idp_templates6_ldap2 (idp_id, instance_id, servers, start_tls, base_dn, bind_dn, bind_password, user_base, user_object_classes, user_filters, timeout, id_attribute, first_name_attribute, last_name_attribute, display_name_attribute, nick_name_attribute, preferred_username_attribute, email_attribute, email_verified, phone_attribute, phone_verified_attribute, preferred_language_attribute, avatar_url_attribute, profile_attribute) VALUES ($1, $2, $3, $4, $5, $6, $7, $8, $9, $10, $11, $12, $13, $14, $15, $16, $17, $18, $19, $20, $21, $22, $23, $24)", + expectedStmt: "INSERT INTO projections.idp_templates6_ldap3 (idp_id, instance_id, servers, start_tls, base_dn, bind_dn, bind_password, user_base, user_object_classes, user_filters, timeout, rootCA, id_attribute, first_name_attribute, last_name_attribute, display_name_attribute, nick_name_attribute, preferred_username_attribute, email_attribute, email_verified, phone_attribute, phone_verified_attribute, preferred_language_attribute, avatar_url_attribute, profile_attribute) VALUES ($1, $2, $3, $4, $5, $6, $7, $8, $9, $10, $11, $12, $13, $14, $15, $16, $17, $18, $19, $20, $21, $22, $23, $24, $25)", expectedArgs: []interface{}{ "idp-id", "instance-id", @@ -2281,6 +2290,7 @@ func TestIDPTemplateProjection_reducesLDAP(t *testing.T) { database.TextArray[string]{"object"}, database.TextArray[string]{"filter"}, time.Duration(30000000000), + []byte("certificate"), "id", "first", "last", @@ -2331,7 +2341,7 @@ func TestIDPTemplateProjection_reducesLDAP(t *testing.T) { }, }, { - expectedStmt: "UPDATE projections.idp_templates6_ldap2 SET base_dn = $1 WHERE (idp_id = $2) AND (instance_id = $3)", + expectedStmt: "UPDATE projections.idp_templates6_ldap3 SET base_dn = $1 WHERE (idp_id = $2) AND (instance_id = $3)", expectedArgs: []interface{}{ "basedn", "idp-id", @@ -2365,6 +2375,7 @@ func TestIDPTemplateProjection_reducesLDAP(t *testing.T) { "userObjectClasses": ["object"], "userFilters": ["filter"], "timeout": 30000000000, + "rootcA": `+stringToJSONByte("certificate")+`, "idAttribute": "id", "firstNameAttribute": "first", "lastNameAttribute": "last", @@ -2408,7 +2419,7 @@ func TestIDPTemplateProjection_reducesLDAP(t *testing.T) { }, }, { - expectedStmt: "UPDATE projections.idp_templates6_ldap2 SET (servers, start_tls, base_dn, bind_dn, bind_password, user_base, user_object_classes, user_filters, timeout, id_attribute, first_name_attribute, last_name_attribute, display_name_attribute, nick_name_attribute, preferred_username_attribute, email_attribute, email_verified, phone_attribute, phone_verified_attribute, preferred_language_attribute, avatar_url_attribute, profile_attribute) = ($1, $2, $3, $4, $5, $6, $7, $8, $9, $10, $11, $12, $13, $14, $15, $16, $17, $18, $19, $20, $21, $22) WHERE (idp_id = $23) AND (instance_id = $24)", + expectedStmt: "UPDATE projections.idp_templates6_ldap3 SET (servers, start_tls, base_dn, bind_dn, bind_password, user_base, user_object_classes, user_filters, timeout, rootCA, id_attribute, first_name_attribute, last_name_attribute, display_name_attribute, nick_name_attribute, preferred_username_attribute, email_attribute, email_verified, phone_attribute, phone_verified_attribute, preferred_language_attribute, avatar_url_attribute, profile_attribute) = ($1, $2, $3, $4, $5, $6, $7, $8, $9, $10, $11, $12, $13, $14, $15, $16, $17, $18, $19, $20, $21, $22, $23) WHERE (idp_id = $24) AND (instance_id = $25)", expectedArgs: []interface{}{ database.TextArray[string]{"server"}, false, @@ -2419,6 +2430,7 @@ func TestIDPTemplateProjection_reducesLDAP(t *testing.T) { database.TextArray[string]{"object"}, database.TextArray[string]{"filter"}, time.Duration(30000000000), + []byte("certificate"), "id", "first", "last", @@ -3075,6 +3087,7 @@ func TestIDPTemplateProjection_reducesOIDC(t *testing.T) { }, "scopes": ["profile"], "idTokenMapping": true, + "usePKCE": true, "isCreationAllowed": true, "isLinkingAllowed": true, "isAutoCreation": true, @@ -3110,7 +3123,7 @@ func TestIDPTemplateProjection_reducesOIDC(t *testing.T) { }, }, { - expectedStmt: "INSERT INTO projections.idp_templates6_oidc (idp_id, instance_id, issuer, client_id, client_secret, scopes, id_token_mapping) VALUES ($1, $2, $3, $4, $5, $6, $7)", + expectedStmt: "INSERT INTO projections.idp_templates6_oidc (idp_id, instance_id, issuer, client_id, client_secret, scopes, id_token_mapping, use_pkce) VALUES ($1, $2, $3, $4, $5, $6, $7, $8)", expectedArgs: []interface{}{ "idp-id", "instance-id", @@ -3119,6 +3132,7 @@ func TestIDPTemplateProjection_reducesOIDC(t *testing.T) { anyArg{}, database.TextArray[string]{"profile"}, true, + true, }, }, }, @@ -3143,6 +3157,7 @@ func TestIDPTemplateProjection_reducesOIDC(t *testing.T) { }, "scopes": ["profile"], "idTokenMapping": true, + "usePKCE": true, "isCreationAllowed": true, "isLinkingAllowed": true, "isAutoCreation": true, @@ -3178,7 +3193,7 @@ func TestIDPTemplateProjection_reducesOIDC(t *testing.T) { }, }, { - expectedStmt: "INSERT INTO projections.idp_templates6_oidc (idp_id, instance_id, issuer, client_id, client_secret, scopes, id_token_mapping) VALUES ($1, $2, $3, $4, $5, $6, $7)", + expectedStmt: "INSERT INTO projections.idp_templates6_oidc (idp_id, instance_id, issuer, client_id, client_secret, scopes, id_token_mapping, use_pkce) VALUES ($1, $2, $3, $4, $5, $6, $7, $8)", expectedArgs: []interface{}{ "idp-id", "instance-id", @@ -3187,6 +3202,7 @@ func TestIDPTemplateProjection_reducesOIDC(t *testing.T) { anyArg{}, database.TextArray[string]{"profile"}, true, + true, }, }, }, @@ -3254,6 +3270,7 @@ func TestIDPTemplateProjection_reducesOIDC(t *testing.T) { }, "scopes": ["profile"], "idTokenMapping": true, + "usePKCE": true, "isCreationAllowed": true, "isLinkingAllowed": true, "isAutoCreation": true, @@ -3284,13 +3301,14 @@ func TestIDPTemplateProjection_reducesOIDC(t *testing.T) { }, }, { - expectedStmt: "UPDATE projections.idp_templates6_oidc SET (client_id, client_secret, issuer, scopes, id_token_mapping) = ($1, $2, $3, $4, $5) WHERE (idp_id = $6) AND (instance_id = $7)", + expectedStmt: "UPDATE projections.idp_templates6_oidc SET (client_id, client_secret, issuer, scopes, id_token_mapping, use_pkce) = ($1, $2, $3, $4, $5, $6) WHERE (idp_id = $7) AND (instance_id = $8)", expectedArgs: []interface{}{ "client_id", anyArg{}, "issuer", database.TextArray[string]{"profile"}, true, + true, "idp-id", "instance-id", }, @@ -3804,7 +3822,7 @@ func TestIDPTemplateProjection_reducesOldConfig(t *testing.T) { }, }, { - expectedStmt: "INSERT INTO projections.idp_templates6_oidc (idp_id, instance_id, issuer, client_id, client_secret, scopes, id_token_mapping) VALUES ($1, $2, $3, $4, $5, $6, $7)", + expectedStmt: "INSERT INTO projections.idp_templates6_oidc (idp_id, instance_id, issuer, client_id, client_secret, scopes, id_token_mapping, use_pkce) VALUES ($1, $2, $3, $4, $5, $6, $7, $8)", expectedArgs: []interface{}{ "idp-config-id", "instance-id", @@ -3813,6 +3831,7 @@ func TestIDPTemplateProjection_reducesOldConfig(t *testing.T) { anyArg{}, database.TextArray[string]{"profile"}, true, + false, }, }, }, @@ -3858,7 +3877,7 @@ func TestIDPTemplateProjection_reducesOldConfig(t *testing.T) { }, }, { - expectedStmt: "INSERT INTO projections.idp_templates6_oidc (idp_id, instance_id, issuer, client_id, client_secret, scopes, id_token_mapping) VALUES ($1, $2, $3, $4, $5, $6, $7)", + expectedStmt: "INSERT INTO projections.idp_templates6_oidc (idp_id, instance_id, issuer, client_id, client_secret, scopes, id_token_mapping, use_pkce) VALUES ($1, $2, $3, $4, $5, $6, $7, $8)", expectedArgs: []interface{}{ "idp-config-id", "instance-id", @@ -3867,6 +3886,7 @@ func TestIDPTemplateProjection_reducesOldConfig(t *testing.T) { anyArg{}, database.TextArray[string]{"profile"}, true, + false, }, }, }, diff --git a/internal/query/projection/instance_features.go b/internal/query/projection/instance_features.go index 2cd846bf2e..798af6693c 100644 --- a/internal/query/projection/instance_features.go +++ b/internal/query/projection/instance_features.go @@ -116,6 +116,10 @@ func (*instanceFeatureProjection) Reducers() []handler.AggregateReducer { Event: feature_v2.InstancePermissionCheckV2, Reduce: reduceInstanceSetFeature[bool], }, + { + Event: feature_v2.InstanceConsoleUseV2UserApi, + Reduce: reduceInstanceSetFeature[bool], + }, { Event: instance.InstanceRemovedEventType, Reduce: reduceInstanceRemovedHelper(InstanceDomainInstanceIDCol), diff --git a/internal/query/user.go b/internal/query/user.go index bb76e51f66..3ee9a48463 100644 --- a/internal/query/user.go +++ b/internal/query/user.go @@ -635,8 +635,8 @@ func (q *Queries) CountUsers(ctx context.Context, queries *UserSearchQueries) (c return count, err } -func (q *Queries) SearchUsers(ctx context.Context, queries *UserSearchQueries, permissionCheck domain.PermissionCheck) (*Users, error) { - users, err := q.searchUsers(ctx, queries, permissionCheck != nil && authz.GetFeatures(ctx).PermissionCheckV2) +func (q *Queries) SearchUsers(ctx context.Context, queries *UserSearchQueries, filterOrgIds string, permissionCheck domain.PermissionCheck) (*Users, error) { + users, err := q.searchUsers(ctx, queries, filterOrgIds, permissionCheck != nil && authz.GetFeatures(ctx).PermissionCheckV2) if err != nil { return nil, err } @@ -646,7 +646,7 @@ func (q *Queries) SearchUsers(ctx context.Context, queries *UserSearchQueries, p return users, nil } -func (q *Queries) searchUsers(ctx context.Context, queries *UserSearchQueries, permissionCheckV2 bool) (users *Users, err error) { +func (q *Queries) searchUsers(ctx context.Context, queries *UserSearchQueries, filterOrgIds string, permissionCheckV2 bool) (users *Users, err error) { ctx, span := tracing.NewSpan(ctx) defer func() { span.EndWithError(err) }() @@ -655,7 +655,7 @@ func (q *Queries) searchUsers(ctx context.Context, queries *UserSearchQueries, p UserInstanceIDCol.identifier(): authz.GetInstance(ctx).InstanceID(), }) if permissionCheckV2 { - query = wherePermittedOrgs(ctx, query, UserResourceOwnerCol.identifier(), domain.PermissionUserRead) + query = wherePermittedOrgsOrCurrentUser(ctx, query, filterOrgIds, UserResourceOwnerCol.identifier(), UserIDCol.identifier(), domain.PermissionUserRead) } stmt, args, err := query.ToSql() diff --git a/internal/queue/database.go b/internal/queue/database.go new file mode 100644 index 0000000000..c5eb0b8ca3 --- /dev/null +++ b/internal/queue/database.go @@ -0,0 +1,45 @@ +package queue + +import ( + "context" + "sync" + + "github.com/jackc/pgx/v5" + + "github.com/zitadel/zitadel/internal/database/dialect" +) + +const ( + schema = "queue" + applicationName = "zitadel_queue" +) + +var conns = &sync.Map{} + +type queueKey struct{} + +func WithQueue(parent context.Context) context.Context { + return context.WithValue(parent, queueKey{}, struct{}{}) +} + +func init() { + dialect.RegisterBeforeAcquire(func(ctx context.Context, c *pgx.Conn) error { + if _, ok := ctx.Value(queueKey{}).(struct{}); !ok { + return nil + } + _, err := c.Exec(ctx, "SET search_path TO "+schema+"; SET application_name TO "+applicationName) + if err != nil { + return err + } + conns.Store(c, struct{}{}) + return nil + }) + dialect.RegisterAfterRelease(func(c *pgx.Conn) error { + _, ok := conns.LoadAndDelete(c) + if !ok { + return nil + } + _, err := c.Exec(context.Background(), "SET search_path TO DEFAULT; SET application_name TO "+dialect.DefaultAppName) + return err + }) +} diff --git a/internal/queue/migrate.go b/internal/queue/migrate.go new file mode 100644 index 0000000000..e814da3bd3 --- /dev/null +++ b/internal/queue/migrate.go @@ -0,0 +1,38 @@ +package queue + +import ( + "context" + + "github.com/jackc/pgx/v5" + "github.com/riverqueue/river/riverdriver" + "github.com/riverqueue/river/riverdriver/riverpgxv5" + "github.com/riverqueue/river/rivermigrate" + + "github.com/zitadel/zitadel/internal/database" +) + +type Migrator struct { + driver riverdriver.Driver[pgx.Tx] +} + +func NewMigrator(client *database.DB) *Migrator { + return &Migrator{ + driver: riverpgxv5.New(client.Pool), + } +} + +func (m *Migrator) Execute(ctx context.Context) error { + _, err := m.driver.GetExecutor().Exec(ctx, "CREATE SCHEMA IF NOT EXISTS "+schema) + if err != nil { + return err + } + + migrator, err := rivermigrate.New(m.driver, nil) + if err != nil { + return err + } + ctx = WithQueue(ctx) + _, err = migrator.Migrate(ctx, rivermigrate.DirectionUp, nil) + return err + +} diff --git a/internal/queue/queue.go b/internal/queue/queue.go index 265988e9ef..d680221753 100644 --- a/internal/queue/queue.go +++ b/internal/queue/queue.go @@ -2,74 +2,96 @@ package queue import ( "context" - "sync" "github.com/jackc/pgx/v5" + "github.com/riverqueue/river" "github.com/riverqueue/river/riverdriver" "github.com/riverqueue/river/riverdriver/riverpgxv5" - "github.com/riverqueue/river/rivermigrate" + "github.com/zitadel/logging" "github.com/zitadel/zitadel/internal/database" - "github.com/zitadel/zitadel/internal/database/dialect" ) -const ( - schema = "queue" - applicationName = "zitadel_queue" -) - -var conns = &sync.Map{} - -type queueKey struct{} - -func WithQueue(parent context.Context) context.Context { - return context.WithValue(parent, queueKey{}, struct{}{}) -} - -func init() { - dialect.RegisterBeforeAcquire(func(ctx context.Context, c *pgx.Conn) error { - if _, ok := ctx.Value(queueKey{}).(struct{}); !ok { - return nil - } - _, err := c.Exec(ctx, "SET search_path TO "+schema+"; SET application_name TO "+applicationName) - if err != nil { - return err - } - conns.Store(c, struct{}{}) - return nil - }) - dialect.RegisterAfterRelease(func(c *pgx.Conn) error { - _, ok := conns.LoadAndDelete(c) - if !ok { - return nil - } - _, err := c.Exec(context.Background(), "SET search_path TO DEFAULT; SET application_name TO "+dialect.DefaultAppName) - return err - }) -} - // Queue abstracts the underlying queuing library // For more information see github.com/riverqueue/river -// TODO(adlerhurst): maybe it makes more sense to split the effective queue from the migrator. type Queue struct { driver riverdriver.Driver[pgx.Tx] + client *river.Client[pgx.Tx] + + config *river.Config + shouldStart bool } -func New(client *database.DB) *Queue { - return &Queue{driver: riverpgxv5.New(client.Pool)} +type Config struct { + Client *database.DB `mapstructure:"-"` // mapstructure is needed if we would like to use viper to configure the queue } -func (q *Queue) ExecuteMigrations(ctx context.Context) error { - _, err := q.driver.GetExecutor().Exec(ctx, "CREATE SCHEMA IF NOT EXISTS "+schema) - if err != nil { - return err +func NewQueue(config *Config) (_ *Queue, err error) { + return &Queue{ + driver: riverpgxv5.New(config.Client.Pool), + config: &river.Config{ + Workers: river.NewWorkers(), + Queues: make(map[string]river.QueueConfig), + JobTimeout: -1, + }, + }, nil +} + +func (q *Queue) ShouldStart() { + if q == nil { + return } + q.shouldStart = true +} - migrator, err := rivermigrate.New(q.driver, nil) - if err != nil { - return err +func (q *Queue) Start(ctx context.Context) (err error) { + if q == nil || !q.shouldStart { + return nil } ctx = WithQueue(ctx) - _, err = migrator.Migrate(ctx, rivermigrate.DirectionUp, nil) + + q.client, err = river.NewClient(q.driver, q.config) + if err != nil { + return err + } + + return q.client.Start(ctx) +} + +func (q *Queue) AddWorkers(w ...Worker) { + if q == nil { + logging.Info("skip adding workers because queue is not set") + return + } + for _, worker := range w { + worker.Register(q.config.Workers, q.config.Queues) + } +} + +type InsertOpt func(*river.InsertOpts) + +func WithMaxAttempts(maxAttempts uint8) InsertOpt { + return func(opts *river.InsertOpts) { + opts.MaxAttempts = int(maxAttempts) + } +} + +func WithQueueName(name string) InsertOpt { + return func(opts *river.InsertOpts) { + opts.Queue = name + } +} + +func (q *Queue) Insert(ctx context.Context, args river.JobArgs, opts ...InsertOpt) error { + options := new(river.InsertOpts) + ctx = WithQueue(ctx) + for _, opt := range opts { + opt(options) + } + _, err := q.client.Insert(ctx, args, options) return err } + +type Worker interface { + Register(workers *river.Workers, queues map[string]river.QueueConfig) +} diff --git a/internal/repository/feature/feature_v2/eventstore.go b/internal/repository/feature/feature_v2/eventstore.go index f5e033af1c..e8d0da1ab0 100644 --- a/internal/repository/feature/feature_v2/eventstore.go +++ b/internal/repository/feature/feature_v2/eventstore.go @@ -35,4 +35,5 @@ func init() { eventstore.RegisterFilterEventMapper(AggregateType, InstanceEnableBackChannelLogout, eventstore.GenericEventMapper[SetEvent[bool]]) eventstore.RegisterFilterEventMapper(AggregateType, InstanceLoginVersion, eventstore.GenericEventMapper[SetEvent[*feature.LoginV2]]) eventstore.RegisterFilterEventMapper(AggregateType, InstancePermissionCheckV2, eventstore.GenericEventMapper[SetEvent[bool]]) + eventstore.RegisterFilterEventMapper(AggregateType, InstanceConsoleUseV2UserApi, eventstore.GenericEventMapper[SetEvent[bool]]) } diff --git a/internal/repository/feature/feature_v2/feature.go b/internal/repository/feature/feature_v2/feature.go index 331a5143f9..008986824b 100644 --- a/internal/repository/feature/feature_v2/feature.go +++ b/internal/repository/feature/feature_v2/feature.go @@ -40,6 +40,7 @@ var ( InstanceEnableBackChannelLogout = setEventTypeFromFeature(feature.LevelInstance, feature.KeyEnableBackChannelLogout) InstanceLoginVersion = setEventTypeFromFeature(feature.LevelInstance, feature.KeyLoginV2) InstancePermissionCheckV2 = setEventTypeFromFeature(feature.LevelInstance, feature.KeyPermissionCheckV2) + InstanceConsoleUseV2UserApi = setEventTypeFromFeature(feature.LevelInstance, feature.KeyConsoleUseV2UserApi) ) const ( diff --git a/internal/repository/idp/ldap.go b/internal/repository/idp/ldap.go index 5f5bb9ced5..56fb18c5b4 100644 --- a/internal/repository/idp/ldap.go +++ b/internal/repository/idp/ldap.go @@ -22,6 +22,7 @@ type LDAPIDPAddedEvent struct { UserObjectClasses []string `json:"userObjectClasses"` UserFilters []string `json:"userFilters"` Timeout time.Duration `json:"timeout"` + RootCA []byte `json:"rootCA"` LDAPAttributes Options @@ -142,6 +143,7 @@ func NewLDAPIDPAddedEvent( userObjectClasses []string, userFilters []string, timeout time.Duration, + rootCA []byte, attributes LDAPAttributes, options Options, ) *LDAPIDPAddedEvent { @@ -158,6 +160,7 @@ func NewLDAPIDPAddedEvent( UserObjectClasses: userObjectClasses, UserFilters: userFilters, Timeout: timeout, + RootCA: rootCA, LDAPAttributes: attributes, Options: options, } @@ -198,6 +201,7 @@ type LDAPIDPChangedEvent struct { UserObjectClasses []string `json:"userObjectClasses,omitempty"` UserFilters []string `json:"userFilters,omitempty"` Timeout *time.Duration `json:"timeout,omitempty"` + RootCA []byte `json:"rootCA,omitempty"` LDAPAttributeChanges OptionChanges @@ -315,6 +319,12 @@ func ChangeLDAPTimeout(timeout time.Duration) func(*LDAPIDPChangedEvent) { } } +func ChangeLDAPRootCA(rootCA []byte) func(*LDAPIDPChangedEvent) { + return func(e *LDAPIDPChangedEvent) { + e.RootCA = rootCA + } +} + func ChangeLDAPAttributes(attributes LDAPAttributeChanges) func(*LDAPIDPChangedEvent) { return func(e *LDAPIDPChangedEvent) { e.LDAPAttributeChanges = attributes diff --git a/internal/repository/idp/oauth.go b/internal/repository/idp/oauth.go index 9b9b776082..e168459eea 100644 --- a/internal/repository/idp/oauth.go +++ b/internal/repository/idp/oauth.go @@ -18,6 +18,7 @@ type OAuthIDPAddedEvent struct { UserEndpoint string `json:"userEndpoint,omitempty"` Scopes []string `json:"scopes,omitempty"` IDAttribute string `json:"idAttribute,omitempty"` + UsePKCE bool `json:"usePKCE,omitempty"` Options } @@ -32,6 +33,7 @@ func NewOAuthIDPAddedEvent( userEndpoint, idAttribute string, scopes []string, + usePKCE bool, options Options, ) *OAuthIDPAddedEvent { return &OAuthIDPAddedEvent{ @@ -45,6 +47,7 @@ func NewOAuthIDPAddedEvent( UserEndpoint: userEndpoint, Scopes: scopes, IDAttribute: idAttribute, + UsePKCE: usePKCE, Options: options, } } @@ -82,6 +85,7 @@ type OAuthIDPChangedEvent struct { UserEndpoint *string `json:"userEndpoint,omitempty"` Scopes []string `json:"scopes,omitempty"` IDAttribute *string `json:"idAttribute,omitempty"` + UsePKCE *bool `json:"usePKCE,omitempty"` OptionChanges } @@ -158,6 +162,12 @@ func ChangeOAuthIDAttribute(idAttribute string) func(*OAuthIDPChangedEvent) { } } +func ChangeOAuthUsePKCE(usePKCE bool) func(*OAuthIDPChangedEvent) { + return func(e *OAuthIDPChangedEvent) { + e.UsePKCE = &usePKCE + } +} + func (e *OAuthIDPChangedEvent) Payload() interface{} { return e } diff --git a/internal/repository/idp/oidc.go b/internal/repository/idp/oidc.go index 0970129ceb..8c51baa6cf 100644 --- a/internal/repository/idp/oidc.go +++ b/internal/repository/idp/oidc.go @@ -16,6 +16,7 @@ type OIDCIDPAddedEvent struct { ClientSecret *crypto.CryptoValue `json:"clientSecret"` Scopes []string `json:"scopes,omitempty"` IsIDTokenMapping bool `json:"idTokenMapping,omitempty"` + UsePKCE bool `json:"usePKCE,omitempty"` Options } @@ -27,7 +28,7 @@ func NewOIDCIDPAddedEvent( clientID string, clientSecret *crypto.CryptoValue, scopes []string, - isIDTokenMapping bool, + isIDTokenMapping, usePKCE bool, options Options, ) *OIDCIDPAddedEvent { return &OIDCIDPAddedEvent{ @@ -39,6 +40,7 @@ func NewOIDCIDPAddedEvent( ClientSecret: clientSecret, Scopes: scopes, IsIDTokenMapping: isIDTokenMapping, + UsePKCE: usePKCE, Options: options, } } @@ -74,6 +76,7 @@ type OIDCIDPChangedEvent struct { ClientSecret *crypto.CryptoValue `json:"clientSecret,omitempty"` Scopes []string `json:"scopes,omitempty"` IsIDTokenMapping *bool `json:"idTokenMapping,omitempty"` + UsePKCE *bool `json:"usePKCE,omitempty"` OptionChanges } @@ -139,6 +142,12 @@ func ChangeOIDCIsIDTokenMapping(idTokenMapping bool) func(*OIDCIDPChangedEvent) } } +func ChangeOIDCUsePKCE(usePKCE bool) func(*OIDCIDPChangedEvent) { + return func(e *OIDCIDPChangedEvent) { + e.UsePKCE = &usePKCE + } +} + func (e *OIDCIDPChangedEvent) Payload() interface{} { return e } diff --git a/internal/repository/idpintent/intent.go b/internal/repository/idpintent/intent.go index 9ac1a875cc..27e6391f95 100644 --- a/internal/repository/idpintent/intent.go +++ b/internal/repository/idpintent/intent.go @@ -21,9 +21,10 @@ const ( type StartedEvent struct { eventstore.BaseEvent `json:"-"` - SuccessURL *url.URL `json:"successURL"` - FailureURL *url.URL `json:"failureURL"` - IDPID string `json:"idpId"` + SuccessURL *url.URL `json:"successURL"` + FailureURL *url.URL `json:"failureURL"` + IDPID string `json:"idpId"` + IDPArguments map[string]any `json:"idpArguments,omitempty"` } func NewStartedEvent( @@ -32,6 +33,7 @@ func NewStartedEvent( successURL, failureURL *url.URL, idpID string, + idpArguments map[string]any, ) *StartedEvent { return &StartedEvent{ BaseEvent: *eventstore.NewBaseEventForPush( @@ -39,9 +41,10 @@ func NewStartedEvent( aggregate, StartedEventType, ), - SuccessURL: successURL, - FailureURL: failureURL, - IDPID: idpID, + SuccessURL: successURL, + FailureURL: failureURL, + IDPID: idpID, + IDPArguments: idpArguments, } } diff --git a/internal/repository/instance/idp.go b/internal/repository/instance/idp.go index d2f90ab4eb..6ab60c0dd5 100644 --- a/internal/repository/instance/idp.go +++ b/internal/repository/instance/idp.go @@ -56,6 +56,7 @@ func NewOAuthIDPAddedEvent( userEndpoint, idAttribute string, scopes []string, + usePKCE bool, options idp.Options, ) *OAuthIDPAddedEvent { @@ -75,6 +76,7 @@ func NewOAuthIDPAddedEvent( userEndpoint, idAttribute, scopes, + usePKCE, options, ), } @@ -137,7 +139,7 @@ func NewOIDCIDPAddedEvent( clientID string, clientSecret *crypto.CryptoValue, scopes []string, - isIDTokenMapping bool, + isIDTokenMapping, usePKCE bool, options idp.Options, ) *OIDCIDPAddedEvent { @@ -155,6 +157,7 @@ func NewOIDCIDPAddedEvent( clientSecret, scopes, isIDTokenMapping, + usePKCE, options, ), } @@ -852,6 +855,7 @@ func NewLDAPIDPAddedEvent( userObjectClasses []string, userFilters []string, timeout time.Duration, + rootCA []byte, attributes idp.LDAPAttributes, options idp.Options, ) *LDAPIDPAddedEvent { @@ -874,6 +878,7 @@ func NewLDAPIDPAddedEvent( userObjectClasses, userFilters, timeout, + rootCA, attributes, options, ), diff --git a/internal/repository/notification/aggregate.go b/internal/repository/notification/aggregate.go deleted file mode 100644 index 8370337d40..0000000000 --- a/internal/repository/notification/aggregate.go +++ /dev/null @@ -1,25 +0,0 @@ -package notification - -import ( - "github.com/zitadel/zitadel/internal/eventstore" -) - -const ( - AggregateType = "notification" - AggregateVersion = "v1" -) - -type Aggregate struct { - eventstore.Aggregate -} - -func NewAggregate(id, resourceOwner string) *Aggregate { - return &Aggregate{ - Aggregate: eventstore.Aggregate{ - Type: AggregateType, - Version: AggregateVersion, - ID: id, - ResourceOwner: resourceOwner, - }, - } -} diff --git a/internal/repository/notification/eventstore.go b/internal/repository/notification/eventstore.go deleted file mode 100644 index 3ef1c9c7db..0000000000 --- a/internal/repository/notification/eventstore.go +++ /dev/null @@ -1,12 +0,0 @@ -package notification - -import ( - "github.com/zitadel/zitadel/internal/eventstore" -) - -func init() { - eventstore.RegisterFilterEventMapper(AggregateType, RequestedType, eventstore.GenericEventMapper[RequestedEvent]) - eventstore.RegisterFilterEventMapper(AggregateType, SentType, eventstore.GenericEventMapper[SentEvent]) - eventstore.RegisterFilterEventMapper(AggregateType, RetryRequestedType, eventstore.GenericEventMapper[RetryRequestedEvent]) - eventstore.RegisterFilterEventMapper(AggregateType, CanceledType, eventstore.GenericEventMapper[CanceledEvent]) -} diff --git a/internal/repository/notification/notification.go b/internal/repository/notification/notification.go index cf7090525f..72e672f052 100644 --- a/internal/repository/notification/notification.go +++ b/internal/repository/notification/notification.go @@ -1,28 +1,21 @@ package notification import ( - "context" "time" "github.com/zitadel/zitadel/internal/crypto" "github.com/zitadel/zitadel/internal/domain" "github.com/zitadel/zitadel/internal/eventstore" - "github.com/zitadel/zitadel/internal/query" ) const ( - notificationEventPrefix = "notification." - RequestedType = notificationEventPrefix + "requested" - RetryRequestedType = notificationEventPrefix + "retry.requested" - SentType = notificationEventPrefix + "sent" - CanceledType = notificationEventPrefix + "canceled" + QueueName = "notification" ) type Request struct { + Aggregate *eventstore.Aggregate `json:"aggregate"` UserID string `json:"userID"` UserResourceOwner string `json:"userResourceOwner"` - AggregateID string `json:"notificationAggregateID"` - AggregateResourceOwner string `json:"notificationAggregateResourceOwner"` TriggeredAtOrigin string `json:"triggeredAtOrigin"` EventType eventstore.EventType `json:"eventType"` MessageType string `json:"messageType"` @@ -32,213 +25,10 @@ type Request struct { Code *crypto.CryptoValue `json:"code,omitempty"` UnverifiedNotificationChannel bool `json:"unverifiedNotificationChannel,omitempty"` IsOTP bool `json:"isOTP,omitempty"` - RequiresPreviousDomain bool `json:"RequiresPreviousDomain,omitempty"` + RequiresPreviousDomain bool `json:"requiresPreviousDomain,omitempty"` Args *domain.NotificationArguments `json:"args,omitempty"` } -func (e *Request) NotificationAggregateID() string { - if e.AggregateID == "" { - return e.UserID - } - return e.AggregateID -} - -func (e *Request) NotificationAggregateResourceOwner() string { - if e.AggregateResourceOwner == "" { - return e.UserResourceOwner - } - return e.AggregateResourceOwner -} - -type RequestedEvent struct { - eventstore.BaseEvent `json:"-"` - - Request `json:"request"` -} - -func (e *RequestedEvent) TriggerOrigin() string { - return e.TriggeredAtOrigin -} - -func (e *RequestedEvent) Payload() interface{} { - return e -} - -func (e *RequestedEvent) UniqueConstraints() []*eventstore.UniqueConstraint { - return nil -} - -func (e *RequestedEvent) SetBaseEvent(event *eventstore.BaseEvent) { - e.BaseEvent = *event -} - -func NewRequestedEvent(ctx context.Context, - aggregate *eventstore.Aggregate, - userID, - userResourceOwner, - aggregateID, - aggregateResourceOwner, - triggerOrigin, - urlTemplate string, - code *crypto.CryptoValue, - codeExpiry time.Duration, - eventType eventstore.EventType, - notificationType domain.NotificationType, - messageType string, - unverifiedNotificationChannel, - isOTP, - requiresPreviousDomain bool, - args *domain.NotificationArguments, -) *RequestedEvent { - return &RequestedEvent{ - BaseEvent: *eventstore.NewBaseEventForPush( - ctx, - aggregate, - RequestedType, - ), - Request: Request{ - UserID: userID, - UserResourceOwner: userResourceOwner, - AggregateID: aggregateID, - AggregateResourceOwner: aggregateResourceOwner, - TriggeredAtOrigin: triggerOrigin, - EventType: eventType, - MessageType: messageType, - NotificationType: notificationType, - URLTemplate: urlTemplate, - CodeExpiry: codeExpiry, - Code: code, - UnverifiedNotificationChannel: unverifiedNotificationChannel, - IsOTP: isOTP, - RequiresPreviousDomain: requiresPreviousDomain, - Args: args, - }, - } -} - -type SentEvent struct { - eventstore.BaseEvent `json:"-"` -} - -func (e *SentEvent) Payload() interface{} { - return e -} - -func (e *SentEvent) UniqueConstraints() []*eventstore.UniqueConstraint { - return nil -} - -func (e *SentEvent) SetBaseEvent(event *eventstore.BaseEvent) { - e.BaseEvent = *event -} - -func NewSentEvent(ctx context.Context, - aggregate *eventstore.Aggregate, -) *SentEvent { - return &SentEvent{ - BaseEvent: *eventstore.NewBaseEventForPush( - ctx, - aggregate, - SentType, - ), - } -} - -type CanceledEvent struct { - eventstore.BaseEvent `json:"-"` - - Error string `json:"error"` -} - -func (e *CanceledEvent) Payload() interface{} { - return e -} - -func (e *CanceledEvent) UniqueConstraints() []*eventstore.UniqueConstraint { - return nil -} - -func (e *CanceledEvent) SetBaseEvent(event *eventstore.BaseEvent) { - e.BaseEvent = *event -} - -func NewCanceledEvent(ctx context.Context, aggregate *eventstore.Aggregate, errorMessage string) *CanceledEvent { - return &CanceledEvent{ - BaseEvent: *eventstore.NewBaseEventForPush( - ctx, - aggregate, - CanceledType, - ), - Error: errorMessage, - } -} - -type RetryRequestedEvent struct { - eventstore.BaseEvent `json:"-"` - - Request `json:"request"` - Error string `json:"error"` - NotifyUser *query.NotifyUser `json:"notifyUser"` - BackOff time.Duration `json:"backOff"` -} - -func (e *RetryRequestedEvent) Payload() interface{} { - return e -} - -func (e *RetryRequestedEvent) UniqueConstraints() []*eventstore.UniqueConstraint { - return nil -} - -func (e *RetryRequestedEvent) SetBaseEvent(event *eventstore.BaseEvent) { - e.BaseEvent = *event -} - -func NewRetryRequestedEvent( - ctx context.Context, - aggregate *eventstore.Aggregate, - userID, - userResourceOwner, - aggregateID, - aggregateResourceOwner, - triggerOrigin, - urlTemplate string, - code *crypto.CryptoValue, - codeExpiry time.Duration, - eventType eventstore.EventType, - notificationType domain.NotificationType, - messageType string, - unverifiedNotificationChannel, - isOTP bool, - args *domain.NotificationArguments, - notifyUser *query.NotifyUser, - backoff time.Duration, - errorMessage string, -) *RetryRequestedEvent { - return &RetryRequestedEvent{ - BaseEvent: *eventstore.NewBaseEventForPush( - ctx, - aggregate, - RetryRequestedType, - ), - Request: Request{ - UserID: userID, - UserResourceOwner: userResourceOwner, - AggregateID: aggregateID, - AggregateResourceOwner: aggregateResourceOwner, - TriggeredAtOrigin: triggerOrigin, - EventType: eventType, - MessageType: messageType, - NotificationType: notificationType, - URLTemplate: urlTemplate, - CodeExpiry: codeExpiry, - Code: code, - UnverifiedNotificationChannel: unverifiedNotificationChannel, - IsOTP: isOTP, - Args: args, - }, - NotifyUser: notifyUser, - BackOff: backoff, - Error: errorMessage, - } +func (e *Request) Kind() string { + return "notification_request" } diff --git a/internal/repository/org/idp.go b/internal/repository/org/idp.go index a2bc5c7abd..0070f71a95 100644 --- a/internal/repository/org/idp.go +++ b/internal/repository/org/idp.go @@ -56,6 +56,7 @@ func NewOAuthIDPAddedEvent( userEndpoint, idAttribute string, scopes []string, + usePKCE bool, options idp.Options, ) *OAuthIDPAddedEvent { @@ -75,6 +76,7 @@ func NewOAuthIDPAddedEvent( userEndpoint, idAttribute, scopes, + usePKCE, options, ), } @@ -137,7 +139,7 @@ func NewOIDCIDPAddedEvent( clientID string, clientSecret *crypto.CryptoValue, scopes []string, - isIDTokenMapping bool, + isIDTokenMapping, usePKCE bool, options idp.Options, ) *OIDCIDPAddedEvent { @@ -155,6 +157,7 @@ func NewOIDCIDPAddedEvent( clientSecret, scopes, isIDTokenMapping, + usePKCE, options, ), } @@ -852,6 +855,7 @@ func NewLDAPIDPAddedEvent( userObjectClasses []string, userFilters []string, timeout time.Duration, + rootCA []byte, attributes idp.LDAPAttributes, options idp.Options, ) *LDAPIDPAddedEvent { @@ -874,6 +878,7 @@ func NewLDAPIDPAddedEvent( userObjectClasses, userFilters, timeout, + rootCA, attributes, options, ), diff --git a/internal/static/i18n/bg.yaml b/internal/static/i18n/bg.yaml index d4cf88f62e..492d4b3eec 100644 --- a/internal/static/i18n/bg.yaml +++ b/internal/static/i18n/bg.yaml @@ -562,6 +562,7 @@ Errors: AlreadyExists: Auth Request вече съществува NotExisting: Auth Request не съществува WrongLoginClient: Auth Request, създаден от друг клиент за влизане + AlreadyHandled: Заявката за удостоверяване вече е обработена OIDCSession: RefreshTokenInvalid: Токенът за опресняване е невалиден Token: @@ -572,8 +573,12 @@ Errors: AlreadyExists: SAMLRequest вече съществува NotExisting: SAMLRequest не съществува WrongLoginClient: SAMLRequest, създаден от друг клиент за влизане + AlreadyHandled: SAML заявката вече е обработена SAMLSession: InvalidClient: SAMLResponse не е издаден за този клиент + DeviceAuth: + NotFound: Заявката за авторизация на устройство не съществува + AlreadyHandled: Заявката за авторизация на устройство вече е обработена Feature: NotExisting: Функцията не съществува TypeNotSupported: Типът функция не се поддържа diff --git a/internal/static/i18n/cs.yaml b/internal/static/i18n/cs.yaml index 9a990e0828..3fac42b0b8 100644 --- a/internal/static/i18n/cs.yaml +++ b/internal/static/i18n/cs.yaml @@ -542,6 +542,7 @@ Errors: AlreadyExists: Požadavek na autentizaci již existuje NotExisting: Požadavek na autentizaci neexistuje WrongLoginClient: Požadavek na autentizaci vytvořen jiným klientem přihlášení + AlreadyHandled: Žádost o ověření již byla zpracována OIDCSession: RefreshTokenInvalid: Obnovovací token je neplatný Token: @@ -552,8 +553,12 @@ Errors: AlreadyExists: SAMLRequest již existuje NotExisting: SAMLRequest neexistuje WrongLoginClient: SAMLRequest vytvořený jiným přihlašovacím klientem + AlreadyHandled: SAML požadavek již byl zpracován SAMLSession: InvalidClient: Pro tohoto klienta nebyla vydána odpověď SAMLResponse + DeviceAuth: + NotFound: Žádost o autorizaci zařízení neexistuje + AlreadyHandled: Žádost o autorizaci zařízení již byla zpracována Feature: NotExisting: Funkce neexistuje TypeNotSupported: Typ funkce není podporován diff --git a/internal/static/i18n/de.yaml b/internal/static/i18n/de.yaml index 601fc2ba68..c473f2d28b 100644 --- a/internal/static/i18n/de.yaml +++ b/internal/static/i18n/de.yaml @@ -544,6 +544,7 @@ Errors: AlreadyExists: Auth Request existiert bereits NotExisting: Auth Request existiert nicht WrongLoginClient: Auth Request wurde von einem anderen Login-Client erstellt + AlreadyHandled: Auth Request wurde bereits bearbeitet OIDCSession: RefreshTokenInvalid: Refresh Token ist ungültig Token: @@ -554,8 +555,12 @@ Errors: AlreadyExists: SAMLRequest existiert bereits NotExisting: SAMLRequest existiert nicht WrongLoginClient: SAMLRequest wurde con einem andere Login-Client erstellt + AlreadyHandled: SAMLRequest wurde bereits bearbeitet SAMLSession: InvalidClient: SAMLResponse wurde nicht für diesen Client ausgestellt + DeviceAuth: + NotFound: Die Geräteautorisierungsanforderung existiert nicht + AlreadyHandled: Die Geräteautorisierungsanforderung wurde bereits bearbeitet Feature: NotExisting: Feature existiert nicht TypeNotSupported: Feature Typ wird nicht unterstützt diff --git a/internal/static/i18n/en.yaml b/internal/static/i18n/en.yaml index 164b5b6866..66c00388ca 100644 --- a/internal/static/i18n/en.yaml +++ b/internal/static/i18n/en.yaml @@ -545,6 +545,7 @@ Errors: AlreadyExists: Auth Request already exists NotExisting: Auth Request does not exist WrongLoginClient: Auth Request created by other login client + AlreadyHandled: Auth Request has already been handled OIDCSession: RefreshTokenInvalid: Refresh Token is invalid Token: @@ -555,8 +556,12 @@ Errors: AlreadyExists: SAMLRequest already exists NotExisting: SAMLRequest does not exist WrongLoginClient: SAMLRequest created by other login client + AlreadyHandled: SAMLRequest has already been handled SAMLSession: InvalidClient: SAMLResponse was not issued for this client + DeviceAuth: + NotFound: Device Authorization Request does not exist + AlreadyHandled: Device Authorization Request has already been handled Feature: NotExisting: Feature does not exist TypeNotSupported: Feature type is not supported diff --git a/internal/static/i18n/es.yaml b/internal/static/i18n/es.yaml index 87da41c37d..71b827e93d 100644 --- a/internal/static/i18n/es.yaml +++ b/internal/static/i18n/es.yaml @@ -544,6 +544,7 @@ Errors: AlreadyExists: Auth Request ya existe NotExisting: Auth Request no existe WrongLoginClient: Auth Request creado por otro cliente de inicio de sesión + AlreadyHandled: Auth Request ya ha sido procesada OIDCSession: RefreshTokenInvalid: El token de refresco no es válido Token: @@ -554,8 +555,12 @@ Errors: AlreadyExists: SAMLRequest ya existe NotExisting: SAMLRequest no existe WrongLoginClient: SAMLRequest creado por otro cliente de inicio de sesión + AlreadyHandled: SAMLRequest ya ha sido procesada SAMLSession: InvalidClient: SAMLResponse no ha sido emitido para este cliente + DeviceAuth: + NotFound: La solicitud de autorización del dispositivo no existe + AlreadyHandled: La solicitud de autorización del dispositivo ya ha sido procesada Feature: NotExisting: La característica no existe TypeNotSupported: El tipo de característica no es compatible diff --git a/internal/static/i18n/fr.yaml b/internal/static/i18n/fr.yaml index b60b7a2ffd..977c30f182 100644 --- a/internal/static/i18n/fr.yaml +++ b/internal/static/i18n/fr.yaml @@ -544,6 +544,7 @@ Errors: AlreadyExists: Auth Request existe déjà NotExisting: Auth Request n'existe pas WrongLoginClient: Auth Request créé par un autre client de connexion + AlreadyHandled: Auth Request a déjà été traitée OIDCSession: RefreshTokenInvalid: Le jeton de rafraîchissement n'est pas valide Token: @@ -554,8 +555,12 @@ Errors: AlreadyExists: SAMLRequest existe déjà NotExisting: SAMLRequest n'existe pas WrongLoginClient: SAMLRequest créé par un autre client de connexion + AlreadyHandled: SAMLRequest a déjà été traitée SAMLSession: InvalidClient: SAMLResponse n'a pas été émise pour ce client + DeviceAuth: + NotFound: La demande d'autorisation de l'appareil n'existe pas + AlreadyHandled: La demande d'autorisation de l'appareil a déjà été traitée Feature: NotExisting: La fonctionnalité n'existe pas TypeNotSupported: Le type de fonctionnalité n'est pas pris en charge diff --git a/internal/static/i18n/hu.yaml b/internal/static/i18n/hu.yaml index d33b5f47bc..b17c6a1225 100644 --- a/internal/static/i18n/hu.yaml +++ b/internal/static/i18n/hu.yaml @@ -543,6 +543,7 @@ Errors: AlreadyExists: Az Auth Request már létezik NotExisting: Az Auth Request nem létezik WrongLoginClient: Az Auth Requestet egy másik bejelentkezési kliens hozta létre + AlreadyHandled: A hitelesítési kérelem már feldolgozva OIDCSession: RefreshTokenInvalid: Az Refresh Token érvénytelen Token: @@ -553,8 +554,12 @@ Errors: AlreadyExists: A SAMLRequest már létezik NotExisting: A SAMLRequest nem létezik WrongLoginClient: A SAMLRequest egy másik bejelentkezési ügyfél által létrehozott + AlreadyHandled: A SAMLRequest már feldolgozva SAMLSession: InvalidClient: SAMLResponse nem lett kiadva ehhez az ügyfélhez + DeviceAuth: + NotFound: Az eszközengedélyezési kérelem nem létezik + AlreadyHandled: Az eszközengedélyezési kérelem már feldolgozva Feature: NotExisting: A funkció nem létezik TypeNotSupported: A funkció típusa nem támogatott diff --git a/internal/static/i18n/id.yaml b/internal/static/i18n/id.yaml index 449f91ffdc..56a454e71d 100644 --- a/internal/static/i18n/id.yaml +++ b/internal/static/i18n/id.yaml @@ -543,6 +543,7 @@ Errors: AlreadyExists: Permintaan Otentikasi sudah ada NotExisting: Permintaan Otentikasi tidak ada WrongLoginClient: Permintaan Otentikasi dibuat oleh klien login lain + AlreadyHandled: Permintaan Otentikasi sudah ditangani OIDCSession: RefreshTokenInvalid: Token Penyegaran tidak valid Token: @@ -553,8 +554,12 @@ Errors: AlreadyExists: SAMLRequest sudah ada NotExisting: SAMLRequest tidak ada WrongLoginClient: SAMLRequest dibuat oleh klien login lainnya + AlreadyHandled: SAMLRequest sudah ditangani SAMLSession: InvalidClient: SAMLResponse tidak dikeluarkan untuk klien ini + DeviceAuth: + NotFound: Permintaan Otorisasi Perangkat tidak ada + AlreadyHandled: Permintaan Otorisasi Perangkat sudah ditangani Feature: NotExisting: Fitur tidak ada TypeNotSupported: Jenis fitur tidak didukung diff --git a/internal/static/i18n/it.yaml b/internal/static/i18n/it.yaml index 8310032f7f..fe64228aa2 100644 --- a/internal/static/i18n/it.yaml +++ b/internal/static/i18n/it.yaml @@ -544,6 +544,7 @@ Errors: AlreadyExists: Auth Request esiste già NotExisting: Auth Request non esiste WrongLoginClient: Auth Request creato da un altro client di accesso + AlreadyHandled: Auth Request è già stata gestita OIDCSession: RefreshTokenInvalid: Refresh Token non è valido Token: @@ -554,8 +555,12 @@ Errors: AlreadyExists: SAMLRequest esiste già NotExisting: SAMLRequest non esiste WrongLoginClient: SAMLRequest creato da un altro client di accesso + AlreadyHandled: SAMLRequest è già stata gestita SAMLSession: InvalidClient: SAMLResponse non è stato emesso per questo client + DeviceAuth: + NotFound: La richiesta di autorizzazione del dispositivo non esiste + AlreadyHandled: La richiesta di autorizzazione del dispositivo è già stata gestita Feature: NotExisting: La funzionalità non esiste TypeNotSupported: Il tipo di funzionalità non è supportato diff --git a/internal/static/i18n/ja.yaml b/internal/static/i18n/ja.yaml index b61318b537..d1f3032ad6 100644 --- a/internal/static/i18n/ja.yaml +++ b/internal/static/i18n/ja.yaml @@ -53,6 +53,7 @@ Errors: NotFound: SMS構成が見つかりません AlreadyActive: このSMS構成はすでにアクティブです AlreadyDeactivated: このSMS構成はすでに非アクティブです + NotExternalVerification: SMS構成は外部のコード検証をサポートしていません SMTP: NotEmailMessage: メッセージは EmailMessage ではありません RequiredAttributes: 件名、受信者、コンテンツを設定する必要がありますが、一部またはすべてが空です @@ -98,16 +99,23 @@ Errors: Profile: NotFound: プロファイルが見つかりません NotChanged: プロファイルが変更されていません + Empty: プロファイルが空です + FirstNameEmpty: 名前が空です + LastNameEmpty: 姓が空です Invalid: プロファイルデータが無効です Email: NotFound: メールアドレスが見つかりません Invalid: 無効なメールアドレスです AlreadyVerified: メールアドレスはすでに検証済みです NotChanged: メールアドレスが変更されていません + Empty: メールアドレスが空です + IDMissing: メールアドレスIDが不足しています Phone: NotFound: 電話番号が見つかりません Invalid: 無効な電話番号です AlreadyVerified: 電話番号はすでに認証済みです + Empty: 電話番号が空です + NotChanged: 電話番号が変更されていません Address: NotFound: 住所が見つかりません NotChanged: 住所は変更されていません @@ -129,6 +137,7 @@ Errors: Username: AlreadyExists: ユーザー名はすでに使用されています Reserved: ユーザー名はすでに使用されています + Empty: ユーザー名が空です Code: Empty: コードは空です NotFound: コードが見つかりません @@ -276,6 +285,9 @@ Errors: NotFound: 通知ポリシーが見つかりません NotChanged: 通知ポリシーは変更されていません AlreadyExists: 通知ポリシーはすでに存在しています + LabelPolicy: + NotFound: プライベートラベルポリシーが見つかりません + NotChanged: プライベートラベルポリシーが変更されていません Project: ProjectIDMissing: プロジェクトIDがありません AlreadyExists: プロジェクトはすでに組織に存在しています @@ -533,6 +545,7 @@ Errors: AlreadyExists: AuthRequestはすでに存在する NotExisting: AuthRequest が存在しません WrongLoginClient: 他のログインクライアントによって作成された AuthRequest + AlreadyHandled: 認証リクエストは既に処理済みです OIDCSession: RefreshTokenInvalid: 無効なリフレッシュトークンです Token: @@ -543,8 +556,12 @@ Errors: AlreadyExists: SAMLリクエストはすでに存在します NotExisting: SAMLリクエストが存在しません WrongLoginClient: 他のログイン クライアントによって作成された SAMLRequest + AlreadyHandled: SAMLリクエストは既に処理済みです SAMLSession: InvalidClient: このクライアントに対してSAMLResponseは発行されませんでした + DeviceAuth: + NotFound: デバイス認証リクエストが存在しません + AlreadyHandled: デバイス認証リクエストは既に処理済みです Feature: NotExisting: 機能が存在しません TypeNotSupported: 機能タイプはサポートされていません @@ -711,6 +728,10 @@ EventTypes: check: succeeded: パスワードチェックの成功 failed: パスワードチェックの失敗 + change: + sent: パスワード変更メールを送信しました + hash: + updated: パスワードハッシュが更新されました externallogin: check: succeeded: 外部ログインの成功 @@ -814,10 +835,6 @@ EventTypes: check: succeeded: パスワードチェックの成功 failed: パスワードチェックの失敗 - change: - sent: パスワード変更を送信しました - hash: - updated: パスワードハッシュが更新されました phone: changed: 電話番号の変更 verified: 電話番号の検証 @@ -826,7 +843,7 @@ EventTypes: code: added: 電話番号コードの生成 sent: 電話番号コードの送信 - removed: 電話番号の削除 + profile: changed: ユーザープロファイルの変更 address: @@ -1049,6 +1066,9 @@ EventTypes: check: succeeded: OIDCクライアントシークレットチェックの成功 failed: OIDCクライアントシークレットチェックの失敗 + key: + added: OIDCアプリキーの追加 + removed: OIDCアプリキーの削除 api: secret: check: @@ -1346,6 +1366,7 @@ EventTypes: code: added: 電話番号の確認コードが生成されました sent: 電話番号の確認コードが送信されました + web_key: added: Web キーが追加されました activated: Web キーが有効化されました diff --git a/internal/static/i18n/ko.yaml b/internal/static/i18n/ko.yaml index 741f075ca2..d238142e01 100644 --- a/internal/static/i18n/ko.yaml +++ b/internal/static/i18n/ko.yaml @@ -544,6 +544,7 @@ Errors: AlreadyExists: 인증 요청이 이미 존재합니다 NotExisting: 인증 요청이 존재하지 않습니다 WrongLoginClient: 다른 로그인 클라이언트에 의해 생성된 인증 요청 + AlreadyHandled: 인증 요청이 이미 처리되었습니다 OIDCSession: RefreshTokenInvalid: 새로 고침 토큰이 유효하지 않습니다 Token: @@ -554,8 +555,12 @@ Errors: AlreadyExists: SAMLRequest가 이미 존재합니다 NotExisting: SAMLRequest가 존재하지 않습니다 WrongLoginClient: 다른 로그인 클라이언트가 생성한 SAMLRequest + AlreadyHandled: SAML 요청이 이미 처리되었습니다 SAMLSession: InvalidClient: 이 클라이언트에 대해 SAMLResponse가 발행되지 않았습니다. + DeviceAuth: + NotFound: 장치 인증 요청이 존재하지 않습니다 + AlreadyHandled: 장치 인증 요청이 이미 처리되었습니다 Feature: NotExisting: 기능이 존재하지 않습니다 TypeNotSupported: 기능 유형이 지원되지 않습니다 diff --git a/internal/static/i18n/mk.yaml b/internal/static/i18n/mk.yaml index 4f320ca5c9..fa26eb0d62 100644 --- a/internal/static/i18n/mk.yaml +++ b/internal/static/i18n/mk.yaml @@ -543,6 +543,7 @@ Errors: AlreadyExists: Барањето за автентикација веќе постои NotExisting: Барањето за автентикација не постои WrongLoginClient: Барањето за автификација беше креирано од друг клиент за најавување + AlreadyHandled: Барањето за автентикација е веќе обработено OIDCSession: RefreshTokenInvalid: Токенот за освежување е неважечки Token: @@ -553,8 +554,12 @@ Errors: AlreadyExists: SAMLRequest веќе постои NotExisting: SAMLRequest не постои WrongLoginClient: SAML Барање создадено од друг клиент за најавување + AlreadyHandled: SAML барањето е веќе обработено SAMLSession: InvalidClient: SAMLResponse не беше издаден за овој клиент + DeviceAuth: + NotFound: Барањето за авторизација на уредот не постои + AlreadyHandled: Барањето за авторизација на уредот е веќе обработено Feature: NotExisting: Функцијата не постои TypeNotSupported: Типот на функција не е поддржан diff --git a/internal/static/i18n/nl.yaml b/internal/static/i18n/nl.yaml index 0b6c2eeb84..26d93d6b01 100644 --- a/internal/static/i18n/nl.yaml +++ b/internal/static/i18n/nl.yaml @@ -544,6 +544,7 @@ Errors: AlreadyExists: Auth Verzoek bestaat al NotExisting: Auth Verzoek bestaat niet WrongLoginClient: Auth Verzoek aangemaakt door andere login client + AlreadyHandled: Authenticatieverzoek is al verwerkt OIDCSession: RefreshTokenInvalid: Refresh Token is ongeldig Token: @@ -554,8 +555,12 @@ Errors: AlreadyExists: SAMLRequest bestaat al NotExisting: SAMLRequest bestaat niet WrongLoginClient: SAMLRequest aangemaakt door andere login client + AlreadyHandled: SAML-verzoek is al verwerkt SAMLSession: InvalidClient: SAMLResponse is niet uitgegeven voor deze client + DeviceAuth: + NotFound: Apparaatautorisatieverzoek bestaat niet + AlreadyHandled: Apparaatautorisatieverzoek is al verwerkt Feature: NotExisting: Functie bestaat niet TypeNotSupported: Functie type wordt niet ondersteund diff --git a/internal/static/i18n/pl.yaml b/internal/static/i18n/pl.yaml index 83645e525d..c5ad6e9af7 100644 --- a/internal/static/i18n/pl.yaml +++ b/internal/static/i18n/pl.yaml @@ -544,6 +544,7 @@ Errors: AlreadyExists: Auth Request już istnieje NotExisting: Auth Request nie istnieje WrongLoginClient: Auth Request utworzony przez innego klienta logowania + AlreadyHandled: Żądanie uwierzytelnienia zostało już obsłużone OIDCSession: RefreshTokenInvalid: Refresh Token jest nieprawidłowy Token: @@ -554,8 +555,12 @@ Errors: AlreadyExists: SAMLRequest już istnieje NotExisting: SAMLRequest nie istnieje WrongLoginClient: SAMLRequest utworzony przez innego klienta logowania + AlreadyHandled: Żądanie SAML zostało już obsłużone SAMLSession: InvalidClient: SAMLResponse nie został wydany dla tego klienta + DeviceAuth: + NotFound: Żądanie autoryzacji urządzenia nie istnieje + AlreadyHandled: Żądanie autoryzacji urządzenia zostało już obsłużone Feature: NotExisting: Funkcja nie istnieje TypeNotSupported: Typ funkcji nie jest obsługiwany diff --git a/internal/static/i18n/pt.yaml b/internal/static/i18n/pt.yaml index a30e1bedaf..ccabc9da5d 100644 --- a/internal/static/i18n/pt.yaml +++ b/internal/static/i18n/pt.yaml @@ -543,6 +543,7 @@ Errors: AlreadyExists: A solicitação de autenticação já existe NotExisting: A solicitação de autenticação não existe WrongLoginClient: A solicitação de autenticação foi criada por outro cliente de login + AlreadyHandled: O pedido de autenticação já foi processado OIDCSession: RefreshTokenInvalid: O Refresh Token é inválido Token: @@ -553,8 +554,12 @@ Errors: AlreadyExists: O SAMLRequest já existe NotExisting: O SAMLRequest não existe WrongLoginClient: SAMLRequest criado por outro cliente de login + AlreadyHandled: O pedido SAML já foi processado SAMLSession: InvalidClient: O SAMLResponse não foi emitido para este cliente + DeviceAuth: + NotFound: O pedido de autorização do dispositivo não existe + AlreadyHandled: O pedido de autorização do dispositivo já foi processado Feature: NotExisting: O recurso não existe TypeNotSupported: O tipo de recurso não é compatível diff --git a/internal/static/i18n/ru.yaml b/internal/static/i18n/ru.yaml index f1eab4365e..f0908a6f8e 100644 --- a/internal/static/i18n/ru.yaml +++ b/internal/static/i18n/ru.yaml @@ -533,6 +533,7 @@ Errors: AlreadyExists: Запрос на аутентификацию уже существует NotExisting: Запрос на аутентификацию не существует WrongLoginClient: Запрос на аутентификацию, созданный другим клиентом входа + AlreadyHandled: Запрос аутентификации уже обработан OIDCSession: RefreshTokenInvalid: Маркер обновления недействителен Token: @@ -543,8 +544,12 @@ Errors: AlreadyExists: SAMLRequest уже существует NotExisting: SAMLRequest не существует WrongLoginClient: SAMLRequest создан другим клиентом входа + AlreadyHandled: Запрос SAML уже обработан SAMLSession: InvalidClient: SAMLResponse не был отправлен для этого клиента + DeviceAuth: + NotFound: Запрос авторизации устройства не существует + AlreadyHandled: Запрос авторизации устройства уже обработан Feature: NotExisting: ункция не существует TypeNotSupported: Тип объекта не поддерживается diff --git a/internal/static/i18n/sv.yaml b/internal/static/i18n/sv.yaml index e31095b78c..2c292976d3 100644 --- a/internal/static/i18n/sv.yaml +++ b/internal/static/i18n/sv.yaml @@ -543,6 +543,7 @@ Errors: AlreadyExists: Autentiseringsbegäran finns redan NotExisting: Autentiseringsbegäran existerar inte WrongLoginClient: Autentiseringsbegäran skapad av annan inloggningsklient + AlreadyHandled: Autentiseringsbegäran har redan hanterats OIDCSession: RefreshTokenInvalid: Uppdateringstoken är ogiltig Token: @@ -553,8 +554,12 @@ Errors: AlreadyExists: SAMLRequest finns redan NotExisting: SAMLRequest finns inte WrongLoginClient: SAMLRequest skapad av annan inloggningsklient + AlreadyHandled: SAML-begäran har redan hanterats SAMLSession: InvalidClient: SAMLResponse utfärdades inte för den här klienten + DeviceAuth: + NotFound: Begäran om enhetsauktorisering finns inte + AlreadyHandled: Begäran om enhetsauktorisering har redan hanterats Feature: NotExisting: Funktionen existerar inte TypeNotSupported: Funktionstypen stöds inte diff --git a/internal/static/i18n/zh.yaml b/internal/static/i18n/zh.yaml index 4c18ed458f..75450c9658 100644 --- a/internal/static/i18n/zh.yaml +++ b/internal/static/i18n/zh.yaml @@ -544,6 +544,7 @@ Errors: AlreadyExists: AuthRequest已经存在 NotExisting: AuthRequest不存在 WrongLoginClient: 其他登录客户端创建的AuthRequest + AlreadyHandled: 身份验证请求已被处理 OIDCSession: RefreshTokenInvalid: Refresh Token 无效 Token: @@ -554,8 +555,12 @@ Errors: AlreadyExists: SAMLRequest 已存在 NotExisting: SAMLRequest不存在 WrongLoginClient: 其他登录客户端创建的 SAMLRequest + AlreadyHandled: SAML请求已被处理 SAMLSession: InvalidClient: 未向该客户端发出 SAMLResponse + DeviceAuth: + NotFound: 设备授权请求不存在 + AlreadyHandled: 设备授权请求已被处理 Feature: NotExisting: 功能不存在 TypeNotSupported: 不支持功能类型 diff --git a/load-test/src/oidc.ts b/load-test/src/oidc.ts index edd451ebd6..daccc0e05a 100644 --- a/load-test/src/oidc.ts +++ b/load-test/src/oidc.ts @@ -168,7 +168,7 @@ export async function token(request: TokenRequest): Promise { }); } -const authRequestBiIDTrend = new Trend('oidc_auth_request_by_id_duration', true); +const authRequestByIDTrend = new Trend('oidc_auth_request_by_id_duration', true); export async function authRequestByID(id: string, tokens: any): Promise { const response = http.get(url(`/v2/oidc/auth_requests/${id}`), { headers: { @@ -178,11 +178,11 @@ export async function authRequestByID(id: string, tokens: any): Promise r.status == 200 || fail(`auth request by failed: ${JSON.stringify(r)}`), }); - authRequestBiIDTrend.add(response.timings.duration); + authRequestByIDTrend.add(response.timings.duration); return response; } -const finalizeAuthRequestTrend = new Trend('oidc_auth_requst_by_id_duration', true); +const finalizeAuthRequestTrend = new Trend('oidc_auth_request_finalize', true); export async function finalizeAuthRequest(id: string, session: any, tokens: any): Promise { const res = await http.post( url(`/v2/oidc/auth_requests/${id}`), diff --git a/proto/zitadel/admin.proto b/proto/zitadel/admin.proto index 024c76f72c..5e5da269ac 100644 --- a/proto/zitadel/admin.proto +++ b/proto/zitadel/admin.proto @@ -6124,6 +6124,8 @@ message AddGenericOAuthProviderRequest { } ]; zitadel.idp.v1.Options provider_options = 9; + // Enable the use of Proof Key for Code Exchange (PKCE) for the OAuth2 flow. + bool use_pkce = 10; } message AddGenericOAuthProviderResponse { @@ -6191,6 +6193,8 @@ message UpdateGenericOAuthProviderRequest { } ]; zitadel.idp.v1.Options provider_options = 10; + // Enable the use of Proof Key for Code Exchange (PKCE) for the OAuth2 flow. + bool use_pkce = 11; } message UpdateGenericOAuthProviderResponse { @@ -6234,6 +6238,8 @@ message AddGenericOIDCProviderRequest { ]; zitadel.idp.v1.Options provider_options = 6; bool is_id_token_mapping = 7; + // Enable the use of Proof Key for Code Exchange (PKCE) for the OIDC flow. + bool use_pkce = 8; } message AddGenericOIDCProviderResponse { @@ -6285,6 +6291,8 @@ message UpdateGenericOIDCProviderRequest { ]; zitadel.idp.v1.Options provider_options = 7; bool is_id_token_mapping = 8; + // Enable the use of Proof Key for Code Exchange (PKCE) for the OIDC flow. + bool use_pkce = 9; } message UpdateGenericOIDCProviderResponse { @@ -6834,6 +6842,8 @@ message AddLDAPProviderRequest { google.protobuf.Duration timeout = 10; zitadel.idp.v1.LDAPAttributes attributes = 11; zitadel.idp.v1.Options provider_options = 12; + // Root_ca is for self signing certificates for TLS connections to LDAP servers it is intended to be filled with a .pem file. + bytes root_ca = 13 [(validate.rules).bytes.max_len = 12000]; } message AddLDAPProviderResponse { @@ -6855,6 +6865,8 @@ message UpdateLDAPProviderRequest { google.protobuf.Duration timeout = 11; zitadel.idp.v1.LDAPAttributes attributes = 12; zitadel.idp.v1.Options provider_options = 13; + // Root_ca is for self signing certificates for TLS connections to LDAP servers it is intended to be filled with a .pem file. + bytes root_ca = 14 [(validate.rules).bytes.max_len = 12000]; } message UpdateLDAPProviderResponse { @@ -8778,6 +8790,7 @@ message ListIAMMembersRequest { zitadel.v1.ListQuery query = 1; //criteria the client is looking for repeated zitadel.member.v1.SearchQuery queries = 2; + zitadel.member.v1.MemberFieldColumnName sorting_column = 3; } message ListIAMMembersResponse { diff --git a/proto/zitadel/feature/v2/instance.proto b/proto/zitadel/feature/v2/instance.proto index 3d2280fc0c..efd7f83e4c 100644 --- a/proto/zitadel/feature/v2/instance.proto +++ b/proto/zitadel/feature/v2/instance.proto @@ -106,6 +106,13 @@ message SetInstanceFeaturesRequest{ description: "Enable a newer, more performant, permission check used for v2 and v3 resource based APIs."; } ]; + + optional bool console_use_v2_user_api = 15 [ + (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: "true"; + description: "If this is enabled the console web client will use the new User v2 API for certain calls"; + } + ]; } message SetInstanceFeaturesResponse { @@ -225,4 +232,11 @@ message GetInstanceFeaturesResponse { description: "Enable a newer, more performant, permission check used for v2 and v3 resource based APIs."; } ]; + + FeatureFlag console_use_v2_user_api = 16 [ + (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: "true"; + description: "If this is enabled the console web client will use the new User v2 API for certain calls"; + } + ]; } diff --git a/proto/zitadel/idp.proto b/proto/zitadel/idp.proto index cbb2be9db0..82e32aa873 100644 --- a/proto/zitadel/idp.proto +++ b/proto/zitadel/idp.proto @@ -338,6 +338,8 @@ message OAuthConfig { description: "defines how the attribute is called where ZITADEL can get the id of the user"; } ]; + // Defines if the Proof Key for Code Exchange (PKCE) is used for the authorization code flow. + bool use_pkce = 7; } message GenericOIDCConfig { @@ -365,6 +367,12 @@ message GenericOIDCConfig { description: "if true, provider information get mapped from the id token, not from the userinfo endpoint"; } ]; + // Defines if the Proof Key for Code Exchange (PKCE) is used for the authorization code flow. + bool use_pkce = 5 [ + (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: "true"; + } + ]; } message GitHubConfig { @@ -456,6 +464,7 @@ message LDAPConfig { repeated string user_filters = 7; google.protobuf.Duration timeout = 8; LDAPAttributes attributes = 9; + bytes root_ca = 10; } message SAMLConfig { diff --git a/proto/zitadel/idp/v2/idp.proto b/proto/zitadel/idp/v2/idp.proto index 784e717d3a..0c95b742f1 100644 --- a/proto/zitadel/idp/v2/idp.proto +++ b/proto/zitadel/idp/v2/idp.proto @@ -10,24 +10,23 @@ import "protoc-gen-openapiv2/options/annotations.proto"; import "validate/validate.proto"; import "google/protobuf/duration.proto"; - option go_package = "github.com/zitadel/zitadel/pkg/grpc/idp/v2;idp"; message IDP { // Unique identifier for the identity provider. - string id = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"69629023906488334\""; - } - ]; + string id = 1 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "\"69629023906488334\""; + } ]; zitadel.object.v2.Details details = 2; // Current state of the identity provider. IDPState state = 3; - string name = 4 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"Google\""; - } - ]; + string name = 4 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "\"Google\""; + } ]; // Type of the identity provider, for example OIDC, JWT, LDAP and SAML. IDPType type = 5; // Configuration for the type of the identity provider. @@ -93,177 +92,189 @@ message IDPConfig { message JWTConfig { // The endpoint where the JWT can be extracted. string jwt_endpoint = 1 [ - (validate.rules).string = {min_len: 1, max_len: 200}, - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"https://accounts.google.com\""; + (validate.rules).string = {min_len : 1, max_len : 200}, + (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = + { + example: + "\"https://accounts.google.com\""; } ]; // The issuer of the JWT (for validation). string issuer = 2 [ - (validate.rules).string = {min_len: 1, max_len: 200}, - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"https://accounts.google.com\""; + (validate.rules).string = {min_len : 1, max_len : 200}, + (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = + { + example: + "\"https://accounts.google.com\""; } ]; // The endpoint to the key (JWK) which is used to sign the JWT with. string keys_endpoint = 3 [ - (validate.rules).string = {min_len: 1, max_len: 200}, - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"https://accounts.google.com/keys\""; + (validate.rules).string = {min_len : 1, max_len : 200}, + (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = + { + example: + "\"https://accounts.google.com/keys\""; } ]; // The name of the header where the JWT is sent in, default is authorization. string header_name = 4 [ - (validate.rules).string = {min_len: 1, max_len: 200}, - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"x-auth-token\""; + (validate.rules).string = {min_len : 1, max_len : 200}, + (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = + { + example: + "\"x-auth-token\""; } ]; } message OAuthConfig { // Client id generated by the identity provider. - string client_id = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"client-id\""; - } - ]; + string client_id = 1 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "\"client-id\""; + } ]; // The endpoint where ZITADEL send the user to authenticate. - string authorization_endpoint = 2 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"https://accounts.google.com/o/oauth2/v2/auth\""; - } - ]; + string authorization_endpoint = 2 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "\"https://accounts.google.com/o/oauth2/v2/auth\""; + } ]; // The endpoint where ZITADEL can get the token. - string token_endpoint = 3 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"https://oauth2.googleapis.com/token\""; - } - ]; + string token_endpoint = 3 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "\"https://oauth2.googleapis.com/token\""; + } ]; // The endpoint where ZITADEL can get the user information. - string user_endpoint = 4 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"https://openidconnect.googleapis.com/v1/userinfo\""; - } - ]; - // The scopes requested by ZITADEL during the request on the identity provider. - repeated string scopes = 5 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "[\"openid\", \"profile\", \"email\"]"; - } - ]; - // Defines how the attribute is called where ZITADEL can get the id of the user. - string id_attribute = 6 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"user_id\""; - } - ]; + string user_endpoint = 4 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "\"https://openidconnect.googleapis.com/v1/userinfo\""; + } ]; + // The scopes requested by ZITADEL during the request on the identity + // provider. + repeated string scopes = 5 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "[\"openid\", \"profile\", \"email\"]"; + } ]; + // Defines how the attribute is called where ZITADEL can get the id of the + // user. + string id_attribute = 6 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "\"user_id\""; + } ]; } message GenericOIDCConfig { // The OIDC issuer of the identity provider. - string issuer = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"https://accounts.google.com/\""; - } - ]; + string issuer = 1 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "\"https://accounts.google.com/\""; + } ]; // Client id generated by the identity provider. - string client_id = 2 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"client-id\""; - } - ]; - // The scopes requested by ZITADEL during the request on the identity provider. - repeated string scopes = 3 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "[\"openid\", \"profile\", \"email\"]"; - } - ]; - // If true, provider information get mapped from the id token, not from the userinfo endpoint. - bool is_id_token_mapping = 4 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "true"; - } - ]; + string client_id = 2 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "\"client-id\""; + } ]; + // The scopes requested by ZITADEL during the request on the identity + // provider. + repeated string scopes = 3 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "[\"openid\", \"profile\", \"email\"]"; + } ]; + // If true, provider information get mapped from the id token, not from the + // userinfo endpoint. + bool is_id_token_mapping = 4 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "true"; + } ]; } message GitHubConfig { // The client ID of the GitHub App. - string client_id = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"client-id\""; - } - ]; + string client_id = 1 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "\"client-id\""; + } ]; // The scopes requested by ZITADEL during the request to GitHub. - repeated string scopes = 2 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "[\"openid\", \"profile\", \"email\"]"; - } - ]; + repeated string scopes = 2 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "[\"openid\", \"profile\", \"email\"]"; + } ]; } message GitHubEnterpriseServerConfig { // The client ID of the GitHub App. - string client_id = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"client-id\""; - } - ]; + string client_id = 1 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "\"client-id\""; + } ]; string authorization_endpoint = 2; string token_endpoint = 3; string user_endpoint = 4; // The scopes requested by ZITADEL during the request to GitHub. - repeated string scopes = 5 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "[\"openid\", \"profile\", \"email\"]"; - } - ]; + repeated string scopes = 5 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "[\"openid\", \"profile\", \"email\"]"; + } ]; } message GoogleConfig { // Client id of the Google application. - string client_id = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"client-id\""; - } - ]; + string client_id = 1 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "\"client-id\""; + } ]; // The scopes requested by ZITADEL during the request to Google. - repeated string scopes = 2 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "[\"openid\", \"profile\", \"email\"]"; - } - ]; + repeated string scopes = 2 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "[\"openid\", \"profile\", \"email\"]"; + } ]; } message GitLabConfig { // Client id of the GitLab application. - string client_id = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"client-id\""; - } - ]; + string client_id = 1 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "\"client-id\""; + } ]; // The scopes requested by ZITADEL during the request to GitLab. - repeated string scopes = 2 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "[\"openid\", \"profile\", \"email\"]"; - } - ]; + repeated string scopes = 2 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "[\"openid\", \"profile\", \"email\"]"; + } ]; } message GitLabSelfHostedConfig { string issuer = 1; // Client id of the GitLab application. - string client_id = 2 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"client-id\""; - } - ]; + string client_id = 2 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "\"client-id\""; + } ]; // The scopes requested by ZITADEL during the request to GitLab. - repeated string scopes = 3 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "[\"openid\", \"profile\", \"email\"]"; - } - ]; + repeated string scopes = 3 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "[\"openid\", \"profile\", \"email\"]"; + } ]; } message LDAPConfig { @@ -276,6 +287,7 @@ message LDAPConfig { repeated string user_filters = 7; google.protobuf.Duration timeout = 8; LDAPAttributes attributes = 9; + bytes root_ca = 10; } message SAMLConfig { @@ -288,66 +300,84 @@ message SAMLConfig { // `nameid-format` for the SAML Request. SAMLNameIDFormat name_id_format = 4; // Optional name of the attribute, which will be used to map the user - // in case the nameid-format returned is `urn:oasis:names:tc:SAML:2.0:nameid-format:transient`. + // in case the nameid-format returned is + // `urn:oasis:names:tc:SAML:2.0:nameid-format:transient`. optional string transient_mapping_attribute_name = 5; } message AzureADConfig { // Client id of the Azure AD application - string client_id = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"client-id\""; - } - ]; - // Defines what user accounts should be able to login (Personal, Organizational, All). + string client_id = 1 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "\"client-id\""; + } ]; + // Defines what user accounts should be able to login (Personal, + // Organizational, All). AzureADTenant tenant = 2; - // Azure AD doesn't send if the email has been verified. Enable this if the user email should always be added verified in ZITADEL (no verification emails will be sent). + // Azure AD doesn't send if the email has been verified. Enable this if the + // user email should always be added verified in ZITADEL (no verification + // emails will be sent). bool email_verified = 3; // The scopes requested by ZITADEL during the request to Azure AD. - repeated string scopes = 4 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "[\"openid\", \"profile\", \"email\", \"User.Read\"]"; - } - ]; + repeated string scopes = 4 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "[\"openid\", \"profile\", \"email\", \"User.Read\"]"; + } ]; } message Options { - // Enable if users should be able to link an existing ZITADEL user with an external account. + // Enable if users should be able to link an existing ZITADEL user with an + // external account. bool is_linking_allowed = 1; - // Enable if users should be able to create a new account in ZITADEL when using an external account. + // Enable if users should be able to create a new account in ZITADEL when + // using an external account. bool is_creation_allowed = 2; - // Enable if a new account in ZITADEL should be created automatically when login with an external account. + // Enable if a new account in ZITADEL should be created automatically when + // login with an external account. bool is_auto_creation = 3; - // Enable if a the ZITADEL account fields should be updated automatically on each login. + // Enable if a the ZITADEL account fields should be updated automatically on + // each login. bool is_auto_update = 4; - // Enable if users should get prompted to link an existing ZITADEL user to an external account if the selected attribute matches. - AutoLinkingOption auto_linking = 5 ; + // Enable if users should get prompted to link an existing ZITADEL user to an + // external account if the selected attribute matches. + AutoLinkingOption auto_linking = 5; } enum AutoLinkingOption { // AUTO_LINKING_OPTION_UNSPECIFIED disables the auto linking prompt. AUTO_LINKING_OPTION_UNSPECIFIED = 0; - // AUTO_LINKING_OPTION_USERNAME will use the username of the external user to check for a corresponding ZITADEL user. + // AUTO_LINKING_OPTION_USERNAME will use the username of the external user to + // check for a corresponding ZITADEL user. AUTO_LINKING_OPTION_USERNAME = 1; - // AUTO_LINKING_OPTION_EMAIL will use the email of the external user to check for a corresponding ZITADEL user with the same verified email - // Note that in case multiple users match, no prompt will be shown. + // AUTO_LINKING_OPTION_EMAIL will use the email of the external user to check + // for a corresponding ZITADEL user with the same verified email Note that in + // case multiple users match, no prompt will be shown. AUTO_LINKING_OPTION_EMAIL = 2; } message LDAPAttributes { - string id_attribute = 1 [(validate.rules).string = {max_len: 200}]; - string first_name_attribute = 2 [(validate.rules).string = {max_len: 200}]; - string last_name_attribute = 3 [(validate.rules).string = {max_len: 200}]; - string display_name_attribute = 4 [(validate.rules).string = {max_len: 200}]; - string nick_name_attribute = 5 [(validate.rules).string = {max_len: 200}]; - string preferred_username_attribute = 6 [(validate.rules).string = {max_len: 200}]; - string email_attribute = 7 [(validate.rules).string = {max_len: 200}]; - string email_verified_attribute = 8 [(validate.rules).string = {max_len: 200}]; - string phone_attribute = 9 [(validate.rules).string = {max_len: 200}]; - string phone_verified_attribute = 10 [(validate.rules).string = {max_len: 200}]; - string preferred_language_attribute = 11 [(validate.rules).string = {max_len: 200}]; - string avatar_url_attribute = 12 [(validate.rules).string = {max_len: 200}]; - string profile_attribute = 13 [(validate.rules).string = {max_len: 200}]; + string id_attribute = 1 [ (validate.rules).string = {max_len : 200} ]; + string first_name_attribute = 2 [ (validate.rules).string = {max_len : 200} ]; + string last_name_attribute = 3 [ (validate.rules).string = {max_len : 200} ]; + string display_name_attribute = 4 + [ (validate.rules).string = {max_len : 200} ]; + string nick_name_attribute = 5 [ (validate.rules).string = {max_len : 200} ]; + string preferred_username_attribute = 6 + [ (validate.rules).string = {max_len : 200} ]; + string email_attribute = 7 [ (validate.rules).string = {max_len : 200} ]; + string email_verified_attribute = 8 + [ (validate.rules).string = {max_len : 200} ]; + string phone_attribute = 9 [ (validate.rules).string = {max_len : 200} ]; + string phone_verified_attribute = 10 + [ (validate.rules).string = {max_len : 200} ]; + string preferred_language_attribute = 11 + [ (validate.rules).string = {max_len : 200} ]; + string avatar_url_attribute = 12 + [ (validate.rules).string = {max_len : 200} ]; + string profile_attribute = 13 [ (validate.rules).string = {max_len : 200} ]; + string root_ca= 14; } enum AzureADTenantType { @@ -365,27 +395,27 @@ message AzureADTenant { message AppleConfig { // Client id (App ID or Service ID) provided by Apple. - string client_id = 1 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"com.client.id\""; - } - ]; + string client_id = 1 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "\"com.client.id\""; + } ]; // Team ID provided by Apple. - string team_id = 2 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"ALT03JV3OS\""; - } - ]; + string team_id = 2 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "\"ALT03JV3OS\""; + } ]; // ID of the private key generated by Apple. - string key_id = 3 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "\"OGKDK25KD\""; - } - ]; + string key_id = 3 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "\"OGKDK25KD\""; + } ]; // The scopes requested by ZITADEL during the request to Apple. - repeated string scopes = 4 [ - (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { - example: "[\"name\", \"email\"]"; - } - ]; -} \ No newline at end of file + repeated string scopes = 4 + [ (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + example: + "[\"name\", \"email\"]"; + } ]; +} diff --git a/proto/zitadel/management.proto b/proto/zitadel/management.proto index 5444983396..e69e331f87 100644 --- a/proto/zitadel/management.proto +++ b/proto/zitadel/management.proto @@ -12545,6 +12545,8 @@ message AddGenericOAuthProviderRequest { } ]; zitadel.idp.v1.Options provider_options = 9; + // Enable the use of Proof Key for Code Exchange (PKCE) for the OAuth2 flow. + bool use_pkce = 10; } message AddGenericOAuthProviderResponse { @@ -12612,6 +12614,8 @@ message UpdateGenericOAuthProviderRequest { } ]; zitadel.idp.v1.Options provider_options = 10; + // Enable the use of Proof Key for Code Exchange (PKCE) for the OAuth2 flow. + bool use_pkce = 11; } message UpdateGenericOAuthProviderResponse { @@ -12655,6 +12659,8 @@ message AddGenericOIDCProviderRequest { ]; zitadel.idp.v1.Options provider_options = 6; bool is_id_token_mapping = 7; + // Enable the use of Proof Key for Code Exchange (PKCE) for the OIDC flow. + bool use_pkce = 8; } message AddGenericOIDCProviderResponse { @@ -12706,6 +12712,8 @@ message UpdateGenericOIDCProviderRequest { ]; zitadel.idp.v1.Options provider_options = 7; bool is_id_token_mapping = 8; + // Enable the use of Proof Key for Code Exchange (PKCE) for the OIDC flow. + bool use_pkce = 9; } message UpdateGenericOIDCProviderResponse { @@ -13255,6 +13263,8 @@ message AddLDAPProviderRequest { google.protobuf.Duration timeout = 10; zitadel.idp.v1.LDAPAttributes attributes = 11; zitadel.idp.v1.Options provider_options = 12; + // Root_ca is for self signing certificates for TLS connections to LDAP servers it is intended to be filled with a .pem file. + bytes root_ca = 13 [(validate.rules).bytes.max_len = 12000]; } message AddLDAPProviderResponse { @@ -13276,6 +13286,8 @@ message UpdateLDAPProviderRequest { google.protobuf.Duration timeout = 11; zitadel.idp.v1.LDAPAttributes attributes = 12; zitadel.idp.v1.Options provider_options = 13; + // Root_ca is for self signing certificates for TLS connections to LDAP servers it is intended to be filled with a .pem file. + bytes root_ca = 14 [(validate.rules).bytes.max_len = 12000]; } message UpdateLDAPProviderResponse { diff --git a/proto/zitadel/member.proto b/proto/zitadel/member.proto index c3351a99d3..f4ec080433 100644 --- a/proto/zitadel/member.proto +++ b/proto/zitadel/member.proto @@ -143,3 +143,11 @@ message UserIDQuery { } ]; } + +enum MemberFieldColumnName { + MEMBER_FIELD_NAME_UNSPECIFIED = 0; + MEMBER_FIELD_NAME_USER_ID=1; + MEMBER_FIELD_NAME_CREATION_DATE = 2; + MEMBER_FIELD_NAME_CHANGE_DATE=3; + MEMBER_FIELD_NAME_USER_RESOURCE_OWNER=4; +} \ No newline at end of file diff --git a/proto/zitadel/object/v2/object.proto b/proto/zitadel/object/v2/object.proto index 5a63ece19b..339966d3b2 100644 --- a/proto/zitadel/object/v2/object.proto +++ b/proto/zitadel/object/v2/object.proto @@ -78,6 +78,8 @@ message Details { example: "\"69629023906488334\""; } ]; + //creation_date is the timestamp where the first operation on the object was made + google.protobuf.Timestamp creation_date = 4; } message ListDetails { diff --git a/proto/zitadel/object/v2beta/object.proto b/proto/zitadel/object/v2beta/object.proto index df8e77319a..fd3190ccd6 100644 --- a/proto/zitadel/object/v2beta/object.proto +++ b/proto/zitadel/object/v2beta/object.proto @@ -78,6 +78,8 @@ message Details { example: "\"69629023906488334\""; } ]; + //creation_date is the timestamp where the first operation on the object was made + google.protobuf.Timestamp creation_date = 4; } message ListDetails { diff --git a/proto/zitadel/oidc/v2/authorization.proto b/proto/zitadel/oidc/v2/authorization.proto index c0ad751624..6cdf55de64 100644 --- a/proto/zitadel/oidc/v2/authorization.proto +++ b/proto/zitadel/oidc/v2/authorization.proto @@ -114,4 +114,17 @@ enum ErrorReason { ERROR_REASON_REQUEST_NOT_SUPPORTED = 14; ERROR_REASON_REQUEST_URI_NOT_SUPPORTED = 15; ERROR_REASON_REGISTRATION_NOT_SUPPORTED = 16; +} + +message DeviceAuthorizationRequest { + // The unique identifier of the device authorization request to be used for authorizing or denying the request. + string id = 1; + // The client_id of the application that initiated the device authorization request. + string client_id = 2; + // The scopes requested by the application. + repeated string scope = 3; + // Name of the client application. + string app_name = 4; + // Name of the project the client application is part of. + string project_name = 5; } \ No newline at end of file diff --git a/proto/zitadel/oidc/v2/oidc_service.proto b/proto/zitadel/oidc/v2/oidc_service.proto index 3c36057afa..e305cbfe9a 100644 --- a/proto/zitadel/oidc/v2/oidc_service.proto +++ b/proto/zitadel/oidc/v2/oidc_service.proto @@ -147,6 +147,58 @@ service OIDCService { }; }; } + + // Get device authorization request + // + // Get the device authorization based on the provided "user code". + // This will return the device authorization request, which contains the device authorization id + // that is required to authorize the request once the user signed in or to deny it. + rpc GetDeviceAuthorizationRequest(GetDeviceAuthorizationRequestRequest) returns (GetDeviceAuthorizationRequestResponse) { + option (google.api.http) = { + get: "/v2/oidc/device_authorization/{user_code}" + }; + + option (zitadel.protoc_gen_zitadel.v2.options) = { + auth_option: { + permission: "authenticated" + } + }; + + option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = { + responses: { + key: "200" + value: { + description: "OK"; + } + }; + }; + } + + // Authorize or deny device authorization + // + // Authorize or deny the device authorization request based on the provided device authorization id. + rpc AuthorizeOrDenyDeviceAuthorization(AuthorizeOrDenyDeviceAuthorizationRequest) returns (AuthorizeOrDenyDeviceAuthorizationResponse) { + option (google.api.http) = { + post: "/v2/oidc/device_authorization/{device_authorization_id}" + body: "*" + }; + + option (zitadel.protoc_gen_zitadel.v2.options) = { + auth_option: { + permission: "authenticated" + } + }; + + option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_operation) = { + responses: { + key: "200" + value: { + description: "OK"; + } + }; + }; + } + } message GetAuthRequestRequest { @@ -217,3 +269,42 @@ message CreateCallbackResponse { ]; } +message GetDeviceAuthorizationRequestRequest { + // The user_code returned by the device authorization request and provided to the user by the device. + string user_code = 1 [ + (validate.rules).string = {len: 9}, + (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + min_length: 9; + max_length: 9; + example: "\"K9LV-3DMQ\""; + } + ]; +} + +message GetDeviceAuthorizationRequestResponse { + DeviceAuthorizationRequest device_authorization_request = 1; +} + +message AuthorizeOrDenyDeviceAuthorizationRequest { + // The device authorization id returned when submitting the user code. + string device_authorization_id = 1 [ + (validate.rules).string = {min_len: 1, max_len: 200}, + (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = { + min_length: 1; + max_length: 200; + } + ]; + + // The decision of the user to authorize or deny the device authorization request. + oneof decision { + option (validate.required) = true; + // To authorize the device authorization request, the user's session must be provided. + Session session = 2; + // Deny the device authorization request. + Deny deny = 3; + } +} + +message Deny{} + +message AuthorizeOrDenyDeviceAuthorizationResponse {} \ No newline at end of file diff --git a/proto/zitadel/system.proto b/proto/zitadel/system.proto index 8e199aa505..b5852b1fec 100644 --- a/proto/zitadel/system.proto +++ b/proto/zitadel/system.proto @@ -689,6 +689,7 @@ message ListIAMMembersRequest { zitadel.v1.ListQuery query = 1; string instance_id = 2; repeated zitadel.member.v1.SearchQuery queries = 3; + zitadel.member.v1.MemberFieldColumnName sorting_column = 4; } message ListIAMMembersResponse {