feat: Lockout policy (#2121)

* feat: lock users if lockout policy is set * feat: setup * feat: lock user on password failes * feat: render error * feat: lock user on command side * feat: auth_req tests * feat: lockout policy docs * feat: remove show lockout failures from proto * fix: console lockout * feat: tests * fix: tests * unlock function * add unlock button * fix migration version * lockout policy * lint * Update internal/auth/repository/eventsourcing/eventstore/auth_request.go Co-authored-by: Silvan <silvan.reusser@gmail.com> * fix: err message * Update internal/command/setup_step4.go Co-authored-by: Silvan <silvan.reusser@gmail.com> Co-authored-by: Max Peintner <max@caos.ch> Co-authored-by: Livio Amstutz <livio.a@gmail.com> Co-authored-by: Silvan <silvan.reusser@gmail.com>
2025-08-23 22:38:06 +00:00 · 2021-08-11 08:36:32 +02:00
parent 272e411e27
commit bc951985ed
101 changed files with 2170 additions and 1574 deletions
--- a/console/src/assets/i18n/en.json
+++ b/console/src/assets/i18n/en.json
@@ -174,7 +174,9 @@
      "REACTIVATE": "Reactivate",
      "DEACTIVATE": "Deactivate",
      "FILTER": "Filter",
-      "DELETE": "Delete User"
+      "DELETE": "Delete User",
+      "UNLOCK": "Unlock User",
+      "LOCKEDDESCRIPTION":"This user has been locked out due to exceeding the maximum login attempts and must be unlocked to be used again."
    },
    "DIALOG": {
      "DELETE_TITLE": "Delete User",
@@ -421,7 +423,8 @@
    "STATE": {
      "0": "Unknown",
      "1": "Active",
-      "2": "Expired"
+      "2": "Expired",
+      "4": "Locked"
    },
    "SEARCH": {
      "FOUND": "Found"
@@ -460,7 +463,8 @@
      "SELECTEDKEYSDELETED": "Selected keys deleted.",
      "KEYADDED": "Key added!",
      "MACHINEADDED": "Service User created!",
-      "DELETED": "User deleted successfully!"
+      "DELETED": "User deleted successfully!",
+      "UNLOCKED":"User unlocked successfully!"
    },
    "MEMBERSHIPS": {
      "TITLE": "ZITADEL Manager Roles",
@@ -688,7 +692,7 @@
    },
    "PWD_LOCKOUT": {
      "TITLE": "Password Lockout",
-      "DESCRIPTION": "Password retries are infinite in default mode. You have to apply this policy if you want to show the number of retries, or set a maximum number of retries after which the account will be blocked."
+      "DESCRIPTION": "Set a maximum number of passwordretries, after which accounts will be blocked."
    },
    "IAM_POLICY": {
      "TITLE": "IAM Access Preferences",