feat: idp and login policy configurations (#619)

* feat: oidc config * fix: oidc configurations * feat: oidc idp config * feat: add oidc config test * fix: tests * fix: tests * feat: translate new events * feat: idp eventstore * feat: idp eventstore * fix: tests * feat: command side idp * feat: query side idp * feat: idp config on org * fix: tests * feat: authz idp on org * feat: org idps * feat: login policy * feat: login policy * feat: login policy * feat: add idp func on login policy * feat: add validation to loginpolicy and idp provider * feat: add default login policy * feat: login policy on org * feat: login policy on org * fix: id config handlers * fix: id config handlers * fix: create idp on org * fix: create idp on org * fix: not existing idp config * fix: default login policy * fix: add login policy on org * fix: idp provider search on org * fix: test * fix: remove idp on org * fix: test * fix: test * fix: remove admin idp * fix: logo src as byte * fix: migration * fix: tests * Update internal/iam/repository/eventsourcing/iam.go Co-authored-by: Silvan <silvan.reusser@gmail.com> * Update internal/iam/repository/eventsourcing/iam_test.go Co-authored-by: Silvan <silvan.reusser@gmail.com> * Update internal/iam/repository/eventsourcing/iam_test.go Co-authored-by: Silvan <silvan.reusser@gmail.com> * Update internal/iam/repository/eventsourcing/model/login_policy.go Co-authored-by: Silvan <silvan.reusser@gmail.com> * Update internal/iam/repository/eventsourcing/model/login_policy.go Co-authored-by: Silvan <silvan.reusser@gmail.com> * Update internal/org/repository/eventsourcing/org_test.go Co-authored-by: Silvan <silvan.reusser@gmail.com> * Update internal/iam/repository/eventsourcing/model/login_policy_test.go Co-authored-by: Silvan <silvan.reusser@gmail.com> * Update internal/iam/repository/eventsourcing/model/login_policy_test.go Co-authored-by: Silvan <silvan.reusser@gmail.com> * fix: pr comments * fix: tests * Update types.go * fix: merge request changes * fix: reduce optimization Co-authored-by: Silvan <silvan.reusser@gmail.com> Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2025-08-12 03:57:32 +00:00 · 2020-08-26 09:56:23 +02:00
parent f05c5bae24
commit db1d8f4efe
157 changed files with 37510 additions and 15698 deletions
--- a/internal/static/i18n/de.yaml
+++ b/internal/static/i18n/de.yaml
@@ -69,6 +69,15 @@ Errors:
    UserIDMissing: User ID fehlt
    PolicyAlreadyExists: Policy existiert bereits
    PolicyNotExisting: Policy existiert nicht
+    IdpInvalid: IDP Konfiguration ist ungültig
+    IdpNotExisting: IDP Konfiguration existiert nicht
+    OIDCConfigInvalid: OIDC IDP Konfiguration ist ungültig
+    IdpIsNotOIDC: IDP Konfiguration ist nicht vom Typ OIDC
+    LoginPolicy:
+      NotExisting: Login Policy existiert nicht auf dieser Organisation
+      AlreadyExists: Login Policy existiert bereits
+      IdpProviderAlreadyExisting: Idp Provider existiert bereits
+      IdpProviderNotExisting: Idp Provider existiert nicht
  Project:
    ProjectIDMissing: Project Id fehlt
    AlreadyExists: Project existiert bereits auf der Organisation
@@ -109,6 +118,17 @@ Errors:
    IDMissing: Id fehlt
    GlobalOrgMissing: Globale Organisation fehlt
    IamProjectIDMisisng: Iam Project ID fehlt
+    IdpInvalid: IDP Konfiguration ist ungültig
+    IdpNotExisting: IDP Konfiguration existiert nicht
+    OIDCConfigInvalid: OIDC IDP Konfiguration ist ungültig
+    IdpIsNotOIDC: IDP Konfiguration ist nicht vom Typ OIDC
+    LoginPolicyInvalid: Login Policy ist ungültig
+    IdpProviderInvalid: Idp Provider ist ungültig
+    LoginPolicy:
+      NotExisting: Default Login Policy existiert nicht
+      AlreadyExists: Default Login Policy existiert bereits
+      IdpProviderAlreadyExisting: Idp Provider existiert bereits
+      IdpProviderNotExisting: Idp Provider existiert nicht
  Policy:
    AlreadyExists: Policy existiert bereits
  UserGrant:
@@ -225,6 +245,28 @@ EventTypes:
        added: System Richtlinie der Organisation hinzugefügt
        changed: System Richtlinie der Organisation geändert
        removed: System Richtlinie der Organisation entfernt
+    idp:
+      config:
+        added: IDP Konfiguration hinzugefügt
+        changed: IDP Konfiguration geändert
+        removed: IDP Konfiguration gelöscht
+        deactivated: IDP Konfiguration deaktiviert
+        reactivated: IDP Konfiguration reaktiviert
+      oidc:
+        config:
+          added: OIDC IDP Konfiguration hinzugefügt
+          changed: OIDC IDP Konfiguration geändert
+      saml:
+        config:
+          added: SAML IDP Konfiguration hinzugefügt
+          changed: SAML IDP Konfiguration geändert
+    policy:
+      login:
+        added: Login Policy hinzugefügt
+        changed: Login Policy geändert
+        idpprovider:
+          added: Idp Provider zu Login Policy hinzugefügt
+          removed: Idp Provider aus Login Policy gelöscht
  project:
    added: Projekt hinzugefügt
    changed: Project geändert
@@ -293,6 +335,28 @@ EventTypes:
      added: ZITADEL Mitglied hinzugefügt
      changed: ZITADEL Mitglied geändert
      removed: ZITADEL Mitglied entfernt
+    idp:
+      config:
+        added: IDP Konfiguration hinzugefügt
+        changed: IDP Konfiguration geändert
+        removed: IDP Konfiguration gelöscht
+        deactivated: IDP Konfiguration deaktiviert
+        reactivated: IDP Konfiguration reaktiviert
+      oidc:
+        config:
+          added: OIDC IDP Konfiguration hinzugefügt
+          changed: OIDC IDP Konfiguration geändert
+      saml:
+        config:
+          added: SAML IDP Konfiguration hinzugefügt
+          changed: SAML IDP Konfiguration geändert
+    policy:
+      login:
+        added: Default Login Policy hinzugefügt
+        changed: Default Login Policy geändert
+        idpprovider:
+          added: Idp Provider zu Default Login Policy hinzugefügt
+          removed: Idp Provider aus Default Login Policy gelöscht
  key_pair:
    added: Schlüsselpaar hinzugefügt
 Application:
--- a/internal/static/i18n/en.yaml
+++ b/internal/static/i18n/en.yaml
@@ -69,6 +69,15 @@ Errors:
    UserIDMissing: User ID missing
    PolicyAlreadyExists: Policy alredy exists
    PolicyNotExisting: Policy doesn't exist
+    IdpInvalid: IDP configuration is invalid
+    IdpNotExisting: IDP configuration does not exist
+    OIDCConfigInvalid: OIDC IDP configuration is invalid
+    IdpIsNotOIDC: IDP configuration is not of type oidc
+    LoginPolicy:
+      NotExisting: Login Policy not existig
+      AlreadyExists: Login Policy already exists
+      IdpProviderAlreadyExisting: Idp Provider already existing
+      IdpProviderNotExisting: Idp Provider not existing
  Project:
    ProjectIDMissing: Project Id missing
    AlreadyExists: Project already exists on organisation
@@ -109,6 +118,17 @@ Errors:
    IDMissing: Id missing
    GlobalOrgMissing: Global organisation missing
    IamProjectIDMisisng: Iam project id missing
+    IdpInvalid: IDP configuration is invalid
+    IdpNotExisting: IDP configuration does not exist
+    OIDCConfigInvalid: OIDC IDP configuration is invalid
+    IdpIsNotOIDC: IDP configuration is not of type oidc
+    LoginPolicyInvalid: Login Policy is invalid
+    IdpProviderInvalid: Idp Provider is invalid
+    LoginPolicy:
+      NotExisting: Default Login Policy not existig
+      AlreadyExists: Default Login Policy already exists
+      IdpProviderAlreadyExisting: Idp Provider already existing
+      IdpProviderNotExisting: Idp Provider not existing
  Policy:
    AlreadyExists: Policy already exists
  UserGrant:
@@ -225,6 +245,28 @@ EventTypes:
        added: System policy added
        changed: System policy changed
        removed: System policy removed
+    idp:
+      config:
+        added: IDP configuration added
+        changed: IDP configuration changed
+        removed: IDP configuration removed
+        deactivated: IDP configuration deactivated
+        reactivated: IDP configuration reactivated
+      oidc:
+        config:
+          added: OIDC IDP configuration added
+          changed: OIDC IDP configuration changed
+      saml:
+        config:
+          added: SAML IDP configuration added
+          changed: SAML IDP configuration changed
+    policy:
+      login:
+        added: Login Policy added
+        changed: Login Policy changed
+        idpprovider:
+          added: Idp Provider added to Login Policy
+          removed: Idp Provider removed from Login Policy
  project:
    added: Project added
    changed: Project changed
@@ -293,6 +335,28 @@ EventTypes:
      added: ZITADEL member added
      changed: ZITADEL member changed
      removed: ZITADEL member removed
+    idp:
+      config:
+        added: IDP configuration added
+        changed: IDP configuration changed
+        removed: IDP configuration removed
+        deactivated: IDP configuration deactivated
+        reactivated: IDP configuration reactivated
+      oidc:
+        config:
+          added: OIDC IDP configuration added
+          changed: OIDC IDP configuration changed
+      saml:
+        config:
+          added: SAML IDP configuration added
+          changed: SAML IDP configuration changed
+    policy:
+      login:
+        added: Default Login Policy added
+        changed: Default Login Policy changed
+        idpprovider:
+          added: Idp Provider added to Default Login Policy
+          removed: Idp Provider removed from Default Login Policy
  key_pair:
    added: Key pair added
 Application: