TheArchive/zitadel
1
0
Fork 0
mirror of https://github.com/zitadel/zitadel.git synced 2025-08-14 10:07:38 +00:00
Code Issues Packages Projects Releases Wiki Activity
3,830 Commits 173 Branches 1,935 Tags
id_providers
Commit Graph

1899 Commits

Author SHA1 Message Date
Tim Möhlmann
56e33ce1a7 fix: rename OTP to TOTP in v2 alpha user api 
This change renames the v2 user OTP registration endpoints and objects
to TOTP.
Also the v2 related code paths have been renamed to TOTP.

This change was discussed during the sprint review.
 2023-06-22 12:06:32 +02:00
Stefan Benz
1b5d6ce89e feat: session checks with intent (#6031) 
* feat: session checks with intent

* feat: session checks with intent

* fix: integration tests for intent session

* fix: integration tests for intent session

* fix merge

* fix: integration tests for intent session

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
 2023-06-21 14:06:18 +00:00
Livio Spring
7e6434fa8c fix: event handling on UserIDPLinkWriteModel (#6054) 2023-06-21 06:30:39 +00:00
Livio Spring
84085478ec fix(login): ensure auth request information is up-to-date in external user check (#6060) 2023-06-21 05:00:03 +00:00
Livio Spring
7046194530 feat(api): list authentication method types in user api v2 (#6058) 2023-06-20 16:23:28 +00:00
Livio Spring
82e7333169 feat(api): add password reset and change to user service (#6036) 
* feat(api): add password reset and change to user service

* integration tests

* invalidate password check after password change

* handle notification type

* fix proto
 2023-06-20 17:34:06 +02:00
Livio Spring
1017568cf1 fix: provide more information in the retrieve idp information (#5927) 
* fix: provide more information in the retrieve idp information

* change raw_information to proto struct

* change unmarshal

* improve description
 2023-06-20 14:39:50 +02:00
Tim Möhlmann
09aafb35eb feat(v2): implement user register OTP (#6030) 
* feat(v2): implement user register OTP

* feat(v2): implement user verify OTP

* session: retry on permission denied
 2023-06-20 10:36:21 +00:00
Firmino Changani
4eaf3fb21e fix: typo at function's name: checkApplicationType (#6039) 2023-06-19 11:07:56 +00:00
Florian Forster
62f424e69a chore: translation error in fr (#6052) 2023-06-19 09:59:14 +00:00
dian mushkov
4378eb7cb5 feat: internationalization Bulgarian (#5998) 
* Feature BG init

* lint fix

* Fix merge conflict

* merge main branch add bg lang

* reference centrally defined langs

* refactor supportedLanguages

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Elio Bischof <elio@zitadel.com>
 2023-06-16 17:35:03 +02:00
Livio Spring
1c8037f291 fix: external user check (#6038) 2023-06-16 10:27:43 +02:00
Stefan Benz
8dfaa1dfa5 fix: check if application is active in saml logic (#6003) 
Co-authored-by: Livio Spring <livio.a@gmail.com>
 2023-06-15 11:04:27 +02:00
Stefan Benz
2d13d412a2 fix: update linking users if action changed values (#6024) 
Co-authored-by: Livio Spring <livio.a@gmail.com>
 2023-06-15 07:02:53 +00:00
Stefan Benz
855d6b1bd5 fix: nil pointer on create instance add machine (#6000) 
* fix: nil pointer on create instance add machine

* fix: instance setup with machine user pat

* fix: correct logic to write pat and key from setup without configurable scope

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
 2023-06-15 06:16:39 +00:00
Tim Möhlmann
2e323e8044 feat(v2): register user u2f (#6020) 2023-06-15 05:32:40 +00:00
Stefan Benz
66e639b5ad fix: handling of org idp migrations and google events (#5992) 2023-06-08 14:08:13 +00:00
Max Peintner
58cfb94e1d fix(login): url safe encoding base64 (#5983) 
* url safe encoding base64

* js rm export

* fix: publish docker image

* rm releaserc

---------

Co-authored-by: Elio Bischof <eliobischof@gmail.com>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
 2023-06-08 09:27:03 +02:00
Stefan Benz
5562ee94a6 feat: migrate external idp to other types (#5984) 
* feat: migrate instance oidc to azureAD

* feat: migrate instance oidc to azureAD

* feat: migrate org oidc to azureAD

* feat: migrate oidc to google

* fix: correct idp writemodels

* fix: review changes
 2023-06-08 00:50:53 +02:00
Stefan Benz
0b1738dc5d fix: check linked users before postAuthentication action (#5980) 
* fix: check linked users before postAuthentication action

* fix: apply suggestions from code review

Co-authored-by: Silvan <silvan.reusser@gmail.com>

---------

Co-authored-by: Silvan <silvan.reusser@gmail.com>
 2023-06-08 00:16:02 +02:00
Tim Möhlmann
f456168a74 feat: session v2 passkey authentication (#5952) 2023-06-07 17:28:42 +02:00
Elio Bischof
61feb9d19f fix: more silence (#5986) 2023-06-06 15:12:54 +00:00
Tim Möhlmann
d5eaa8fa16 fix: display loginname in machine client credentials (#5936) 2023-05-26 13:04:45 +00:00
Stefan Benz
9aed0319c5 fix: token for post authentication action and change phone and email (#5933) 
* fix: token for post authentication action and change phone and email

* fix checks and add tests

* improve change checks and add tests

* add more tests

* remove unintended test

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
 2023-05-26 07:24:52 +00:00
Stefan Benz
fa8f191812 feat: v2alpha user service idp endpoints (#5879) 
* feat: v2alpha user service idp endpoints

* feat: v2alpha user service intent endpoints

* begin idp intents (callback)

* some cleanup

* runnable idp authentication

* cleanup

* proto cleanup

* retrieve idp info

* improve success and failure handling

* some unit tests

* grpc unit tests

* add permission check AddUserIDPLink

* feat: v2alpha intent writemodel refactoring

* feat: v2alpha intent writemodel refactoring

* feat: v2alpha intent writemodel refactoring

* provider from write model

* fix idp type model and add integration tests

* proto cleanup

* fix integration test

* add missing import

* add more integration tests

* auth url test

* feat: v2alpha intent writemodel refactoring

* remove unused functions

* check token on RetrieveIdentityProviderInformation

* feat: v2alpha intent writemodel refactoring

* fix TestServer_RetrieveIdentityProviderInformation

* fix test

* i18n and linting

* feat: v2alpha intent review changes

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
 2023-05-24 18:29:58 +00:00
Tim Möhlmann
a301c40f9f feat: implement register Passkey user API v2 (#5873) 
* command/crypto: DRY the code

- reuse the the algorithm switch to create a secret generator
- add a verifyCryptoCode function

* command: crypto code tests

* migrate webauthn package

* finish integration tests with webauthn mock client
 2023-05-24 10:22:00 +00:00
András Tóth
8c926366a9 fix(database): allow postgres sslmode=require without root cert (#4972) 
* fix(database): allow postgres sslmode=require without root cert

* fix(database): allow postgres sslmode=require without root cert (fix)

Co-authored-by: Silvan <silvan.reusser@gmail.com>

---------

Co-authored-by: Silvan <silvan.reusser@gmail.com>
 2023-05-23 14:29:13 +00:00
Elio Bischof
2e86c44aa5 fix: delete cookies (#5885) 
Co-authored-by: Livio Spring <livio.a@gmail.com>
 2023-05-19 05:12:31 +00:00
Elio Bischof
885e3385aa fix: send exhausted property in env json (#5877) 2023-05-17 11:41:54 +02:00
Livio Spring
383e68b819 Merge branch 'main' into grcp-server-reflect 2023-05-16 10:51:32 +02:00
Elio Bischof
0e251a29c8 fix: set exhausted cookie with env json (#5868) 
* fix: set exhausted cookie with env json

* lint
 2023-05-15 08:51:02 +02:00
Silvan
098c27d3da fix: render authrequest id only if possible (#5823) 2023-05-11 16:02:34 +00:00
Stefan Benz
8d13f170e8 feat(api): new settings service (#5775) 
* feat: add v2alpha policies service

* feat: add v2alpha policies service

* fix: rename of attributes and messages in v2alpha api

* fix: rename of attributes and messages in v2alpha api

* fix: linter corrections

* fix: review corrections

* fix: review corrections

* fix: review corrections

* fix: review corrections

* fix grpc

* refactor: rename to settings and more

* Apply suggestions from code review

Co-authored-by: Fabi <fabienne.gerschwiler@gmail.com>

* add service to docs and rename legal settings

* unit tests for converters

* go mod tidy

* ensure idp name and return list details

* fix: use correct resource owner for active idps

* change query to join

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Fabi <fabienne.gerschwiler@gmail.com>
Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
 2023-05-11 09:23:40 +00:00
Elio Bischof
35a0977663 fix: improve exhausted SetCookie header (#5789) 
* fix: remove access interceptor for console

* feat: template quota cookie value

* fix: send exhausted cookie from grpc-gateway

* refactor: remove ineffectual err assignments

* Update internal/api/grpc/server/gateway.go

Co-authored-by: Livio Spring <livio.a@gmail.com>

* use dynamic host header to find instance

* add instance mgmt url to environment.json

* support hosts with default ports

* fix linting

* docs: update lb example

* print access logs to stdout

* fix grpc gateway exhausted cookies

* cleanup

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
 2023-05-11 09:24:44 +02:00
Tim Möhlmann
1461d9ec6d Merge branch 'main' into grcp-server-reflect 2023-05-07 16:47:52 +02:00
Tim Möhlmann
62b4c31834 add server reflection to Probes list 2023-05-07 16:47:43 +02:00
Livio Spring
c2cb84cd24 feat(api): new session service (#5801) 
* backup new protoc plugin

* backup

* session

* backup

* initial implementation

* change to specific events

* implement tests

* cleanup

* refactor: use new protoc plugin for api v2

* change package

* simplify code

* cleanup

* cleanup

* fix merge

* start queries

* fix tests

* improve returned values

* add token to projection

* tests

* test db map

* update query

* permission checks

* fix tests and linting

* rework token creation

* i18n

* refactor token check and fix tests

* session to PB test

* request to query tests

* cleanup proto

* test user check

* add comment

* simplify database map type

* Update docs/docs/guides/integrate/access-zitadel-system-api.md

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>

* fix test

* cleanup

* docs

---------

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
 2023-05-05 15:34:53 +00:00
Miguel Cabrerizo
3ca7147808 fix: introduce measures to avoid bots crawling and indexing activities (#5728) 
* fix: 404 for robots.txt and meta robots tags

* fix: add unit tests for robots txt and tag

* fix: add meta tag robots none for login pages

* fix: weird format issue in header.go

* fix: add x-robots-tag=none to grpcwebserver

* fix linting

---------

Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: Livio Spring <livio.a@gmail.com>
 2023-05-05 10:25:02 +02:00
Livio Spring
f1534c0c4c refactor: use new protoc plugin for api v2 (#5798) 
* refactor: use new protoc plugin for api v2

* simplify code
 2023-05-04 08:50:19 +00:00
Tim Möhlmann
5f0c1b5290 resolve comments 2023-05-03 15:10:27 +02:00
Tim Möhlmann
4934d6f4fa Merge branch 'main' into integration-tests 2023-05-02 19:24:37 +03:00
Tim Möhlmann
c839cb3ce0 tie loose ends, documentation 2023-05-02 19:24:24 +03:00
Livio Spring
e0505b2def fix: use correct org id for external authentication actions (#5793) 2023-05-02 16:03:33 +00:00
Silvan
40bf7e49cc fix: correct tracing in access interceptor (#5766) 2023-05-02 08:46:44 +00:00
Tim Möhlmann
f011882b2d Merge branch 'main' into grcp-server-reflect 2023-04-30 14:40:13 +03:00
Silvan
39bdef35e7 chore: merge (#5773) 
* feat: allow skip of success page for native apps (#5627)

add possibility to return to callback directly after login without rendering the successful login page

* build next

* fix(console): disallow inline fonts, critical styles (#5714)

fix: disallow inline

* fix(setup): step 10 for postgres (#5717)

* fix(setup): smaller transactions (#5743)

* fix: order by sequence by default

* test: add allowCreationDateFilter

* fix(step10): separate executions (#5754)

* feat: allow skip of success page for native apps (#5627)

add possibility to return to callback directly after login without rendering the successful login page

* build next

* fix(console): disallow inline fonts, critical styles (#5714)

fix: disallow inline

* fix(setup): step 10 for postgres (#5717)

* fix(setup): smaller transactions (#5743)

* fix(step10): split statements

* fix(step10): split into separate execs

* chore: prerelease

* add truncate before insert

* fix: add truncate

* Merge branch 'main' into optimise-step-10

* chore: reset release definition

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Max Peintner <max@caos.ch>

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Max Peintner <max@caos.ch>
 2023-04-28 14:56:51 +00:00
Tim Möhlmann
498c4436ae inegration tests for user email 2023-04-28 17:44:59 +03:00
Livio Spring
458a383de2 fix: use current sequence for refetching of events (#5772) 
* fix: use current sequence for refetching of events

* fix: use client ids
 2023-04-28 16:28:13 +02:00
Silvan
c8c5cf3c5f feat(cli): add setup cleanup sub command (#5770) 
* feat(cli): add `setup cleanup` sub command

* chore: logging

* chore: logging
 2023-04-28 11:55:35 +00:00
Tim Möhlmann
4b7f5ae186 AddHumanUser tests 2023-04-28 14:39:53 +03:00