Stefan Benz
586495a0be
feat: add management for ldap idp template ( #5220 )
...
Add management functionality for LDAP idps with templates and the basic functionality for the LDAP provider, which can then be used with a separate login page in the future.
---------
Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-02-15 08:14:59 +00:00
Stefan Benz
3616b6b028
feat(api): allow specifying access_token type (opaque/JWT) for service users ( #5150 )
...
Add functionality to configure the access token type on the service accounts to provide the oidc library with the necessary information to create the right type of access token.
2023-02-08 08:06:34 +00:00
Stefan Benz
e2fdd3f077
feat: support client_credentials for service users ( #5134 )
...
Request an access_token for service users with OAuth 2.0 Client Credentials Grant. Added functionality to generate and remove a secret on service users.
2023-01-31 19:52:47 +00:00
Silvan
c54ddc71a2
feat(actions): local users ( #5089 )
...
Actions are extended to to local users. It's possible to run custom code during registration and authentication of local users.
2023-01-25 13:08:01 +00:00
Stefan Benz
19621acfd3
feat: add notification policy and password change message ( #5065 )
...
Implementation of new notification policy with functionality to send email when a password is changed
2023-01-25 09:49:41 +01:00
Stefan Benz
f5eddcc490
fix: separate tos and privacy checkbox into two ( #4848 )
2022-12-21 09:27:31 +01:00
Stefan Benz
339fbd4f0c
fix: change back to login button and add to register option screen ( #4847 )
...
* fix: change back to login button and add to register option screen
* fix: change back to login button and add logic for remove and set events
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
2022-12-20 09:26:48 +01:00
Stefan Benz
47ffa52f0f
feat: Instance create ( #4502 )
...
* feat(instance): implement create instance with direct machine user and credentials
* fix: deprecated add endpoint and variable declaration
* fix(instance): update logic for pats and machinekeys
* fix(instance): unit test corrections and additional unit test for pats and machinekeys
* fix(instance-create): include review changes
* fix(instance-create): linter fixes
* move iframe usage to solution scenarios configurations
* Revert "move iframe usage to solution scenarios configurations"
This reverts commit 9db31f3808
.
* fix merge
* fix: add review suggestions
Co-authored-by: Livio Spring <livio.a@gmail.com>
* fix: add review changes
* fix: add review changes for default definitions
* fix: add review changes for machinekey details
* fix: add machinekey output when setup with machineuser
* fix: add changes from review
* fix instance converter for machine and allow overwriting of further machine fields
Co-authored-by: Livio Spring <livio.a@gmail.com>
2022-12-09 14:04:33 +01:00
Stefan Benz
9626897834
fix(logintexts): fix several custom text attributes for get and set ( #4733 )
...
* fix(logintexts): fix several custom text attributes for get and set
* fix(logintexts): fix externalUserNotFound attribute for json unmarshalling and reduce for customTexts
* fix: correct imports for linting
2022-12-01 13:31:46 +01:00
Livio Spring
d721f725fd
fix: instance remove ( #4602 )
2022-10-26 13:06:48 +00:00
Stefan Benz
c2a5b785fb
feat: instance remove ( #4345 )
...
* feat(instance): add remove instance event with projections cleanup
* fix(instance): corrected used id to clean up projections
* fix merge
* fix: correct unit test projection names
* fix: current sequence of lists and query for ensuring keypair based projections
Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
2022-10-20 14:36:52 +02:00
Livio Spring
3270a94291
fix: idp usage ( #4571 )
...
* fix: send email verification instead of init code for idp users
* fix: select single idp of external only users
* fix: use single idp on login
2022-10-18 14:48:26 +00:00
Livio Spring
b0b1e94090
feat(login): additionally use email/phone for authentication ( #4563 )
...
* feat: add ability to disable login by email and phone
* feat: check login by email and phone
* fix: set verified email / phone correctly on notify users
* update projection version
* fix merge
* fix email/phone verified reduce tests
* fix user tests
* loginname check
* cleanup
* fix: update user projection version to handle fixed statement
2022-10-17 19:19:15 +00:00
Livio Spring
d775020a32
fix: login for initial users ( #4506 )
2022-10-07 13:56:50 +02:00
Silvan
43fb3fd1a6
feat(actions): add token customization flow and extend functionally with modules ( #4337 )
...
* fix: potential memory leak
* feat(actions): possibility to parse json
feat(actions): possibility to perform http calls
* add query call
* feat(api): list flow and trigger types
fix(api): switch flow and trigger types to dynamic objects
* fix(translations): add action translations
* use `domain.FlowType`
* localizers
* localization
* trigger types
* options on `query.Action`
* add functions for actions
* feat: management api: add list flow and trigger (#4352 )
* console changes
* cleanup
* fix: wrong localization
Co-authored-by: Max Peintner <max@caos.ch>
* id token works
* check if claims not nil
* feat(actions): metadata api
* refactor(actions): modules
* fix: allow prerelease
* fix: test
* feat(actions): deny list for http hosts
* feat(actions): deny list for http hosts
* refactor: actions
* fix: different error ids
* fix: rename statusCode to status
* Actions objects as options (#4418 )
* fix: rename statusCode to status
* fix(actions): objects as options
* fix(actions): objects as options
* fix(actions): set fields
* add http client to old actions
* fix(actions): add log module
* fix(actions): add user to context where possible
* fix(actions): add user to ctx in external authorization/pre creation
* fix(actions): query correct flow in claims
* test: actions
* fix(id-generator): panic if no machine id
* tests
* maybe this?
* fix linting
* refactor: improve code
* fix: metadata and usergrant usage in actions
* fix: appendUserGrant
* fix: allowedToFail and timeout in action execution
* fix: allowed to fail in token complement flow
* docs: add action log claim
* Update defaults.yaml
* fix log claim
* remove prerelease build
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Livio Spring <livio.a@gmail.com>
2022-10-06 14:23:59 +02:00
Livio Spring
bffb10a4b4
feat: allow domain discovery for unknown usernames ( #4484 )
...
* fix: wait for projection initialization to be done
* feat: allow domain discovery for unknown usernames
* fix linting
* Update console/src/assets/i18n/de.json
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
* Update console/src/assets/i18n/en.json
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
* Update console/src/assets/i18n/it.json
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
* Update console/src/assets/i18n/fr.json
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
* fix zh i18n text
* fix projection table name
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
2022-10-06 13:30:14 +02:00
Livio Spring
7dfa1925cc
feat: restrict login to specific org by id (scope) ( #4294 )
...
* feat: add new org scope
* change default of UserLoginMustBeDomain to false
* return resource owner claims
* fix: use email style for first user
* fix: ensure email style for default users (backwards compatibility)
* change to external domain (as it was before UserLoginMustBeDomain change)
* update e2e tests to use email style usernames
* document new scope
* lint e2e
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
2022-09-23 12:08:10 +00:00
Stefan Benz
7a5f7f82cf
feat(saml): implementation of saml for ZITADEL v2 ( #3618 )
2022-09-12 18:18:08 +02:00
Livio Spring
cc612fed07
fix: trim spaces for usernames and organization names ( #4217 )
2022-08-19 15:00:14 +02:00
Livio Spring
02d2032790
feat: add ZITADEL project id scope ( #4146 )
...
* feat: add ZITADEL project id scope
* update documentation
* documentation
* fix scopes
* change to lowercase
2022-08-09 09:45:59 +02:00
Stefan Benz
bc9a85daf3
feat: V2 alpha import and export of organizations ( #3798 )
...
* feat(import): add functionality to import data into an instance
* feat(import): move import to admin api and additional checks for nil pointer
* fix(export): export implementation with filtered members and grants
* fix: export and import implementation
* fix: add possibility to export hashed passwords with the user
* fix(import): import with structure of v1 and v2
* docs: add v1 proto
* fix(import): check im imported user is already existing
* fix(import): add otp import function
* fix(import): add external idps, domains, custom text and messages
* fix(import): correct usage of default values from login policy
* fix(export): fix renaming of add project function
* fix(import): move checks for unit tests
* expect filter
* fix(import): move checks for unit tests
* fix(import): move checks for unit tests
* fix(import): produce prerelease from branch
* fix(import): correctly use provided user id for machine user imports
* fix(import): corrected otp import and added guide for export and import
* fix: import verified and primary domains
* fix(import): add reading from gcs, s3 and localfile with tracing
* fix(import): gcs and s3, file size correction and error logging
* Delete docker-compose.yml
* fix(import): progress logging and count of resources
* fix(import): progress logging and count of resources
* log subscription
* fix(import): incorporate review
* fix(import): incorporate review
* docs: add suggestion for import
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
* fix(import): add verification otp event and handling of deleted but existing users
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: Fabienne <fabienne.gerschwiler@gmail.com>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
2022-07-28 13:42:35 +00:00
Max Peintner
3500961fbb
fix: add smtp config, remove smtp and sms provider, console adaptations ( #3792 )
...
* fix: add AddSMTPConfig to admin api
* addsmtpconfig
* fix: add RemoveSMTPConfig and RemoveSMSProvider to admin api
* update twilio, token fcn
* fix account switcher, twilio token set, cleanup dialog
* cleanup
* buttons
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-06-10 12:39:38 +02:00
Livio Amstutz
62c4a4d08d
fix: return absolute asset urls ( #3676 )
2022-05-20 10:30:12 +02:00
Fabi
5c0f527a49
feat: restrict smtp sender address ( #3637 )
...
* fix: check if sender address is custom domain
* fix: check if sender address is custom domain
* fix: check if sender address is custom domain
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-05-16 14:08:47 +00:00
Livio Amstutz
411d7c6c5c
feat: add default redirect uri and handling of unknown usernames ( #3616 )
...
* feat: add possibility to ignore username errors on first login screen
* console changes
* fix: handling of unknown usernames (#3445 )
* fix: handling of unknown usernames
* fix: handle HideLoginNameSuffix on unknown users
* feat: add default redirect uri on login policy (#3607 )
* feat: add default redirect uri on login policy
* fix tests
* feat: Console login policy default redirect (#3613 )
* console default redirect
* placeholder
* validate default redirect uri
* allow empty default redirect uri
Co-authored-by: Max Peintner <max@caos.ch>
* remove wonrgly cherry picked migration
Co-authored-by: Max Peintner <max@caos.ch>
2022-05-16 13:39:09 +00:00
Fabi
48fbf1a28e
feat: add random string to generated domain ( #3634 )
2022-05-16 11:26:24 +02:00
Livio Amstutz
861cf07700
feat: permit all features to every instance and organisation ( #3566 )
2022-05-02 11:18:17 +02:00
Florian Forster
fa9f581d56
chore(v2): move to new org ( #3499 )
...
* chore: move to new org
* logging
* fix: org rename caos -> zitadel
Co-authored-by: adlerhurst <silvan.reusser@gmail.com>
2022-04-26 23:01:45 +00:00
Fabi
3d5891eb11
feat: System api ( #3461 )
...
* feat: start system api
* feat: remove auth
* feat: change gitignore
* feat: run system api
* feat: remove clear view form admin api
* feat: search instances
* feat: add instance
* fix: set primary domain
* Update .gitignore
* fix: add instance
* fix: add instance
* fix: handle errors
* fix: handle instance name
* fix: test
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-04-21 12:37:39 +02:00
Fabi
c25d853820
feat: Instance domains ( #3444 )
...
* feat: add domain list
* feat: domain tests
* feat: add redirect url on adding instance domain
* Update internal/command/instance_domain.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* feat: remove unused code
* fix
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-04-14 12:19:18 +00:00
Fabi
820a21dce3
feat: validate org domains ( #3387 )
...
* feat: validate org domain command side
* feat: validate org domain query side
* fix: create domain policy
* feat: add reading domain policy on addorg domain
2022-04-13 11:24:03 +02:00
Silvan
cea2567e22
fix: v2 human command ( #3435 )
...
* add/register human command done
* validations
* crypto
* move clientid
* keys
* fix: clientID
* remove v2 package
* tests
* tests running
* revert old code
* instance domain from ctx
* chore: rename zitadel app ids
* comments
* fix: test
2022-04-12 16:20:17 +02:00
Fabi
c740ee5d81
feat: Instance commands ( #3385 )
...
* fix: add events for domain
* fix: add/remove domain command side
* fix: add/remove domain command side
* fix: add/remove domain query side
* fix: create instance
* fix: merge v2
* fix: instance domain
* fix: instance domain
* fix: instance domain
* fix: instance domain
* fix: remove domain.IAMID from writemodels
* fix: remove domain.IAMID from writemodels
* fix: remove domain.IAMID from writemodels
* fix: remove domain.IAMID from writemodels
* fix: remove domain.IAMID from writemodels
* fix: remove domain.IAMID from writemodels
* fix: remove domain.IAMID from writemodels
* fix: remove domain.IAMID from writemodels
* fix: remove domain.IAMID from writemodels
* fix: remove domain.IAMID from api
* fix: remove domain.IAMID
* fix: remove domain.IAMID
* fix: add instance domain queries
* fix: fix after merge
* Update auth_request.go
* fix keypair
* remove unused code
* feat: read instance id from context
* feat: remove unused code
* feat: use instance id from context
* some fixes
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-04-05 05:58:09 +00:00
Livio Amstutz
87560157c1
fix: change to repository event types and removed unused code ( #3386 )
...
* fix: change to repository event types and removed unused code
* some fixes
* remove unused code
2022-03-31 11:36:26 +02:00
Silvan
c5b99274d7
feat(cli): setup ( #3267 )
...
* commander
* commander
* selber!
* move to packages
* fix(errors): implement Is interface
* test: command
* test: commands
* add init steps
* setup tenant
* add default step yaml
* possibility to set password
* merge v2 into v2-commander
* fix: rename iam command side to instance
* fix: rename iam command side to instance
* fix: rename iam command side to instance
* fix: rename iam command side to instance
* fix: search query builder can filter events in memory
* fix: filters for add member
* fix(setup): add `ExternalSecure` to config
* chore: name iam to instance
* fix: matching
* remove unsued func
* base url
* base url
* test(command): filter funcs
* test: commands
* fix: rename orgiampolicy to domain policy
* start from init
* commands
* config
* fix indexes and add constraints
* fixes
* fix: merge conflicts
* fix: protos
* fix: md files
* setup
* add deprecated org iam policy again
* typo
* fix search query
* fix filter
* Apply suggestions from code review
* remove custom org from org setup
* add todos for verification
* change apps creation
* simplify package structure
* fix error
* move preparation helper for tests
* fix unique constraints
* fix config mapping in setup
* fix error handling in encryption_keys.go
* fix projection config
* fix query from old views to projection
* fix setup of mgmt api
* set iam project and fix instance projection
* imports
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
2022-03-28 10:05:09 +02:00
Fabi
9d4f296c62
fix: rename iam to instance ( #3345 )
...
* fix: rename iam command side to instance
* fix: rename iam command side to instance
* fix: rename iam command side to instance
* fix: rename iam command side to instance
* fix: rename orgiampolicy to domain policy
* fix: merge conflicts
* fix: protos
* fix: md files
* implement deprecated org iam policy again
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-03-24 16:21:34 +00:00
Livio Amstutz
504fe5b761
cherry pick changes from main ( #3371 )
...
* feat: remove exif data from uploaded images (#3221 )
* feat: remove exif tags from images
* feat: remove exif data
* feat: remove exif
* fix: add preferredLoginName to user grant response (#3271 )
* chore: log webauthn parse error (#3272 )
* log error
* log error
* feat: Help link in privacy policy
* fix: convert correct detail data on organization (#3279 )
* fix: handle empty editor users
* fix: add some missing translations (#3291 )
* fix: org policy translations
* fix: metadata event types translation
* fix: translations
* fix: filter resource owner correctly on project grant members (#3281 )
* fix: filter resource owner correctly on project grant members
* fix: filter resource owner correctly on project grant members
* fix: add orgIDs to zitadel permissions request
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
* fix: get IAM memberships correctly in MyZitadelPermissions (#3309 )
* fix: correct login names on auth and notification users (#3349 )
* fix: correct login names on auth and notification users
* fix: migration
* fix: handle resource owner in action flows (#3361 )
* fix merge
* fix: exchange exif library (#3366 )
* fix: exchange exif library
* ignore tiffs
* requested fixes
* feat: Help link in privacy policy
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
2022-03-24 14:00:24 +01:00
Livio Amstutz
56b916a2b0
feat: projections auto create their tables ( #3324 )
...
* begin init checks for projections
* first projection checks
* debug notification providers with query fixes
* more projections and first index
* more projections
* more projections
* finish projections
* fix tests (remove db name)
* create tables in setup
* fix logging / error handling
* add tenant to views
* rename tenant to instance_id
* add instance_id to all projections
* add instance_id to all queries
* correct instance_id on projections
* add instance_id to failed_events
* use separate context for instance
* implement features projection
* implement features projection
* remove unique constraint from setup when migration failed
* add error to failed setup event
* add instance_id to primary keys
* fix IAM projection
* remove old migrations folder
* fix keysFromYAML test
2022-03-23 09:02:39 +01:00
Fabi
7899a0b851
feat: Notification providers config ( #3212 )
...
* feat: add login check lifetimes to login policy
* feat: org features test
* feat: debug notificatiaon events
* feat: debug notification file/log commands
* feat: add requests to proto
* feat: add api for debug notification providers file/log
* feat: add projection for debug notifiication providers
* feat: requests
* feat: merge v2
* feat: add settings proto to generate
* feat: notifiaction providers
* fix: remove unused code
* Update iam_converter.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-03-07 14:22:37 +01:00
Fabi
7d6c933485
feat: OIDC setting ( #3245 )
...
* feat: add oidc config struct
* feat: oidc config command side
* feat: oidc configuration query side
* feat: add translations
* feat: add tests
* feat: add translations
* feat: rename oidc config to oidc settings
* feat: rename oidc config to oidc settings
2022-02-25 16:05:06 +01:00
Fabi
f05d4063bf
feat: Login verification lifetimes ( #3190 )
...
* feat: add login check lifetimes to login policy
* feat: org features test
* feat: read lifetimes from loginpolicy
2022-02-21 16:05:02 +01:00
Fabi
7d235e3eed
feat: Default configs sms provider ( #3187 )
...
* feat: sms config
* feat: twilio as sms provider
* feat:sms projection
* feat: sms queries
* feat: sms queries test
* feat: sms configs
* feat: sms configs sql file
* fix merge
* fix: rename from to sendername
* fix: proto comments
* fix: token as crypto
* fix: tests
* fix: sms config sender name to sender number
* fix: sms config sender name to sender number
* Update email.go
* Update channel.go
* Update V1.111__settings.sql
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-02-21 12:22:20 +00:00
Fabi
e3528ff0b2
feat: Config to eventstore ( #3158 )
...
* feat: add default language to eventstore
* feat: add secret generator configs events
* feat: tests
* feat: secret generators in eventstore
* feat: secret generators in eventstore
* feat: smtp config in eventstore
* feat: smtp config in eventstore
* feat: smtp config in eventstore
* feat: smtp config in eventstore
* feat: smtp config in eventstore
* fix: migrations
* fix migration version
* fix test
* feat: change secret generator type to enum
* feat: change smtp attribute names
* feat: change smtp attribute names
* feat: remove engryption algorithms from command side
* feat: remove engryption algorithms from command side
* feat: smtp config
* feat: smtp config
* format smtp from header
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-02-16 15:49:17 +00:00
Livio Amstutz
389eb4a27a
feat: run on a single port ( #3163 )
...
* start v2
* start
* run
* some cleanup
* remove v2 pkg again
* simplify
* webauthn
* remove unused config
* fix login path in Dockerfile
* fix asset_generator.go
* health handler
* fix grpc web
* refactor
* merge
* build new main.go
* run new main.go
* update logging pkg
* fix error msg
* update logging
* cleanup
* cleanup
* go mod tidy
* change localDevMode
* fix customEndpoints
* update logging
* comments
* change local flag to external configs
* fix location generated go code
* fix
Co-authored-by: fforootd <florian@caos.ch>
2022-02-14 17:22:30 +01:00
Livio Amstutz
699fdaf68e
feat: add personal access tokens for service users ( #2974 )
...
* feat: add machine tokens
* fix test
* rename to pat
* fix merge and tests
* fix scopes
* fix migration version
* fix test
* Update internal/repository/user/personal_access_token.go
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
2022-02-08 09:37:28 +01:00
Livio Amstutz
ab62f2d79d
fix: return full url of assets in admin and mgmt api ( #3157 )
...
* fix: return full url of assets in admin and mgmt api
* remove asset loading over asset service
* remove unused code
Co-authored-by: Max Peintner <max@caos.ch>
2022-02-04 15:02:18 +01:00
Livio Amstutz
1367a2e139
feat: limit amount of active actions ( #3143 )
...
* max actions
* fix: max allowed actions
* fix: max allowed actions
* fix tests
2022-02-02 09:04:05 +01:00
Livio Amstutz
e99b7f4972
fix: move activity log to queries and remove old code ( #3096 )
...
* move changes to queries and remove old code
* fix changes query
* remove unused code
* fix sorting
* fix sorting
* refactor and remove old code
* remove accidental go.mod replace
* add missing file
* remove listDetail from ChangesResponse
2022-01-26 10:16:33 +01:00
Fabi
087ef8d31c
fix: return isDefault on login texts ( #3076 )
...
* fix: add is disabled to login texts
* fix: fix aggregate id
2022-01-20 13:18:49 +00:00
Fabi
3902f9adb5
feat: auth method projection ( #3020 )
...
* feat: auth method projection
* feat: auth method projection
* feat: add tests
2022-01-19 14:49:50 +01:00
Livio Amstutz
79f7c1198b
feat: display login succeeded page only for native apps ( #2839 )
2021-12-14 09:47:49 +01:00
Livio Amstutz
43f15953c3
feat: allow global org users to create org and self delete ( #2759 )
...
* fix: grant PROJECT_OWNER_VIEWER_GLOBAL org.create permission
* Update authz.yaml
* feat: delete my user
* console things
* lint
* signout after deletion
* stylelint rule
* Update authz.yaml
* Update authz.yaml
* setup step
* role SELF_MANAGEMENT_GLOBAL setup
* fix: change default role on global org
* Apply suggestions from code review
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
* Update console/src/assets/i18n/it.json
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
2021-12-09 08:41:21 +00:00
Livio Amstutz
65a6fb638b
fix: add authnkeys projection ( #2801 )
...
* begin authn keys
* single table for state change
* add key type
* rename migration
* format imports
* fix test
2021-12-08 16:16:48 +01:00
Silvan
303d4945a7
feat(queries): user IDP links ( #2751 )
2021-12-07 08:33:52 +01:00
Silvan
30c130f102
fix(projections): add base users ( #2733 )
...
* fix(projections): add base users
* add user v1 events
2021-11-30 08:57:51 +01:00
Silvan
3473156c7e
fix(app): move queries to query package ( #2612 )
...
* fix: move queries to query package
* fix(auth): switch project role requests to query pkg
* refactor: delete unused project role code
* remove repo
* implement sql queries
* fix(database): oidc config change type to int2
* fix(queries): implement app queries
* refactor: simplify code
* fix: correct app query
* Update app.go
* fix token check
* fix mock
* test: app prepares
* test: oidc compliance
* test: OIDCOriginAllowList
* fix: converter
* resolve unsupported oidc version
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-11-26 07:57:05 +01:00
Silvan
861b777d9f
fix(projections): login names projection ( #2698 )
...
* refactor(domain): add user type
* fix(projections): start with login names
* fix(login_policy): correct handling of user domain claimed event
* refactor: login name projection
* fix: set correct suffixes on login name projections
* test(projections): login name reduces
* migration versioning
* refactor: use const for login name table name
2021-11-23 10:31:23 +01:00
Livio Amstutz
fc6154cffc
feat: token revocation and OP certification ( #2594 )
...
* fix: try using only user session if no user is set (id_token_hint) on prompt none
* fix caos errors As implementation
* implement request mode
* return explicit error on invalid refresh token use
* begin token revocation
* token revocation
* tests
* tests
* cleanup
* set op config
* add revocation endpoint to config
* add revocation endpoint to config
* migration version
* error handling in token revocation
* migration version
* update oidc lib to 1.0.0
2021-11-03 08:35:24 +01:00
Silvan
92f9eedbe0
fix(projections): user idp link projection ( #2583 )
...
* fix(projections): add app
* fix(migration): add index for project_id
* test: app projection
* fix(projections): add idp_user_link
* test: idp user link
* fix: migration versions
* refactor: rename externalIDP to UserIDPLink
* fix: interface methods
2021-11-02 10:08:47 +01:00
Fabi
4c50b6dfa2
fix: mfa translations ( #2527 )
2021-10-19 09:38:35 +02:00
Livio Amstutz
52c1494fe9
feat: choose preferred WebAuthN platform for passwordless registration ( #2469 )
...
* feat: request preferred platform type for passwordless registration when using link
* add text in console
2021-10-04 16:19:21 +02:00
Livio Amstutz
ed80a8bb1e
feat: actions ( #2377 )
...
* feat(actions): begin api
* feat(actions): begin api
* api and projections
* fix: handle multiple statements for a single event in projections
* export func type
* fix test
* update to new reduce interface
* flows in login
* feat: jwt idp
* feat: command side
* feat: add tests
* actions and flows
* fill idp views with jwt idps and return apis
* add jwtEndpoint to jwt idp
* begin jwt request handling
* add feature
* merge
* merge
* handle jwt idp
* cleanup
* bug fixes
* autoregister
* get token from specific header name
* fix: proto
* fixes
* i18n
* begin tests
* fix and log http proxy
* remove docker cache
* fixes
* usergrants in actions api
* tests adn cleanup
* cleanup
* fix add user grant
* set login context
* i18n
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
2021-09-27 13:43:49 +02:00
Livio Amstutz
b6b5b1b782
feat: jwt as idp ( #2363 )
...
* feat: jwt idp
* feat: command side
* feat: add tests
* fill idp views with jwt idps and return apis
* add jwtEndpoint to jwt idp
* begin jwt request handling
* merge
* handle jwt idp
* cleanup
* fixes
* autoregister
* get token from specific header name
* error handling
* fix texts
* handle renderExternalNotFoundOption
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
2021-09-14 15:15:01 +02:00
Fabi
e4bdaf26b0
feat: select idp and auto register ( #2336 )
...
* faet: auto regsiter config on idp
* feat: auto register on login
* feat: auto register on register
* feat: redirect to selected identity provider
* fix: test
* fix: test
* fix: user by id request org id
* fix: migration version and test
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-09-10 09:49:49 +02:00
Fabi
59e393728e
feat: Lockout policy feature ( #2341 )
...
* feat: add lockoutpolicy feature
* feat: add tests
* fix: err handling
2021-09-09 13:42:28 +00:00
Silvan
296f1c3c71
fix(eventstore): fill new column with data ( #2288 )
...
* fix: smaller outage on events migration first part
* fix: fill old events with sequence
* fix: migration add transactions
* fix: mig
* rename mig
* replace migration with setup step
* regenerate mock
* add step 20 to config
* log
* simplify step
* limit 1000
* limit 500
2021-09-01 09:25:52 +00:00
Livio Amstutz
34002ec834
fix: check domain of username not claimed by other organisation and cleanup ( #2265 )
...
* fix: register human
* fix: check domain of username not claimed by other organisation
* fix: create setup step to create domain claimed events for invalid users
* Update setup_step19.go
2021-08-25 09:12:24 +00:00
Fabi
74688394d8
feat: set private labeling setting on project ( #2184 )
...
* docs: add scope to request private labeling
* feat: add enum to project
* fix: remove unused code, add private labeling setting to query side
* fix: set private labeling depending on setting
* fix: private labeling depending on project setting
* Update proto/zitadel/management.proto
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: rename sql file
* fix: private labeling setting
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-08-24 08:34:10 +02:00
Fabi
f4fa3ecef3
fix: Custom text split features ( #2225 )
...
* fix: separate tier of custom text (message and login)
* fix: add migration
* fix: build problems
* fix: tests
* Update internal/api/grpc/admin/features.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/api/grpc/admin/features.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: rename sql file
* fix: change sql files
* fix: console
* fix: console
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-08-18 10:58:57 +00:00
Fabi
0ab973b967
feat: check has project ( #2206 )
...
* feat: define org grant check on project
* feat: has project check
* feat: has project check
* feat: check has project
* feat: check has project
* feat: add has project check to console
* Update internal/auth/repository/eventsourcing/eventstore/auth_request.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/auth/repository/eventsourcing/eventstore/auth_request.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/auth/repository/eventsourcing/eventstore/auth_request.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/auth/repository/eventsourcing/eventstore/auth_request.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/auth/repository/eventsourcing/eventstore/auth_request_test.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/auth/repository/eventsourcing/eventstore/auth_request_test.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/auth/repository/eventsourcing/eventstore/auth_request_test.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/ui/login/static/i18n/en.yaml
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: add has project tests
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-08-18 10:49:04 +02:00
Fabi
d1c03fd15c
fix: add user metadata to the features ( #2179 )
...
* fix: add user metadata to the features
* fix: remove user metadata
* fix: add test
* fix: add test
2021-08-12 16:10:01 +02:00
Fabi
b104011418
fix: tos on external registration ( #2164 )
...
* faet: add tos checkbox to external login
* fix: add tos to external not found option
* fix: add tos to external not found option
* fix: show register external user overview
* fix: no init user mail on external register
* fix: custom login text
* add missing custom text tests on org
* add missing custom text tests on iam
* fix: custom login text external registration overview tests
* fix: back button on registration overview
* fix: add texts, change register form
* fix: external not found html
* fix: remove form validation
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-08-11 11:50:03 +00:00
Fabi
bc951985ed
feat: Lockout policy ( #2121 )
...
* feat: lock users if lockout policy is set
* feat: setup
* feat: lock user on password failes
* feat: render error
* feat: lock user on command side
* feat: auth_req tests
* feat: lockout policy docs
* feat: remove show lockout failures from proto
* fix: console lockout
* feat: tests
* fix: tests
* unlock function
* add unlock button
* fix migration version
* lockout policy
* lint
* Update internal/auth/repository/eventsourcing/eventstore/auth_request.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* fix: err message
* Update internal/command/setup_step4.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
2021-08-11 06:36:32 +00:00
Fabi
7451ed58f2
feat: User metadata ( #2025 )
...
* feat: user meta data events
* feat: user meta data set tests
* feat: user meta data tests
* feat: user meta data in protos
* feat: user meta data command api
* feat: user meta data query side
* feat: proto correct order, fix handlers
* feat: proto correct order
* feat: fixes of pr comments
* feat: fixes of pr comments
* feat: value as byte array
* feat: metadata feature
* Update internal/auth/repository/eventsourcing/handler/meta_data.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/command/user_meta_data.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update proto/zitadel/metadata.proto
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update proto/zitadel/metadata.proto
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* fix: rename metadata files and table
* fix: rename meta data to metadat in protos
* Update internal/domain/metadata.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* fix: rename vars
* fix: rebiuld docs
* Update internal/iam/repository/view/metadata_view.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
2021-08-09 08:01:20 +02:00
Livio Amstutz
00220e9532
feat: passwordless registration ( #2103 )
...
* begin pw less registration
* create pwless one time codes
* send pwless link
* separate send and add passwordless link
* separate send and add passwordless link events
* custom message text for passwordless registration
* begin custom login texts for passwordless
* i18n
* i18n message
* i18n message
* custom message text
* custom login text
* org design and texts
* create link in human import process
* fix import human tests
* begin passwordless init required step
* passwordless init
* passwordless init
* do not return link in mgmt api
* prompt
* passwordless init only (no additional prompt)
* cleanup
* cleanup
* add passwordless prompt to custom login text
* increase init code complexity
* fix grpc
* cleanup
* fix and add some cases for nextStep tests
* fix tests
* Update internal/notification/static/i18n/en.yaml
* Update internal/notification/static/i18n/de.yaml
* Update proto/zitadel/management.proto
* Update internal/ui/login/static/i18n/de.yaml
* Update internal/ui/login/static/i18n/de.yaml
* Update internal/ui/login/static/i18n/de.yaml
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
2021-08-02 15:24:58 +02:00
Max Peintner
2e684684de
feat(console): message and login texts, privacy policy ( #2016 )
...
* message texts wrapper components
* message-text sub, i18n, grid
* fix routing
* pack
* pack
* update material
* audit
* fix mgmt service for labelplcy
* map conv
* edit text from map
* request map
* fetch data, mgmt admin service
* warn box, i18n
* resetbtn
* login texts
* login text requests
* reset, default, i18n
* disabled, features, message text setter, service
* locale switcher
* policy grid
* password reset, domain claimed i18n
* lint files
* fix admin service, i18n, lang setter
* fix scss duplicate
* privacy policy, cleanup grid, fix message, login texts (#2031 )
* policy grid everywhere 🦒
* cleanup home
* log login text request
* patch all data
* refresh toggle
* fix: add dialog for unsaved changes (#2057 )
* logintexts dialog
* check for dialog on pairwise operation
* fix: patch value to local state after save
* fix: i18n and custom login texts (#2060 )
* fix: i18n and custom login texts
* fix: tos and privacy texts
* fix frontend
* fix: tos and privacy texts and tests
* fix: i18n, tos and privacy texts and tests
* fix frontend maps
* i18n
* add ResetCustomLoginTextToDefault in admin api and fix template remove in handlers
* resetlogintexttodefault
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-07-26 12:44:45 +02:00
Fabi
03a38fbf1c
feat: Custom message files ( #1992 )
...
* feat: add get custom message text to admin api
* feat: read custom message texts from files
* feat: get languages in apis
* feat: get languages in apis
* feat: get languages in apis
* feat: pr feedback
* feat: docs
* feat: merge main
2021-07-13 07:13:39 +02:00
Livio Amstutz
f93337e99b
fix: race condition in auth request unmarshalling ( #1993 )
2021-07-08 16:38:34 +00:00
Fabi
ff9af1704f
feat: Extend oidc idp with oauth endpoints ( #1980 )
...
* feat: add oauth attributes to oidc idp configuration
* feat: return idpconfig id on create idp
* feat: tests
* feat: descriptions
* feat: docs
* feat: tests
2021-07-06 14:39:48 +00:00
Fabi
99b2c33ccb
feat: Custom text login ( #1925 )
...
* feat: default custom message text
* feat: org custom message text
* feat: org custom message text
* feat: custom messages query side
* feat: default messages
* feat: message text user fields
* feat: check for inactive user
* feat: fix send password reset
* feat: fix custom org text
* feat: add variables to docs
* feat: custom text tests
* feat: fix notifications
* feat: add custom text feature
* feat: add custom text feature
* feat: feature in custom message texts
* feat: add custom text feature in frontend
* feat: merge main
* feat: feature tests
* feat: change phone message in setup
* fix: remove unused code, add event translation
* fix: merge main and fix problems
* fix: english translation file
* fix: migration versions
* fix: setup
* fix: custom login text
* feat: add all possible custom texts for login
* feat: iam login texts
* feat: org login texts
* feat: protos
* fix: custom text in admin api
* fix: add success login text
* fix: docs
* fix: add custom login texts to management api
* fix: add sub messages to custom login texts
* fix: setup custom texts
* feat: get org login texts
* feat: get org login texts
* feat: handler in adminapi
* feat: handlers in auth and admin
* feat: render login texts
* feat: custom login text
* feat: add all login text keys
* feat: handle correct login texts
* feat: custom login texts in command side
* feat: custom login texts in command side
* feat: fix yaml file
* feat: merge master and add confirmation text
* feat: fix html
* feat: read default login texts
* feat: get default text files
* feat: get custom texts org
* feat: tests
* feat: change translator handling
* fix translator from authReq
* feat: change h1 on login screens
* feat: add custom login text for remove
* feat: add custom login text for remove
* feat: cache translation files
* feat: cache translation files
* feat: zitadel user in env var
* feat: add registration user description
* feat: better func naming
* feat: tests
* feat: add mutex to read file
* feat: add mutex to read file
* fix mutex for accessing translation map
* fix: translation key
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-07-05 15:10:49 +02:00
Fabi
beb1c1604a
feat: Privacy policy ( #1957 )
...
* feat: command side privacy policy
* feat: add privacy policy to api
* feat: add privacy policy query side
* fix: add privacy policy to mgmt api
* fix: add privacy policy to auth and base data
* feat: use privacyPolicy in login gui
* feat: use privacyPolicy in login gui
* feat: test org fatures
* feat: typos
* feat: tos in register
2021-07-05 10:36:51 +02:00
Livio Amstutz
4a2ca5a1e8
fix: handle reauth correctly (max_age=0 or prompt=login) ( #1870 )
...
* max age
* merge main
* fix when no prompt is set
* fix: update oidc pkg
* fix tests
2021-06-16 10:02:15 +02:00
Livio Amstutz
ab78b34c6c
feat: request registration process by prompt ( #1798 )
...
* feat: request registration process by prompt
* fix merge
* add prompt create to docs
2021-06-14 10:40:38 +02:00
Livio Amstutz
770994e143
fix: add avatar url in members, user grants, session and oidc responses ( #1852 )
...
* fix: add avatar url in members, user grants, session and oidc responses
* fix auth request tests
2021-06-11 13:20:39 +02:00
Fabi
bdf3887f9e
feat: custom message text ( #1801 )
...
* feat: default custom message text
* feat: org custom message text
* feat: org custom message text
* feat: custom messages query side
* feat: default messages
* feat: message text user fields
* feat: check for inactive user
* feat: fix send password reset
* feat: fix custom org text
* feat: add variables to docs
* feat: custom text tests
* feat: fix notifications
* feat: add custom text feature
* feat: add custom text feature
* feat: feature in custom message texts
* feat: add custom text feature in frontend
* feat: merge main
* feat: feature tests
* feat: change phone message in setup
* fix: remove unused code, add event translation
* fix: merge main and fix problems
* fix: english translation file
* fix: migration versions
* fix: setup
* feat: fix pr requests
* feat: fix phone code message
* feat: migration
* feat: setup
* fix: remove unused tests
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-06-10 11:49:10 +00:00
Fabi
1143e3773e
fix: Remove user with cascading memberships ( #1811 )
...
* fix: remove usermemberships on user remove
* fix: text user remove with memberships
* fix: translations
* Update internal/iam/repository/eventsourcing/model/types.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: uncomment tests
* fix: remove memberships if user removed
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-06-07 07:20:47 +02:00
Fabi
73d37459bb
feat: label policy ( #1708 )
...
* feat: label policy proto extension
* feat: label policy and activate event
* feat: label policy asset events
* feat: label policy asset commands
* feat: add storage key
* feat: storage key validation
* feat: label policy asset tests
* feat: label policy query side
* feat: avatar
* feat: avatar event
* feat: human avatar
* feat: avatar read side
* feat: font on iam label policy
* feat: label policy font
* feat: possiblity to create bucket on put file
* uplaoder
* login policy logo
* set bucket prefix
* feat: avatar upload
* feat: avatar upload
* feat: use assets on command side
* feat: fix human avatar removed event
* feat: remove human avatar
* feat: mock asset storage
* feat: remove human avatar
* fix(operator): add configuration of asset storage to zitadel operator
* feat(console): private labeling policy (#1697 )
* private labeling component, routing, preview
* font, colors, upload, i18n
* show logo
* fix: uniqueness (#1710 )
* fix: uniqueconstraint to lower
* feat: change org
* feat: org change test
* feat: change org
* fix: tests
* fix: handle domain claims correctly
* feat: update org
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
* fix: handle domain claimed event correctly for service users (#1711 )
* fix: handle domain claimed event correctly on user view
* fix: ignore domain claimed events for email notifications
* fix: change org
* handle org changed in read models correctly
* fix: change org in user grant handler
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
* fix: correct value (#1695 )
* docs(api): correct link (#1712 )
* upload service
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
Co-authored-by: Florian Forster <florian@caos.ch>
* feat: fix tests,
* feat: remove assets from label policy
* fix npm, set environment
* lint ts
* remove stylelinting
* fix(operator): add mapping for console with changed unit tests
* fix(operator): add secrets as env variables to pod
* feat: remove human avatar
* fix(operator): add secrets as env variables to pod
* feat: map label policy
* feat: labelpolicy, admin, mgmt, adv settings (#1715 )
* fetch label policy, mgmt, admin service
* feat: advanced beh, links, add, update
* lint ts
* feat: watermark
* feat: remove human avatar
* feat: remove human avatar
* feat: remove human avatar
* feat: remove human avatar
* feat: remove human avatar
* feat: remove human avatar
* feat: remove human avatar
* feat: custom css
* css
* css
* css
* css
* css
* getobject
* feat: dynamic handler
* feat: varibale css
* content info
* css overwrite
* feat: variablen css
* feat: generate css file
* feat: dark mode
* feat: dark mode
* fix logo css
* feat: upload logos
* dark mode with cookie
* feat: handle images in login
* avatar css and begin font
* feat: avatar
* feat: user avatar
* caching of static assets in login
* add avatar.js to main.html
* feat: header dont show logo if no url
* feat: label policy colors
* feat: mock asset storage
* feat: mock asset storage
* feat: fix tests
* feat: user avatar
* feat: header logo
* avatar
* avatar
* make it compatible with go 1.15
* feat: remove unused logos
* fix handler
* fix: styling error handling
* fonts
* fix: download func
* switch to mux
* fix: change upload api to assets
* fix build
* fix: download avatar
* fix: download logos
* fix: my avatar
* font
* fix: remove error msg popup possibility
* fix: docs
* fix: svalidate colors
* rem msg popup from frontend
* fix: email with private labeling
* fix: tests
* fix: email templates
* fix: change migration version
* fix: fix duplicate imports
* fix(console): assets, service url, upload, policy current and preview (#1781 )
* upload endpoint, layout
* fetch current, preview, fix upload
* cleanup private labeling
* fix linting
* begin generated asset handler
* generate asset api in dockerfile
* features for label policy
* features for label policy
* features
* flag for asset generator
* change asset generator flag
* fix label policy view in grpc
* fix: layout, activate policy (#1786 )
* theme switcher up on top
* change layout
* activate policy
* feat(console): label policy back color, layout (#1788 )
* theme switcher up on top
* change layout
* activate policy
* fix overwrite value fc
* reset policy, reset service
* autosave policy, preview desc, layout impv
* layout, i18n
* background colors, inject material styles
* load images
* clean, lint
* fix layout
* set custom hex
* fix content size conversion
* remove font format in generated css
* fix features for assets
* fix(console): label policy colors, image downloads, preview (#1804 )
* load images
* colors, images binding
* lint
* refresh emitter
* lint
* propagate font colors
* upload error handling
* label policy feature check
* add blob in csp for console
* log
* fix: feature edits for label policy, refresh state on upload (#1807 )
* show error on load image, stop spinner
* fix merge
* fix migration versions
* fix assets
* fix csp
* fix background color
* scss
* fix build
* lint scss
* fix statik for console
* fix features check for label policy
* cleanup
* lint
* public links
* fix notifications
* public links
* feat: merge main
* feat: fix translation files
* fix migration
* set api domain
* fix logo in email
* font face in email
* font face in email
* validate assets on upload
* cleanup
* add missing translations
* add missing translations
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: Stefan Benz <stefan@caos.ch>
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Florian Forster <florian@caos.ch>
2021-06-04 14:53:51 +02:00
Fabi
8d163163f1
feat: add hide password reset to login policy ( #1806 )
...
* feat: add hide password reset to login policy
* feat: tests
* feat: hide password reset in login
* feat: hide password reset to frontend
* feat: hide password reset to frontend
* feat: hide password reset to frontend
* feat: check feature
* feat: feature in frontend
2021-06-03 11:53:30 +02:00
Livio Amstutz
f8ab1f5b7b
fix: refresh token activation ( #1795 )
...
* fix: oidc grant type check
* docs: add offline_access scope
* docs: update refresh token status in supported grant types
* fix: update oidc pkg
2021-05-31 11:06:01 +02:00
Livio Amstutz
8e19dc1868
fix: correct json name of clientId in key.json ( #1760 )
2021-05-20 13:47:22 +00:00
Livio Amstutz
ec5020bebc
feat: refresh token ( #1728 )
...
* begin refresh tokens
* refresh tokens
* list and revoke refresh tokens
* handle remove
* tests for refresh tokens
* uniqueness and default expiration
* rename oidc token methods
* cleanup
* migration version
* Update internal/static/i18n/en.yaml
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
* fixes
* feat: update oidc pkg for refresh tokens
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
2021-05-20 11:33:35 +00:00
Livio Amstutz
2e8fa82261
feat: add additional origins on applications ( #1691 )
...
* feat: add additional origins on applications
* app additional redirects
* chore(deps-dev): bump @angular/cli from 11.2.8 to 11.2.11 in /console (#1706 )
* fix: show org with regex (#1688 )
* fix: flag mapping (#1699 )
* chore(deps-dev): bump @angular/cli from 11.2.8 to 11.2.11 in /console
Bumps [@angular/cli](https://github.com/angular/angular-cli ) from 11.2.8 to 11.2.11.
- [Release notes](https://github.com/angular/angular-cli/releases )
- [Commits](https://github.com/angular/angular-cli/compare/v11.2.8...v11.2.11 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps-dev): bump stylelint from 13.10.0 to 13.13.1 in /console (#1703 )
* fix: show org with regex (#1688 )
* fix: flag mapping (#1699 )
* chore(deps-dev): bump stylelint from 13.10.0 to 13.13.1 in /console
Bumps [stylelint](https://github.com/stylelint/stylelint ) from 13.10.0 to 13.13.1.
- [Release notes](https://github.com/stylelint/stylelint/releases )
- [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md )
- [Commits](https://github.com/stylelint/stylelint/compare/13.10.0...13.13.1 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps-dev): bump @types/node from 14.14.37 to 15.0.1 in /console (#1702 )
* fix: show org with regex (#1688 )
* fix: flag mapping (#1699 )
* chore(deps-dev): bump @types/node from 14.14.37 to 15.0.1 in /console
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 14.14.37 to 15.0.1.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps): bump ts-protoc-gen from 0.14.0 to 0.15.0 in /console (#1701 )
* fix: show org with regex (#1688 )
* fix: flag mapping (#1699 )
* chore(deps): bump ts-protoc-gen from 0.14.0 to 0.15.0 in /console
Bumps [ts-protoc-gen](https://github.com/improbable-eng/ts-protoc-gen ) from 0.14.0 to 0.15.0.
- [Release notes](https://github.com/improbable-eng/ts-protoc-gen/releases )
- [Changelog](https://github.com/improbable-eng/ts-protoc-gen/blob/master/CHANGELOG.md )
- [Commits](https://github.com/improbable-eng/ts-protoc-gen/compare/0.14.0...0.15.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps-dev): bump @types/jasmine from 3.6.9 to 3.6.10 in /console (#1682 )
Bumps [@types/jasmine](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jasmine ) from 3.6.9 to 3.6.10.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jasmine )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps): bump @types/google-protobuf in /console (#1681 )
Bumps [@types/google-protobuf](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/google-protobuf ) from 3.7.4 to 3.15.2.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/google-protobuf )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps): bump grpc from 1.24.5 to 1.24.7 in /console (#1666 )
Bumps [grpc](https://github.com/grpc/grpc-node ) from 1.24.5 to 1.24.7.
- [Release notes](https://github.com/grpc/grpc-node/releases )
- [Commits](https://github.com/grpc/grpc-node/compare/grpc@1.24.5...grpc@1.24.7 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* lock
* chore(deps-dev): bump @angular/language-service from 11.2.9 to 11.2.12 in /console (#1704 )
* fix: show org with regex (#1688 )
* fix: flag mapping (#1699 )
* chore(deps-dev): bump @angular/language-service in /console
Bumps [@angular/language-service](https://github.com/angular/angular/tree/HEAD/packages/language-service ) from 11.2.9 to 11.2.12.
- [Release notes](https://github.com/angular/angular/releases )
- [Changelog](https://github.com/angular/angular/blob/master/CHANGELOG.md )
- [Commits](https://github.com/angular/angular/commits/11.2.12/packages/language-service )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* package lock
* downgrade grpc
* downgrade protobuf types
* revert npm packs 🥸
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
2021-05-19 09:17:38 +02:00
Fabi
667cc30291
feat: asset storage ( #1696 )
...
* feat: remove assets
* feat: minio implementation
* fix: remove assets from tests
* feat: minio implementation
* feat: Env vars
* fix: sprintf
* fix: sprintf
* Update internal/eventstore/repository/repository.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: error handling
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-05-03 10:15:50 +02:00
Livio Amstutz
5277dd0818
fix: add loopback for native apps redirect_uri ( #1690 )
...
* fix: allow loopback redirect_uri for native apps
* add loopback to native redirect_uri
* fix loopback
* update oidc pkg
* merge
* fix: oidc compliance in read model
2021-05-03 09:07:54 +02:00
Livio Amstutz
6863aeac59
feat: custom domain feature ( #1618 )
...
* fix: custom domain
* fix: custom domain
* fix: custom domain
* fix: custom domain feature in proto
* fix: remove custom domains on feature downgrade
* fix test
* fix: custom domain feature in proto
* ensure tests work
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
2021-04-19 16:43:36 +02:00
Fabi
2768ab4184
fix: register user on org ( #1614 )
...
* fix: user register
* fix: user register translation
* display suffix correctly
* Update auth_request.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-04-19 12:43:17 +02:00
Max Peintner
057537cc82
feat(notification): new mail templates ( #1579 )
...
* fix: new template light only
* add border radius to img
* system first font, font weight
* fix: change email template
* fix: go mod
* update ref
* fix: template
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
2021-04-16 14:55:55 +02:00
Livio Amstutz
b0681a0bbe
fix: ensure event order in setDefaultAuthFactorsInCustomLoginPolicy (for testability) ( #1595 )
...
* fix: ensure event order (for testability)
* fix: error handling (incl. imports of wrong pkgs)
2021-04-15 15:30:19 +02:00
Livio Amstutz
a4763b1e4c
feat: features ( #1427 )
...
* features
* features
* features
* fix json tags
* add features handler to auth
* mocks for tests
* add setup step
* fixes
* add featurelist to auth api
* grandfather state and typos
* typo
* merge new-eventstore
* fix login policy tests
* label policy in features
* audit log retention
2021-03-25 17:26:21 +01:00
Fabi
4d10f3e715
fix: import user, hide login name suffix ( #1474 )
...
* fix: import user, and label policy command side
* feat: Import user and hide loginname suffix (#1464 )
* fix: import user
* fix: label policy
* fix: label policy
* fix: label policy
* fix: migrations
* fix: migrations
* fix: migrations
* fix: label policy
* loginSuffix in login ui
* suffix
* fix cursor on disabled user selection
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
(cherry picked from commit 03ddb8fc38
)
* feat: Import user and hide loginname suffix (#1464 )
* fix: import user
* fix: label policy
* fix: label policy
* fix: label policy
* fix: migrations
* fix: migrations
* fix: migrations
* fix: label policy
* loginSuffix in login ui
* suffix
* fix cursor on disabled user selection
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
(cherry picked from commit 03ddb8fc38
)
* feat: Import user and hide loginname suffix (#1464 )
* fix: import user
* fix: label policy
* fix: label policy
* fix: label policy
* fix: migrations
* fix: migrations
* fix: migrations
* fix: label policy
* loginSuffix in login ui
* suffix
* fix cursor on disabled user selection
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
(cherry picked from commit 03ddb8fc38
)
* fix: label policy events
* loginname placeholder
* fix: tests
* fix: tests
* Update internal/command/iam_policy_label_model.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-03-25 14:41:07 +01:00