Tim Möhlmann 
							
						 
					 
					
						
						
							
						
						f680dd934d 
					 
					
						
						
							
							refactor: rename package errors to zerrors ( #7039 )  
						
						... 
						
						
						
						* chore: rename package errors to zerrors
* rename package errors to gerrors
* fix error related linting issues
* fix zitadel error assertion
* fix gosimple linting issues
* fix deprecated linting issues
* resolve gci linting issues
* fix import structure
---------
Co-authored-by: Elio Bischof <elio@zitadel.com > 
						
						
					 
					
						2023-12-08 15:30:55 +01:00 
						 
				 
			
				
					
						
							
							
								Livio Spring 
							
						 
					 
					
						
						
							
						
						b4d0d2c9a7 
					 
					
						
						
							
							chore(webauthn): add logs ( #6569 )  
						
						
						
						
					 
					
						2023-09-15 13:43:38 +00:00 
						 
				 
			
				
					
						
							
							
								Tim Möhlmann 
							
						 
					 
					
						
						
							
						
						86af67d1be 
					 
					
						
						
							
							feat(api/v2): implement U2F session check ( #6339 )  
						
						
						
						
					 
					
						2023-08-11 15:36:18 +00:00 
						 
				 
			
				
					
						
							
							
								Livio Spring 
							
						 
					 
					
						
						
							
						
						bd5defa96a 
					 
					
						
						
							
							fix: provide domain in session, passkey and u2f ( #6097 )  
						
						... 
						
						
						
						This fix provides a possibility to pass a domain on the session, which
will be used (as rpID) to create a passkey / u2f assertion and
attestation. This is useful in cases where the login UI is served under
a different domain / origin than the ZITADEL API. 
						
						
					 
					
						2023-06-27 14:36:07 +02:00 
						 
				 
			
				
					
						
							
							
								Tim Möhlmann 
							
						 
					 
					
						
						
							
						
						f456168a74 
					 
					
						
						
							
							feat: session v2 passkey authentication ( #5952 )  
						
						
						
						
					 
					
						2023-06-07 17:28:42 +02:00 
						 
				 
			
				
					
						
							
							
								Tim Möhlmann 
							
						 
					 
					
						
						
							
						
						a301c40f9f 
					 
					
						
						
							
							feat: implement register Passkey user API v2 ( #5873 )  
						
						... 
						
						
						
						* command/crypto: DRY the code
- reuse the the algorithm switch to create a secret generator
- add a verifyCryptoCode function
* command: crypto code tests
* migrate webauthn package
* finish integration tests with webauthn mock client 
						
						
					 
					
						2023-05-24 10:22:00 +00:00 
						 
				 
			
				
					
						
							
							
								Livio Spring 
							
						 
					 
					
						
						
							
						
						32b751a3a0 
					 
					
						
						
							
							fix: WebAuthN (registration / login) and list on users ( #4290 )  
						
						... 
						
						
						
						* fix: WebAuthN when running under non default port
* fix: remove notification schema from list of views / failed events
* fix: auth method column type in user auth methods 
						
						
					 
					
						2022-09-01 09:10:07 +02:00 
						 
				 
			
				
					
						
							
							
								Livio Spring 
							
						 
					 
					
						
						
							
						
						8434eaa9c0 
					 
					
						
						
							
							fix: require user verification for passwordless authentication ( #3896 )  
						
						
						
						
					 
					
						2022-07-06 08:32:05 +02:00 
						 
				 
			
				
					
						
							
							
								Florian Forster 
							
						 
					 
					
						
						
							
						
						fa9f581d56 
					 
					
						
						
							
							chore(v2): move to new org ( #3499 )  
						
						... 
						
						
						
						* chore: move to new org
* logging
* fix: org rename caos -> zitadel
Co-authored-by: adlerhurst <silvan.reusser@gmail.com > 
						
						
					 
					
						2022-04-26 23:01:45 +00:00 
						 
				 
			
				
					
						
							
							
								Livio Amstutz 
							
						 
					 
					
						
						
							
						
						75ec73ca4a 
					 
					
						
						
							
							feat: dynamic issuer ( #3481 )  
						
						... 
						
						
						
						* feat: dynamic issuer
* dynamic domain handling
* key rotation durations
* feat: dynamic issuer
* make webauthn displayname dynamic 
						
						
					 
					
						2022-04-25 10:01:17 +02:00 
						 
				 
			
				
					
						
							
							
								Livio Amstutz 
							
						 
					 
					
						
						
							
						
						504fe5b761 
					 
					
						
						
							
							cherry pick changes from main ( #3371 )  
						
						... 
						
						
						
						* feat: remove exif data from uploaded images (#3221 )
* feat: remove exif tags from images
* feat: remove exif data
* feat: remove exif
* fix: add preferredLoginName to user grant response (#3271 )
* chore: log webauthn parse error (#3272 )
* log error
* log error
* feat: Help link in privacy policy
* fix: convert correct detail data on organization (#3279 )
* fix: handle empty editor users
* fix: add some missing translations (#3291 )
* fix: org policy translations
* fix: metadata event types translation
* fix: translations
* fix: filter resource owner correctly on project grant members (#3281 )
* fix: filter resource owner correctly on project grant members
* fix: filter resource owner correctly on project grant members
* fix: add orgIDs to zitadel permissions request
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com >
* fix: get IAM memberships correctly in MyZitadelPermissions (#3309 )
* fix: correct login names on auth and notification users (#3349 )
* fix: correct login names on auth and notification users
* fix: migration
* fix: handle resource owner in action flows (#3361 )
* fix merge
* fix: exchange exif library (#3366 )
* fix: exchange exif library
* ignore tiffs
* requested fixes
* feat: Help link in privacy policy
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com >
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com > 
						
						
					 
					
						2022-03-24 14:00:24 +01:00 
						 
				 
			
				
					
						
							
							
								Livio Amstutz 
							
						 
					 
					
						
						
							
						
						389eb4a27a 
					 
					
						
						
							
							feat: run on a single port ( #3163 )  
						
						... 
						
						
						
						* start v2
* start
* run
* some cleanup
* remove v2 pkg again
* simplify
* webauthn
* remove unused config
* fix login path in Dockerfile
* fix asset_generator.go
* health handler
* fix grpc web
* refactor
* merge
* build new main.go
* run new main.go
* update logging pkg
* fix error msg
* update logging
* cleanup
* cleanup
* go mod tidy
* change localDevMode
* fix customEndpoints
* update logging
* comments
* change local flag to external configs
* fix location generated go code
* fix
Co-authored-by: fforootd <florian@caos.ch > 
						
						
					 
					
						2022-02-14 17:22:30 +01:00 
						 
				 
			
				
					
						
							
							
								Fabi 
							
						 
					 
					
						
						
							
						
						d8e42744b4 
					 
					
						
						
							
							fix: move v2 pkgs ( #1331 )  
						
						... 
						
						
						
						* fix: move eventstore pkgs
* fix: move eventstore pkgs
* fix: remove v2 view
* fix: remove v2 view 
						
						
					 
					
						2021-02-23 15:13:04 +01:00 
						 
				 
			
				
					
						
							
							
								Fabi 
							
						 
					 
					
						
						
							
						
						320679467b 
					 
					
						
						
							
							feat: User login commands ( #1228 )  
						
						... 
						
						
						
						* feat: change login to command side
* feat: change login to command side
* fix: fix push on user
* feat: user command side
* feat: sign out
* feat: command side login
* feat: command side login
* feat: fix register user
* feat: fix register user
* feat: fix web auth n events
* feat: add machine keys
* feat: send codes
* feat: move authrequest to domain
* feat: move authrequest to domain
* feat: webauthn working
* feat: external users
* feat: external users login
* feat: notify users
* fix: tests
* feat: cascade remove user grants on project remove
* fix: webauthn
* fix: pr requests
* fix: register human with member
* fix: fix bugs
* fix: fix bugs 
						
						
					 
					
						2021-02-08 11:30:30 +01:00 
						 
				 
			
				
					
						
							
							
								Fabi 
							
						 
					 
					
						
						
							
						
						959530ddad 
					 
					
						
						
							
							feat: new user auth api ( #1168 )  
						
						... 
						
						
						
						* fix: correct selectors for extended writemodel
* fix: no previous checks in eventstore
* start check previous
* feat: auth user commands
* feat: auth user commands
* feat: auth user commands
* feat: otp
* feat: corrections from pr merge
* feat: webauthn
* feat: comment old webauthn
* feat: refactor user, human, machine
* feat: webauth command side
* feat: command and query side in login
* feat: fix user writemodel append events
* fix: remove creation dates on command side
* fix: remove previous sequence
* previous sequence
* fix: external idps
* Update internal/api/grpc/management/user.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com >
* Update internal/v2/command/user_human_email.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com >
* fix: pr changes
* fix: phone verification
Co-authored-by: adlerhurst <silvan.reusser@gmail.com >
Co-authored-by: Livio Amstutz <livio.a@gmail.com > 
						
						
					 
					
						2021-01-15 09:32:59 +01:00 
						 
				 
			
				
					
						
							
							
								Livio Amstutz 
							
						 
					 
					
						
						
							
						
						b183d49761 
					 
					
						
						
							
							fix: passwordless ( #1116 )  
						
						... 
						
						
						
						* fix passwordless session handling
* only check passwordless when enabled in policy
* set preferred user name in webauthn
* fix tests
* add passwordless in setup
* fix(console): exclude credentials for passwordless (#1115 )
* fix: exclude creds
* fix i18n type loginpolicy
* fix enter on dialog input
* remove arg
Co-authored-by: Max Peintner <max@caos.ch > 
						
						
					 
					
						2020-12-17 16:22:27 +01:00 
						 
				 
			
				
					
						
							
							
								Livio Amstutz 
							
						 
					 
					
						
						
							
						
						38478efefb 
					 
					
						
						
							
							fix: handle multiple webauthn origins ( #1078 )  
						
						... 
						
						
						
						* fix(grpc): return CredentialCreationData in webauthn public key
* return id of u2f tokens
* handle separate origins in webauthn
* param 
						
						
					 
					
						2020-12-08 15:39:58 +01:00 
						 
				 
			
				
					
						
							
							
								Livio Amstutz 
							
						 
					 
					
						
						
							
						
						077a9a628e 
					 
					
						
						
							
							fix: improvements for login flow (incl. webauthn) ( #1026 )  
						
						... 
						
						
						
						* fix: typo ZITADEL uppercase for OTP Issuer
* fix: password validation after change in current user agent
* fix: otp validation after setup in current user agent
* add waiting
* add waiting
* show u2f state
* regenerate css
* add useragentID to webauthn verify
* return mfa attribute in mgmt
* switch between providers
* use preferredLoginName for webauthn display
* some fixes
* correct translations for login
* add some missing event translations
* fix usersession test
* remove unnecessary cancel button on password change done 
						
						
					 
					
						2020-12-07 12:09:10 +01:00 
						 
				 
			
				
					
						
							
							
								Livio Amstutz 
							
						 
					 
					
						
						
							
						
						300ade66a7 
					 
					
						
						
							
							feat: add WebAuthN support for passwordless login and 2fa ( #966 )  
						
						... 
						
						
						
						* at least registration prompt works
* in memory test for login
* buttons to start webauthn process
* begin eventstore impl
* begin eventstore impl
* serialize into bytes
* fix: u2f, passwordless types
* fix for localhost
* fix script
* fix: u2f, passwordless types
* fix: add u2f
* fix: verify u2f
* fix: session data in event store
* fix: u2f credentials in eventstore
* fix: webauthn pkg handles business models
* feat: tests
* feat: append events
* fix: test
* fix: check only ready webauthn creds
* fix: move u2f methods to authrepo
* frontend improvements
* fix return
* feat: add passwordless
* feat: add passwordless
* improve ui / error handling
* separate call for login
* fix login
* js
* feat: u2f login methods
* feat: remove unused session id
* feat: error handling
* feat: error handling
* feat: refactor user eventstore
* feat: finish webauthn
* feat: u2f and passwordlss in auth.proto
* u2f step
* passwordless step
* cleanup js
* EndpointPasswordLessLogin
* migration
* update mfaChecked test
* next step test
* token name
* cleanup
* attribute
* passwordless as tokens
* remove sms as otp type
* add "user" to amr for webauthn
* error handling
* fixes
* fix tests
* naming
* naming
* fixes
* session handler
* i18n
* error handling in login
* Update internal/ui/login/static/i18n/de.yaml
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com >
* Update internal/ui/login/static/i18n/en.yaml
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com >
* improvements
* merge fixes
* fixes
* fixes
Co-authored-by: Fabiennne <fabienne.gerschwiler@gmail.com >
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com > 
						
						
					 
					
						2020-12-02 17:00:04 +01:00