Commit Graph

1108 Commits

Author SHA1 Message Date
Fabi
bc951985ed
feat: Lockout policy (#2121)
* feat: lock users if lockout policy is set

* feat: setup

* feat: lock user on password failes

* feat: render error

* feat: lock user on command side

* feat: auth_req tests

* feat: lockout policy docs

* feat: remove show lockout failures from proto

* fix: console lockout

* feat: tests

* fix: tests

* unlock function

* add unlock button

* fix migration version

* lockout policy

* lint

* Update internal/auth/repository/eventsourcing/eventstore/auth_request.go

Co-authored-by: Silvan <silvan.reusser@gmail.com>

* fix: err message

* Update internal/command/setup_step4.go

Co-authored-by: Silvan <silvan.reusser@gmail.com>

Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
2021-08-11 06:36:32 +00:00
Livio Amstutz
272e411e27
fix: key pair query for newer events (#2165) 2021-08-11 07:55:16 +02:00
Silvan
8609ced24b
fix(build): update go version to 1.16 and dependencies (#2136)
* chore(deps): bump k8s.io/apiextensions-apiserver from 0.19.2 to 0.21.3

Bumps [k8s.io/apiextensions-apiserver](https://github.com/kubernetes/apiextensions-apiserver) from 0.19.2 to 0.21.3.
- [Release notes](https://github.com/kubernetes/apiextensions-apiserver/releases)
- [Commits](https://github.com/kubernetes/apiextensions-apiserver/compare/v0.19.2...v0.21.3)

---
updated-dependencies:
- dependency-name: k8s.io/apiextensions-apiserver
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* chore(deps): bump google.golang.org/api from 0.34.0 to 0.52.0

Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.34.0 to 0.52.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/master/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.34.0...v0.52.0)

---
updated-dependencies:
- dependency-name: google.golang.org/api
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* start update dependencies

* update mods and otlp

* fix(build): update to go 1.16

* old version for k8s mods

* update k8s versions

* update orbos

* with batcher

* add batch span processor

* try with older otel version 0.20

* remove syncer

* otel rc2

* fix config

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Stefan Benz <stefan@caos.ch>
2021-08-10 07:27:27 +02:00
Fabi
270d1fcf65
fix: add translations (#2126)
* fix: tranlsations

* fix: init code verification
2021-08-09 11:23:39 +02:00
Silvan
35fb2403d6
fix(auth): read privacy policy from eventstore if not found (#2125)
* fix(auth): read privacy policy from eventstore if not found

* Update internal/auth/repository/eventsourcing/eventstore/auth_request.go

Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>

Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
2021-08-09 08:55:48 +02:00
Fabi
7451ed58f2
feat: User metadata (#2025)
* feat: user meta data events

* feat: user meta data set tests

* feat: user meta data tests

* feat: user meta data in protos

* feat: user meta data command api

* feat: user meta data query side

* feat: proto correct order, fix handlers

* feat: proto correct order

* feat: fixes of pr comments

* feat: fixes of pr comments

* feat: value as byte array

* feat: metadata feature

* Update internal/auth/repository/eventsourcing/handler/meta_data.go

Co-authored-by: Silvan <silvan.reusser@gmail.com>

* Update internal/command/user_meta_data.go

Co-authored-by: Silvan <silvan.reusser@gmail.com>

* Update proto/zitadel/metadata.proto

Co-authored-by: Silvan <silvan.reusser@gmail.com>

* Update proto/zitadel/metadata.proto

Co-authored-by: Silvan <silvan.reusser@gmail.com>

* fix: rename metadata files and table

* fix: rename meta data to metadat in protos

* Update internal/domain/metadata.go

Co-authored-by: Silvan <silvan.reusser@gmail.com>

* fix: rename vars

* fix: rebiuld docs

* Update internal/iam/repository/view/metadata_view.go

Co-authored-by: Silvan <silvan.reusser@gmail.com>

Co-authored-by: Silvan <silvan.reusser@gmail.com>
2021-08-09 08:01:20 +02:00
Fabi
ae50f57c2c
faet: add usermemberships request to auth api (#2139) 2021-08-06 15:04:49 +02:00
Fabi
c9290dc1a5
fix: passwordless send link direct false (#2122)
* fix: passwordless send link direct false

* fix: cancel button text
2021-08-04 15:28:29 +00:00
Livio Amstutz
00220e9532
feat: passwordless registration (#2103)
* begin pw less registration

* create pwless one time codes

* send pwless link

* separate send and add passwordless link

* separate send and add passwordless link events

* custom message text for passwordless registration

* begin custom login texts for passwordless

* i18n

* i18n message

* i18n message

* custom message text

* custom login text

* org design and texts

* create link in human import process

* fix import human tests

* begin passwordless init required step

* passwordless init

* passwordless init

* do not return link in mgmt api

* prompt

* passwordless init only (no additional prompt)

* cleanup

* cleanup

* add passwordless prompt to custom login text

* increase init code complexity

* fix grpc

* cleanup

* fix and add some cases for nextStep tests

* fix tests

* Update internal/notification/static/i18n/en.yaml

* Update internal/notification/static/i18n/de.yaml

* Update proto/zitadel/management.proto

* Update internal/ui/login/static/i18n/de.yaml

* Update internal/ui/login/static/i18n/de.yaml

* Update internal/ui/login/static/i18n/de.yaml

Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
2021-08-02 15:24:58 +02:00
Max Peintner
9b5cb38d62
fix(console): dialog theme background, multifactor buttons (#2111)
* fix: console dialog theme background, multifactor btns

* lint
2021-07-30 11:40:15 +00:00
Elio Bischof
fbe0f311f2
feat: comprehensive sentry instrumentation (#2023)
* feat: comprehensive sentry instrumentation

* test: pass

* fix: only fetch zitadel dsn in zitadel-operator

* chore: use dns for sentry environment as soon as parsed

* fix: trust ca certs

* ci: update orbos

* docs: add usage data explanation

* fix: dont send validation errors

* docs: improve ingestion data explanation

* style: rename flag --disable-ingestion to --disable-analytics

* fix: pass --disable-analytics flag to self deployments

* fix: destroy command for sentry

* fix: update orbos

* fix: only switch environment if analytics is enabled

* fix: ensure SENTRY_DSN is always set

* test: test empty sentry dsn

* ci: invalidate build caches

* chore: use zitadel-dev if no version is passed

* chore: combine dev releases in sentry

* refactor: only check for semrel if sentry is enabled
2021-07-30 09:52:08 +00:00
Livio Amstutz
e1a3cc732d
fix: check allowed origins from calling and not called application (#2106)
* fix: check allowed origins from calling and not called application

* fix test
2021-07-30 11:30:51 +02:00
Livio Amstutz
de9f88bf5b
fix: custom mail texts (#2101)
* fix: custom mail texts

* fix: custom mail texts

* disable cache

* enable cache again

* disable cache again

* comment
2021-07-29 12:29:09 +00:00
Max Peintner
7d3c768d8b
feat(console): apply private labeling settings (#2059)
* fetch org design an calc palette

* distinct theme deriv

* calculate self theme

* background palette, fix styles

* component fixes, warn color

* warn color

* stylelint config, set warn color

* lint

* fallback theme

* lint

* granted, owned proejct grid

* dynamic privacy policy, fix home layout, dismissables, info-section

* lint

* apply theme from settings

* enable cache

* fix: add primary tint
2021-07-28 14:59:52 +02:00
Livio Amstutz
fb06aed238
fix: grant "policy.read" to every role (label and privacy policy necessary in console) (#2089) 2021-07-28 14:14:51 +02:00
Livio Amstutz
bd8133aedd
fix: do not cache api (incl. grpc) and http errors (#2088)
* fix: add cache-control headers (no-store, no-cache) on grpc (for grpc-web)

* fix: do not cache api response (incl. grpc) and http errors
2021-07-28 13:19:44 +02:00
Florian Forster
451afada90
chore(actions): mode max with go build (#2086) 2021-07-28 09:45:44 +00:00
Max Peintner
b614869b75
docs: add nextjs to quickstarts (#2084)
* docs: update angular template link

* docs: add nextjs to quickstarts

* add to navigation

* nextjs is a framework

* add title

* reenable cache

Co-authored-by: Florian Forster <florian@caos.ch>
2021-07-28 09:24:22 +00:00
Florian Forster
6ad565bb6b
chore(actions): trigger rebuild to get rid of the broken GH cache (#2083)
* chore(actions): trigger rebuild to get rid of the broken GH cache

* Update zitadel.yml

* invalidate cache

* update action

* simplify caching scopes

* use mode max

* Update zitadel.yml
2021-07-28 09:56:58 +02:00
Florian Forster
291b04ee1e
chore(dev): linux dev support workaround (#2076) 2021-07-27 21:55:30 +02:00
Max Peintner
adac3eaf2d
docs: update angular template link (#2080) 2021-07-27 17:31:01 +02:00
Florian Forster
8d96f1a895
fix(zitadel-image): refactor dockerfiles and gh action (#2027)
* early prototyp

* fix some errors

* remove docker image cache

* add comment

* add false

* typo

* test cache speed

* upload artifact

* remove tag

* seperate after build step

* debug

* debug

* debug

* debug

* debug

* test gh

* test

* test

* test

* test

* test golang

* test go

* test with release image

* fix

* use scratch to export

* test

* fix path

* ref

* typo

* debug

* test

* debug

* speed up docker

* test

* debug

* debug

* try scope

* test cache

* restore cache

* reenable operator build

* fix duplicate

* fix buildpush version

* test cache

* improve caching

* test release IF

* only run console and zitadel without dispatch

* test with reworked operator

* testing without release step

* lint yaml

* fix if

* improve wording

* enable release step & only notify sentry on main

* console from file system

* update docker file paths

* remove migration line

* add statik for operator

* console files using go 1.15

* fix console default path

* improve code QL

Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-07-27 14:34:56 +02:00
Elio Bischof
e546988d2f
fix: return unsuccessful code on failure (#2077) 2021-07-27 10:12:49 +00:00
Livio Amstutz
93ad1daa69
fix: add some missing translations (#2073) 2021-07-26 13:03:42 +00:00
Max Peintner
2e684684de
feat(console): message and login texts, privacy policy (#2016)
* message texts wrapper components

* message-text sub, i18n, grid

* fix routing

* pack

* pack

* update material

* audit

* fix mgmt service for labelplcy

* map conv

* edit text from map

* request map

* fetch data, mgmt admin service

* warn box, i18n

* resetbtn

* login texts

* login text requests

* reset, default, i18n

* disabled, features, message text setter, service

* locale switcher

* policy grid

* password reset, domain claimed i18n

* lint files

* fix admin service, i18n, lang setter

* fix scss duplicate

* privacy policy, cleanup grid, fix message, login texts (#2031)

* policy grid everywhere 🦒

* cleanup home

* log login text request

* patch all data

* refresh toggle

* fix: add dialog for unsaved changes (#2057)

* logintexts dialog

* check for dialog on pairwise operation

* fix: patch value to local state after save

* fix: i18n and custom login texts (#2060)

* fix: i18n and custom login texts

* fix: tos and privacy texts

* fix frontend

* fix: tos and privacy texts and tests

* fix: i18n, tos and privacy texts and tests

* fix frontend maps

* i18n

* add ResetCustomLoginTextToDefault in admin api and fix template remove in handlers

* resetlogintexttodefault

Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-07-26 12:44:45 +02:00
Stefan Benz
26e4e607bc
fix(cockroach): change resources for crdb (#2049)
* fix(cockroach): change resources for crdb

* fix: unit test for resource change
2021-07-22 11:00:08 +02:00
Livio Amstutz
0a6f6b6422
fix: add missing grpc converters in SetLoginCustomTextToDomain (#2054) 2021-07-22 08:59:44 +00:00
Livio Amstutz
e89b2be1f1
fix: eventListener in input_suffix_offset.js (#2053) 2021-07-21 09:23:55 +00:00
Max Peintner
6e32bb9fdd
fix: update private labeling (#2048) 2021-07-21 10:42:36 +02:00
mffap
17fb40b55d
docs: additional terms for dedicated instance (#2047)
* init

* adds maintenance

* incidents, minors

* sidebar

* naming tos

* annex

* intro

* updates support services

* update sla

* correct error

* tos

* custom support hours

* revision tos

* Apply suggestions from code review

Co-authored-by: Florian Forster <florian@caos.ch>

* purchase order

* fix guarantees link

Co-authored-by: Florian Forster <florian@caos.ch>
2021-07-21 09:09:36 +02:00
Livio Amstutz
21001862ae
fix: update oidc lib to fix userinfo claims in id_token (#2052) 2021-07-21 09:00:04 +02:00
Stefan Benz
25c9d7371d
fix(zitadelctl): implementation for commands in crd mode (#1685)
* fix(zitadelctl): implement takedown command

* fix(zitadelctl): correct destroy flow

* fix(zitadelctl): correct backup commands to read crds beforehand

* fix: add of destroyfile

* fix: clean for userlist

* fix: determine mode by --gitops flag for backups

* refactor: return error instead of higher order function

* fix(destroy): needs no self-reconciling

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(destroy): needs no self-reconciling

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* fix(logs): fix double handled error

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

Co-authored-by: Elio Bischof <eliobischof@gmail.com>
2021-07-20 15:47:48 +02:00
Livio Amstutz
413ed80611
fix: custom message texts (#2046)
* fix: grpc implementation of custom message texts

* fix: proto definition of RemoveHumanAvatar in mgmt api

* fix: DeleteCustomText in view (respect key)
2021-07-20 11:40:53 +02:00
Livio Amstutz
9413fc19ff
fix: parsing of ip address (#2045) 2021-07-20 10:10:48 +02:00
Max Peintner
6ff434e853
fix: use full header height for upright logos (#2044) 2021-07-20 07:12:23 +02:00
Silvan
3d865b3178
fix(auth): improve sign out handling (#2030)
* fix(auth): create index on token table

* only terminate active sessions

Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-07-19 15:12:00 +02:00
Max Peintner
1b6fcebaa6
fix(console): disable sw (#2021)
* fix: disable sw

* angular.json disable sw
2021-07-14 10:32:14 +02:00
Fabi
e630555a2a
fix: remove oauth endpoints from oidc config proto (#2014) 2021-07-13 16:06:17 +02:00
Livio Amstutz
87ef8f454a
fix: grpc status in sentry and validation interceptors (#2012) 2021-07-13 15:42:41 +02:00
Fabi
da181b9e8c
fix: sms notification (#2013)
* fix: phone verifications

* feat: fix password reset as sms

* fix: phone verification
2021-07-13 15:04:02 +02:00
Fabi
03a38fbf1c
feat: Custom message files (#1992)
* feat: add get custom message text to admin api

* feat: read custom message texts from files

* feat: get languages in apis

* feat: get languages in apis

* feat: get languages in apis

* feat: pr feedback

* feat: docs

* feat: merge main
2021-07-13 07:13:39 +02:00
Livio Amstutz
7ebf0333c3
fix: filter event_data (#2011) 2021-07-12 14:26:54 +00:00
Max Peintner
b1c26c12ab
fix: enable idp add button for iam users (#2010) 2021-07-12 16:20:12 +02:00
Fabi
d948685059
fix: translation file read (#2009)
* feat: translation file read

* feat: readme
2021-07-12 11:17:31 +02:00
Elio Bischof
4afc31bc00
fix: give restore more time (#1997) 2021-07-09 16:43:35 +00:00
Livio Amstutz
f7aa2f6b25
fix: handle closed channels on unsubscribe (#1995) 2021-07-09 11:33:43 +02:00
Livio Amstutz
09b5c964cc
feat: handle ui_locales in login (#1994)
* fix: handle ui_locales in login

* move supportedlanguage func into i18n package

* update oidc pkg
2021-07-09 07:45:31 +00:00
Livio Amstutz
f93337e99b
fix: race condition in auth request unmarshalling (#1993) 2021-07-08 16:38:34 +00:00
Fabi
c950d6d272
fix: return default language file, if requested lang does not exist for default login texts (#1988)
* fix: return default language file, if requested lang doesnt exists

* feat: read default translation file

* feat: docs
2021-07-08 14:01:07 +02:00
Livio Amstutz
10cae58505
fix: log error reason on terminate session (#1973) 2021-07-08 13:55:21 +02:00