Tim Möhlmann
2025434b1e
fix(eventstore): prevent allocation of filtered events ( #6749 )
...
* fix(eventstore): prevent allocation of filtered events
Directly reduce each event obtained from a sql.Rows scan,
so that we do not have to allocate all events in a slice.
* reinstate the mutex as RWMutex
* scan data directly
* add todos
* fix(writemodels): add reduce of parent
* test: remove comment
* update comments
---------
Co-authored-by: adlerhurst <silvan.reusser@gmail.com>
2023-10-20 09:17:56 +02:00
Silvan
ba33a2ee8a
fix(db): allow unlimited connections ( #6758 )
2023-10-20 08:48:26 +02:00
Silvan
b5564572bc
feat(eventstore): increase parallel write capabilities ( #5940 )
...
This implementation increases parallel write capabilities of the eventstore.
Please have a look at the technical advisories: [05](https://zitadel.com/docs/support/advisory/a10005 ) and [06](https://zitadel.com/docs/support/advisory/a10006 ).
The implementation of eventstore.push is rewritten and stored events are migrated to a new table `eventstore.events2`.
If you are using cockroach: make sure that the database user of ZITADEL has `VIEWACTIVITY` grant. This is used to query events.
2023-10-19 12:19:10 +02:00
Silvan
259faba3f0
merge 'main' into next
2023-10-19 11:29:44 +02:00
adlerhurst
9c069806c4
ci(lint): use ref_base instead of main
2023-10-19 10:47:37 +02:00
Elio Bischof
c0ddaf87e6
fix: origin from proxies ( #6738 )
...
* fix: origin from proxies
* test multiple forwarded header values
2023-10-19 10:35:47 +02:00
Livio Spring
426c4acbfe
fix(notification): get origin from all relevant events and fix nil pointer ( #6726 )
2023-10-19 10:34:52 +02:00
adlerhurst
46187f7619
Merge branch 'main' into next-merge
2023-10-19 10:11:02 +02:00
adlerhurst
9a7517dd2c
Merge branch 'main' into next-merge
2023-10-19 10:08:05 +02:00
Livio Spring
a272b1201f
fix(api): use (provided) organisation instead of resourceOwner of caller ( #6714 )
2023-10-12 10:00:36 +02:00
Miguel Cabrerizo
ef18cd2e2c
feat(console): allow setting development mode when creating an OIDC app ( #6593 )
...
* fix: don't show verify domain if policy disabled
* feat: set dev mode on/off when oidc app is created
* fix: linting json files
* fix: add @peintnermax suggestions
---------
Co-authored-by: Max Peintner <max@caos.ch>
2023-10-11 17:37:14 +02:00
Austin Turner
dad1b4db7f
docs: fix typo in saas.md ( #6692 )
...
* Fix typos in saas docs
Fix typo and remove gender specific pronoun
* Fixed grammar error
---------
Co-authored-by: Fabi <fabienne@zitadel.com>
Co-authored-by: Elio Bischof <elio@zitadel.com>
2023-10-11 15:05:20 +02:00
Silvan
2fba12d5c2
docs: add technical advisories for eventstore ( #6702 )
...
* docs: add technical advisories for eventstore
---------
Co-authored-by: Florian Forster <florian@zitadel.com>
2023-10-11 09:13:11 +00:00
Miguel Cabrerizo
7588f8a0bb
fix(console): add jwks uri to app URLs ( #6672 )
...
Co-authored-by: Max Peintner <max@caos.ch>
2023-10-11 08:27:14 +00:00
Miguel Cabrerizo
2d4cd331da
fix: allow unicode characters in org domains ( #6675 )
...
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
2023-10-11 09:55:01 +02:00
Max Peintner
412cd144ef
fix(console): remove redundant user api requests, show discovery document loading errors ( #6683 )
...
* optimize user observable
* fix observable guard
* lint
* lint
---------
Co-authored-by: Elio Bischof <elio@zitadel.com>
2023-10-11 07:02:20 +00:00
Livio Spring
f2d1cd2045
docs(technical advisory): add login ui default context ( #6695 )
...
* docs(technical advisory): add login ui default context
* Update docs/docs/support/advisory/a10003.md
Co-authored-by: Fabi <fabienne@zitadel.com>
---------
Co-authored-by: Fabi <fabienne@zitadel.com>
2023-10-11 08:20:48 +02:00
Fabi
5bc71f7665
docs: keycloak idp ( #6568 )
...
* docs: keycloak idp
* Update docs/docs/guides/integrate/identity-providers/keycloak.mdx
Co-authored-by: mffap <mpa@zitadel.com>
* Update docs/docs/guides/integrate/identity-providers/keycloak.mdx
Co-authored-by: mffap <mpa@zitadel.com>
* Update docs/docs/guides/integrate/identity-providers/keycloak.mdx
Co-authored-by: mffap <mpa@zitadel.com>
* Update docs/docs/guides/integrate/identity-providers/keycloak.mdx
Co-authored-by: mffap <mpa@zitadel.com>
* Update docs/docs/guides/integrate/identity-providers/keycloak.mdx
Co-authored-by: mffap <mpa@zitadel.com>
* Update docs/docs/guides/integrate/identity-providers/keycloak.mdx
Co-authored-by: mffap <mpa@zitadel.com>
---------
Co-authored-by: mffap <mpa@zitadel.com>
2023-10-11 04:56:41 +00:00
mffap
898787c46f
docs(readme): update authentication methods ( #6703 )
...
Update README.md
- Updates authentication methods
- Smaller changes
2023-10-10 15:50:21 +00:00
Elio Bischof
8f6cb47567
fix: use triggering origin for notification links ( #6628 )
...
* take baseurl if saved on event
* refactor: make es mocks reusable
* Revert "refactor: make es mocks reusable"
This reverts commit 434ce12a6a
.
* make messages testable
* test asset url
* fmt
* fmt
* simplify notification.Start
* test url combinations
* support init code added
* support password changed
* support reset pw
* support user domain claimed
* support add pwless login
* support verify phone
* Revert "support verify phone"
This reverts commit e40503303e
.
* save trigger origin from ctx
* add ready for review check
* camel
* test email otp
* fix variable naming
* fix DefaultOTPEmailURLV2
* Revert "fix DefaultOTPEmailURLV2"
This reverts commit fa34d4d2a8
.
* fix email otp challenged test
* fix email otp challenged test
* pass origin in login and gateway requests
* take origin from header
* take x-forwarded if present
* Update internal/notification/handlers/queries.go
Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
* Update internal/notification/handlers/commands.go
Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
* move origin header to ctx if available
* generate
* cleanup
* use forwarded header
* support X-Forwarded-* headers
* standardize context handling
* fix linting
---------
Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
2023-10-10 13:20:53 +00:00
Fabian Deifuß
0180779d6d
fix(backend): include removed SMTP config in Query ( #6624 ) ( #6673 )
...
closes #6624
Co-authored-by: Elio Bischof <elio@zitadel.com>
2023-10-10 12:45:45 +00:00
Miguel Cabrerizo
e66d476c47
fix: meaningful error messages for domain validation ( #6677 )
...
* feat: meaningful error messages for domain validation
* fix: duplicated error code and fix some org codes
* fix: add @peintnermax i18n suggestions
---------
Co-authored-by: Elio Bischof <elio@zitadel.com>
2023-10-10 12:02:16 +00:00
Dakshitha Ratnayake
89fffd6bd6
docs:Added the keycloak migration guide with new tool ( #6642 )
...
* Added the keycloak migration guide.
* Update docs/docs/guides/migrate/sources/keycloak.md
Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
* Update docs/docs/guides/migrate/sources/keycloak.md
Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
* Update docs/docs/guides/migrate/sources/keycloak.md
Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
* Update docs/docs/guides/migrate/sources/keycloak.md
Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
* Addressed review comments
---------
Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
2023-10-10 13:41:23 +03:00
Livio Spring
4d85013ffb
chore: update stable ( #6690 )
2023-10-10 08:28:09 +02:00
Livio Spring
907a1611ac
fix(login): error case for unknown usernames correctly ( #6689 )
...
(cherry picked from commit 8549dd7a3d
)
2023-10-10 07:41:16 +02:00
Elio Bischof
377a885e79
docs: fix typos ( #6688 )
2023-10-09 15:31:16 +00:00
Livio Spring
8549dd7a3d
fix(login): error case for unknown usernames correctly ( #6689 )
2023-10-09 15:05:25 +00:00
Stefan Benz
3689624232
test: correct used client api call in integration test ( #6685 )
...
fix: correct used client api call in integration test
Co-authored-by: Livio Spring <livio.a@gmail.com>
(cherry picked from commit 6ce11a416a
)
2023-10-09 14:18:57 +02:00
Livio Spring
dee9d8d3a7
Merge branch 'main' into next
...
# Conflicts:
# cmd/start/start.go
# internal/auth/repository/eventsourcing/eventstore/auth_request.go
# internal/auth/repository/eventsourcing/repository.go
# internal/command/main_test.go
# internal/command/quota.go
# internal/command/quota_model.go
# internal/command/quota_model_test.go
2023-10-09 14:18:29 +02:00
Stefan Benz
6ce11a416a
test: correct used client api call in integration test ( #6685 )
...
fix: correct used client api call in integration test
Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-10-09 12:09:51 +00:00
Miguel Cabrerizo
8c68f8ed3a
feat(console): only use one save button in SMTP Settings ( #6561 )
...
seperate smtp settings from notification providers
2023-10-09 11:14:17 +00:00
Livio Spring
827ce8809d
fix: use enum for instance feature in system api ( #6682 )
...
* fix: use enum for instance feature in system api
* add feature.proto to lint ignore
2023-10-09 12:33:23 +02:00
Livio Spring
8ca053fad3
fix: respect "Ignore unknown usernames" on password reset
...
Merge pull request from GHSA-v683-rcxx-vpff
(cherry picked from commit 54676eda98
)
2023-10-09 12:12:16 +02:00
Livio Spring
9696fde676
fix: reduce origin check to tokens issued through code and implicit flow ( #6681 )
...
fix: only check origin for tokens issued to users through apps (code / implicit flow)
2023-10-09 10:08:18 +00:00
Livio Spring
54676eda98
Merge pull request from GHSA-v683-rcxx-vpff
2023-10-09 11:47:43 +02:00
mffap
b30d8b3ff5
docs(integrate): argo cd ( #6523 )
...
* docs(integrate): argo cd
* update to latest
2023-10-09 09:35:55 +00:00
Livio Spring
e3ac217424
fix: ensure no events are skipped on token check ( #6663 )
...
fix: ensure no events are skipped on token check
2023-10-09 09:26:27 +02:00
Stefan Benz
15fd3045e0
feat: add SAML as identity provider ( #6454 )
...
* feat: first implementation for saml sp
* fix: add command side instance and org for saml provider
* fix: add query side instance and org for saml provider
* fix: request handling in event and retrieval of finished intent
* fix: add review changes and integration tests
* fix: add integration tests for saml idp
* fix: correct unit tests with review changes
* fix: add saml session unit test
* fix: add saml session unit test
* fix: add saml session unit test
* fix: changes from review
* fix: changes from review
* fix: proto build error
* fix: proto build error
* fix: proto build error
* fix: proto require metadata oneof
* fix: login with saml provider
* fix: integration test for saml assertion
* lint client.go
* fix json tag
* fix: linting
* fix import
* fix: linting
* fix saml idp query
* fix: linting
* lint: try all issues
* revert linting config
* fix: add regenerate endpoints
* fix: translations
* fix mk.yaml
* ignore acs path for user agent cookie
* fix: add AuthFromProvider test for saml
* fix: integration test for saml retrieve information
---------
Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-09-29 11:26:14 +02:00
Livio Spring
2e99d0fe1b
fix(email): UTF-8 "Q" encode subject header ( #6637 )
...
fix(email): UTF-8 "Q" encode subject header
2023-09-29 08:53:45 +00:00
Livio Spring
68bfab2fb3
feat(login): use default org for login without provided org context ( #6625 )
...
* start feature flags
* base feature events on domain const
* setup default features
* allow setting feature in system api
* allow setting feature in admin api
* set settings in login based on feature
* fix rebasing
* unit tests
* i18n
* update policy after domain discovery
* some changes from review
* check feature and value type
* check feature and value type
2023-09-29 08:21:32 +00:00
Max Peintner
d01f4d229f
fix(console): move org domains into settings page of the organization ( #6612 )
...
* fix: hide domains settings for unauthorized users
* refine sidenav object mapping
* move domains to settings
* change docs
* set anchor to list element
* remove canwrite check in ngif
---------
Co-authored-by: Miguel A. C <doncicuto@gmail.com>
2023-09-29 09:31:35 +02:00
Miguel Cabrerizo
eb31c2a3be
fix(cnsl): hide new auth button if no routerlink ( #6640 )
...
* fix(cnsl): hide new auth button if no routerlink
* fix: add @peintnermax suggestions
---------
Co-authored-by: Max Peintner <max@caos.ch>
2023-09-29 08:39:30 +02:00
Max Peintner
0a2e6dcfb3
chore(console): npm dependencies ( #6626 )
...
* chore(deps-dev): bump eslint from 8.46.0 to 8.50.0 in /console (#6618 )
Bumps [eslint](https://github.com/eslint/eslint ) from 8.46.0 to 8.50.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v8.46.0...v8.50.0 )
---
updated-dependencies:
- dependency-name: eslint
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps-dev): bump @types/node from 18.16.10 to 20.6.5 in /console (#6617 )
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 18.16.10 to 20.6.5.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps): bump protobufjs from 7.2.3 to 7.2.5 in /console (#6584 )
Bumps [protobufjs](https://github.com/protobufjs/protobuf.js ) from 7.2.3 to 7.2.5.
- [Release notes](https://github.com/protobufjs/protobuf.js/releases )
- [Changelog](https://github.com/protobufjs/protobuf.js/blob/master/CHANGELOG.md )
- [Commits](https://github.com/protobufjs/protobuf.js/compare/protobufjs-v7.2.3...protobufjs-v7.2.5 )
---
updated-dependencies:
- dependency-name: protobufjs
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Max Peintner <max@caos.ch>
* chore(deps-dev): bump @types/jasmine from 4.3.5 to 4.3.6 in /console (#6581 )
Bumps [@types/jasmine](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jasmine ) from 4.3.5 to 4.3.6.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jasmine )
---
updated-dependencies:
- dependency-name: "@types/jasmine"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps): bump @grpc/grpc-js from 1.8.14 to 1.9.3 in /console (#6578 )
Bumps [@grpc/grpc-js](https://github.com/grpc/grpc-node ) from 1.8.14 to 1.9.3.
- [Release notes](https://github.com/grpc/grpc-node/releases )
- [Commits](https://github.com/grpc/grpc-node/compare/@grpc/grpc-js@1.8.14...@grpc/grpc-js@1.9.3 )
---
updated-dependencies:
- dependency-name: "@grpc/grpc-js"
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps-dev): bump @types/qrcode from 1.5.0 to 1.5.2 in /console (#6477 )
Bumps [@types/qrcode](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/qrcode ) from 1.5.0 to 1.5.2.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/qrcode )
---
updated-dependencies:
- dependency-name: "@types/qrcode"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps-dev): bump prettier from 2.8.8 to 3.0.3 in /console (#6476 )
Bumps [prettier](https://github.com/prettier/prettier ) from 2.8.8 to 3.0.3.
- [Release notes](https://github.com/prettier/prettier/releases )
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md )
- [Commits](https://github.com/prettier/prettier/compare/2.8.8...3.0.3 )
---
updated-dependencies:
- dependency-name: prettier
dependency-type: direct:development
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps): bump socket.io-parser from 4.2.2 to 4.2.4 in /console (#6376 )
Bumps [socket.io-parser](https://github.com/socketio/socket.io-parser ) from 4.2.2 to 4.2.4.
- [Release notes](https://github.com/socketio/socket.io-parser/releases )
- [Changelog](https://github.com/socketio/socket.io-parser/blob/main/CHANGELOG.md )
- [Commits](https://github.com/socketio/socket.io-parser/compare/4.2.2...4.2.4 )
---
updated-dependencies:
- dependency-name: socket.io-parser
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps): bump semver from 5.7.1 to 5.7.2 in /console (#6375 )
Bumps [semver](https://github.com/npm/node-semver ) from 5.7.1 to 5.7.2.
- [Release notes](https://github.com/npm/node-semver/releases )
- [Changelog](https://github.com/npm/node-semver/blob/v5.7.2/CHANGELOG.md )
- [Commits](https://github.com/npm/node-semver/compare/v5.7.1...v5.7.2 )
---
updated-dependencies:
- dependency-name: semver
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* lint
* node types
* use node 20
---------
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-28 14:59:58 +02:00
Max Peintner
e9148e96c7
fix(login): firefox MFA radio mouse target ( #6632 )
...
fix: mfa radio for firefox
2023-09-28 08:15:01 +02:00
mffap
e4af360d39
docs(legal): move feature development policy ( #6354 )
...
* docs(legal): move feature development policy
* initial policy
* fix links
* Apply suggestions from code review
2023-09-27 09:27:31 +00:00
Tim Möhlmann
d380627e80
feat(passwap): base64 standard encoding for pbkdf2 ( #6629 )
...
Upgrade passwap to include the above feature.
2023-09-27 08:00:46 +02:00
Stefan Benz
2823678eb6
fix: add userID to intent responses ( #6566 )
...
Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-09-25 05:21:50 +00:00
Miguel Cabrerizo
689655a50d
fix(console): hide domains settings for unauthorized users ( #6602 )
...
fix: hide domains settings for unauthorized users
Co-authored-by: Max Peintner <max@caos.ch>
2023-09-22 15:53:23 +02:00
Elio Bischof
520f87d9b1
test: duplicate quota notifications ( #6610 )
2023-09-22 13:33:23 +02:00
Elio Bischof
1d4ec6cdba
fix: set quotas ( #6597 )
...
* feat: set quotas
* fix: start new period on younger anchor
* cleanup e2e config
* fix set notifications
* lint
* test: fix quota projection tests
* fix add quota tests
* make quota fields nullable
* enable amount 0
* fix initial setup
* create a prerelease
* avoid success comments
* fix quota projection primary key
* Revert "fix quota projection primary key"
This reverts commit e72f4d7fa1
.
* simplify write model
* fix aggregate id
* avoid push without changes
* test set quota lifecycle
* test set quota mutations
* fix quota unit test
* fix: quotas
* test quota.set event projection
* use SetQuota in integration tests
* fix: release quotas 3
* reset releaserc
* fix comment
* test notification order doesn't matter
* test notification order doesn't matter
* test with unmarshalled events
* test with unmarshalled events
(cherry picked from commit ae1af6bc8c
)
2023-09-22 13:06:59 +02:00