TheArchive/zitadel
1
0
Fork 0
mirror of https://github.com/zitadel/zitadel.git synced 2024-12-12 02:54:20 +00:00
Code Issues Packages Projects Releases Wiki Activity
2,030 Commits 165 Branches 1,927 Tags 670 MiB
4ca50e0802
Commit Graph

1048 Commits

Author SHA1 Message Date
Livio Spring
4ca50e0802
fix: check for empty applicationID on assertRoles (#5509) 
* fix: check for empty applicationID on assertRoles

* remove unintended added file
 2023-03-21 08:59:44 +01:00
Silvan
a3b36a0138
refactor(changes): use queries.SearchEvents (#5388) 
* refactor(changes): use `queries.SearchEvents`

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
 2023-03-17 09:14:06 +00:00
Elio Bischof
09abf06d4d
refactor: rename config structs (#5459) 2023-03-16 17:24:30 +00:00
Livio Spring
1896f13952
fix: use idToken for mapping when using old configs (#5458) 
* fix: use idToken for mapping when using old configs

* fix events and add tests
 2023-03-16 16:47:22 +01:00
Livio Spring
a8a2edadc2
fix: use correct resource owner in checkExternalUserLogin (#5457) 2023-03-16 13:14:08 +00:00
Elio Bischof
fecd197bf2
fix: open dialogs (#5451) 2023-03-15 14:40:35 +00:00
Livio Spring
5a307afe62
feat: add azure provider templates (#5441) 
Adds possibility to manage and use Microsoft Azure template based providers
 2023-03-15 07:48:37 +01:00
Elio Bischof
e00cc187fa
fix: make user creation errors helpful (#5382) 
* fix: make user creation errors helpful

* fix linting and unit testing errors

* fix linting

* make zitadel config reusable

* fix human validations

* translate ssr errors

* make zitadel config reusable

* cover more translations for ssr

* handle email validation message centrally

* fix unit tests

* fix linting

* align signatures

* use more precise wording

* handle phone validation message centrally

* fix: return specific profile errors

* docs: edit comments

* fix unit tests

---------

Co-authored-by: Silvan <silvan.reusser@gmail.com>
 2023-03-14 19:20:38 +00:00
Stefan Benz
f99cf50f69
fix: add authURLParams to urls for external idps (#5404) 
add authURL parameters to urls for external IDPs, depended on the contents of the authRequest

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
 2023-03-14 15:42:29 +00:00
Livio Spring
c0843e6b4c
feat: add gitlab provider templates (#5405) 
* feat(api): add google provider template

* refactor reduce functions

* handle removed event

* linting

* fix projection

* feat(api): add generic oauth provider template

* feat(api): add github provider templates

* feat(api): add github provider templates

* fixes

* proto comment

* fix filtering

* requested changes

* feat(api): add generic oauth provider template

* remove wrongly committed message

* increase budget for angular build

* fix linting

* fixes

* fix merge

* fix merge

* fix projection

* fix merge

* updates from previous PRs

* enable github providers in login

* fix merge

* fix test and add github styling in login

* cleanup

* feat(api): add gitlab provider templates

* fix: merge

* fix display of providers in login

* implement gitlab in login and make prompt `select_account` optional since gitlab can't handle it

* fix merge

* fix merge and add tests for command side

* requested changes

* requested changes

* Update internal/query/idp_template.go

Co-authored-by: Silvan <silvan.reusser@gmail.com>

* fix merge

* requested changes

---------

Co-authored-by: Silvan <silvan.reusser@gmail.com>
 2023-03-13 17:34:29 +01:00
Silvan
eb4f7c5d7c
fix(auth): update user grants before check (#5406) 2023-03-13 08:03:49 +01:00
Livio Spring
26fdc3e84e
fix(api): return id_attribute of oauth provider (#5397) 2023-03-09 06:13:43 +00:00
Livio Spring
8cbde57047
fix(api): allow HTTP/1.1 for grpc-web (#5376) 
Handles grpc-web on HTTP/1.1 with H2C for HTTP/2, but does not enforce it.
 2023-03-08 18:33:43 +00:00
Silvan
20e4f1ce57
feat(actions): add fields to complement token flow (#5336) 
* deprecated `ctx.v1.userinfo`-field in "pre userinfo creation" trigger in favour of `ctx.v1.claims`. The trigger now behaves the same as "pre access token creation"
* added `ctx.v1.claims` to "complement tokens" flow
* added `ctx.v1.grants` to "complement tokens" flow
* document `ctx.v1.getUser()` in "complement tokens" flow

* feat(actions): add getUser() and grant

* map user grants

* map claims

* feat(actions): claims in complement token ctx

* docs(actions): add new fields of complement token

* docs(actions): additions to complement token

* docs(actions): correct field names
 2023-03-08 15:26:28 +01:00
Livio Spring
3042d7ef5c
feat: add github provider template (#5334) 
Adds possibility to manage and use GitHub (incl. Enterprise Server) template based providers
 2023-03-08 10:17:28 +00:00
Livio Spring
b2786d8c68
fix: handling of (old) IDPConfigChangedEvent projection (#5384) 2023-03-07 11:35:47 +01:00
Livio Spring
2efa305e10
fix: use of generic oauth provider (#5345) 
Adds a id_attribute to the GenericOAuthProvider, which is used to map the external User. Further mapping can be done in actions by using the `rawInfo` of the new `ctx.v1.providerInfo` field.
 2023-03-03 10:38:49 +00:00
Silvan
c8142030e9
fix(postgres): set dbname=postgres in admin mode (#5346) 2023-03-03 09:26:50 +00:00
Silvan
ed4983d3fd
fix: emit only if data and marshal invalid metadata 
* fix(emitter): only emit if there are log records

* fix(actions): marshal invalid metadata value into string
 2023-03-01 17:05:12 +00:00
Livio Spring
966df56026
fix(providers): set prompt select_account again (#5329) 2023-03-01 07:17:51 +00:00
Livio Spring
48f9815b7c
feat(login): use new IDP templates (#5315) 
The login uses the new template based IDPs with backwards compatibility for old IDPs
 2023-02-28 21:20:58 +01:00
Silvan
e38abdcdf3
perf: query data AS OF SYSTEM TIME (#5231) 
Queries the data in the storage layser at the timestamp when the call hit the API layer
 2023-02-27 22:36:43 +01:00
Livio Spring
80003939ad
feat(api): add oidc and jwt provider template (#5290) 
Adds possibility to manage OIDC and JWT template based providers
 2023-02-27 16:32:18 +01:00
Max Peintner
9396e8b2f5
fix(console): use authService for auth user page (#5233) 
* auth grant

* fix: add missing attributes to ListMyUserGrantsResponse

* user grants typing

* typing

* auth grant link

* disable without role

* edit with auth grant

* chore(console): auto organize imports (#5293)

fix(console): auto organize imports

* Update console/src/app/modules/user-grants/user-grants-datasource.ts

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* Update console/src/app/modules/user-grants/user-grants-datasource.ts

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* Update console/src/app/modules/user-grants/user-grants-datasource.ts

Co-authored-by: Elio Bischof <eliobischof@gmail.com>

* linter, rm unused import

* add examples again

* lint

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
 2023-02-27 12:03:44 +01:00
Livio Spring
82ffd6dffb
fix(actions): provide browser info and handle nil pointer (#5277) 
* fix(actions): provide browser info and handle nil pointer

* fix(actions): use correct user id in post registration

---------

Co-authored-by: adlerhurst <silvan.reusser@gmail.com>
 2023-02-24 16:13:11 +01:00
Livio Spring
737d14e81b
feat(api): add generic oauth provider template (#5260) 
adds functionality to manage templates based OIDC IDPs
 2023-02-24 15:16:06 +01:00
Livio Spring
40e7356f3e
feat(api): add google provider template (#5247) 
add functionality to manage templates based Google IDP
 2023-02-21 17:18:28 +00:00
Miguel Cabrerizo
7fc3ecf665
feat: request users ordered by creation date (#5160) 
* feat: request users ordered by creation date

* fix: missing case for creationDate in user-table

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
 2023-02-17 13:15:21 +00:00
Stefan Benz
586495a0be
feat: add management for ldap idp template (#5220) 
Add management functionality for LDAP idps with templates and the basic functionality for the LDAP provider, which can then be used with a separate login page in the future.

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
 2023-02-15 08:14:59 +00:00
Elio Bischof
058192c22b
test: fix log headers (#5222) 
* test: fix log headers

* ensure just public types are tested

* fix(postgres): proper statements for setup step 7

---------

Co-authored-by: adlerhurst <silvan.reusser@gmail.com>
 2023-02-15 03:21:58 +00:00
Elio Bischof
681541f41b
feat: add quotas (#4779) 
adds possibilities to cap authenticated requests and execution seconds of actions on a defined intervall
 2023-02-15 02:52:11 +01:00
Max Peintner
df4a173264
feat(console): machine user accesstoken type (#5196) 
Set machine user Access Token type
 2023-02-14 17:05:55 +01:00
uiopak
84fa20f1ce
feat: internationalization Polish (#5117) 
* Add Polish translations

* Add references to Polish translations in files

* Make a consistent translation of languages in Chinese translation

* Add missing language references to fr, it and zh

* Translation corrections

* Add missing language references to zh

* Translation corrections

* add latest translation keys

* Translation corrections and addition of some new ones

* translate auth requests exhausted

* add new untranslated keys

* Translation corrections, fix indentation

---------

Co-authored-by: Elio Bischof <eliobischof@gmail.com>
 2023-02-13 12:03:34 +01:00
Livio Spring
8ef13d77e7
fix(actions): check for nil pointer on set claims in access_token (#5172) 2023-02-09 06:27:39 +00:00
Stefan Benz
3616b6b028
feat(api): allow specifying access_token type (opaque/JWT) for service users (#5150) 
Add functionality to configure the access token type on the service accounts to provide the oidc library with the necessary information to create the right type of access token.
 2023-02-08 08:06:34 +00:00
Livio Spring
44a995c660
fix: only remove idp links from users of own organisation (#5156) 
ensure linked users of the (instance) idp are only affected if they are part of the organisation where the idp is removed from the login policy
 2023-02-03 14:56:19 +07:00
Stefan Benz
e2fdd3f077
feat: support client_credentials for service users (#5134) 
Request an access_token for service users with OAuth 2.0 Client Credentials Grant. Added functionality to generate and remove a secret on service users.
 2023-01-31 19:52:47 +00:00
Stefan Benz
eb17d0c378
feat: add http request to interal and external authentication actions (#5103) 
Add functionality to provide http.Request and authError to actions for logging or other logic.
 2023-01-26 10:40:49 +00:00
Silvan
c54ddc71a2
feat(actions): local users (#5089) 
Actions are extended to to local users. It's possible to run custom code during registration and authentication of local users.
 2023-01-25 13:08:01 +00:00
Stefan Benz
19621acfd3
feat: add notification policy and password change message (#5065) 
Implementation of new notification policy with functionality to send email when a password is changed
 2023-01-25 09:49:41 +01:00
Fabi
8b5894c0bb
fix: add description to password screen (#5096) 2023-01-24 09:46:31 +00:00
Livio Spring
598a4d2d4b
feat: add basic structure of idp templates (#5053) 
add basic structure and implement first providers for IDP templates to be able to manage and use them in the future
 2023-01-23 08:11:40 +01:00
Silvan
7b5135e637
fix(adminAPI): localize event type (#5059) 
* fix(adminAPI): localisation of event types, aggregate types
* fix(adminAPI): validations of ListEvent request
* implement caching of editor user information
 2023-01-19 15:50:05 +00:00
Stefan Benz
a36fdf8fe6
feat: add listIamMembers to system api (#5013) 
Added ListIAMMembers endpoint to system-API to provide the functionality to the customer portal
 2023-01-17 20:35:41 +00:00
Elio Bischof
0316c2c187
fix: add port to SMTP host label (#4980) 
* fix: add port to SMTP host label

* fix gRPC request message

* fix: validate port in backend

* make defaults.yaml host field more clear

* add placeholder smtp host field

* make ipv6 smtp host valid

* hide smtp password input

* fix smtp host not filled

* dont let browsers prefill smtp password
 2023-01-17 09:20:16 +00:00
Silvan
71bd19d690
fix: login name case insensitive (#5032) 
checks for login names case insensitive during login
 2023-01-16 13:07:31 +00:00
Silvan
1bf1f335dc
feat(admin-api): list events (#4989) 
* docs: update cockroachdb version to 22.2
* feat(adminAPI): ListEventTypes returns the list of event types ZITADEL implements
* feat(adminAPI): ListAggregateTypes returns the list of aggregate types ZITADEL implements
* feat(adminAPI): ListEvents allows `IAM_OWNERS` to search for events
 2023-01-16 11:30:03 +00:00
Silvan
74c1c39207
fix: org unique check (#5033) 
- all verified of domains are checked
- domains are checked case insensitive
- name is checked case insensitive
 2023-01-16 09:55:19 +00:00
Max Peintner
e7a97b1f3b
fix(login): add text-decoration: underline on the sub-formfield links (#5012) 
* fix: login underline

* a styles
 2023-01-12 14:04:04 +00:00
Livio Spring
2482bb8700
Merge pull request from GHSA-6rrr-78xp-5jp8 2023-01-10 15:58:10 +01:00