Commit Graph

2633 Commits

Author SHA1 Message Date
Livio Spring
94d13fd3e1
fix(api): handle id_token_mapping in generic oidc provider correctly (#6428) 2023-08-24 10:31:12 +00:00
Livio Spring
bb40e173bd
feat(api): add otp (sms and email) checks in session api (#6422)
* feat: add otp (sms and email) checks in session api

* implement sending

* fix tests

* add tests

* add integration tests

* fix merge main and add tests

* put default OTP Email url into config

---------

Co-authored-by: Stefan Benz <46600784+stebenz@users.noreply.github.com>
2023-08-24 09:41:52 +00:00
Elio Bischof
29fa3d417c
feat(console): enable ID token mapping for generic OIDC provider (#6426)
* fix: use IsIdTokenMapping request property

* feat(console): oidc provider id token mapping

* fix scss

* reduce styles

* fix lint

---------

Co-authored-by: peintnermax <max@caos.ch>
Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-08-23 12:57:20 +00:00
Livio Spring
66772ad0dd
fix: restrict AllowRegistration check to local registration (#5939)
* fix: restrict AllowRegistration check to local registration

* add comment

* add additional tests

* hide registration fields if no registration allowed

* fix: always allow linking and creation of external idps on users in userV2 and admin import

* chore: exclude console dist and node_module folders from cache

* chore: include node_module folders into cache again

* linting
2023-08-23 13:55:52 +02:00
Livio Spring
85194666ff
fix: use system secret config if generator type does not exist on instance (#6420)
* fix: use system secret config if generator type does not exist on instance

* remove unused idGenerator

(cherry picked from commit cbd2ef0612)
2023-08-23 10:18:27 +02:00
Livio Spring
cbd2ef0612
fix: use system secret config if generator type does not exist on instance (#6420)
* fix: use system secret config if generator type does not exist on instance

* remove unused idGenerator
2023-08-23 08:04:29 +00:00
Fabi
37c527f18e
docs: add auth header to new api docs (#6421) 2023-08-23 09:25:14 +02:00
Livio Spring
efcabed04f
docs: add technical advisory on allow register (#6413)
* docs: add technical advisory on `allow register`

* typos

* Update technical_advisory.mdx
2023-08-22 17:00:26 +02:00
Silvan
22af4dcd97
feat(storage): read only transactions (#6417)
feat(storage): read only transactions for queries (#6415)

* fix: tests

* bastle wie en grosse

* fix(database): scan as callback

* fix tests

* fix merge failures

* remove as of system time

* refactor: remove unused test

* refacotr: remove unused lines
2023-08-22 14:49:02 +02:00
Silvan
99e1c654a3
feat(storage): read only transactions for queries (#6415)
* fix: tests

* bastle wie en grosse

* fix(database): scan as callback

* fix tests

* fix merge failures

* remove as of system time

* refactor: remove unused test

* refacotr: remove unused lines
2023-08-22 10:49:22 +00:00
Livio Spring
a9fb2a6e5c
fix(api): naming cleanup in user and session service (#6379)
* fix(api): rename first and last name to given and family name, intent to idp_intent, remove _ actions

* fix merge

* fully rename intent to idp intent in api

---------

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
2023-08-22 10:05:45 +00:00
Livio Spring
f03a9d03b6
chore(workflow): exclude console dist folder from cache (#6414)
* empty line for test

* chore: exclude console dist folder from cache
2023-08-22 07:31:41 +02:00
Arshil Vahora
3df4361bfb
fix: one item menus height issue (#6359)
changed minimum-height attribute of mat menu for both light as well as dark theme

Closes #6140

Co-authored-by: Max Peintner <max@caos.ch>
2023-08-21 17:08:45 +00:00
Livio Spring
7442492b8a
fix(login): add some missing translations for OTP (#6409)
(cherry picked from commit e701e05d23)
2023-08-21 15:43:26 +02:00
Livio Spring
74841dfb1c
fix: setMetadata in saml and pre access token triggers (#6398)
(cherry picked from commit 84faf98bc2)
2023-08-21 15:43:25 +02:00
JesseBot
2de7c1c607
docs: Update basic-auth.mdx - add syntax highlighting to code blocks (#6403)
Signed-off-by: jessebot <jessebot@linux.com>
Co-authored-by: Fabi <fabienne@zitadel.com>
2023-08-21 13:31:36 +00:00
Livio Spring
e701e05d23
fix(login): add some missing translations for OTP (#6409) 2023-08-21 12:41:39 +00:00
Livio Spring
84faf98bc2
fix: setMetadata in saml and pre access token triggers (#6398) 2023-08-21 14:21:45 +02:00
mffap
e034b37068
docs: Update README.md (#6401)
* Update README.md badges

- Fix pipeline build batch: use shields.io & only PRs
- Add badge for stable version
- reoder: general, code/release, community

* add some links
2023-08-21 08:50:46 +02:00
mffap
76f467d925
docs(integrate): add nextcloud, cf workers (#6395) 2023-08-19 11:39:54 +02:00
Max Peintner
a141b8f3e7
fix(console): set metadata value encoding to utf-8 (#6392)
* fix: set encoding to utf-8

* org metadata encoding

* user detail mgmt encoding

* utf-8 encoding decoding of saml applications

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-08-19 07:16:40 +00:00
Livio Spring
aa2d547eb2
docs: update passkey usage in session api (#6386)
Co-authored-by: Stefan Benz <46600784+stebenz@users.noreply.github.com>
2023-08-19 06:26:51 +00:00
Livio Spring
69b49ac0ed
fix(api): return correct http code on assets api (#6388)
* fix(api): return correct http code on assets api

* add test

* fix test
2023-08-18 13:51:11 +00:00
Livio Spring
8b44794c75
fix: delete SMTP correctly (#6391) 2023-08-18 14:22:57 +02:00
Livio Spring
d029b82f0d
fix: handle metadata from post authentication on auto creation (#6389)
(cherry picked from commit 90a62b777b)
2023-08-18 11:23:06 +02:00
mffap
60171f8e2b
docs(oidc): device auth grant supported, typo (#6380)
doc(oidc): device auth grant supported, typo

Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Stefan Benz <46600784+stebenz@users.noreply.github.com>
(cherry picked from commit f5f9b39fdf)
2023-08-18 11:23:06 +02:00
Livio Spring
90a62b777b
fix: handle metadata from post authentication on auto creation (#6389) 2023-08-18 09:16:58 +00:00
mffap
f5f9b39fdf
docs(oidc): device auth grant supported, typo (#6380)
doc(oidc): device auth grant supported, typo

Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Stefan Benz <46600784+stebenz@users.noreply.github.com>
2023-08-18 08:49:57 +00:00
Livio Spring
21e35e0ce3
Merge branch 'main' into next
# Conflicts:
#	internal/auth/repository/eventsourcing/eventstore/auth_request.go
2023-08-18 10:36:05 +02:00
Livio Spring
a99f49999a
fix: OTP SMS texts (#6387) 2023-08-18 10:28:08 +02:00
Silvan
6672dcd87d
fix: add spans in auth requests (#6368)
Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-08-18 07:21:31 +00:00
Stefan Benz
52f68f8db8
feat: add ldap external idp to login api (#5938)
* fix: handling of ldap login through separate endpoint

* fix: handling of ldap login through separate endpoint

* fix: handling of ldap login through separate endpoint

* fix: successful intent for ldap

* fix: successful intent for ldap

* fix: successful intent for ldap

* fix: add changes from code review

* fix: remove set intent credentials and handle ldap errors

* fix: remove set intent credentials and handle ldap errors

* refactor into separate methods and fix merge

* remove mocks

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-08-16 11:29:57 +00:00
Max Peintner
1b923425cd
chore(docs): downgrade react (#6374)
* chore(docs): downgrade react

* remove --no-minify
2023-08-16 08:44:16 +00:00
Max Peintner
a262595fc2
feat(console): add otp sms and otp email as factor (#6343)
* cli, core

* material cdk

* schematics

* chore(deps-dev): bump eslint from 8.40.0 to 8.44.0 in /console (#6127)

Bumps [eslint](https://github.com/eslint/eslint) from 8.40.0 to 8.44.0.
- [Release notes](https://github.com/eslint/eslint/releases)
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md)
- [Commits](https://github.com/eslint/eslint/compare/v8.40.0...v8.44.0)

---
updated-dependencies:
- dependency-name: eslint
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* npm

* feat: add otp sms button

* lock

* rm package-lock

* prompt to setup sms otp on verify

* cli, core

* material, cdk

* schematics

* otp email

* show type

* show type on mgmt page

* disable selection on add

* rename totp

* fix totp i18n

* directly use data, fix styles

* sms req

* fix type check

* fix delete

* rm comment

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-08-16 04:37:16 +00:00
Stefan Benz
26b28ed2af
feat: add saml custom attribute action and translations (#6341)
* feat: add saml custom attribute action and translations

* chore: update saml dependency

* fix: apply suggestions from code review

Co-authored-by: Livio Spring <livio.a@gmail.com>

* fix: custom attribute action with variadic parameter

* docs: add customize saml response docs

* docs: update docs/docs/apis/actions/customize-samlresponse.md

Co-authored-by: Livio Spring <livio.a@gmail.com>

* docs: update docs/docs/apis/actions/customize-samlresponse.md

Co-authored-by: Livio Spring <livio.a@gmail.com>

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-08-15 15:04:45 +00:00
Max Peintner
d83681a928
fix(login): mfa prompt styles (#6366)
* feat: login with otp

* fix(i18n): japanese translation

* add missing files

* fix provider change

* add event types translations to en

* add tests

* resourceOwner

* remove unused handler

* fix: secret generators and add comments

* add setup step

* rename

* linting

* fix setup

* improve otp handling

* fix autocomplete

* translations for login and notifications

* translations for event types

* fix: mfa prompt styles

* fix merge

* fix merge

* fix html

* rm unused files

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-08-15 14:05:00 +00:00
Livio Spring
7c494fd219
feat(login): add OTP (email and sms) (#6353)
* feat: login with otp

* fix(i18n): japanese translation

* add missing files

* fix provider change

* add event types translations to en

* add tests

* resourceOwner

* remove unused handler

* fix: secret generators and add comments

* add setup step

* rename

* linting

* fix setup

* improve otp handling

* fix autocomplete

* translations for login and notifications

* translations for event types

* changes from review

* check selected mfa type
2023-08-15 12:47:05 +00:00
Alan Hughes
faa9ed4de9
docs: fix external domain and external key env var names (#6367) 2023-08-15 11:53:26 +00:00
Tim Möhlmann
0017542aa2
feat(api/v2): implement TOTP session check (#6362)
* feat(api/v2): implement TOTP session check

* add integration test

* correct typo in projection test

* fix event type typos

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-08-15 09:50:42 +00:00
Florian Forster
8953353210
chore: initial version of a devcontainer (#6352)
* chore: initial version of a devcontainer

* test

* add make
2023-08-15 10:49:05 +02:00
Tim Möhlmann
cc4499ec2d
fix(make): add buf command to core_grpc_dependencies (#6319) 2023-08-14 21:16:20 +03:00
Fabian Haenel
c5c773531c
fix: Improve and sync checkSSL functions for CockroachDB and PostgreSQL (#6271)
* Improve and sync checkSSL functions for cockroach and postgres

* Add missing prefer mode

* Fix missing return in postgres checkSSL on disable
2023-08-14 13:51:33 +00:00
Ahmed Fwela
133789fee9
feat: get multiple users by id (#6210)
* feat: introduce InTextQuery, and the ability to get multiple users by id

* added in query tests

* remove append call

* fix lints
2023-08-12 15:37:42 +02:00
mffap
faf547f090
docs(guide): cloudflare zero trust (#6345) 2023-08-12 12:29:37 +00:00
Max Peintner
88751681d8
docs: cleanup deps (#6313)
* docs(search): add getMissingResultsUrl

* deps

* deps

* downgrade docusaurus again to 2.2.0

* fix angualar, nextjs guides

* Update docs/docusaurus.config.js

Co-authored-by: Florian Forster <florian@zitadel.com>

---------

Co-authored-by: mffap <mpa@zitadel.com>
Co-authored-by: Florian Forster <florian@zitadel.com>
2023-08-12 08:58:44 +00:00
Tim Möhlmann
86af67d1be
feat(api/v2): implement U2F session check (#6339) 2023-08-11 15:36:18 +00:00
Stefan Benz
4e0c3115fe
chore: delete ignore paths to run required jobs (#6356)
Co-authored-by: Florian Forster <florian@zitadel.com>
2023-08-11 14:46:28 +00:00
Livio Spring
372755bddd
feat(api): add organisation service (#6340)
* setup org with multiple admins

* tests

* add missing proto

* remove machine users (for now)

* update tests with idp case

* fix package

* organisation -> organization

* fix test
2023-08-11 14:19:14 +00:00
Stefan Benz
77e561af72
chore: add assets to releases (#6346)
* chore: change pipeline to add assets to the release
2023-08-11 14:49:28 +02:00
Miguel Cabrerizo
4123ab7ba7
fix: add Date header to email headers RFC822 (#6302) 2023-08-11 09:17:24 +00:00