Commit Graph

2813 Commits

Author SHA1 Message Date
Stefan Benz
50aacb8127
fix: add RollbackUnlessCommitted for gorm transactions (#7197)
(cherry picked from commit 3d3264eb8f)
2024-01-11 08:33:50 +01:00
Livio Spring
b63534c325
fix(idp): provide id_token for tenant id based azure ad (#7188)
* fix(idp): provide id_token for tenant based azure ad

* comments

* remove unintentional changes

(cherry picked from commit 7c592ce638)
2024-01-11 08:33:50 +01:00
Silvan
a31191d9e2
fix(auth): efficient user session projection (#7187)
* fix(auth): cache users during session projection

* fix(auth.user_sessions): add index for more efficient by user search

(cherry picked from commit 43f1d59649)
2024-01-11 08:33:49 +01:00
Tim Möhlmann
cba99da3b2 fix(query): separate login policy queries (#7174)
This change moves IDPLoginPolicyLinks out of the scan function Login Policy queries in order to prevent potential deadlocks.
2024-01-08 22:15:04 +01:00
Silvan
925eb2f2f9 fix(login): correct rendering of idps (#7151) 2024-01-05 15:58:26 +01:00
Silvan
183e662c91 fix(handler): updated failed events (#7146) 2024-01-05 10:01:38 +01:00
Silvan
617708e0e5 fix(db): always use begin tx (#7142)
* fix(db): always use begin tx

* fix(handler): timeout for begin
2024-01-04 17:48:45 +01:00
Livio Spring
e6b87b622e fix: correctly respect maxFailureCount (#7143) 2024-01-04 17:48:39 +01:00
adlerhurst
5cbf34334f Merge branch 'next-rc' into next 2024-01-02 17:27:13 +01:00
adlerhurst
76c84d385c Merge branch 'main' into next-rc 2024-01-02 16:28:37 +01:00
Silvan
8bc56f6fe7
fix(query): escape wildcards in text search (#7131) (#7135)
* fix(query): escape like wildcards

* test: search query wildcards

* add do nothing
2024-01-02 16:27:36 +01:00
Silvan
9892fd92b6
refactor: cleanup unused code (#7130)
* refactor: drop unused code

* refactor: drop unused code
2024-01-02 14:26:31 +00:00
Silvan
4e3936b5bf
ci: publish sha to docker registry (#7127) 2024-01-02 14:03:23 +00:00
Silvan
a8b8c89f73
perf(query): increase speed of user queries (#7126) (#7128)
* perf(query): increase speed of user queries
2024-01-02 14:41:46 +01:00
Silvan
cc2dd8b20b
fix(eventstore): increase performance on push (#7125) 2023-12-31 15:30:25 +01:00
Silvan
6d3ce8d5ab
fix(projection): correct type cast of user grant reactivated (#7123)
* fix(projection): correct type cast of user grant reactivated

* test: correct mapper
2023-12-31 14:03:23 +01:00
Tim Möhlmann
45ccdcfa99
fix(oidc): nil check for client secret (#7115)
This fixes a nil pointer panic when client basic auth is attempted on a client without secret in introspection.
2023-12-28 13:31:41 +00:00
Yordis Prieto
9d5d1cf3ea
feat: allow glob redirects (#7091)
fixes #5110
2023-12-28 11:25:18 +02:00
Tim Möhlmann
3483ec470d
fix(oidc): ignore unknown language tag in userinfo unmarshal (#7108)
This change upgrades oidc to include the fix into zitadel.
2023-12-22 12:52:01 +00:00
Tim Möhlmann
5399c0b0cb
fix(oidc): refresh token for device authorization (#7104)
fix(oidc); refresh token for device authorization

Due to a mis-alignment of OIDC interface and concrete implementations in zitadel, requesting a refresh token for device authorization would fail.
This change adds the possibility to to use the op.IDTokenRequest directly.
Also, the UserAgentID is dropped as required parameter, as devices do not have a user agent.

(cherry picked from commit 85eb2eda0b)
2023-12-21 15:03:00 +01:00
Tim Möhlmann
85eb2eda0b
fix(oidc): refresh token for device authorization (#7104)
fix(oidc); refresh token for device authorization

Due to a mis-alignment of OIDC interface and concrete implementations in zitadel, requesting a refresh token for device authorization would fail.
This change adds the possibility to to use the op.IDTokenRequest directly.
Also, the UserAgentID is dropped as required parameter, as devices do not have a user agent.
2023-12-21 13:57:33 +00:00
Silvan
4d92869333
fix(handler): allow uint32 offset for migration scenarios (#7103)
(cherry picked from commit 5ce542b959)
2023-12-21 11:48:42 +01:00
Silvan
5ce542b959
fix(handler): allow uint32 offset for migration scenarios (#7103) 2023-12-21 10:40:51 +00:00
mffap
ab2c3f7752
docs(examples): update examples (#7014)
Co-authored-by: Fabi <fabienne@zitadel.com>
2023-12-21 10:01:11 +00:00
Livio Spring
48addb2464
Merge branch 'main' into next-rc 2023-12-21 10:05:47 +01:00
Stefan Benz
a0a82b59e1
feat: user service v2 create, update and remove (#6996)
* feat: user service v2 remove user

* feat: user service v2 add user human

* feat: user service v2 change user human

* feat: user service v2 change user human unit tests

* feat: user service v2 reactivate, deactivate, lock, unlock user

* feat: user service v2 integration tests

* fix: merge back origin/main

* lint: linter corrections

* fix: move permission check for isVerfied and password change

* fix: add deprecated notices and other review comments

* fix: consistent naming in proto

* fix: errors package renaming

* fix: remove / delete user renaming in integration test

* fix: machine user status changes through user v2 api

* fix: linting changes

* fix: linting changes

* fix: changes from review

* fix: changes from review

* fix: changes from review

* fix: changes from review

* fix: changes from review

---------

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-12-21 10:03:37 +01:00
Livio Spring
acb604c045
docs: fix link to enterprise features 2023-12-21 07:47:06 +01:00
Livio Spring
2bec17cf3f
Merge branch 'main' into next-rc 2023-12-21 07:25:21 +01:00
Tim Möhlmann
911071a4b5
fix(db): add additional connection pool for projection spooling (#7094)
* fix(db): add additional connection pool for projection spooling

* use correct connection pool for projections

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>

(cherry picked from commit fe1337536f)
2023-12-20 19:39:10 +01:00
Livio Spring
9e44f993df
fix(projections): handle every instance by default and randomize start (#7093)
(cherry picked from commit edaa41903e)
2023-12-20 19:31:25 +01:00
Tim Möhlmann
fe1337536f
fix(db): add additional connection pool for projection spooling (#7094)
* fix(db): add additional connection pool for projection spooling

* use correct connection pool for projections

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-12-20 16:13:04 +00:00
Livio Spring
f4e73b9b75
docs: update go api client guide (#7099)
* docs: update go api client guide

* update branch reference
2023-12-20 15:56:48 +00:00
Tim Möhlmann
e22689c125
feat(oidc): id token for device authorization (#7088)
* cleanup todo

* pass id token details to oidc

* feat(oidc): id token for device authorization

This changes updates to the newest oidc version,
so the Device Authorization grant can return ID tokens when
the scope `openid` is set.
There is also some refactoring done, so that the eventstore can be
queried directly when polling for state.
The projection is cleaned up to a minimum with only data required for the login UI.

* try to be explicit wit hthe timezone to fix github

* pin oidc v3.8.0

* remove TBD entry
2023-12-20 13:21:08 +01:00
mcrodriguezb
e15f6229cd
fix: Update payload for Get Provider Information (#7086)
Update payload for Get Provider Information

Payload was set to token when it should be idpIntentToken

Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-12-20 08:33:59 +00:00
Livio Spring
7dc8c19f39
docs: add go authentication example (#7034)
* docs: add go authentication example

* update sdks and example overview

* update branch name
2023-12-19 12:22:32 +00:00
Livio Spring
edaa41903e
fix(projections): handle every instance by default and randomize start (#7093) 2023-12-19 13:32:08 +02:00
Elio Bischof
c3e6257d68
fix: keep user idp links (#7079)
* login

* auth methods

* NewIDPUserLinksActiveQuery

* use has_login_policy projection

* fix unit tests

* docs

* keep old user links projection

* fix tests

* cleanup

* cleanup comments

* test idp links are not removed

* idempotent auth method test

* idempotent auth method test
2023-12-19 10:25:50 +00:00
Fabi
2c4e7070ea
docs: correct env var docs (#7082)
Co-authored-by: Elio Bischof <elio@zitadel.com>
2023-12-18 10:54:43 +00:00
Tim Möhlmann
1adfca9d28
fix(crypto): allow parsing of cost int from env string (#7061)
fic(crypto): allow parsing of cost int from env string
2023-12-15 11:16:05 +00:00
Miguel Cabrerizo
dae1911d43
docs(linux): fix download and unpack release bash snippet (#7076)
Co-authored-by: Stefan Benz <46600784+stebenz@users.noreply.github.com>
2023-12-14 19:07:39 +01:00
Livio Spring
7015d347e1
fix(query): user performance (#7081)
* fix(query): user performance (#6537)

* start user by id

* ignore debug bin

* use new user by id

* new sql

* fix(sql): replace STRING with text for psql compatabilit

* some changes

* fix: correct user queries

* fix tests

* unify sql statements

* use specific get user methods

* search login name case insensitive

* refactor: optimise user statements

* add index

* fix queries

* fix: correct domain segregation

* return all login names

* fix queries

* improve readability

* query should be correct now

* cleanup statements

* fix username / loginname handling

* fix: psql doesn't support create view if not exists

* fix: create pre-release

* ignore release comments

* add lower fields

* fix: always to lower

* update to latest projection

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>

(cherry picked from commit ddbea119f1)

* update projection versions

* trigger workflow

---------

Co-authored-by: Silvan <silvan.reusser@gmail.com>
2023-12-14 11:17:35 +00:00
Livio Spring
e748a34586
fix: reduce eventual consistency (#7080)
* create prerelease

* fix: reduce eventual consistency

* fix tests

* fix linting

* remove wrongly committed test

* remove prerelease
2023-12-14 11:29:41 +01:00
Livio Spring
19d9b8ad41
fix: reduce eventual consistency (#7075)
* fix: reduce eventual consistency

* fix tests

* fix linting
2023-12-14 11:07:47 +01:00
Fabi
51ebf7da8d
fix: add example action to autofill userdata on okta (#7060)
Co-authored-by: Silvan <silvan.reusser@gmail.com>
2023-12-13 13:22:35 +01:00
Stefan Benz
102f436c2e
fix: upgrade saml to v0.1.3 (#7072) 2023-12-13 10:43:02 +00:00
Fabi
e005ed5114
docs: disable mfa prompt (#7063)
* docs: disable mfa prompt

* Update docs/docs/guides/solution-scenarios/configurations.mdx

Co-authored-by: Florian Forster <florian@zitadel.com>

---------

Co-authored-by: Florian Forster <florian@zitadel.com>
2023-12-12 09:58:35 +01:00
Hoang Nghia Anh (Appsec)
0e4a62b66f
docs: Update managers.mdx (#7053)
Update managers.mdx

Fix small syntax

Co-authored-by: Fabi <fabienne@zitadel.com>
2023-12-11 15:38:57 +01:00
Livio Spring
831bb88ec4
fix: correctly delete sessions created before 2.42 (#7050)
* fix: correctly delete sessions created before 2.42

* fix test

* fix linting

* fixes requested from review
2023-12-09 08:59:51 +00:00
Livio Spring
aa3c352ae7
fix: update external username on idp if auto update is enabled (#7048)
* fix: update external username on idp if auto update is enabled

* update errors package
2023-12-08 18:22:07 +01:00
Tim Möhlmann
f680dd934d
refactor: rename package errors to zerrors (#7039)
* chore: rename package errors to zerrors

* rename package errors to gerrors

* fix error related linting issues

* fix zitadel error assertion

* fix gosimple linting issues

* fix deprecated linting issues

* resolve gci linting issues

* fix import structure

---------

Co-authored-by: Elio Bischof <elio@zitadel.com>
2023-12-08 15:30:55 +01:00