TheArchive/zitadel
1
0
Fork 0
mirror of https://github.com/zitadel/zitadel.git synced 2025-12-09 22:12:53 +00:00
Code Issues Packages Projects Releases Wiki Activity
2,709 Commits 288 Branches 2,106 Tags
5ae29c077ff1bcb36456114b8de1d91312a7e0e4
Commit Graph

296 Commits

Author SHA1 Message Date
Tim Möhlmann
5ae29c077f bring triggers back 2023-11-15 17:15:47 +02:00
Tim Möhlmann
3584833021 add user_grants to the userinfo query 2023-11-15 14:49:20 +02:00
Tim Möhlmann
ec65673e41 query introspection client test 2023-11-14 22:18:14 +02:00
Tim Möhlmann
c7d571889c query userinfo unit test 2023-11-14 17:23:06 +02:00
Tim Möhlmann
9cbd0ede9d drop owner_removed column on useer_metadata 2023-11-14 15:00:57 +02:00
Tim Möhlmann
22204260f1 drop owner_removed column on user projections 2023-11-14 14:51:55 +02:00
Tim Möhlmann
3294ba4c4b some cleanup 2023-11-13 19:20:01 +02:00
Tim Möhlmann
c4cf569164 Merge branch 'main' into perf-introspecion 2023-11-13 18:16:32 +02:00
Tim Möhlmann
8eea5eccd1 get oidc user info from projections and add actions 2023-11-13 18:13:34 +02:00
Ahmed Fwela
3f22fb3a5c feat(user/v1): support composite queries (#6361) 
* feat(user/v1): support composite queries

* fix: added proper error handling for NotQuery

* Added error when there are too many levels of nesting

* Add localization keys for english

* Update internal/api/grpc/user/query.go
 2023-11-09 11:38:34 +01:00
Livio Spring
22e2d55999 Merge pull request from GHSA-7h8m-vrxx-vr4m 
* fix: handle locking policy correctly for multiple simultaneous password checks

* recheck events
 2023-11-08 14:19:13 +01:00
sp132
9a708b1b78 feat: extend session search service (#6746) 
* feat: extend session search service (#6029)

add two more searching criteria - human user id and session creation date

optional sorting by the session creation date

* fix: use correct column identifier

* fix: implement Col()

* chore: fix unit tests

* chore: fix linter warnings

---------

Co-authored-by: Fabi <fabienne@zitadel.com>
 2023-11-08 11:32:13 +01:00
Tim Möhlmann
b3ff359fc1 fix(system-api): use distinct in intances filter query (#6867) 2023-11-07 06:12:16 +00:00
Tim Möhlmann
d69b9999a1 userinfo and project roles in go routines 2023-11-06 20:27:25 +02:00
Tim Möhlmann
c0c86d90c9 drop owner_removed column on apps and authN tables 2023-11-06 15:55:26 +02:00
Livio Spring
f3b8a3aece feat: add possibility to set an expiration to a session (#6851) 
* add lifetime to session api

* extend session with lifetime

* check session token expiration

* fix typo

* integration test to check session token expiration

* integration test to check session token expiration

* i18n

* cleanup

* improve tests

* prevent negative lifetime

* fix error message

* fix lifetime check
 2023-11-06 10:48:28 +01:00
Tim Möhlmann
96a53aa130 logging and otel 2023-11-05 17:26:30 +02:00
Tim Möhlmann
66f91cdc4e client and project in single query 2023-11-05 13:18:17 +02:00
Elio Bischof
1b6e3dcf27 fix: creation date argument in search events filters (#6855) 
* fix: creation date filter in event queries

* fix: creation date with ordering filter

* simplify code

* simplify review

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
 2023-11-03 14:52:48 +00:00
Tim Möhlmann
b816b6f29d improve keyset caching 2023-11-02 18:55:48 +02:00
Tim Möhlmann
9f7f715259 userinfo from events for v2 tokens 2023-11-02 17:27:30 +02:00
Stefan Benz
f84eb19637 fix: change error message from metadata query User.NotFound to Metada… (#6830) 
fix: change error message from metadata query User.NotFound to Metadata.NotFound

Co-authored-by: Livio Spring <livio.a@gmail.com>
 2023-11-02 08:35:15 +00:00
Tim Möhlmann
85e22c1521 get key by id and cache them 2023-11-01 15:59:23 +02:00
Silvan
0187487f26 chore: correct tracing of trigger function (#6825) 
* chore: correct tracing of trigger function

* refactor: remove import
 2023-10-26 17:07:56 +02:00
Stefan Benz
cb7b50b513 feat: add attribute to only enable specific themes (#6798) 
* feat: enable only specific themes in label policy

* feat: enable only specific themes in label policy

* feat: enable only specific themes in label policy

* feat: enable only specific themes in label policy

* add management in console

* pass enabledTheme

* render login ui based on enabled theme

* add in branding / settings service and name consistently

* update console to latest proto state

* fix console linting

* fix linting

* cleanup

* add translations

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
 2023-10-26 05:54:09 +00:00
Tim Möhlmann
ad26ca88d7 feat(system api): list instances by domains (#6806) 
Allow to list instances by their domains on the system API.

closes #6785
 2023-10-25 19:20:12 +00:00
Elio Bischof
385a55bd21 feat: limit audit trail (#6744) 
* feat: enable limiting audit trail

* support AddExclusiveQuery

* fix invalid condition

* register event mappers

* fix NullDuration validity

* test query side for limits

* lint

* acceptance test audit trail limit

* fix acceptance test

* translate limits not found

* update tests

* fix linting

* add audit log retention to default instance

* fix tests

* update docs

* remove todo

* improve test name
 2023-10-25 11:42:00 +00:00
adlerhurst
bd23a7a56f merge main into next 2023-10-19 12:34:00 +02:00
Silvan
b5564572bc feat(eventstore): increase parallel write capabilities (#5940) 
This implementation increases parallel write capabilities of the eventstore.
Please have a look at the technical advisories: [05](https://zitadel.com/docs/support/advisory/a10005) and  [06](https://zitadel.com/docs/support/advisory/a10006).
The implementation of eventstore.push is rewritten and stored events are migrated to a new table `eventstore.events2`.
If you are using cockroach: make sure that the database user of ZITADEL has `VIEWACTIVITY` grant. This is used to query events.
 2023-10-19 12:19:10 +02:00
Stefan Benz
15fd3045e0 feat: add SAML as identity provider (#6454) 
* feat: first implementation for saml sp

* fix: add command side instance and org for saml provider

* fix: add query side instance and org for saml provider

* fix: request handling in event and retrieval of finished intent

* fix: add review changes and integration tests

* fix: add integration tests for saml idp

* fix: correct unit tests with review changes

* fix: add saml session unit test

* fix: add saml session unit test

* fix: add saml session unit test

* fix: changes from review

* fix: changes from review

* fix: proto build error

* fix: proto build error

* fix: proto build error

* fix: proto require metadata oneof

* fix: login with saml provider

* fix: integration test for saml assertion

* lint client.go

* fix json tag

* fix: linting

* fix import

* fix: linting

* fix saml idp query

* fix: linting

* lint: try all issues

* revert linting config

* fix: add regenerate endpoints

* fix: translations

* fix mk.yaml

* ignore acs path for user agent cookie

* fix: add AuthFromProvider test for saml

* fix: integration test for saml retrieve information

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
 2023-09-29 11:26:14 +02:00
Elio Bischof
ae1af6bc8c fix: set quotas (#6597) 
* feat: set quotas

* fix: start new period on younger anchor

* cleanup e2e config

* fix set notifications

* lint

* test: fix quota projection tests

* fix add quota tests

* make quota fields nullable

* enable amount 0

* fix initial setup

* create a prerelease

* avoid success comments

* fix quota projection primary key

* Revert "fix quota projection primary key"

This reverts commit e72f4d7fa1.

* simplify write model

* fix aggregate id

* avoid push without changes

* test set quota lifecycle

* test set quota mutations

* fix quota unit test

* fix: quotas

* test quota.set event projection

* use SetQuota in integration tests

* fix: release quotas 3

* reset releaserc

* fix comment

* test notification order doesn't matter

* test notification order doesn't matter

* test with unmarshalled events

* test with unmarshalled events
 2023-09-22 09:37:16 +00:00
Elio Bischof
1a49b7d298 perf: project quotas and usages (#6441) 
* project quota added

* project quota removed

* add periods table

* make log record generic

* accumulate usage

* query usage

* count action run seconds

* fix filter in ReportQuotaUsage

* fix existing tests

* fix logstore tests

* fix typo

* fix: add quota unit tests command side

* fix: add quota unit tests command side

* fix: add quota unit tests command side

* move notifications into debouncer and improve limit querying

* cleanup

* comment

* fix: add quota unit tests command side

* fix remaining quota usage query

* implement InmemLogStorage

* cleanup and linting

* improve test

* fix: add quota unit tests command side

* fix: add quota unit tests command side

* fix: add quota unit tests command side

* fix: add quota unit tests command side

* action notifications and fixes for notifications query

* revert console prefix

* fix: add quota unit tests command side

* fix: add quota integration tests

* improve accountable requests

* improve accountable requests

* fix: add quota integration tests

* fix: add quota integration tests

* fix: add quota integration tests

* comment

* remove ability to store logs in db and other changes requested from review

* changes requested from review

* changes requested from review

* Update internal/api/http/middleware/access_interceptor.go

Co-authored-by: Silvan <silvan.reusser@gmail.com>

* tests: fix quotas integration tests

* improve incrementUsageStatement

* linting

* fix: delete e2e tests as intergation tests cover functionality

* Update internal/api/http/middleware/access_interceptor.go

Co-authored-by: Silvan <silvan.reusser@gmail.com>

* backup

* fix conflict

* create rc

* create prerelease

* remove issue release labeling

* fix tracing

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Stefan Benz <stefan@caos.ch>
Co-authored-by: adlerhurst <silvan.reusser@gmail.com>
 2023-09-15 16:58:45 +02:00
Livio Spring
62d679e553 fix: handle password data correct on user creation (#6515) 2023-09-07 14:06:11 +00:00
Miguel Cabrerizo
dd80109969 feat: delete organizations (#6083) 
* feat: delete organizations

* feat: tests and delete all that depends on org

* fix: grpc delete description

* fix: get back reduce OrgRemovedEvent

* fix: add @muhlemmer review suggestions

* fix: new e2e for add/delete org
 2023-09-07 04:54:51 +00:00
Livio Spring
e17b49e4ca feat: add apple as idp (#6442) 
* feat: manage apple idp

* handle apple idp callback

* add tests for provider

* basic console implementation

* implement flow for login UI and add logos / styling

* tests

* cleanup

* add upload button

* begin i18n

* apple logo positioning, file upload component

* fix add apple instance idp

* add missing apple logos for login

* update to go 1.21

* fix slice compare

* revert permission changes

* concrete error messages

* translate login apple logo -y-2px

* change form parsing

* sign in button

* fix tests

* lint console

---------

Co-authored-by: peintnermax <max@caos.ch>
 2023-08-31 08:39:16 +02:00
Miguel Cabrerizo
fd00ac533a feat: add reply-to header in email notification (#6393) 
* feat: add reply-to header to smtp messages

* fix: grpc reply_to_address min 0 and js var name

* fix: add missing translations

* fix merge and linting

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
 2023-08-29 09:08:24 +02:00
Livio Spring
bb40e173bd feat(api): add otp (sms and email) checks in session api (#6422) 
* feat: add otp (sms and email) checks in session api

* implement sending

* fix tests

* add tests

* add integration tests

* fix merge main and add tests

* put default OTP Email url into config

---------

Co-authored-by: Stefan Benz <46600784+stebenz@users.noreply.github.com>
 2023-08-24 09:41:52 +00:00
Silvan
99e1c654a3 feat(storage): read only transactions for queries (#6415) 
* fix: tests

* bastle wie en grosse

* fix(database): scan as callback

* fix tests

* fix merge failures

* remove as of system time

* refactor: remove unused test

* refacotr: remove unused lines
 2023-08-22 10:49:22 +00:00
Livio Spring
8b44794c75 fix: delete SMTP correctly (#6391) 2023-08-18 14:22:57 +02:00
Livio Spring
7c494fd219 feat(login): add OTP (email and sms) (#6353) 
* feat: login with otp

* fix(i18n): japanese translation

* add missing files

* fix provider change

* add event types translations to en

* add tests

* resourceOwner

* remove unused handler

* fix: secret generators and add comments

* add setup step

* rename

* linting

* fix setup

* improve otp handling

* fix autocomplete

* translations for login and notifications

* translations for event types

* changes from review

* check selected mfa type
 2023-08-15 12:47:05 +00:00
Tim Möhlmann
0017542aa2 feat(api/v2): implement TOTP session check (#6362) 
* feat(api/v2): implement TOTP session check

* add integration test

* correct typo in projection test

* fix event type typos

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
 2023-08-15 09:50:42 +00:00
Ahmed Fwela
133789fee9 feat: get multiple users by id (#6210) 
* feat: introduce InTextQuery, and the ability to get multiple users by id

* added in query tests

* remove append call

* fix lints
 2023-08-12 15:37:42 +02:00
Tim Möhlmann
86af67d1be feat(api/v2): implement U2F session check (#6339) 2023-08-11 15:36:18 +00:00
Elio Bischof
343a9428b3 feat: SMS and email OTP texts (#6281) 
* manage 2 custom texts proto

* implement methods

* default texts

* console

* improve translations

* lint

* test: fix e2e timeout

* fix translations

* add missing console translations

* remove unused text parts

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
 2023-08-09 05:49:12 +00:00
Livio Spring
45262e6829 fix: migrate external id of federated users (#6312) 
* feat: migrate external id

* implement tests and some renaming

* fix projection

* cleanup

* i18n

* fix event type

* handle migration for new services as well

* typo
 2023-08-04 11:35:36 +02:00
Livio Spring
a1942ecdaa feat(api): add and remove OTP (SMS and email) (#6295) 
* refactor: rename otp to totp

* feat: add otp sms and email

* implement tests
 2023-08-02 18:57:53 +02:00
Livio Spring
789dcd8615 fix: password hash update and add missing i18n (#6285) 2023-07-28 09:09:15 +02:00
Elio Bischof
31ec1d83b9 feat: enable otp email and sms (#6260) 
* feat: enable otp email and sms

* feat: enable otp factors in login settings

* remove tests without value

* translate second factors

* don't add new factors yet

* add comment

* add factors to docs

* backward compatible settings api

* compile tests

* add available 2fa types

* test: add mapping tests

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
 2023-07-28 07:39:30 +02:00
Livio Spring
cd5e176e30 fix: user grant by id (#6242) 2023-07-21 11:04:55 +00:00
Livio Spring
fed15574f6 feat: allow to force MFA local only (#6234) 
This PR adds an option to the LoginPolicy to "Force MFA for local users", so that users authenticated through an IDP must not configure (and verify) an MFA.
 2023-07-20 04:06:16 +00:00