Commit Graph

583 Commits

Author SHA1 Message Date
Elio Bischof
76fe032b5f
feat: option to disallow public org registration (#6917)
* feat: return 404 or 409 if org reg disallowed

* fix: system limit permissions

* feat: add iam limits api

* feat: disallow public org registrations on default instance

* add integration test

* test: integration

* fix test

* docs: describe public org registrations

* avoid updating docs deps

* fix system limits integration test

* silence integration tests

* fix linting

* ignore strange linter complaints

* review

* improve reset properties naming

* redefine the api

* use restrictions aggregate

* test query

* simplify and test projection

* test commands

* fix unit tests

* move integration test

* support restrictions on default instance

* also test GetRestrictions

* self review

* lint

* abstract away resource owner

* fix tests

* lint
2023-11-22 09:29:38 +00:00
Stefan Benz
0ec7a74877
perf: remove owner removed columns from projections for oidc (#6925)
* fix: remove owner removed columns from login names projection

* fix: remove owner removed columns from flow projection

* fix: remove owner removed columns from project, projectgrant and member projections

* fix: correct unit tests for session projection

* fix: correct unit tests for session projection
2023-11-20 17:21:08 +02:00
Arslan Gait
3bed5f50a8
docs: correct spelling in claims.md (#6935)
Update claims.md

Fixed typo in word 'and'
2023-11-20 12:38:06 +00:00
mffap
bd5506494a
docs(legal): update legal framework and policies (November 2023) (#6611)
* move policies

* service description editorial

* service description move

* add subprocessors

* resort policies and service descriptions

* subprocessor

* subprocessors wip

* wip

* subprocessors

* subprocessors introduction

* billing wip

* service level headings

* billing wip

* gdpr region clarification

* fix some styling

* support service wip

* wip

* service-description

* fair use, broken links

* services offered

* rework enterprise benefits

* support plans

* remove language, add support issue

* combine onboarding support

* wip

* use of brand and trademarks

* sidebar

* DASU

* Combine ToS for support services

* Apply suggestions from code review

Co-authored-by: Fabi <fabienne@zitadel.com>

* changes from review

* update updatedAt

* dpa and pp updates WIP

* broken links

* tom

* remote entity

* title annex enterprise agreement

* typo

* Apply suggestions from code review

Co-authored-by: Florian Forster <florian@zitadel.com>

* update last update dates

* replace quota with amount

---------

Co-authored-by: Fabi <fabienne@zitadel.com>
Co-authored-by: Florian Forster <florian@zitadel.com>
2023-11-16 09:26:25 +00:00
Elio Bischof
e0a5f8661d
feat: improve UX for external configuration (#6861)
* docs: simplify traefik external tls

* remove pass host header

* docs: simplify and fix nginx external tls

* fix: readiness with enabled tls

* improve proxy docs

* improve proxy docs

* fix(ready): don't verify server cert

* complete nginx docs

* cleanup

* complete traefik docs

* add caddy docs

* simplify traefik

* standardize

* fix caddy

* add httpd docs

* improve external config docs

* guiding error message

* docs(defaults.yaml): remove misleading comments

* guiding error message cs and ru

* improve proxy testability

* fix compose up command

* improve commands

* fix nginx tls disabled

* fix nginx tls enabled

* fix: serve gateway when tls is enabled

* fmt caddy files

* fix caddy enabled tls

* remove not-working commands

* review

* fix checks

* fix link

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-11-09 11:30:15 +01:00
Mark A. Hershberger
0d3788b757
docs: Update managers.mdx (#6873)
Update managers.mdx

typo

Co-authored-by: Fabi <fabienne@zitadel.com>
2023-11-08 09:07:11 +00:00
Alexei
9ccdfdc196
feat: Add translations for Russian (#6864)
* wip

* add Russian (autotranslate)
TODO: review translations

* fix console linting

* add russian language to login translations

* docs

* missing console translations

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-11-08 07:38:55 +00:00
petrmifek
e839f03f57
feat(i18n): Czech language support (#6870)
feat(i18n): Add Czech language support
2023-11-08 07:55:41 +01:00
Livio Spring
585c8af5f2
docs(technical advisory): add version to console branding (#6852) 2023-11-02 16:18:14 +01:00
mffap
61d86343a0
docs(ta): add type expected downtime during update (#6818)
Co-authored-by: Silvan <silvan.reusser@gmail.com>
2023-10-26 15:10:34 +02:00
mffap
b9061ffadc
docs(guides): update development mode for console guide (#6799)
* docs(guide): development mode

* finished

---------

Co-authored-by: Fabi <fabienne@zitadel.com>
Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
2023-10-25 18:15:42 +00:00
Elio Bischof
4980cd6a0c
feat: add SYSTEM_OWNER role (#6765)
* define roles and permissions

* support system user memberships

* don't limit system users

* cleanup permissions

* restrict memberships to aggregates

* default to SYSTEM_OWNER

* update unit tests

* test: system user token test (#6778)

* update unit tests

* refactor: make authz testable

* move session constants

* cleanup

* comment

* comment

* decode member type string to enum (#6780)

* decode member type string to enum

* handle all membership types

* decode enums where necessary

* decode member type in steps config

* update system api docs

* add technical advisory

* tweak docs a bit

* comment in comment

* lint

* extract token from Bearer header prefix

* review changes

* fix tests

* fix: add fix for activityhandler

* add isSystemUser

* remove IsSystemUser from activity info

* fix: add fix for activityhandler

---------

Co-authored-by: Stefan Benz <stefan@caos.ch>
2023-10-25 15:10:45 +00:00
Silvan
c8b9b0ac75
docs: replace fix cockroachdb version with latest stable (#6803) 2023-10-25 14:20:55 +00:00
Elio Bischof
385a55bd21
feat: limit audit trail (#6744)
* feat: enable limiting audit trail

* support AddExclusiveQuery

* fix invalid condition

* register event mappers

* fix NullDuration validity

* test query side for limits

* lint

* acceptance test audit trail limit

* fix acceptance test

* translate limits not found

* update tests

* fix linting

* add audit log retention to default instance

* fix tests

* update docs

* remove todo

* improve test name
2023-10-25 11:42:00 +00:00
Silvan
459761d99a
docs: correct title of tech advisory 06 (#6759) 2023-10-19 14:55:09 +00:00
Silvan
3a01558c61
docs: add technical advisory 06 (#6756) 2023-10-19 15:13:50 +02:00
cpli
5a9609ef29
feat(actions): add "zitadel/uuid" module (#6135)
* feat: add "zitadel/uuid" module

* feat(actions/uuid): add v1, v3, and v4 UUIDs

* add namespaces and improve hash based functions

* add docs

---------

Co-authored-by: Florian Forster <florian@zitadel.com>
Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-10-13 09:31:23 +02:00
mffap
53034a5fb1
docs(legal): onboarding support services (#6665)
* docs(legal): onboarding support services

* remove trainings, outline

* wip

* finish

* call to action

* Apply suggestions from code review

Co-authored-by: Florian Forster <florian@zitadel.com>

---------

Co-authored-by: Florian Forster <florian@zitadel.com>
2023-10-12 13:08:38 +00:00
Austin Turner
dad1b4db7f
docs: fix typo in saas.md (#6692)
* Fix typos in saas docs

Fix typo and remove gender specific pronoun

* Fixed grammar error

---------

Co-authored-by: Fabi <fabienne@zitadel.com>
Co-authored-by: Elio Bischof <elio@zitadel.com>
2023-10-11 15:05:20 +02:00
Silvan
2fba12d5c2
docs: add technical advisories for eventstore (#6702)
* docs: add technical advisories for eventstore

---------

Co-authored-by: Florian Forster <florian@zitadel.com>
2023-10-11 09:13:11 +00:00
Livio Spring
f2d1cd2045
docs(technical advisory): add login ui default context (#6695)
* docs(technical advisory): add login ui default context

* Update docs/docs/support/advisory/a10003.md

Co-authored-by: Fabi <fabienne@zitadel.com>

---------

Co-authored-by: Fabi <fabienne@zitadel.com>
2023-10-11 08:20:48 +02:00
Fabi
5bc71f7665
docs: keycloak idp (#6568)
* docs: keycloak idp

* Update docs/docs/guides/integrate/identity-providers/keycloak.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/integrate/identity-providers/keycloak.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/integrate/identity-providers/keycloak.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/integrate/identity-providers/keycloak.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/integrate/identity-providers/keycloak.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/integrate/identity-providers/keycloak.mdx

Co-authored-by: mffap <mpa@zitadel.com>

---------

Co-authored-by: mffap <mpa@zitadel.com>
2023-10-11 04:56:41 +00:00
Dakshitha Ratnayake
89fffd6bd6
docs:Added the keycloak migration guide with new tool (#6642)
* Added the keycloak migration guide.

* Update docs/docs/guides/migrate/sources/keycloak.md

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>

* Update docs/docs/guides/migrate/sources/keycloak.md

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>

* Update docs/docs/guides/migrate/sources/keycloak.md

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>

* Update docs/docs/guides/migrate/sources/keycloak.md

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>

* Addressed review comments

---------

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
2023-10-10 13:41:23 +03:00
Elio Bischof
377a885e79
docs: fix typos (#6688) 2023-10-09 15:31:16 +00:00
Miguel Cabrerizo
8c68f8ed3a
feat(console): only use one save button in SMTP Settings (#6561)
seperate smtp settings from notification providers
2023-10-09 11:14:17 +00:00
mffap
b30d8b3ff5
docs(integrate): argo cd (#6523)
* docs(integrate): argo cd

* update to latest
2023-10-09 09:35:55 +00:00
Max Peintner
d01f4d229f
fix(console): move org domains into settings page of the organization (#6612)
* fix: hide domains settings for unauthorized users

* refine sidenav object mapping

* move domains to settings

* change docs

* set anchor to list element

* remove canwrite check in ngif

---------

Co-authored-by: Miguel A. C <doncicuto@gmail.com>
2023-09-29 09:31:35 +02:00
mffap
e4af360d39
docs(legal): move feature development policy (#6354)
* docs(legal): move feature development policy

* initial policy

* fix links

* Apply suggestions from code review
2023-09-27 09:27:31 +00:00
Dakshitha Ratnayake
cf24d709f2
docs: Added the device authorization example. (#6598)
* Added the device authorization example.

* Update docs/docs/guides/solution-scenarios/device-authorization.mdx

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>

* Update docs/docs/guides/solution-scenarios/device-authorization.mdx

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>

---------

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
2023-09-22 08:21:38 +05:30
Fabi
7edc73bd5e
fix: Domains problematic (#6564)
* docs: disable validate org domains per default, and have a better label

* docs: rename to $CUSTOM-DOMAIN

* docs: translation

* docs: tranlsations

* docs: tranlsations

* docs: allow domain discovery

---------

Co-authored-by: Max Peintner <max@caos.ch>
2023-09-20 12:45:11 +02:00
Dakshitha Ratnayake
599a1ddd78
docs:change titles (#6582)
* Modified quick start guide to reflect the new onboarding changes.

* Modified titles to optimize indexing. Left thet titles in title case for now.

* Added side bar labels and also made minor changes to titles.

* Update docs/docs/apis/openidoauth/endpoints.mdx

Co-authored-by: Fabi <fabienne@zitadel.com>

---------

Co-authored-by: Fabi <fabienne@zitadel.com>
2023-09-19 13:50:00 +02:00
mffap
bf9afdf2d7
docs(integrate): apache 2.0 (#6571)
* docs(integrate): apache 2.0

* finalize

* Apply suggestions from code review

Co-authored-by: Livio Spring <livio.a@gmail.com>

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-09-19 07:02:55 +02:00
Fabi
3465264eef
docs: Rename secret appereance to secret generator (#6519)
* docs: secret generator

* docs: secret generator naming

* docs: rename secret appeareance to secret generator

* docs: rename secret appeareance to secret generator

* Update console/src/assets/i18n/it.json

Co-authored-by: Max Peintner <max@caos.ch>

* Update console/src/assets/i18n/es.json

Co-authored-by: Max Peintner <max@caos.ch>

* Update console/src/assets/i18n/fr.json

Co-authored-by: Max Peintner <max@caos.ch>

---------

Co-authored-by: Max Peintner <max@caos.ch>
2023-09-18 10:57:52 +02:00
Stefan Benz
3183ba22d4
fix: update saml to v0.1.2 (#6570)
* fix: update saml to v0.1.2

* docs: add optional to RelayState for SAML API

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-09-18 05:59:57 +00:00
Dishan Sivakumaran
e5083b62a6
fix: apple idp configuration (#6575)
* docs(apple-idp): remove client id and secret from documentation, as it is not needed

* fix(apple-idp): fix reading of key file by using content type of file
2023-09-18 05:39:55 +00:00
mffap
776e777cb3
docs(integrate): Google Workspace SSO (#6517)
* docs(integrate): google workspace

* first part of the guide

* second part

* remove warnings, add troubleshoot

* typo

* IDP entity ID, typos, screenshot
2023-09-15 08:08:53 +00:00
Fabi
d4ab9fb926
docs: Generic okta idp (#6551)
* docs: OKTA idp

* docs: change generic oidc provider to okta

* docs: remove old generic docs
2023-09-14 08:18:03 +00:00
mffap
66075bf788
docs(integrate): add zoho, boldbi (#6553) 2023-09-14 09:57:26 +02:00
Fabi
5d2295aef4
docs: add apple IDP (#6544)
* docs: add apple IDP

* docs: change image
2023-09-13 14:52:57 +00:00
Livio Spring
be81570fb5
feat(api): move resource apis to beta (#6530)
Moves UserService, SessionService, SettingsService and OIDCService to beta state. This includes gRPC and HTTP path changes.
2023-09-13 12:43:01 +00:00
PurseChicken
841b21d9cd
docs: Fix userGrant object documentation. (#6525)
Fix userGrant documentation

Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-09-13 09:30:31 +00:00
Fabi
aca5de8e40
docs: add mfa login docs (u2f, totp, sms, email) (#6456)
* docs: add mfa login docs (u2f, totp)

* docs: add sms otp registration

* docs: add required in the proto docs

* docs: authenticate with sms code

* docs: authenticate with email code

* docs: fix email code part

* docs: add otp email/sms to self service

* docs: secret generator naming

* docs: fix docs

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-09-08 11:28:40 +00:00
Devaroop Bhattacharya
7f7a3e2ddd
docs: fix mention of localhost:3000 in docs (#6506)
fix mention of localhost:3000 in docs

Co-authored-by: mffap <mpa@zitadel.com>
2023-09-07 09:36:21 +00:00
Max Peintner
f7e7af0083
docs(quickstart): userinfo fetch (#6492) 2023-09-06 09:38:20 +00:00
Fabi
bcf99e9749
docs: add versions to technical advisory (#6494)
* docs: extend technical advisory

* docs: add version and dates

* docs: add version and dates

* fix version and date

* docs: add version and dates

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-09-05 12:53:11 +00:00
Fabi
6b6d036760
docs: extend technical advisory (#6493) 2023-09-05 11:40:05 +00:00
mffap
5541e0170c
docs(api): restructure overview (#6485)
* update sdks

* restructure

* resource based

* headings

* docs: add sdks

* docs: build your own login sidebar

* Apply suggestions from code review

Co-authored-by: Fabi <fabienne@zitadel.com>

* add info

* move custom login guide inline

---------

Co-authored-by: Fabienne <fabienne.gerschwiler@gmail.com>
Co-authored-by: Fabi <fabienne@zitadel.com>
2023-09-05 08:32:47 +02:00
Max Peintner
7d6e483393
docs: technical advisory 1002 - MDC components (#6487)
* draft console mdc component advisory

* pr

* textual change
2023-09-04 14:51:37 +02:00
Florian Forster
d49be79778
chore: replace old headline in this repository (#6446)
chore: change headline
2023-09-01 09:46:20 +00:00
Livio Spring
0d94947d3c
fix: rest path for StartIdentityProviderIntent (#6447) 2023-08-30 10:42:24 +02:00