Commit Graph

2370 Commits

Author SHA1 Message Date
Stefan Benz
5562ee94a6
feat: migrate external idp to other types (#5984)
* feat: migrate instance oidc to azureAD

* feat: migrate instance oidc to azureAD

* feat: migrate org oidc to azureAD

* feat: migrate oidc to google

* fix: correct idp writemodels

* fix: review changes
2023-06-08 00:50:53 +02:00
Stefan Benz
0b1738dc5d
fix: check linked users before postAuthentication action (#5980)
* fix: check linked users before postAuthentication action

* fix: apply suggestions from code review

Co-authored-by: Silvan <silvan.reusser@gmail.com>

---------

Co-authored-by: Silvan <silvan.reusser@gmail.com>
2023-06-08 00:16:02 +02:00
Silvan
6be41ea257
fix(setup): steps 10 and 11 (#5987)
* fix(step10): count amount of wrong_events manually

* fix(step11): create index for better performance
2023-06-07 16:30:19 +00:00
Tim Möhlmann
f456168a74
feat: session v2 passkey authentication (#5952) 2023-06-07 17:28:42 +02:00
mffap
f7157b65f4
docs(troubleshoot): invalid audience (#5956) 2023-06-06 16:11:30 +00:00
Elio Bischof
61feb9d19f
fix: more silence (#5986) 2023-06-06 15:12:54 +00:00
Silvan
ebca7b6e3d
fix(setup): update chunks in step 11 (#5965) 2023-06-02 09:31:18 +00:00
mffap
c8b0e5a6c5
docs(api): add info about key rotation and caching on /keys endpoint (#5964)
* docs(api): add more info on the /keys endpoint

* fix some headings while we're here
2023-06-02 08:29:07 +02:00
mffap
aa60de3d34
docs: fix some more broken links (#5962) 2023-06-01 08:46:50 +00:00
Fabi
a1ccde9815
docs: add section about subscribing to mailing list (#5915)
* docs: add section about subscribing to mailing list

* docs: change link

* Update technical_advisory.mdx

* docs: add technical advisory to readme

* Update README.md

Co-authored-by: mffap <mpa@zitadel.com>

---------

Co-authored-by: mffap <mpa@zitadel.com>
2023-06-01 10:30:30 +02:00
mffap
057ac926c8
docs(legal): Account Lockout Policy (#5958)
* typo

* docs(legal): account lockout policy

* sidebar

* remove intros

* fix broken link

---------

Co-authored-by: Fabi <fabienne@zitadel.com>
2023-06-01 05:07:38 +00:00
mffap
c7e0d979d4
docs: fix broken links (#5959)
* openid connect

* main

* cockroach links
2023-06-01 06:58:14 +02:00
Fabi
7a0fa2aad0
docs: improvement issue template (#5955)
* docs: improvement issue template

* docs: add issue template for docs

* docs: add issue template for proposal

* delete file

* docs: update bug template
2023-05-31 13:55:30 +02:00
Tim Möhlmann
d5eaa8fa16
fix: display loginname in machine client credentials (#5936) 2023-05-26 13:04:45 +00:00
Max Peintner
6c90f088d2
fix(console): show warn dialog when view switched to instance (#5935)
fix: show warn dialog when changed to instance
2023-05-26 14:27:56 +02:00
Stefan Benz
9aed0319c5
fix: token for post authentication action and change phone and email (#5933)
* fix: token for post authentication action and change phone and email

* fix checks and add tests

* improve change checks and add tests

* add more tests

* remove unintended test

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-05-26 07:24:52 +00:00
mffap
d595177bcd
docs(integrate): move authenticate service users up (#5928) 2023-05-25 16:16:40 +05:30
Elio Bischof
616f064e99
docs: improve installation guide for k8s (#5923)
* docs(k8s): add port-forward command

* docs: improve k8s installation docs

* remove target port

---------

Co-authored-by: Fabi <fabienne.gerschwiler@gmail.com>
2023-05-25 10:21:35 +02:00
Elio Bischof
8828c04e27
chore: backward compatible stub gen (#5926)
* chore: backward compatible stub gen

* chore: fix delete path

* fix order
2023-05-24 23:19:48 +02:00
Stefan Benz
fa8f191812
feat: v2alpha user service idp endpoints (#5879)
* feat: v2alpha user service idp endpoints

* feat: v2alpha user service intent endpoints

* begin idp intents (callback)

* some cleanup

* runnable idp authentication

* cleanup

* proto cleanup

* retrieve idp info

* improve success and failure handling

* some unit tests

* grpc unit tests

* add permission check AddUserIDPLink

* feat: v2alpha intent writemodel refactoring

* feat: v2alpha intent writemodel refactoring

* feat: v2alpha intent writemodel refactoring

* provider from write model

* fix idp type model and add integration tests

* proto cleanup

* fix integration test

* add missing import

* add more integration tests

* auth url test

* feat: v2alpha intent writemodel refactoring

* remove unused functions

* check token on RetrieveIdentityProviderInformation

* feat: v2alpha intent writemodel refactoring

* fix TestServer_RetrieveIdentityProviderInformation

* fix test

* i18n and linting

* feat: v2alpha intent review changes

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
2023-05-24 18:29:58 +00:00
Miguel Cabrerizo
767b3d7e65
fix: don't show steps in create app when pro mode (#5730)
Co-authored-by: Elio Bischof <elio@zitadel.com>
Co-authored-by: Fabi <fabienne.gerschwiler@gmail.com>
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
2023-05-24 14:13:01 +00:00
Elio Bischof
6e4909557d
chore(dev): fix fetching http env json (#5921) 2023-05-24 13:07:55 +00:00
Fabi
0d7495b8ed
docs: remove sms from mf lists (#5920) 2023-05-24 12:09:01 +00:00
Tim Möhlmann
a301c40f9f
feat: implement register Passkey user API v2 (#5873)
* command/crypto: DRY the code

- reuse the the algorithm switch to create a secret generator
- add a verifyCryptoCode function

* command: crypto code tests

* migrate webauthn package

* finish integration tests with webauthn mock client
2023-05-24 10:22:00 +00:00
Tim Möhlmann
6839a5c203
chore: update oidc (#5918) 2023-05-24 08:11:56 +00:00
Dakshitha Ratnayake
f3868f5243
docs: update CONTRIBUTING.md (#5913)
* Update CONTRIBUTING.md

Added reference to Google style guide.

* Update CONTRIBUTING.md
2023-05-24 05:09:06 +00:00
András Tóth
8c926366a9
fix(database): allow postgres sslmode=require without root cert (#4972)
* fix(database): allow postgres sslmode=require without root cert

* fix(database): allow postgres sslmode=require without root cert (fix)

Co-authored-by: Silvan <silvan.reusser@gmail.com>

---------

Co-authored-by: Silvan <silvan.reusser@gmail.com>
2023-05-23 14:29:13 +00:00
Dakshitha Ratnayake
e2ee622d27
docs: Update CONTRIBUTING.md (#5912)
docs: update CONTRIBUTING.md
2023-05-23 16:06:28 +05:30
Dakshitha Ratnayake
e9a9d11926
docs: modify docs to comply with Google style guide for docs. (#5911)
* Modifying docs to comply with Google style guide for docs.

* Removed typo.

---------

Co-authored-by: Dakshitha Ratnayake <dakshitharatnayake@Dakshithas-MacBook-Pro-2.local>
2023-05-23 15:18:14 +05:30
Elio Bischof
747f1b3d6d
test(quotas): test exhausted cookie handling (#5788)
* fix: remove access interceptor for console

* feat: template quota cookie value

* feat: show dialog on exhausted requests

* test: test quota exhausted screen

* chore: add convencience npm scripts

* test: ensure correct exhausted cookie handling

* fix exhausted cookie handling

* fix: send exhausted cookie from grpc-gateway

* fix linting

* refactor: remove ineffectual err assignments

* create prerelease

* test: simulate upgrading an instance

* run all quota tests

* fix quota exhausted screen

* fix: release

* fix linting

* Update internal/api/grpc/server/gateway.go

Co-authored-by: Livio Spring <livio.a@gmail.com>

* use dynamic host header to find instance

* add instance mgmt url to environment.json

* read instance mgmt from environment.json

* configure console

* fix interceptors

* fix: release

* mgmt url comes from environment.json

* don't check cookie on environment.json

* fix: release

* support hosts with default ports

* fix: release

* fix environment.json path

* fix linting

* docs: update lb example

* print access logs to stdout

* fix grpc gateway exhausted cookies

* update backend

* cleanup

* fix: release

* fix: release

* exclude environment.json from cookie check

* fix: release

* fix: release

* remove cookie before loading env

* use UTC to delete the cookie

* delete cookie before fetching env

* fix: release

* simplify cookie handling

* lint

* fix: set exhausted cookie with env json

* lint

* review cleanup

* fix: release

* use exhausted property from env json

* fix: send exhausted property in env json

* fix bootstrapping

* lint

* fix: release

* always open mgmt link if present

* fix: release

* fix: release

* chore: fetch env json before ng serve

* wait for cookie to be removed

* fix: release

* fix typo

* fix: release

* fix: debug

* fix: delete cookies

* don't wait for cookie to be set

* fix: delete cookies

* cleanup

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-05-22 16:32:50 +02:00
Fabi
2e29226c2f
chore: add dry to pr template (#5907)
docs: add dry to pr template
2023-05-22 09:33:23 +02:00
Fabi
a60c9ae4f5
docs: remove beta state of postgresql (#5652)
* docs: remove beta state of postgres

* docs: release cycle, support states, postgres

* docs: release cycle, support states, postgres

* docs: postgreSQL

* Update docs/docs/concepts/architecture/software.md

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/concepts/architecture/solution.md

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/support/general.md

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/support/general.md

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/self-hosting/deploy/overview.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/support/general.md

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/self-hosting/manage/database/_postgres.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/support/general.md

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/support/general.md

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/self-hosting/manage/database/_postgres.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/self-hosting/manage/production.md

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/support/general.md

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/support/general.md

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/support/general.md

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/support/general.md

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/manage/cloud/support.md

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/support/general.md

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/support/general.md

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/support/general.md

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/support/general.md

Co-authored-by: mffap <mpa@zitadel.com>

* fix broken link

* replace generic title (search optimization)

* new version of sidebars

* fix broken links

* add back to sidebar

---------

Co-authored-by: mffap <mpa@zitadel.com>
2023-05-22 05:13:58 +00:00
Elio Bischof
9ae46fd4da
docs: add aud scope to private key token (#5891)
* docs: add aud scope to private key token

* docs: describe aud scope in private key jwt

* ensure zitadel scope is display correctly

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-05-22 06:26:56 +02:00
mffap
b6b229ed4f
docs: optimize titles for search (#5880)
* docs: optimize titles for search

* wip

* trainings

* API

* trainings

* orphaned: structure overview

* eventstore

* examples

* docs overview

* cloud

* console

* orphaned: sdks

* deploy
2023-05-22 07:50:08 +05:30
Florian Forster
f4b166a935
docs: extend client generation with buf (#5662) 2023-05-19 14:17:35 +00:00
Elio Bischof
b475068140
feat(console): friendly quota exhausted screen (#5790)
* fix: remove access interceptor for console

* feat: show dialog on exhausted requests

* fix exhausted cookie handling

* fix quota exhausted screen

* read instance mgmt from environment.json

* fix interceptors

* don't check cookie on environment.json

* fix environment.json path

* exclude environment.json from cookie check

* remove cookie before loading env

* use UTC to delete the cookie

* delete cookie before fetching env

* simplify cookie handling

* lint

* review cleanup

* use exhausted property from env json

* fix bootstrapping

* lint

* always open mgmt link if present

* chore: fetch env json before ng serve

* wait for cookie to be removed

* fix typo

* don't wait for cookie to be set
2023-05-19 10:48:39 +00:00
Elio Bischof
2e86c44aa5
fix: delete cookies (#5885)
Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-05-19 05:12:31 +00:00
Max Peintner
133aec4568
chore(console): angular 16 (#5870)
* ng 16

* material cdk

* module imports, rmn @accounts

* deps

* lint

* buf

---------

Co-authored-by: Elio Bischof <elio@zitadel.com>
2023-05-18 19:28:35 +00:00
Tim Möhlmann
62e35b266d
chore: exclude generated files from coverage (#5884) 2023-05-17 14:22:16 +00:00
mffap
bae6e20a91
docs(api): update api path (#5876) 2023-05-17 12:47:55 +00:00
Elio Bischof
885e3385aa
fix: send exhausted property in env json (#5877) 2023-05-17 11:41:54 +02:00
Stefan Benz
80815e89cf
chore(api): proto definition of passkeys endpoints (user service) (#5864)
* feat: first proto definition of passkeys endpoints

* improve passkeys requests

* fix: some renaming of passkey endpoint attributes

* change to post methods

* improve passkeys requests

* add code id and make codes optional

* fix: some documentation for passkeys endpoints

* drop code from VerifyPasskeyRegistrationRequest

not needed, as disccussed

* put code_id and code in a nested object

* add passkey_id to RegisterPasskeyResponse

* improve description

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
2023-05-17 07:06:11 +00:00
mffap
116d11dcf7
docs(troubleshooting): WebFinger requirement for tailscale (#5862) 2023-05-16 11:20:53 +00:00
Livio Spring
e4427380f3
feat: enable grpc server reflection (#5689)
This change enables [gRPC server
reflection](https://github.com/grpc/grpc-go/blob/master/Documentation/server-reflection-tutorial.md).
It allows for easier setting up of dev-tools like
[gRPCurl](https://github.com/fullstorydev/grpcurl) and
[gRPCui](https://github.com/fullstorydev/grpcui).

To see it in action, after you start zitadel on the localhost:

```
go install github.com/fullstorydev/grpcui/cmd/grpcui@latest
grpcui -plaintext localhost:8080
````


![image](https://user-images.githubusercontent.com/5411563/232060184-1a114640-e87a-48da-866f-ff8d597e790f.png)
2023-05-16 11:17:20 +02:00
Livio Spring
383e68b819
Merge branch 'main' into grcp-server-reflect 2023-05-16 10:51:32 +02:00
Livio Spring
a77f299168
fix(eventstore): add created_at column (#5818)
### Definition of Ready

- [x] I am happy with the code
- [ ] Short description of the feature/issue is added in the pr
description
- [ ] PR is linked to the corresponding user story
- [ ] Acceptance criteria are met
- [ ] All open todos and follow ups are defined in a new ticket and
justified
- [ ] Deviations from the acceptance criteria and design are agreed with
the PO and documented.
- [ ] No debug or dead code
- [ ] Critical parts are tested automatically
- [ ] Where possible E2E tests are implemented
- [ ] Documentation/examples are up-to-date
- [ ] All non-functional requirements are met
- [ ] Functionality of the acceptance criteria is checked manually on
the dev system.
2023-05-16 09:08:54 +02:00
Livio Spring
2962870bdd
Merge branch 'main' into eventstore-created-at 2023-05-16 08:44:25 +02:00
mffap
d78b273b44
docs(contributing): don't repeat yourself (#5869) 2023-05-15 14:30:05 +02:00
kotoriのねこ
a21d184790
docs(nginx): fix nginx directory, system api proto description (#5809)
Co-authored-by: Elio Bischof <elio@zitadel.com>
2023-05-15 07:23:56 +00:00
Elio Bischof
0e251a29c8
fix: set exhausted cookie with env json (#5868)
* fix: set exhausted cookie with env json

* lint
2023-05-15 08:51:02 +02:00