zitadel

mirror of https://github.com/zitadel/zitadel.git synced 2024-12-12 11:04:25 +00:00

Author	SHA1	Message	Date
Livio Spring	95481c2e0b	feat: allow system config changes (#3876 ) * feat: run repeatable setup steps * feat: react to system config changes * renaming	2022-07-20 11:20:49 +02:00
Livio Spring	fa4bc47b3e	feat: specify org member roles in org setup (#3950 )	2022-07-12 13:38:47 +00:00
Livio Spring	6463b716ce	fix: handle org de-/reactivate correctly (#3924 )	2022-07-07 13:13:17 +00:00
Livio Spring	a1d404291d	fix(notify): notify user in projection (#3889 ) * start implement notify user in projection * fix(stmt): add copy to multi stmt * use projections for notify users * feat: notifications from projections * feat: notifications from projections * cleanup * pre-release * fix tests * fix types * fix command * fix queryNotifyUser * fix: build version * fix: HumanPasswordlessInitCodeSent Co-authored-by: adlerhurst <silvan.reusser@gmail.com>	2022-07-06 14:09:49 +02:00
Livio Spring	8434eaa9c0	fix: require user verification for passwordless authentication (#3896 )	2022-07-06 08:32:05 +02:00
Livio Spring	f57e3df39d	fix: sms providers (#3801 )	2022-06-13 08:34:11 +02:00
Max Peintner	3500961fbb	fix: add smtp config, remove smtp and sms provider, console adaptations (#3792 ) * fix: add AddSMTPConfig to admin api * addsmtpconfig * fix: add RemoveSMTPConfig and RemoveSMSProvider to admin api * update twilio, token fcn * fix account switcher, twilio token set, cleanup dialog * cleanup * buttons Co-authored-by: Livio Amstutz <livio.a@gmail.com>	2022-06-10 12:39:38 +02:00
Livio Amstutz	0baaaf8a05	fix: handle default org id (#3769 )	2022-06-03 14:30:39 +02:00
Silvan	fb93085430	fix(projection): add missing col to idp login policy links (#3745 ) * fix(projection): add missing col to projection * refactor: method naming	2022-05-31 20:39:37 +02:00
Silvan	3513148cf6	fix: SMTP config in defaults (#3736 ) * fix(command): create smtp provider cmds after domains * chore(defaults): add smtp configuration	2022-05-30 17:39:18 +02:00
Livio Amstutz	b3f50702f8	feat: directly specify factors/idps on addCustomLoginPolicy and return on LoginPolicy responses (#3711 ) * feat: directly specify factors on addCustomLoginPolicy and return on LoginPolicy responses * fix proto * update login policy * feat: directly specify idp on addCustomLoginPolicy and return on LoginPolicy responses * fix: tests Co-authored-by: Max Peintner <max@caos.ch> Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>	2022-05-30 11:51:07 +00:00
Alexei-Barnes	09b021b257	feat: Configurable Unique Machine Identification (#3626 ) * feat: Configurable Unique Machine Identification This change fixes Segfault on AWS App Runner with v2 #3625 The change introduces two new dependencies: * github.com/drone/envsubst for supporting AWS ECS, which has its metadata endpoint described by an environment variable * github.com/jarcoal/jpath so that only relevant data from a metadata response is used to identify the machine. The change ads new configuration (see `defaults.yaml`): * `Machine.Identification` enables configuration of how machines are uniquely identified - I'm not sure about the top level category `Machine`, as I don't have anything else to add to it. Happy to hear suggestions for better naming or structure here. * `Machine.Identifiation.PrivateId` turns on or off the existing private IP based identification. Default is on. * `Machine.Identification.Hostname` turns on or off using the OS hostname to identify the machine. Great for most cloud environments, where this tends to be set to something that identifies the machine uniquely. Enabled by default. * `Machine.Identification.Webhook` configures identification based on the response to an HTTP GET request. Request headers can be configured, a JSONPath can be set for processing the response (no JSON parsing is done if this is not set), and the URL is allowed to contain environment variables in the format `"${var}"`. The new flow for getting a unique machine id is: 1. PrivateIP (if enabled) 2. Hostname (if enabled) 3. Webhook (if enabled, to configured URL) 4. Give up and error out. It's important that init configures machine identity first. Otherwise we could try to get an ID before configuring it. To prevent this from causing difficult to debug issues, where for example the default configuration was used, I've ensured that the application will generate an error if the module hasn't been configured and you try to get an ID. Misc changes: * Spelling and gramatical corrections to `init.go::New()` long description. * Spelling corrections to `verify_zitadel.go::newZitadel()`. * Updated `production.md` and `development.md` based on the new build process. I think the run instructions are also out of date, but I'll leave that for someone else. * `id.SonyFlakeGenerator` is now a function, which sets `id.sonyFlakeGenerator`, this allows us to defer initialization until configuration has been read. * Update internal/id/config.go Co-authored-by: Alexei-Barnes <82444470+Alexei-Barnes@users.noreply.github.com> * Fix authored by @livio-a for tests Co-authored-by: Livio Amstutz <livio.a@gmail.com>	2022-05-24 16:57:57 +02:00
Livio Amstutz	e1ee89982a	fix: unify commands (and remove todos for checking existence) (#3696 )	2022-05-24 09:28:17 +00:00
Florian Forster	0ba165363e	chore: rename docs links (#3668 )	2022-05-20 14:32:06 +00:00
Livio Amstutz	5901991dd3	fix: asset service (CORS and path in console) and user init (#3655 ) * fix: asset service (CORS and path in console) and user init * fix tests * improve comment	2022-05-18 14:10:49 +02:00
Livio Amstutz	3a63fb765a	fix: cleanup some todos (#3642 ) * cleanup todo * fix: some todos	2022-05-16 16:35:49 +02:00
Fabi	5c0f527a49	feat: restrict smtp sender address (#3637 ) * fix: check if sender address is custom domain * fix: check if sender address is custom domain * fix: check if sender address is custom domain Co-authored-by: Livio Amstutz <livio.a@gmail.com>	2022-05-16 14:08:47 +00:00
Livio Amstutz	411d7c6c5c	feat: add default redirect uri and handling of unknown usernames (#3616 ) * feat: add possibility to ignore username errors on first login screen * console changes * fix: handling of unknown usernames (#3445) * fix: handling of unknown usernames * fix: handle HideLoginNameSuffix on unknown users * feat: add default redirect uri on login policy (#3607) * feat: add default redirect uri on login policy * fix tests * feat: Console login policy default redirect (#3613) * console default redirect * placeholder * validate default redirect uri * allow empty default redirect uri Co-authored-by: Max Peintner <max@caos.ch> * remove wonrgly cherry picked migration Co-authored-by: Max Peintner <max@caos.ch>	2022-05-16 13:39:09 +00:00
Fabi	c53d5251a7	fix: V2 docs / error messages (#3611 ) * docs: rewrite concept section * docs: add instance to guides * chore: error messages * fix: scenarios * docs: urls * docs: change images * docs: change images * docs: change images Co-authored-by: Livio Amstutz <livio.a@gmail.com>	2022-05-16 12:00:33 +00:00
Livio Amstutz	d401439427	fix: unique constraints on instance domain events (#3635 )	2022-05-16 11:52:54 +02:00
Fabi	48fbf1a28e	feat: add random string to generated domain (#3634 )	2022-05-16 11:26:24 +02:00
Livio Amstutz	024eedc1b5	feat: enable default smtp config on setup (#3622 ) * feat: enable default smtp config on setup * fix tests * fix channel order Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>	2022-05-13 12:13:07 +00:00
Livio Amstutz	734cfdddae	fix: return userID on org setup (#3623 )	2022-05-13 13:54:48 +02:00
Fabi	a9f82529ab	fix: add org member (#3599 ) Co-authored-by: Livio Amstutz <livio.a@gmail.com>	2022-05-12 07:34:46 +00:00
Livio Amstutz	94e420bb24	fix: env.json caching, readiness and unique lockerIDs (#3596 ) * fix: readiness check * disable cache for env.json * always generate unique lockerID * fix tests	2022-05-04 17:09:49 +02:00
Livio Amstutz	79db247801	feat: set default language on instance (#3594 )	2022-05-03 15:58:38 +02:00
Livio Amstutz	861cf07700	feat: permit all features to every instance and organisation (#3566 )	2022-05-02 11:18:17 +02:00
Silvan	a9f71ba08e	fix(command): reset phone on phone write model to empty if removed (#3543 )	2022-05-02 11:06:30 +02:00
Livio Amstutz	00f7dbe875	fix: setup instance domain handling (#3529 )	2022-04-28 10:30:41 +02:00
Florian Forster	fa9f581d56	chore(v2): move to new org (#3499 ) * chore: move to new org * logging * fix: org rename caos -> zitadel Co-authored-by: adlerhurst <silvan.reusser@gmail.com>	2022-04-26 23:01:45 +00:00
Livio Amstutz	32986aa60a	feat: handle missing trailing slashes for console and login (#3490 ) * handle calls without trailing slash * build redirect uris correctly * handle missing trailing slash for login * sentry as http middleware * import * fix build origin	2022-04-26 12:13:16 +02:00
Livio Amstutz	7a507fe63c	fix: use correct encryption keys in addHuman and set primary instance domain (#3486 ) Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>	2022-04-25 14:36:10 +00:00
Livio Amstutz	2c4799c223	feat: complete dynamic domain handling (#3482 ) * feat: dynamic issuer * feat: default language from context * remove zitadel docs from defaults * remove ConsoleOverwriteDir * remove notification endpoints from defaults * custom domains in emails * remove (external) domain * external domain completely removed, console handling fixed * fix test * fix defaults.yaml	2022-04-25 11:16:36 +02:00
Livio Amstutz	75ec73ca4a	feat: dynamic issuer (#3481 ) * feat: dynamic issuer * dynamic domain handling * key rotation durations * feat: dynamic issuer * make webauthn displayname dynamic	2022-04-25 10:01:17 +02:00
Fabi	3d5891eb11	feat: System api (#3461 ) * feat: start system api * feat: remove auth * feat: change gitignore * feat: run system api * feat: remove clear view form admin api * feat: search instances * feat: add instance * fix: set primary domain * Update .gitignore * fix: add instance * fix: add instance * fix: handle errors * fix: handle instance name * fix: test Co-authored-by: Livio Amstutz <livio.a@gmail.com>	2022-04-21 12:37:39 +02:00
Livio Amstutz	a7816a43b1	refactor: remove commandNew struct (#3465 ) * refactor: remove commandNew struct * requested fixes	2022-04-20 14:59:37 +00:00
Livio Amstutz	1305c14e49	feat: handle instanceID in projections (#3442 ) * feat: handle instanceID in projections * rename functions * fix key lock * fix import	2022-04-19 08:26:12 +02:00
Fabi	c25d853820	feat: Instance domains (#3444 ) * feat: add domain list * feat: domain tests * feat: add redirect url on adding instance domain * Update internal/command/instance_domain.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * feat: remove unused code * fix Co-authored-by: Livio Amstutz <livio.a@gmail.com>	2022-04-14 12:19:18 +00:00
Fabi	820a21dce3	feat: validate org domains (#3387 ) * feat: validate org domain command side * feat: validate org domain query side * fix: create domain policy * feat: add reading domain policy on addorg domain	2022-04-13 11:24:03 +02:00
Silvan	db554536a1	fix: v2 setup sequence (#3437 ) * add/register human command done * validations * crypto * move clientid * keys * fix: clientID * remove v2 package * tests * tests running * fix: add init instance to eventstore * fix: mig * test(eventstore): create instance * revert old code * instance domain from ctx * chore: rename zitadel app ids * comments * fix: test * fix: mock * fix: test	2022-04-13 05:42:48 +00:00
Silvan	cea2567e22	fix: v2 human command (#3435 ) * add/register human command done * validations * crypto * move clientid * keys * fix: clientID * remove v2 package * tests * tests running * revert old code * instance domain from ctx * chore: rename zitadel app ids * comments * fix: test	2022-04-12 16:20:17 +02:00
Livio Amstutz	4a0d61d75a	feat: store assets in database (#3290 ) * feat: use database as asset storage * being only uploading assets if allowed * tests * fixes * cleanup after merge * renaming * various fixes * fix: change to repository event types and removed unused code * feat: set default features * error handling * error handling and naming * fix tests * fix tests * fix merge * rename	2022-04-06 06:13:40 +00:00
Fabi	c740ee5d81	feat: Instance commands (#3385 ) * fix: add events for domain * fix: add/remove domain command side * fix: add/remove domain command side * fix: add/remove domain query side * fix: create instance * fix: merge v2 * fix: instance domain * fix: instance domain * fix: instance domain * fix: instance domain * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from api * fix: remove domain.IAMID * fix: remove domain.IAMID * fix: add instance domain queries * fix: fix after merge * Update auth_request.go * fix keypair * remove unused code * feat: read instance id from context * feat: remove unused code * feat: use instance id from context * some fixes Co-authored-by: Livio Amstutz <livio.a@gmail.com>	2022-04-05 05:58:09 +00:00
Livio Amstutz	958362e6c9	feat: handle instance from context (#3382 ) * commander * commander * selber! * move to packages * fix(errors): implement Is interface * test: command * test: commands * add init steps * setup tenant * add default step yaml * possibility to set password * merge v2 into v2-commander * fix: rename iam command side to instance * fix: rename iam command side to instance * fix: rename iam command side to instance * fix: rename iam command side to instance * fix: search query builder can filter events in memory * fix: filters for add member * fix(setup): add `ExternalSecure` to config * chore: name iam to instance * fix: matching * remove unsued func * base url * base url * test(command): filter funcs * test: commands * fix: rename orgiampolicy to domain policy * start from init * commands * config * fix indexes and add constraints * fixes * fix: merge conflicts * fix: protos * fix: md files * setup * add deprecated org iam policy again * typo * fix search query * fix filter * Apply suggestions from code review * remove custom org from org setup * add todos for verification * change apps creation * simplify package structure * fix error * move preparation helper for tests * fix unique constraints * fix config mapping in setup * fix error handling in encryption_keys.go * fix projection config * fix query from old views to projection * fix setup of mgmt api * set iam project and fix instance projection * fix tokens view * fix steps.yaml and defaults.yaml * fix projections * change instance context to interface * instance interceptors and additional events in setup * cleanup * tests for interceptors * fix label policy * add todo * single api endpoint in environment.json Co-authored-by: adlerhurst <silvan.reusser@gmail.com> Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>	2022-03-29 11:53:19 +02:00
Silvan	c5b99274d7	feat(cli): setup (#3267 ) * commander * commander * selber! * move to packages * fix(errors): implement Is interface * test: command * test: commands * add init steps * setup tenant * add default step yaml * possibility to set password * merge v2 into v2-commander * fix: rename iam command side to instance * fix: rename iam command side to instance * fix: rename iam command side to instance * fix: rename iam command side to instance * fix: search query builder can filter events in memory * fix: filters for add member * fix(setup): add `ExternalSecure` to config * chore: name iam to instance * fix: matching * remove unsued func * base url * base url * test(command): filter funcs * test: commands * fix: rename orgiampolicy to domain policy * start from init * commands * config * fix indexes and add constraints * fixes * fix: merge conflicts * fix: protos * fix: md files * setup * add deprecated org iam policy again * typo * fix search query * fix filter * Apply suggestions from code review * remove custom org from org setup * add todos for verification * change apps creation * simplify package structure * fix error * move preparation helper for tests * fix unique constraints * fix config mapping in setup * fix error handling in encryption_keys.go * fix projection config * fix query from old views to projection * fix setup of mgmt api * set iam project and fix instance projection * imports Co-authored-by: Livio Amstutz <livio.a@gmail.com> Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>	2022-03-28 10:05:09 +02:00
Fabi	9d4f296c62	fix: rename iam to instance (#3345 ) * fix: rename iam command side to instance * fix: rename iam command side to instance * fix: rename iam command side to instance * fix: rename iam command side to instance * fix: rename orgiampolicy to domain policy * fix: merge conflicts * fix: protos * fix: md files * implement deprecated org iam policy again Co-authored-by: Livio Amstutz <livio.a@gmail.com>	2022-03-24 16:21:34 +00:00
Livio Amstutz	504fe5b761	cherry pick changes from main (#3371 ) * feat: remove exif data from uploaded images (#3221) * feat: remove exif tags from images * feat: remove exif data * feat: remove exif * fix: add preferredLoginName to user grant response (#3271) * chore: log webauthn parse error (#3272) * log error * log error * feat: Help link in privacy policy * fix: convert correct detail data on organization (#3279) * fix: handle empty editor users * fix: add some missing translations (#3291) * fix: org policy translations * fix: metadata event types translation * fix: translations * fix: filter resource owner correctly on project grant members (#3281) * fix: filter resource owner correctly on project grant members * fix: filter resource owner correctly on project grant members * fix: add orgIDs to zitadel permissions request Co-authored-by: fabi <fabienne.gerschwiler@gmail.com> * fix: get IAM memberships correctly in MyZitadelPermissions (#3309) * fix: correct login names on auth and notification users (#3349) * fix: correct login names on auth and notification users * fix: migration * fix: handle resource owner in action flows (#3361) * fix merge * fix: exchange exif library (#3366) * fix: exchange exif library * ignore tiffs * requested fixes * feat: Help link in privacy policy Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>	2022-03-24 14:00:24 +01:00
Fabi	5132ebe07c	feat: add tenant column to eventstore (#3314 ) * feat: add tenant column to eventstore * feat: read tenant from context on push and filter * Update 07_events_table.sql * pass tenant to queryFactory * fix some query tests * init in tests * add missing sql files Co-authored-by: Livio Amstutz <livio.a@gmail.com>	2022-03-15 07:19:02 +01:00
Livio Amstutz	5463244376	feat: encryption keys in database (#3265 ) * enable overwrite of adminUser fields in defaults.yaml * create schema and table * cli: create keys * cli: create keys * read encryptionkey from db * merge v2 * file names * cleanup defaults.yaml * remove custom errors * load encryptionKeys on start * cleanup * fix merge * update system defaults * fix error message	2022-03-14 07:55:09 +01:00
Fabi	7899a0b851	feat: Notification providers config (#3212 ) * feat: add login check lifetimes to login policy * feat: org features test * feat: debug notificatiaon events * feat: debug notification file/log commands * feat: add requests to proto * feat: add api for debug notification providers file/log * feat: add projection for debug notifiication providers * feat: requests * feat: merge v2 * feat: add settings proto to generate * feat: notifiaction providers * fix: remove unused code * Update iam_converter.go Co-authored-by: Livio Amstutz <livio.a@gmail.com>	2022-03-07 14:22:37 +01:00

1 2 3 4

171 Commits