Livio Spring
27e7dc68a8
feat: allow disabling the mfa setup prompt ( #4575 )
...
* feat: allow disabling the mfa setup prompt
* e2e: disable mfa prompt
Co-authored-by: Max Peintner <max@caos.ch>
2022-10-26 10:20:01 +02:00
Max Peintner
05d875c992
fix(login, console): correctly fill username on initialization, password and change password view ( #4546 )
...
* fix(login): add loginname as query param, send with inituserlink
* set loginname as username autofill on password site
* add loginname input on change password
* fix console password change autocomplete
* fix(console): apply labelpolicy if icon is provided, signout page (#4499 )
* label policy as observable
* signedout policy via state
* add caching
* disable loading spinner on signedout
* cleanup
* catch error
* update deps
* move policy to localstorage
* handle labelpolicy for users without org
Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
* fix(email): set sender address as return-path header (#4569 )
* feat(login): additionally use email/phone for authentication (#4563 )
* feat: add ability to disable login by email and phone
* feat: check login by email and phone
* fix: set verified email / phone correctly on notify users
* update projection version
* fix merge
* fix email/phone verified reduce tests
* fix user tests
* loginname check
* cleanup
* fix: update user projection version to handle fixed statement
* ci(e2e): give console init time (#4567 )
* fix: idp usage (#4571 )
* fix: send email verification instead of init code for idp users
* fix: select single idp of external only users
* fix: use single idp on login
* fix(import): add import for app and machine keys (#4536 )
* fix(import): add import for app and machine keys
* fix(export): add review changes
* fix(import): Apply suggestions from code review
Co-authored-by: Livio Spring <livio.a@gmail.com>
* fix(import): add review changes
Co-authored-by: Livio Spring <livio.a@gmail.com>
* fix(console): hide metadata on auth side if no `user.read` role present (#4512 )
* check for role
* require user.read for showing metadata section in auth-user
* remove aggregate id from role check
Co-authored-by: Livio Spring <livio.a@gmail.com>
* update stable release to 2.8.2 (#4574 )
* fix: import of trigger actions and export of idp links (#4576 )
Co-authored-by: Livio Spring <livio.a@gmail.com>
* fix(console): split password from contact information, initialization mail on top (#4380 )
* chore(console): split password from contact information
* change user detail, initialization mail
* fix translation
* Update console/src/assets/i18n/de.json
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
* Update console/src/assets/i18n/de.json
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
* Update console/src/assets/i18n/en.json
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
* Update console/src/assets/i18n/fr.json
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
* Update console/src/assets/i18n/fr.json
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
* Update console/src/assets/i18n/it.json
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
* Update console/src/assets/i18n/en.json
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
* i18n
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
* fix(import): import json marshal to jsonpb (#4580 )
* fix(import): import json marshal to jsonpb
* fix: add unmarshaloptions discard unknown
Co-authored-by: Livio Spring <livio.a@gmail.com>
* fix(import): import json marshal to jsonpb
Co-authored-by: Livio Spring <livio.a@gmail.com>
* feat(console): rename org (#4542 )
* rename org
* add data-e2e
* e2e test
* restore state after
* use ngIf instead of hasrole directive and initialized regex
* rm h2 check
* Update e2e/cypress/e2e/organization/organizations.cy.ts
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
* Update console/src/assets/i18n/de.json
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
* Update console/src/assets/i18n/de.json
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
* Update console/src/assets/i18n/en.json
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
* change e2e test
* org param
* reintroduct org param
* use org query param
* org rename test
* no initial focus on button
* contain name
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
* feat: instance remove (#4345 )
* feat(instance): add remove instance event with projections cleanup
* fix(instance): corrected used id to clean up projections
* fix merge
* fix: correct unit test projection names
* fix: current sequence of lists and query for ensuring keypair based projections
Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
* docs: change nextjs quickstart (#4566 )
* docs: change nextjs repo update readme
* Update docs/docs/examples/login/nextjs.md
Co-authored-by: Florian Forster <florian@zitadel.com>
* Update docs/docs/examples/login/nextjs.md
Co-authored-by: Florian Forster <florian@zitadel.com>
Co-authored-by: Florian Forster <florian@zitadel.com>
* fix(console): preserve logo and icon aspect ratios, remove border radius in header (#4585 )
* chore(e2e): Skip asking for new password on Admin in dev environment (#4599 )
* feat(e2e): Skip asking for new password on Admin
* remove password changing
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
* docs(contributing): remove guides folder (#4603 )
* preferredLoginName as queryParam
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
Co-authored-by: Stefan Benz <46600784+stebenz@users.noreply.github.com>
Co-authored-by: Florian Forster <florian@zitadel.com>
Co-authored-by: p_0g_8mm3_ <37022952+pr0gr8mm3r@users.noreply.github.com>
2022-10-24 16:33:06 +02:00
Stefan Benz
c2a5b785fb
feat: instance remove ( #4345 )
...
* feat(instance): add remove instance event with projections cleanup
* fix(instance): corrected used id to clean up projections
* fix merge
* fix: correct unit test projection names
* fix: current sequence of lists and query for ensuring keypair based projections
Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
2022-10-20 14:36:52 +02:00
Stefan Benz
2bfa51da1c
fix(import): import json marshal to jsonpb ( #4580 )
...
* fix(import): import json marshal to jsonpb
* fix: add unmarshaloptions discard unknown
Co-authored-by: Livio Spring <livio.a@gmail.com>
* fix(import): import json marshal to jsonpb
Co-authored-by: Livio Spring <livio.a@gmail.com>
2022-10-19 13:36:51 +00:00
Stefan Benz
c8e1733b39
fix: import of trigger actions and export of idp links ( #4576 )
...
Co-authored-by: Livio Spring <livio.a@gmail.com>
2022-10-19 13:58:03 +02:00
Stefan Benz
556f381a5a
fix(import): add import for app and machine keys ( #4536 )
...
* fix(import): add import for app and machine keys
* fix(export): add review changes
* fix(import): Apply suggestions from code review
Co-authored-by: Livio Spring <livio.a@gmail.com>
* fix(import): add review changes
Co-authored-by: Livio Spring <livio.a@gmail.com>
2022-10-18 15:07:30 +00:00
Livio Spring
3270a94291
fix: idp usage ( #4571 )
...
* fix: send email verification instead of init code for idp users
* fix: select single idp of external only users
* fix: use single idp on login
2022-10-18 14:48:26 +00:00
Livio Spring
b0b1e94090
feat(login): additionally use email/phone for authentication ( #4563 )
...
* feat: add ability to disable login by email and phone
* feat: check login by email and phone
* fix: set verified email / phone correctly on notify users
* update projection version
* fix merge
* fix email/phone verified reduce tests
* fix user tests
* loginname check
* cleanup
* fix: update user projection version to handle fixed statement
2022-10-17 19:19:15 +00:00
Livio Spring
9ae58b62fd
fix(email): set sender address as return-path header ( #4569 )
2022-10-17 15:05:03 +00:00
Livio Spring
6daf44a34a
fix: clear potentially existing user information on auth request for domain discovery ( #4528 )
2022-10-11 11:12:07 +02:00
Livio Spring
3b03ad82bf
fix: registration allowed check and pass loginname to registration ( #4507 )
2022-10-07 12:17:17 +00:00
Livio Spring
d775020a32
fix: login for initial users ( #4506 )
2022-10-07 13:56:50 +02:00
Stefan Benz
c9e2e6bc33
fix(metadata): corrected handling of remove metadata events ( #4505 )
...
* fix(metadata): corrected handling of remove metadata events
* remove unnecessary method
Co-authored-by: Livio Spring <livio.a@gmail.com>
2022-10-07 09:44:28 +00:00
Silvan
43fb3fd1a6
feat(actions): add token customization flow and extend functionally with modules ( #4337 )
...
* fix: potential memory leak
* feat(actions): possibility to parse json
feat(actions): possibility to perform http calls
* add query call
* feat(api): list flow and trigger types
fix(api): switch flow and trigger types to dynamic objects
* fix(translations): add action translations
* use `domain.FlowType`
* localizers
* localization
* trigger types
* options on `query.Action`
* add functions for actions
* feat: management api: add list flow and trigger (#4352 )
* console changes
* cleanup
* fix: wrong localization
Co-authored-by: Max Peintner <max@caos.ch>
* id token works
* check if claims not nil
* feat(actions): metadata api
* refactor(actions): modules
* fix: allow prerelease
* fix: test
* feat(actions): deny list for http hosts
* feat(actions): deny list for http hosts
* refactor: actions
* fix: different error ids
* fix: rename statusCode to status
* Actions objects as options (#4418 )
* fix: rename statusCode to status
* fix(actions): objects as options
* fix(actions): objects as options
* fix(actions): set fields
* add http client to old actions
* fix(actions): add log module
* fix(actions): add user to context where possible
* fix(actions): add user to ctx in external authorization/pre creation
* fix(actions): query correct flow in claims
* test: actions
* fix(id-generator): panic if no machine id
* tests
* maybe this?
* fix linting
* refactor: improve code
* fix: metadata and usergrant usage in actions
* fix: appendUserGrant
* fix: allowedToFail and timeout in action execution
* fix: allowed to fail in token complement flow
* docs: add action log claim
* Update defaults.yaml
* fix log claim
* remove prerelease build
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Livio Spring <livio.a@gmail.com>
2022-10-06 14:23:59 +02:00
Livio Spring
bffb10a4b4
feat: allow domain discovery for unknown usernames ( #4484 )
...
* fix: wait for projection initialization to be done
* feat: allow domain discovery for unknown usernames
* fix linting
* Update console/src/assets/i18n/de.json
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
* Update console/src/assets/i18n/en.json
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
* Update console/src/assets/i18n/it.json
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
* Update console/src/assets/i18n/fr.json
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
* fix zh i18n text
* fix projection table name
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
2022-10-06 13:30:14 +02:00
Max Peintner
531c30a031
fix(login): organization suffix overflow ( #4374 )
...
fix: org name overflow
2022-10-03 18:01:35 +02:00
Livio Spring
fcb36cd406
fix: wait for projection initialization to be done ( #4473 )
...
* fix: wait for projection initialization to be done
* close channel
Co-authored-by: Silvan <silvan.reusser@gmail.com>
2022-10-03 14:09:59 +00:00
Max Peintner
f517077be3
fix(login): improve multifactor prompt ( #4474 )
...
* login mfa improvements
* mfa toggles
* styles
* mfa styles
* go rel
* better translations for mfa u2f
* revert goreleaser format
2022-10-03 13:48:24 +02:00
Fabi
f40931e81e
fix: change descriptions and password rule placement ( #4425 )
...
* fix: change descriptions and password rule placement
* fix: passwordless descriptions, remove language and gender from register
* fix: less technical texts on login
* fix: texts
* fix: texts
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
* Update internal/api/ui/login/static/i18n/it.yaml
* update e2e test
* fix radio
* fix: chinese text corrections
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
* Update internal/api/ui/login/static/i18n/it.yaml
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Livio Spring <livio.a@gmail.com>
2022-09-28 15:08:45 +02:00
Stefan Benz
2957407b5b
fix: correct oidcsettings management ( #4413 )
...
* fix(oidcsettings): corrected projection, unittests and added the add endpoint
* fix(oidcsettings): corrected default handling and instance setup
* fix: set oidc settings correctly in console
* cleanup
* e2e test
* improve e2e test
* lint e2e
Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
2022-09-27 12:53:49 +02:00
Stefan Benz
b32c02a39b
feat(instance): add functionality to update instance ( #4440 )
...
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
2022-09-27 06:58:50 +00:00
Silvan
a7646d5a78
fix(translations): language options and init user ( #4449 )
...
fix(translations): add chinese to language options
fix(translations): correct key for password confirm label
2022-09-23 17:24:06 +02:00
Livio Spring
7dfa1925cc
feat: restrict login to specific org by id (scope) ( #4294 )
...
* feat: add new org scope
* change default of UserLoginMustBeDomain to false
* return resource owner claims
* fix: use email style for first user
* fix: ensure email style for default users (backwards compatibility)
* change to external domain (as it was before UserLoginMustBeDomain change)
* update e2e tests to use email style usernames
* document new scope
* lint e2e
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
2022-09-23 12:08:10 +00:00
Silvan
2bc19f55b5
fix(projections): unique index names ( #4439 )
2022-09-22 15:18:52 +02:00
Livio Spring
7aef0ccfee
fix(email): set correct logo url ( #4426 )
2022-09-21 14:18:55 +00:00
Stefan Benz
2c1f9ac4a8
feat(org): add org metadata functionality ( #4234 )
...
* feat(org): add org metadata functionality
* fix(metadata): add unit tests and review for org metadata
* fix(org-metadata): move endpoints to /
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
2022-09-20 14:32:09 +00:00
Livio Spring
05cb672cff
fix(login): custom texts for pages called directly form mail link ( #4415 )
...
* fix(login): translate init password correctly
* refactor: no error return params
* fix(login): custom texts for pages called directly form mail link
* fix custom text on registration pages
Co-authored-by: adlerhurst <silvan.reusser@gmail.com>
2022-09-20 07:22:47 +00:00
Silvan
84b20bc4e1
fix(auth): always get token by id and user id ( #4371 )
...
Co-authored-by: Florian Forster <florian@zitadel.com>
2022-09-15 12:59:40 +00:00
Stefan Benz
69230def56
fix(user): move check if user is existing from user idp link ( #4363 )
...
* fix(user): move check if user is existing from user idp link
* fix(user): correct unit tests for user link bulk
* fix(user): correct placement of existing user check for user link
Co-authored-by: Silvan <silvan.reusser@gmail.com>
2022-09-14 12:21:23 +00:00
Stefan Benz
7a5f7f82cf
feat(saml): implementation of saml for ZITADEL v2 ( #3618 )
2022-09-12 18:18:08 +02:00
George
8ab85afd15
feat: internationalization Chinese ( #4222 )
...
* feat: internationalization chinese
* typo: optimize the semantic expression of copywriting
* Update internal/api/ui/login/static/i18n/zh.yaml
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update console/src/assets/i18n/it.json
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update console/src/assets/i18n/en.json
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update console/src/assets/i18n/zh.json
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/api/ui/login/static/i18n/zh.yaml
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update console/src/assets/i18n/it.json
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update console/src/assets/i18n/it.json
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update console/src/assets/i18n/fr.json
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update console/src/assets/i18n/en.json
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update console/src/assets/i18n/en.json
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update console/src/assets/i18n/fr.json
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update console/src/assets/i18n/fr.json
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* minor: add Chinese to other language file
* Update console/src/app/app.module.ts
Co-authored-by: Max Peintner <max@caos.ch>
* Update console/src/app/app.module.ts
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: Max Peintner <max@caos.ch>
2022-09-08 15:15:31 +02:00
Stefan Benz
5052aa1c12
fix(assets): correct type column in assets ( #4295 )
...
* fix(asssets): correct remove asset objects with text column
* fix(assets): type asset_type, correct and add unit tests
* fix(assets): set unspecified objecttype to empty string
Co-authored-by: Livio Spring <livio.a@gmail.com>
2022-09-08 09:39:38 +02:00
Livio Spring
04ce8b2479
fix: remove idps from org login policy after reset ( #4327 )
2022-09-07 14:17:52 +02:00
Livio Spring
4723e911f4
fix: provider type column in idp_login_policy_links projection ( #4325 )
2022-09-06 06:39:03 +00:00
Livio Spring
279b487961
fix: use correct db schema ( #4308 )
2022-09-05 08:29:32 +00:00
Livio Spring
5aa91ad105
fix: improve performance ( #4300 )
...
## Note
This release requires a setup step to fully improve performance.
Be sure to start ZITADEL with an appropriate command (zitadel start-from-init / start-from-setup)
## Changes
- fix: only run projection scheduler on active instances
- fix: set default for concurrent instances of projections to 1 (for scheduling)
- fix: create more indexes on eventstore.events table
- fix: get current sequence for token check (improve reread performance)
2022-09-02 14:05:13 +00:00
Livio Spring
adb5394ae3
fix: login text changes ( #4269 )
...
* fix: omit empty (zero) dates
* overwrite current date on save
* update date on reset
* smtp
* disable reset
Co-authored-by: Max Peintner <max@caos.ch>
2022-09-02 10:29:06 +02:00
Silvan
2f647ce9a2
fix: initial failures ( #4291 )
...
* fix(cmd): read configuration correctly
* fix(database): read weakly typed config
* fix(database): correct handling of update columns
Co-authored-by: Livio Spring <livio.a@gmail.com>
2022-09-01 07:24:26 +00:00
Livio Spring
32b751a3a0
fix: WebAuthN (registration / login) and list on users ( #4290 )
...
* fix: WebAuthN when running under non default port
* fix: remove notification schema from list of views / failed events
* fix: auth method column type in user auth methods
2022-09-01 09:10:07 +02:00
Silvan
b9795b5c57
fix(amr): add pwd because password is wrong ( #4284 )
...
* fix(amr): add pwd because password is wrong
* docs: deprecation notice
* docs: nicer wording
* Update docs/docs/apis/openidoauth/claims.md
Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Livio Spring <livio.a@gmail.com>
2022-08-31 08:16:31 +00:00
Silvan
77b4fc5487
feat(database): support for postgres ( #3998 )
...
* beginning with postgres statements
* try pgx
* use pgx
* database
* init works for postgres
* arrays working
* init for cockroach
* init
* start tests
* tests
* TESTS
* ch
* ch
* chore: use go 1.18
* read stmts
* fix typo
* tests
* connection string
* add missing error handler
* cleanup
* start all apis
* go mod tidy
* old update
* switch back to minute
* on conflict
* replace string slice with `database.StringArray` in db models
* fix tests and start
* update go version in dockerfile
* setup go
* clean up
* remove notification migration
* update
* docs: add deploy guide for postgres
* fix: revert sonyflake
* use `database.StringArray` for daos
* use `database.StringArray` every where
* new tables
* index naming,
metadata primary key,
project grant role key type
* docs(postgres): change to beta
* chore: correct compose
* fix(defaults): add empty postgres config
* refactor: remove unused code
* docs: add postgres to self hosted
* fix broken link
* so?
* change title
* add mdx to link
* fix stmt
* update goreleaser in test-code
* docs: improve postgres example
* update more projections
* fix: add beta log for postgres
* revert index name change
* prerelease
* fix: add sequence to v1 "reduce paniced"
* log if nil
* add logging
* fix: log output
* fix(import): check if org exists and user
* refactor: imports
* fix(user): ignore malformed events
* refactor: method naming
* fix: test
* refactor: correct errors.Is call
* ci: don't build dev binaries on main
* fix(go releaser): update version to 1.11.0
* fix(user): projection should not break
* fix(user): handle error properly
* docs: correct config example
* Update .releaserc.js
* Update .releaserc.js
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
2022-08-31 07:52:43 +00:00
Silvan
60b2092d2c
fix(import): check exists ( #4268 )
...
* fix(import): check if org exists and user
* refactor: imports
* fix(user): ignore malformed events
* refactor: method naming
* fix: test
* refactor: correct errors.Is call
2022-08-29 17:09:07 +02:00
Livio Spring
64f589c435
fix: read custom texts for pages called directly form mail link ( #4255 )
...
* fix: read custom texts for pages called directly form mail link
* log errors
2022-08-26 08:53:11 +00:00
Livio Spring
e1a981928c
fix: action query ( #4257 )
2022-08-26 08:38:41 +00:00
Livio Spring
47930c6a85
fix: handle instanceID correctly in auth projections ( #4252 )
2022-08-25 13:38:35 +00:00
Livio Spring
4c26665b93
fix: improve user grants precondition checks ( #4237 )
...
* fix: improve user grants precondition checks
* build rc
* fix prerelease
* fix: build image
* remove branch from releaserc
2022-08-24 11:38:59 +02:00
Livio Spring
69534a2f7a
feat: allow JWT for ZITADEL APIs ( #4206 )
...
* feat: allow JWT for ZITADEL APIs
* improve getTokenIDAndSubject
* comment
Co-authored-by: Silvan <silvan.reusser@gmail.com>
2022-08-23 08:02:36 +02:00
Livio Spring
cc612fed07
fix: trim spaces for usernames and organization names ( #4217 )
2022-08-19 15:00:14 +02:00
Livio Spring
d656b3f3c9
fix: instance interceptors return NotFound (404) error for unknown hosts ( #4184 )
...
* fix: instance interceptors return "NotFound" (404) error for unknown hosts
* fix tests
2022-08-17 06:07:41 +00:00
Livio Spring
dcac08b1d5
fix: caching of assets (correct headers and versioned avatar and variables.css url) ( #4118 )
...
* fix: caching of assets (correct headers and versioned avatar url)
* serve variables.css versioned and extend shared max age of assets
* fix TestCommandSide_AddHumanAvatar
* refactor: const types
* refactor: return values
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
Co-authored-by: adlerhurst <silvan.reusser@gmail.com>
2022-08-16 05:04:36 +00:00
Stefan Benz
2388764f1c
fix(IDP): correct org idp response resourceowner ( #4165 )
2022-08-11 11:56:59 +02:00
Livio Spring
02d2032790
feat: add ZITADEL project id scope ( #4146 )
...
* feat: add ZITADEL project id scope
* update documentation
* documentation
* fix scopes
* change to lowercase
2022-08-09 09:45:59 +02:00
cyb3rd0g1
2746b4f3a7
fix(login): update automatic registration to pull form data ( #4103 )
...
* update automatic registration to pull form data
* prioritize form-derived usernames when registering via external oidc
* allow for customization of displayname on registration via external IdP
* Update internal/api/ui/login/external_login_handler.go
Co-authored-by: Livio Spring <livio.a@gmail.com>
* Update internal/api/ui/login/external_login_handler.go
Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Livio Spring <livio.a@gmail.com>
2022-08-08 13:05:38 +00:00
Livio Spring
dba0fdcf7b
fix: handle user metadata projection correctly ( #4098 )
2022-08-03 09:50:23 +02:00
Livio Spring
6b30be77e6
fix: restrict domain names to alphanumeric characters ( #4104 )
...
* fix: restrict domain names to alphanumeric characters
* improve error message
2022-08-03 07:25:25 +00:00
Livio Spring
fbd04d399d
fix: hide / show username suffix correctly on registration pages ( #4097 )
2022-08-02 16:31:35 +02:00
Fabi
8448f88f94
fix: remove user login must be domain check on machine users ( #4065 )
...
* fix: remove user login must be domain check on machine users
* fix: test
Co-authored-by: Livio Spring <livio.a@gmail.com>
2022-07-28 14:33:59 +00:00
Livio Spring
f610d48569
feat: prepare for multiple database types ( #4068 )
...
BREAKING CHANGE: the database and admin user config has changed.
2022-07-28 16:25:42 +02:00
Stefan Benz
bc9a85daf3
feat: V2 alpha import and export of organizations ( #3798 )
...
* feat(import): add functionality to import data into an instance
* feat(import): move import to admin api and additional checks for nil pointer
* fix(export): export implementation with filtered members and grants
* fix: export and import implementation
* fix: add possibility to export hashed passwords with the user
* fix(import): import with structure of v1 and v2
* docs: add v1 proto
* fix(import): check im imported user is already existing
* fix(import): add otp import function
* fix(import): add external idps, domains, custom text and messages
* fix(import): correct usage of default values from login policy
* fix(export): fix renaming of add project function
* fix(import): move checks for unit tests
* expect filter
* fix(import): move checks for unit tests
* fix(import): move checks for unit tests
* fix(import): produce prerelease from branch
* fix(import): correctly use provided user id for machine user imports
* fix(import): corrected otp import and added guide for export and import
* fix: import verified and primary domains
* fix(import): add reading from gcs, s3 and localfile with tracing
* fix(import): gcs and s3, file size correction and error logging
* Delete docker-compose.yml
* fix(import): progress logging and count of resources
* fix(import): progress logging and count of resources
* log subscription
* fix(import): incorporate review
* fix(import): incorporate review
* docs: add suggestion for import
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
* fix(import): add verification otp event and handling of deleted but existing users
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: Fabienne <fabienne.gerschwiler@gmail.com>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
2022-07-28 13:42:35 +00:00
Livio Spring
d620126aab
fix: handle nil pointer when login hint is invalid ( #4066 )
...
* fix: handle nil pointer when login hint is invalid
* mention encoding for login_hint
2022-07-28 14:11:10 +02:00
Livio Spring
096e12d3d0
fix: set domain verified if domain policy does not require validation ( #4061 )
...
* fix: set domain verified if domain policy does not require validation
* handle domain claimed
2022-07-28 13:18:31 +02:00
Livio Spring
5bd9badbcf
fix: project grants ( #4031 )
...
* fix: filter granted memberships correctly
* fix: only show changes of granted project
* Apply suggestions from code review
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
* Update internal/query/user_membership.go
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
2022-07-27 07:55:44 +00:00
Livio Spring
c15577c1f9
fix: use default redirect uri when not passed on end_session endpoint ( #4054 )
...
* fix: use default redirect uri when not passed on end_session endpoint
* instance state
2022-07-27 09:49:16 +02:00
Fabi
8e94d2377b
fix: remove adding automatically global role on register ( #4050 )
2022-07-27 07:04:17 +02:00
Livio Spring
ccde49b323
feat: extend claims of introspection response ( #4018 )
...
* feat: extend claims of introspection response
* update oidc lib
2022-07-25 09:38:15 +02:00
Livio Spring
9fc8a43642
fix: handle events of PATs correctly ( #4024 )
2022-07-22 13:47:55 +02:00
Livio Spring
aed7010508
fix: scheduling ( #3978 )
...
* fix: improve scheduling
* build pre-release
* fix: locker
* fix: user handler and print stack in case of panic in reducer
* chore: remove sentry
* fix: improve handler projection and implement tests
* more tests
* fix: race condition in tests
* Update internal/eventstore/repository/sql/query.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* fix: implemented suggested changes
* fix: lock statement
Co-authored-by: Silvan <silvan.reusser@gmail.com>
2022-07-22 10:08:39 +00:00
Livio Spring
91206967b4
fix: reset custom org domain policy ( #4014 )
2022-07-21 13:46:59 +02:00
Livio Spring
95481c2e0b
feat: allow system config changes ( #3876 )
...
* feat: run repeatable setup steps
* feat: react to system config changes
* renaming
2022-07-20 11:20:49 +02:00
Silvan
2707461ea6
fix(login): trigger bulk on reset password ( #3970 )
...
Co-authored-by: Livio Spring <livio.a@gmail.com>
2022-07-19 09:07:37 +02:00
Livio Spring
9b6dad18cb
feat: provide metrics endpoint ( #3902 )
...
* feat: provide metrics endpoint
* config
* enable otel metrics by default
Co-authored-by: Florian Forster <florian@caos.ch>
2022-07-18 10:42:32 +02:00
Livio Spring
fa4bc47b3e
feat: specify org member roles in org setup ( #3950 )
2022-07-12 13:38:47 +00:00
Silvan
d7988563e5
fix: update login names on user trigger bulk ( #3934 )
2022-07-08 11:04:29 +00:00
Max Peintner
190a454140
feat(console): deactivate, reactivate org, fix signedout route ( #3834 )
...
* org detail
* feat: org deactivate, reactivate
* statehandler includes instead of startsWith
* fix signout route
* Update console/src/assets/i18n/de.json
Co-authored-by: Livio Spring <livio.a@gmail.com>
* french
Co-authored-by: Livio Spring <livio.a@gmail.com>
2022-07-08 06:58:23 +00:00
Livio Spring
6463b716ce
fix: handle org de-/reactivate correctly ( #3924 )
2022-07-07 13:13:17 +00:00
Silvan
9271623ec9
fix: load auth users ( #3907 )
...
* fix: load auth users
* fix: add triggerbulk
* fix: build pre-release
* fix even more french translations
* fix: build version
Co-authored-by: Livio Spring <livio.a@gmail.com>
2022-07-07 14:58:00 +02:00
Livio Spring
427d21ad45
fix: (french) translations ( #3922 )
2022-07-07 10:58:24 +00:00
mffap
3267daedda
feat: internationalization french ( #3890 )
...
* initial
* console_fr updates
* console_en fix issues
* notifications_fr
* internal_static_i18n_fr fixes
* internal_static_i18n_en fix
* docs
* search parameter
* missing italian translations
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
2022-07-06 13:40:11 +00:00
Livio Spring
a1d404291d
fix(notify): notify user in projection ( #3889 )
...
* start implement notify user in projection
* fix(stmt): add copy to multi stmt
* use projections for notify users
* feat: notifications from projections
* feat: notifications from projections
* cleanup
* pre-release
* fix tests
* fix types
* fix command
* fix queryNotifyUser
* fix: build version
* fix: HumanPasswordlessInitCodeSent
Co-authored-by: adlerhurst <silvan.reusser@gmail.com>
2022-07-06 14:09:49 +02:00
Livio Spring
8434eaa9c0
fix: require user verification for passwordless authentication ( #3896 )
2022-07-06 08:32:05 +02:00
Livio Spring
12d4d3ea0b
fix: enable env vars in setup steps (and deprecate admin subcommand) ( #3871 )
...
* fix: enable env vars in setup steps (and deprecate admin subcommand)
* fix tests and error text
2022-06-27 10:32:34 +00:00
Livio Spring
30f553dea1
feat: provide instance info on admin api and return version on instances responses (admin and system api) ( #3802 )
...
* feat: provide instance info on admin api and return version on instances responses (admin and system api)
* fix GetMyInstance
2022-06-27 09:12:06 +00:00
Livio Spring
1b4740c78f
fix: primary domain scope (handle context correctly) ( #3872 )
2022-06-27 09:24:23 +02:00
Livio Spring
ed5721d39e
feat: TLS support ( #3862 )
...
* feat: TLS support
* add comment
* fix comment
2022-06-24 12:38:22 +00:00
Max Peintner
70a108deeb
chore(console): add customer portal link ( #3837 )
...
* feat: add customer portal link
* add customer portal to environment.json from backend
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-06-24 11:18:54 +00:00
Silvan
c244dcaffd
fix(notify): correct get user ( #3836 )
2022-06-16 13:49:45 +00:00
Silvan
e1cfc242ab
fix(auth): read user if not found after create ( #3835 )
2022-06-16 13:06:17 +00:00
Max Peintner
38be00971b
fix(login): text color for idp, footer ( #3830 )
...
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
2022-06-15 16:33:36 +00:00
Silvan
d1bc4a9bc5
fix(notify): fail if required fields are empty ( #3831 )
2022-06-15 16:22:48 +00:00
Fabi
7e35775681
docs(legal): Updated agreements and policies v2 ( #3823 )
...
* tos
* adds cloud service
* cloud service description WIP
* action minute
* service level description
* SAML and last revised
* tos credit and payment
* dpa basic, profile, and payment data
* service description: authenticated requests
* cloud service description: ui
* add notification box
* sla description
* support services
* removes dedicated instance annex
* remove dedicated instance annex sidebar, links
* update dedicated terms
* merge additional terms in sidebar
* privacy formatting
* pp update piid table
* remove cloudflare cookies
* privacy customer portal cookies
* revert editing guides
* dates
* docs: test
* modification of services
* Apply suggestions from code review
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
* add disclaimer to regions list
Co-authored-by: Maximilian Panne <mpa@caos.ch>
Co-authored-by: Maximilian Panne <maximilian.panne@gmail.com>
Co-authored-by: mffap <mpa@zitadel.com>
2022-06-15 08:30:58 +02:00
Silvan
72b696ccb2
fix(system): search for existing domain globally ( #3822 )
2022-06-14 15:45:19 +02:00
Silvan
dd2f31683c
fix(query): realtime data on defined requests ( #3726 )
...
* feat: directly specify factors on addCustomLoginPolicy and return on LoginPolicy responses
* fix proto
* update login policy
* feat: directly specify idp on addCustomLoginPolicy and return on LoginPolicy responses
* fix: tests
* fix(projection): trigger bulk
* refactor: clean projection pkg
* instance should bulk
* fix(query): should trigger bulk on id calls
* tests
* build prerelease
* fix: add shouldTriggerBulk
* fix: test
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: Max Peintner <max@caos.ch>
2022-06-14 07:51:00 +02:00
Max Peintner
1da305f2de
fix(login): idp, link font color ( #3814 )
...
fix: idp, a font color
2022-06-13 09:36:42 +02:00
Livio Spring
f57e3df39d
fix: sms providers ( #3801 )
2022-06-13 08:34:11 +02:00
Livio Spring
6bd5799770
fix: idp styling ( #3797 )
...
* fix: idp styling
* escape idp a color
* elevation on hover
* css gen
Co-authored-by: Max Peintner <max@caos.ch>
2022-06-10 13:17:33 +00:00
Livio Spring
7b0f0b81a3
fix: set instanceID correctly in org project mapping ( #3789 )
2022-06-10 13:12:07 +00:00
Max Peintner
d6cb36db31
fix(console, login): label policy and privacy policy from authservice, login - remove double footer element, mobile ( #3795 )
...
fix: cnsl auth policy, lgn footer mobile
2022-06-10 14:46:59 +02:00
Max Peintner
3500961fbb
fix: add smtp config, remove smtp and sms provider, console adaptations ( #3792 )
...
* fix: add AddSMTPConfig to admin api
* addsmtpconfig
* fix: add RemoveSMTPConfig and RemoveSMSProvider to admin api
* update twilio, token fcn
* fix account switcher, twilio token set, cleanup dialog
* cleanup
* buttons
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-06-10 12:39:38 +02:00
Livio Spring
03a77b381e
fix: password check policy correctly ( #3787 )
...
* fix: password check policy correctly
* fix: password check policy correctly
2022-06-09 13:48:57 +00:00
Livio Spring
7f34ce1891
fix: allow project grants without roles in database ( #3786 )
2022-06-09 11:48:54 +02:00
Livio Spring
a377f2816c
feat: return instance domains on list instances, fix: login policy and avatar url in oidc responses ( #3785 )
...
* feat: return instance domains on list instances
* fix: filter login policy idps correctly
* remove debug
* fix: absolute avatar url in oidc responses
2022-06-08 13:46:24 +02:00
Livio Spring
ace94917da
test: ensure consistency of TestSpooler_awaitError ( #3750 )
2022-06-07 11:40:46 +00:00
Max Peintner
233d80502d
fix(console, login): console - ensure permission is available, login - i18n fixes, input borders, lgn-touched script to add class on blur ( #3760 )
...
* permission restriction, member, login i18n input borders, secondary text
* add touched js
2022-06-07 09:25:56 +00:00
Livio Spring
5e4b38d69b
fix: improve oidc issuer / endpoints ( #3753 )
...
* fix: improve oidc issuer / endpoints
* docs: update endpoints
2022-06-07 10:04:51 +02:00
Livio Amstutz
3a1569bd94
fix: grpc gateway interceptors ( #3767 )
2022-06-03 12:44:04 +00:00
Livio Amstutz
da1f74fde0
fix: update user sessions after avatar or primary domain change ( #3768 )
2022-06-03 12:37:24 +00:00
Livio Amstutz
0baaaf8a05
fix: handle default org id ( #3769 )
2022-06-03 14:30:39 +02:00
Max Peintner
ebb73186b6
fix(console, login): Idp detail and create layout optimization, login - sub formfield link spacing ( #3755 )
...
* idp detail, create layout
* fat finger fix
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-06-03 07:20:56 +00:00
Livio Amstutz
6506ce537d
fix: sql error check ( #3762 )
2022-06-01 16:00:25 +00:00
Livio Amstutz
d65761f388
fix: render only base language in html ( #3759 )
2022-06-01 15:32:18 +02:00
Livio Amstutz
21a0e4a972
feat: get current label and privacy policies ( #3748 )
2022-06-01 09:50:28 +02:00
Livio Amstutz
b0436c995b
fix: return correct empty flow if not found ( #3749 )
2022-06-01 08:11:48 +02:00
Silvan
fb93085430
fix(projection): add missing col to idp login policy links ( #3745 )
...
* fix(projection): add missing col to projection
* refactor: method naming
2022-05-31 20:39:37 +02:00
Silvan
ed36680ea1
fix(query): show views and failed events ( #3743 )
...
* fix(system): show views and failed events
* fix: set correct database on failed events and views
2022-05-31 16:33:50 +02:00
Max Peintner
e3e0207318
fix: login checkbox contrast, login policy factors, asset urls ( #3742 )
...
* checkbox contrast
* idp create before remove, add, asset service
* login policy events
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
2022-05-31 13:51:21 +00:00
Silvan
16c86149be
fix(current_sequence): no error if not found ( #3740 )
2022-05-31 11:50:51 +00:00
Livio Amstutz
81c0ca3337
fix: use issuer for jwt profile check on system api ( #3741 )
2022-05-31 13:11:49 +02:00
Max Peintner
ac65d9d331
fix(login): checkbox, label, container styles ( #3732 )
...
fix: checkbox, label styles
2022-05-31 07:20:39 +00:00
Silvan
3513148cf6
fix: SMTP config in defaults ( #3736 )
...
* fix(command): create smtp provider cmds after domains
* chore(defaults): add smtp configuration
2022-05-30 17:39:18 +02:00
Livio Amstutz
992892a8bb
fix: read key data for system api users from config ( #3731 )
2022-05-30 12:53:21 +00:00
Livio Amstutz
b3f50702f8
feat: directly specify factors/idps on addCustomLoginPolicy and return on LoginPolicy responses ( #3711 )
...
* feat: directly specify factors on addCustomLoginPolicy and return on LoginPolicy responses
* fix proto
* update login policy
* feat: directly specify idp on addCustomLoginPolicy and return on LoginPolicy responses
* fix: tests
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
2022-05-30 11:51:07 +00:00
Livio Amstutz
2fc39c0da0
feat: system api requires authenticated requests ( #3570 )
...
* begin auth
* feat: system api requires authenticated requests
* fix tests
2022-05-30 13:38:30 +02:00
Livio Amstutz
41d78ef523
fix: return absolute url for avatar in user sessions ( #3724 )
...
* fix: return absolute url for avatar in user sessions
* fix: refresh token unique constraint
2022-05-30 11:27:52 +00:00
Max Peintner
e79aab3671
fix: login ui for v2 ( #3712 )
...
* fix: login ui for v2
* a color
* footer
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-05-30 09:03:40 +00:00
Livio Amstutz
737e01bfd2
fix: fix and improve primary keys on projections ( #3708 )
...
* fix: org_domain projection
* fix: projection reset
* fix test
* improve foreign keys on suffixed tables
2022-05-25 14:15:13 +02:00
Livio Amstutz
79452da7d6
fix: check membership from projection ( #3710 )
...
* fix: check membership from projection
* remove authz setup
2022-05-25 14:07:16 +02:00
Alexei-Barnes
09b021b257
feat: Configurable Unique Machine Identification ( #3626 )
...
* feat: Configurable Unique Machine Identification
This change fixes Segfault on AWS App Runner with v2 #3625
The change introduces two new dependencies:
* github.com/drone/envsubst for supporting AWS ECS, which has its metadata endpoint described by an environment variable
* github.com/jarcoal/jpath so that only relevant data from a metadata response is used to identify the machine.
The change ads new configuration (see `defaults.yaml`):
* `Machine.Identification` enables configuration of how machines are uniquely identified - I'm not sure about the top level category `Machine`, as I don't have anything else to add to it. Happy to hear suggestions for better naming or structure here.
* `Machine.Identifiation.PrivateId` turns on or off the existing private IP based identification. Default is on.
* `Machine.Identification.Hostname` turns on or off using the OS hostname to identify the machine. Great for most cloud environments, where this tends to be set to something that identifies the machine uniquely. Enabled by default.
* `Machine.Identification.Webhook` configures identification based on the response to an HTTP GET request. Request headers can be configured, a JSONPath can be set for processing the response (no JSON parsing is done if this is not set), and the URL is allowed to contain environment variables in the format `"${var}"`.
The new flow for getting a unique machine id is:
1. PrivateIP (if enabled)
2. Hostname (if enabled)
3. Webhook (if enabled, to configured URL)
4. Give up and error out.
It's important that init configures machine identity first. Otherwise we could try to get an ID before configuring it. To prevent this from causing difficult to debug issues, where for example the default configuration was used, I've ensured that
the application will generate an error if the module hasn't been configured and you try to get an ID.
Misc changes:
* Spelling and gramatical corrections to `init.go::New()` long description.
* Spelling corrections to `verify_zitadel.go::newZitadel()`.
* Updated `production.md` and `development.md` based on the new build process. I think the run instructions are also out of date, but I'll leave that for someone else.
* `id.SonyFlakeGenerator` is now a function, which sets `id.sonyFlakeGenerator`, this allows us to defer initialization until configuration has been read.
* Update internal/id/config.go
Co-authored-by: Alexei-Barnes <82444470+Alexei-Barnes@users.noreply.github.com>
* Fix authored by @livio-a for tests
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-05-24 16:57:57 +02:00
Livio Amstutz
e1ee89982a
fix: unify commands (and remove todos for checking existence) ( #3696 )
2022-05-24 09:28:17 +00:00
Livio Amstutz
cf6f4d6894
fix(tracing): parsing of fraction ( #3705 )
...
* fix(tracing): parsing of fraction
* log id
2022-05-24 09:18:25 +00:00
mffap
32ccada7a9
chore: more typos ( #3688 )
2022-05-21 22:41:21 +02:00
swazynski
5a2ffd80dc
chore: "EMail" typo ( #3679 )
...
Co-authored-by: Florian Forster <florian@caos.ch>
2022-05-21 11:29:25 +00:00
mffap
4d30d3a7e1
chore: various typos ( #3686 )
...
* fix(cli): typo in clis
* chore: fix typos in guides and readme
* markdown lint
* readme typos
* markdown lint
* typos in security.md
* login de
* login en
* console de
* console en
* Apply suggestions from code review
E-Mail instead of Email
Co-authored-by: Florian Forster <florian@caos.ch>
Co-authored-by: Florian Forster <florian@caos.ch>
2022-05-21 10:44:09 +00:00
Florian Forster
0ba165363e
chore: rename docs links ( #3668 )
2022-05-20 14:32:06 +00:00
Livio Amstutz
62c4a4d08d
fix: return absolute asset urls ( #3676 )
2022-05-20 10:30:12 +02:00
Livio Amstutz
0906c2d513
fix: CORS on assets api ( #3659 )
2022-05-19 14:09:02 +00:00
Silvan
a95b1ab3d0
fix(storage): resolve deadlock occuring durring projection ( #3671 )
2022-05-19 11:44:16 +00:00
Livio Amstutz
c71ccc8a80
fix: improve context handling in projections ( #3638 )
...
* fix: improve context handling in projections
* fix tests
* use as of system time for current sequence
* use as of system time for current sequence
Co-authored-by: Silvan <silvan.reusser@gmail.com>
2022-05-19 08:25:19 +00:00
Livio Amstutz
5901991dd3
fix: asset service (CORS and path in console) and user init ( #3655 )
...
* fix: asset service (CORS and path in console) and user init
* fix tests
* improve comment
2022-05-18 14:10:49 +02:00
Livio Amstutz
616b31c959
fix: token check and error unwrapping ( #3648 )
...
* fix: token check and error unwrapping
* remove unused code
2022-05-18 10:49:16 +02:00
Livio Amstutz
3a63fb765a
fix: cleanup some todos ( #3642 )
...
* cleanup todo
* fix: some todos
2022-05-16 16:35:49 +02:00
Fabi
5c0f527a49
feat: restrict smtp sender address ( #3637 )
...
* fix: check if sender address is custom domain
* fix: check if sender address is custom domain
* fix: check if sender address is custom domain
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-05-16 14:08:47 +00:00
Livio Amstutz
411d7c6c5c
feat: add default redirect uri and handling of unknown usernames ( #3616 )
...
* feat: add possibility to ignore username errors on first login screen
* console changes
* fix: handling of unknown usernames (#3445 )
* fix: handling of unknown usernames
* fix: handle HideLoginNameSuffix on unknown users
* feat: add default redirect uri on login policy (#3607 )
* feat: add default redirect uri on login policy
* fix tests
* feat: Console login policy default redirect (#3613 )
* console default redirect
* placeholder
* validate default redirect uri
* allow empty default redirect uri
Co-authored-by: Max Peintner <max@caos.ch>
* remove wonrgly cherry picked migration
Co-authored-by: Max Peintner <max@caos.ch>
2022-05-16 13:39:09 +00:00
Livio Amstutz
f1fa74a2c0
fix: loginnames in login and mails (eventstore v1 queries) ( #3636 )
...
* fix: loginnames in login and mails (eventstore v1 queries)
* fix: loginnames in login and mails (eventstore v1 queries)
2022-05-16 13:10:10 +00:00
Fabi
c53d5251a7
fix: V2 docs / error messages ( #3611 )
...
* docs: rewrite concept section
* docs: add instance to guides
* chore: error messages
* fix: scenarios
* docs: urls
* docs: change images
* docs: change images
* docs: change images
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-05-16 12:00:33 +00:00
Livio Amstutz
d401439427
fix: unique constraints on instance domain events ( #3635 )
2022-05-16 11:52:54 +02:00
Fabi
48fbf1a28e
feat: add random string to generated domain ( #3634 )
2022-05-16 11:26:24 +02:00
Livio Amstutz
4fcf03c9c8
fix: email sender and template ( #3633 )
2022-05-16 09:52:10 +02:00
Livio Amstutz
024eedc1b5
feat: enable default smtp config on setup ( #3622 )
...
* feat: enable default smtp config on setup
* fix tests
* fix channel order
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
2022-05-13 12:13:07 +00:00
Livio Amstutz
5571db3e1b
feat: improve console caching and provide build info ( #3621 )
...
* feat: improve console caching and provide build info
* Update info.go
2022-05-13 14:06:44 +02:00
Livio Amstutz
734cfdddae
fix: return userID on org setup ( #3623 )
2022-05-13 13:54:48 +02:00
Livio Amstutz
f70990709b
fix: allow single parameter in org unique request ( #3620 )
2022-05-13 11:25:45 +02:00
Fabi
a9f82529ab
fix: add org member ( #3599 )
...
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-05-12 07:34:46 +00:00
Max Peintner
00e042ea44
fix(login): fix avatar.js ( #3614 )
2022-05-11 08:52:17 +02:00
Max Peintner
d431ccb965
feat(console, login): v2 notification settings, login avatar ( #3606 )
...
* instance routing
* instance naming
* org list
* rm isonsystem
* breadcrumb type
* routing
* instance members
* fragment refresh org
* settings pages
* settings list, sidenav grouping, i18n
* org-settings, policy changes
* lint
* grid
* rename grid
* fallback to general
* cleanup
* general settings, remove cards
* sidenav for settings, label policy
* i18n
* header, nav backbuild
* general, project nav rehaul
* login text background adapt
* org nav anim
* org, instance settings, fix policy layout, roles
* i18n, active route for project
* lint
* notification-settings
* idp create redirect, sms provider create, i18n
* oidc configuration
* settings list
* new avatar colors for login
* cleaner js
* avatar theme login
* remove avatar elevation
2022-05-11 08:01:40 +02:00
Livio Amstutz
94e420bb24
fix: env.json caching, readiness and unique lockerIDs ( #3596 )
...
* fix: readiness check
* disable cache for env.json
* always generate unique lockerID
* fix tests
2022-05-04 17:09:49 +02:00
Livio Amstutz
79db247801
feat: set default language on instance ( #3594 )
2022-05-03 15:58:38 +02:00
Livio Amstutz
06a1b52adf
fix: improve interceptor handling ( #3578 )
...
* fix: improve interceptor handling
* fix: improve interceptor handling
Co-authored-by: Florian Forster <florian@caos.ch>
2022-05-02 15:26:54 +00:00
Livio Amstutz
ef6fd5a843
fix: remove 3rd party assets from mail ( #3569 )
2022-05-02 14:41:57 +00:00
Livio Amstutz
861cf07700
feat: permit all features to every instance and organisation ( #3566 )
2022-05-02 11:18:17 +02:00
Silvan
a9f71ba08e
fix(command): reset phone on phone write model to empty if removed ( #3543 )
2022-05-02 11:06:30 +02:00
Livio Amstutz
dc7fdb240b
fix: token verification (don't cache zitadel id system wide) ( #3542 )
2022-04-29 14:16:23 +02:00
Livio Amstutz
2af3e228e4
feat: set service name in tracing ( #3533 )
2022-04-28 17:35:56 +02:00
Livio Amstutz
44a2b81bef
feat: enable tracing ( #3528 )
2022-04-28 14:44:13 +02:00
Livio Amstutz
00f7dbe875
fix: setup instance domain handling ( #3529 )
2022-04-28 10:30:41 +02:00
Fabi
70e98460ab
fix: refactor system api ( #3500 )
...
* fix: refactor system api
* fix: search domains on get instance
* fix: search domains on get instance
* fix: return instance detail
* fix: implement user sorting column (#3469 )
* fix: implement user sorting column
* fix: implement user sorting column
* fix: string column
* isOrderByLower
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: user converter import
* Update instance.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-04-27 15:18:34 +00:00
Livio Amstutz
fd1150f628
fix: check http methods on specific http2 routes ( #3527 )
...
* fix: check headers lowercase
* Update .releaserc.js
* fix: check http methods on specific http2 routes
2022-04-27 13:10:44 +02:00
Livio Amstutz
9ffd83af7d
fix: header matcher of grpc-web route ( #3524 )
2022-04-27 08:10:54 +00:00
Florian Forster
fa9f581d56
chore(v2): move to new org ( #3499 )
...
* chore: move to new org
* logging
* fix: org rename caos -> zitadel
Co-authored-by: adlerhurst <silvan.reusser@gmail.com>
2022-04-26 23:01:45 +00:00
Livio Amstutz
b867eff84c
test: ensure consistency of update multiple sequences test ( #3501 )
2022-04-26 19:41:11 +00:00
Livio Amstutz
e9e332b909
feat: handle CORS for grpc-web ( #3498 )
2022-04-26 16:50:41 +02:00
Livio Amstutz
32986aa60a
feat: handle missing trailing slashes for console and login ( #3490 )
...
* handle calls without trailing slash
* build redirect uris correctly
* handle missing trailing slash for login
* sentry as http middleware
* import
* fix build origin
2022-04-26 12:13:16 +02:00
Livio Amstutz
7a507fe63c
fix: use correct encryption keys in addHuman and set primary instance domain ( #3486 )
...
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
2022-04-25 14:36:10 +00:00
Fabi
0b6eb07e2d
fix: nil pointer on add user (missing phone) ( #3487 )
2022-04-25 14:30:25 +00:00
Livio Amstutz
2c4799c223
feat: complete dynamic domain handling ( #3482 )
...
* feat: dynamic issuer
* feat: default language from context
* remove zitadel docs from defaults
* remove ConsoleOverwriteDir
* remove notification endpoints from defaults
* custom domains in emails
* remove (external) domain
* external domain completely removed, console handling fixed
* fix test
* fix defaults.yaml
2022-04-25 11:16:36 +02:00
Livio Amstutz
75ec73ca4a
feat: dynamic issuer ( #3481 )
...
* feat: dynamic issuer
* dynamic domain handling
* key rotation durations
* feat: dynamic issuer
* make webauthn displayname dynamic
2022-04-25 10:01:17 +02:00
Fabi
3d5891eb11
feat: System api ( #3461 )
...
* feat: start system api
* feat: remove auth
* feat: change gitignore
* feat: run system api
* feat: remove clear view form admin api
* feat: search instances
* feat: add instance
* fix: set primary domain
* Update .gitignore
* fix: add instance
* fix: add instance
* fix: handle errors
* fix: handle instance name
* fix: test
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-04-21 12:37:39 +02:00
Livio Amstutz
a7816a43b1
refactor: remove commandNew struct ( #3465 )
...
* refactor: remove commandNew struct
* requested fixes
2022-04-20 14:59:37 +00:00
Livio Amstutz
1305c14e49
feat: handle instanceID in projections ( #3442 )
...
* feat: handle instanceID in projections
* rename functions
* fix key lock
* fix import
2022-04-19 08:26:12 +02:00
Fabi
c25d853820
feat: Instance domains ( #3444 )
...
* feat: add domain list
* feat: domain tests
* feat: add redirect url on adding instance domain
* Update internal/command/instance_domain.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* feat: remove unused code
* fix
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-04-14 12:19:18 +00:00
Fabi
820a21dce3
feat: validate org domains ( #3387 )
...
* feat: validate org domain command side
* feat: validate org domain query side
* fix: create domain policy
* feat: add reading domain policy on addorg domain
2022-04-13 11:24:03 +02:00
Silvan
db554536a1
fix: v2 setup sequence ( #3437 )
...
* add/register human command done
* validations
* crypto
* move clientid
* keys
* fix: clientID
* remove v2 package
* tests
* tests running
* fix: add init instance to eventstore
* fix: mig
* test(eventstore): create instance
* revert old code
* instance domain from ctx
* chore: rename zitadel app ids
* comments
* fix: test
* fix: mock
* fix: test
2022-04-13 05:42:48 +00:00
Silvan
cea2567e22
fix: v2 human command ( #3435 )
...
* add/register human command done
* validations
* crypto
* move clientid
* keys
* fix: clientID
* remove v2 package
* tests
* tests running
* revert old code
* instance domain from ctx
* chore: rename zitadel app ids
* comments
* fix: test
2022-04-12 16:20:17 +02:00
Livio Amstutz
4a0d61d75a
feat: store assets in database ( #3290 )
...
* feat: use database as asset storage
* being only uploading assets if allowed
* tests
* fixes
* cleanup after merge
* renaming
* various fixes
* fix: change to repository event types and removed unused code
* feat: set default features
* error handling
* error handling and naming
* fix tests
* fix tests
* fix merge
* rename
2022-04-06 06:13:40 +00:00
Livio Amstutz
b949b8fc65
chore(deps): update oidc to 1.2.0 ( #3363 )
...
* chore(deps): update oidc to 1.2.0
* add comment
2022-04-05 07:22:00 +00:00
Fabi
c740ee5d81
feat: Instance commands ( #3385 )
...
* fix: add events for domain
* fix: add/remove domain command side
* fix: add/remove domain command side
* fix: add/remove domain query side
* fix: create instance
* fix: merge v2
* fix: instance domain
* fix: instance domain
* fix: instance domain
* fix: instance domain
* fix: remove domain.IAMID from writemodels
* fix: remove domain.IAMID from writemodels
* fix: remove domain.IAMID from writemodels
* fix: remove domain.IAMID from writemodels
* fix: remove domain.IAMID from writemodels
* fix: remove domain.IAMID from writemodels
* fix: remove domain.IAMID from writemodels
* fix: remove domain.IAMID from writemodels
* fix: remove domain.IAMID from writemodels
* fix: remove domain.IAMID from api
* fix: remove domain.IAMID
* fix: remove domain.IAMID
* fix: add instance domain queries
* fix: fix after merge
* Update auth_request.go
* fix keypair
* remove unused code
* feat: read instance id from context
* feat: remove unused code
* feat: use instance id from context
* some fixes
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-04-05 05:58:09 +00:00
Livio Amstutz
5112aae177
feat: embed console into go binary ( #3391 )
2022-04-04 09:51:35 +02:00
Livio Amstutz
87560157c1
fix: change to repository event types and removed unused code ( #3386 )
...
* fix: change to repository event types and removed unused code
* some fixes
* remove unused code
2022-03-31 11:36:26 +02:00
Elio Bischof
55af4a18a2
feat: ensure google cloud run compatibility ( #3388 )
...
* feat: ensure google cloud run compatibility
* from scratch docker image
* fall back to cloud run container id for sonyflake
2022-03-31 10:49:08 +02:00
Livio Amstutz
958362e6c9
feat: handle instance from context ( #3382 )
...
* commander
* commander
* selber!
* move to packages
* fix(errors): implement Is interface
* test: command
* test: commands
* add init steps
* setup tenant
* add default step yaml
* possibility to set password
* merge v2 into v2-commander
* fix: rename iam command side to instance
* fix: rename iam command side to instance
* fix: rename iam command side to instance
* fix: rename iam command side to instance
* fix: search query builder can filter events in memory
* fix: filters for add member
* fix(setup): add `ExternalSecure` to config
* chore: name iam to instance
* fix: matching
* remove unsued func
* base url
* base url
* test(command): filter funcs
* test: commands
* fix: rename orgiampolicy to domain policy
* start from init
* commands
* config
* fix indexes and add constraints
* fixes
* fix: merge conflicts
* fix: protos
* fix: md files
* setup
* add deprecated org iam policy again
* typo
* fix search query
* fix filter
* Apply suggestions from code review
* remove custom org from org setup
* add todos for verification
* change apps creation
* simplify package structure
* fix error
* move preparation helper for tests
* fix unique constraints
* fix config mapping in setup
* fix error handling in encryption_keys.go
* fix projection config
* fix query from old views to projection
* fix setup of mgmt api
* set iam project and fix instance projection
* fix tokens view
* fix steps.yaml and defaults.yaml
* fix projections
* change instance context to interface
* instance interceptors and additional events in setup
* cleanup
* tests for interceptors
* fix label policy
* add todo
* single api endpoint in environment.json
Co-authored-by: adlerhurst <silvan.reusser@gmail.com>
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
2022-03-29 11:53:19 +02:00
Silvan
c5b99274d7
feat(cli): setup ( #3267 )
...
* commander
* commander
* selber!
* move to packages
* fix(errors): implement Is interface
* test: command
* test: commands
* add init steps
* setup tenant
* add default step yaml
* possibility to set password
* merge v2 into v2-commander
* fix: rename iam command side to instance
* fix: rename iam command side to instance
* fix: rename iam command side to instance
* fix: rename iam command side to instance
* fix: search query builder can filter events in memory
* fix: filters for add member
* fix(setup): add `ExternalSecure` to config
* chore: name iam to instance
* fix: matching
* remove unsued func
* base url
* base url
* test(command): filter funcs
* test: commands
* fix: rename orgiampolicy to domain policy
* start from init
* commands
* config
* fix indexes and add constraints
* fixes
* fix: merge conflicts
* fix: protos
* fix: md files
* setup
* add deprecated org iam policy again
* typo
* fix search query
* fix filter
* Apply suggestions from code review
* remove custom org from org setup
* add todos for verification
* change apps creation
* simplify package structure
* fix error
* move preparation helper for tests
* fix unique constraints
* fix config mapping in setup
* fix error handling in encryption_keys.go
* fix projection config
* fix query from old views to projection
* fix setup of mgmt api
* set iam project and fix instance projection
* imports
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
2022-03-28 10:05:09 +02:00
Fabi
9d4f296c62
fix: rename iam to instance ( #3345 )
...
* fix: rename iam command side to instance
* fix: rename iam command side to instance
* fix: rename iam command side to instance
* fix: rename iam command side to instance
* fix: rename orgiampolicy to domain policy
* fix: merge conflicts
* fix: protos
* fix: md files
* implement deprecated org iam policy again
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-03-24 16:21:34 +00:00
Livio Amstutz
504fe5b761
cherry pick changes from main ( #3371 )
...
* feat: remove exif data from uploaded images (#3221 )
* feat: remove exif tags from images
* feat: remove exif data
* feat: remove exif
* fix: add preferredLoginName to user grant response (#3271 )
* chore: log webauthn parse error (#3272 )
* log error
* log error
* feat: Help link in privacy policy
* fix: convert correct detail data on organization (#3279 )
* fix: handle empty editor users
* fix: add some missing translations (#3291 )
* fix: org policy translations
* fix: metadata event types translation
* fix: translations
* fix: filter resource owner correctly on project grant members (#3281 )
* fix: filter resource owner correctly on project grant members
* fix: filter resource owner correctly on project grant members
* fix: add orgIDs to zitadel permissions request
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
* fix: get IAM memberships correctly in MyZitadelPermissions (#3309 )
* fix: correct login names on auth and notification users (#3349 )
* fix: correct login names on auth and notification users
* fix: migration
* fix: handle resource owner in action flows (#3361 )
* fix merge
* fix: exchange exif library (#3366 )
* fix: exchange exif library
* ignore tiffs
* requested fixes
* feat: Help link in privacy policy
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
2022-03-24 14:00:24 +01:00
Livio Amstutz
56b916a2b0
feat: projections auto create their tables ( #3324 )
...
* begin init checks for projections
* first projection checks
* debug notification providers with query fixes
* more projections and first index
* more projections
* more projections
* finish projections
* fix tests (remove db name)
* create tables in setup
* fix logging / error handling
* add tenant to views
* rename tenant to instance_id
* add instance_id to all projections
* add instance_id to all queries
* correct instance_id on projections
* add instance_id to failed_events
* use separate context for instance
* implement features projection
* implement features projection
* remove unique constraint from setup when migration failed
* add error to failed setup event
* add instance_id to primary keys
* fix IAM projection
* remove old migrations folder
* fix keysFromYAML test
2022-03-23 09:02:39 +01:00
Fabi
5132ebe07c
feat: add tenant column to eventstore ( #3314 )
...
* feat: add tenant column to eventstore
* feat: read tenant from context on push and filter
* Update 07_events_table.sql
* pass tenant to queryFactory
* fix some query tests
* init in tests
* add missing sql files
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-03-15 07:19:02 +01:00
Livio Amstutz
5463244376
feat: encryption keys in database ( #3265 )
...
* enable overwrite of adminUser fields in defaults.yaml
* create schema and table
* cli: create keys
* cli: create keys
* read encryptionkey from db
* merge v2
* file names
* cleanup defaults.yaml
* remove custom errors
* load encryptionKeys on start
* cleanup
* fix merge
* update system defaults
* fix error message
2022-03-14 07:55:09 +01:00
Fabi
7899a0b851
feat: Notification providers config ( #3212 )
...
* feat: add login check lifetimes to login policy
* feat: org features test
* feat: debug notificatiaon events
* feat: debug notification file/log commands
* feat: add requests to proto
* feat: add api for debug notification providers file/log
* feat: add projection for debug notifiication providers
* feat: requests
* feat: merge v2
* feat: add settings proto to generate
* feat: notifiaction providers
* fix: remove unused code
* Update iam_converter.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-03-07 14:22:37 +01:00
Fabi
7d6c933485
feat: OIDC setting ( #3245 )
...
* feat: add oidc config struct
* feat: oidc config command side
* feat: oidc configuration query side
* feat: add translations
* feat: add tests
* feat: add translations
* feat: rename oidc config to oidc settings
* feat: rename oidc config to oidc settings
2022-02-25 16:05:06 +01:00
Fabi
f05d4063bf
feat: Login verification lifetimes ( #3190 )
...
* feat: add login check lifetimes to login policy
* feat: org features test
* feat: read lifetimes from loginpolicy
2022-02-21 16:05:02 +01:00
Fabi
7d235e3eed
feat: Default configs sms provider ( #3187 )
...
* feat: sms config
* feat: twilio as sms provider
* feat:sms projection
* feat: sms queries
* feat: sms queries test
* feat: sms configs
* feat: sms configs sql file
* fix merge
* fix: rename from to sendername
* fix: proto comments
* fix: token as crypto
* fix: tests
* fix: sms config sender name to sender number
* fix: sms config sender name to sender number
* Update email.go
* Update channel.go
* Update V1.111__settings.sql
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-02-21 12:22:20 +00:00
Fabi
e3528ff0b2
feat: Config to eventstore ( #3158 )
...
* feat: add default language to eventstore
* feat: add secret generator configs events
* feat: tests
* feat: secret generators in eventstore
* feat: secret generators in eventstore
* feat: smtp config in eventstore
* feat: smtp config in eventstore
* feat: smtp config in eventstore
* feat: smtp config in eventstore
* feat: smtp config in eventstore
* fix: migrations
* fix migration version
* fix test
* feat: change secret generator type to enum
* feat: change smtp attribute names
* feat: change smtp attribute names
* feat: remove engryption algorithms from command side
* feat: remove engryption algorithms from command side
* feat: smtp config
* feat: smtp config
* format smtp from header
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-02-16 15:49:17 +00:00
Silvan
4272ea6fe1
fix: init sub commands ( #3218 )
...
* fix(init): add sub commands
* fix(init): admin user in config,
test(init): verify functions
* refactor: config, remove second commands
* refactor: init steps
* chore: fix link in readme
* chore: numerate sql files
* Update cmd/admin/initialise/sql/README.md
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update cmd/admin/initialise/sql/README.md
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix(init): remove unused index
* user
* fix database username in defaults.yaml
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-02-16 12:30:49 +00:00
Livio Amstutz
389eb4a27a
feat: run on a single port ( #3163 )
...
* start v2
* start
* run
* some cleanup
* remove v2 pkg again
* simplify
* webauthn
* remove unused config
* fix login path in Dockerfile
* fix asset_generator.go
* health handler
* fix grpc web
* refactor
* merge
* build new main.go
* run new main.go
* update logging pkg
* fix error msg
* update logging
* cleanup
* cleanup
* go mod tidy
* change localDevMode
* fix customEndpoints
* update logging
* comments
* change local flag to external configs
* fix location generated go code
* fix
Co-authored-by: fforootd <florian@caos.ch>
2022-02-14 17:22:30 +01:00
Livio Amstutz
5d4351f47c
feat: merge main into v2 ( #3193 )
...
* feat(console): personal access tokens (#3185 )
* token dialog, pat module
* pat components
* i18n, warn dialog, add token dialog
* cleanup dialog
* clipboard
* return creationDate of pat
* i18n
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix(cockroach): update to 21.2.5 (#3189 )
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
2022-02-11 13:33:31 +01:00
Silvan
b44b48fa1e
fix(init): flags ( #3192 )
2022-02-11 11:52:50 +01:00
Silvan
e8ab237ada
fix(init): prepare database ( #3191 )
...
* fix(init): prepare database
* fix(defaults): cockroach local defaults
2022-02-11 11:02:47 +01:00
Silvan
9d471d0d30
feat(cli): init cli ( #3186 )
...
* feat(cli): initilize cli
* fix(config): allow multiple files
* refactor(cli): constructor naming
* go mod tidy
* refactor: move code out of v2 package
* chore: logging v0.1
* chore: remove old gitignore
* fix func
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-02-09 15:01:19 +01:00
Livio Amstutz
699fdaf68e
feat: add personal access tokens for service users ( #2974 )
...
* feat: add machine tokens
* fix test
* rename to pat
* fix merge and tests
* fix scopes
* fix migration version
* fix test
* Update internal/repository/user/personal_access_token.go
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
2022-02-08 09:37:28 +01:00
Livio Amstutz
78af86db98
fix: checkAdditionalActionAllowed for unlimited ( #3165 )
2022-02-07 10:36:18 +01:00
Livio Amstutz
ab62f2d79d
fix: return full url of assets in admin and mgmt api ( #3157 )
...
* fix: return full url of assets in admin and mgmt api
* remove asset loading over asset service
* remove unused code
Co-authored-by: Max Peintner <max@caos.ch>
2022-02-04 15:02:18 +01:00
Fabi
31bdd3f431
feat: reset custom texts on IAM ( #3160 )
...
* fix: only show factors with state ready
* fix: get iam by id and clean up code
* fix: get iam by id and clean up code
* fix: remove unused code
* feat: add message template remove func to admin api
* fix: proto texts
* fix: proto texts
2022-02-04 10:25:25 +01:00
Fabi
9b1e0730d7
fix: translation ( #3156 )
...
* fix: translation
* fix: translation
* fix: translation
2022-02-03 09:12:28 +01:00
Max Peintner
bd2e7d8133
fix(console): static assets, edit csp ( #3153 )
...
* fix: static font, icons
* mat icon package
* csp
* lint
* rm csp line
2022-02-03 07:21:00 +01:00
Livio Amstutz
1367a2e139
feat: limit amount of active actions ( #3143 )
...
* max actions
* fix: max allowed actions
* fix: max allowed actions
* fix tests
2022-02-02 09:04:05 +01:00
Livio Amstutz
585ebf9a81
fix: user search with login_name (e.g. password reset) ( #3149 )
2022-02-02 08:21:54 +01:00
Livio Amstutz
f96f62a1ab
fix: set correct state of idp in old view ( #3148 )
...
* fix: set correct state of idp in old view
* add italian to language selection in login
2022-02-01 18:12:18 +01:00
Livio Amstutz
bf6cb59b87
fix: list IDPs on Org ( #3141 )
...
* fix: idp query
* fix: remove failed events
2022-02-01 08:32:59 +01:00
Livio Amstutz
990be687c0
fix: handle first key rotation on newly created instance ( #3118 )
2022-01-28 08:24:34 +00:00
Livio Amstutz
e99b7f4972
fix: move activity log to queries and remove old code ( #3096 )
...
* move changes to queries and remove old code
* fix changes query
* remove unused code
* fix sorting
* fix sorting
* refactor and remove old code
* remove accidental go.mod replace
* add missing file
* remove listDetail from ChangesResponse
2022-01-26 10:16:33 +01:00
Livio Amstutz
52da2354a3
fix: set gender correctly in userinfo ( #3112 )
2022-01-25 16:00:38 +01:00
Fabi
ce53fe7814
fix: user with state initial can only be deleted not deactivated ( #3110 )
2022-01-25 11:54:36 +01:00
Livio Amstutz
542651707a
fix: state on user projection ( #3109 )
...
* fix: state on user projection
* fix: state on user projection
* don't change user state on HumanEmailVerifiedEvent
2022-01-25 11:35:38 +01:00
Fabi
b64b5d89ec
fix: send preferred login name on init user mail ( #3105 )
...
* fix: send preferred login name on init user
* trigger gh actions
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-01-24 15:22:27 +01:00
Fabi
01501c5087
feat: iam query ( #3085 )
...
* fix: only show factors with state ready
* fix: get iam by id and clean up code
* fix: get iam by id and clean up code
* fix: remove unused code
2022-01-21 14:01:25 +01:00
Livio Amstutz
37d8e23186
fix: nil pointer in my user changes ( #3086 )
2022-01-21 12:29:40 +00:00
Livio Amstutz
5af7d8315d
fix: metadata query ( #3084 )
2022-01-21 10:30:43 +00:00
Livio Amstutz
3ee3b8f6d3
fix: internal api health check ( #3083 )
2022-01-21 09:32:51 +00:00
Fabi
2592383a7c
fix: only show factors with state ready ( #3081 )
2022-01-21 08:27:57 +00:00
Fabi
b363ddd707
feat: Iam projection ( #3074 )
...
* feat: implement projection for iam and clean up code
* feat: add migration
* fix: remove unused tests
* fix: handler
2022-01-21 08:52:12 +01:00
Livio Amstutz
44d78df4d4
feat: user query ( #3075 )
...
* user queries
* user query
* user query
* user tests
* remove old code
* user metadata
* cleanup
* fix merge
* cleanup
* cleanup
* fixes
2022-01-20 14:40:25 +00:00
Fabi
087ef8d31c
fix: return isDefault on login texts ( #3076 )
...
* fix: add is disabled to login texts
* fix: fix aggregate id
2022-01-20 13:18:49 +00:00
Fabi
5c6df06a7c
feat: auth method query side ( #3068 )
...
* feat: queries for searching mfas and passwordless
* feat: tests for user auth method queries
* Update internal/api/grpc/auth/multi_factor.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/api/grpc/auth/passwordless.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/api/grpc/management/user.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/api/grpc/management/user.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-01-20 13:21:59 +01:00
Livio Amstutz
24aef8d16e
fix: cascading changes for usergrants when managing projects / projectgrants ( #3035 )
2022-01-20 08:33:51 +01:00
Fabi
eaaf76a6eb
fix: default message text query ( #3064 )
2022-01-19 15:13:04 +01:00
Fabi
3902f9adb5
feat: auth method projection ( #3020 )
...
* feat: auth method projection
* feat: auth method projection
* feat: add tests
2022-01-19 14:49:50 +01:00
Livio Amstutz
c2e6fd8f40
fix(query): add user metadata projection ( #3021 )
...
* fix: add metadata projection
* cleanup
2022-01-18 14:15:00 +01:00
Fabi
456d32dd0d
fix: show registration overview ( #3002 )
...
* fix: show registration overview
* fix: render error page to avoid possible loop
2022-01-18 08:46:31 +01:00
Silvan
c542cab4f8
feat(queries): user grants ( #2838 )
...
* refactor(domain): add user type
* fix(projections): start with login names
* fix(login_policy): correct handling of user domain claimed event
* fix(projections): add members
* refactor: simplify member projections
* add migration for members
* add metadata to member projections
* refactor: login name projection
* fix: set correct suffixes on login name projections
* test(projections): login name reduces
* fix: correct cols in reduce member
* test(projections): org, iam, project members
* member additional cols and conds as opt,
add project grant members
* fix(migration): members
* fix(migration): correct database name
* migration version
* migs
* better naming for member cond and col
* split project and project grant members
* prepare member columns
* feat(queries): membership query
* test(queries): membership prepare
* fix(queries): multiple projections for latest sequence
* fix(api): use query for membership queries in auth and management
* feat: org member queries
* fix(api): use query for iam member calls
* fix(queries): org members
* fix(queries): project members
* fix(queries): project grant members
* fix(query): member queries and user avatar column
* member cols
* fix(queries): membership stmt
* fix user test
* fix user test
* fix(projections): add user grant projection
* fix(user_grant): handle state changes
* add state to migration
* fix(management): use query for user grant requests
* merge eventstore-naming into user-grant-projection
* feat(queries): user grants
* fix(migrations): version
* fix(api): user query for user grants
* fix(query): event mappers for usergrant aggregate
* fix(projection): correct aggregate for user grants
* fix(queries): user grant roles as list contains
* cleanup reducers
* fix avater_key to avatar_key
* tests
* cleanup
* cleanup
* add resourceowner query
* fix: user grant project name search query
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
2022-01-14 09:45:50 +00:00
Silvan
a63a995269
fix(projections): add user grant projection ( #2837 )
...
* refactor(domain): add user type
* fix(projections): start with login names
* fix(login_policy): correct handling of user domain claimed event
* fix(projections): add members
* refactor: simplify member projections
* add migration for members
* add metadata to member projections
* refactor: login name projection
* fix: set correct suffixes on login name projections
* test(projections): login name reduces
* fix: correct cols in reduce member
* test(projections): org, iam, project members
* member additional cols and conds as opt,
add project grant members
* fix(migration): members
* fix(migration): correct database name
* migration version
* migs
* better naming for member cond and col
* split project and project grant members
* prepare member columns
* feat(queries): membership query
* test(queries): membership prepare
* fix(queries): multiple projections for latest sequence
* fix(api): use query for membership queries in auth and management
* feat: org member queries
* fix(api): use query for iam member calls
* fix(queries): org members
* fix(queries): project members
* fix(queries): project grant members
* fix(query): member queries and user avatar column
* member cols
* fix(queries): membership stmt
* fix user test
* fix user test
* fix(projections): add user grant projection
* fix(user_grant): handle state changes
* add state to migration
* merge eventstore-naming into user-grant-projection
* fix(migrations): version
* fix(query): event mappers for usergrant aggregate
* fix(projection): correct aggregate for user grants
* cleanup reducers
* add tests for projection
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-01-13 11:02:39 +01:00
Silvan
b8bec25129
fix: use query side for requests ( #2818 )
...
* refactor(domain): add user type
* fix(projections): start with login names
* fix(login_policy): correct handling of user domain claimed event
* fix(projections): add members
* refactor: simplify member projections
* add migration for members
* add metadata to member projections
* refactor: login name projection
* fix: set correct suffixes on login name projections
* test(projections): login name reduces
* fix: correct cols in reduce member
* test(projections): org, iam, project members
* member additional cols and conds as opt,
add project grant members
* fix(migration): members
* fix(migration): correct database name
* migration version
* migs
* better naming for member cond and col
* split project and project grant members
* prepare member columns
* feat(queries): membership query
* test(queries): membership prepare
* fix(queries): multiple projections for latest sequence
* fix(api): use query for membership queries in auth and management
* feat: org member queries
* fix(api): use query for iam member calls
* fix(queries): org members
* fix(queries): project members
* fix(queries): project grant members
* refactor: remove unsued methods in repo-interfaces
* start
* fix(query): membership
* fix(auth): list my project orgs
* fix(query): member queries and user avatar column
* refactor(auth): MyProjectOrgs
* fix(queries): member and membership stmts
* fix user test
* fix(management): use query for project (-grant) members
* fix(admin): use query for member calls
* fix(api): add domain to org mapping
* remove old idp
* membership
* refactor: remove old files
* idp
* refactor: use query for idps and idp user links
* refactor(eventstore): rename EventPusher to Command, EventReader to Event, PushEvents to Push and FilterEvents to Filter
* gloabl org check for org roles
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-01-13 08:58:14 +01:00
Livio Amstutz
3d14653a08
fix: panics ( #2993 )
...
* add missing return
Signed-off-by: Livio Amstutz <livio.a@gmail.com>
* add nil pointer check
Signed-off-by: Livio Amstutz <livio.a@gmail.com>
2022-01-12 15:31:11 +01:00
Livio Amstutz
9ab566fdeb
fix(query): keys ( #2755 )
...
* fix: add keys to projections
* change to multiple tables
* query keys
* query keys
* fix race condition
* fix timer reset
* begin tests
* tests
* remove migration
* only send to keyChannel if not nil
2022-01-12 13:22:04 +01:00
Fabi
41ec3321b0
fix: username mapping of idp ( #2977 )
...
* docs: add primary domain scope section to identity brokering guide
* fix: register overview
* Update external_register_overview.html
* fix mapping
* fix html
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-01-11 16:59:12 +00:00
Livio Amstutz
2355fcb7cf
fix: handle domain remove correctly ( #2978 )
2022-01-11 11:00:42 +00:00
Fabi
d03cab22c0
fix: select account styling ( #2970 )
...
* fix: account selection
* fix: styling of disabled accounts
* fix: styling of disabled accounts
* fix: don't show disabled accounts
* fix: remove unused css
* fix: remove unused css
* fix: remove unused css
* fix: don't show non selectable users
* fix: test
2022-01-10 16:36:31 +01:00
Fabi
e624047d60
fix: account selection ( #2926 )
...
* fix: account selection
* fix: styling of disabled accounts
* fix: styling of disabled accounts
* fix: don't show disabled accounts
* fix: remove unused css
* fix: remove unused css
* fix: remove unused css
2022-01-06 15:01:37 +01:00
Elio Bischof
aa2a1848da
feat: add stdout and filesystem notification channels ( #2925 )
...
* feat: add filesystem and stdout notification channels
* configure through env vars
* compile
* feat: add compact option for debug notification channels
* fix channel mock generation
* avoid sensitive information in error message
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* add review improvements
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-01-06 09:00:24 +01:00
Livio Amstutz
19b095e6c2
fix: check resourceowner not empty string ( #2922 )
...
* fix: check resourceowner not empty string
* fix test
* fix tests
* fix tests of command pkg
* enable RoleSelfManagementGlobal as org member role
* fix tests of query pkg
* Update eventstore_test.go
* update docusaurus
2022-01-06 08:29:58 +01:00
Fabi
6d78fe28f5
fix: Get Label policy in notifications ( #2923 )
2022-01-04 08:35:22 +00:00
Silvan
5640a0ef33
refactor: remove unused code ( #2798 )
...
* refactor(domain): add user type
* fix(projections): start with login names
* fix(login_policy): correct handling of user domain claimed event
* fix(projections): add members
* refactor: simplify member projections
* add migration for members
* add metadata to member projections
* refactor: login name projection
* fix: set correct suffixes on login name projections
* test(projections): login name reduces
* fix: correct cols in reduce member
* test(projections): org, iam, project members
* member additional cols and conds as opt,
add project grant members
* fix(migration): members
* fix(migration): correct database name
* migration version
* migs
* better naming for member cond and col
* split project and project grant members
* prepare member columns
* feat(queries): membership query
* test(queries): membership prepare
* fix(queries): multiple projections for latest sequence
* fix(api): use query for membership queries in auth and management
* feat: org member queries
* fix(api): use query for iam member calls
* fix(queries): org members
* fix(queries): project members
* fix(queries): project grant members
* refactor: remove unsued methods in repo-interfaces
* refactor(eventstore): rename EventPusher to Command, EventReader to Event, PushEvents to Push and FilterEvents to Filter
2022-01-03 11:50:38 +01:00
Silvan
09be70949f
refactor(eventstore): rename EventPusher to Command, EventReader to Event, PushEvents to Push and FilterEvents to Filter ( #2907 )
2022-01-03 09:19:07 +01:00