Fabi
8fe635d3fd
fix: delete external idps from users ( #822 )
2020-10-09 11:07:25 +02:00
Fabi
0bd27bc8e4
fix: add prompt on oidc rp, fix idp and login policy in console ( #769 )
...
* fix: add prompt on oidc rp
* fix: add prompt on oidc rp
* fix: translation
* fix: translation
* fix: not existing login policy
* fix: login policy
* fix: identity provider detail
* fix: idp update
* fix: idps in login policy
* fix: lint
* fix: scss
* fix: external idps on auth user detail
* fix: idp create mapping fields
* fix: remove idp provider
* fix: angular lint
* fix: login policy view
* fix: translations
2020-09-23 16:52:19 +02:00
Fabi
320ddfa46d
feat: Identity brokering ( #730 )
...
* feat: add/ remove external idps
* feat: external idp add /remove
* fix: auth proto
* fix: handle login
* feat: loginpolicy on authrequest
* feat: idp providers on login
* feat: link external idp
* fix: check login policy on check username
* feat: add mapping fields for idp config
* feat: use user org id if existing
* feat: use user org id if existing
* feat: register external user
* feat: register external user
* feat: user linking
* feat: user linking
* feat: design external login
* feat: design external login
* fix: tests
* fix: regenerate login design
* feat: next step test linking process
* feat: next step test linking process
* feat: cascade remove external idps on user
* fix: tests
* fix: tests
* feat: external idp requsts on users
* fix: generate protos
* feat: login styles
* feat: login styles
* fix: link user
* fix: register user on specifig org
* fix: user linking
* fix: register external, linking auto
* fix: remove unnecessary request from proto
* fix: tests
* fix: new oidc package
* fix: migration version
* fix: policy permissions
* Update internal/ui/login/static/i18n/en.yaml
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/ui/login/static/i18n/en.yaml
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/ui/login/handler/renderer.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/ui/login/handler/renderer.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: pr requests
* Update internal/ui/login/handler/link_users_handler.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: pr requests
* fix: pr requests
* fix: pr requests
* fix: login name size
* fix: profile image light
* fix: colors
* fix: pr requests
* fix: remove redirect uri validator
* fix: remove redirect uri validator
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-09-18 13:26:28 +02:00
Fabi
db1d8f4efe
feat: idp and login policy configurations ( #619 )
...
* feat: oidc config
* fix: oidc configurations
* feat: oidc idp config
* feat: add oidc config test
* fix: tests
* fix: tests
* feat: translate new events
* feat: idp eventstore
* feat: idp eventstore
* fix: tests
* feat: command side idp
* feat: query side idp
* feat: idp config on org
* fix: tests
* feat: authz idp on org
* feat: org idps
* feat: login policy
* feat: login policy
* feat: login policy
* feat: add idp func on login policy
* feat: add validation to loginpolicy and idp provider
* feat: add default login policy
* feat: login policy on org
* feat: login policy on org
* fix: id config handlers
* fix: id config handlers
* fix: create idp on org
* fix: create idp on org
* fix: not existing idp config
* fix: default login policy
* fix: add login policy on org
* fix: idp provider search on org
* fix: test
* fix: remove idp on org
* fix: test
* fix: test
* fix: remove admin idp
* fix: logo src as byte
* fix: migration
* fix: tests
* Update internal/iam/repository/eventsourcing/iam.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/iam_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/iam_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/model/login_policy.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/model/login_policy.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/org/repository/eventsourcing/org_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/model/login_policy_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/model/login_policy_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* fix: pr comments
* fix: tests
* Update types.go
* fix: merge request changes
* fix: reduce optimization
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-08-26 09:56:23 +02:00
Livio Amstutz
1a00faf132
fix: claim verified domain from usernames ( #603 )
...
* fix: return orgDomain validationType
* added missing translations for orgDomain activity
* claim org domain
* show message if domain token was requested
* fix tests
* fix tests
Co-authored-by: Max Peintner <max@caos.ch>
2020-08-18 08:57:16 +02:00
Fabi
423b86a03b
feat: sequence and timestamp on searchrequests ( #468 )
...
* feat: reread events
* feat: sequence and timestamo on search requests
* feat: sequence and timestamo on search requests
* fix: better naming
* fix: log errors
* fix: read sequence before search request
2020-07-15 13:24:36 +02:00
Livio Amstutz
3549a8b64e
feat: port reduction ( #323 )
...
* move mgmt pkg
* begin package restructure
* rename auth package to authz
* begin start api
* move auth
* move admin
* fix merge
* configs and interceptors
* interceptor
* revert generate-grpc.sh
* some cleanups
* console
* move console
* fix tests and merging
* js linting
* merge
* merging and configs
* change k8s base to current ports
* fixes
* cleanup
* regenerate proto
* remove unnecessary whitespace
* missing param
* go mod tidy
* fix merging
* move login pkg
* cleanup
* move api pkgs again
* fix pkg naming
* fix generate-static.sh for login
* update workflow
* fixes
* logging
* remove duplicate
* comment for optional gateway interfaces
* regenerate protos
* fix proto imports for grpc web
* protos
* grpc web generate
* grpc web generate
* fix changes
* add translation interceptor
* fix merging
* regenerate mgmt proto
2020-07-08 13:56:37 +02:00
Fabi
5988ec4844
fix: merge migrations ( #363 )
...
* fix: merge migrations
* fix: rename env variable
2020-07-07 16:53:54 +02:00
Fabi
62b654ea18
feat: iam members in admin api ( #272 )
...
* feat: iam members in admin api
* feat: add error id in translate error
* fix: resolve merge conflicts
2020-06-25 08:12:29 +02:00
Fabi
8bfa1a083c
feat: administrator ( #271 )
...
* feat: get views and failed events
* feat: get views and failed events
* feat: get views and failed events
* Update internal/view/repository/sequence.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/view/repository/general_query.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-06-25 08:01:13 +02:00
Fabi
3cd3a238c2
fix: all enums same style ( #262 )
...
* fix: all enums same style
* fix: rename process to reduce
* add some missing enum renaming
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-06-23 14:47:47 +02:00
Fabi
7a6ca24625
feat: multiple domains ( #188 )
...
* check uniqueness on create and register user
* change user email, reserve release unique email
* usergrant unique aggregate
* usergrant uniqueness
* validate UserGrant
* fix tests
* domain is set on username in all orgs
* domain in admin
* org domain sql
* zitadel domain org name
* org domains
* org iam policy
* default org iam policy
* SETUP
* load login names
* login by login name
* login name
* fix: merge master
* fix: merge master
* Update internal/user/repository/eventsourcing/user.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: fix unique domains
* fix: rename env variable
Co-authored-by: adlerhurst <silvan.reusser@gmail.com>
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-06-16 11:40:18 +02:00
Fabi
c4eaeee7af
fix: org member in setup ( #213 )
2020-06-11 16:43:22 +02:00
Livio Amstutz
8a5badddf6
feat: Login, OP Support and Auth Queries ( #177 )
...
* fix: change oidc config
* fix: change oidc config secret
* begin models
* begin repo
* fix: implement grpc app funcs
* fix: add application requests
* fix: converter
* fix: converter
* fix: converter and generate clientid
* fix: tests
* feat: project grant aggregate
* feat: project grant
* fix: project grant check if role existing
* fix: project grant requests
* fix: project grant fixes
* fix: project grant member model
* fix: project grant member aggregate
* fix: project grant member eventstore
* fix: project grant member requests
* feat: user model
* begin repo
* repo models and more
* feat: user command side
* lots of functions
* user command side
* profile requests
* commit before rebase on user
* save
* local config with gopass and more
* begin new auth command (user centric)
* Update internal/user/model/user.go
Co-Authored-By: Livio Amstutz <livio.a@gmail.com>
* Update internal/user/repository/eventsourcing/model/address.go
Co-Authored-By: Livio Amstutz <livio.a@gmail.com>
* Update internal/user/repository/eventsourcing/model/address.go
Co-Authored-By: Livio Amstutz <livio.a@gmail.com>
* Update internal/user/repository/eventsourcing/model/email.go
Co-Authored-By: Livio Amstutz <livio.a@gmail.com>
* Update internal/user/repository/eventsourcing/model/email.go
Co-Authored-By: Livio Amstutz <livio.a@gmail.com>
* Update internal/user/repository/eventsourcing/model/email.go
Co-Authored-By: Livio Amstutz <livio.a@gmail.com>
* Update internal/user/repository/eventsourcing/model/mfa.go
Co-Authored-By: Livio Amstutz <livio.a@gmail.com>
* Update internal/user/repository/eventsourcing/model/mfa.go
Co-Authored-By: Livio Amstutz <livio.a@gmail.com>
* Update internal/user/repository/eventsourcing/model/password.go
Co-Authored-By: Livio Amstutz <livio.a@gmail.com>
* Update internal/user/repository/eventsourcing/model/password.go
Co-Authored-By: Livio Amstutz <livio.a@gmail.com>
* Update internal/user/repository/eventsourcing/model/password.go
Co-Authored-By: Livio Amstutz <livio.a@gmail.com>
* Update internal/user/repository/eventsourcing/model/phone.go
Co-Authored-By: Livio Amstutz <livio.a@gmail.com>
* Update internal/user/repository/eventsourcing/model/phone.go
Co-Authored-By: Livio Amstutz <livio.a@gmail.com>
* Update internal/user/repository/eventsourcing/model/phone.go
Co-Authored-By: Livio Amstutz <livio.a@gmail.com>
* Update internal/user/repository/eventsourcing/model/user.go
Co-Authored-By: Livio Amstutz <livio.a@gmail.com>
* Update internal/user/repository/eventsourcing/model/user.go
Co-Authored-By: Livio Amstutz <livio.a@gmail.com>
* Update internal/user/repository/eventsourcing/model/user.go
Co-Authored-By: Livio Amstutz <livio.a@gmail.com>
* Update internal/usergrant/repository/eventsourcing/model/user_grant.go
Co-Authored-By: Livio Amstutz <livio.a@gmail.com>
* Update internal/usergrant/repository/eventsourcing/model/user_grant.go
Co-Authored-By: Livio Amstutz <livio.a@gmail.com>
* Update internal/usergrant/repository/eventsourcing/user_grant.go
Co-Authored-By: Livio Amstutz <livio.a@gmail.com>
* Update internal/user/repository/eventsourcing/user_test.go
Co-Authored-By: Livio Amstutz <livio.a@gmail.com>
* Update internal/user/repository/eventsourcing/eventstore_mock_test.go
Co-Authored-By: Livio Amstutz <livio.a@gmail.com>
* changes from mr review
* save files into basedir
* changes from mr review
* changes from mr review
* move to auth request
* Update internal/usergrant/repository/eventsourcing/cache.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/usergrant/repository/eventsourcing/cache.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* changes requested on mr
* fix generate codes
* fix return if no events
* password code
* email verification step
* more steps
* lot of mfa
* begin tests
* more next steps
* auth api
* auth api (user)
* auth api (user)
* auth api (user)
* differ requests
* merge
* tests
* fix compilation error
* mock for id generator
* Update internal/user/repository/eventsourcing/model/password.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/user/repository/eventsourcing/model/user.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* requests of mr
* check email
* begin separation of command and query
* otp
* change packages
* some cleanup and fixes
* tests for auth request / next steps
* add VerificationLifetimes to config and make it run
* tests
* fix code challenge validation
* cleanup
* fix merge
* begin view
* repackaging tests and configs
* fix startup config for auth
* add migration
* add PromptSelectAccount
* fix copy / paste
* remove user_agent files
* fixes
* fix sequences in user_session
* token commands
* token queries and signout
* fix
* fix set password test
* add token handler and table
* handle session init
* add session state
* add user view test cases
* change VerifyMyMfaOTP
* some fixes
* fix user repo in auth api
* cleanup
* add user session view test
* fix merge
* begin oidc
* user agent and more
* config
* keys
* key command and query
* add login statics
* key handler
* start login
* login handlers
* lot of fixes
* merge oidc
* add missing exports
* add missing exports
* fix some bugs
* authrequestid in htmls
* getrequest
* update auth request
* fix userid check
* add username to authrequest
* fix user session and auth request handling
* fix UserSessionsByAgentID
* fix auth request tests
* fix user session on UserPasswordChanged and MfaOtpRemoved
* fix MfaTypesSetupPossible
* handle mfa
* fill username
* auth request query checks new events
* fix userSessionByIDs
* fix tokens
* fix userSessionByIDs test
* add user selection
* init code
* user code creation date
* add init user step
* add verification failed types
* add verification failures
* verify init code
* user init code handle
* user init code handle
* fix userSessionByIDs
* update logging
* user agent cookie
* browserinfo from request
* add DeleteAuthRequest
* add static login files to binary
* add login statik to build
* move generate to separate file and remove statik.go files
* remove static dirs from startup.yaml
* generate into separate namespaces
* merge master
* auth request code
* auth request type mapping
* fix keys
* improve tokens
* improve register and basic styling
* fix ailerons font
* improve password reset
* add audience to token
* all oidc apps as audience
* fix test nextStep
* fix email texts
* remove "not set"
* lot of style changes
* improve copy to clipboard
* fix footer
* add cookie handler
* remove placeholders
* fix compilation after merge
* fix auth config
* remove comments
* typo
* use new secrets store
* change default pws to match default policy
* fixes
* add todo
* enable login
* fix db name
* Auth queries (#179 )
* my usersession
* org structure/ auth handlers
* working user grant spooler
* auth internal user grants
* search my project orgs
* remove permissions file
* my zitadel permissions
* my zitadel permissions
* remove unused code
* authz
* app searches in view
* token verification
* fix user grant load
* fix tests
* fix tests
* read configs
* remove unused const
* remove todos
* env variables
* app_name
* working authz
* search projects
* global resourceowner
* Update internal/api/auth/permissions.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/api/auth/permissions.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* model2 rename
* at least it works
* check token expiry
* search my user grants
* remove token table from authz
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix test
* fix ports and enable console
Co-authored-by: Fabiennne <fabienne.gerschwiler@gmail.com>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
2020-06-05 07:50:04 +02:00
Fabi
a4c7b39552
feat: Policy check ( #149 )
...
* check password complexity policy
* check password complexity policy
* fix tests
* Update internal/admin/repository/eventsourcing/setup/setup.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* changes for mr
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-05-29 08:44:01 +02:00
Fabi
d447f68d78
fix: User checks ( #139 )
...
* check uniqueness on create and register user
* change user email, reserve release unique email
* usergrant unique aggregate
* usergrant uniqueness
* validate UserGrant
* fix tests
2020-05-28 06:49:22 +02:00
Silvan
3025ac577b
feat: org queries ( #136 )
...
* search orgs
* org by domain
* member spooler
* member
* get roles
* tests
* types duration
* use default func for renew
* correct database
* reorder migrations
* delete unused consts
* move get roles to internal
* use prepared org by domain
* implement org in other objects
* add eventstores
2020-05-26 16:46:16 +02:00
Silvan
9e32740eb8
feat: org command sides ( #96 )
...
* start org
* refactor(eventstore): filter in sql for querier
* feat(eventstore): Aggregate precondition
preconditions are checked right before insert. Insert is still transaction save
* feat(eventstore): check preconditions in repository
* test(eventstore): test precondition in models
* test(eventstore): precondition-tests
* start org
* refactor(eventstore): filter in sql for querier
* feat(eventstore): Aggregate precondition
preconditions are checked right before insert. Insert is still transaction save
* feat(admin): start implement org
* feat(eventstore): check preconditions in repository
* fix(eventstore): data as NULL if empty
refactor(eventstore): naming in sequence methods
* feat(admin): org command side
* feat(management): start org-repo
* feat(org): member
* fix: replace ObjectRoot.ID with ObjectRoot.AggregateID
* aggregateID
* add remove,change member
* refactor(org): namings
* refactor(eventstore): querier as type
* fix(precondition): rename validation from precondition to validation
* test(eventstore): isErr func instead of wantErr bool
* fix(tests): Data
* fix(eventstore): correct check for existing events in push,
simplify insert statement
* fix(eventstore): aggregate id public
* test(org): eventsourcing
* test(org): eventstore
* test(org): deactivate, reactivate, orgbyid
* test(org): getMemberByIDs
* tests
* running tests
* add user repo to admin
* thorw not found if no org found
* eventstore tests done
* lauft
* validate if user is already member of org
* modules
* delete unused file
* add member validation test
* return error if unable to validat member
* generate org id once,
set resourceowner of org
* Update internal/admin/repository/eventsourcing/eventstore/org.go
* Update internal/admin/repository/eventsourcing/eventstore/org.go
* Update internal/org/repository/eventsourcing/member_model.go
* Update internal/org/repository/eventsourcing/org.go
* Update internal/org/repository/eventsourcing/org.go
* Update internal/org/repository/eventsourcing/org_member.go
* Update internal/org/repository/eventsourcing/org_member.go
* Update internal/org/repository/eventsourcing/org_model.go
* Update internal/org/repository/eventsourcing/org.go
* Update internal/org/repository/eventsourcing/org_model.go
* Update internal/org/repository/eventsourcing/org_model.go
* typo
* correct user events
* usercreate for setuporg instead of userregister
* set data
* mod
* mod
* tests
* cleanup code
* code styling
* return member on add and change
* change username in startup
* girignore
* orgID as parameter in re-/deactive org
* startup config
* migration for admin_api-user
* probes fro admin
* move unique org
Co-authored-by: Fabiennne <fabienne.gerschwiler@gmail.com>
2020-05-13 14:22:29 +02:00