TheArchive/zitadel
1
0
Fork 0
mirror of https://github.com/zitadel/zitadel.git synced 2024-12-12 11:04:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
2,825 Commits 166 Branches 1,927 Tags 670 MiB
c20204d84d
Commit Graph

2825 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Elio Bischof
c0ddaf87e6 fix: origin from proxies (#6738) 
* fix: origin from proxies

* test multiple forwarded header values
 2023-10-19 10:35:47 +02:00
Livio Spring
426c4acbfe fix(notification): get origin from all relevant events and fix nil pointer (#6726) 2023-10-19 10:34:52 +02:00
adlerhurst
46187f7619 Merge branch 'main' into next-merge 2023-10-19 10:11:02 +02:00
adlerhurst
9a7517dd2c Merge branch 'main' into next-merge 2023-10-19 10:08:05 +02:00
Miguel Cabrerizo
c06dc106b8
fix(Makefile): add -r to delete .artifacts/grpc (#6697) 2023-10-18 09:46:45 +00:00
Silvan
fb2bd15780
ci: allow restore errors (#6740) 2023-10-17 15:53:00 +00:00
Tim Möhlmann
3bbcc3434a
chore(deps): upgrade to oidc v3 (#6737) 
This pr upgrades oidc to v3 . Function signature changes have been migrated as well. Specifically there are more client calls that take a context now. Where feasable a context is added to those calls. Where a context is not (easily) available context.TODO() is used as a reminder for when it does.

Related to #6619
 2023-10-17 15:19:51 +00:00
Elio Bischof
bb1994c318
fix: origin from proxies (#6738) 
* fix: origin from proxies

* test multiple forwarded header values
 2023-10-17 13:01:47 +00:00
Christoph Schmatzler
7b91d90eb2
docs: fix environment variable name for steps (#6728) 
The yaml schema has a `Machine` object nested inside another one, which was improperly represented in the corresponding environment variable.

Signed-off-by: Christoph Schmatzler <christoph@medium.place>
Co-authored-by: Elio Bischof <elio@zitadel.com>
 2023-10-16 09:59:55 +00:00
Livio Spring
cb0a0f996e
fix(api): add remove otp sms and email to management api (#6721) 
* fix(api): add remove otp sms and email to management api

* fix(console): remove otpsms and otpemail from user

---------

Co-authored-by: peintnermax <max@caos.ch>
 2023-10-16 10:49:02 +03:00
Livio Spring
ce719a3fa4
fix(notification): get origin from all relevant events and fix nil pointer (#6726) 2023-10-13 14:45:38 +00:00
Tim Möhlmann
0af1c65c4c
fix: allow unused keys in hasher config (#6724) 2023-10-13 13:11:20 +00:00
Livio Spring
95889cf576
fix(api): use organization instead of organisation (#6720) 
* fix(api): use organization instead of organisation

* fix test

* docs: add deprecation notice

* remove validation
 2023-10-13 12:37:35 +00:00
Livio Spring
27e03120dc
fix(api): extend client_secret length for generic oauth and oidc providers to 1000 (#6722) 2023-10-13 14:31:39 +03:00
cpli
5a9609ef29
feat(actions): add "zitadel/uuid" module (#6135) 
* feat: add "zitadel/uuid" module

* feat(actions/uuid): add v1, v3, and v4 UUIDs

* add namespaces and improve hash based functions

* add docs

---------

Co-authored-by: Florian Forster <florian@zitadel.com>
Co-authored-by: Livio Spring <livio.a@gmail.com>
 2023-10-13 09:31:23 +02:00
dependabot[bot]
831a21a6e2
chore(deps): bump node from 18-buster to 20-buster in /build (#6258) 
Bumps node from 18-buster to 20-buster.

---
updated-dependencies:
- dependency-name: node
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-10-12 16:51:50 +00:00
Austin Turner
b24e120c66
fix: typo in verify email default text (#6694) 
Fix typo in Verify email default text

Co-authored-by: Elio Bischof <elio@zitadel.com>
 2023-10-12 15:12:22 +00:00
mffap
53034a5fb1
docs(legal): onboarding support services (#6665) 
* docs(legal): onboarding support services

* remove trainings, outline

* wip

* finish

* call to action

* Apply suggestions from code review

Co-authored-by: Florian Forster <florian@zitadel.com>

---------

Co-authored-by: Florian Forster <florian@zitadel.com>
 2023-10-12 13:08:38 +00:00
Tim Möhlmann
c71bf85b7a
feat(api/v2): store user agent details in the session (#6711) 
This change adds the ability to set and get user agent data, such as fingerprint, IP, request headers and a description to the session. All fields are optional.

Closes #6028
 2023-10-12 12:16:59 +00:00
Livio Spring
a272b1201f
fix(api): use (provided) organisation instead of resourceOwner of caller (#6714) 2023-10-12 10:00:36 +02:00
Miguel Cabrerizo
ef18cd2e2c
feat(console): allow setting development mode when creating an OIDC app (#6593) 
* fix: don't show verify domain if policy disabled

* feat: set dev mode on/off when oidc app is created

* fix: linting json files

* fix: add @peintnermax suggestions

---------

Co-authored-by: Max Peintner <max@caos.ch>
 2023-10-11 17:37:14 +02:00
Austin Turner
dad1b4db7f
docs: fix typo in saas.md (#6692) 
* Fix typos in saas docs

Fix typo and remove gender specific pronoun

* Fixed grammar error

---------

Co-authored-by: Fabi <fabienne@zitadel.com>
Co-authored-by: Elio Bischof <elio@zitadel.com>
 2023-10-11 15:05:20 +02:00
Silvan
2fba12d5c2
docs: add technical advisories for eventstore (#6702) 
* docs: add technical advisories for eventstore

---------

Co-authored-by: Florian Forster <florian@zitadel.com>
 2023-10-11 09:13:11 +00:00
Miguel Cabrerizo
7588f8a0bb
fix(console): add jwks uri to app URLs (#6672) 
Co-authored-by: Max Peintner <max@caos.ch>
 2023-10-11 08:27:14 +00:00
Miguel Cabrerizo
2d4cd331da
fix: allow unicode characters in org domains (#6675) 
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
 2023-10-11 09:55:01 +02:00
Max Peintner
412cd144ef
fix(console): remove redundant user api requests, show discovery document loading errors (#6683) 
* optimize user observable

* fix observable guard

* lint

* lint

---------

Co-authored-by: Elio Bischof <elio@zitadel.com>
 2023-10-11 07:02:20 +00:00
Livio Spring
f2d1cd2045
docs(technical advisory): add login ui default context (#6695) 
* docs(technical advisory): add login ui default context

* Update docs/docs/support/advisory/a10003.md

Co-authored-by: Fabi <fabienne@zitadel.com>

---------

Co-authored-by: Fabi <fabienne@zitadel.com>
 2023-10-11 08:20:48 +02:00
Fabi
5bc71f7665
docs: keycloak idp (#6568) 
* docs: keycloak idp

* Update docs/docs/guides/integrate/identity-providers/keycloak.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/integrate/identity-providers/keycloak.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/integrate/identity-providers/keycloak.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/integrate/identity-providers/keycloak.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/integrate/identity-providers/keycloak.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/integrate/identity-providers/keycloak.mdx

Co-authored-by: mffap <mpa@zitadel.com>

---------

Co-authored-by: mffap <mpa@zitadel.com>
 2023-10-11 04:56:41 +00:00
mffap
898787c46f
docs(readme): update authentication methods (#6703) 
Update README.md

- Updates authentication methods
- Smaller changes
 2023-10-10 15:50:21 +00:00
Elio Bischof
8f6cb47567
fix: use triggering origin for notification links (#6628) 
* take baseurl if saved on event

* refactor: make es mocks reusable

* Revert "refactor: make es mocks reusable"

This reverts commit 434ce12a6a.

* make messages testable

* test asset url

* fmt

* fmt

* simplify notification.Start

* test url combinations

* support init code added

* support password changed

* support reset pw

* support user domain claimed

* support add pwless login

* support verify phone

* Revert "support verify phone"

This reverts commit e40503303e.

* save trigger origin from ctx

* add ready for review check

* camel

* test email otp

* fix variable naming

* fix DefaultOTPEmailURLV2

* Revert "fix DefaultOTPEmailURLV2"

This reverts commit fa34d4d2a8.

* fix email otp challenged test

* fix email otp challenged test

* pass origin in login and gateway requests

* take origin from header

* take x-forwarded if present

* Update internal/notification/handlers/queries.go

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>

* Update internal/notification/handlers/commands.go

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>

* move origin header to ctx if available

* generate

* cleanup

* use forwarded header

* support X-Forwarded-* headers

* standardize context handling

* fix linting

---------

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
 2023-10-10 13:20:53 +00:00
Fabian Deifuß
0180779d6d
fix(backend): include removed SMTP config in Query (#6624) (#6673) 
closes #6624

Co-authored-by: Elio Bischof <elio@zitadel.com>
 2023-10-10 12:45:45 +00:00
Miguel Cabrerizo
e66d476c47
fix: meaningful error messages for domain validation (#6677) 
* feat: meaningful error messages for domain validation

* fix: duplicated error code and fix some org codes

* fix: add @peintnermax i18n suggestions

---------

Co-authored-by: Elio Bischof <elio@zitadel.com>
 2023-10-10 12:02:16 +00:00
Dakshitha Ratnayake
89fffd6bd6
docs:Added the keycloak migration guide with new tool (#6642) 
* Added the keycloak migration guide.

* Update docs/docs/guides/migrate/sources/keycloak.md

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>

* Update docs/docs/guides/migrate/sources/keycloak.md

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>

* Update docs/docs/guides/migrate/sources/keycloak.md

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>

* Update docs/docs/guides/migrate/sources/keycloak.md

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>

* Addressed review comments

---------

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
 2023-10-10 13:41:23 +03:00
Livio Spring
4d85013ffb
chore: update stable (#6690) 2023-10-10 08:28:09 +02:00
Livio Spring
907a1611ac
fix(login): error case for unknown usernames correctly (#6689) 
(cherry picked from commit 8549dd7a3d)
 2023-10-10 07:41:16 +02:00
Elio Bischof
377a885e79
docs: fix typos (#6688) 2023-10-09 15:31:16 +00:00
Livio Spring
8549dd7a3d
fix(login): error case for unknown usernames correctly (#6689) 2023-10-09 15:05:25 +00:00
Stefan Benz
3689624232
test: correct used client api call in integration test (#6685) 
fix: correct used client api call in integration test

Co-authored-by: Livio Spring <livio.a@gmail.com>
(cherry picked from commit 6ce11a416a)
 2023-10-09 14:18:57 +02:00
Livio Spring
dee9d8d3a7
Merge branch 'main' into next 
# Conflicts:
#	cmd/start/start.go
#	internal/auth/repository/eventsourcing/eventstore/auth_request.go
#	internal/auth/repository/eventsourcing/repository.go
#	internal/command/main_test.go
#	internal/command/quota.go
#	internal/command/quota_model.go
#	internal/command/quota_model_test.go
 2023-10-09 14:18:29 +02:00
Stefan Benz
6ce11a416a
test: correct used client api call in integration test (#6685) 
fix: correct used client api call in integration test

Co-authored-by: Livio Spring <livio.a@gmail.com>
 2023-10-09 12:09:51 +00:00
Miguel Cabrerizo
8c68f8ed3a
feat(console): only use one save button in SMTP Settings (#6561) 
seperate smtp settings from notification providers
 2023-10-09 11:14:17 +00:00
Livio Spring
827ce8809d
fix: use enum for instance feature in system api (#6682) 
* fix: use enum for instance feature in system api

* add feature.proto to lint ignore
 2023-10-09 12:33:23 +02:00
Livio Spring
8ca053fad3
fix: respect "Ignore unknown usernames" on password reset 
Merge pull request from GHSA-v683-rcxx-vpff

(cherry picked from commit 54676eda98)
 2023-10-09 12:12:16 +02:00
Livio Spring
9696fde676
fix: reduce origin check to tokens issued through code and implicit flow (#6681) 
fix: only check origin for tokens issued to users through apps (code / implicit flow)
 2023-10-09 10:08:18 +00:00
Livio Spring
54676eda98
Merge pull request from GHSA-v683-rcxx-vpff 2023-10-09 11:47:43 +02:00
mffap
b30d8b3ff5
docs(integrate): argo cd (#6523) 
* docs(integrate): argo cd

* update to latest
 2023-10-09 09:35:55 +00:00
Livio Spring
e3ac217424
fix: ensure no events are skipped on token check (#6663) 
fix: ensure no events are skipped on token check
 2023-10-09 09:26:27 +02:00
Stefan Benz
15fd3045e0
feat: add SAML as identity provider (#6454) 
* feat: first implementation for saml sp

* fix: add command side instance and org for saml provider

* fix: add query side instance and org for saml provider

* fix: request handling in event and retrieval of finished intent

* fix: add review changes and integration tests

* fix: add integration tests for saml idp

* fix: correct unit tests with review changes

* fix: add saml session unit test

* fix: add saml session unit test

* fix: add saml session unit test

* fix: changes from review

* fix: changes from review

* fix: proto build error

* fix: proto build error

* fix: proto build error

* fix: proto require metadata oneof

* fix: login with saml provider

* fix: integration test for saml assertion

* lint client.go

* fix json tag

* fix: linting

* fix import

* fix: linting

* fix saml idp query

* fix: linting

* lint: try all issues

* revert linting config

* fix: add regenerate endpoints

* fix: translations

* fix mk.yaml

* ignore acs path for user agent cookie

* fix: add AuthFromProvider test for saml

* fix: integration test for saml retrieve information

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
 2023-09-29 11:26:14 +02:00
Livio Spring
2e99d0fe1b
fix(email): UTF-8 "Q" encode subject header (#6637) 
fix(email): UTF-8 "Q" encode subject header
 2023-09-29 08:53:45 +00:00
Livio Spring
68bfab2fb3
feat(login): use default org for login without provided org context (#6625) 
* start feature flags

* base feature events on domain const

* setup default features

* allow setting feature in system api

* allow setting feature in admin api

* set settings in login based on feature

* fix rebasing

* unit tests

* i18n

* update policy after domain discovery

* some changes from review

* check feature and value type

* check feature and value type
 2023-09-29 08:21:32 +00:00