Livio Amstutz
e5731b0d3b
feat: setup ( #1166 )
...
* add setup steps
* refactoring
* omitempty
* cleanup
* begin org
* create org
* setup org
* setup org
* merge
* fixes
* fixes
* fixes
* add project
* add oidc application
* fix app creation
* add resourceOwner to writemodels
* resource owner
* cleanup
* global org, iam project and iam member in setup
* logs
* logs
* logs
* cleanup
* Update internal/v2/command/project.go
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
* check project state
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
2021-01-12 12:59:51 +01:00
Livio Amstutz
ff87264f95
feat: set up org ( #1157 )
...
* add setup steps
* refactoring
* omitempty
* cleanup
* begin org
* create org
* setup org
* setup org
* merge
* fixes
* fixes
* fixes
2021-01-08 11:33:45 +01:00
Fabi
26c8113930
feat: New event user ( #1156 )
...
* feat: change user command side
* feat: change user command side
* feat: use states on write model
* feat: command and query side in auth api
* feat: auth commands
* feat: check external idp id
* feat: user state check
* fix: error messages
* fix: is active state
2021-01-07 16:06:45 +01:00
Fabi
dc56e298ae
fix: use domain models for v2 eventstore ( #1151 )
...
* fix: use domain models for v2 eventstore
* fix: user domain model
* Update internal/api/grpc/admin/login_policy_converter.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: converter
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-01-05 09:33:45 +01:00
Livio Amstutz
5b84c9b619
Merge branch 'master' into new-eventstore
...
# Conflicts:
# go.mod
# internal/admin/repository/eventsourcing/eventstore/iam.go
# internal/authz/repository/eventsourcing/repository.go
# internal/eventstore/eventstore.go
# internal/setup/config.go
# pkg/grpc/management/mock/management.proto.mock.go
2021-01-05 09:27:42 +01:00
Livio Amstutz
21ffe1b0cb
new pkg structure ( #1150 )
...
* fix: split command query side
* fix: split command query side
* fix: members in correct pkg structure
* fix: label policy in correct pkg structure
* fix: structure
* fix: structure of login policy
* fix: identityprovider structure
* fix: org iam policy structure
* fix: password age policy structure
* fix: password complexity policy structure
* fix: password lockout policy structure
* fix: idp structure
* fix: user events structure
* fix: user write model
* fix: profile email changed command
* fix: address changed command
* fix: user states
* fix: user
* fix: org structure and add human
* begin iam setup command side
* setup
* step2
* step2
* fix: add user
* step2
* isvalid
* fix: folder structure v2 business
Co-authored-by: Fabiennne <fabienne.gerschwiler@gmail.com>
2021-01-04 14:52:13 +01:00
Livio Amstutz
273b7487b3
fix: don't fail if OIDCClientSecretCheckSucceeded event can not be pushed ( #1131 )
2020-12-22 10:41:22 +01:00
Livio Amstutz
71df1bcd0e
fix: improvements for WebAuthN ( #1105 )
...
* add missing translations
* add missing passwordless funcs in api
* remove u2f with verification from setup in login
2020-12-15 16:44:16 +01:00
Livio Amstutz
b71a444e86
fix: primary domain claim ( #1082 )
...
* fix: primary domain scope (overwrite by roles and rogue `:`)
* disable wrong users
* fix test
* show requested org name
* only show domain when selected
2020-12-14 10:54:29 +01:00
Livio Amstutz
077a9a628e
fix: improvements for login flow (incl. webauthn) ( #1026 )
...
* fix: typo ZITADEL uppercase for OTP Issuer
* fix: password validation after change in current user agent
* fix: otp validation after setup in current user agent
* add waiting
* add waiting
* show u2f state
* regenerate css
* add useragentID to webauthn verify
* return mfa attribute in mgmt
* switch between providers
* use preferredLoginName for webauthn display
* some fixes
* correct translations for login
* add some missing event translations
* fix usersession test
* remove unnecessary cancel button on password change done
2020-12-07 12:09:10 +01:00
Livio Amstutz
300ade66a7
feat: add WebAuthN support for passwordless login and 2fa ( #966 )
...
* at least registration prompt works
* in memory test for login
* buttons to start webauthn process
* begin eventstore impl
* begin eventstore impl
* serialize into bytes
* fix: u2f, passwordless types
* fix for localhost
* fix script
* fix: u2f, passwordless types
* fix: add u2f
* fix: verify u2f
* fix: session data in event store
* fix: u2f credentials in eventstore
* fix: webauthn pkg handles business models
* feat: tests
* feat: append events
* fix: test
* fix: check only ready webauthn creds
* fix: move u2f methods to authrepo
* frontend improvements
* fix return
* feat: add passwordless
* feat: add passwordless
* improve ui / error handling
* separate call for login
* fix login
* js
* feat: u2f login methods
* feat: remove unused session id
* feat: error handling
* feat: error handling
* feat: refactor user eventstore
* feat: finish webauthn
* feat: u2f and passwordlss in auth.proto
* u2f step
* passwordless step
* cleanup js
* EndpointPasswordLessLogin
* migration
* update mfaChecked test
* next step test
* token name
* cleanup
* attribute
* passwordless as tokens
* remove sms as otp type
* add "user" to amr for webauthn
* error handling
* fixes
* fix tests
* naming
* naming
* fixes
* session handler
* i18n
* error handling in login
* Update internal/ui/login/static/i18n/de.yaml
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
* Update internal/ui/login/static/i18n/en.yaml
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
* improvements
* merge fixes
* fixes
* fixes
Co-authored-by: Fabiennne <fabienne.gerschwiler@gmail.com>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
2020-12-02 17:00:04 +01:00
Silvan
42f50de790
fix(machine): set creationdate ( #1018 )
...
* fix(machine): set creationdate
* fix(translations): translate `user.human.phone.removed`
2020-11-25 07:42:06 +01:00
Livio Amstutz
376fba72d8
fix: user init mail (for wrong email) ( #891 )
...
* add resendInitialMail
* disable email notifications (when not initialised)
* fix resend init mail
* add tests
* cleanup
* cleanup
* fix tests
* add resend trigger, dialog
* refactor contact component, add sendinitmail fnc
* skip email if empty
* reload user on phone email changes, i18n warndialog on dl
* lint
* rebuild mgmt proto
* remove initial focus
* Update console/src/assets/i18n/de.json
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
2020-11-16 11:43:22 +01:00
Fabi
202aae4954
feat: mfa policy ( #913 )
...
* feat: add mfa to login policy
* feat: add mfa to login policy
* feat: add mfa to login policy
* feat: add mfa to login policy
* feat: add mfa to login policy on org
* feat: add mfa to login policy on org
* feat: append events on policy views
* feat: iam login policy mfa definition
* feat: login policies on orgs
* feat: configured mfas in login process
* feat: configured mfas in login process
* Update internal/ui/login/static/i18n/en.yaml
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: rename software and hardware mfas
* fix: pr requests
* fix user mfa
* fix: test
* fix: oidc version
* fix: oidc version
* fix: proto gen
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: Max Peintner <max@caos.ch>
2020-11-04 11:26:10 +01:00
Fabi
7e56ace9d9
fix: idp provider handler ( #874 )
...
* fix: idp provider handler
* fix: idp provider search
* fix: idp provider search
* fix: error handling
* fix: error handling
* fix: fix read config
2020-10-20 14:26:19 +02:00
Fabi
c3b4c3f264
fix: translations and oidc package update ( #845 )
...
* fix: translation
* fix: translation
* fix: translation
* fix: UserInfo with JWT access token
* fix: dependencies
* fix: dependencies
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-10-16 13:15:19 +02:00
Fabi
fbb30840f1
feat: policies on aggregates ( #799 )
...
* feat: move pw policy
* feat: default pw complexity policy
* fix: org password complexity policy
* fix: org password complexity policy
* fix: pw complexity policy with setup
* fix: age and lockout policies on aggregates
* fix: migration
* fix: org iam policy
* fix: org iam policy
* fix: org iam policy
* fix: tests
* fix: policy request
* fix: merge master
* fix(console): policies frontend (#817 )
* fix policy build
* fix: age, complexity, lockout policies
* fix: ready return err of setup not done
* fix: fix remove policies in spoolers
* fix: fix remove policies in spoolers
* feat(console): policy settings for iam and org (#824 )
* fix policy build
* fix: age, complexity, lockout policies
* fix pwd complexity
* policy remove action
* add imports
* fix accounts card, enable mgmt login policy
* lint
* add iam policy to admin
* toasts, i18n, show default
* routing, i18n
* reset policy, toast i18n, cleanup, routing
* policy delete permission
* lint style
* delete iam policy
* delete non project from grid list, i18n
* lint ts, style
* fix: remove instead delete
* feat(console): delete external idp from user (#835 )
* dialog i18n, delete column and function
* dialog i18n
* fix rm button
* Update console/src/assets/i18n/de.json
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
* Update console/src/assets/i18n/de.json
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
* fix: revert env, rename policy, remove comments
* fix: lowercase sich
* fix: pr requests
* Update internal/iam/repository/eventsourcing/eventstore_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* fix: tests
* fix: tests
* fix(console): policies (#839 )
* fix: nil pointer on get userdata (#815 )
* fix: external login (#818 )
* fix: external login
* fix: external login
* feat(console): delete user (#819 )
* add action col to user table, i18n
* delete user from detail component
* lint
* fix(console): cleanup user detail and member components, user/me redirect, permission guards, filter, org policy guard, user table, scss cleanup (#808 )
* fix: remove user.write guard for filtering
* border color
* fix user routing from member tables
* idp detail layout
* generic contact component
* fix redirect to auth user, user grant disable
* disable policy action without permission, i18n
* user-create flex fix, contact ng-content
* rm unused styles
* sidenav divider
* lint
* chore(deps-dev): bump @angular/cli from 10.1.3 to 10.1.4 in /console (#806 )
* fix: user session with external login (#797 )
* fix: user session with external login
* fix: tests
* fix: tests
* fix: change idp config name
* fix(container): stop copying / and instead only copy zitadel (#691 )
* chore: stop copying / and instead only copy zitadel
* Update Dockerfile
* Update release.yml
* enable anchors debug
* fix(container): don't copy alpine content into scratch execpt pwd
* chore: remove need step
* merge master
* chore(deps-dev): bump @angular/cli from 10.1.3 to 10.1.4 in /console
Bumps [@angular/cli](https://github.com/angular/angular-cli ) from 10.1.3 to 10.1.4.
- [Release notes](https://github.com/angular/angular-cli/releases )
- [Commits](https://github.com/angular/angular-cli/compare/v10.1.3...v10.1.4 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Florian Forster <florian@caos.ch>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps-dev): bump @angular/language-service from 10.1.3 to 10.1.4 in /console (#805 )
* fix: user session with external login (#797 )
* fix: user session with external login
* fix: tests
* fix: tests
* fix: change idp config name
* fix(container): stop copying / and instead only copy zitadel (#691 )
* chore: stop copying / and instead only copy zitadel
* Update Dockerfile
* Update release.yml
* enable anchors debug
* fix(container): don't copy alpine content into scratch execpt pwd
* chore: remove need step
* merge master
* chore(deps-dev): bump @angular/language-service in /console
Bumps [@angular/language-service](https://github.com/angular/angular/tree/HEAD/packages/language-service ) from 10.1.3 to 10.1.4.
- [Release notes](https://github.com/angular/angular/releases )
- [Changelog](https://github.com/angular/angular/blob/master/CHANGELOG.md )
- [Commits](https://github.com/angular/angular/commits/10.1.4/packages/language-service )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Florian Forster <florian@caos.ch>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps-dev): bump codelyzer from 6.0.0 to 6.0.1 in /console (#804 )
* fix: user session with external login (#797 )
* fix: user session with external login
* fix: tests
* fix: tests
* fix: change idp config name
* fix(container): stop copying / and instead only copy zitadel (#691 )
* chore: stop copying / and instead only copy zitadel
* Update Dockerfile
* Update release.yml
* enable anchors debug
* fix(container): don't copy alpine content into scratch execpt pwd
* chore: remove need step
* merge master
* chore(deps-dev): bump codelyzer from 6.0.0 to 6.0.1 in /console
Bumps [codelyzer](https://github.com/mgechev/codelyzer ) from 6.0.0 to 6.0.1.
- [Release notes](https://github.com/mgechev/codelyzer/releases )
- [Changelog](https://github.com/mgechev/codelyzer/blob/master/CHANGELOG.md )
- [Commits](https://github.com/mgechev/codelyzer/commits/6.0.1 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Florian Forster <florian@caos.ch>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps-dev): bump @angular-devkit/build-angular from 0.1000.8 to 0.1001.4 in /console (#803 )
* fix: user session with external login (#797 )
* fix: user session with external login
* fix: tests
* fix: tests
* fix: change idp config name
* fix(container): stop copying / and instead only copy zitadel (#691 )
* chore: stop copying / and instead only copy zitadel
* Update Dockerfile
* Update release.yml
* enable anchors debug
* fix(container): don't copy alpine content into scratch execpt pwd
* chore: remove need step
* merge master
* chore(deps-dev): bump @angular-devkit/build-angular in /console
Bumps [@angular-devkit/build-angular](https://github.com/angular/angular-cli ) from 0.1000.8 to 0.1001.4.
- [Release notes](https://github.com/angular/angular-cli/releases )
- [Commits](https://github.com/angular/angular-cli/commits )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Florian Forster <florian@caos.ch>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Max Peintner <max@caos.ch>
* chore(deps): bump uuid from 8.3.0 to 8.3.1 in /console (#802 )
* fix: user session with external login (#797 )
* fix: user session with external login
* fix: tests
* fix: tests
* fix: change idp config name
* fix(container): stop copying / and instead only copy zitadel (#691 )
* chore: stop copying / and instead only copy zitadel
* Update Dockerfile
* Update release.yml
* enable anchors debug
* fix(container): don't copy alpine content into scratch execpt pwd
* chore: remove need step
* merge master
* chore(deps): bump uuid from 8.3.0 to 8.3.1 in /console
Bumps [uuid](https://github.com/uuidjs/uuid ) from 8.3.0 to 8.3.1.
- [Release notes](https://github.com/uuidjs/uuid/releases )
- [Changelog](https://github.com/uuidjs/uuid/blob/master/CHANGELOG.md )
- [Commits](https://github.com/uuidjs/uuid/compare/v8.3.0...v8.3.1 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Florian Forster <florian@caos.ch>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* create memberstable as common component
* iam member cleanup
* iam + org m table, user table service user avatar
* toast config
* fix selection emitter
* fix project grant table width
* project grant members refactor
* theme optimizations
* member table col delete
* lint
* fix table row color
* refactor grey color
* lint scss
* org list redirect on click, fix user table undef
* refresh table after grant add
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Florian Forster <florian@caos.ch>
* fix(console): intercept navigator.language, set browser lang as default for user without explicit setting, user table outline, member create dialog import (#820 )
* i18n interceptor, set language to browser lang
* nullcheck
* rm external idp log
* fix module imports, rm user displayname from i18n
* Update console/src/assets/i18n/de.json
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
* fix: delete external idps from users (#822 )
* fix(console): permission regex, account switcher null check, restrict app and member create access (#821 )
* fix member table disable, gerneal regexp
* fix user session card, app disable
* memberships max count
* fix policy permissions
* permission check for member add dialog
* lint
* rm accounts log
* rm id regex
* fix: handle usermemberships on project and project grant delete (#825 )
* fix: go handler
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Florian Forster <florian@caos.ch>
* fix: tests
* fix: not needed error handling
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Florian Forster <florian@caos.ch>
2020-10-15 10:27:13 +02:00
Fabi
0bd27bc8e4
fix: add prompt on oidc rp, fix idp and login policy in console ( #769 )
...
* fix: add prompt on oidc rp
* fix: add prompt on oidc rp
* fix: translation
* fix: translation
* fix: not existing login policy
* fix: login policy
* fix: identity provider detail
* fix: idp update
* fix: idps in login policy
* fix: lint
* fix: scss
* fix: external idps on auth user detail
* fix: idp create mapping fields
* fix: remove idp provider
* fix: angular lint
* fix: login policy view
* fix: translations
2020-09-23 16:52:19 +02:00
Fabi
320ddfa46d
feat: Identity brokering ( #730 )
...
* feat: add/ remove external idps
* feat: external idp add /remove
* fix: auth proto
* fix: handle login
* feat: loginpolicy on authrequest
* feat: idp providers on login
* feat: link external idp
* fix: check login policy on check username
* feat: add mapping fields for idp config
* feat: use user org id if existing
* feat: use user org id if existing
* feat: register external user
* feat: register external user
* feat: user linking
* feat: user linking
* feat: design external login
* feat: design external login
* fix: tests
* fix: regenerate login design
* feat: next step test linking process
* feat: next step test linking process
* feat: cascade remove external idps on user
* fix: tests
* fix: tests
* feat: external idp requsts on users
* fix: generate protos
* feat: login styles
* feat: login styles
* fix: link user
* fix: register user on specifig org
* fix: user linking
* fix: register external, linking auto
* fix: remove unnecessary request from proto
* fix: tests
* fix: new oidc package
* fix: migration version
* fix: policy permissions
* Update internal/ui/login/static/i18n/en.yaml
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/ui/login/static/i18n/en.yaml
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/ui/login/handler/renderer.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/ui/login/handler/renderer.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: pr requests
* Update internal/ui/login/handler/link_users_handler.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: pr requests
* fix: pr requests
* fix: pr requests
* fix: login name size
* fix: profile image light
* fix: colors
* fix: pr requests
* fix: remove redirect uri validator
* fix: remove redirect uri validator
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-09-18 13:26:28 +02:00
Silvan
5a8cafcae5
fix: JWT Profile ( #748 )
...
* fix: correct env var for tracing type
* fix: local env tracing
* fix: key in detail as string
* fix: implement storage
* fix: machine key by id
fix: store public key as bytes instead of crypto value
* update oidc pkg
* dont check origins for service account tokens
* fix: scopes
* fix: dependencies
* fix: dependencies
* fix: remove unused code
* fix: variable naming
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-09-17 08:49:33 +02:00
Silvan
5abd5b0505
feat: split users into human and machine ( #470 )
...
* feat(management): service accounts
* chore: current go version
* init
* refactor: apis
* feat(internal): start impl of service account
* chore: start impl of machine/human users
* code compiles
* fix: tests
* fix: tests
* fix: add new event types to switches
* chore: add cases to event types
* fix(management): definitive proto messages
* fix: machine/human
* fix: add missing tables as todos
* fix: remove unused permissions
* fix: refactoring
* fix: refactor
* fix: human registered
* fix: user id
* fix: logid
* fix: proto remove //equal
* chore(management): remove no comment
* fix: human mfas
* fix: user subobjects
* chore: rename existing to better name
* fix: username in user (#634 )
* fix: username in user
* fix: username
* fix remove unused code
* fix add validations
* fix: use new user in all apis
* fix: regexp for username in api
* fix: fill user data for human and machine (#638 )
* fix: fill Display name grant/member handlers
fix: add description to grant/member objects in api
fix: check if user is human in login
* fix: remove description from member and grant
* chore: remove todos
* feat: machine keys
* fix: implement missing parts
* feat: machine key management view
* fix: remove keys from machine view
* fix: set default expiration date
* fix: get key by ids
* feat: add machine keys in proto
* feat: machine keys
* fix: add migration
* fix: mig
* fix: correct method name
* feat: user search
* feat: user search
* fix: log ids
* fix partial authconfig prompt, domain c perm
* membership read check
* contributor refresh trigger, observe org write
* fix: migrations
* fix(console): machine build (#660 )
* frontend 1
* fix html bindings
* trailing comma
* user permissions, project deactivate
* fix(console): human view (#661 )
* fix search user view, user detail form
* rm log
* feat(console): user services list and create (#663 )
* fix search user view, user detail form
* rm log
* machine list
* generic table component
* create user service
* proove table for undefined values
* tmp disable user link if machine
* lint
* lint styles
* user table lint
* Update console/src/assets/i18n/de.json
Co-authored-by: Florian Forster <florian@caos.ch>
* feat(console): service user detail view, keys cr_d, fix search user autocomplete (#664 )
* service users for sidenav, routing
* i18n
* back routes
* machine detail form
* update machine detail, fix svc user grants
* keys table
* add key dialog, timestamp creation
* check permission on create, delete, fix selection
* lint ts, scss
* Update console/src/assets/i18n/de.json
* Apply suggestions from code review
Co-authored-by: Florian Forster <florian@caos.ch>
* allow user grants for project.write
* management service
* fix mgmt service
* feat: Machine keys (#655 )
* fix: memberships (#633 )
* feat: add iam members to memberships
* fix: search project grants
* fix: rename
* feat: idp and login policy configurations (#619 )
* feat: oidc config
* fix: oidc configurations
* feat: oidc idp config
* feat: add oidc config test
* fix: tests
* fix: tests
* feat: translate new events
* feat: idp eventstore
* feat: idp eventstore
* fix: tests
* feat: command side idp
* feat: query side idp
* feat: idp config on org
* fix: tests
* feat: authz idp on org
* feat: org idps
* feat: login policy
* feat: login policy
* feat: login policy
* feat: add idp func on login policy
* feat: add validation to loginpolicy and idp provider
* feat: add default login policy
* feat: login policy on org
* feat: login policy on org
* fix: id config handlers
* fix: id config handlers
* fix: create idp on org
* fix: create idp on org
* fix: not existing idp config
* fix: default login policy
* fix: add login policy on org
* fix: idp provider search on org
* fix: test
* fix: remove idp on org
* fix: test
* fix: test
* fix: remove admin idp
* fix: logo src as byte
* fix: migration
* fix: tests
* Update internal/iam/repository/eventsourcing/iam.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/iam_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/iam_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/model/login_policy.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/model/login_policy.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/org/repository/eventsourcing/org_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/model/login_policy_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/model/login_policy_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* fix: pr comments
* fix: tests
* Update types.go
* fix: merge request changes
* fix: reduce optimization
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: reread user mfas, preferred loginname as otp account name (#636 )
* fix: reread user mfas
* fix: use preferred login name as otp account name
* fix: tests
* fix: reduce (#635 )
* fix: management reduce optimization
* fix: reduce optimization
* fix: reduce optimization
* fix: merge master
* chore(deps): bump github.com/gorilla/schema from 1.1.0 to 1.2.0 (#627 )
Bumps [github.com/gorilla/schema](https://github.com/gorilla/schema ) from 1.1.0 to 1.2.0.
- [Release notes](https://github.com/gorilla/schema/releases )
- [Commits](https://github.com/gorilla/schema/compare/v1.1.0...v1.2.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps): bump github.com/gorilla/mux from 1.7.4 to 1.8.0 (#624 )
Bumps [github.com/gorilla/mux](https://github.com/gorilla/mux ) from 1.7.4 to 1.8.0.
- [Release notes](https://github.com/gorilla/mux/releases )
- [Commits](https://github.com/gorilla/mux/compare/v1.7.4...v1.8.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps): bump github.com/DATA-DOG/go-sqlmock from 1.4.1 to 1.5.0 (#591 )
Bumps [github.com/DATA-DOG/go-sqlmock](https://github.com/DATA-DOG/go-sqlmock ) from 1.4.1 to 1.5.0.
- [Release notes](https://github.com/DATA-DOG/go-sqlmock/releases )
- [Commits](https://github.com/DATA-DOG/go-sqlmock/compare/v1.4.1...v1.5.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore: auto assign issues and PR to ZTIADEL project board (#643 )
* Create main.yml
* Update main.yml
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix(console): project grant members, update deps (#645 )
* fix: searchprojectgrantmembers
* chore(deps-dev): bump @angular/cli from 10.0.6 to 10.0.7 in /console (#622 )
Bumps [@angular/cli](https://github.com/angular/angular-cli ) from 10.0.6 to 10.0.7.
- [Release notes](https://github.com/angular/angular-cli/releases )
- [Commits](https://github.com/angular/angular-cli/compare/v10.0.6...v10.0.7 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps-dev): bump @angular-devkit/build-angular in /console (#626 )
Bumps [@angular-devkit/build-angular](https://github.com/angular/angular-cli ) from 0.1000.6 to 0.1000.7.
- [Release notes](https://github.com/angular/angular-cli/releases )
- [Commits](https://github.com/angular/angular-cli/commits )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Max Peintner <max@caos.ch>
* chore(deps-dev): bump @types/jasmine from 3.5.12 to 3.5.13 in /console (#623 )
Bumps [@types/jasmine](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jasmine ) from 3.5.12 to 3.5.13.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jasmine )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps-dev): bump ts-node from 8.10.2 to 9.0.0 in /console (#629 )
Bumps [ts-node](https://github.com/TypeStrong/ts-node ) from 8.10.2 to 9.0.0.
- [Release notes](https://github.com/TypeStrong/ts-node/releases )
- [Commits](https://github.com/TypeStrong/ts-node/compare/v8.10.2...v9.0.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* update packlock
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore: delete main.yml (#648 )
* fix: usergrant (#650 )
* fix(console): mfa refresh after verification, member eventemitter (#651 )
* refresh mfa
* fix: detail link from contributors
* lint
* feat: add domain verification notification (#649 )
* fix: dont (re)generate client secret with auth type none
* fix(cors): allow Origin from request
* feat: add origin allow list and fix some core issues
* rename migration
* fix UserIDsByDomain
* feat: send email to users after domain claim
* username
* check origin on userinfo
* update oidc pkg
* fix: add migration 1.6
* change username
* change username
* remove unique email aggregate
* change username in mgmt
* search global user by login name
* fix test
* change user search in angular
* fix tests
* merge
* userview in angular
* fix merge
* Update pkg/grpc/management/proto/management.proto
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
* Update internal/notification/static/i18n/de.yaml
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
* fix
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
* fix: translation (#647 )
* fix: translation
* fix: translation
* fix: translation
* fix: remove unused code
* fix: log err
* fix: migration numbers (#652 )
* chore: issue / feature templates (#642 )
* feat: machine keys
* fix: implement missing parts
* feat: machine key management view
* fix: remove keys from machine view
* feat: global org read (#657 )
* fix: set default expiration date
* fix: get key by ids
* feat: add machine keys in proto
* feat: machine keys
* fix: add migration
* fix: mig
* fix: correct method name
* feat: user search
* feat: user search
* fix: log ids
* fix: migrations
* fix(console): machine build (#660 )
* frontend 1
* fix html bindings
* trailing comma
* fix(console): human view (#661 )
* fix search user view, user detail form
* rm log
* feat(console): user services list and create (#663 )
* fix search user view, user detail form
* rm log
* machine list
* generic table component
* create user service
* proove table for undefined values
* tmp disable user link if machine
* lint
* lint styles
* user table lint
* Update console/src/assets/i18n/de.json
Co-authored-by: Florian Forster <florian@caos.ch>
* feat(console): service user detail view, keys cr_d, fix search user autocomplete (#664 )
* service users for sidenav, routing
* i18n
* back routes
* machine detail form
* update machine detail, fix svc user grants
* keys table
* add key dialog, timestamp creation
* check permission on create, delete, fix selection
* lint ts, scss
* Update console/src/assets/i18n/de.json
* Apply suggestions from code review
Co-authored-by: Florian Forster <florian@caos.ch>
* refactor: protos
* fix(management): key expiration date
* fix: check if user is human
* fix: marshal key details
* fix: correct generate login names
* fix: logid
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Fabiennne <fabienne.gerschwiler@gmail.com>
Co-authored-by: Florian Forster <florian@caos.ch>
* fix: naming
* refactor: findings
* fix: username
* fix: mfa upper case
* fix: tests
* fix: add translations
* reactivatemyorg req typeö
* fix: projectType for console
* fix: user changes
* fix: translate events
* fix: event type translation
* fix: remove unused types
Co-authored-by: Fabiennne <fabienne.gerschwiler@gmail.com>
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Florian Forster <florian@caos.ch>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-08-31 17:48:01 +02:00
Fabi
db1d8f4efe
feat: idp and login policy configurations ( #619 )
...
* feat: oidc config
* fix: oidc configurations
* feat: oidc idp config
* feat: add oidc config test
* fix: tests
* fix: tests
* feat: translate new events
* feat: idp eventstore
* feat: idp eventstore
* fix: tests
* feat: command side idp
* feat: query side idp
* feat: idp config on org
* fix: tests
* feat: authz idp on org
* feat: org idps
* feat: login policy
* feat: login policy
* feat: login policy
* feat: add idp func on login policy
* feat: add validation to loginpolicy and idp provider
* feat: add default login policy
* feat: login policy on org
* feat: login policy on org
* fix: id config handlers
* fix: id config handlers
* fix: create idp on org
* fix: create idp on org
* fix: not existing idp config
* fix: default login policy
* fix: add login policy on org
* fix: idp provider search on org
* fix: test
* fix: remove idp on org
* fix: test
* fix: test
* fix: remove admin idp
* fix: logo src as byte
* fix: migration
* fix: tests
* Update internal/iam/repository/eventsourcing/iam.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/iam_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/iam_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/model/login_policy.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/model/login_policy.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/org/repository/eventsourcing/org_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/model/login_policy_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/model/login_policy_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* fix: pr comments
* fix: tests
* Update types.go
* fix: merge request changes
* fix: reduce optimization
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-08-26 09:56:23 +02:00
Livio Amstutz
4e1e8a714a
fix: cors ( #621 )
...
* fix: dont (re)generate client secret with auth type none
* fix(cors): allow Origin from request
* feat: add origin allow list and fix some core issues
* rename migration
* fix UserIDsByDomain
* check origin on userinfo
* update oidc pkg
2020-08-24 10:06:55 +02:00
Fabi
be923343b0
fix: compliance problems ( #607 )
...
* fix: compliance problems
* fix: at least one redirect uri
* fix: at least one redirect uri
* Update de.yaml
* Update en.yaml
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-08-19 09:56:05 +02:00
Livio Amstutz
1a00faf132
fix: claim verified domain from usernames ( #603 )
...
* fix: return orgDomain validationType
* added missing translations for orgDomain activity
* claim org domain
* show message if domain token was requested
* fix tests
* fix tests
Co-authored-by: Max Peintner <max@caos.ch>
2020-08-18 08:57:16 +02:00
Fabi
5699fe80d5
feat: app handling compliance ( #527 )
...
* feat: check oidc compliance
* fix: add tests
* fix: add oidc config tests
* fix: add oidc config tests user agent
* fix: test oidc config compliance
* fix: test oidc config compliance
* fix: useragent implicit authmethod none
* fix: merge master
* feat: translate compliance problems
* feat: check native app for custom url
* fix: better compliance handling
* fix: better compliance handling
* feat: add odidc dev mode
* fix: remove deprecated request fro management api
* fix: oidc package version
* fix: migration
* fix: tests
* fix: remove unused functions
* fix: generate proto files
* fix: native implicit and code none compliant
* fix: create project
* Update internal/project/model/oidc_config_test.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: tests
* Update internal/project/model/oidc_config.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/project/model/oidc_config.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: tests
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-08-10 09:34:56 +02:00
Livio Amstutz
64f0b191b5
fix: dont (re)generate client secret with auth type none ( #564 )
2020-08-07 13:49:57 +02:00
Livio Amstutz
7015b226ef
feat: add domain verification ( #560 )
...
* feat: add domain verification
* add checks
* add and fix tests
* fix go.mod
* regenerate proto
2020-08-06 15:03:03 +02:00
Fabi
c105bf483b
feat: apiurls, passwordpolicy, userbyid ( #507 )
...
* feat: api doc request
* feat: return zitadel docs
* feat: return zitadel docs
* feat: pw policy min length
* feat: pw policy min length
* fix: semantic
* fix: read missing events on user by id
2020-07-22 16:15:11 +02:00
Fabi
351aac22f8
feat: usergrant ( #489 )
...
* fix: search usergrants only for allowed projects
* fix: check permissions
* fix: check permissions
* fix: check permissions
* Update internal/management/repository/eventsourcing/eventstore/project.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* fix: merge request changes
* fix: variable name
Co-authored-by: Silvan <silvan.reusser@gmail.com>
2020-07-22 14:00:29 +02:00
Silvan
56ed2940e9
fix: oidc translations ( #439 )
...
* fix: oidc translations
* fix: only one domain in org
* fix: translation in english
* Update en.yaml
2020-07-14 16:14:06 +02:00
Silvan
c0f85c2733
feat: localized messages ( #328 )
...
* fix: project by id loads project from view and from eventstore
* fix: correct search key for role
* feat(auth): my user changes
* fix: improve error handling in change converters
* fix: log-id
* feat(translations): event type translations
* feat: localized translations
* fix(translations): correct yaml format
* chore: example
* fix: remove unused code
* correct checkSSL in sql
* chore(modules): update
* chore: refactor interceptors
* fix: improvments
* Update internal/static/i18n/de.yaml
Co-authored-by: Florian Forster <florian@caos.ch>
* Update internal/static/i18n/de.yaml
Co-authored-by: Florian Forster <florian@caos.ch>
* Update internal/static/i18n/de.yaml
Co-authored-by: Florian Forster <florian@caos.ch>
* Update internal/static/i18n/de.yaml
Co-authored-by: Florian Forster <florian@caos.ch>
* Update internal/static/i18n/de.yaml
Co-authored-by: Florian Forster <florian@caos.ch>
* Update internal/static/i18n/de.yaml
Co-authored-by: Florian Forster <florian@caos.ch>
* Update internal/static/i18n/en.yaml
Co-authored-by: Florian Forster <florian@caos.ch>
* Update internal/static/i18n/en.yaml
Co-authored-by: Florian Forster <florian@caos.ch>
* Update internal/static/i18n/en.yaml
Co-authored-by: Florian Forster <florian@caos.ch>
* Update internal/static/i18n/en.yaml
Co-authored-by: Florian Forster <florian@caos.ch>
* Update internal/static/i18n/en.yaml
Co-authored-by: Florian Forster <florian@caos.ch>
* Update internal/static/i18n/de.yaml
Co-authored-by: Florian Forster <florian@caos.ch>
* Update internal/static/i18n/de.yaml
Co-authored-by: Florian Forster <florian@caos.ch>
* Update internal/static/i18n/de.yaml
Co-authored-by: Florian Forster <florian@caos.ch>
* Update internal/static/i18n/de.yaml
Co-authored-by: Florian Forster <florian@caos.ch>
* Update internal/static/i18n/de.yaml
Co-authored-by: Florian Forster <florian@caos.ch>
* Update internal/static/i18n/de.yaml
Co-authored-by: Florian Forster <florian@caos.ch>
* Update internal/static/i18n/de.yaml
Co-authored-by: Florian Forster <florian@caos.ch>
* Update internal/static/i18n/de.yaml
Co-authored-by: Florian Forster <florian@caos.ch>
* Update internal/static/i18n/en.yaml
Co-authored-by: Florian Forster <florian@caos.ch>
* chore(translations): start with upper case on Code
* chore(middleware): move funcs
* add message to grpc web generation
* translation in mgmt and fixes
* fix authoptions
* fix console statik
Co-authored-by: Florian Forster <florian@caos.ch>
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-07-08 09:48:11 +02:00
Fabi
fb2091edc9
fix: add migration ( #361 )
...
* fix: add migration
* fix: add migration
* fix: delete primary domain
* Update en.yaml
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-07-07 14:23:09 +02:00
Livio Amstutz
26634505ba
fix: proper error message when user (and other objects) not found ( #337 )
...
* fix: proper error message when user not found by loginname
* add more not found and fix some typos
2020-07-06 13:18:10 +02:00
Fabi
6556d053b2
feat: translate error messages ( #254 )
...
* feat: translate error messages in error interceptor
* fix: add statik import
* feat: user error msgs
* feat: add translations
* feat: add translations
* feat: add translations
* feat: add translations
* feat: add translations
* feat: add translations
* some fixes and improved error messages
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-06-22 13:51:44 +02:00