Commit Graph

3176 Commits

Author SHA1 Message Date
adlerhurst
9c069806c4 ci(lint): use ref_base instead of main 2023-10-19 10:47:37 +02:00
Elio Bischof
c0ddaf87e6 fix: origin from proxies (#6738)
* fix: origin from proxies

* test multiple forwarded header values
2023-10-19 10:35:47 +02:00
Livio Spring
426c4acbfe fix(notification): get origin from all relevant events and fix nil pointer (#6726) 2023-10-19 10:34:52 +02:00
adlerhurst
46187f7619 Merge branch 'main' into next-merge 2023-10-19 10:11:02 +02:00
adlerhurst
9a7517dd2c Merge branch 'main' into next-merge 2023-10-19 10:08:05 +02:00
Miguel Cabrerizo
c06dc106b8
fix(Makefile): add -r to delete .artifacts/grpc (#6697) 2023-10-18 09:46:45 +00:00
Silvan
fb2bd15780
ci: allow restore errors (#6740) 2023-10-17 15:53:00 +00:00
Tim Möhlmann
3bbcc3434a
chore(deps): upgrade to oidc v3 (#6737)
This pr upgrades oidc to v3 . Function signature changes have been migrated as well. Specifically there are more client calls that take a context now. Where feasable a context is added to those calls. Where a context is not (easily) available context.TODO() is used as a reminder for when it does.

Related to #6619
2023-10-17 15:19:51 +00:00
Elio Bischof
bb1994c318
fix: origin from proxies (#6738)
* fix: origin from proxies

* test multiple forwarded header values
2023-10-17 13:01:47 +00:00
Christoph Schmatzler
7b91d90eb2
docs: fix environment variable name for steps (#6728)
The yaml schema has a `Machine` object nested inside another one, which was improperly represented in the corresponding environment variable.

Signed-off-by: Christoph Schmatzler <christoph@medium.place>
Co-authored-by: Elio Bischof <elio@zitadel.com>
2023-10-16 09:59:55 +00:00
Livio Spring
cb0a0f996e
fix(api): add remove otp sms and email to management api (#6721)
* fix(api): add remove otp sms and email to management api

* fix(console): remove otpsms and otpemail from user

---------

Co-authored-by: peintnermax <max@caos.ch>
2023-10-16 10:49:02 +03:00
Livio Spring
ce719a3fa4
fix(notification): get origin from all relevant events and fix nil pointer (#6726) 2023-10-13 14:45:38 +00:00
Tim Möhlmann
0af1c65c4c
fix: allow unused keys in hasher config (#6724) 2023-10-13 13:11:20 +00:00
Livio Spring
95889cf576
fix(api): use organization instead of organisation (#6720)
* fix(api): use organization instead of organisation

* fix test

* docs: add deprecation notice

* remove validation
2023-10-13 12:37:35 +00:00
Livio Spring
27e03120dc
fix(api): extend client_secret length for generic oauth and oidc providers to 1000 (#6722) 2023-10-13 14:31:39 +03:00
cpli
5a9609ef29
feat(actions): add "zitadel/uuid" module (#6135)
* feat: add "zitadel/uuid" module

* feat(actions/uuid): add v1, v3, and v4 UUIDs

* add namespaces and improve hash based functions

* add docs

---------

Co-authored-by: Florian Forster <florian@zitadel.com>
Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-10-13 09:31:23 +02:00
dependabot[bot]
831a21a6e2
chore(deps): bump node from 18-buster to 20-buster in /build (#6258)
Bumps node from 18-buster to 20-buster.

---
updated-dependencies:
- dependency-name: node
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-12 16:51:50 +00:00
Austin Turner
b24e120c66
fix: typo in verify email default text (#6694)
Fix typo in Verify email default text

Co-authored-by: Elio Bischof <elio@zitadel.com>
2023-10-12 15:12:22 +00:00
mffap
53034a5fb1
docs(legal): onboarding support services (#6665)
* docs(legal): onboarding support services

* remove trainings, outline

* wip

* finish

* call to action

* Apply suggestions from code review

Co-authored-by: Florian Forster <florian@zitadel.com>

---------

Co-authored-by: Florian Forster <florian@zitadel.com>
2023-10-12 13:08:38 +00:00
Tim Möhlmann
c71bf85b7a
feat(api/v2): store user agent details in the session (#6711)
This change adds the ability to set and get user agent data, such as fingerprint, IP, request headers and a description to the session. All fields are optional.

Closes #6028
2023-10-12 12:16:59 +00:00
Livio Spring
a272b1201f
fix(api): use (provided) organisation instead of resourceOwner of caller (#6714) 2023-10-12 10:00:36 +02:00
Miguel Cabrerizo
ef18cd2e2c
feat(console): allow setting development mode when creating an OIDC app (#6593)
* fix: don't show verify domain if policy disabled

* feat: set dev mode on/off when oidc app is created

* fix: linting json files

* fix: add @peintnermax suggestions

---------

Co-authored-by: Max Peintner <max@caos.ch>
2023-10-11 17:37:14 +02:00
Austin Turner
dad1b4db7f
docs: fix typo in saas.md (#6692)
* Fix typos in saas docs

Fix typo and remove gender specific pronoun

* Fixed grammar error

---------

Co-authored-by: Fabi <fabienne@zitadel.com>
Co-authored-by: Elio Bischof <elio@zitadel.com>
2023-10-11 15:05:20 +02:00
Silvan
2fba12d5c2
docs: add technical advisories for eventstore (#6702)
* docs: add technical advisories for eventstore

---------

Co-authored-by: Florian Forster <florian@zitadel.com>
2023-10-11 09:13:11 +00:00
Miguel Cabrerizo
7588f8a0bb
fix(console): add jwks uri to app URLs (#6672)
Co-authored-by: Max Peintner <max@caos.ch>
2023-10-11 08:27:14 +00:00
Miguel Cabrerizo
2d4cd331da
fix: allow unicode characters in org domains (#6675)
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
2023-10-11 09:55:01 +02:00
Max Peintner
412cd144ef
fix(console): remove redundant user api requests, show discovery document loading errors (#6683)
* optimize user observable

* fix observable guard

* lint

* lint

---------

Co-authored-by: Elio Bischof <elio@zitadel.com>
2023-10-11 07:02:20 +00:00
Livio Spring
f2d1cd2045
docs(technical advisory): add login ui default context (#6695)
* docs(technical advisory): add login ui default context

* Update docs/docs/support/advisory/a10003.md

Co-authored-by: Fabi <fabienne@zitadel.com>

---------

Co-authored-by: Fabi <fabienne@zitadel.com>
2023-10-11 08:20:48 +02:00
Fabi
5bc71f7665
docs: keycloak idp (#6568)
* docs: keycloak idp

* Update docs/docs/guides/integrate/identity-providers/keycloak.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/integrate/identity-providers/keycloak.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/integrate/identity-providers/keycloak.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/integrate/identity-providers/keycloak.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/integrate/identity-providers/keycloak.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/integrate/identity-providers/keycloak.mdx

Co-authored-by: mffap <mpa@zitadel.com>

---------

Co-authored-by: mffap <mpa@zitadel.com>
2023-10-11 04:56:41 +00:00
mffap
898787c46f
docs(readme): update authentication methods (#6703)
Update README.md

- Updates authentication methods
- Smaller changes
2023-10-10 15:50:21 +00:00
Elio Bischof
8f6cb47567
fix: use triggering origin for notification links (#6628)
* take baseurl if saved on event

* refactor: make es mocks reusable

* Revert "refactor: make es mocks reusable"

This reverts commit 434ce12a6a.

* make messages testable

* test asset url

* fmt

* fmt

* simplify notification.Start

* test url combinations

* support init code added

* support password changed

* support reset pw

* support user domain claimed

* support add pwless login

* support verify phone

* Revert "support verify phone"

This reverts commit e40503303e.

* save trigger origin from ctx

* add ready for review check

* camel

* test email otp

* fix variable naming

* fix DefaultOTPEmailURLV2

* Revert "fix DefaultOTPEmailURLV2"

This reverts commit fa34d4d2a8.

* fix email otp challenged test

* fix email otp challenged test

* pass origin in login and gateway requests

* take origin from header

* take x-forwarded if present

* Update internal/notification/handlers/queries.go

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>

* Update internal/notification/handlers/commands.go

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>

* move origin header to ctx if available

* generate

* cleanup

* use forwarded header

* support X-Forwarded-* headers

* standardize context handling

* fix linting

---------

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
2023-10-10 13:20:53 +00:00
Fabian Deifuß
0180779d6d
fix(backend): include removed SMTP config in Query (#6624) (#6673)
closes #6624

Co-authored-by: Elio Bischof <elio@zitadel.com>
2023-10-10 12:45:45 +00:00
Miguel Cabrerizo
e66d476c47
fix: meaningful error messages for domain validation (#6677)
* feat: meaningful error messages for domain validation

* fix: duplicated error code and fix some org codes

* fix: add @peintnermax i18n suggestions

---------

Co-authored-by: Elio Bischof <elio@zitadel.com>
2023-10-10 12:02:16 +00:00
Dakshitha Ratnayake
89fffd6bd6
docs:Added the keycloak migration guide with new tool (#6642)
* Added the keycloak migration guide.

* Update docs/docs/guides/migrate/sources/keycloak.md

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>

* Update docs/docs/guides/migrate/sources/keycloak.md

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>

* Update docs/docs/guides/migrate/sources/keycloak.md

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>

* Update docs/docs/guides/migrate/sources/keycloak.md

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>

* Addressed review comments

---------

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
2023-10-10 13:41:23 +03:00
Livio Spring
4d85013ffb
chore: update stable (#6690) 2023-10-10 08:28:09 +02:00
Livio Spring
907a1611ac
fix(login): error case for unknown usernames correctly (#6689)
(cherry picked from commit 8549dd7a3d)
2023-10-10 07:41:16 +02:00
Elio Bischof
377a885e79
docs: fix typos (#6688) 2023-10-09 15:31:16 +00:00
Livio Spring
8549dd7a3d
fix(login): error case for unknown usernames correctly (#6689) 2023-10-09 15:05:25 +00:00
Stefan Benz
3689624232
test: correct used client api call in integration test (#6685)
fix: correct used client api call in integration test

Co-authored-by: Livio Spring <livio.a@gmail.com>
(cherry picked from commit 6ce11a416a)
2023-10-09 14:18:57 +02:00
Livio Spring
dee9d8d3a7
Merge branch 'main' into next
# Conflicts:
#	cmd/start/start.go
#	internal/auth/repository/eventsourcing/eventstore/auth_request.go
#	internal/auth/repository/eventsourcing/repository.go
#	internal/command/main_test.go
#	internal/command/quota.go
#	internal/command/quota_model.go
#	internal/command/quota_model_test.go
2023-10-09 14:18:29 +02:00
Stefan Benz
6ce11a416a
test: correct used client api call in integration test (#6685)
fix: correct used client api call in integration test

Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-10-09 12:09:51 +00:00
Miguel Cabrerizo
8c68f8ed3a
feat(console): only use one save button in SMTP Settings (#6561)
seperate smtp settings from notification providers
2023-10-09 11:14:17 +00:00
Livio Spring
827ce8809d
fix: use enum for instance feature in system api (#6682)
* fix: use enum for instance feature in system api

* add feature.proto to lint ignore
2023-10-09 12:33:23 +02:00
Livio Spring
8ca053fad3
fix: respect "Ignore unknown usernames" on password reset
Merge pull request from GHSA-v683-rcxx-vpff

(cherry picked from commit 54676eda98)
2023-10-09 12:12:16 +02:00
Livio Spring
9696fde676
fix: reduce origin check to tokens issued through code and implicit flow (#6681)
fix: only check origin for tokens issued to users through apps (code / implicit flow)
2023-10-09 10:08:18 +00:00
Livio Spring
54676eda98
Merge pull request from GHSA-v683-rcxx-vpff 2023-10-09 11:47:43 +02:00
mffap
b30d8b3ff5
docs(integrate): argo cd (#6523)
* docs(integrate): argo cd

* update to latest
2023-10-09 09:35:55 +00:00
Livio Spring
e3ac217424
fix: ensure no events are skipped on token check (#6663)
fix: ensure no events are skipped on token check
2023-10-09 09:26:27 +02:00
Stefan Benz
15fd3045e0
feat: add SAML as identity provider (#6454)
* feat: first implementation for saml sp

* fix: add command side instance and org for saml provider

* fix: add query side instance and org for saml provider

* fix: request handling in event and retrieval of finished intent

* fix: add review changes and integration tests

* fix: add integration tests for saml idp

* fix: correct unit tests with review changes

* fix: add saml session unit test

* fix: add saml session unit test

* fix: add saml session unit test

* fix: changes from review

* fix: changes from review

* fix: proto build error

* fix: proto build error

* fix: proto build error

* fix: proto require metadata oneof

* fix: login with saml provider

* fix: integration test for saml assertion

* lint client.go

* fix json tag

* fix: linting

* fix import

* fix: linting

* fix saml idp query

* fix: linting

* lint: try all issues

* revert linting config

* fix: add regenerate endpoints

* fix: translations

* fix mk.yaml

* ignore acs path for user agent cookie

* fix: add AuthFromProvider test for saml

* fix: integration test for saml retrieve information

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-09-29 11:26:14 +02:00
Livio Spring
2e99d0fe1b
fix(email): UTF-8 "Q" encode subject header (#6637)
fix(email): UTF-8 "Q" encode subject header
2023-09-29 08:53:45 +00:00