Livio Spring
22e2d55999
Merge pull request from GHSA-7h8m-vrxx-vr4m
...
* fix: handle locking policy correctly for multiple simultaneous password checks
* recheck events
2023-11-08 14:19:13 +01:00
Livio Spring
789dcd8615
fix: password hash update and add missing i18n ( #6285 )
2023-07-28 09:09:15 +02:00
Tim Möhlmann
4589ddad4a
feat: integrate passwap for human user password hashing ( #6196 )
...
* feat: use passwap for human user passwords
* fix tests
* passwap config
* add the event mapper
* cleanup query side and api
* solve linting errors
* regression test
* try to fix linter errors again
* pass systemdefaults into externalConfigChange migration
* fix: user password set in auth view
* pin passwap v0.2.0
* v2: validate hashed password hash based on prefix
* resolve remaining comments
* add error tag and translation for unsupported hash encoding
* fix unit test
---------
Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-07-14 09:49:57 +03:00
Florian Forster
fa9f581d56
chore(v2): move to new org ( #3499 )
...
* chore: move to new org
* logging
* fix: org rename caos -> zitadel
Co-authored-by: adlerhurst <silvan.reusser@gmail.com>
2022-04-26 23:01:45 +00:00
Fabi
bc951985ed
feat: Lockout policy ( #2121 )
...
* feat: lock users if lockout policy is set
* feat: setup
* feat: lock user on password failes
* feat: render error
* feat: lock user on command side
* feat: auth_req tests
* feat: lockout policy docs
* feat: remove show lockout failures from proto
* fix: console lockout
* feat: tests
* fix: tests
* unlock function
* add unlock button
* fix migration version
* lockout policy
* lint
* Update internal/auth/repository/eventsourcing/eventstore/auth_request.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* fix: err message
* Update internal/command/setup_step4.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
2021-08-11 06:36:32 +00:00
Silvan
5349d96ce4
fix(eventstore): sub queries ( #1805 )
...
* sub queries
* fix: tests
* add builder to tests
* new search query
* rename searchquerybuilder to builder
* remove comment from code
* test with multiple queries
* add filters test
* fix(contibute): listing
* add validate module
* fix: search queries
* remove unused event type in query
* ignore query if error in marshal
* go mod tidy
* update privacy policy query
* update queries
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-07-06 13:55:57 +02:00
Fabi
d375ad4d49
fix: add v1 events ( #1525 )
...
* fix: add v1 events
* add v1 events to queries
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-04-06 09:57:58 +02:00
Livio Amstutz
d5f0c2375a
fix: backend bugs ( #1453 )
...
* fix: add events to query
* fix: add events to query
* displayname
* change email RO
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
2021-03-22 17:15:24 +01:00
Livio Amstutz
bd1a3bb6d7
fix: backend bugs ( #1449 )
...
* i18n of compliance problems
* fix: return iam member roles
* remove u2f/passwordless
* u2f/passwordless
* fix rest path GetMachineKeyByIDs
* fix rest path GetMachineKeyByIDs
* fix email mime-type
* fix: member preferred login name
* machine users in notify
* fix api key query
* fix: todos grpc api
* fix: handle user init state
* fix: tests
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
2021-03-22 14:40:25 +01:00
Fabi
d8e42744b4
fix: move v2 pkgs ( #1331 )
...
* fix: move eventstore pkgs
* fix: move eventstore pkgs
* fix: remove v2 view
* fix: remove v2 view
2021-02-23 15:13:04 +01:00