Commit Graph

2379 Commits

Author SHA1 Message Date
Livio Spring
e000213817
fix: migrate external id of federated users (#6312)
* feat: migrate external id

* implement tests and some renaming

* fix projection

* cleanup

* i18n

* fix event type

* handle migration for new services as well

* typo

(cherry picked from commit 45262e6829)
2023-08-04 11:49:01 +02:00
Elio Bischof
c0a9f23215
fix: project telemetry once for all instances (#6323)
(cherry picked from commit d33a4fbb2f)
2023-08-04 11:49:01 +02:00
Livio Spring
660a7b2576
fix(OIDC): introspection (#6298)
* fix(OIDC): introspect for PAT

* fix(OIDC): introspect for PAT

* fix(OIDC): introspect

* remove adding projectID into audience

(cherry picked from commit 782f7ad647)
2023-07-31 15:56:09 +02:00
Livio Spring
993808cbcb
fix(i18n): do not translate language itself (#6286)
(cherry picked from commit 43cb62ca4e)
2023-07-28 10:09:20 +02:00
Livio Spring
9d2ae1e9fa
fix: password hash update and add missing i18n (#6285)
(cherry picked from commit 789dcd8615)
2023-07-28 10:09:20 +02:00
Livio Spring
880896af75
perf: reduce events read from eventstore (#6280)
* fix: events query user

* fix: events query user

* user events query

* fix tests

* fix query

* cleanup

---------

Co-authored-by: Fabienne <fabienne.gerschwiler@gmail.com>
(cherry picked from commit d3e403f645)
2023-07-27 14:19:22 +02:00
Elio Bischof
9b058702f2
fix: remove logstore beta warning (#6244)
Co-authored-by: Livio Spring <livio.a@gmail.com>
(cherry picked from commit 35f4f74b08)
2023-07-25 08:46:15 +02:00
Livio Spring
e2c51e8b02
chore: build release on next branch (#6266)
(cherry picked from commit 702dfaf314)
2023-07-25 08:46:14 +02:00
Livio Spring
c46afa437e
fix: build css for login correctly (#6265)
(cherry picked from commit 2183b9a7c5)
2023-07-25 08:45:53 +02:00
Elio Bischof
03ad67775e
fix: upper ZITADEL banner (#6246)
Co-authored-by: Livio Spring <livio.a@gmail.com>
(cherry picked from commit 57d6113e2a)
2023-07-25 08:45:53 +02:00
Fabi
2bdc5df85f
docs: add version to technical advisory (#6263)
(cherry picked from commit 65f948daec)
2023-07-25 08:45:52 +02:00
Livio Spring
ba2b7e584e
chore: remove dry run 2023-07-24 16:41:28 +02:00
Livio Spring
3c1f092c74
chore: release latest on next 2023-07-24 15:48:24 +02:00
Elio Bischof
7a03eb1d7c
fix: emit project.grant.member.changed event (#6252)
(cherry picked from commit f6bc0479f4)
2023-07-24 15:38:31 +02:00
Livio Spring
bdecf90d6e
fix: ensure resource owner in update human profile (#6253)
(cherry picked from commit 13e284dd56)
2023-07-24 15:38:31 +02:00
Dakshitha Ratnayake
fa7f139645
docs: add guide on retrieving user roles (#6248)
* Added documenation for retrieving user roles.

* Update docs/docs/guides/integrate/retrieve-user-roles.md

Co-authored-by: Fabi <fabienne@zitadel.com>

* Update docs/docs/guides/integrate/retrieve-user-roles.md

Co-authored-by: Fabi <fabienne@zitadel.com>

* Update docs/docs/guides/integrate/retrieve-user-roles.md

Co-authored-by: Fabi <fabienne@zitadel.com>

* Update docs/docs/guides/integrate/retrieve-user-roles.md

Co-authored-by: Fabi <fabienne@zitadel.com>

* Update docs/docs/guides/integrate/retrieve-user-roles.md

Co-authored-by: Fabi <fabienne@zitadel.com>

* Update docs/docs/guides/integrate/retrieve-user-roles.md

Co-authored-by: Fabi <fabienne@zitadel.com>

* Update docs/docs/guides/integrate/retrieve-user-roles.md

Co-authored-by: Fabi <fabienne@zitadel.com>

* Update docs/docs/guides/integrate/retrieve-user-roles.md

Co-authored-by: Fabi <fabienne@zitadel.com>

* Update docs/docs/guides/integrate/retrieve-user-roles.md

Co-authored-by: Fabi <fabienne@zitadel.com>

* Update retrieve-user-roles.md

* Update retrieve-user-roles.md

* Update docs/docs/guides/integrate/retrieve-user-roles.md

Co-authored-by: Fabi <fabienne@zitadel.com>

---------

Co-authored-by: Fabi <fabienne@zitadel.com>
Co-authored-by: Livio Spring <livio.a@gmail.com>
(cherry picked from commit cedf4dda5b)
2023-07-24 15:38:31 +02:00
Livio Spring
60ecaefd72
chore: remove on push and merge_group from pipeline execution (#6254)
(cherry picked from commit 01dce17b14)
2023-07-24 15:38:30 +02:00
Livio Spring
1b44e9ad76
fix: user grant by id (#6242)
(cherry picked from commit cd5e176e30)
2023-07-24 15:38:30 +02:00
Livio Spring
e08b8dcb13
chore: linting in console (#6243)
chore: linting in console
(cherry picked from commit cfb8f3c07f)
2023-07-24 15:38:29 +02:00
Livio Spring
e2644cf076
Merge branch 'main' into next
# Conflicts:
#	.releaserc.js
2023-07-21 07:47:54 +02:00
Marko Heikkilä
ccc903a13e
docs: fix loadbalancing-example (#6167)
* Fix loadbalancing-example.

* Fix typo.

---------

Co-authored-by: Florian Forster <florian@zitadel.com>
Co-authored-by: Fabi <fabienne@zitadel.com>
2023-07-20 07:27:58 +00:00
Fabi
07ef9af513
fix: api docs (#6229)
Co-authored-by: Florian Forster <florian@zitadel.com>
2023-07-20 06:59:06 +00:00
daniel_michalichyn
fcc1acbf81
feat: Brazilian Portuguese internationalization (#6185)
* feat: Brazilian Portuguese internationalization

Co-authored-by: Daniel Michalichyn <daniel.henrique@st-one.io>
2023-07-20 04:40:45 +00:00
Livio Spring
fed15574f6
feat: allow to force MFA local only (#6234)
This PR adds an option to the LoginPolicy to "Force MFA for local users", so that users authenticated through an IDP must not configure (and verify) an MFA.
2023-07-20 04:06:16 +00:00
Max Peintner
1c3a15ff57
chore(contributing): use yarn instead of npm (#6233) 2023-07-19 12:32:33 +00:00
Livio Spring
59f3c328ec
feat(OIDC): add support for end_session for V2 tokens (#6226)
This PR adds support for the OIDC end_session_endpoint for V2 tokens. Sending an id_token_hint as parameter will directly terminate the underlying (SSO) session and all its tokens. Without this param, the user will be redirected to the Login UI, where he will able to choose if to logout.
2023-07-19 13:17:39 +02:00
Florian Forster
1e5fd2f66e
chore: redirect api path (#6232)
* chore: redirect api path

* Update vercel.json

* Update vercel.json

* Update vercel.json
2023-07-19 00:15:41 +02:00
Miguel Cabrerizo
ffb587f9ee
fix: sanitize primary domain for orgs (#6125)
* fix: sanitize primary domain for orgs

* fix: add @stebenz requested changes

---------

Co-authored-by: Stefan Benz <46600784+stebenz@users.noreply.github.com>
2023-07-18 12:42:57 +00:00
Silvan
ebb7a90ca7
ci: run pipeline on every push (#6221)
* ci: run pipeline on every push

* ci: run pipeline on every push on all branches

---------

Co-authored-by: Stefan Benz <46600784+stebenz@users.noreply.github.com>
2023-07-18 14:32:23 +02:00
Miguel Cabrerizo
7b44209bfd
feat: show all available organizations when creating project grants (#6040)
* feat: show available orgs (project) grants

* feat: add e2e for project grant

* feat: add bulgarian missing translations

* feat: update docs

* fix: add @peintnermax suggested changes

---------

Co-authored-by: Max Peintner <max@caos.ch>
2023-07-18 06:45:34 +00:00
Livio Spring
e1b3cda98a
feat(OIDC): support token revocation of V2 tokens (#6203)
This PR adds support for OAuth2 token revocation of V2 tokens.

Unlike with V1 tokens, it's now possible to revoke a token not only from the authorized client / client which the token was issued to, but rather from all trusted clients (audience)
2023-07-17 14:33:37 +02:00
Silvan
ecf9835cb8
ci: run pipeline on every push (#6219) 2023-07-17 10:55:41 +02:00
Silvan
1c354ca977
ci: improve performance (#5953)
* pipeline runs on ubuntu instead of docker
* added Makefile to build zitadel core (backend) and console (frontend)
* pipeline runs in parallel where possible
* pipeline is split into multiple jobs
* removed goreleaser
* added command to check if zitadel instance is running
2023-07-17 10:08:20 +02:00
Florian Forster
bcf4bfc585
fix: autofill related issues (#6201) 2023-07-14 12:35:25 +00:00
Livio Spring
80961125a7
feat(API): support V2 token and session token usage (#6180)
This PR adds support for userinfo and introspection of V2 tokens. Further V2 access tokens and session tokens can be used for authentication on the ZITADEL API (like the current access tokens).
2023-07-14 11:16:16 +00:00
Tim Möhlmann
4589ddad4a
feat: integrate passwap for human user password hashing (#6196)
* feat: use passwap for human user passwords

* fix tests

* passwap config

* add the event mapper

* cleanup query side and api

* solve linting errors

* regression test

* try to fix linter errors again

* pass systemdefaults into externalConfigChange migration

* fix: user password set in auth view

* pin passwap v0.2.0

* v2: validate hashed password hash based on prefix

* resolve remaining comments

* add error tag and translation for unsupported hash encoding

* fix unit test

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-07-14 09:49:57 +03:00
mffap
6fcfa63f54
docs: plausible script with pageprops (#6199)
update plausible
2023-07-13 22:42:36 +02:00
Miguel Cabrerizo
0f3c33cb86
feat: show basic info start-from-init (#6183) 2023-07-12 20:46:50 +03:00
Stefan Benz
036bb33cb8
docs: add migrate idp docs (#6181)
* docs: add migrate idp docs

* docs: apply suggestions from code review

Co-authored-by: Fabi <fabienne@zitadel.com>

* docs: apply suggestions from code review

* Update docs/docs/guides/integrate/identity-providers/migrate.mdx

* Update docs/docs/guides/integrate/identity-providers/migrate.mdx

---------

Co-authored-by: Fabi <fabienne@zitadel.com>
2023-07-12 15:57:38 +02:00
Miguel Cabrerizo
78eae6f62b
fix: domain discovery should be case insensitive (#6134)
Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-07-12 13:02:16 +00:00
Livio Spring
ee26f99ebf
fix: store auth methods instead of AMR in auth request linking and OIDC Session (#6192)
This PR changes the information stored on the SessionLinkedEvent and (OIDC Session) AddedEvent from OIDC AMR strings to domain.UserAuthMethodTypes, so no information is lost in the process (e.g. authentication with an IDP)
2023-07-12 12:24:01 +00:00
Vlatko Stojkovski
a3a1e245ad
feat: i18n support for Macedonian language (#6178)
* add macedonian language to currently supported languages

* mk yaml login static with en values

* mk json assets with en values

* mk yaml notification static with en values

* add macedonian notification yaml

* mk yaml static with en values

* mk translations for login

* mk translations for internal

* macedonian translations

* - fix lint issues
2023-07-12 08:41:50 +00:00
mffap
73edcfac92
docs(legal): update address of EU representative (#6193) 2023-07-12 08:16:39 +00:00
Elio Bischof
08f242e98d
perf: skip already pushed check (#6164)
Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-07-11 12:10:37 +02:00
Livio Spring
14b8cf4894
feat(api): add OIDC session service (#6157)
This PR starts the OIDC implementation for the API V2 including the Implicit and Code Flow.


Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
Co-authored-by: Stefan Benz <46600784+stebenz@users.noreply.github.com>
2023-07-10 13:27:00 +00:00
mffap
be1fe36776
fix: management proto delete machine key (#6179) 2023-07-10 12:50:17 +00:00
Tim Möhlmann
112f672266
chore: cleanup command/crypto (#5883)
* chore: cleanup command/crypto

* cleanup unused function mockEmailCode
2023-07-10 08:07:10 +00:00
Max Peintner
40a073fd33
fix(console): show warn on idp removal (#6004)
* fix: show warn on idp removal

* de, bg

* observable for refresh

---------

Co-authored-by: Elio Bischof <elio@zitadel.com>
2023-07-10 06:51:17 +00:00
Livio Spring
5cba5cd635
fix: set samesite to none for user agent cookie for iframe usage (#6162)
Co-authored-by: Fabi <fabienne@zitadel.com>
2023-07-10 07:51:56 +02:00
Fabi
48bda9aa07
fix: Role (#6160)
* fix: add user self manager role (can delete himself)

* fix: add user self manager role (can delete himself)

* fix: add user self manager role (can delete himself)
2023-07-07 20:14:07 +00:00