Commit Graph

3091 Commits

Author SHA1 Message Date
Livio Spring
24868240f0
Merge branch 'main' into next
# Conflicts:
#	docs/docs/self-hosting/manage/updating_scaling.md
#	docs/docs/support/advisory/a10008.md
#	docs/docs/support/technical_advisory.mdx
2024-02-12 07:44:07 +01:00
Filip Sandborg
f0ba2b955a
fix: db MaxOpenConns setting (#7360)
* Fix pg MaxOpenConns setting

* fix: crdb open conns

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
2024-02-09 13:43:01 +01:00
Fabi
a065ddc706
docs: Make Examples and SDK Pages easier to understand (#7291)
* docs: first attempt to restructure the sdks and examples to make it better understandable

* docs: first attempt to restructure the sdks and examples to make it better understandable

* docs: first attempt to restructure the sdks and examples to make it better understandable

* docs: first attempt to restructure the sdks and examples to make it better understandable

* docs: first attempt to restructure the sdks and examples to make it better understandable

* docs: first attempt to restructure the sdks and examples to make it better understandable

* docs: adding more example pages

* docs: adding more example pages

* docs: add all sdk/examples

* docs: add tile component

* docs: introduction page

* docs: introduction page

* docs: add react

* docs: remove old sdk and example pages

* docs: fix broken links

* docs: fix broken links

* styles

* Update docs/docs/sdk-examples/introduction.mdx

Co-authored-by: Livio Spring <livio.a@gmail.com>

* Update docs/docs/sdk-examples/java.mdx

Co-authored-by: Livio Spring <livio.a@gmail.com>

* Update docs/docs/sdk-examples/python.mdx

Co-authored-by: Livio Spring <livio.a@gmail.com>

* Update docs/docs/sdk-examples/python.mdx

Co-authored-by: Livio Spring <livio.a@gmail.com>

* docs: review changes

* docs: smaller tiles

* docs: changes from go and java review

* docs: correct python description

* Update docs/docs/sdk-examples/python.mdx

Co-authored-by: Livio Spring <livio.a@gmail.com>

* Update docs/docs/sdk-examples/introduction.mdx

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>

* Update docs/docs/sdk-examples/python.mdx

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>

* docs: flask logo

* flask, rust imgs

* docs: flask logo

* Update go.mdx

* Update java.mdx

* Update docs/docs/sdk-examples/flutter.mdx

Co-authored-by: Livio Spring <livio.a@gmail.com>

* Update docs/src/css/tile.module.css

Co-authored-by: Livio Spring <livio.a@gmail.com>

* docs: sidebar alphabetic

* docs: sidebar alphabetic

* docs: django logo

---------

Co-authored-by: peintnermax <max@caos.ch>
Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
Co-authored-by: Stefan Benz <stefan@caos.ch>
2024-02-07 12:44:20 +01:00
mffap
59dcd6f498
docs: logo jumps to home page (#7329) 2024-02-06 14:52:45 +00:00
Max Peintner
ca49e0f532
fix(console): simplify instance page (#7274)
* move settings, rm nav for single org

* move instance pages to settings

* i18n

* revalidate orgs on create

* Update bg.json

* show custome portal link

* Update console/src/app/modules/settings-list/settings.ts

Co-authored-by: Livio Spring <livio.a@gmail.com>

* Update console/src/app/modules/settings-list/settings.ts

Co-authored-by: Livio Spring <livio.a@gmail.com>

* Update console/src/app/modules/settings-list/settings.ts

Co-authored-by: Livio Spring <livio.a@gmail.com>

* add org page to instance settings

* iam.read for org list

* i18n

* instance imgs, cleanup

* rm unused imgs

* remove unused imgs, replace default settings imgs

* event image

* e2e url

* instance url

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
2024-02-06 14:35:43 +01:00
Livio Spring
904ab0db5b
fix: use configured binding on SAML IDPs and make sure CSP doesn't block POST binding (#7341)
fix: use configured binding on SAML IDPs and make sure CSP doesn't block POST binding
(cherry picked from commit 7f7fb55f34)
2024-02-05 16:01:52 +01:00
Livio Spring
7f7fb55f34
fix: use configured binding on SAML IDPs and make sure CSP doesn't block POST binding (#7341)
fix: use configured binding on SAML IDPs and make sure CSP doesn't block POST binding
2024-02-05 14:45:15 +00:00
Stefan Benz
c081f72d85
docs: python django example for login in secure api (#7285)
* docs: python django example docs

* docs: python django example docs

* docs: python django example docs

* docs: change django example with review

* docs: python django example docs

* docs: python django example docs

* docs: apply suggestions from code review

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>

* docs: python django example docs

* docs: python django example docs

* docs: python django example docs

---------

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
2024-02-02 15:20:45 +00:00
Fabi
e699103303
chore: update pm board action (#7330)
automatically ad prs of non engineers to board and label community prs
2024-02-02 10:59:37 +00:00
Max Peintner
a9ddb464a8
docs: react sdk guide, update quickstart guide to use @zitadel/react (#7300)
* docs: react sdk

* docs

* doc

* checkbox, screen

* update quick start guide for react

* rm old react

* react

* cleanup quickstart guide

* Update docs/docs/examples/login/react.md

Co-authored-by: Dakshitha Ratnayake <dakshitha@users.noreply.github.com>

* Update docs/docs/examples/login/react.md

Co-authored-by: Dakshitha Ratnayake <dakshitha@users.noreply.github.com>

* Update docs/docs/examples/login/react.md

Co-authored-by: Dakshitha Ratnayake <dakshitha@users.noreply.github.com>

* Update docs/docs/examples/login/react.md

Co-authored-by: Dakshitha Ratnayake <dakshitha@users.noreply.github.com>

* Update docs/docs/examples/login/react.md

Co-authored-by: Dakshitha Ratnayake <dakshitha@users.noreply.github.com>

* Update docs/docs/examples/login/react.md

Co-authored-by: Dakshitha Ratnayake <dakshitha@users.noreply.github.com>

* Update docs/docs/examples/login/react.md

Co-authored-by: Dakshitha Ratnayake <dakshitha@users.noreply.github.com>

* react + / vue -

* remove welcome from screenshot

---------

Co-authored-by: Dakshitha Ratnayake <dakshitha@users.noreply.github.com>
2024-02-02 08:29:02 +01:00
Fabi
55c9eb08f1
docs: add missing word (#7324)
Co-authored-by: Livio Spring <livio.a@gmail.com>
2024-02-01 07:59:53 +00:00
Livio Spring
6bfa66cfa3
docs: fix init-projections flag value (#7325) 2024-02-01 07:12:29 +00:00
Livio Spring
ddf869bb22
fix: handle context correctly in processEvents (#7320)
(cherry picked from commit e000fdd792)
2024-01-31 14:44:44 +01:00
Silvan
1080efdfaa
fix(auth): optimise user sessions (#7199)
* fix(auth): start optimise user sessions

* reduce and query user sessions directly without gorm statements

* cleanup

* cleanup

* fix requested changes

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
(cherry picked from commit aa407c3c3e)
2024-01-31 14:44:38 +01:00
Livio Spring
ddeacd2f88
fix: set userAgentID in password change event if available (#7319)
(cherry picked from commit c20204d84d)
2024-01-31 14:44:35 +01:00
Dominik Müller
6f3f67cde7
docs: self-hosting doc link (#7249)
* fix: self-hosting doc link

exchanged localhost link for relative link to docs

* fix: updated base path for relative doc link
2024-01-31 12:34:34 +00:00
Livio Spring
e000fdd792
fix: handle context correctly in processEvents (#7320) 2024-01-31 11:25:28 +01:00
Miguel Cabrerizo
46bffd24ee
feat(console): allow filter org by primary domain on instance (#7283)
* feat: i18n translations

* feat: add primary domain to filter-org component

* fix: add listOrgs service to admin and use it for org-table component

---------

Co-authored-by: Max Peintner <max@caos.ch>
2024-01-30 16:09:47 +00:00
Silvan
aa407c3c3e
fix(auth): optimise user sessions (#7199)
* fix(auth): start optimise user sessions

* reduce and query user sessions directly without gorm statements

* cleanup

* cleanup

* fix requested changes

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
2024-01-30 15:17:54 +00:00
Livio Spring
c20204d84d
fix: set userAgentID in password change event if available (#7319) 2024-01-30 15:36:34 +01:00
mffap
c7d7464b3b
docs(readme): update readme (#7313) 2024-01-30 07:32:31 +01:00
Tim Möhlmann
df57a64ed7
fix(oidc): ignore public key expiry for ID Token hints (#7293)
* fix(oidc): ignore public key expiry for ID Token hints

This splits the key sets used for access token and ID token hints.
ID Token hints should be able to be verified by with public keys that are already expired.
However, we do not want to change this behavior for Access Tokens,
where an error for an expired public key is still returned.

The public key cache is modified to purge public keys based on last use,
instead of expiry.
The cache is shared between both verifiers.

* resolve review comments

* pin oidc 3.11
2024-01-29 15:11:52 +00:00
Fabi
5e23ea55b2
docs: onboarding customers and users (#7105)
* docs: onboarding organizations

* docs: onboarding organizations

* docs: onboarding end users

* docs: onboarding end users

* docs: onboarding end users

* docs: onboarding end users

* docs: onboarding guide in console

* docs: onboarding guide in console

* docs: onboarding guide in console

* docs: onboarding guide in console

* docs: manually add user

* docs: fix links

* docs: fix links

* Update docs/docs/guides/manage/console/_add_manager.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/solution-scenarios/onboarding/_org_login_description.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/solution-scenarios/onboarding/end-users.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/solution-scenarios/onboarding/b2b.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/solution-scenarios/onboarding/b2b.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/solution-scenarios/onboarding/b2b.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/solution-scenarios/onboarding/b2b.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/solution-scenarios/onboarding/b2b.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/solution-scenarios/onboarding/b2b.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/solution-scenarios/onboarding/b2b.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/solution-scenarios/onboarding/end-users.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* Update docs/docs/guides/solution-scenarios/onboarding/b2b.mdx

Co-authored-by: mffap <mpa@zitadel.com>

* docs: correct review

* docs: fix typos

---------

Co-authored-by: mffap <mpa@zitadel.com>
Co-authored-by: Livio Spring <livio.a@gmail.com>
2024-01-29 13:47:08 +01:00
Silvan
93f35980b8
docs(a10008): add versions 2.43.6 and 2.42.12 (#7299) 2024-01-26 14:52:34 +01:00
Livio Spring
121f9f8da1
feat(actions): add org metadata in complement token and saml response flows (#7263)
* feat(actions): add org metadata in complement token and saml response flows

* document actions
2024-01-26 08:56:10 +00:00
Silvan
d3bb9c9b3b
fix(setup): init projections (#7194)
Even though this is a feature it's released as fix so that we can back port to earlier revisions.

As reported by multiple users startup of ZITADEL after leaded to downtime and worst case rollbacks to the previously deployed version.

The problem starts rising when there are too many events to process after the start of ZITADEL. The root cause are changes on projections (database tables) which must be recomputed. This PR solves this problem by adding a new step to the setup phase which prefills the projections. The step can be enabled by adding the `--init-projections`-flag to `setup`, `start-from-init` and `start-from-setup`. Setting this flag results in potentially longer duration of the setup phase but reduces the risk of the problems mentioned in the paragraph above.

(cherry picked from commit 17953e9040)
2024-01-26 07:41:11 +01:00
Silvan
17953e9040
fix(setup): init projections (#7194)
Even though this is a feature it's released as fix so that we can back port to earlier revisions.

As reported by multiple users startup of ZITADEL after leaded to downtime and worst case rollbacks to the previously deployed version.

The problem starts rising when there are too many events to process after the start of ZITADEL. The root cause are changes on projections (database tables) which must be recomputed. This PR solves this problem by adding a new step to the setup phase which prefills the projections. The step can be enabled by adding the `--init-projections`-flag to `setup`, `start-from-init` and `start-from-setup`. Setting this flag results in potentially longer duration of the setup phase but reduces the risk of the problems mentioned in the paragraph above.
2024-01-25 17:28:20 +01:00
Miguel Cabrerizo
d590da7c7d
fix(console): display granted org name in authorizations and show user information (#7116)
* fix: add granted org info to user grants query response

* fix: show user info, tests and add columns to user grant

* fix: add check for org membership

* fix: typo in find logic

---------

Co-authored-by: Max Peintner <max@caos.ch>
2024-01-24 11:36:04 +01:00
Livio Spring
94b3799690
docs: update links of examples (#7273) 2024-01-23 15:29:50 +01:00
Florian Forster
e593a8ec63
chore: remove cockroach, clickhouse and add hubspot from third party sub-processors (#7264)
* chore: remove crdb from third party sub-processors

* remove clickhouse

* add hubspot

* fix: google end-user data flag

---------

Co-authored-by: mffap <mpa@zitadel.com>
2024-01-22 13:08:23 +00:00
Miguel Cabrerizo
89169b64ff
fix: detect autofill in chrome to enable login buttons (#7056)
* fix: detect autofill in chrome to enable login buttons

* fix: add -webkit-autofill to input scss

---------

Co-authored-by: Max Peintner <max@caos.ch>
2024-01-22 10:24:36 +01:00
Livio Spring
50faf37921
Merge branch 'main' into next
# Conflicts:
#	cmd/setup/config.go
#	cmd/setup/setup.go
2024-01-22 07:36:22 +01:00
Livio Spring
8470649ecb
chore: pin crdb version for unit tests (#7260)
* chore: pin crdb version for unit tests

* use latest 23.1 version

* use latest available 23.1 version
2024-01-18 08:16:54 +00:00
Tim Möhlmann
af4e0484d0
fix: uniform oidc errors (#7237)
* fix: uniform oidc errors

sanitize oidc error reporting when passing package boundary towards oidc.

* add should TriggerBulk in get audiences for auth request

* upgrade to oidc 3.10.1

* provisional oidc upgrade to error branch

* pin oidc 3.10.2
2024-01-18 07:10:49 +01:00
Elio Bischof
cdfcdec101
test(integration, user): fix flakiness (#7252)
* test: fix user integration test flakiness

* assert with *assert.CollectT
2024-01-17 16:24:11 +01:00
Elio Bischof
35339162c9
docs: fix install @zitadel/vue (#7250) 2024-01-17 13:37:19 +01:00
Elio Bischof
ed0bc39ea4
feat: block instances (#7129)
* docs: fix init description typos

* feat: block instances using limits

* translate

* unit tests

* fix translations

* redirect /ui/login

* fix http interceptor

* cleanup

* fix http interceptor

* fix: delete cookies on gateway 200

* add integration tests

* add command test

* docs

* fix integration tests

* add bulk api and integration test

* optimize bulk set limits

* unit test bulk limits

* fix broken link

* fix assets middleware

* fix broken link

* validate instance id format

* Update internal/eventstore/search_query.go

Co-authored-by: Livio Spring <livio.a@gmail.com>

* remove support for owner bulk limit commands

* project limits to instances

* migrate instances projection

* Revert "migrate instances projection"

This reverts commit 214218732a.

* join limits, remove owner

* remove todo

* use optional bool

* normally validate instance ids

* use 302

* cleanup

* cleanup

* Update internal/api/grpc/system/limits_converter.go

Co-authored-by: Livio Spring <livio.a@gmail.com>

* remove owner

* remove owner from reset

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
2024-01-17 10:16:48 +00:00
Stefan Benz
d9d376a275
feat: user v2 service query (#7095)
* feat: add query endpoints for user v2 api

* fix: correct integration tests

* fix: correct linting

* fix: correct linting

* fix: comment out permission check on user get and list

* fix: permission check on user v2 query

* fix: merge back origin/main

* fix: add search query in user emails

* fix: reset count for SearchUser if users are removed due to permissions

* fix: reset count for SearchUser if users are removed due to permissions

---------

Co-authored-by: Elio Bischof <elio@zitadel.com>
2024-01-17 10:00:10 +01:00
Elio Bischof
519a8332f3
fix(origin): fall back to ExternalSecure (#7228)
* fix(origin): fall back to ExternalSecure

* avoid middleware.Middleware

* avoid else

* lint

(cherry picked from commit 29b386005d)
2024-01-16 17:44:35 +01:00
Silvan
a7ac15ff60
fix(handler): handle trigger err correctly (#7205)
(cherry picked from commit 3c5fc31372)
2024-01-16 17:43:59 +01:00
Fabi
853181155d
docs: Avg active idps (#7207)
* docs: legal change active external identity providers

* docs: legal change active external identity providers

* Update docs/docs/legal/service-description/billing.md

Co-authored-by: mffap <mpa@zitadel.com>

---------

Co-authored-by: mffap <mpa@zitadel.com>
2024-01-16 16:20:55 +01:00
Elio Bischof
492d7da37e
docs: add guide for Vue (#7215)
* docs: add guide for Vue

* describe authz

* add vue to sdks

---------

Co-authored-by: Max Peintner <max@caos.ch>
2024-01-16 14:21:32 +00:00
Livio Spring
57f40a3c50
docs(examples): adds java spring boot examples (#7226)
* docs(examples): adds java spring boot examples

* add code highlighting for java and php

* Apply suggestions from code review

Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>

* update references

---------

Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
2024-01-16 11:02:58 +00:00
Livio Spring
96d0291848
fix: enable iframe use on http://localhost (#7152)
* fix: enable iframe use on http://localhost

* docs(iframe): add info about cookies

* improve comments
2024-01-16 11:28:56 +01:00
Tim Möhlmann
2ccb7baf85
chore(deps): upgrade all go deps (#7227)
* chore(deps): upgrade all go deps

Also `go mod tidy`.
Added comments with URLs for package version lists to makefile commands.

* Update Makefile

Co-authored-by: Livio Spring <livio.a@gmail.com>

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
2024-01-16 09:27:09 +00:00
Tim Möhlmann
c0b355e24a
fix: pass configured slog to oidc server (#7229) 2024-01-16 06:37:36 +00:00
Tim Möhlmann
0a65e20507
docs(examples): symfony php guide (#7171)
* docs(examples): symfony php guide

* hopefully fix vercel

* complete guide

* add guide to navigation

Co-authored-by: Stefan Benz <46600784+stebenz@users.noreply.github.com>
2024-01-15 17:49:41 +00:00
Elio Bischof
29b386005d
fix(origin): fall back to ExternalSecure (#7228)
* fix(origin): fall back to ExternalSecure

* avoid middleware.Middleware

* avoid else

* lint
2024-01-15 16:44:35 +00:00
Miguel Cabrerizo
fc34896092
fix(cnsl): some saml provider issues (#7220)
Co-authored-by: Max Peintner <max@caos.ch>
2024-01-15 15:10:45 +00:00
Chaitanya Tyagi
c7e45f7f49
fix(console): disallow subzero login lifetimes values (#7065) (#7113)
* fix: disallow subzero login lifetimes values (#7065)

* i18n invalid lifetimes

---------

Co-authored-by: peintnermax <max@caos.ch>
2024-01-15 13:11:17 +00:00