Commit Graph

1178 Commits

Author SHA1 Message Date
Livio Amstutz
ed80a8bb1e
feat: actions (#2377)
* feat(actions): begin api

* feat(actions): begin api

* api and projections

* fix: handle multiple statements for a single event in projections

* export func type

* fix test

* update to new reduce interface

* flows in login

* feat: jwt idp

* feat: command side

* feat: add tests

* actions and flows

* fill idp views with jwt idps and return apis

* add jwtEndpoint to jwt idp

* begin jwt request handling

* add feature

* merge

* merge

* handle jwt idp

* cleanup

* bug fixes

* autoregister

* get token from specific header name

* fix: proto

* fixes

* i18n

* begin tests

* fix and log http proxy

* remove docker cache

* fixes

* usergrants in actions api

* tests adn cleanup

* cleanup

* fix add user grant

* set login context

* i18n

Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
2021-09-27 13:43:49 +02:00
Livio Amstutz
5c32fc9c12
fix(operator): proxy and asset storage secrets handling (#2403)
* fix(operator): proxy and asset storage secrets handling

* fix test
2021-09-24 10:25:50 +02:00
Silvan
30153cff39
chore(gomod): update otel to 1.0.0 (#2414) 2021-09-23 12:50:17 +02:00
Elio Bischof
a17a6263b4
fix: return 1 on CLI misusage (#2087) 2021-09-23 09:38:35 +00:00
Fabi
c8d59ee488
docs: restructure and add more content (#2232)
* docs: restructure quickstarts

* docs: quickstart libs

* docs: add exlixir lib

* docs: restructure

* docs: restructure

* docs: customization

* use tabs in oauth/oidc endpoints.md

* improve authorize_endpoint

* improve token_endpoint and introspection_endpoint

* docs: saas use case

* styling

* styling

* begin login users

* login users

* login users

* fix table

* fix: links

* fix: links

* start go api

* fix: policy structure

* fix: saas description

* fix: saas description

* fix: saas description

* Update docs/docs/concepts/policies.md

Co-authored-by: mffap <mpa@caos.ch>

* Update docs/docs/concepts/usecases/saas.md

Co-authored-by: mffap <mpa@caos.ch>

* Update docs/docs/concepts/usecases/saas.md

Co-authored-by: mffap <mpa@caos.ch>

* Update docs/docs/concepts/usecases/saas.md

Co-authored-by: mffap <mpa@caos.ch>

* Update docs/docs/concepts/usecases/saas.md

Co-authored-by: mffap <mpa@caos.ch>

* Update docs/docs/concepts/usecases/saas.md

Co-authored-by: mffap <mpa@caos.ch>

* Update docs/docs/concepts/usecases/saas.md

Co-authored-by: mffap <mpa@caos.ch>

* Update docs/docs/concepts/usecases/saas.md

Co-authored-by: mffap <mpa@caos.ch>

* Update docs/docs/concepts/usecases/saas.md

Co-authored-by: mffap <mpa@caos.ch>

* Update docs/docs/concepts/usecases/saas.md

Co-authored-by: mffap <mpa@caos.ch>

* docs: organisation --> organization

* docs: fixes

* docs: fixes

* Update docs/docs/apis/openidoauth/endpoints.md

Co-authored-by: Florian Forster <florian@caos.ch>

* Update docs/docs/concepts/policies.md

Co-authored-by: Florian Forster <florian@caos.ch>

* Update docs/docs/concepts/policies.md

Co-authored-by: Florian Forster <florian@caos.ch>

* Update docs/docs/concepts/policies.md

Co-authored-by: Florian Forster <florian@caos.ch>

* Update docs/docs/apis/openidoauth/endpoints.md

Co-authored-by: Florian Forster <florian@caos.ch>

* Apply suggestions from code review

Co-authored-by: Florian Forster <florian@caos.ch>

* docs: intro

* Update docs/docs/guides/customization/branding.md

Co-authored-by: Florian Forster <florian@caos.ch>

* fix: typo

* add mermaid

Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: mffap <mpa@caos.ch>
Co-authored-by: Florian Forster <florian@caos.ch>
2021-09-23 10:34:06 +02:00
Elio Bischof
63231540a8
fix: writesecret with --gitops doesn't need a kubeconfig (#2078)
* fix: writesecret with --gitops doesn't need a kubeconfig

* fix: writesecret with --gitops doesn't need a kubeconfig

* fix: don't print error if writing secret succeeded
2021-09-23 10:13:24 +02:00
Elio Bischof
7e3d12c73a
docs: generate zitadel keys (#1692) 2021-09-23 10:11:17 +02:00
Livio Amstutz
b90d1cfaf8
chore(workflow): use event push only on main (#2381) 2021-09-23 10:04:46 +02:00
dependabot[bot]
5837257816
chore(deps): bump prismjs from 1.24.1 to 1.25.0 in /docs (#2402)
Bumps [prismjs](https://github.com/PrismJS/prism) from 1.24.1 to 1.25.0.
- [Release notes](https://github.com/PrismJS/prism/releases)
- [Changelog](https://github.com/PrismJS/prism/blob/master/CHANGELOG.md)
- [Commits](https://github.com/PrismJS/prism/compare/v1.24.1...v1.25.0)

---
updated-dependencies:
- dependency-name: prismjs
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-09-22 07:20:51 +00:00
Livio Amstutz
3f15d76660
docs: update rate limits (#2382)
* docs: update rate limits

* remove remark
2021-09-22 06:49:47 +00:00
Silvan
c8dd64cbb4
chore(backend): update dependencies (#2308)
* docker dependencies

* update mod

* update modules

* update otel to rc3

* fix metrics constructors

* chore(gomod): update dependencies

* update protoc and gatway in dockerfile

* operator has issues with 1.17
2021-09-21 14:58:26 +02:00
Livio Amstutz
8883d74e3d
fix: check login policy state for idp policy mgmt (#2384) 2021-09-17 13:45:14 +02:00
Livio Amstutz
d090f12672
fix: set active org to local and session storage (#2380) 2021-09-16 09:48:56 +00:00
Livio Amstutz
0f9a939f44
feat: set env vars for http proxy (#2379) 2021-09-16 08:43:04 +00:00
Livio Amstutz
f39ff13acb
fix: check get origins and projectID only for tokens with clientID (#2378) 2021-09-16 08:07:48 +00:00
Christoph Bühler
db3526df48
feat(org-selector): Remember the last selected org and order the list. (#2343)
This remembers the last selected org
in localstorage instead of session storage to improve the UX. Furthermore,
the list of organizations is ordered by
name instead of just the returned
result set.
2021-09-15 14:15:19 +02:00
Fabi
50b30bc4bd
fix: remove metadata on remove feature with correct resourceowner (#2376) 2021-09-14 15:15:42 +00:00
Livio Amstutz
b6b5b1b782
feat: jwt as idp (#2363)
* feat: jwt idp

* feat: command side

* feat: add tests

* fill idp views with jwt idps and return apis

* add jwtEndpoint to jwt idp

* begin jwt request handling

* merge

* handle jwt idp

* cleanup

* fixes

* autoregister

* get token from specific header name

* error handling

* fix texts

* handle renderExternalNotFoundOption

Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
2021-09-14 15:15:01 +02:00
Livio Amstutz
4e1d42259c
chore(workflow): enable builds on PR (for forks) (#2364) 2021-09-14 13:43:37 +02:00
Max Peintner
04f79d2e86
feat(console): add idp auto-register option to detail and create page (#2344)
* idp detail auto register option, idp create

* fix idp displaynamemapping, i18n

* rm log

* rm log
2021-09-14 09:44:37 +02:00
Fabi
0300871767
fix: check private labeling features on command side (#2365) 2021-09-14 07:28:21 +00:00
Max Peintner
33a2054be9
fix(console): update dependencies, force reauth on invalid token (#2267)
* fix: update oidc lib, force reauth

* chore(console): deps (#2302)

* cli core

* cdk material

* chore(deps-dev): bump @types/node from 15.12.2 to 16.7.6 in /console (#2284)

Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 15.12.2 to 16.7.6.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

---
updated-dependencies:
- dependency-name: "@types/node"
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* chore(deps-dev): bump ts-node from 10.2.0 to 10.2.1 in /console (#2252)

Bumps [ts-node](https://github.com/TypeStrong/ts-node) from 10.2.0 to 10.2.1.
- [Release notes](https://github.com/TypeStrong/ts-node/releases)
- [Commits](https://github.com/TypeStrong/ts-node/compare/v10.2.0...v10.2.1)

---
updated-dependencies:
- dependency-name: ts-node
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* audit fix

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-09-14 07:04:14 +00:00
Max Peintner
490cafa538
feat(console): user metadata, rehaul detail pages (#2209)
* service, sidenav, i18n, dialog

* detail layout, user detail

* metadata dialog from

* dialog

* features

* formarray

* metadata component

* comp

* user metadata refresh

* use formarray, control, bulk save

* metadata revert, has feature directive

* lint

* lint

* typo

* info row user, warn color optim

* card cleanup, actions for user detail

* project, org, user, app rehaul

* lint

* scss

* digit fix

* features and project grid rehaul

* info-section layout, org domain info

* readd palette scss

* add svg email warn

* missing translation

* rm unused ts

* lockoutpolicy

* check for lockout feature
2021-09-13 13:38:57 +02:00
Fabi
e4bdaf26b0
feat: select idp and auto register (#2336)
* faet: auto regsiter config on idp

* feat: auto register on login

* feat: auto register on register

* feat: redirect to selected identity provider

* fix: test

* fix: test

* fix: user by id request org id

* fix: migration version and test

Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-09-10 09:49:49 +02:00
Fabi
79fb8aa37a
fix: use correct command side (#2334)
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-09-10 07:29:21 +00:00
Fabi
59e393728e
feat: Lockout policy feature (#2341)
* feat: add lockoutpolicy feature

* feat: add tests

* fix: err handling
2021-09-09 13:42:28 +00:00
Livio Amstutz
257bf90f7e
fix: UserByIDAndResourceOwner query (#2340) 2021-09-09 11:10:06 +00:00
Fabi
45ebd16226
fix: user metadata org id instead of resource owner (#2338) 2021-09-09 07:17:17 +00:00
Fabi
530f3e6a4a
fix: user by id request org id (#2337) 2021-09-08 15:14:39 +02:00
Livio Amstutz
1ac1492fd3
fix: handle multiple statements for a single event in projections (#2313)
* fix: handle multiple statements for a single event in projections

* export func type

* fix test

* Update internal/eventstore/handler/crdb/statement.go

Co-authored-by: Silvan <silvan.reusser@gmail.com>

* Update internal/eventstore/handler/crdb/statement.go

Co-authored-by: Silvan <silvan.reusser@gmail.com>

* change to pointers

* add error test case

Co-authored-by: Silvan <silvan.reusser@gmail.com>
2021-09-08 13:54:31 +02:00
Max Peintner
ec6a3a1847
chore(docs): update deps (#2335) 2021-09-07 21:17:07 +02:00
Livio Amstutz
b5a6e25e9d
fix: handle private labeling on login page without auth request (#2309)
* fix: handle private labeling on login page without auth request

* fix: respect requested org (primary domain scope) for private labeling again
2021-09-02 18:29:42 +02:00
Silvan
ec6e1ed467
fix(sql): set max life / idle time to 30 min (#2306) 2021-09-02 10:58:19 +00:00
Silvan
69b1b9bcdb
fix(crdb): version 21.1.8 (#2305) 2021-09-02 09:46:25 +00:00
Silvan
4af0046a09
fix(database): add index for aggregate type (#2304) 2021-09-02 09:06:16 +00:00
Fabi
1cd26d5b7d
fix: remove manipulate metadata from authapi (#2303) 2021-09-02 09:22:28 +02:00
Silvan
296f1c3c71
fix(eventstore): fill new column with data (#2288)
* fix: smaller outage on events migration first part

* fix: fill old events with sequence

* fix: migration add transactions

* fix: mig

* rename mig

* replace migration with setup step

* regenerate mock

* add step 20 to config

* log

* simplify step

* limit 1000

* limit 500
2021-09-01 09:25:52 +00:00
Silvan
f9203940fb
fix: smaller outage on events migration first part (#2287) 2021-09-01 07:59:24 +00:00
Fabi
31a91a0039
feat: add resource owner scope / claim (#2274)
* feat: add resource owner scope / claime

* fix: private claimes

* fix: private claims

* fix: add claim description

* Update claims.md

Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-08-31 09:49:31 +00:00
Max Peintner
c884a11f1b
feat(console): project privatelabelling, catch query param to set org context (#2277)
* feat: privatelabeling setting, query param for context

* lint

* Update console/src/assets/i18n/de.json

Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>

* Update console/src/assets/i18n/de.json

Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>

* Update console/src/assets/i18n/en.json

Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>

* Update console/src/assets/i18n/en.json

Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>

Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
2021-08-31 08:25:24 +02:00
Fabi
e8da0e3f4f
fix: Factors login policy (#2276)
* fix: check policy removed on factors

* fix: check policy removed on factors
2021-08-30 07:24:04 +02:00
Fabi
5b4c64d740
feat: add user metadata scope and claim (#2268)
* feat: add user metadata scope and claime

* docs: scope

* docs: metadata base 64 encoded

* docs: metadata base 64 encoded

* docs: metadata base 64 encoded
2021-08-26 11:38:13 +00:00
Max Peintner
1da68420bc
fix: idp removal (#2271) 2021-08-26 10:47:18 +02:00
Max Peintner
cd629a5d1c
fix(console): idp write access (#2258)
* fix: idp

* disable idp form in detail

* lint

* change list idp request

* fix external idp removal
2021-08-26 08:15:00 +02:00
Livio Amstutz
34002ec834
fix: check domain of username not claimed by other organisation and cleanup (#2265)
* fix: register human

* fix: check domain of username not claimed by other organisation

* fix: create setup step to create domain claimed events for invalid users

* Update setup_step19.go
2021-08-25 09:12:24 +00:00
Elio Bischof
d414404885
fix: increase instant backup timeout (#2266) 2021-08-25 08:38:11 +00:00
Fabi
f85fd4a1fc
fix: Idp bugs (#2259)
* fix: remove external idp unique constraints on user remove

* fix: auto register user login mapping

* fix: remove external idps on user remove

* fix: tests

* fix: login policy removed, reset idp provider
2021-08-24 09:22:21 +02:00
Fabi
74688394d8
feat: set private labeling setting on project (#2184)
* docs: add scope to request private labeling

* feat: add enum to project

* fix: remove unused code, add private labeling setting to query side

* fix: set private labeling depending on setting

* fix: private labeling depending on project setting

* Update proto/zitadel/management.proto

Co-authored-by: Livio Amstutz <livio.a@gmail.com>

* fix: rename sql file

* fix: private labeling setting

Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-08-24 08:34:10 +02:00
mffap
7993d92907
docs(legal): add support service tos (#2234)
* wip

* add in sidebar

* wip

* term

* payment

* lapsed service fee

* wip

* mainteance and support process

* small changes

* service credit

* failure credits

* support services update

* termination, next: trainings

* checkup

* update dates

* service review

* delete termination clause from support-services

* Revert "update dates"

This reverts commit d5592b1869.

* dates support tos and annex

* training & termination

* adds trainings to guides

* urgent escalation slo

* missing sentence in modification

* define unit

* remove termination period from term

* Apply suggestions from code review

Co-authored-by: Florian Forster <florian@caos.ch>

* from review

Co-authored-by: Maximilian Panne <maximilian.panne@gmail.com>
Co-authored-by: Florian Forster <florian@caos.ch>
2021-08-23 15:28:23 +02:00
Max Peintner
79e801e609
doc: remove dummy secret from authconfig in angular (#2257) 2021-08-23 13:07:35 +02:00