adlerhurst
d494da67be
repo event mappers
2020-11-30 08:53:08 +01:00
adlerhurst
968f766a8f
cleanup code
2020-11-30 08:35:40 +01:00
adlerhurst
0780c23f76
member
2020-11-30 07:56:38 +01:00
adlerhurst
c2400e1da5
Merge remote-tracking branch 'origin/master' into new-eventstore
2020-11-30 07:41:14 +01:00
adlerhurst
ebeedd1346
policy, idp, member.
...
member not working atm
2020-11-30 06:40:56 +01:00
Silvan
d6c9707ad0
fix(spooler): fast start ( #1023 )
2020-11-27 15:32:26 +01:00
Livio Amstutz
2331b8a4c0
feat(oidc): add clock skew and userinfo claims in ID Token ( #1022 )
...
* feat: add clock skew
* add IDTokenUserinfoAssertion
* migration
* fix missing converter
* update oidc version
* fix interface impl
2020-11-27 14:10:52 +01:00
adlerhurst
fc861ea544
remove unused fiel
2020-11-27 13:30:08 +01:00
adlerhurst
e48621c1f3
idp command side done
2020-11-27 13:29:35 +01:00
adlerhurst
9487e8bdeb
idp
2020-11-27 11:30:56 +01:00
adlerhurst
3bd4d3a8e3
Merge remote-tracking branch 'origin/master' into new-eventstore
2020-11-26 13:14:12 +01:00
adlerhurst
1b3f821ad0
idp config
2020-11-26 13:14:07 +01:00
adlerhurst
246d4294cf
fix(eventstore): tests
2020-11-26 09:19:14 +01:00
adlerhurst
4bb9650f27
idp
2020-11-25 20:04:32 +01:00
adlerhurst
f6cdcee77a
append events without return value
2020-11-25 14:12:44 +01:00
Silvan
42f50de790
fix(machine): set creationdate ( #1018 )
...
* fix(machine): set creationdate
* fix(translations): translate `user.human.phone.removed`
2020-11-25 07:42:06 +01:00
Silvan
78a1b8f019
fix: org member change and remove ( #1014 )
...
* fix: member
* fix: test
* fix: test
* fix: tests
2020-11-24 15:55:38 +01:00
Fabi
75bf0409c4
fix: management api remove otp ( #1010 )
...
* fix: management api remove otp
* add postinstall
* remove mgmt otp
Co-authored-by: Max Peintner <max@caos.ch>
2020-11-24 12:06:46 +01:00
adlerhurst
f8028f07d0
event data search query
2020-11-23 19:31:12 +01:00
adlerhurst
6431fd2ec5
Merge remote-tracking branch 'origin/master' into new-eventstore
2020-11-23 11:40:50 +01:00
adlerhurst
4aadd290f4
write model
2020-11-23 11:36:58 +01:00
Silvan
855725c3c0
fix: project add validation ( #997 )
...
* fix: add project validation
* fix: removed loop
2020-11-21 17:20:01 +01:00
Silvan
5d2c053f87
fix: add project validation ( #996 )
2020-11-21 13:38:32 +01:00
adlerhurst
20f4fa56c5
try writemodel
2020-11-20 17:03:17 +01:00
Livio Amstutz
7e3ace7a96
fix: TestAuthRequestRepo_nextSteps ( #995 )
2020-11-20 13:05:35 +01:00
Fabi
a891fb571a
fix: fill selected idp config id on step ( #994 )
2020-11-20 11:20:17 +01:00
Fabi
666e43a7e2
feat: probes ( #964 )
...
* feat: probes
* feat: validate
* fix: protos
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-11-20 10:09:17 +01:00
Fabi
7c6fd2b51e
fix: Externallogin on existing session ( #990 )
...
* fix: existing session with external login
* fix: existing session with external login
* fix: return in login
2020-11-20 09:00:49 +01:00
Livio Amstutz
85d2be2e8c
fix: handle short cache for console correctly ( #993 )
2020-11-20 08:47:28 +01:00
Silvan
168242e725
fix(tracing): from opencensus to opentelemetry ( #937 )
...
* refactor: switch from opencensus to opentelemetry
* tempo works as designed nooooot
* fix: log traceids
* with grafana agent
* fix: http tracing
* fix: cleanup files
* chore: remove todo
* fix: bad test
* fix: ignore methods in grpc interceptors
* fix: remove test log
* clean up
* typo
* fix(config): configure tracing endpoint
* fix(span): add error id to span
2020-11-20 07:57:39 +01:00
adlerhurst
609c4d4f24
Merge branch 'master' into new-eventstore
2020-11-19 17:20:09 +01:00
Silvan
fcf81bed5f
fix: dont overwrite resource owner in objectroot ( #992 )
...
* fix(management): search user grants with granted
* fix(auth): handle user grant project owner
* fix: grantowner to resourceowner
* fix: generate mock
* fix: mig
* fix: query correct columns
* fix: remove new line
* fix: dont overwrite resourceowner on appendevent
2020-11-19 16:23:48 +01:00
Silvan
9c603d9b38
fix: query correct column ( #991 )
...
* fix(management): search user grants with granted
* fix(auth): handle user grant project owner
* fix: grantowner to resourceowner
* fix: generate mock
* fix: mig
* fix: query correct columns
* fix: remove new line
2020-11-19 15:21:22 +01:00
Silvan
93e941a475
fix: Improve search user grants ( #988 )
...
* fix(management): search user grants with granted
* fix(auth): handle user grant project owner
* fix: migration
2020-11-19 14:13:07 +01:00
adlerhurst
4d6497f6c1
try with writemodel
2020-11-18 21:22:15 +01:00
Fabi
a40ec1f25b
fix: audience in create token ( #985 )
2020-11-18 17:11:37 +01:00
Livio Amstutz
16cd7388ce
fix: handle LoginPolicyRemoved in auth ( #982 )
2020-11-18 15:18:03 +01:00
Livio Amstutz
b9be5f4e11
fix: handle disabled mfa types correctly during login ( #979 )
...
* fix: handle disabled mfa types during login correctly
* fix: add 2fa to default login policy
* fix: setup
* Update internal/setup/step7.go
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
2020-11-18 12:56:24 +01:00
adlerhurst
147782332f
Merge remote-tracking branch 'origin/master' into new-eventstore
2020-11-18 10:36:02 +01:00
Fabi
119ddbfa09
fix: new build ( #977 )
2020-11-17 17:29:41 +01:00
adlerhurst
edff816ec1
start idp config
2020-11-17 13:44:37 +01:00
Livio Amstutz
376fba72d8
fix: user init mail (for wrong email) ( #891 )
...
* add resendInitialMail
* disable email notifications (when not initialised)
* fix resend init mail
* add tests
* cleanup
* cleanup
* fix tests
* add resend trigger, dialog
* refactor contact component, add sendinitmail fnc
* skip email if empty
* reload user on phone email changes, i18n warndialog on dl
* lint
* rebuild mgmt proto
* remove initial focus
* Update console/src/assets/i18n/de.json
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
2020-11-16 11:43:22 +01:00
Fabi
78c0cf2f57
fix: add and verified projectID in audience ( #957 )
...
* feat: new scope for project id in aud
* feat: add doc
* feat: projectid endpoint
* feat: remove handle Proejct id
* fix: remove go.mod replace
* fix: add project id to aud
* fix: update oidc version
* fix: change project id scope
* update projectID scope to current usage
* typo: ZITADEL uppercase
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-11-16 10:54:48 +01:00
adlerhurst
4b1e79604a
new iam repo in all services
2020-11-12 23:15:01 +01:00
adlerhurst
23e6cad703
start implementing new eventstore on iam
2020-11-12 22:50:01 +01:00
Silvan
966e3850ed
fix(changes): decide if human or machine modifier ( #953 )
2020-11-12 17:01:30 +01:00
adlerhurst
720fea4bcc
member
2020-11-11 17:51:44 +01:00
adlerhurst
4e0577e74f
rename files
2020-11-06 22:44:23 +01:00
adlerhurst
57fc3ddd16
policies implemented
2020-11-06 22:09:19 +01:00
adlerhurst
f7f810caa5
iam events
2020-11-06 17:25:07 +01:00
adlerhurst
f4bd5ddcbc
try splitt event
2020-11-06 13:47:27 +01:00
adlerhurst
756a4f1d08
fix: union
2020-11-05 13:24:37 +01:00
Fabi
202aae4954
feat: mfa policy ( #913 )
...
* feat: add mfa to login policy
* feat: add mfa to login policy
* feat: add mfa to login policy
* feat: add mfa to login policy
* feat: add mfa to login policy on org
* feat: add mfa to login policy on org
* feat: append events on policy views
* feat: iam login policy mfa definition
* feat: login policies on orgs
* feat: configured mfas in login process
* feat: configured mfas in login process
* Update internal/ui/login/static/i18n/en.yaml
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: rename software and hardware mfas
* fix: pr requests
* fix user mfa
* fix: test
* fix: oidc version
* fix: oidc version
* fix: proto gen
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: Max Peintner <max@caos.ch>
2020-11-04 11:26:10 +01:00
Fabi
51417be35d
feat: primary domain ( #936 )
...
* fix: primary domain
* fix: remove comment
* fix: oidc version
2020-11-03 10:50:03 +01:00
Fabi
b79661d66e
fix: add search params for user grants ( #915 )
2020-11-03 07:52:49 +01:00
Livio Amstutz
6a91cfe5a6
fix: email styling ( #918 )
2020-10-28 15:26:20 +01:00
Silvan
b9fdcb53a2
fix: auth app handler with projectEvents ( #917 )
2020-10-28 11:19:10 +01:00
adlerhurst
3093eb0dbd
Merge branch 'master' into new-eventstore
2020-10-27 16:07:24 +01:00
adlerhurst
727d783478
fix: eventstore tests
2020-10-27 16:03:17 +01:00
Silvan
e686268e81
fix: flags on application view ( #910 )
...
* wg24q
* fix: set ProjectRoleCheck and ProjectRoleAssertion on added application
2020-10-27 15:53:36 +01:00
adlerhurst
faee29bbb6
fix: tests
2020-10-27 15:42:18 +01:00
adlerhurst
936c88c6ed
fix: comments
2020-10-26 14:49:42 +01:00
Livio Amstutz
524a6d4467
fix: type conversation ( #894 )
2020-10-26 08:38:48 +01:00
adlerhurst
dfb8c266d7
test: example for eventstore
2020-10-23 16:16:46 +02:00
adlerhurst
b6ed7a396c
fix(eventstore): resource owner from previous event
2020-10-22 18:13:31 +02:00
adlerhurst
0f855c86cf
test: eventstore queries
2020-10-21 19:45:23 +02:00
adlerhurst
5fc0a808e1
test(eventstore): queries
2020-10-21 19:29:22 +02:00
adlerhurst
3c9c2806c8
test: eventstore
2020-10-21 19:00:41 +02:00
Livio Amstutz
274dce2c6a
fix(notification): check both user event versions and if code expired ( #887 )
2020-10-21 16:42:29 +02:00
Livio Amstutz
b3f68c8f48
feat: add tracing interceptors to login and oidc ( #764 )
...
* add tracing interceptors to login and oidc
* add some tracing spans
* trace login calls
* add some spans
* add some spans (change password)
* add some more tracing in oauth/oidc
* revert org exists
* Merge branch 'master' into http-tracing
# Conflicts:
# internal/api/oidc/auth_request.go
# internal/api/oidc/client.go
# internal/auth/repository/eventsourcing/eventstore/auth_request.go
# internal/auth/repository/eventsourcing/eventstore/user.go
# internal/authz/repository/eventsourcing/eventstore/token_verifier.go
# internal/authz/repository/eventsourcing/view/token.go
# internal/user/repository/eventsourcing/eventstore.go
2020-10-21 10:18:34 +02:00
adlerhurst
83121ab44d
test: eventstore query
2020-10-21 09:39:24 +02:00
Michael Waeger
42384763d1
feat: Private label email policy ( #813 )
...
* Label Policy added
* save
* chore: update docs action
* Save
* Save
* Get colors from DB
* Variables inserted
* Get images from global directory.
* Add tests
* Add tests
* Corrections from mergerequest
* Corrections from mergerequest
* Test corrected.
* Added colors to all notifications.
* Added colors to
Corrected text and formatting.all notifications.
* Spelling error corrected.
* fix: tests
* Merge Branch corrected.
* Step6 added
* Corrections from mergerequest
* fix: generate management
* Formatted texts.
* fix: migrations
Co-authored-by: Florian Forster <florian@caos.ch>
Co-authored-by: adlerhurst <silvan.reusser@gmail.com>
Co-authored-by: Fabiennne <fabienne.gerschwiler@gmail.com>
2020-10-20 19:10:23 +02:00
Fabi
57a3ccc91b
fix: handle login policy removed ( #882 )
2020-10-20 15:54:26 +02:00
Fabi
7e56ace9d9
fix: idp provider handler ( #874 )
...
* fix: idp provider handler
* fix: idp provider search
* fix: idp provider search
* fix: error handling
* fix: error handling
* fix: fix read config
2020-10-20 14:26:19 +02:00
Fabi
46bc987b28
fix: idp changes ( #872 )
2020-10-20 08:23:56 +02:00
Fabi
4eb380a825
fix: IDP login button styles ( #869 )
...
* fix: styling type on idp
* fix: google styling
* fix: google styling
* fix: google styling
* fix: remove logo src from angular
* fix: pr requests
* fix drop column migration
* fix: drop column migration
* fix: grant id
2020-10-19 17:10:02 +02:00
Fabi
bb9747923c
fix: cascade remove external login ( #871 )
...
* fix: cascade remove external login
* fix: tests
2020-10-19 16:28:06 +02:00
adlerhurst
370597a0e8
fix: remove routines
2020-10-19 13:58:59 +02:00
adlerhurst
35ce026651
try with goroutines
2020-10-19 09:53:32 +02:00
Fabi
c3b4c3f264
fix: translations and oidc package update ( #845 )
...
* fix: translation
* fix: translation
* fix: translation
* fix: UserInfo with JWT access token
* fix: dependencies
* fix: dependencies
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-10-16 13:15:19 +02:00
Livio Amstutz
a321d850ae
feat: project roles ( #843 )
...
* fix logging
* token verification
* feat: assert roles
* feat: add project role assertion on project and token type on app
* id and access token role assertion
* add project role check
* user grant required step in login
* update library
* fix merge
* fix merge
* fix merge
* update oidc library
* fix tests
* add tests for GrantRequiredStep
* add missing field ProjectRoleCheck on project view model
* fix project create
* fix project create
2020-10-16 07:49:38 +02:00
adlerhurst
55e5e82dbc
fix(eventstore): set previous sequence NULL if not checked
2020-10-15 16:51:00 +02:00
Fabi
265b491696
feat: tokens on user aggregate ( #837 )
...
* fix: fix remove policies in spoolers
* fix: reread of token by id
* fix: update oidc package
* fix: possible nil pointer on token split
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-10-15 13:52:41 +02:00
adlerhurst
62f0d9d59d
push tests
2020-10-15 13:25:25 +02:00
Fabi
fbb30840f1
feat: policies on aggregates ( #799 )
...
* feat: move pw policy
* feat: default pw complexity policy
* fix: org password complexity policy
* fix: org password complexity policy
* fix: pw complexity policy with setup
* fix: age and lockout policies on aggregates
* fix: migration
* fix: org iam policy
* fix: org iam policy
* fix: org iam policy
* fix: tests
* fix: policy request
* fix: merge master
* fix(console): policies frontend (#817 )
* fix policy build
* fix: age, complexity, lockout policies
* fix: ready return err of setup not done
* fix: fix remove policies in spoolers
* fix: fix remove policies in spoolers
* feat(console): policy settings for iam and org (#824 )
* fix policy build
* fix: age, complexity, lockout policies
* fix pwd complexity
* policy remove action
* add imports
* fix accounts card, enable mgmt login policy
* lint
* add iam policy to admin
* toasts, i18n, show default
* routing, i18n
* reset policy, toast i18n, cleanup, routing
* policy delete permission
* lint style
* delete iam policy
* delete non project from grid list, i18n
* lint ts, style
* fix: remove instead delete
* feat(console): delete external idp from user (#835 )
* dialog i18n, delete column and function
* dialog i18n
* fix rm button
* Update console/src/assets/i18n/de.json
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
* Update console/src/assets/i18n/de.json
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
* fix: revert env, rename policy, remove comments
* fix: lowercase sich
* fix: pr requests
* Update internal/iam/repository/eventsourcing/eventstore_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* fix: tests
* fix: tests
* fix(console): policies (#839 )
* fix: nil pointer on get userdata (#815 )
* fix: external login (#818 )
* fix: external login
* fix: external login
* feat(console): delete user (#819 )
* add action col to user table, i18n
* delete user from detail component
* lint
* fix(console): cleanup user detail and member components, user/me redirect, permission guards, filter, org policy guard, user table, scss cleanup (#808 )
* fix: remove user.write guard for filtering
* border color
* fix user routing from member tables
* idp detail layout
* generic contact component
* fix redirect to auth user, user grant disable
* disable policy action without permission, i18n
* user-create flex fix, contact ng-content
* rm unused styles
* sidenav divider
* lint
* chore(deps-dev): bump @angular/cli from 10.1.3 to 10.1.4 in /console (#806 )
* fix: user session with external login (#797 )
* fix: user session with external login
* fix: tests
* fix: tests
* fix: change idp config name
* fix(container): stop copying / and instead only copy zitadel (#691 )
* chore: stop copying / and instead only copy zitadel
* Update Dockerfile
* Update release.yml
* enable anchors debug
* fix(container): don't copy alpine content into scratch execpt pwd
* chore: remove need step
* merge master
* chore(deps-dev): bump @angular/cli from 10.1.3 to 10.1.4 in /console
Bumps [@angular/cli](https://github.com/angular/angular-cli ) from 10.1.3 to 10.1.4.
- [Release notes](https://github.com/angular/angular-cli/releases )
- [Commits](https://github.com/angular/angular-cli/compare/v10.1.3...v10.1.4 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Florian Forster <florian@caos.ch>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps-dev): bump @angular/language-service from 10.1.3 to 10.1.4 in /console (#805 )
* fix: user session with external login (#797 )
* fix: user session with external login
* fix: tests
* fix: tests
* fix: change idp config name
* fix(container): stop copying / and instead only copy zitadel (#691 )
* chore: stop copying / and instead only copy zitadel
* Update Dockerfile
* Update release.yml
* enable anchors debug
* fix(container): don't copy alpine content into scratch execpt pwd
* chore: remove need step
* merge master
* chore(deps-dev): bump @angular/language-service in /console
Bumps [@angular/language-service](https://github.com/angular/angular/tree/HEAD/packages/language-service ) from 10.1.3 to 10.1.4.
- [Release notes](https://github.com/angular/angular/releases )
- [Changelog](https://github.com/angular/angular/blob/master/CHANGELOG.md )
- [Commits](https://github.com/angular/angular/commits/10.1.4/packages/language-service )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Florian Forster <florian@caos.ch>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps-dev): bump codelyzer from 6.0.0 to 6.0.1 in /console (#804 )
* fix: user session with external login (#797 )
* fix: user session with external login
* fix: tests
* fix: tests
* fix: change idp config name
* fix(container): stop copying / and instead only copy zitadel (#691 )
* chore: stop copying / and instead only copy zitadel
* Update Dockerfile
* Update release.yml
* enable anchors debug
* fix(container): don't copy alpine content into scratch execpt pwd
* chore: remove need step
* merge master
* chore(deps-dev): bump codelyzer from 6.0.0 to 6.0.1 in /console
Bumps [codelyzer](https://github.com/mgechev/codelyzer ) from 6.0.0 to 6.0.1.
- [Release notes](https://github.com/mgechev/codelyzer/releases )
- [Changelog](https://github.com/mgechev/codelyzer/blob/master/CHANGELOG.md )
- [Commits](https://github.com/mgechev/codelyzer/commits/6.0.1 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Florian Forster <florian@caos.ch>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps-dev): bump @angular-devkit/build-angular from 0.1000.8 to 0.1001.4 in /console (#803 )
* fix: user session with external login (#797 )
* fix: user session with external login
* fix: tests
* fix: tests
* fix: change idp config name
* fix(container): stop copying / and instead only copy zitadel (#691 )
* chore: stop copying / and instead only copy zitadel
* Update Dockerfile
* Update release.yml
* enable anchors debug
* fix(container): don't copy alpine content into scratch execpt pwd
* chore: remove need step
* merge master
* chore(deps-dev): bump @angular-devkit/build-angular in /console
Bumps [@angular-devkit/build-angular](https://github.com/angular/angular-cli ) from 0.1000.8 to 0.1001.4.
- [Release notes](https://github.com/angular/angular-cli/releases )
- [Commits](https://github.com/angular/angular-cli/commits )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Florian Forster <florian@caos.ch>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Max Peintner <max@caos.ch>
* chore(deps): bump uuid from 8.3.0 to 8.3.1 in /console (#802 )
* fix: user session with external login (#797 )
* fix: user session with external login
* fix: tests
* fix: tests
* fix: change idp config name
* fix(container): stop copying / and instead only copy zitadel (#691 )
* chore: stop copying / and instead only copy zitadel
* Update Dockerfile
* Update release.yml
* enable anchors debug
* fix(container): don't copy alpine content into scratch execpt pwd
* chore: remove need step
* merge master
* chore(deps): bump uuid from 8.3.0 to 8.3.1 in /console
Bumps [uuid](https://github.com/uuidjs/uuid ) from 8.3.0 to 8.3.1.
- [Release notes](https://github.com/uuidjs/uuid/releases )
- [Changelog](https://github.com/uuidjs/uuid/blob/master/CHANGELOG.md )
- [Commits](https://github.com/uuidjs/uuid/compare/v8.3.0...v8.3.1 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Florian Forster <florian@caos.ch>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* create memberstable as common component
* iam member cleanup
* iam + org m table, user table service user avatar
* toast config
* fix selection emitter
* fix project grant table width
* project grant members refactor
* theme optimizations
* member table col delete
* lint
* fix table row color
* refactor grey color
* lint scss
* org list redirect on click, fix user table undef
* refresh table after grant add
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Florian Forster <florian@caos.ch>
* fix(console): intercept navigator.language, set browser lang as default for user without explicit setting, user table outline, member create dialog import (#820 )
* i18n interceptor, set language to browser lang
* nullcheck
* rm external idp log
* fix module imports, rm user displayname from i18n
* Update console/src/assets/i18n/de.json
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
* fix: delete external idps from users (#822 )
* fix(console): permission regex, account switcher null check, restrict app and member create access (#821 )
* fix member table disable, gerneal regexp
* fix user session card, app disable
* memberships max count
* fix policy permissions
* permission check for member add dialog
* lint
* rm accounts log
* rm id regex
* fix: handle usermemberships on project and project grant delete (#825 )
* fix: go handler
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Florian Forster <florian@caos.ch>
* fix: tests
* fix: not needed error handling
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Florian Forster <florian@caos.ch>
2020-10-15 10:27:13 +02:00
Fabi
318e2c5e44
fix: reset external login verification on logout ( #840 )
2020-10-15 09:37:12 +02:00
adlerhurst
d400b02e53
test(eventstore): push
2020-10-15 08:44:17 +02:00
adlerhurst
639872b82e
fix: add tests
2020-10-14 12:43:31 +02:00
Fabi
905ee1c68a
fix: handle usermemberships on project and project grant delete ( #825 )
2020-10-13 07:46:44 +02:00
Fabi
8fe635d3fd
fix: delete external idps from users ( #822 )
2020-10-09 11:07:25 +02:00
Fabi
56d5704749
fix: external login ( #818 )
...
* fix: external login
* fix: external login
2020-10-07 16:29:56 +02:00
Fabi
a19b4d2659
fix: nil pointer on get userdata ( #815 )
2020-10-07 10:46:22 +02:00
Fabi
9ad547185c
feat: remove user ( #812 )
...
* feat: remove user
* feat: handle delete state on user by id
* feat: handle delete state on project by id
2020-10-07 08:16:42 +02:00
adlerhurst
71fd4bf9f9
refactor: eventstore v2
2020-10-06 21:28:09 +02:00
adlerhurst
46a68c15bf
fix: eventstore v2 insert statement
2020-10-06 20:20:23 +02:00
adlerhurst
9342efa834
refactor: eventstore v2
2020-10-06 20:19:56 +02:00
Silvan
8278efc131
fix(eventstore): check if creation date is not zero ( #811 )
2020-10-06 07:26:09 +02:00
adlerhurst
f2559c2027
crdb tests
2020-10-05 22:03:21 +02:00
adlerhurst
53b02b7f5e
event data mapping in eventstore v2
2020-10-05 22:02:59 +02:00
adlerhurst
64a0859d76
test(eventstore): sql unit tests
2020-10-05 20:39:36 +02:00
adlerhurst
120a8bae85
refactor(eventstore): sql
2020-10-05 19:09:26 +02:00
Fabi
f939eab133
fix: check existing idp ( #809 )
...
* fix: logs
* Update Dockerfile
* Fallback to old Docker file
* fix: for loop
* fix: for loop
* fix: for loop
* fix: remove logs
* fix: remove logs
Co-authored-by: Florian Forster <florian@caos.ch>
2020-10-05 17:14:08 +02:00
adlerhurst
eb51a429ff
testing with local cockroach started for tests and migrations
2020-10-02 16:21:51 +02:00
Fabi
198370325d
fix: user session with external login ( #797 )
...
* fix: user session with external login
* fix: tests
* fix: tests
* fix: change idp config name
2020-10-02 08:02:09 +02:00
adlerhurst
169b1787df
start with cockroach test server
2020-09-30 19:04:52 +02:00
Silvan
bdcf9fcc5c
fix(authz): fix user grant handler ( #795 )
2020-09-30 10:29:41 +02:00
adlerhurst
e4d8478b04
start sqlite migrations
2020-09-30 10:00:05 +02:00
Fabi
83b0ac1fdb
fix: idps ( #777 )
...
* fix: update client secret, skip passwordsteps only if login not if linking
* fix: global policy for register
* fix: scope handling
* fix: back after error
* fix: change org id scope to primary domain
* fix: check if primarydomain empty
* fix: local sh
* fix: disable buttons on org login policy
2020-09-28 09:29:41 +02:00
Silvan
3e1204524e
fix: multiple setup steps ( #773 )
...
* fix: multiple setup steps
* fix: test set up started
* fix: possible nil pointers in setup
* fix: validate executed step
2020-09-24 11:38:28 +02:00
adlerhurst
7da344be26
init v2
2020-09-24 08:52:10 +02:00
Fabi
0bd27bc8e4
fix: add prompt on oidc rp, fix idp and login policy in console ( #769 )
...
* fix: add prompt on oidc rp
* fix: add prompt on oidc rp
* fix: translation
* fix: translation
* fix: not existing login policy
* fix: login policy
* fix: identity provider detail
* fix: idp update
* fix: idps in login policy
* fix: lint
* fix: scss
* fix: external idps on auth user detail
* fix: idp create mapping fields
* fix: remove idp provider
* fix: angular lint
* fix: login policy view
* fix: translations
2020-09-23 16:52:19 +02:00
Livio Amstutz
9887e897ee
fix: only show external login text when providers available ( #768 )
2020-09-21 14:06:54 +02:00
Livio Amstutz
da8f243129
fix: marshal of user info address ( #767 )
2020-09-21 12:55:39 +02:00
Fabi
108f6b3545
feat: external idps on user ( #755 )
...
* feat: show external idps on user
* feat: show external idps on user
* fix: angular linting
* fix: display Name
* fix: display Name email
2020-09-18 17:00:38 +02:00
Silvan
ee0383cae8
refactor: spooled handler ( #752 )
...
* refactor: spooled handler
* fix(spooler): test locked channel
2020-09-18 13:39:28 +02:00
Fabi
320ddfa46d
feat: Identity brokering ( #730 )
...
* feat: add/ remove external idps
* feat: external idp add /remove
* fix: auth proto
* fix: handle login
* feat: loginpolicy on authrequest
* feat: idp providers on login
* feat: link external idp
* fix: check login policy on check username
* feat: add mapping fields for idp config
* feat: use user org id if existing
* feat: use user org id if existing
* feat: register external user
* feat: register external user
* feat: user linking
* feat: user linking
* feat: design external login
* feat: design external login
* fix: tests
* fix: regenerate login design
* feat: next step test linking process
* feat: next step test linking process
* feat: cascade remove external idps on user
* fix: tests
* fix: tests
* feat: external idp requsts on users
* fix: generate protos
* feat: login styles
* feat: login styles
* fix: link user
* fix: register user on specifig org
* fix: user linking
* fix: register external, linking auto
* fix: remove unnecessary request from proto
* fix: tests
* fix: new oidc package
* fix: migration version
* fix: policy permissions
* Update internal/ui/login/static/i18n/en.yaml
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/ui/login/static/i18n/en.yaml
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/ui/login/handler/renderer.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/ui/login/handler/renderer.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: pr requests
* Update internal/ui/login/handler/link_users_handler.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: pr requests
* fix: pr requests
* fix: pr requests
* fix: login name size
* fix: profile image light
* fix: colors
* fix: pr requests
* fix: remove redirect uri validator
* fix: remove redirect uri validator
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-09-18 13:26:28 +02:00
Silvan
e7b499794d
fix(setup): set first org owner as project owner ( #753 )
2020-09-17 16:48:14 +02:00
Silvan
845026e43f
fix(spooler): memory leak ( #751 )
...
* fix: dependecies
* fix: one of two memory leaks found
* fix: remove log
2020-09-17 09:12:56 +02:00
Silvan
5a8cafcae5
fix: JWT Profile ( #748 )
...
* fix: correct env var for tracing type
* fix: local env tracing
* fix: key in detail as string
* fix: implement storage
* fix: machine key by id
fix: store public key as bytes instead of crypto value
* update oidc pkg
* dont check origins for service account tokens
* fix: scopes
* fix: dependencies
* fix: dependencies
* fix: remove unused code
* fix: variable naming
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-09-17 08:49:33 +02:00
Silvan
71abc4f077
test: machine ( #683 )
...
* test: machine
* test: better naming
2020-09-15 15:04:02 +02:00
Silvan
eefdd17478
fix(usergrant): delete in handler search for correct key ( #732 )
2020-09-11 16:01:03 +02:00
Silvan
c37d55b069
fix: User grant id key ( #731 )
...
* fix: log id and error message
* fix: user grant by id correct search field
2020-09-11 14:51:50 +02:00
Silvan
87c0010d54
fix: unique username ( #726 )
2020-09-11 10:50:35 +02:00
Livio Amstutz
8fcb03854b
fix: iam permission ( #720 )
...
* fix: get iam permissions
* fix: iam permissions
2020-09-10 15:40:20 +02:00
Silvan
463294669e
fix: Key details as string ( #719 )
...
* fix: correct env var for tracing type
* fix: local env tracing
* fix: key in detail as string
2020-09-09 16:19:17 +02:00
Livio Amstutz
619d194044
fix: get iam permissions ( #713 )
2020-09-08 19:05:12 +02:00
Fabi
afaf798940
fix: tos link ( #712 )
2020-09-08 17:13:01 +02:00
Fabi
4bc1eff373
feat: add terms on register and register org ( #699 )
...
* feat: add terms on register and register org
* feat: add terms on register and register org
* update form_submit.js to handle checkboxes correctly
* feat: free tier on org reg
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-09-07 14:52:49 +02:00
Livio Amstutz
cca92874ab
fix: permissions ( #698 )
...
* get my zitadel permissions from memberships (not grants)
* change SearchMyProjectOrgs to user user_membership
2020-09-04 15:20:39 +02:00
Livio Amstutz
c553c70887
fix: user state ( #693 )
2020-09-04 09:55:26 +02:00
Fabi
c92042ba47
fix: checkperms ( #689 )
...
* fix: read user grants as grant owner
* fix: read user grants as grant owner
2020-09-02 16:25:32 +02:00
Fabi
4b183633ab
fix: check permissions for user grant ( #687 )
2020-09-02 11:06:08 +02:00
Livio Amstutz
370cd19a83
fix: improve permission checks ( #682 )
...
* separate roles for global org
* remove old user grant permissions
* allow context permissions
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
2020-09-01 16:38:34 +02:00
Livio Amstutz
c55b9ff40c
fix: login prefix for handler ( #674 )
2020-08-31 19:35:34 +02:00
Silvan
5abd5b0505
feat: split users into human and machine ( #470 )
...
* feat(management): service accounts
* chore: current go version
* init
* refactor: apis
* feat(internal): start impl of service account
* chore: start impl of machine/human users
* code compiles
* fix: tests
* fix: tests
* fix: add new event types to switches
* chore: add cases to event types
* fix(management): definitive proto messages
* fix: machine/human
* fix: add missing tables as todos
* fix: remove unused permissions
* fix: refactoring
* fix: refactor
* fix: human registered
* fix: user id
* fix: logid
* fix: proto remove //equal
* chore(management): remove no comment
* fix: human mfas
* fix: user subobjects
* chore: rename existing to better name
* fix: username in user (#634 )
* fix: username in user
* fix: username
* fix remove unused code
* fix add validations
* fix: use new user in all apis
* fix: regexp for username in api
* fix: fill user data for human and machine (#638 )
* fix: fill Display name grant/member handlers
fix: add description to grant/member objects in api
fix: check if user is human in login
* fix: remove description from member and grant
* chore: remove todos
* feat: machine keys
* fix: implement missing parts
* feat: machine key management view
* fix: remove keys from machine view
* fix: set default expiration date
* fix: get key by ids
* feat: add machine keys in proto
* feat: machine keys
* fix: add migration
* fix: mig
* fix: correct method name
* feat: user search
* feat: user search
* fix: log ids
* fix partial authconfig prompt, domain c perm
* membership read check
* contributor refresh trigger, observe org write
* fix: migrations
* fix(console): machine build (#660 )
* frontend 1
* fix html bindings
* trailing comma
* user permissions, project deactivate
* fix(console): human view (#661 )
* fix search user view, user detail form
* rm log
* feat(console): user services list and create (#663 )
* fix search user view, user detail form
* rm log
* machine list
* generic table component
* create user service
* proove table for undefined values
* tmp disable user link if machine
* lint
* lint styles
* user table lint
* Update console/src/assets/i18n/de.json
Co-authored-by: Florian Forster <florian@caos.ch>
* feat(console): service user detail view, keys cr_d, fix search user autocomplete (#664 )
* service users for sidenav, routing
* i18n
* back routes
* machine detail form
* update machine detail, fix svc user grants
* keys table
* add key dialog, timestamp creation
* check permission on create, delete, fix selection
* lint ts, scss
* Update console/src/assets/i18n/de.json
* Apply suggestions from code review
Co-authored-by: Florian Forster <florian@caos.ch>
* allow user grants for project.write
* management service
* fix mgmt service
* feat: Machine keys (#655 )
* fix: memberships (#633 )
* feat: add iam members to memberships
* fix: search project grants
* fix: rename
* feat: idp and login policy configurations (#619 )
* feat: oidc config
* fix: oidc configurations
* feat: oidc idp config
* feat: add oidc config test
* fix: tests
* fix: tests
* feat: translate new events
* feat: idp eventstore
* feat: idp eventstore
* fix: tests
* feat: command side idp
* feat: query side idp
* feat: idp config on org
* fix: tests
* feat: authz idp on org
* feat: org idps
* feat: login policy
* feat: login policy
* feat: login policy
* feat: add idp func on login policy
* feat: add validation to loginpolicy and idp provider
* feat: add default login policy
* feat: login policy on org
* feat: login policy on org
* fix: id config handlers
* fix: id config handlers
* fix: create idp on org
* fix: create idp on org
* fix: not existing idp config
* fix: default login policy
* fix: add login policy on org
* fix: idp provider search on org
* fix: test
* fix: remove idp on org
* fix: test
* fix: test
* fix: remove admin idp
* fix: logo src as byte
* fix: migration
* fix: tests
* Update internal/iam/repository/eventsourcing/iam.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/iam_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/iam_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/model/login_policy.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/model/login_policy.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/org/repository/eventsourcing/org_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/model/login_policy_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/model/login_policy_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* fix: pr comments
* fix: tests
* Update types.go
* fix: merge request changes
* fix: reduce optimization
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: reread user mfas, preferred loginname as otp account name (#636 )
* fix: reread user mfas
* fix: use preferred login name as otp account name
* fix: tests
* fix: reduce (#635 )
* fix: management reduce optimization
* fix: reduce optimization
* fix: reduce optimization
* fix: merge master
* chore(deps): bump github.com/gorilla/schema from 1.1.0 to 1.2.0 (#627 )
Bumps [github.com/gorilla/schema](https://github.com/gorilla/schema ) from 1.1.0 to 1.2.0.
- [Release notes](https://github.com/gorilla/schema/releases )
- [Commits](https://github.com/gorilla/schema/compare/v1.1.0...v1.2.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps): bump github.com/gorilla/mux from 1.7.4 to 1.8.0 (#624 )
Bumps [github.com/gorilla/mux](https://github.com/gorilla/mux ) from 1.7.4 to 1.8.0.
- [Release notes](https://github.com/gorilla/mux/releases )
- [Commits](https://github.com/gorilla/mux/compare/v1.7.4...v1.8.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps): bump github.com/DATA-DOG/go-sqlmock from 1.4.1 to 1.5.0 (#591 )
Bumps [github.com/DATA-DOG/go-sqlmock](https://github.com/DATA-DOG/go-sqlmock ) from 1.4.1 to 1.5.0.
- [Release notes](https://github.com/DATA-DOG/go-sqlmock/releases )
- [Commits](https://github.com/DATA-DOG/go-sqlmock/compare/v1.4.1...v1.5.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore: auto assign issues and PR to ZTIADEL project board (#643 )
* Create main.yml
* Update main.yml
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix(console): project grant members, update deps (#645 )
* fix: searchprojectgrantmembers
* chore(deps-dev): bump @angular/cli from 10.0.6 to 10.0.7 in /console (#622 )
Bumps [@angular/cli](https://github.com/angular/angular-cli ) from 10.0.6 to 10.0.7.
- [Release notes](https://github.com/angular/angular-cli/releases )
- [Commits](https://github.com/angular/angular-cli/compare/v10.0.6...v10.0.7 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps-dev): bump @angular-devkit/build-angular in /console (#626 )
Bumps [@angular-devkit/build-angular](https://github.com/angular/angular-cli ) from 0.1000.6 to 0.1000.7.
- [Release notes](https://github.com/angular/angular-cli/releases )
- [Commits](https://github.com/angular/angular-cli/commits )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Max Peintner <max@caos.ch>
* chore(deps-dev): bump @types/jasmine from 3.5.12 to 3.5.13 in /console (#623 )
Bumps [@types/jasmine](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jasmine ) from 3.5.12 to 3.5.13.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jasmine )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps-dev): bump ts-node from 8.10.2 to 9.0.0 in /console (#629 )
Bumps [ts-node](https://github.com/TypeStrong/ts-node ) from 8.10.2 to 9.0.0.
- [Release notes](https://github.com/TypeStrong/ts-node/releases )
- [Commits](https://github.com/TypeStrong/ts-node/compare/v8.10.2...v9.0.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* update packlock
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore: delete main.yml (#648 )
* fix: usergrant (#650 )
* fix(console): mfa refresh after verification, member eventemitter (#651 )
* refresh mfa
* fix: detail link from contributors
* lint
* feat: add domain verification notification (#649 )
* fix: dont (re)generate client secret with auth type none
* fix(cors): allow Origin from request
* feat: add origin allow list and fix some core issues
* rename migration
* fix UserIDsByDomain
* feat: send email to users after domain claim
* username
* check origin on userinfo
* update oidc pkg
* fix: add migration 1.6
* change username
* change username
* remove unique email aggregate
* change username in mgmt
* search global user by login name
* fix test
* change user search in angular
* fix tests
* merge
* userview in angular
* fix merge
* Update pkg/grpc/management/proto/management.proto
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
* Update internal/notification/static/i18n/de.yaml
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
* fix
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
* fix: translation (#647 )
* fix: translation
* fix: translation
* fix: translation
* fix: remove unused code
* fix: log err
* fix: migration numbers (#652 )
* chore: issue / feature templates (#642 )
* feat: machine keys
* fix: implement missing parts
* feat: machine key management view
* fix: remove keys from machine view
* feat: global org read (#657 )
* fix: set default expiration date
* fix: get key by ids
* feat: add machine keys in proto
* feat: machine keys
* fix: add migration
* fix: mig
* fix: correct method name
* feat: user search
* feat: user search
* fix: log ids
* fix: migrations
* fix(console): machine build (#660 )
* frontend 1
* fix html bindings
* trailing comma
* fix(console): human view (#661 )
* fix search user view, user detail form
* rm log
* feat(console): user services list and create (#663 )
* fix search user view, user detail form
* rm log
* machine list
* generic table component
* create user service
* proove table for undefined values
* tmp disable user link if machine
* lint
* lint styles
* user table lint
* Update console/src/assets/i18n/de.json
Co-authored-by: Florian Forster <florian@caos.ch>
* feat(console): service user detail view, keys cr_d, fix search user autocomplete (#664 )
* service users for sidenav, routing
* i18n
* back routes
* machine detail form
* update machine detail, fix svc user grants
* keys table
* add key dialog, timestamp creation
* check permission on create, delete, fix selection
* lint ts, scss
* Update console/src/assets/i18n/de.json
* Apply suggestions from code review
Co-authored-by: Florian Forster <florian@caos.ch>
* refactor: protos
* fix(management): key expiration date
* fix: check if user is human
* fix: marshal key details
* fix: correct generate login names
* fix: logid
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Fabiennne <fabienne.gerschwiler@gmail.com>
Co-authored-by: Florian Forster <florian@caos.ch>
* fix: naming
* refactor: findings
* fix: username
* fix: mfa upper case
* fix: tests
* fix: add translations
* reactivatemyorg req typeö
* fix: projectType for console
* fix: user changes
* fix: translate events
* fix: event type translation
* fix: remove unused types
Co-authored-by: Fabiennne <fabienne.gerschwiler@gmail.com>
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Florian Forster <florian@caos.ch>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-08-31 17:48:01 +02:00
Livio Amstutz
c1c85e632b
fix: cookie handling ( #654 )
...
* feat: set cookie prefix and max age
* cookie prefix on csrf cookie
* fix: check user agent cookie in login
* update oidc pkg
* cleanup
2020-08-31 08:49:35 +02:00
Fabi
7295383621
fix: translation ( #647 )
...
* fix: translation
* fix: translation
* fix: translation
* fix: remove unused code
* fix: log err
2020-08-28 09:44:43 +02:00
Livio Amstutz
34ec2508d3
feat: add domain verification notification ( #649 )
...
* fix: dont (re)generate client secret with auth type none
* fix(cors): allow Origin from request
* feat: add origin allow list and fix some core issues
* rename migration
* fix UserIDsByDomain
* feat: send email to users after domain claim
* username
* check origin on userinfo
* update oidc pkg
* fix: add migration 1.6
* change username
* change username
* remove unique email aggregate
* change username in mgmt
* search global user by login name
* fix test
* change user search in angular
* fix tests
* merge
* userview in angular
* fix merge
* Update pkg/grpc/management/proto/management.proto
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
* Update internal/notification/static/i18n/de.yaml
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
* fix
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
2020-08-27 17:18:23 +02:00
Fabi
d233fb6610
fix: usergrant ( #650 )
2020-08-27 14:44:52 +02:00
Fabi
4af38b37a6
fix: reduce ( #635 )
...
* fix: management reduce optimization
* fix: reduce optimization
* fix: reduce optimization
* fix: merge master
2020-08-26 13:01:37 +02:00
Fabi
87aa97b9c7
fix: reread user mfas, preferred loginname as otp account name ( #636 )
...
* fix: reread user mfas
* fix: use preferred login name as otp account name
* fix: tests
2020-08-26 10:17:43 +02:00
Fabi
db1d8f4efe
feat: idp and login policy configurations ( #619 )
...
* feat: oidc config
* fix: oidc configurations
* feat: oidc idp config
* feat: add oidc config test
* fix: tests
* fix: tests
* feat: translate new events
* feat: idp eventstore
* feat: idp eventstore
* fix: tests
* feat: command side idp
* feat: query side idp
* feat: idp config on org
* fix: tests
* feat: authz idp on org
* feat: org idps
* feat: login policy
* feat: login policy
* feat: login policy
* feat: add idp func on login policy
* feat: add validation to loginpolicy and idp provider
* feat: add default login policy
* feat: login policy on org
* feat: login policy on org
* fix: id config handlers
* fix: id config handlers
* fix: create idp on org
* fix: create idp on org
* fix: not existing idp config
* fix: default login policy
* fix: add login policy on org
* fix: idp provider search on org
* fix: test
* fix: remove idp on org
* fix: test
* fix: test
* fix: remove admin idp
* fix: logo src as byte
* fix: migration
* fix: tests
* Update internal/iam/repository/eventsourcing/iam.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/iam_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/iam_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/model/login_policy.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/model/login_policy.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/org/repository/eventsourcing/org_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/model/login_policy_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* Update internal/iam/repository/eventsourcing/model/login_policy_test.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* fix: pr comments
* fix: tests
* Update types.go
* fix: merge request changes
* fix: reduce optimization
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-08-26 09:56:23 +02:00
Fabi
f05c5bae24
fix: memberships ( #633 )
...
* feat: add iam members to memberships
* fix: search project grants
* fix: rename
2020-08-25 16:08:51 +02:00
Livio Amstutz
4e1e8a714a
fix: cors ( #621 )
...
* fix: dont (re)generate client secret with auth type none
* fix(cors): allow Origin from request
* feat: add origin allow list and fix some core issues
* rename migration
* fix UserIDsByDomain
* check origin on userinfo
* update oidc pkg
2020-08-24 10:06:55 +02:00
Livio Amstutz
578453b024
fix(tests): go version of tests ( #618 )
2020-08-20 22:09:37 +02:00
Livio Amstutz
edfd9d2038
fix: UserIDsByDomain ( #608 )
2020-08-20 07:28:49 +02:00
Fabi
be923343b0
fix: compliance problems ( #607 )
...
* fix: compliance problems
* fix: at least one redirect uri
* fix: at least one redirect uri
* Update de.yaml
* Update en.yaml
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-08-19 09:56:05 +02:00
Livio Amstutz
4e74050039
fix: add arg and probes to deployment ( #605 )
...
* feat: separate setup from startup
* health
* move setup config
* add env vars to caos_local.sh
* fix domain and set devMode explicit
* fix: add arg and probes to deployment
* fix setup.yaml
* domain validation
2020-08-18 14:22:53 +02:00
Livio Amstutz
8830896199
feat: setup as separate command ( #604 )
...
* feat: separate setup from startup
* health
* move setup config
* add env vars to caos_local.sh
* fix domain and set devMode explicit
2020-08-18 10:04:56 +02:00
Livio Amstutz
1a00faf132
fix: claim verified domain from usernames ( #603 )
...
* fix: return orgDomain validationType
* added missing translations for orgDomain activity
* claim org domain
* show message if domain token was requested
* fix tests
* fix tests
Co-authored-by: Max Peintner <max@caos.ch>
2020-08-18 08:57:16 +02:00
Livio Amstutz
f61b30420a
fix: session handlers ( #586 )
...
* fix: session handler when no sessions exists
* fix: error handling
* error handling
* fix: error handling
* fix: error handling
* fix: error handling
* some errors
Co-authored-by: Fabiennne <fabienne.gerschwiler@gmail.com>
2020-08-13 09:43:47 +02:00
Fabi
5c4fef296f
fix: app by id, views with computed objects ( #583 )
...
* feat: read app by id if my events
* fix: handlers if no sublist
* fix: removed app
* fix: removed project
* fix: removed app
* fix: removed app
* fix: app by id with projectid
2020-08-13 08:28:18 +02:00
Fabi
5699fe80d5
feat: app handling compliance ( #527 )
...
* feat: check oidc compliance
* fix: add tests
* fix: add oidc config tests
* fix: add oidc config tests user agent
* fix: test oidc config compliance
* fix: test oidc config compliance
* fix: useragent implicit authmethod none
* fix: merge master
* feat: translate compliance problems
* feat: check native app for custom url
* fix: better compliance handling
* fix: better compliance handling
* feat: add odidc dev mode
* fix: remove deprecated request fro management api
* fix: oidc package version
* fix: migration
* fix: tests
* fix: remove unused functions
* fix: generate proto files
* fix: native implicit and code none compliant
* fix: create project
* Update internal/project/model/oidc_config_test.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: tests
* Update internal/project/model/oidc_config.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/project/model/oidc_config.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: tests
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-08-10 09:34:56 +02:00
Livio Amstutz
64f0b191b5
fix: dont (re)generate client secret with auth type none ( #564 )
2020-08-07 13:49:57 +02:00
Livio Amstutz
7015b226ef
feat: add domain verification ( #560 )
...
* feat: add domain verification
* add checks
* add and fix tests
* fix go.mod
* regenerate proto
2020-08-06 15:03:03 +02:00
Fabi
f80367b49a
feat: register org process ( #558 )
...
* feat: register new organisation
* feat: create org request in management
* fix: tests
* Update internal/ui/login/static/i18n/en.yaml
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/ui/login/static/i18n/de.yaml
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/ui/login/static/templates/register_org.html
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/ui/login/handler/register_org_handler.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update internal/ui/login/handler/register_org_handler.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: remove autocomplete
* fix: regenerate proto
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-08-06 14:38:19 +02:00
Michael Waeger
41fa434439
fix: Remove project ( #538 )
...
* Remove project added
* Gemeriert
* corrections
* corrections
* Delete*sByProjectID added
* Correct typos
2020-08-05 18:32:25 +02:00
Fabi
8d1725a81d
fix: search user memberships pointer ( #542 )
2020-07-30 16:17:42 +02:00
Fabi
75f1c4c576
feat: user memberships ( #537 )
...
* feat: add search user memberships
* feat: add search user memberships
* feat: read user member ship
* feat: add usergrant search key
* feat: uesrmemberships based on permissions
* feat: merge master
* fix: correct permissions
* fix: update display name on change profile
* fix: merge request converations
* fix: err handling
* Update internal/user/model/user_membership_view.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
2020-07-30 14:37:55 +02:00
Fabi
461b7b23b1
fix: usergrant update ( #533 )
...
* fix: add grantid on update usergrant
* fix: add grantid on update usergrant
2020-07-28 12:29:01 +02:00
Silvan
41e1a7cc7b
fix(spooler): correct workers ( #508 )
...
* one concurrent task
* disable spooler
* fix: improve concurrency in spooler
* fix: dont block lock
* fix: break if lock failed
* fix: check if handler is working
* fix: worker id
* fix: test
* fix: use limit for spoolers configured in startup.yaml
* fix test
* fix: factory
* fix(key): only reduce if not expired
* fix(searchQueryFactory): check for string-slice in aggregateID
* fix(migrations): combine migrations
* fix: allow saving multiple objects in one request
* fix(eventstore): logging
* fix(eventstore): rethink insert i locks table
* fix: ignore failed tests for the moment
* fix: tuubel
* fix: for tests in io
* fix: ignore tests for io
* fix: rename concurrent tasks to workers
* fix: incomment tests and remove some tests
* fix: refert changes for io
* refactor(eventstore): combine types of sql in one file
* refactor(eventstore): logs, TODO's, tests
* fix(eventstore): sql package
* test(eventstore): add tests for search query factory
* chore: logs
* fix(spooler): optimize lock query
chore(migrations): rename locks.object_type to view_name
chore(migrations): refactor migrations
* test: incomment tests
* fix: rename PrepareSaves to PrepareBulkSave
* chore: go dependencies
* fix(migrations): add id in events table
* refactor(lock): less magic numbers
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-07-28 09:42:21 +02:00
Fabi
2d8f934a07
fix: add grant id to createusergrant ( #525 )
2020-07-28 08:43:55 +02:00
Fabi
c105bf483b
feat: apiurls, passwordpolicy, userbyid ( #507 )
...
* feat: api doc request
* feat: return zitadel docs
* feat: return zitadel docs
* feat: pw policy min length
* feat: pw policy min length
* fix: semantic
* fix: read missing events on user by id
2020-07-22 16:15:11 +02:00
Fabi
c66d9d3490
feat: show display name on members ( #492 )
...
* feat: show display name on members
* fix: generate proto
2020-07-22 14:21:41 +02:00
Fabi
351aac22f8
feat: usergrant ( #489 )
...
* fix: search usergrants only for allowed projects
* fix: check permissions
* fix: check permissions
* fix: check permissions
* Update internal/management/repository/eventsourcing/eventstore/project.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* fix: merge request changes
* fix: variable name
Co-authored-by: Silvan <silvan.reusser@gmail.com>
2020-07-22 14:00:29 +02:00
Fabi
f39d3a3cc7
fix: login flow handling ( #491 )
...
* fix: login flow handling
* fix: cancel button
* fix: hover in light design
* fix: profile image width
* fix: profile image width
* fix: profile image width
2020-07-22 11:43:32 +02:00
Fabi
520cc161d7
fix: message key in error detail ( #503 )
2020-07-22 11:29:43 +02:00
Livio Amstutz
933193855a
feat(login): show profile ( #485 )
...
* profile data
* fix scripts
* fix image paths
* feat: show profile (with image) when possible
* fix profile image width
2020-07-20 10:00:29 +02:00
Fabi
2a3ecc0c6a
feat: check passwordpolicy on login ( #477 )
...
* fix: password complexity policy
* feat: check password policy
* feat: check password policy
* fix: password policy on password change
* fix: remove double policy check
* feat: check pw policy on register
* feat: check pw policy on init
* fix: hover on secondary buttons
* fix: use data set instead of hidden inputs
* fix: disabled button
* fix: en login
* fix: read policy
* feat: check if org exists
* multiple checks
* feat: validate all forms
* fix: check all forms
* fix: remove unused err
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2020-07-16 14:26:08 +02:00
Fabi
c34f6b1074
fix: check if org id not empty before checking if it exists ( #482 )
2020-07-16 13:51:37 +02:00
Fabi
5e00f1c9db
feat: check if org exists ( #480 )
...
* feat: check if org exists
* feat: check if org exists
* Update internal/authz/repository/eventsourcing/eventstore/token_verifier.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* fix: err handling
Co-authored-by: Silvan <silvan.reusser@gmail.com>
2020-07-16 13:27:36 +02:00
Fabi
423b86a03b
feat: sequence and timestamp on searchrequests ( #468 )
...
* feat: reread events
* feat: sequence and timestamo on search requests
* feat: sequence and timestamo on search requests
* fix: better naming
* fix: log errors
* fix: read sequence before search request
2020-07-15 13:24:36 +02:00
Livio Amstutz
87155f8c9e
chore(login): html cleanup ( #473 )
2020-07-15 13:22:45 +02:00
Livio Amstutz
c051fa8ae1
fix: ignore empty displayname in changes ( #472 )
2020-07-15 09:01:06 +02:00
Silvan
56ed2940e9
fix: oidc translations ( #439 )
...
* fix: oidc translations
* fix: only one domain in org
* fix: translation in english
* Update en.yaml
2020-07-14 16:14:06 +02:00
Fabi
7b652651fc
feat: get default complexity policy ( #399 )
...
* feat: get default complexity policy
* fix: regenerate proto files
2020-07-14 07:11:11 +02:00
Silvan
cc7556aaa0
fix(sql): remove ssl=true ( #461 )
2020-07-13 17:34:45 +02:00
Livio Amstutz
d8eef34a37
fix: send csrf on root path ( #444 )
2020-07-10 13:09:30 +02:00
Livio Amstutz
0c442cbb3a
fix: eventQuery for project grant members ( #445 )
2020-07-10 13:08:01 +02:00
Fabi
1b59a52f26
fix: return my org on zitadel permission ( #441 )
2020-07-09 18:39:10 +02:00
Livio Amstutz
da113ffb95
fix: redirect to register ( #437 )
2020-07-09 18:01:58 +02:00
Fabi
8f1c31f37d
fix: remove project grant member from view ( #436 )
2020-07-09 17:56:37 +02:00
Livio Amstutz
bc5f16d5b4
fix: render login ( #432 )
2020-07-09 17:44:35 +02:00
Fabi
5add7eae6d
fix: rolecascade ( #434 )
...
* fix: project role delete
* fix: project role delete
2020-07-09 17:28:14 +02:00
Fabi
cde6231164
fix: project role delete ( #431 )
2020-07-09 16:47:48 +02:00
Silvan
a1e8385714
fix: refactor object-changes ( #430 )
2020-07-09 16:32:49 +02:00
Fabi
49a3339425
fix: project role ( #428 )
2020-07-09 16:02:00 +02:00
Livio Amstutz
6128c0c672
fix: response type mapping ( #426 )
...
* fix: return authorizations on userinfo
* fix: response type mapping
* fix tests
* fix angular
* regenerate mgmt proto
* enable login link again
2020-07-09 15:52:20 +02:00
Max Peintner
0b012f2fa2
fix(console): general fixes, project grants for owned and granted context ( #425 )
...
* update and delete project grants
* fix: user grant id (#421 )
* fix: verboser logging on sql err (#412 )
* fix(eventstore): improve insert statement
* fix: verbose logging on error
* fix: simplify insertEvents
* fix: project grant delete (#417 )
* fix: add grant id to user grant if needed
* fix: add grant id to user grant if needed
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* fix user grant context
* lint
* role validators
* fix: usergrantid (#424 )
* fix: verboser logging on sql err (#412 )
* fix(eventstore): improve insert statement
* fix: verbose logging on error
* fix: simplify insertEvents
* fix: project grant delete (#417 )
* fix: add grant id to user grant if needed
* fix: add grant id to user grant if needed
* fix: add bulk remove
* fix: merge
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
2020-07-09 15:14:01 +02:00
Silvan
cf51bbc36d
fix(translation_interceptor): check if response is nil ( #423 )
2020-07-09 15:02:03 +02:00
Silvan
5658f33918
feat: new tracing type none ( #422 )
2020-07-09 14:34:20 +02:00
Livio Amstutz
8efa697af2
fix: return authorizations on userinfo ( #420 )
2020-07-09 14:05:12 +02:00
Fabi
7cf13a646d
fix: project role view, remove project grants ( #419 )
2020-07-09 13:24:35 +02:00
Fabi
aeae04c90b
fix: project grant delete ( #417 )
2020-07-09 13:05:02 +02:00
Silvan
e8f3868100
fix: verboser logging on sql err ( #412 )
...
* fix(eventstore): improve insert statement
* fix: verbose logging on error
* fix: simplify insertEvents
2020-07-09 11:08:59 +02:00
Max Peintner
0721acf605
fix(console): toast login handler, show user session loginname, policy value incrementation, accessibility ( #413 )
...
* get auth policy, fix increment from 0
* seo, accessibility
* ngsw rem check for update
* organize interceptors
* toast i18n part1
* show loginname
* use primary color
* toast login handler, fix user session type
* Update console/src/assets/i18n/de.json
Co-authored-by: Florian Forster <florian@caos.ch>
* Update console/src/assets/i18n/de.json
Co-authored-by: Florian Forster <florian@caos.ch>
* Update console/src/assets/i18n/de.json
Co-authored-by: Florian Forster <florian@caos.ch>
* Update console/src/assets/i18n/en.json
Co-authored-by: Florian Forster <florian@caos.ch>
* Update console/src/index.html
Co-authored-by: Florian Forster <florian@caos.ch>
* Update console/src/assets/i18n/en.json
Co-authored-by: Florian Forster <florian@caos.ch>
* Update console/src/assets/i18n/en.json
Co-authored-by: Florian Forster <florian@caos.ch>
Co-authored-by: Florian Forster <florian@caos.ch>
2020-07-09 10:54:55 +02:00
Silvan
fa57cc48c1
fix(eventstore): improve insert statement ( #408 )
2020-07-09 09:35:14 +02:00
Fabi
740bab7f59
feat: permissin denied ( #411 )
2020-07-09 09:31:29 +02:00
Livio Amstutz
2136efe083
fix: url prefixes ( #395 )
2020-07-08 14:55:33 +02:00
Silvan
59ac7f051f
fix: empty project by id ( #393 )
...
* fix: check if project found in by id
* fix: check length of events
2020-07-08 14:26:35 +02:00