Silvan
ba33a2ee8a
fix(db): allow unlimited connections ( #6758 )
2023-10-20 08:48:26 +02:00
Silvan
b5564572bc
feat(eventstore): increase parallel write capabilities ( #5940 )
...
This implementation increases parallel write capabilities of the eventstore.
Please have a look at the technical advisories: [05](https://zitadel.com/docs/support/advisory/a10005 ) and [06](https://zitadel.com/docs/support/advisory/a10006 ).
The implementation of eventstore.push is rewritten and stored events are migrated to a new table `eventstore.events2`.
If you are using cockroach: make sure that the database user of ZITADEL has `VIEWACTIVITY` grant. This is used to query events.
2023-10-19 12:19:10 +02:00
Elio Bischof
c0ddaf87e6
fix: origin from proxies ( #6738 )
...
* fix: origin from proxies
* test multiple forwarded header values
2023-10-19 10:35:47 +02:00
Livio Spring
426c4acbfe
fix(notification): get origin from all relevant events and fix nil pointer ( #6726 )
2023-10-19 10:34:52 +02:00
Livio Spring
a272b1201f
fix(api): use (provided) organisation instead of resourceOwner of caller ( #6714 )
2023-10-12 10:00:36 +02:00
Miguel Cabrerizo
2d4cd331da
fix: allow unicode characters in org domains ( #6675 )
...
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
2023-10-11 09:55:01 +02:00
Elio Bischof
8f6cb47567
fix: use triggering origin for notification links ( #6628 )
...
* take baseurl if saved on event
* refactor: make es mocks reusable
* Revert "refactor: make es mocks reusable"
This reverts commit 434ce12a6acf639514308bc231e76ebb8676b643.
* make messages testable
* test asset url
* fmt
* fmt
* simplify notification.Start
* test url combinations
* support init code added
* support password changed
* support reset pw
* support user domain claimed
* support add pwless login
* support verify phone
* Revert "support verify phone"
This reverts commit e40503303e2fdda0c85985b3fe3160ce96d43cca.
* save trigger origin from ctx
* add ready for review check
* camel
* test email otp
* fix variable naming
* fix DefaultOTPEmailURLV2
* Revert "fix DefaultOTPEmailURLV2"
This reverts commit fa34d4d2a83fbfd8353759c9148af9165a9dd44c.
* fix email otp challenged test
* fix email otp challenged test
* pass origin in login and gateway requests
* take origin from header
* take x-forwarded if present
* Update internal/notification/handlers/queries.go
Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
* Update internal/notification/handlers/commands.go
Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
* move origin header to ctx if available
* generate
* cleanup
* use forwarded header
* support X-Forwarded-* headers
* standardize context handling
* fix linting
---------
Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
2023-10-10 13:20:53 +00:00
Fabian Deifuß
0180779d6d
fix(backend): include removed SMTP config in Query ( #6624 ) ( #6673 )
...
closes #6624
Co-authored-by: Elio Bischof <elio@zitadel.com>
2023-10-10 12:45:45 +00:00
Miguel Cabrerizo
e66d476c47
fix: meaningful error messages for domain validation ( #6677 )
...
* feat: meaningful error messages for domain validation
* fix: duplicated error code and fix some org codes
* fix: add @peintnermax i18n suggestions
---------
Co-authored-by: Elio Bischof <elio@zitadel.com>
2023-10-10 12:02:16 +00:00
Livio Spring
8549dd7a3d
fix(login): error case for unknown usernames correctly ( #6689 )
2023-10-09 15:05:25 +00:00
Stefan Benz
6ce11a416a
test: correct used client api call in integration test ( #6685 )
...
fix: correct used client api call in integration test
Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-10-09 12:09:51 +00:00
Livio Spring
9696fde676
fix: reduce origin check to tokens issued through code and implicit flow ( #6681 )
...
fix: only check origin for tokens issued to users through apps (code / implicit flow)
2023-10-09 10:08:18 +00:00
Livio Spring
54676eda98
Merge pull request from GHSA-v683-rcxx-vpff
2023-10-09 11:47:43 +02:00
Livio Spring
e3ac217424
fix: ensure no events are skipped on token check ( #6663 )
...
fix: ensure no events are skipped on token check
2023-10-09 09:26:27 +02:00
Stefan Benz
15fd3045e0
feat: add SAML as identity provider ( #6454 )
...
* feat: first implementation for saml sp
* fix: add command side instance and org for saml provider
* fix: add query side instance and org for saml provider
* fix: request handling in event and retrieval of finished intent
* fix: add review changes and integration tests
* fix: add integration tests for saml idp
* fix: correct unit tests with review changes
* fix: add saml session unit test
* fix: add saml session unit test
* fix: add saml session unit test
* fix: changes from review
* fix: changes from review
* fix: proto build error
* fix: proto build error
* fix: proto build error
* fix: proto require metadata oneof
* fix: login with saml provider
* fix: integration test for saml assertion
* lint client.go
* fix json tag
* fix: linting
* fix import
* fix: linting
* fix saml idp query
* fix: linting
* lint: try all issues
* revert linting config
* fix: add regenerate endpoints
* fix: translations
* fix mk.yaml
* ignore acs path for user agent cookie
* fix: add AuthFromProvider test for saml
* fix: integration test for saml retrieve information
---------
Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-09-29 11:26:14 +02:00
Livio Spring
2e99d0fe1b
fix(email): UTF-8 "Q" encode subject header ( #6637 )
...
fix(email): UTF-8 "Q" encode subject header
2023-09-29 08:53:45 +00:00
Livio Spring
68bfab2fb3
feat(login): use default org for login without provided org context ( #6625 )
...
* start feature flags
* base feature events on domain const
* setup default features
* allow setting feature in system api
* allow setting feature in admin api
* set settings in login based on feature
* fix rebasing
* unit tests
* i18n
* update policy after domain discovery
* some changes from review
* check feature and value type
* check feature and value type
2023-09-29 08:21:32 +00:00
Max Peintner
e9148e96c7
fix(login): firefox MFA radio mouse target ( #6632 )
...
fix: mfa radio for firefox
2023-09-28 08:15:01 +02:00
Stefan Benz
2823678eb6
fix: add userID to intent responses ( #6566 )
...
Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-09-25 05:21:50 +00:00
Elio Bischof
520f87d9b1
test: duplicate quota notifications ( #6610 )
2023-09-22 13:33:23 +02:00
Elio Bischof
ae1af6bc8c
fix: set quotas ( #6597 )
...
* feat: set quotas
* fix: start new period on younger anchor
* cleanup e2e config
* fix set notifications
* lint
* test: fix quota projection tests
* fix add quota tests
* make quota fields nullable
* enable amount 0
* fix initial setup
* create a prerelease
* avoid success comments
* fix quota projection primary key
* Revert "fix quota projection primary key"
This reverts commit e72f4d7fa17d03d36493912168490350a320e04f.
* simplify write model
* fix aggregate id
* avoid push without changes
* test set quota lifecycle
* test set quota mutations
* fix quota unit test
* fix: quotas
* test quota.set event projection
* use SetQuota in integration tests
* fix: release quotas 3
* reset releaserc
* fix comment
* test notification order doesn't matter
* test notification order doesn't matter
* test with unmarshalled events
* test with unmarshalled events
2023-09-22 09:37:16 +00:00
Tim Möhlmann
e6d273b328
chore(deps): bump oidc ( #6607 )
...
* chore(deps): bump oidc
Include the Issuer from Frowarded header feature
* use the new constructor
2023-09-22 11:05:11 +02:00
Livio Spring
593d1605ab
fix: only reuse active session and use correct policies (from user org) ( #6603 )
2023-09-21 16:45:41 +02:00
Anthony Lawn
ebb8f92e85
fix: Increase suffix wrapper to 200px wide ( #6590 )
...
Increase suffix wrapper to 200px wide
Co-authored-by: Fabi <fabienne@zitadel.com>
Co-authored-by: Max Peintner <max@caos.ch>
2023-09-19 12:37:11 +00:00
Miguel Cabrerizo
f9bb250698
feat: improve Password.NotChanged message ( #6589 )
...
* feat: improve Password.NotChanged message
* Update internal/api/ui/login/static/i18n/de.yaml
* Update internal/static/i18n/de.yaml
---------
Co-authored-by: Fabi <fabienne@zitadel.com>
2023-09-19 12:05:49 +00:00
Anthony Lawn
a5decda201
fix: inconsistencies and other minor issues in English strings ( #6591 )
...
Fixed inconsistencies and other minor issues in English strings
Co-authored-by: Fabi <fabienne@zitadel.com>
2023-09-19 08:33:01 +02:00
wackbyte
4bebcd6c0f
fix: typo in "file too big" error message ( #6577 )
...
Co-authored-by: Fabi <fabienne@zitadel.com>
2023-09-18 13:08:32 +00:00
Tim Möhlmann
9266f8f00b
fix(command): allow email as username ( #6565 )
...
Fixes #6460
Made the username checks consistent with create human user.
2023-09-15 15:29:29 +00:00
Elio Bischof
1a49b7d298
perf: project quotas and usages ( #6441 )
...
* project quota added
* project quota removed
* add periods table
* make log record generic
* accumulate usage
* query usage
* count action run seconds
* fix filter in ReportQuotaUsage
* fix existing tests
* fix logstore tests
* fix typo
* fix: add quota unit tests command side
* fix: add quota unit tests command side
* fix: add quota unit tests command side
* move notifications into debouncer and improve limit querying
* cleanup
* comment
* fix: add quota unit tests command side
* fix remaining quota usage query
* implement InmemLogStorage
* cleanup and linting
* improve test
* fix: add quota unit tests command side
* fix: add quota unit tests command side
* fix: add quota unit tests command side
* fix: add quota unit tests command side
* action notifications and fixes for notifications query
* revert console prefix
* fix: add quota unit tests command side
* fix: add quota integration tests
* improve accountable requests
* improve accountable requests
* fix: add quota integration tests
* fix: add quota integration tests
* fix: add quota integration tests
* comment
* remove ability to store logs in db and other changes requested from review
* changes requested from review
* changes requested from review
* Update internal/api/http/middleware/access_interceptor.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* tests: fix quotas integration tests
* improve incrementUsageStatement
* linting
* fix: delete e2e tests as intergation tests cover functionality
* Update internal/api/http/middleware/access_interceptor.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* backup
* fix conflict
* create rc
* create prerelease
* remove issue release labeling
* fix tracing
---------
Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Stefan Benz <stefan@caos.ch>
Co-authored-by: adlerhurst <silvan.reusser@gmail.com>
2023-09-15 16:58:45 +02:00
Livio Spring
b4d0d2c9a7
chore(webauthn): add logs ( #6569 )
2023-09-15 13:43:38 +00:00
Dishan Sivakumaran
345af3b6c7
fix(account-selection): use font color as color for labels ( #6518 )
...
fix(account-selection): #5505 use font color as color for labels
2023-09-14 06:15:01 +02:00
Livio Spring
be81570fb5
feat(api): move resource apis to beta ( #6530 )
...
Moves UserService, SessionService, SettingsService and OIDCService to beta state. This includes gRPC and HTTP path changes.
2023-09-13 12:43:01 +00:00
Livio Spring
c790715628
fix: improve autofill values ( #6541 )
2023-09-13 08:16:57 +02:00
Livio Spring
523dee8801
chore: remove postgres beta warning ( #6394 )
...
fix: remove postgres beta warning
Co-authored-by: Fabi <fabienne@zitadel.com>
2023-09-08 15:44:34 +00:00
Miguel Cabrerizo
c115ae374e
feat: replace inactive remove active from select account ( #6364 )
...
* feat: replace inactive remove active from select account
* fix: apply same behavior to console user select
---------
Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-09-08 12:15:39 +00:00
Silvan
856d0d12e8
fix: TestCRDB_CreateInstance ( #6522 )
2023-09-08 10:27:52 +00:00
Livio Spring
62d679e553
fix: handle password data correct on user creation ( #6515 )
2023-09-07 14:06:11 +00:00
Silvan
c3c2a43d46
fix(scheduler): add span to trigger method ( #6513 )
2023-09-07 10:59:44 +02:00
Miguel Cabrerizo
dd80109969
feat: delete organizations ( #6083 )
...
* feat: delete organizations
* feat: tests and delete all that depends on org
* fix: grpc delete description
* fix: get back reduce OrgRemovedEvent
* fix: add @muhlemmer review suggestions
* fix: new e2e for add/delete org
2023-09-07 04:54:51 +00:00
Silvan
0f06e84f40
fix(eventstore): cache instances ( #6501 )
...
* fix(eventstore): cache instances
* fix: consider succeeded once during instance ids query
* fix(eventstore): return correct instances
2023-09-06 14:34:07 +00:00
some-user123
18c07ab85d
feat: improve translations ( #6489 )
...
* feat: improve translations
* feat: improve translations of notifications
2023-09-05 12:14:53 +00:00
some-user123
e844c6834c
feat: Improve German translations ( #6488 )
...
Improve German translations
Co-authored-by: Fabi <fabienne@zitadel.com>
2023-09-04 13:20:50 +00:00
Tim Möhlmann
241befc185
fix(sessions/v2): resolve tOTP TODO for Auth Methods ( #6470 )
...
Fixes #6450
2023-09-01 12:53:10 +00:00
Tim Möhlmann
87cdd20d72
fix(deps): upgrade oidc and otel ( #6468 )
2023-09-01 10:32:13 +00:00
Livio Spring
3c8640fbfd
fix: rename (t)otp to code in session checks ( #6455 )
...
* fix: rename (t)otp to code in session checks
* update integration tests
---------
Co-authored-by: Fabi <fabienne@zitadel.com>
2023-08-31 07:06:50 +00:00
Livio Spring
e17b49e4ca
feat: add apple as idp ( #6442 )
...
* feat: manage apple idp
* handle apple idp callback
* add tests for provider
* basic console implementation
* implement flow for login UI and add logos / styling
* tests
* cleanup
* add upload button
* begin i18n
* apple logo positioning, file upload component
* fix add apple instance idp
* add missing apple logos for login
* update to go 1.21
* fix slice compare
* revert permission changes
* concrete error messages
* translate login apple logo -y-2px
* change form parsing
* sign in button
* fix tests
* lint console
---------
Co-authored-by: peintnermax <max@caos.ch>
2023-08-31 08:39:16 +02:00
Gabriel Enrico
14d799e750
fix: Allow Auth over non-TLS SMTP connections ( #6402 )
...
* fix: Allow Auth over non-TLS SMTP connections
* remove unused struct
---------
Co-authored-by: Kitsune <kitsune@akitsune.dev>
Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-08-29 15:37:30 +00:00
Miguel Cabrerizo
fd00ac533a
feat: add reply-to header in email notification ( #6393 )
...
* feat: add reply-to header to smtp messages
* fix: grpc reply_to_address min 0 and js var name
* fix: add missing translations
* fix merge and linting
---------
Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-08-29 09:08:24 +02:00
Elio Bischof
54508ebd82
fix: change force local mfa on org ( #6432 )
...
* fix: change force local mfa on org
* fix test
---------
Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-08-25 15:17:12 +02:00
Livio Spring
94d13fd3e1
fix(api): handle id_token_mapping in generic oidc provider correctly ( #6428 )
2023-08-24 10:31:12 +00:00