mirror of
https://github.com/zitadel/zitadel.git
synced 2025-01-07 14:37:40 +00:00
bc951985ed
* feat: lock users if lockout policy is set * feat: setup * feat: lock user on password failes * feat: render error * feat: lock user on command side * feat: auth_req tests * feat: lockout policy docs * feat: remove show lockout failures from proto * fix: console lockout * feat: tests * fix: tests * unlock function * add unlock button * fix migration version * lockout policy * lint * Update internal/auth/repository/eventsourcing/eventstore/auth_request.go Co-authored-by: Silvan <silvan.reusser@gmail.com> * fix: err message * Update internal/command/setup_step4.go Co-authored-by: Silvan <silvan.reusser@gmail.com> Co-authored-by: Max Peintner <max@caos.ch> Co-authored-by: Livio Amstutz <livio.a@gmail.com> Co-authored-by: Silvan <silvan.reusser@gmail.com>
76 lines
2.1 KiB
Go
76 lines
2.1 KiB
Go
package command
|
|
|
|
import (
|
|
"context"
|
|
|
|
"github.com/caos/zitadel/internal/eventstore"
|
|
|
|
"github.com/caos/zitadel/internal/domain"
|
|
"github.com/caos/zitadel/internal/repository/iam"
|
|
"github.com/caos/zitadel/internal/repository/policy"
|
|
)
|
|
|
|
type IAMLockoutPolicyWriteModel struct {
|
|
LockoutPolicyWriteModel
|
|
}
|
|
|
|
func NewIAMLockoutPolicyWriteModel() *IAMLockoutPolicyWriteModel {
|
|
return &IAMLockoutPolicyWriteModel{
|
|
LockoutPolicyWriteModel{
|
|
WriteModel: eventstore.WriteModel{
|
|
AggregateID: domain.IAMID,
|
|
ResourceOwner: domain.IAMID,
|
|
},
|
|
},
|
|
}
|
|
}
|
|
|
|
func (wm *IAMLockoutPolicyWriteModel) AppendEvents(events ...eventstore.EventReader) {
|
|
for _, event := range events {
|
|
switch e := event.(type) {
|
|
case *iam.LockoutPolicyAddedEvent:
|
|
wm.LockoutPolicyWriteModel.AppendEvents(&e.LockoutPolicyAddedEvent)
|
|
case *iam.LockoutPolicyChangedEvent:
|
|
wm.LockoutPolicyWriteModel.AppendEvents(&e.LockoutPolicyChangedEvent)
|
|
}
|
|
}
|
|
}
|
|
|
|
func (wm *IAMLockoutPolicyWriteModel) Reduce() error {
|
|
return wm.LockoutPolicyWriteModel.Reduce()
|
|
}
|
|
|
|
func (wm *IAMLockoutPolicyWriteModel) Query() *eventstore.SearchQueryBuilder {
|
|
return eventstore.NewSearchQueryBuilder(eventstore.ColumnsEvent).
|
|
ResourceOwner(wm.ResourceOwner).
|
|
AddQuery().
|
|
AggregateTypes(iam.AggregateType).
|
|
AggregateIDs(wm.LockoutPolicyWriteModel.AggregateID).
|
|
EventTypes(
|
|
iam.LockoutPolicyAddedEventType,
|
|
iam.LockoutPolicyChangedEventType).
|
|
Builder()
|
|
}
|
|
|
|
func (wm *IAMLockoutPolicyWriteModel) NewChangedEvent(
|
|
ctx context.Context,
|
|
aggregate *eventstore.Aggregate,
|
|
maxAttempts uint64,
|
|
showLockoutFailure bool) (*iam.LockoutPolicyChangedEvent, bool) {
|
|
changes := make([]policy.LockoutPolicyChanges, 0)
|
|
if wm.MaxPasswordAttempts != maxAttempts {
|
|
changes = append(changes, policy.ChangeMaxAttempts(maxAttempts))
|
|
}
|
|
if wm.ShowLockOutFailures != showLockoutFailure {
|
|
changes = append(changes, policy.ChangeShowLockOutFailures(showLockoutFailure))
|
|
}
|
|
if len(changes) == 0 {
|
|
return nil, false
|
|
}
|
|
changedEvent, err := iam.NewLockoutPolicyChangedEvent(ctx, aggregate, changes)
|
|
if err != nil {
|
|
return nil, false
|
|
}
|
|
return changedEvent, true
|
|
}
|