zitadel/internal/repository/oidcsession
Tim Möhlmann 6398349c24
feat(oidc): token exchange impersonation (#7516)
* add token exchange feature flag

* allow setting reason and actor to access tokens

* impersonation

* set token types and scopes in response

* upgrade oidc to working draft state

* fix tests

* audience and scope validation

* id toke and jwt as input

* return id tokens

* add grant type  token exchange to app config

* add integration tests

* check and deny actors in api calls

* fix instance setting tests by triggering projection on write and cleanup

* insert sleep statements again

* solve linting issues

* add translations

* pin oidc v3.15.0

* resolve comments, add event translation

* fix refreshtoken test

* use ValidateAuthReqScopes from oidc

* apparently the linter can't make up its mind

* persist actor thru refresh tokens and check in tests

* remove unneeded triggers
2024-03-20 10:18:46 +00:00
..
aggregate.go feat(api): add OIDC session service (#6157) 2023-07-10 13:27:00 +00:00
eventstore.go fix(setup): init projections (#7194) 2024-01-25 17:28:20 +01:00
oidc_session.go feat(oidc): token exchange impersonation (#7516) 2024-03-20 10:18:46 +00:00