mirror of
https://github.com/zitadel/zitadel.git
synced 2025-12-06 09:52:17 +00:00
1a7cd6e1af
# Which Problems Are Solved
HTTP Request to HTTP providers for Email or SMS are not signed.
# How the Problems Are Solved
Add a Signing Key to the HTTP Provider resources, which is then used to
generate a header to sign the payload.
# Additional Changes
Additional tests for query side of the SMTP provider.
# Additional Context
Closes #10067
---------
Co-authored-by: Marco A. <marco@zitadel.com>
(cherry picked from commit 8909b9a2a6)
151 lines
4.8 KiB
Go
151 lines
4.8 KiB
Go
package admin
|
|
|
|
import (
|
|
"context"
|
|
|
|
"github.com/zitadel/zitadel/internal/api/authz"
|
|
"github.com/zitadel/zitadel/internal/api/grpc/object"
|
|
"github.com/zitadel/zitadel/internal/command"
|
|
"github.com/zitadel/zitadel/internal/domain"
|
|
"github.com/zitadel/zitadel/internal/notification/channels/smtp"
|
|
"github.com/zitadel/zitadel/internal/query"
|
|
admin_pb "github.com/zitadel/zitadel/pkg/grpc/admin"
|
|
settings_pb "github.com/zitadel/zitadel/pkg/grpc/settings"
|
|
)
|
|
|
|
func listEmailProvidersToModel(req *admin_pb.ListEmailProvidersRequest) (*query.SMTPConfigsSearchQueries, error) {
|
|
offset, limit, asc := object.ListQueryToModel(req.Query)
|
|
return &query.SMTPConfigsSearchQueries{
|
|
SearchRequest: query.SearchRequest{
|
|
Offset: offset,
|
|
Limit: limit,
|
|
Asc: asc,
|
|
},
|
|
}, nil
|
|
}
|
|
|
|
func emailProvidersToPb(configs []*query.SMTPConfig) []*settings_pb.EmailProvider {
|
|
c := make([]*settings_pb.EmailProvider, len(configs))
|
|
for i, config := range configs {
|
|
c[i] = emailProviderToProviderPb(config)
|
|
}
|
|
return c
|
|
}
|
|
|
|
func emailProviderToProviderPb(config *query.SMTPConfig) *settings_pb.EmailProvider {
|
|
return &settings_pb.EmailProvider{
|
|
Details: object.ToViewDetailsPb(config.Sequence, config.CreationDate, config.ChangeDate, config.ResourceOwner),
|
|
Id: config.ID,
|
|
Description: config.Description,
|
|
State: emailProviderStateToPb(config.State),
|
|
Config: emailProviderToPb(config),
|
|
}
|
|
}
|
|
|
|
func emailProviderStateToPb(state domain.SMTPConfigState) settings_pb.EmailProviderState {
|
|
switch state {
|
|
case domain.SMTPConfigStateUnspecified, domain.SMTPConfigStateRemoved:
|
|
return settings_pb.EmailProviderState_EMAIL_PROVIDER_STATE_UNSPECIFIED
|
|
case domain.SMTPConfigStateActive:
|
|
return settings_pb.EmailProviderState_EMAIL_PROVIDER_ACTIVE
|
|
case domain.SMTPConfigStateInactive:
|
|
return settings_pb.EmailProviderState_EMAIL_PROVIDER_INACTIVE
|
|
default:
|
|
return settings_pb.EmailProviderState_EMAIL_PROVIDER_STATE_UNSPECIFIED
|
|
}
|
|
}
|
|
|
|
func emailProviderToPb(config *query.SMTPConfig) settings_pb.EmailConfig {
|
|
if config.SMTPConfig != nil {
|
|
return smtpToPb(config.SMTPConfig)
|
|
}
|
|
if config.HTTPConfig != nil {
|
|
return httpToPb(config.HTTPConfig)
|
|
}
|
|
return nil
|
|
}
|
|
|
|
func httpToPb(http *query.HTTP) *settings_pb.EmailProvider_Http {
|
|
return &settings_pb.EmailProvider_Http{
|
|
Http: &settings_pb.EmailProviderHTTP{
|
|
Endpoint: http.Endpoint,
|
|
SigningKey: http.SigningKey,
|
|
},
|
|
}
|
|
}
|
|
|
|
func smtpToPb(config *query.SMTP) *settings_pb.EmailProvider_Smtp {
|
|
return &settings_pb.EmailProvider_Smtp{
|
|
Smtp: &settings_pb.EmailProviderSMTP{
|
|
Tls: config.TLS,
|
|
Host: config.Host,
|
|
User: config.User,
|
|
SenderAddress: config.SenderAddress,
|
|
SenderName: config.SenderName,
|
|
ReplyToAddress: config.ReplyToAddress,
|
|
},
|
|
}
|
|
}
|
|
|
|
func addEmailProviderSMTPToConfig(ctx context.Context, req *admin_pb.AddEmailProviderSMTPRequest) *command.AddSMTPConfig {
|
|
return &command.AddSMTPConfig{
|
|
ResourceOwner: authz.GetInstance(ctx).InstanceID(),
|
|
Description: req.Description,
|
|
Tls: req.Tls,
|
|
From: req.SenderAddress,
|
|
FromName: req.SenderName,
|
|
ReplyToAddress: req.ReplyToAddress,
|
|
Host: req.Host,
|
|
User: req.User,
|
|
Password: req.Password,
|
|
}
|
|
}
|
|
|
|
func updateEmailProviderSMTPToConfig(ctx context.Context, req *admin_pb.UpdateEmailProviderSMTPRequest) *command.ChangeSMTPConfig {
|
|
return &command.ChangeSMTPConfig{
|
|
ResourceOwner: authz.GetInstance(ctx).InstanceID(),
|
|
ID: req.Id,
|
|
Description: req.Description,
|
|
Tls: req.Tls,
|
|
From: req.SenderAddress,
|
|
FromName: req.SenderName,
|
|
ReplyToAddress: req.ReplyToAddress,
|
|
Host: req.Host,
|
|
User: req.User,
|
|
Password: req.Password,
|
|
}
|
|
}
|
|
|
|
func addEmailProviderHTTPToConfig(ctx context.Context, req *admin_pb.AddEmailProviderHTTPRequest) *command.AddSMTPConfigHTTP {
|
|
return &command.AddSMTPConfigHTTP{
|
|
ResourceOwner: authz.GetInstance(ctx).InstanceID(),
|
|
Description: req.Description,
|
|
Endpoint: req.Endpoint,
|
|
}
|
|
}
|
|
|
|
func updateEmailProviderHTTPToConfig(ctx context.Context, req *admin_pb.UpdateEmailProviderHTTPRequest) *command.ChangeSMTPConfigHTTP {
|
|
// TODO handle expiration, currently only immediate expiration is supported
|
|
expirationSigningKey := req.GetExpirationSigningKey() != nil
|
|
return &command.ChangeSMTPConfigHTTP{
|
|
ResourceOwner: authz.GetInstance(ctx).InstanceID(),
|
|
ID: req.Id,
|
|
Description: req.Description,
|
|
Endpoint: req.Endpoint,
|
|
ExpirationSigningKey: expirationSigningKey,
|
|
}
|
|
}
|
|
|
|
func testEmailProviderSMTPToConfig(req *admin_pb.TestEmailProviderSMTPRequest) *smtp.Config {
|
|
return &smtp.Config{
|
|
Tls: req.Tls,
|
|
From: req.SenderAddress,
|
|
FromName: req.SenderName,
|
|
SMTP: smtp.SMTP{
|
|
Host: req.Host,
|
|
User: req.User,
|
|
Password: req.Password,
|
|
},
|
|
}
|
|
}
|