mirror of
https://github.com/zitadel/zitadel.git
synced 2025-06-07 23:58:33 +00:00
202aae4954
* feat: add mfa to login policy * feat: add mfa to login policy * feat: add mfa to login policy * feat: add mfa to login policy * feat: add mfa to login policy on org * feat: add mfa to login policy on org * feat: append events on policy views * feat: iam login policy mfa definition * feat: login policies on orgs * feat: configured mfas in login process * feat: configured mfas in login process * Update internal/ui/login/static/i18n/en.yaml Co-authored-by: Livio Amstutz <livio.a@gmail.com> * fix: rename software and hardware mfas * fix: pr requests * fix user mfa * fix: test * fix: oidc version * fix: oidc version * fix: proto gen Co-authored-by: Livio Amstutz <livio.a@gmail.com> Co-authored-by: Max Peintner <max@caos.ch>
74 lines
2.5 KiB
Go
74 lines
2.5 KiB
Go
package handler
|
|
|
|
import (
|
|
"github.com/caos/logging"
|
|
iam_es_model "github.com/caos/zitadel/internal/iam/repository/eventsourcing/model"
|
|
|
|
"github.com/caos/zitadel/internal/eventstore/models"
|
|
es_models "github.com/caos/zitadel/internal/eventstore/models"
|
|
"github.com/caos/zitadel/internal/eventstore/spooler"
|
|
iam_model "github.com/caos/zitadel/internal/iam/repository/view/model"
|
|
"github.com/caos/zitadel/internal/org/repository/eventsourcing/model"
|
|
)
|
|
|
|
type LoginPolicy struct {
|
|
handler
|
|
}
|
|
|
|
const (
|
|
loginPolicyTable = "management.login_policies"
|
|
)
|
|
|
|
func (m *LoginPolicy) ViewModel() string {
|
|
return loginPolicyTable
|
|
}
|
|
|
|
func (m *LoginPolicy) EventQuery() (*models.SearchQuery, error) {
|
|
sequence, err := m.view.GetLatestLoginPolicySequence()
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return es_models.NewSearchQuery().
|
|
AggregateTypeFilter(model.OrgAggregate, iam_es_model.IAMAggregate).
|
|
LatestSequenceFilter(sequence.CurrentSequence), nil
|
|
}
|
|
|
|
func (m *LoginPolicy) Reduce(event *models.Event) (err error) {
|
|
switch event.AggregateType {
|
|
case model.OrgAggregate, iam_es_model.IAMAggregate:
|
|
err = m.processLoginPolicy(event)
|
|
}
|
|
return err
|
|
}
|
|
|
|
func (m *LoginPolicy) processLoginPolicy(event *models.Event) (err error) {
|
|
policy := new(iam_model.LoginPolicyView)
|
|
switch event.Type {
|
|
case iam_es_model.LoginPolicyAdded, model.LoginPolicyAdded:
|
|
err = policy.AppendEvent(event)
|
|
case iam_es_model.LoginPolicyChanged, model.LoginPolicyChanged,
|
|
iam_es_model.LoginPolicySecondFactorAdded, model.LoginPolicySecondFactorAdded,
|
|
iam_es_model.LoginPolicySecondFactorRemoved, model.LoginPolicySecondFactorRemoved,
|
|
iam_es_model.LoginPolicyMultiFactorAdded, model.LoginPolicyMultiFactorAdded,
|
|
iam_es_model.LoginPolicyMultiFactorRemoved, model.LoginPolicyMultiFactorRemoved:
|
|
policy, err = m.view.LoginPolicyByAggregateID(event.AggregateID)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
err = policy.AppendEvent(event)
|
|
case model.LoginPolicyRemoved:
|
|
return m.view.DeleteLoginPolicy(event.AggregateID, event.Sequence)
|
|
default:
|
|
return m.view.ProcessedLoginPolicySequence(event.Sequence)
|
|
}
|
|
if err != nil {
|
|
return err
|
|
}
|
|
return m.view.PutLoginPolicy(policy, policy.Sequence)
|
|
}
|
|
|
|
func (m *LoginPolicy) OnError(event *models.Event, err error) error {
|
|
logging.LogWithFields("SPOOL-4Djo9", "id", event.AggregateID).WithError(err).Warn("something went wrong in login policy handler")
|
|
return spooler.HandleError(event, err, m.view.GetLatestLoginPolicyFailedEvent, m.view.ProcessedLoginPolicyFailedEvent, m.view.ProcessedLoginPolicySequence, m.errorCountUntilSkip)
|
|
}
|