zitadel/internal
Stefan Benz 2847806531
fix: generalise permission check for query user information (#8458)
# Which Problems Are Solved

IDPLinks list and other list endpoints can provide you with empty
results if the used user has no permission for the information.

# How the Problems Are Solved

List endpoints with subelements to users, and provided userIDQuery, will
return a PermissionDenied error if no permission for the user exsists.

# Additional Changes

Function to check for permission is re-used from the GetUserByID.

# Additional Context

Closes #8451
2024-08-23 06:44:18 +00:00
..
actions feat(actions): allow getting metadata of organizations from user grants (#7782) 2024-04-22 11:34:23 +00:00
activity feat: trusted (instance) domains (#8369) 2024-07-31 18:00:38 +03:00
admin/repository/eventsourcing feat(cmd): mirror (#7004) 2024-05-30 09:35:30 +00:00
api fix: generalise permission check for query user information (#8458) 2024-08-23 06:44:18 +00:00
auth/repository fix: generalise permission check for query user information (#8458) 2024-08-23 06:44:18 +00:00
auth_request/repository fix(login): correctly reload policies on auth request (#7839) 2024-04-24 08:44:55 +00:00
authz feat: trusted (instance) domains (#8369) 2024-07-31 18:00:38 +03:00
command feat(oidc): allow returning of parent errors to client (#8376) 2024-08-20 06:45:24 +00:00
config feat(v3alpha): read actions (#8357) 2024-08-12 22:32:01 +02:00
crypto feat(v3alpha): web key resource (#8262) 2024-08-14 14:18:14 +00:00
database fix: always use pgxpool config if MaxOpenConns isn't set (#8328) 2024-07-22 05:29:20 +00:00
domain feat: org v2 ListOrganizations (#8411) 2024-08-15 06:37:06 +02:00
eventstore feat(v3alpha): web key resource (#8262) 2024-08-14 14:18:14 +00:00
execution fix: add information about target response into error message if inte… (#8281) 2024-08-16 11:26:15 +02:00
feature feat(oidc): allow returning of parent errors to client (#8376) 2024-08-20 06:45:24 +00:00
form refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
i18n fix(middleware): init translation messages (#7778) 2024-04-16 12:08:18 +00:00
iam refactor: cleanup unused code (#7130) 2024-01-02 14:26:31 +00:00
id feat(cmd): Added machine ID mode to zitadel start up logs (#8251) 2024-07-16 09:53:57 +00:00
idp fix: encode ldap values to make valid UTF8 (#8210) 2024-06-28 13:46:54 +00:00
integration test: no location header in response (#8441) 2024-08-17 14:48:06 +00:00
logstore perf: project quotas and usages (#6441) 2023-09-15 16:58:45 +02:00
migration fix(setup): init projections (#7194) 2024-01-25 17:28:20 +01:00
net perf: project quotas and usages (#6441) 2023-09-15 16:58:45 +02:00
notification feat: trusted (instance) domains (#8369) 2024-07-31 18:00:38 +03:00
org refactor: cleanup unused code (#7130) 2024-01-02 14:26:31 +00:00
project refactor: cleanup unused code (#7130) 2024-01-02 14:26:31 +00:00
protoc merge main into next 2023-10-19 12:34:00 +02:00
qrcode docs(legal): Updated agreements and policies v2 (#3823) 2022-06-15 08:30:58 +02:00
query fix: generalise permission check for query user information (#8458) 2024-08-23 06:44:18 +00:00
renderer fix(login): (re)allow HTML in custom login texts (#7575) 2024-03-15 16:29:10 +01:00
repository feat(oidc): allow returning of parent errors to client (#8376) 2024-08-20 06:45:24 +00:00
static fix: add information about target response into error message if inte… (#8281) 2024-08-16 11:26:15 +02:00
statik chore: initial version of a devcontainer (#6352) 2023-08-15 10:49:05 +02:00
telemetry feat: enable application performance profiling (#8442) 2024-08-16 13:26:53 +00:00
test refactor(fmt): run gci on complete project (#7557) 2024-04-03 10:43:43 +00:00
user fix: handle user remove correctly in v1 sessions for login (#8432) 2024-08-15 05:39:54 +00:00
v2 fix(mirror): use correct statements on push (#8414) 2024-08-12 10:33:45 +00:00
view/repository refactor(fmt): run gci on complete project (#7557) 2024-04-03 10:43:43 +00:00
webauthn feat: trusted (instance) domains (#8369) 2024-07-31 18:00:38 +03:00
zerrors fix(crypto): reject decrypted strings with non-UTF8 characters. (#8374) 2024-08-02 08:38:37 +00:00