mirror of
https://github.com/zitadel/zitadel.git
synced 2024-12-14 20:08:02 +00:00
00220e9532
* begin pw less registration * create pwless one time codes * send pwless link * separate send and add passwordless link * separate send and add passwordless link events * custom message text for passwordless registration * begin custom login texts for passwordless * i18n * i18n message * i18n message * custom message text * custom login text * org design and texts * create link in human import process * fix import human tests * begin passwordless init required step * passwordless init * passwordless init * do not return link in mgmt api * prompt * passwordless init only (no additional prompt) * cleanup * cleanup * add passwordless prompt to custom login text * increase init code complexity * fix grpc * cleanup * fix and add some cases for nextStep tests * fix tests * Update internal/notification/static/i18n/en.yaml * Update internal/notification/static/i18n/de.yaml * Update proto/zitadel/management.proto * Update internal/ui/login/static/i18n/de.yaml * Update internal/ui/login/static/i18n/de.yaml * Update internal/ui/login/static/i18n/de.yaml Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
97 lines
2.3 KiB
Go
97 lines
2.3 KiB
Go
package domain
|
|
|
|
import (
|
|
"bytes"
|
|
"fmt"
|
|
"time"
|
|
|
|
es_models "github.com/caos/zitadel/internal/eventstore/v1/models"
|
|
)
|
|
|
|
type WebAuthNToken struct {
|
|
es_models.ObjectRoot
|
|
|
|
WebAuthNTokenID string
|
|
CredentialCreationData []byte
|
|
State MFAState
|
|
Challenge string
|
|
AllowedCredentialIDs [][]byte
|
|
UserVerification UserVerificationRequirement
|
|
KeyID []byte
|
|
PublicKey []byte
|
|
AttestationType string
|
|
AAGUID []byte
|
|
SignCount uint32
|
|
WebAuthNTokenName string
|
|
}
|
|
|
|
type WebAuthNLogin struct {
|
|
es_models.ObjectRoot
|
|
|
|
CredentialAssertionData []byte
|
|
Challenge string
|
|
AllowedCredentialIDs [][]byte
|
|
UserVerification UserVerificationRequirement
|
|
}
|
|
|
|
type UserVerificationRequirement int32
|
|
|
|
const (
|
|
UserVerificationRequirementUnspecified UserVerificationRequirement = iota
|
|
UserVerificationRequirementRequired
|
|
UserVerificationRequirementPreferred
|
|
UserVerificationRequirementDiscouraged
|
|
)
|
|
|
|
type AuthenticatorAttachment int32
|
|
|
|
const (
|
|
AuthenticatorAttachmentUnspecified AuthenticatorAttachment = iota
|
|
AuthenticatorAttachmentPlattform
|
|
AuthenticatorAttachmentCrossPlattform
|
|
)
|
|
|
|
func GetTokenToVerify(tokens []*WebAuthNToken) (int, *WebAuthNToken) {
|
|
for i, u2f := range tokens {
|
|
if u2f.State == MFAStateNotReady {
|
|
return i, u2f
|
|
}
|
|
}
|
|
return -1, nil
|
|
}
|
|
|
|
func GetTokenByKeyID(tokens []*WebAuthNToken, keyID []byte) (int, *WebAuthNToken) {
|
|
for i, token := range tokens {
|
|
if bytes.Compare(token.KeyID, keyID) == 0 {
|
|
return i, token
|
|
}
|
|
}
|
|
return -1, nil
|
|
}
|
|
|
|
type PasswordlessInitCodeState int32
|
|
|
|
const (
|
|
PasswordlessInitCodeStateUnspecified PasswordlessInitCodeState = iota
|
|
PasswordlessInitCodeStateRequested
|
|
PasswordlessInitCodeStateActive
|
|
PasswordlessInitCodeStateRemoved
|
|
)
|
|
|
|
type PasswordlessInitCode struct {
|
|
es_models.ObjectRoot
|
|
|
|
CodeID string
|
|
Code string
|
|
Expiration time.Duration
|
|
State PasswordlessInitCodeState
|
|
}
|
|
|
|
func (p *PasswordlessInitCode) Link(baseURL string) string {
|
|
return PasswordlessInitCodeLink(baseURL, p.AggregateID, p.ResourceOwner, p.CodeID, p.Code)
|
|
}
|
|
|
|
func PasswordlessInitCodeLink(baseURL, userID, resourceOwner, codeID, code string) string {
|
|
return fmt.Sprintf("%s?userID=%s&orgID=%s&codeID=%s&code=%s", baseURL, userID, resourceOwner, codeID, code)
|
|
}
|