mirror of
https://github.com/zitadel/zitadel.git
synced 2024-12-13 11:34:26 +00:00
5699fe80d5
* feat: check oidc compliance * fix: add tests * fix: add oidc config tests * fix: add oidc config tests user agent * fix: test oidc config compliance * fix: test oidc config compliance * fix: useragent implicit authmethod none * fix: merge master * feat: translate compliance problems * feat: check native app for custom url * fix: better compliance handling * fix: better compliance handling * feat: add odidc dev mode * fix: remove deprecated request fro management api * fix: oidc package version * fix: migration * fix: tests * fix: remove unused functions * fix: generate proto files * fix: native implicit and code none compliant * fix: create project * Update internal/project/model/oidc_config_test.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * fix: tests * Update internal/project/model/oidc_config.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * Update internal/project/model/oidc_config.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * fix: tests Co-authored-by: Livio Amstutz <livio.a@gmail.com>
557 lines
15 KiB
Go
557 lines
15 KiB
Go
// Code generated by protoc-gen-authmethod. DO NOT EDIT.
|
|
|
|
package management
|
|
|
|
import (
|
|
"github.com/caos/zitadel/internal/api/authz"
|
|
)
|
|
|
|
/**
|
|
* ManagementService
|
|
*/
|
|
|
|
const ManagementService_MethodPrefix = "caos.zitadel.management.api.v1.ManagementService"
|
|
|
|
var ManagementService_AuthMethods = authz.MethodMapping{
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/GetIam": authz.Option{
|
|
Permission: "authenticated",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/GetUserByID": authz.Option{
|
|
Permission: "user.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/GetUserByEmailGlobal": authz.Option{
|
|
Permission: "user.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/SearchUsers": authz.Option{
|
|
Permission: "user.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/IsUserUnique": authz.Option{
|
|
Permission: "user.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/CreateUser": authz.Option{
|
|
Permission: "user.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/DeactivateUser": authz.Option{
|
|
Permission: "user.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/ReactivateUser": authz.Option{
|
|
Permission: "user.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/LockUser": authz.Option{
|
|
Permission: "user.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/UnlockUser": authz.Option{
|
|
Permission: "user.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/DeleteUser": authz.Option{
|
|
Permission: "user.delete",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/UserChanges": authz.Option{
|
|
Permission: "user.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/ApplicationChanges": authz.Option{
|
|
Permission: "project.app.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/OrgChanges": authz.Option{
|
|
Permission: "org.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/ProjectChanges": authz.Option{
|
|
Permission: "project.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/GetUserProfile": authz.Option{
|
|
Permission: "user.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/UpdateUserProfile": authz.Option{
|
|
Permission: "user.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/GetUserEmail": authz.Option{
|
|
Permission: "user.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/ChangeUserEmail": authz.Option{
|
|
Permission: "user.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/ResendEmailVerificationMail": authz.Option{
|
|
Permission: "user.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/GetUserPhone": authz.Option{
|
|
Permission: "user.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/ChangeUserPhone": authz.Option{
|
|
Permission: "user.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/RemoveUserPhone": authz.Option{
|
|
Permission: "user.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/ResendPhoneVerificationCode": authz.Option{
|
|
Permission: "user.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/GetUserAddress": authz.Option{
|
|
Permission: "user.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/UpdateUserAddress": authz.Option{
|
|
Permission: "user.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/GetUserMfas": authz.Option{
|
|
Permission: "user.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/SendSetPasswordNotification": authz.Option{
|
|
Permission: "user.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/SetInitialPassword": authz.Option{
|
|
Permission: "user.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/SearchUserMemberships": authz.Option{
|
|
Permission: "user.membership.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/GetPasswordComplexityPolicy": authz.Option{
|
|
Permission: "policy.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/GetDefaultPasswordComplexityPolicy": authz.Option{
|
|
Permission: "policy.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/CreatePasswordComplexityPolicy": authz.Option{
|
|
Permission: "policy.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/UpdatePasswordComplexityPolicy": authz.Option{
|
|
Permission: "policy.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/DeletePasswordComplexityPolicy": authz.Option{
|
|
Permission: "policy.delete",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/GetPasswordAgePolicy": authz.Option{
|
|
Permission: "policy.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/CreatePasswordAgePolicy": authz.Option{
|
|
Permission: "policy.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/UpdatePasswordAgePolicy": authz.Option{
|
|
Permission: "policy.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/DeletePasswordAgePolicy": authz.Option{
|
|
Permission: "policy.delete",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/GetPasswordLockoutPolicy": authz.Option{
|
|
Permission: "policy.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/CreatePasswordLockoutPolicy": authz.Option{
|
|
Permission: "policy.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/UpdatePasswordLockoutPolicy": authz.Option{
|
|
Permission: "policy.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/DeletePasswordLockoutPolicy": authz.Option{
|
|
Permission: "policy.delete",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/CreateOrg": authz.Option{
|
|
Permission: "org.create",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/GetMyOrg": authz.Option{
|
|
Permission: "org.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/GetOrgByDomainGlobal": authz.Option{
|
|
Permission: "org.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/DeactivateMyOrg": authz.Option{
|
|
Permission: "org.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/ReactivateMyOrg": authz.Option{
|
|
Permission: "org.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/SearchMyOrgDomains": authz.Option{
|
|
Permission: "org.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/AddMyOrgDomain": authz.Option{
|
|
Permission: "org.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/GenerateMyOrgDomainValidation": authz.Option{
|
|
Permission: "org.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/ValidateMyOrgDomain": authz.Option{
|
|
Permission: "org.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/SetMyPrimaryOrgDomain": authz.Option{
|
|
Permission: "org.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/RemoveMyOrgDomain": authz.Option{
|
|
Permission: "org.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/GetMyOrgIamPolicy": authz.Option{
|
|
Permission: "authenticated",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/GetOrgMemberRoles": authz.Option{
|
|
Permission: "org.member.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/AddMyOrgMember": authz.Option{
|
|
Permission: "org.member.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/ChangeMyOrgMember": authz.Option{
|
|
Permission: "org.member.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/RemoveMyOrgMember": authz.Option{
|
|
Permission: "org.member.delete",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/SearchMyOrgMembers": authz.Option{
|
|
Permission: "org.member.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/SearchProjects": authz.Option{
|
|
Permission: "project.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/ProjectByID": authz.Option{
|
|
Permission: "project.read",
|
|
CheckParam: "Id",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/CreateProject": authz.Option{
|
|
Permission: "project.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/UpdateProject": authz.Option{
|
|
Permission: "project.write",
|
|
CheckParam: "Id",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/DeactivateProject": authz.Option{
|
|
Permission: "project.write",
|
|
CheckParam: "Id",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/ReactivateProject": authz.Option{
|
|
Permission: "project.write",
|
|
CheckParam: "Id",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/RemoveProject": authz.Option{
|
|
Permission: "project.delete",
|
|
CheckParam: "Id",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/SearchGrantedProjects": authz.Option{
|
|
Permission: "project.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/GetGrantedProjectByID": authz.Option{
|
|
Permission: "project.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/GetProjectMemberRoles": authz.Option{
|
|
Permission: "project.member.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/SearchProjectMembers": authz.Option{
|
|
Permission: "project.member.read",
|
|
CheckParam: "ProjectId",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/AddProjectMember": authz.Option{
|
|
Permission: "project.member.write",
|
|
CheckParam: "Id",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/ChangeProjectMember": authz.Option{
|
|
Permission: "project.member.write",
|
|
CheckParam: "Id",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/RemoveProjectMember": authz.Option{
|
|
Permission: "project.member.delete",
|
|
CheckParam: "Id",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/SearchProjectRoles": authz.Option{
|
|
Permission: "project.role.read",
|
|
CheckParam: "ProjectId",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/AddProjectRole": authz.Option{
|
|
Permission: "project.role.write",
|
|
CheckParam: "Id",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/BulkAddProjectRole": authz.Option{
|
|
Permission: "project.role.write",
|
|
CheckParam: "Id",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/ChangeProjectRole": authz.Option{
|
|
Permission: "project.role.write",
|
|
CheckParam: "Id",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/RemoveProjectRole": authz.Option{
|
|
Permission: "project.role.delete",
|
|
CheckParam: "Id",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/SearchApplications": authz.Option{
|
|
Permission: "project.app.read",
|
|
CheckParam: "ProjectId",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/ApplicationByID": authz.Option{
|
|
Permission: "project.app.read",
|
|
CheckParam: "ProjectId",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/CreateOIDCApplication": authz.Option{
|
|
Permission: "project.app.write",
|
|
CheckParam: "ProjectId",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/UpdateApplication": authz.Option{
|
|
Permission: "project.app.write",
|
|
CheckParam: "ProjectId",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/DeactivateApplication": authz.Option{
|
|
Permission: "project.app.write",
|
|
CheckParam: "ProjectId",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/ReactivateApplication": authz.Option{
|
|
Permission: "project.app.write",
|
|
CheckParam: "ProjectId",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/RemoveApplication": authz.Option{
|
|
Permission: "project.app.delete",
|
|
CheckParam: "ProjectId",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/UpdateApplicationOIDCConfig": authz.Option{
|
|
Permission: "project.app.write",
|
|
CheckParam: "ProjectId",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/RegenerateOIDCClientSecret": authz.Option{
|
|
Permission: "project.app.write",
|
|
CheckParam: "ProjectId",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/SearchProjectGrants": authz.Option{
|
|
Permission: "project.grant.read",
|
|
CheckParam: "ProjectId",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/ProjectGrantByID": authz.Option{
|
|
Permission: "project.grant.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/CreateProjectGrant": authz.Option{
|
|
Permission: "project.grant.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/UpdateProjectGrant": authz.Option{
|
|
Permission: "project.grant.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/DeactivateProjectGrant": authz.Option{
|
|
Permission: "project.grant.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/ReactivateProjectGrant": authz.Option{
|
|
Permission: "project.grant.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/RemoveProjectGrant": authz.Option{
|
|
Permission: "project.grant.delete",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/GetProjectGrantMemberRoles": authz.Option{
|
|
Permission: "project.grant.member.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/SearchProjectGrantMembers": authz.Option{
|
|
Permission: "project.grant.member.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/AddProjectGrantMember": authz.Option{
|
|
Permission: "project.grant.member.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/ChangeProjectGrantMember": authz.Option{
|
|
Permission: "project.grant.member.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/RemoveProjectGrantMember": authz.Option{
|
|
Permission: "project.grant.member.delete",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/SearchUserGrants": authz.Option{
|
|
Permission: "user.grant.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/UserGrantByID": authz.Option{
|
|
Permission: "user.grant.read",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/CreateUserGrant": authz.Option{
|
|
Permission: "user.grant.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/UpdateUserGrant": authz.Option{
|
|
Permission: "user.grant.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/DeactivateUserGrant": authz.Option{
|
|
Permission: "user.grant.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/ReactivateUserGrant": authz.Option{
|
|
Permission: "user.grant.write",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/RemoveUserGrant": authz.Option{
|
|
Permission: "user.grant.delete",
|
|
CheckParam: "",
|
|
},
|
|
|
|
"/caos.zitadel.management.api.v1.ManagementService/BulkRemoveUserGrant": authz.Option{
|
|
Permission: "user.grant.delete",
|
|
CheckParam: "",
|
|
},
|
|
}
|