zitadel/internal/query/projection
Tim Möhlmann 6398349c24
feat(oidc): token exchange impersonation (#7516)
* add token exchange feature flag

* allow setting reason and actor to access tokens

* impersonation

* set token types and scopes in response

* upgrade oidc to working draft state

* fix tests

* audience and scope validation

* id toke and jwt as input

* return id tokens

* add grant type  token exchange to app config

* add integration tests

* check and deny actors in api calls

* fix instance setting tests by triggering projection on write and cleanup

* insert sleep statements again

* solve linting issues

* add translations

* pin oidc v3.15.0

* resolve comments, add event translation

* fix refreshtoken test

* use ValidateAuthReqScopes from oidc

* apparently the linter can't make up its mind

* persist actor thru refresh tokens and check in tests

* remove unneeded triggers
2024-03-20 10:18:46 +00:00
..
action_test.go feat: query side for executions and targets for actions v2 (#7524) 2024-03-14 09:56:23 +00:00
action.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
app_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
app.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
assert_test.go feat: push telemetry (#6027) 2023-07-06 08:38:13 +02:00
assert.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
auth_request_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
auth_request.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
authn_key_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
authn_key.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
config.go feat(eventstore): increase parallel write capabilities (#5940) 2023-10-19 12:19:10 +02:00
custom_text_test.go fix(projections): stop updating creation dates (#6930) 2024-02-22 17:25:47 +00:00
custom_text.go fix(projections): stop updating creation dates (#6930) 2024-02-22 17:25:47 +00:00
debug_notification_provider_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
debug_notification.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
device_auth.go feat(oidc): id token for device authorization (#7088) 2023-12-20 13:21:08 +01:00
domain_policy_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
domain_policy.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
event_test.go feat(eventstore): increase parallel write capabilities (#5940) 2023-10-19 12:19:10 +02:00
eventstore_mock_test.go fix(setup): init projections (#7194) 2024-01-25 17:28:20 +01:00
executer_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
execution_test.go feat: query side for executions and targets for actions v2 (#7524) 2024-03-14 09:56:23 +00:00
execution.go feat: query side for executions and targets for actions v2 (#7524) 2024-03-14 09:56:23 +00:00
flow_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
flow.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
idp_login_policy_link_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
idp_login_policy_link.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
idp_template_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
idp_template.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
idp_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
idp_user_link_test.go fix: update external username on idp if auto update is enabled (#7048) 2023-12-08 18:22:07 +01:00
idp_user_link.go fix: update external username on idp if auto update is enabled (#7048) 2023-12-08 18:22:07 +01:00
idp.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
instance_domain_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
instance_domain.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
instance_features_test.go fix: assign instance ID to aggregate ID when converting from v1 to v2 feature (#7505) 2024-03-05 16:12:49 +01:00
instance_features.go feat(oidc): token exchange impersonation (#7516) 2024-03-20 10:18:46 +00:00
instance_member_test.go fix: combine resourceowner query in reduce function for user grant (#7383) 2024-03-08 07:52:59 +00:00
instance_member.go perf: user grant owner removed (#6962) 2024-01-08 15:26:30 +00:00
instance_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
instance.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
key_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
key.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
label_policy_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
label_policy.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
limits_test.go fix(projections): stop updating creation dates (#6930) 2024-02-22 17:25:47 +00:00
limits.go fix(projections): stop updating creation dates (#6930) 2024-02-22 17:25:47 +00:00
lockout_policy_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
lockout_policy.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
login_name_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
login_name.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
login_policy_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
login_policy.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
mail_template_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
mail_template.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
main_test.go fix(setup): init projections (#7194) 2024-01-25 17:28:20 +01:00
member.go perf: remove owner removed columns from projections for oidc (#6925) 2023-11-20 17:21:08 +02:00
message_text_test.go fix(projections): stop updating creation dates (#6930) 2024-02-22 17:25:47 +00:00
message_texts.go fix(projections): stop updating creation dates (#6930) 2024-02-22 17:25:47 +00:00
milestones_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
milestones.go feat(eventstore): increase parallel write capabilities (#5940) 2023-10-19 12:19:10 +02:00
notification_policy_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
notification_policy.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
oidc_settings_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
oidc_settings.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
org_domain_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
org_domain.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
org_member_test.go fix: combine resourceowner query in reduce function for user grant (#7383) 2024-03-08 07:52:59 +00:00
org_member.go perf: user grant owner removed (#6962) 2024-01-08 15:26:30 +00:00
org_metadata_test.go fix(projections): stop updating creation dates (#6930) 2024-02-22 17:25:47 +00:00
org_metadata.go fix(projections): stop updating creation dates (#6930) 2024-02-22 17:25:47 +00:00
org_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
org.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
password_age_policy_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
password_age_policy.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
password_complexity_policy_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
password_complexity_policy.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
privacy_policy_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
privacy_policy.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
project_grant_member_test.go fix: combine resourceowner query in reduce function for user grant (#7383) 2024-03-08 07:52:59 +00:00
project_grant_member.go fix: combine resourceowner query in reduce function for user grant (#7383) 2024-03-08 07:52:59 +00:00
project_grant_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
project_grant.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
project_member_test.go fix: combine resourceowner query in reduce function for user grant (#7383) 2024-03-08 07:52:59 +00:00
project_member.go perf: user grant owner removed (#6962) 2024-01-08 15:26:30 +00:00
project_role_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
project_role.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
project_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
project.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
projection.go feat: query side for executions and targets for actions v2 (#7524) 2024-03-14 09:56:23 +00:00
quota_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
quota.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
restrictions_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
restrictions.go fix: projection version of restrictions (#7028) 2023-12-06 10:30:56 +00:00
secret_generator_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
secret_generator.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
security_policy.go feat: impersonation roles (#7442) 2024-02-28 10:21:11 +00:00
session_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
session.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
sms_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
sms.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
smtp_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
smtp.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
system_features_test.go feat(api): feature flags (#7356) 2024-02-28 10:55:54 +02:00
system_features.go feat(oidc): token exchange impersonation (#7516) 2024-03-20 10:18:46 +00:00
target_test.go feat: query side for executions and targets for actions v2 (#7524) 2024-03-14 09:56:23 +00:00
target.go feat: query side for executions and targets for actions v2 (#7524) 2024-03-14 09:56:23 +00:00
user_auth_method_test.go fix(projections): stop updating creation dates (#6930) 2024-02-22 17:25:47 +00:00
user_auth_method.go fix(projections): stop updating creation dates (#6930) 2024-02-22 17:25:47 +00:00
user_grant_test.go fix: combine resourceowner query in reduce function for user grant (#7383) 2024-03-08 07:52:59 +00:00
user_grant.go fix: combine resourceowner query in reduce function for user grant (#7383) 2024-03-08 07:52:59 +00:00
user_metadata_test.go fix(projections): stop updating creation dates (#6930) 2024-02-22 17:25:47 +00:00
user_metadata.go fix(projections): stop updating creation dates (#6930) 2024-02-22 17:25:47 +00:00
user_personal_access_token_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
user_personal_access_token.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
user_test.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00
user.go refactor: rename package errors to zerrors (#7039) 2023-12-08 15:30:55 +01:00