mirror of
https://github.com/zitadel/zitadel.git
synced 2025-01-10 23:03:40 +00:00
744185449e
* introspect * testingapplication key * date * client keys * fix client keys * fix client keys * access tokens only for users * AuthMethodPrivateKeyJWT * client keys * set introspection info correctly * managae apis * update oidc pkg * cleanup * merge msater * set current sequence in migration * set current sequence in migration * set current sequence in migration * Apply suggestions from code review Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com> * DeleteAuthNKeysByObjectID * ensure authn keys uptodate * update oidc version * merge master * merge master Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
132 lines
4.6 KiB
Go
132 lines
4.6 KiB
Go
package handler
|
|
|
|
import (
|
|
"time"
|
|
|
|
"github.com/caos/zitadel/internal/config/systemdefaults"
|
|
"github.com/caos/zitadel/internal/config/types"
|
|
"github.com/caos/zitadel/internal/eventstore"
|
|
"github.com/caos/zitadel/internal/eventstore/query"
|
|
iam_event "github.com/caos/zitadel/internal/iam/repository/eventsourcing"
|
|
"github.com/caos/zitadel/internal/management/repository/eventsourcing/view"
|
|
org_event "github.com/caos/zitadel/internal/org/repository/eventsourcing"
|
|
proj_event "github.com/caos/zitadel/internal/project/repository/eventsourcing"
|
|
usr_event "github.com/caos/zitadel/internal/user/repository/eventsourcing"
|
|
)
|
|
|
|
type Configs map[string]*Config
|
|
|
|
type Config struct {
|
|
MinimumCycleDuration types.Duration
|
|
}
|
|
|
|
type handler struct {
|
|
view *view.View
|
|
bulkLimit uint64
|
|
cycleDuration time.Duration
|
|
errorCountUntilSkip uint64
|
|
|
|
es eventstore.Eventstore
|
|
}
|
|
|
|
func (h *handler) Eventstore() eventstore.Eventstore {
|
|
return h.es
|
|
}
|
|
|
|
type EventstoreRepos struct {
|
|
ProjectEvents *proj_event.ProjectEventstore
|
|
UserEvents *usr_event.UserEventstore
|
|
OrgEvents *org_event.OrgEventstore
|
|
IamEvents *iam_event.IAMEventstore
|
|
}
|
|
|
|
func Register(configs Configs, bulkLimit, errorCount uint64, view *view.View, es eventstore.Eventstore, repos EventstoreRepos, defaults systemdefaults.SystemDefaults) []query.Handler {
|
|
return []query.Handler{
|
|
newProject(
|
|
handler{view, bulkLimit, configs.cycleDuration("Project"), errorCount, es}),
|
|
newProjectGrant(
|
|
handler{view, bulkLimit, configs.cycleDuration("ProjectGrant"), errorCount, es},
|
|
repos.ProjectEvents,
|
|
repos.OrgEvents),
|
|
newProjectRole(handler{view, bulkLimit, configs.cycleDuration("ProjectRole"), errorCount, es},
|
|
repos.ProjectEvents),
|
|
newProjectMember(handler{view, bulkLimit, configs.cycleDuration("ProjectMember"), errorCount, es},
|
|
repos.UserEvents),
|
|
newProjectGrantMember(handler{view, bulkLimit, configs.cycleDuration("ProjectGrantMember"), errorCount, es},
|
|
repos.UserEvents),
|
|
newApplication(handler{view, bulkLimit, configs.cycleDuration("Application"), errorCount, es},
|
|
repos.ProjectEvents),
|
|
newUser(handler{view, bulkLimit, configs.cycleDuration("User"), errorCount, es},
|
|
repos.OrgEvents,
|
|
repos.IamEvents,
|
|
defaults.IamID),
|
|
newUserGrant(handler{view, bulkLimit, configs.cycleDuration("UserGrant"), errorCount, es},
|
|
repos.ProjectEvents,
|
|
repos.UserEvents,
|
|
repos.OrgEvents),
|
|
newOrg(
|
|
handler{view, bulkLimit, configs.cycleDuration("Org"), errorCount, es}),
|
|
newOrgMember(
|
|
handler{view, bulkLimit, configs.cycleDuration("OrgMember"), errorCount, es},
|
|
repos.UserEvents),
|
|
newOrgDomain(
|
|
handler{view, bulkLimit, configs.cycleDuration("OrgDomain"), errorCount, es}),
|
|
newUserMembership(
|
|
handler{view, bulkLimit, configs.cycleDuration("UserMembership"), errorCount, es},
|
|
repos.OrgEvents,
|
|
repos.ProjectEvents),
|
|
newAuthNKeys(
|
|
handler{view, bulkLimit, configs.cycleDuration("MachineKeys"), errorCount, es}),
|
|
newIDPConfig(
|
|
handler{view, bulkLimit, configs.cycleDuration("IDPConfig"), errorCount, es}),
|
|
newLoginPolicy(
|
|
handler{view, bulkLimit, configs.cycleDuration("LoginPolicy"), errorCount, es}),
|
|
newLabelPolicy(
|
|
handler{view, bulkLimit, configs.cycleDuration("LabelPolicy"), errorCount, es}),
|
|
newIDPProvider(
|
|
handler{view, bulkLimit, configs.cycleDuration("IDPProvider"), errorCount, es},
|
|
|
|
defaults,
|
|
repos.IamEvents,
|
|
repos.OrgEvents),
|
|
newExternalIDP(
|
|
handler{view, bulkLimit, configs.cycleDuration("ExternalIDP"), errorCount, es},
|
|
|
|
defaults,
|
|
repos.IamEvents,
|
|
repos.OrgEvents),
|
|
newPasswordComplexityPolicy(
|
|
handler{view, bulkLimit, configs.cycleDuration("PasswordComplexityPolicy"), errorCount, es}),
|
|
newPasswordAgePolicy(
|
|
handler{view, bulkLimit, configs.cycleDuration("PasswordAgePolicy"), errorCount, es}),
|
|
newPasswordLockoutPolicy(
|
|
handler{view, bulkLimit, configs.cycleDuration("PasswordLockoutPolicy"), errorCount, es}),
|
|
newOrgIAMPolicy(
|
|
handler{view, bulkLimit, configs.cycleDuration("OrgIAMPolicy"), errorCount, es}),
|
|
newMailTemplate(
|
|
handler{view, bulkLimit, configs.cycleDuration("MailTemplate"), errorCount, es}),
|
|
newMailText(
|
|
handler{view, bulkLimit, configs.cycleDuration("MailText"), errorCount, es}),
|
|
}
|
|
}
|
|
|
|
func (configs Configs) cycleDuration(viewModel string) time.Duration {
|
|
c, ok := configs[viewModel]
|
|
if !ok {
|
|
return 3 * time.Minute
|
|
}
|
|
return c.MinimumCycleDuration.Duration
|
|
}
|
|
|
|
func (h *handler) MinimumCycleDuration() time.Duration {
|
|
return h.cycleDuration
|
|
}
|
|
|
|
func (h *handler) LockDuration() time.Duration {
|
|
return h.cycleDuration / 3
|
|
}
|
|
|
|
func (h *handler) QueryLimit() uint64 {
|
|
return h.bulkLimit
|
|
}
|