mirror of
https://github.com/zitadel/zitadel.git
synced 2024-12-13 11:34:26 +00:00
320ddfa46d
* feat: add/ remove external idps * feat: external idp add /remove * fix: auth proto * fix: handle login * feat: loginpolicy on authrequest * feat: idp providers on login * feat: link external idp * fix: check login policy on check username * feat: add mapping fields for idp config * feat: use user org id if existing * feat: use user org id if existing * feat: register external user * feat: register external user * feat: user linking * feat: user linking * feat: design external login * feat: design external login * fix: tests * fix: regenerate login design * feat: next step test linking process * feat: next step test linking process * feat: cascade remove external idps on user * fix: tests * fix: tests * feat: external idp requsts on users * fix: generate protos * feat: login styles * feat: login styles * fix: link user * fix: register user on specifig org * fix: user linking * fix: register external, linking auto * fix: remove unnecessary request from proto * fix: tests * fix: new oidc package * fix: migration version * fix: policy permissions * Update internal/ui/login/static/i18n/en.yaml Co-authored-by: Livio Amstutz <livio.a@gmail.com> * Update internal/ui/login/static/i18n/en.yaml Co-authored-by: Livio Amstutz <livio.a@gmail.com> * Update internal/ui/login/handler/renderer.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * Update internal/ui/login/handler/renderer.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * fix: pr requests * Update internal/ui/login/handler/link_users_handler.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * fix: pr requests * fix: pr requests * fix: pr requests * fix: login name size * fix: profile image light * fix: colors * fix: pr requests * fix: remove redirect uri validator * fix: remove redirect uri validator Co-authored-by: Livio Amstutz <livio.a@gmail.com>
228 lines
7.9 KiB
Go
228 lines
7.9 KiB
Go
package management
|
|
|
|
import (
|
|
"context"
|
|
"github.com/caos/zitadel/internal/api/authz"
|
|
"github.com/caos/zitadel/internal/errors"
|
|
"github.com/caos/zitadel/pkg/grpc/management"
|
|
"github.com/golang/protobuf/ptypes/empty"
|
|
)
|
|
|
|
func (s *Server) GetUserByID(ctx context.Context, id *management.UserID) (*management.UserView, error) {
|
|
user, err := s.user.UserByID(ctx, id.Id)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return userViewFromModel(user), nil
|
|
}
|
|
|
|
func (s *Server) GetUserByLoginNameGlobal(ctx context.Context, loginName *management.LoginName) (*management.UserView, error) {
|
|
user, err := s.user.GetUserByLoginNameGlobal(ctx, loginName.LoginName)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return userViewFromModel(user), nil
|
|
}
|
|
|
|
func (s *Server) SearchUsers(ctx context.Context, in *management.UserSearchRequest) (*management.UserSearchResponse, error) {
|
|
request := userSearchRequestsToModel(in)
|
|
request.AppendMyOrgQuery(authz.GetCtxData(ctx).OrgID)
|
|
response, err := s.user.SearchUsers(ctx, request)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return userSearchResponseFromModel(response), nil
|
|
}
|
|
|
|
func (s *Server) UserChanges(ctx context.Context, changesRequest *management.ChangeRequest) (*management.Changes, error) {
|
|
response, err := s.user.UserChanges(ctx, changesRequest.Id, changesRequest.SequenceOffset, changesRequest.Limit, changesRequest.Asc)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return userChangesToResponse(response, changesRequest.GetSequenceOffset(), changesRequest.GetLimit()), nil
|
|
}
|
|
|
|
func (s *Server) IsUserUnique(ctx context.Context, request *management.UniqueUserRequest) (*management.UniqueUserResponse, error) {
|
|
unique, err := s.user.IsUserUnique(ctx, request.UserName, request.Email)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return &management.UniqueUserResponse{IsUnique: unique}, nil
|
|
}
|
|
|
|
func (s *Server) CreateUser(ctx context.Context, in *management.CreateUserRequest) (*management.UserResponse, error) {
|
|
user, err := s.user.CreateUser(ctx, userCreateToModel(in))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return userFromModel(user), nil
|
|
}
|
|
|
|
func (s *Server) DeactivateUser(ctx context.Context, in *management.UserID) (*management.UserResponse, error) {
|
|
user, err := s.user.DeactivateUser(ctx, in.Id)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return userFromModel(user), nil
|
|
}
|
|
|
|
func (s *Server) ReactivateUser(ctx context.Context, in *management.UserID) (*management.UserResponse, error) {
|
|
user, err := s.user.ReactivateUser(ctx, in.Id)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return userFromModel(user), nil
|
|
}
|
|
|
|
func (s *Server) LockUser(ctx context.Context, in *management.UserID) (*management.UserResponse, error) {
|
|
user, err := s.user.LockUser(ctx, in.Id)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return userFromModel(user), nil
|
|
}
|
|
|
|
func (s *Server) UnlockUser(ctx context.Context, in *management.UserID) (*management.UserResponse, error) {
|
|
user, err := s.user.UnlockUser(ctx, in.Id)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return userFromModel(user), nil
|
|
}
|
|
|
|
func (s *Server) DeleteUser(ctx context.Context, in *management.UserID) (*empty.Empty, error) {
|
|
return nil, errors.ThrowUnimplemented(nil, "GRPC-as4fg", "Not implemented")
|
|
}
|
|
|
|
func (s *Server) UpdateUserMachine(ctx context.Context, in *management.UpdateMachineRequest) (*management.MachineResponse, error) {
|
|
machine, err := s.user.ChangeMachine(ctx, updateMachineToModel(in))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return machineFromModel(machine), nil
|
|
}
|
|
|
|
func (s *Server) GetUserProfile(ctx context.Context, in *management.UserID) (*management.UserProfileView, error) {
|
|
profile, err := s.user.ProfileByID(ctx, in.Id)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return profileViewFromModel(profile), nil
|
|
}
|
|
|
|
func (s *Server) ChangeUserUserName(ctx context.Context, request *management.UpdateUserUserNameRequest) (*empty.Empty, error) {
|
|
return &empty.Empty{}, s.user.ChangeUsername(ctx, request.Id, request.UserName)
|
|
}
|
|
|
|
func (s *Server) UpdateUserProfile(ctx context.Context, request *management.UpdateUserProfileRequest) (*management.UserProfile, error) {
|
|
profile, err := s.user.ChangeProfile(ctx, updateProfileToModel(request))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return profileFromModel(profile), nil
|
|
}
|
|
|
|
func (s *Server) GetUserEmail(ctx context.Context, in *management.UserID) (*management.UserEmailView, error) {
|
|
email, err := s.user.EmailByID(ctx, in.Id)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return emailViewFromModel(email), nil
|
|
}
|
|
|
|
func (s *Server) ChangeUserEmail(ctx context.Context, request *management.UpdateUserEmailRequest) (*management.UserEmail, error) {
|
|
email, err := s.user.ChangeEmail(ctx, updateEmailToModel(request))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return emailFromModel(email), nil
|
|
}
|
|
|
|
func (s *Server) ResendEmailVerificationMail(ctx context.Context, in *management.UserID) (*empty.Empty, error) {
|
|
err := s.user.CreateEmailVerificationCode(ctx, in.Id)
|
|
return &empty.Empty{}, err
|
|
}
|
|
|
|
func (s *Server) GetUserPhone(ctx context.Context, in *management.UserID) (*management.UserPhoneView, error) {
|
|
phone, err := s.user.PhoneByID(ctx, in.Id)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return phoneViewFromModel(phone), nil
|
|
}
|
|
|
|
func (s *Server) ChangeUserPhone(ctx context.Context, request *management.UpdateUserPhoneRequest) (*management.UserPhone, error) {
|
|
phone, err := s.user.ChangePhone(ctx, updatePhoneToModel(request))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return phoneFromModel(phone), nil
|
|
}
|
|
|
|
func (s *Server) RemoveUserPhone(ctx context.Context, userID *management.UserID) (*empty.Empty, error) {
|
|
err := s.user.RemovePhone(ctx, userID.Id)
|
|
return &empty.Empty{}, err
|
|
}
|
|
|
|
func (s *Server) ResendPhoneVerificationCode(ctx context.Context, in *management.UserID) (*empty.Empty, error) {
|
|
err := s.user.CreatePhoneVerificationCode(ctx, in.Id)
|
|
return &empty.Empty{}, err
|
|
}
|
|
|
|
func (s *Server) GetUserAddress(ctx context.Context, in *management.UserID) (*management.UserAddressView, error) {
|
|
address, err := s.user.AddressByID(ctx, in.Id)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return addressViewFromModel(address), nil
|
|
}
|
|
|
|
func (s *Server) UpdateUserAddress(ctx context.Context, request *management.UpdateUserAddressRequest) (*management.UserAddress, error) {
|
|
address, err := s.user.ChangeAddress(ctx, updateAddressToModel(request))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return addressFromModel(address), nil
|
|
}
|
|
|
|
func (s *Server) SendSetPasswordNotification(ctx context.Context, request *management.SetPasswordNotificationRequest) (*empty.Empty, error) {
|
|
err := s.user.RequestSetPassword(ctx, request.Id, notifyTypeToModel(request.Type))
|
|
return &empty.Empty{}, err
|
|
}
|
|
|
|
func (s *Server) SetInitialPassword(ctx context.Context, request *management.PasswordRequest) (*empty.Empty, error) {
|
|
_, err := s.user.SetOneTimePassword(ctx, passwordRequestToModel(request))
|
|
return &empty.Empty{}, err
|
|
}
|
|
|
|
func (s *Server) SearchUserExternalIDPs(ctx context.Context, request *management.ExternalIDPSearchRequest) (*management.ExternalIDPSearchResponse, error) {
|
|
externalIDP, err := s.user.SearchExternalIDPs(ctx, externalIDPSearchRequestToModel(request))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return externalIDPSearchResponseFromModel(externalIDP), nil
|
|
}
|
|
|
|
func (s *Server) RemoveExternalIDP(ctx context.Context, request *management.ExternalIDPRemoveRequest) (*empty.Empty, error) {
|
|
err := s.user.RemoveExternalIDP(ctx, externalIDPRemoveToModel(request))
|
|
return &empty.Empty{}, err
|
|
}
|
|
|
|
func (s *Server) GetUserMfas(ctx context.Context, userID *management.UserID) (*management.MultiFactors, error) {
|
|
mfas, err := s.user.UserMfas(ctx, userID.Id)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return &management.MultiFactors{Mfas: mfasFromModel(mfas)}, nil
|
|
}
|
|
|
|
func (s *Server) SearchUserMemberships(ctx context.Context, in *management.UserMembershipSearchRequest) (*management.UserMembershipSearchResponse, error) {
|
|
request := userMembershipSearchRequestsToModel(in)
|
|
request.AppendUserIDQuery(in.UserId)
|
|
response, err := s.user.SearchUserMemberships(ctx, request)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return userMembershipSearchResponseFromModel(response), nil
|
|
}
|