zitadel/internal/api
Livio Spring 26c7d95c88
fix: potential panics in login and return proper http 405 (#8065)
# Which Problems Are Solved

We identified some parts in the code, which could panic with a nil
pointer when accessed without auth request.
Additionally, if a GRPC method was called with an unmapped HTTP method,
e.g. POST instead of GET a 501 instead of a 405 was returned.

# How the Problems Are Solved

- Additional checks for existing authRequest
- custom http status code mapper for gateway

# Additional Changes

None.

# Additional Context

- noted internally in OPS
2024-06-07 07:30:04 +00:00
..
assets fix: exclude db connection error details (#7785) 2024-04-23 08:35:25 +00:00
authz chore(deps): update all go deps (#7773) 2024-04-15 09:17:36 +00:00
call fix: reset the call timestamp after a bulk trigger (#6080) 2023-07-07 08:15:05 +00:00
grpc fix: potential panics in login and return proper http 405 (#8065) 2024-06-07 07:30:04 +00:00
http fix: exclude db connection error details (#7785) 2024-04-23 08:35:25 +00:00
idp feat(saml): allow setting nameid-format and alternative mapping for transient format (#7979) 2024-05-23 05:04:07 +00:00
info fix: correct method and path for session api activity (#6880) 2023-11-22 12:12:23 +02:00
oidc fix(oidc): make sure id_token does not contain any info from access token actions (#8053) 2024-05-31 13:06:59 +00:00
robots_txt fix: introduce measures to avoid bots crawling and indexing activities (#5728) 2023-05-05 10:25:02 +02:00
saml feat(actions): allow getting metadata of organizations from user grants (#7782) 2024-04-22 11:34:23 +00:00
service fix(eventstore): tests 2020-11-26 09:19:14 +01:00
ui fix: potential panics in login and return proper http 405 (#8065) 2024-06-07 07:30:04 +00:00
api.go feat: improve instance not found error (#7413) 2024-02-28 10:49:57 +00:00