mirror of
https://github.com/zitadel/zitadel.git
synced 2024-12-14 03:54:21 +00:00
c6fed8ae86
* fix user table count * grpc ge * move grpc * u2f * add u2f funcs * rm local grpc, u2f dialog * dialog u2f * 2fa button * mfa u2f credentialoptions * decode base64 to bytearray, id, challenge * u2f verify * spinner, remove, attribute col * delete mfa * add forcemfa to policy * add id to remove * fix: add missing remove u2f in management * user mgmt u2f delete, login policy * rm log * show attr in mgmt user mfa * add missing id of mfa * mfa table * multifaktor for admin, org * add secondfactor to gen component * remove circular dependency * lint * revert identity prov * add divider * login policy lint * Update console/src/app/modules/policies/login-policy/login-policy.component.html * Update console/src/app/modules/policies/login-policy/login-policy.component.html Co-authored-by: Maximilian Peintner <csaq7175@uibk.ac.at> Co-authored-by: Livio Amstutz <livio.a@gmail.com>
243 lines
8.4 KiB
Go
243 lines
8.4 KiB
Go
package management
|
|
|
|
import (
|
|
"context"
|
|
"github.com/caos/zitadel/internal/api/authz"
|
|
"github.com/caos/zitadel/pkg/grpc/management"
|
|
"github.com/golang/protobuf/ptypes/empty"
|
|
)
|
|
|
|
func (s *Server) GetUserByID(ctx context.Context, id *management.UserID) (*management.UserView, error) {
|
|
user, err := s.user.UserByID(ctx, id.Id)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return userViewFromModel(user), nil
|
|
}
|
|
|
|
func (s *Server) GetUserByLoginNameGlobal(ctx context.Context, loginName *management.LoginName) (*management.UserView, error) {
|
|
user, err := s.user.GetUserByLoginNameGlobal(ctx, loginName.LoginName)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return userViewFromModel(user), nil
|
|
}
|
|
|
|
func (s *Server) SearchUsers(ctx context.Context, in *management.UserSearchRequest) (*management.UserSearchResponse, error) {
|
|
request := userSearchRequestsToModel(in)
|
|
request.AppendMyOrgQuery(authz.GetCtxData(ctx).OrgID)
|
|
response, err := s.user.SearchUsers(ctx, request)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return userSearchResponseFromModel(response), nil
|
|
}
|
|
|
|
func (s *Server) UserChanges(ctx context.Context, changesRequest *management.ChangeRequest) (*management.Changes, error) {
|
|
response, err := s.user.UserChanges(ctx, changesRequest.Id, changesRequest.SequenceOffset, changesRequest.Limit, changesRequest.Asc)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return userChangesToResponse(response, changesRequest.GetSequenceOffset(), changesRequest.GetLimit()), nil
|
|
}
|
|
|
|
func (s *Server) IsUserUnique(ctx context.Context, request *management.UniqueUserRequest) (*management.UniqueUserResponse, error) {
|
|
unique, err := s.user.IsUserUnique(ctx, request.UserName, request.Email)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return &management.UniqueUserResponse{IsUnique: unique}, nil
|
|
}
|
|
|
|
func (s *Server) CreateUser(ctx context.Context, in *management.CreateUserRequest) (*management.UserResponse, error) {
|
|
user, err := s.user.CreateUser(ctx, userCreateToModel(in))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return userFromModel(user), nil
|
|
}
|
|
|
|
func (s *Server) DeactivateUser(ctx context.Context, in *management.UserID) (*management.UserResponse, error) {
|
|
user, err := s.user.DeactivateUser(ctx, in.Id)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return userFromModel(user), nil
|
|
}
|
|
|
|
func (s *Server) ReactivateUser(ctx context.Context, in *management.UserID) (*management.UserResponse, error) {
|
|
user, err := s.user.ReactivateUser(ctx, in.Id)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return userFromModel(user), nil
|
|
}
|
|
|
|
func (s *Server) LockUser(ctx context.Context, in *management.UserID) (*management.UserResponse, error) {
|
|
user, err := s.user.LockUser(ctx, in.Id)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return userFromModel(user), nil
|
|
}
|
|
|
|
func (s *Server) UnlockUser(ctx context.Context, in *management.UserID) (*management.UserResponse, error) {
|
|
user, err := s.user.UnlockUser(ctx, in.Id)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return userFromModel(user), nil
|
|
}
|
|
|
|
func (s *Server) DeleteUser(ctx context.Context, in *management.UserID) (*empty.Empty, error) {
|
|
err := s.user.RemoveUser(ctx, in.Id)
|
|
return &empty.Empty{}, err
|
|
}
|
|
|
|
func (s *Server) UpdateUserMachine(ctx context.Context, in *management.UpdateMachineRequest) (*management.MachineResponse, error) {
|
|
machine, err := s.user.ChangeMachine(ctx, updateMachineToModel(in))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return machineFromModel(machine), nil
|
|
}
|
|
|
|
func (s *Server) GetUserProfile(ctx context.Context, in *management.UserID) (*management.UserProfileView, error) {
|
|
profile, err := s.user.ProfileByID(ctx, in.Id)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return profileViewFromModel(profile), nil
|
|
}
|
|
|
|
func (s *Server) ChangeUserUserName(ctx context.Context, request *management.UpdateUserUserNameRequest) (*empty.Empty, error) {
|
|
return &empty.Empty{}, s.user.ChangeUsername(ctx, request.Id, request.UserName)
|
|
}
|
|
|
|
func (s *Server) UpdateUserProfile(ctx context.Context, request *management.UpdateUserProfileRequest) (*management.UserProfile, error) {
|
|
profile, err := s.user.ChangeProfile(ctx, updateProfileToModel(request))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return profileFromModel(profile), nil
|
|
}
|
|
|
|
func (s *Server) GetUserEmail(ctx context.Context, in *management.UserID) (*management.UserEmailView, error) {
|
|
email, err := s.user.EmailByID(ctx, in.Id)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return emailViewFromModel(email), nil
|
|
}
|
|
|
|
func (s *Server) ChangeUserEmail(ctx context.Context, request *management.UpdateUserEmailRequest) (*management.UserEmail, error) {
|
|
email, err := s.user.ChangeEmail(ctx, updateEmailToModel(request))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return emailFromModel(email), nil
|
|
}
|
|
|
|
func (s *Server) ResendEmailVerificationMail(ctx context.Context, in *management.UserID) (*empty.Empty, error) {
|
|
err := s.user.CreateEmailVerificationCode(ctx, in.Id)
|
|
return &empty.Empty{}, err
|
|
}
|
|
|
|
func (s *Server) GetUserPhone(ctx context.Context, in *management.UserID) (*management.UserPhoneView, error) {
|
|
phone, err := s.user.PhoneByID(ctx, in.Id)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return phoneViewFromModel(phone), nil
|
|
}
|
|
|
|
func (s *Server) ChangeUserPhone(ctx context.Context, request *management.UpdateUserPhoneRequest) (*management.UserPhone, error) {
|
|
phone, err := s.user.ChangePhone(ctx, updatePhoneToModel(request))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return phoneFromModel(phone), nil
|
|
}
|
|
|
|
func (s *Server) RemoveUserPhone(ctx context.Context, userID *management.UserID) (*empty.Empty, error) {
|
|
err := s.user.RemovePhone(ctx, userID.Id)
|
|
return &empty.Empty{}, err
|
|
}
|
|
|
|
func (s *Server) ResendPhoneVerificationCode(ctx context.Context, in *management.UserID) (*empty.Empty, error) {
|
|
err := s.user.CreatePhoneVerificationCode(ctx, in.Id)
|
|
return &empty.Empty{}, err
|
|
}
|
|
|
|
func (s *Server) GetUserAddress(ctx context.Context, in *management.UserID) (*management.UserAddressView, error) {
|
|
address, err := s.user.AddressByID(ctx, in.Id)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return addressViewFromModel(address), nil
|
|
}
|
|
|
|
func (s *Server) UpdateUserAddress(ctx context.Context, request *management.UpdateUserAddressRequest) (*management.UserAddress, error) {
|
|
address, err := s.user.ChangeAddress(ctx, updateAddressToModel(request))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return addressFromModel(address), nil
|
|
}
|
|
|
|
func (s *Server) SendSetPasswordNotification(ctx context.Context, request *management.SetPasswordNotificationRequest) (*empty.Empty, error) {
|
|
err := s.user.RequestSetPassword(ctx, request.Id, notifyTypeToModel(request.Type))
|
|
return &empty.Empty{}, err
|
|
}
|
|
|
|
func (s *Server) SetInitialPassword(ctx context.Context, request *management.PasswordRequest) (*empty.Empty, error) {
|
|
_, err := s.user.SetOneTimePassword(ctx, passwordRequestToModel(request))
|
|
return &empty.Empty{}, err
|
|
}
|
|
|
|
func (s *Server) ResendInitialMail(ctx context.Context, request *management.InitialMailRequest) (*empty.Empty, error) {
|
|
err := s.user.ResendInitialMail(ctx, request.Id, request.Email)
|
|
return &empty.Empty{}, err
|
|
}
|
|
|
|
func (s *Server) SearchUserExternalIDPs(ctx context.Context, request *management.ExternalIDPSearchRequest) (*management.ExternalIDPSearchResponse, error) {
|
|
externalIDP, err := s.user.SearchExternalIDPs(ctx, externalIDPSearchRequestToModel(request))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return externalIDPSearchResponseFromModel(externalIDP), nil
|
|
}
|
|
|
|
func (s *Server) RemoveExternalIDP(ctx context.Context, request *management.ExternalIDPRemoveRequest) (*empty.Empty, error) {
|
|
err := s.user.RemoveExternalIDP(ctx, externalIDPRemoveToModel(request))
|
|
return &empty.Empty{}, err
|
|
}
|
|
|
|
func (s *Server) GetUserMfas(ctx context.Context, userID *management.UserID) (*management.UserMultiFactors, error) {
|
|
mfas, err := s.user.UserMFAs(ctx, userID.Id)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return &management.UserMultiFactors{Mfas: mfasFromModel(mfas)}, nil
|
|
}
|
|
|
|
func (s *Server) RemoveMfaOTP(ctx context.Context, userID *management.UserID) (*empty.Empty, error) {
|
|
err := s.user.RemoveOTP(ctx, userID.Id)
|
|
return &empty.Empty{}, err
|
|
}
|
|
|
|
func (s *Server) RemoveMfaU2F(ctx context.Context, webAuthNTokenID *management.WebAuthNTokenID) (*empty.Empty, error) {
|
|
err := s.user.RemoveU2F(ctx, webAuthNTokenID.UserId, webAuthNTokenID.Id)
|
|
return &empty.Empty{}, err
|
|
}
|
|
|
|
func (s *Server) SearchUserMemberships(ctx context.Context, in *management.UserMembershipSearchRequest) (*management.UserMembershipSearchResponse, error) {
|
|
request := userMembershipSearchRequestsToModel(in)
|
|
request.AppendUserIDQuery(in.UserId)
|
|
response, err := s.user.SearchUserMemberships(ctx, request)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return userMembershipSearchResponseFromModel(response), nil
|
|
}
|