mirror of
https://github.com/zitadel/zitadel.git
synced 2024-12-13 03:24:26 +00:00
db1d8f4efe
* feat: oidc config * fix: oidc configurations * feat: oidc idp config * feat: add oidc config test * fix: tests * fix: tests * feat: translate new events * feat: idp eventstore * feat: idp eventstore * fix: tests * feat: command side idp * feat: query side idp * feat: idp config on org * fix: tests * feat: authz idp on org * feat: org idps * feat: login policy * feat: login policy * feat: login policy * feat: add idp func on login policy * feat: add validation to loginpolicy and idp provider * feat: add default login policy * feat: login policy on org * feat: login policy on org * fix: id config handlers * fix: id config handlers * fix: create idp on org * fix: create idp on org * fix: not existing idp config * fix: default login policy * fix: add login policy on org * fix: idp provider search on org * fix: test * fix: remove idp on org * fix: test * fix: test * fix: remove admin idp * fix: logo src as byte * fix: migration * fix: tests * Update internal/iam/repository/eventsourcing/iam.go Co-authored-by: Silvan <silvan.reusser@gmail.com> * Update internal/iam/repository/eventsourcing/iam_test.go Co-authored-by: Silvan <silvan.reusser@gmail.com> * Update internal/iam/repository/eventsourcing/iam_test.go Co-authored-by: Silvan <silvan.reusser@gmail.com> * Update internal/iam/repository/eventsourcing/model/login_policy.go Co-authored-by: Silvan <silvan.reusser@gmail.com> * Update internal/iam/repository/eventsourcing/model/login_policy.go Co-authored-by: Silvan <silvan.reusser@gmail.com> * Update internal/org/repository/eventsourcing/org_test.go Co-authored-by: Silvan <silvan.reusser@gmail.com> * Update internal/iam/repository/eventsourcing/model/login_policy_test.go Co-authored-by: Silvan <silvan.reusser@gmail.com> * Update internal/iam/repository/eventsourcing/model/login_policy_test.go Co-authored-by: Silvan <silvan.reusser@gmail.com> * fix: pr comments * fix: tests * Update types.go * fix: merge request changes * fix: reduce optimization Co-authored-by: Silvan <silvan.reusser@gmail.com> Co-authored-by: Livio Amstutz <livio.a@gmail.com>
298 lines
8.9 KiB
Go
298 lines
8.9 KiB
Go
package admin
|
|
|
|
import (
|
|
"github.com/caos/logging"
|
|
"github.com/golang/protobuf/ptypes"
|
|
"golang.org/x/text/language"
|
|
|
|
admin_model "github.com/caos/zitadel/internal/admin/model"
|
|
"github.com/caos/zitadel/internal/eventstore/models"
|
|
"github.com/caos/zitadel/internal/model"
|
|
org_model "github.com/caos/zitadel/internal/org/model"
|
|
usr_model "github.com/caos/zitadel/internal/user/model"
|
|
"github.com/caos/zitadel/pkg/grpc/admin"
|
|
)
|
|
|
|
func setUpRequestToModel(setUp *admin.OrgSetUpRequest) *admin_model.SetupOrg {
|
|
return &admin_model.SetupOrg{
|
|
Org: orgCreateRequestToModel(setUp.Org),
|
|
User: userCreateRequestToModel(setUp.User),
|
|
}
|
|
}
|
|
|
|
func orgCreateRequestToModel(org *admin.CreateOrgRequest) *org_model.Org {
|
|
o := &org_model.Org{
|
|
Domains: []*org_model.OrgDomain{},
|
|
Name: org.Name,
|
|
}
|
|
if org.Domain != "" {
|
|
o.Domains = append(o.Domains, &org_model.OrgDomain{Domain: org.Domain})
|
|
}
|
|
|
|
return o
|
|
}
|
|
|
|
func userCreateRequestToModel(user *admin.CreateUserRequest) *usr_model.User {
|
|
preferredLanguage, err := language.Parse(user.PreferredLanguage)
|
|
logging.Log("GRPC-30hwz").OnError(err).Debug("unable to parse language")
|
|
result := &usr_model.User{
|
|
Profile: &usr_model.Profile{
|
|
UserName: user.UserName,
|
|
FirstName: user.FirstName,
|
|
LastName: user.LastName,
|
|
NickName: user.NickName,
|
|
PreferredLanguage: preferredLanguage,
|
|
Gender: genderToModel(user.Gender),
|
|
},
|
|
Password: &usr_model.Password{
|
|
SecretString: user.Password,
|
|
},
|
|
Email: &usr_model.Email{
|
|
EmailAddress: user.Email,
|
|
IsEmailVerified: user.IsEmailVerified,
|
|
},
|
|
Address: &usr_model.Address{
|
|
Country: user.Country,
|
|
Locality: user.Locality,
|
|
PostalCode: user.PostalCode,
|
|
Region: user.Region,
|
|
StreetAddress: user.StreetAddress,
|
|
},
|
|
}
|
|
if user.Phone != "" {
|
|
result.Phone = &usr_model.Phone{PhoneNumber: user.Phone, IsPhoneVerified: user.IsPhoneVerified}
|
|
}
|
|
return result
|
|
}
|
|
|
|
func setUpOrgResponseFromModel(setUp *admin_model.SetupOrg) *admin.OrgSetUpResponse {
|
|
return &admin.OrgSetUpResponse{
|
|
Org: orgFromModel(setUp.Org),
|
|
User: userFromModel(setUp.User),
|
|
}
|
|
}
|
|
|
|
func orgSearchResponseFromModel(request *org_model.OrgSearchResult) *admin.OrgSearchResponse {
|
|
timestamp, err := ptypes.TimestampProto(request.Timestamp)
|
|
logging.Log("GRPC-shu7s").OnError(err).Debug("unable to get timestamp from time")
|
|
return &admin.OrgSearchResponse{
|
|
Result: orgViewsFromModel(request.Result),
|
|
Limit: request.Limit,
|
|
Offset: request.Offset,
|
|
TotalResult: request.TotalResult,
|
|
ProcessedSequence: request.Sequence,
|
|
ViewTimestamp: timestamp,
|
|
}
|
|
}
|
|
|
|
func orgViewsFromModel(orgs []*org_model.OrgView) []*admin.Org {
|
|
result := make([]*admin.Org, len(orgs))
|
|
for i, org := range orgs {
|
|
result[i] = orgViewFromModel(org)
|
|
}
|
|
|
|
return result
|
|
}
|
|
|
|
func orgFromModel(org *org_model.Org) *admin.Org {
|
|
creationDate, err := ptypes.TimestampProto(org.CreationDate)
|
|
logging.Log("GRPC-GTHsZ").OnError(err).Debug("unable to get timestamp from time")
|
|
|
|
changeDate, err := ptypes.TimestampProto(org.ChangeDate)
|
|
logging.Log("GRPC-dVnoj").OnError(err).Debug("unable to get timestamp from time")
|
|
|
|
return &admin.Org{
|
|
ChangeDate: changeDate,
|
|
CreationDate: creationDate,
|
|
Id: org.AggregateID,
|
|
Name: org.Name,
|
|
State: orgStateFromModel(org.State),
|
|
}
|
|
}
|
|
|
|
func orgViewFromModel(org *org_model.OrgView) *admin.Org {
|
|
creationDate, err := ptypes.TimestampProto(org.CreationDate)
|
|
logging.Log("GRPC-GTHsZ").OnError(err).Debug("unable to get timestamp from time")
|
|
|
|
changeDate, err := ptypes.TimestampProto(org.ChangeDate)
|
|
logging.Log("GRPC-dVnoj").OnError(err).Debug("unable to get timestamp from time")
|
|
|
|
return &admin.Org{
|
|
ChangeDate: changeDate,
|
|
CreationDate: creationDate,
|
|
Id: org.ID,
|
|
Name: org.Name,
|
|
State: orgStateFromModel(org.State),
|
|
}
|
|
}
|
|
|
|
func userFromModel(user *usr_model.User) *admin.User {
|
|
creationDate, err := ptypes.TimestampProto(user.CreationDate)
|
|
logging.Log("GRPC-8duwe").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
changeDate, err := ptypes.TimestampProto(user.ChangeDate)
|
|
logging.Log("GRPC-ckoe3d").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
converted := &admin.User{
|
|
Id: user.AggregateID,
|
|
State: userStateFromModel(user.State),
|
|
CreationDate: creationDate,
|
|
ChangeDate: changeDate,
|
|
Sequence: user.Sequence,
|
|
UserName: user.UserName,
|
|
FirstName: user.FirstName,
|
|
LastName: user.LastName,
|
|
DisplayName: user.DisplayName,
|
|
NickName: user.NickName,
|
|
PreferredLanguage: user.PreferredLanguage.String(),
|
|
Gender: genderFromModel(user.Gender),
|
|
}
|
|
if user.Email != nil {
|
|
converted.Email = user.EmailAddress
|
|
converted.IsEmailVerified = user.IsEmailVerified
|
|
}
|
|
if user.Phone != nil {
|
|
converted.Phone = user.PhoneNumber
|
|
converted.IsPhoneVerified = user.IsPhoneVerified
|
|
}
|
|
if user.Address != nil {
|
|
converted.Country = user.Country
|
|
converted.Locality = user.Locality
|
|
converted.PostalCode = user.PostalCode
|
|
converted.Region = user.Region
|
|
converted.StreetAddress = user.StreetAddress
|
|
}
|
|
return converted
|
|
}
|
|
|
|
func orgStateFromModel(state org_model.OrgState) admin.OrgState {
|
|
switch state {
|
|
case org_model.OrgStateActive:
|
|
return admin.OrgState_ORGSTATE_ACTIVE
|
|
case org_model.OrgStateInactive:
|
|
return admin.OrgState_ORGSTATE_INACTIVE
|
|
default:
|
|
return admin.OrgState_ORGSTATE_UNSPECIFIED
|
|
}
|
|
}
|
|
|
|
func genderFromModel(gender usr_model.Gender) admin.Gender {
|
|
switch gender {
|
|
case usr_model.GenderFemale:
|
|
return admin.Gender_GENDER_FEMALE
|
|
case usr_model.GenderMale:
|
|
return admin.Gender_GENDER_MALE
|
|
case usr_model.GenderDiverse:
|
|
return admin.Gender_GENDER_DIVERSE
|
|
default:
|
|
return admin.Gender_GENDER_UNSPECIFIED
|
|
}
|
|
}
|
|
|
|
func genderToModel(gender admin.Gender) usr_model.Gender {
|
|
switch gender {
|
|
case admin.Gender_GENDER_FEMALE:
|
|
return usr_model.GenderFemale
|
|
case admin.Gender_GENDER_MALE:
|
|
return usr_model.GenderMale
|
|
case admin.Gender_GENDER_DIVERSE:
|
|
return usr_model.GenderDiverse
|
|
default:
|
|
return usr_model.GenderUnspecified
|
|
}
|
|
}
|
|
|
|
func userStateFromModel(state usr_model.UserState) admin.UserState {
|
|
switch state {
|
|
case usr_model.UserStateActive:
|
|
return admin.UserState_USERSTATE_ACTIVE
|
|
case usr_model.UserStateInactive:
|
|
return admin.UserState_USERSTATE_INACTIVE
|
|
case usr_model.UserStateLocked:
|
|
return admin.UserState_USERSTATE_LOCKED
|
|
default:
|
|
return admin.UserState_USERSTATE_UNSPECIFIED
|
|
}
|
|
}
|
|
|
|
func orgSearchRequestToModel(req *admin.OrgSearchRequest) *org_model.OrgSearchRequest {
|
|
return &org_model.OrgSearchRequest{
|
|
Limit: req.Limit,
|
|
Asc: req.Asc,
|
|
Offset: req.Offset,
|
|
Queries: orgQueriesToModel(req.Queries),
|
|
SortingColumn: orgQueryKeyToModel(req.SortingColumn),
|
|
}
|
|
}
|
|
|
|
func orgQueriesToModel(queries []*admin.OrgSearchQuery) []*org_model.OrgSearchQuery {
|
|
modelQueries := make([]*org_model.OrgSearchQuery, len(queries))
|
|
|
|
for i, query := range queries {
|
|
modelQueries[i] = orgQueryToModel(query)
|
|
}
|
|
|
|
return modelQueries
|
|
}
|
|
|
|
func orgQueryToModel(query *admin.OrgSearchQuery) *org_model.OrgSearchQuery {
|
|
return &org_model.OrgSearchQuery{
|
|
Key: orgQueryKeyToModel(query.Key),
|
|
Value: query.Value,
|
|
Method: orgQueryMethodToModel(query.Method),
|
|
}
|
|
}
|
|
|
|
func orgQueryKeyToModel(key admin.OrgSearchKey) org_model.OrgSearchKey {
|
|
switch key {
|
|
case admin.OrgSearchKey_ORGSEARCHKEY_DOMAIN:
|
|
return org_model.OrgSearchKeyOrgDomain
|
|
case admin.OrgSearchKey_ORGSEARCHKEY_ORG_NAME:
|
|
return org_model.OrgSearchKeyOrgName
|
|
case admin.OrgSearchKey_ORGSEARCHKEY_STATE:
|
|
return org_model.OrgSearchKeyState
|
|
default:
|
|
return org_model.OrgSearchKeyUnspecified
|
|
}
|
|
}
|
|
|
|
func orgQueryMethodToModel(method admin.OrgSearchMethod) model.SearchMethod {
|
|
switch method {
|
|
case admin.OrgSearchMethod_ORGSEARCHMETHOD_CONTAINS:
|
|
return model.SearchMethodContains
|
|
case admin.OrgSearchMethod_ORGSEARCHMETHOD_EQUALS:
|
|
return model.SearchMethodEquals
|
|
case admin.OrgSearchMethod_ORGSEARCHMETHOD_STARTS_WITH:
|
|
return model.SearchMethodStartsWith
|
|
default:
|
|
return 0
|
|
}
|
|
}
|
|
|
|
func orgIamPolicyFromModel(policy *org_model.OrgIAMPolicy) *admin.OrgIamPolicy {
|
|
creationDate, err := ptypes.TimestampProto(policy.CreationDate)
|
|
logging.Log("GRPC-ush36").OnError(err).Debug("unable to get timestamp from time")
|
|
|
|
changeDate, err := ptypes.TimestampProto(policy.ChangeDate)
|
|
logging.Log("GRPC-Ps9fW").OnError(err).Debug("unable to get timestamp from time")
|
|
|
|
return &admin.OrgIamPolicy{
|
|
OrgId: policy.AggregateID,
|
|
Description: policy.Description,
|
|
UserLoginMustBeDomain: policy.UserLoginMustBeDomain,
|
|
Default: policy.Default,
|
|
CreationDate: creationDate,
|
|
ChangeDate: changeDate,
|
|
}
|
|
}
|
|
|
|
func orgIamPolicyRequestToModel(policy *admin.OrgIamPolicyRequest) *org_model.OrgIAMPolicy {
|
|
return &org_model.OrgIAMPolicy{
|
|
ObjectRoot: models.ObjectRoot{
|
|
AggregateID: policy.OrgId,
|
|
},
|
|
Description: policy.Description,
|
|
UserLoginMustBeDomain: policy.UserLoginMustBeDomain,
|
|
}
|
|
}
|