TheArchive/zitadel
1
0
Fork 0
mirror of https://github.com/zitadel/zitadel.git synced 2024-12-12 02:54:20 +00:00
Code Issues Packages Projects Releases Wiki Activity
cca342187b
zitadel/proto
History
Tim Möhlmann 5b1160de1e
feat(session): allow update of session without token (#7963) 
# Which Problems Are Solved

The session update requires the current session token as argument.
Since this adds extra complexity but no real additional security and
prevents case like magic links, we want to remove this requirement.

We still require the session token on other resouces / endpoints, e.g.
for finalizing the auth request or on idp intents.

# How the Problems Are Solved

- Removed the session token verifier in the Update Session GRPc call.
- Removed the session token from login UI examples session update calls

# Additional Changes

- none

# Additional Context

- Closes #7883
2024-05-22 05:56:11 +00:00
..
zitadel feat(session): allow update of session without token (#7963) 2024-05-22 05:56:11 +00:00
buf.lock chore(console): buf stub build (#5215) 2023-02-17 14:09:11 +00:00
buf.yaml fix: use enum for instance feature in system api (#6682) 2023-10-09 12:33:23 +02:00