TheArchive/zitadel
1
0
Fork 0
mirror of https://github.com/zitadel/zitadel.git synced 2025-12-06 00:02:24 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
e4517cf15ac911a9ba374d73c194f86d3204c466
zitadel/internal
History
Stefan Benz e4517cf15a fix: correctly handle user grants on project grant to same organization (#10568) 
# Which Problems Are Solved

Authorizations (aka user grants) could not be managed correctly if they
were created on a project grant, which itself was based on a project
granted to the own organization. The error persisted if the
corresponding (potentially unintended) project grant was removed again.

# How the Problems Are Solved

Fixed checks for managing user grants: Roles from projects and project
grants get handled individually to ensure cases like project grants on
the own organization.

# Additional Changes

Additional tests for the 3 failing scenarios.

# Additional Context

Closes #10556

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>
(cherry picked from commit 8e60cce20d)
2025-08-29 13:17:55 +02:00
..
actions
fix(actionsV1): disable projection trigger when querying org metadata in the action (#10462)
2025-08-12 10:55:54 +02:00
activity
feat: trusted (instance) domains (#8369)
2024-07-31 18:00:38 +03:00
admin/repository/eventsourcing
fix(projections): pass context to statement execution method (#10328)
2025-08-15 14:47:44 +02:00
api
chore: move converter methods users v2 to separate converter package + add tests (#10567)
2025-08-28 09:23:04 +02:00
auth/repository
fix(login): only allow previously authenticated users on select account page
2025-08-21 09:26:04 +02:00
auth_request/repository
authz
feat: App API v2 (#10077)
2025-06-27 17:25:44 +02:00
cache
feat: federated logout for SAML IdPs (#9931)
2025-05-23 14:59:34 +02:00
command
fix: correctly handle user grants on project grant to same organization (#10568)
2025-08-29 13:17:55 +02:00
config
fix: prevent intent token reuse and add expiry
2025-05-02 13:52:28 +02:00
crypto
chore(oidc): graduate webkey to stable (#10122)
2025-06-26 19:17:45 +03:00
database
fix: correctly escape backslash in queries (#10522)
2025-08-21 09:25:28 +02:00
domain
fix: create project with the right permission (#10485)
2025-08-15 14:46:44 +02:00
eventstore
fix(projections): pass context to statement execution method (#10328)
2025-08-15 14:47:44 +02:00
execution
fix(projections): pass context to statement execution method (#10328)
2025-08-15 14:47:44 +02:00
feature
fix: remove legacy events (#10464)
2025-08-21 09:24:03 +02:00
form
refactor: rename package errors to zerrors (#7039)
2023-12-08 15:30:55 +01:00
i18n
fix(login): avoid disallowed languages with custom texts (#9094)
2025-01-06 10:46:58 +01:00
iam
refactor: cleanup unused code (#7130)
2024-01-02 14:26:31 +00:00
id
chore!: Introduce ZITADEL v3 (#9645)
2025-04-02 16:53:06 +02:00
idp
feat(saml): add SignatureMethod config for SAML IDP (#10520)
2025-08-28 09:22:59 +02:00
integration
chore(docker-integration-postgres): adding volume to internal/integration/config/docker-compose.yaml (#10079)
2025-08-28 09:22:17 +02:00
logstore
migration
feat(projections): resource counters (#9979)
2025-06-03 14:15:30 +00:00
net
perf: project quotas and usages (#6441)
2023-09-15 17:00:12 +02:00
notification
fix: remove legacy events (#10464)
2025-08-21 09:24:03 +02:00
org
refactor: cleanup unused code (#7130)
2024-01-02 14:26:31 +00:00
project
feat: App API v2 (#10077)
2025-06-27 17:25:44 +02:00
protoc
feat: exchange gRPC server implementation to connectRPC (#10145)
2025-07-04 14:06:20 +00:00
qrcode
docs(legal): Updated agreements and policies v2 (#3823)
2022-06-15 08:30:58 +02:00
query
chore: move converter methods users v2 to separate converter package + add tests (#10567)
2025-08-28 09:23:04 +02:00
queue
chore(queue): use schema config instead of search_path and application_name to configure the database schema (#10075)
2025-08-15 14:47:39 +02:00
renderer
chore: Replace deprecated io/ioutil functions with recommended alternatives (#9542)
2025-03-17 13:17:14 +00:00
repository
feat(saml): add SignatureMethod config for SAML IDP (#10520)
2025-08-28 09:22:59 +02:00
serviceping
fix(service ping): improve systemID search query to use index (#10566)
2025-08-28 09:22:16 +02:00
static
Merge commit '416a35537f89b1c3ccd3d123289cea37b3309bba' into next-rc
2025-07-29 18:15:55 +02:00
statik
telemetry
fix: drop default otel scope info from metrics (#10306)
2025-08-15 14:46:31 +02:00
test
feat: list users scim v2 endpoint (#9187)
2025-01-21 13:31:54 +01:00
user
feat: federated logout for SAML IdPs (#9931)
2025-05-23 14:59:34 +02:00
v2
feat: implement service ping (#10080)
2025-07-02 13:57:41 +02:00
view/repository
webauthn
fix(webauthn): allow to use "old" passkeys/u2f credentials on session API (#10150)
2025-07-11 08:01:06 +02:00
zerrors
feat: create user scim v2 endpoint (#9132)
2025-01-09 12:46:36 +01:00