mirror of
https://github.com/zitadel/zitadel.git
synced 2025-05-19 14:48:20 +00:00
bc951985ed
* feat: lock users if lockout policy is set * feat: setup * feat: lock user on password failes * feat: render error * feat: lock user on command side * feat: auth_req tests * feat: lockout policy docs * feat: remove show lockout failures from proto * fix: console lockout * feat: tests * fix: tests * unlock function * add unlock button * fix migration version * lockout policy * lint * Update internal/auth/repository/eventsourcing/eventstore/auth_request.go Co-authored-by: Silvan <silvan.reusser@gmail.com> * fix: err message * Update internal/command/setup_step4.go Co-authored-by: Silvan <silvan.reusser@gmail.com> Co-authored-by: Max Peintner <max@caos.ch> Co-authored-by: Livio Amstutz <livio.a@gmail.com> Co-authored-by: Silvan <silvan.reusser@gmail.com>
103 lines
3.3 KiB
Go
103 lines
3.3 KiB
Go
package handler
|
|
|
|
import (
|
|
"time"
|
|
|
|
"github.com/caos/zitadel/internal/command"
|
|
"github.com/caos/zitadel/internal/eventstore/v1"
|
|
"github.com/caos/zitadel/internal/static"
|
|
|
|
"github.com/caos/zitadel/internal/admin/repository/eventsourcing/view"
|
|
"github.com/caos/zitadel/internal/config/systemdefaults"
|
|
"github.com/caos/zitadel/internal/config/types"
|
|
"github.com/caos/zitadel/internal/eventstore/v1/query"
|
|
)
|
|
|
|
type Configs map[string]*Config
|
|
|
|
type Config struct {
|
|
MinimumCycleDuration types.Duration
|
|
}
|
|
|
|
type handler struct {
|
|
view *view.View
|
|
bulkLimit uint64
|
|
cycleDuration time.Duration
|
|
errorCountUntilSkip uint64
|
|
|
|
es v1.Eventstore
|
|
}
|
|
|
|
func (h *handler) Eventstore() v1.Eventstore {
|
|
return h.es
|
|
}
|
|
|
|
func Register(configs Configs, bulkLimit, errorCount uint64, view *view.View, es v1.Eventstore, defaults systemdefaults.SystemDefaults, command *command.Commands, static static.Storage, localDevMode bool) []query.Handler {
|
|
handlers := []query.Handler{
|
|
newOrg(
|
|
handler{view, bulkLimit, configs.cycleDuration("Org"), errorCount, es}),
|
|
newIAMMember(
|
|
handler{view, bulkLimit, configs.cycleDuration("IamMember"), errorCount, es}),
|
|
newIDPConfig(
|
|
handler{view, bulkLimit, configs.cycleDuration("IDPConfig"), errorCount, es}),
|
|
newLabelPolicy(
|
|
handler{view, bulkLimit, configs.cycleDuration("LabelPolicy"), errorCount, es}),
|
|
newLoginPolicy(
|
|
handler{view, bulkLimit, configs.cycleDuration("LoginPolicy"), errorCount, es}),
|
|
newIDPProvider(
|
|
handler{view, bulkLimit, configs.cycleDuration("IDPProvider"), errorCount, es},
|
|
defaults),
|
|
newUser(
|
|
handler{view, bulkLimit, configs.cycleDuration("User"), errorCount, es},
|
|
defaults),
|
|
newPasswordComplexityPolicy(
|
|
handler{view, bulkLimit, configs.cycleDuration("PasswordComplexityPolicy"), errorCount, es}),
|
|
newPasswordAgePolicy(
|
|
handler{view, bulkLimit, configs.cycleDuration("PasswordAgePolicy"), errorCount, es}),
|
|
newLockoutPolicy(
|
|
handler{view, bulkLimit, configs.cycleDuration("LockoutPolicy"), errorCount, es}),
|
|
newOrgIAMPolicy(
|
|
handler{view, bulkLimit, configs.cycleDuration("OrgIAMPolicy"), errorCount, es}),
|
|
newExternalIDP(
|
|
handler{view, bulkLimit, configs.cycleDuration("ExternalIDP"), errorCount, es},
|
|
defaults),
|
|
newMailTemplate(
|
|
handler{view, bulkLimit, configs.cycleDuration("MailTemplate"), errorCount, es}),
|
|
newMessageText(
|
|
handler{view, bulkLimit, configs.cycleDuration("MessageText"), errorCount, es}),
|
|
newFeatures(
|
|
handler{view, bulkLimit, configs.cycleDuration("Features"), errorCount, es}),
|
|
newPrivacyPolicy(
|
|
handler{view, bulkLimit, configs.cycleDuration("PrivacyPolicy"), errorCount, es}),
|
|
newCustomText(
|
|
handler{view, bulkLimit, configs.cycleDuration("CustomTexts"), errorCount, es}),
|
|
}
|
|
if static != nil {
|
|
handlers = append(handlers, newStyling(
|
|
handler{view, bulkLimit, configs.cycleDuration("Styling"), errorCount, es},
|
|
static,
|
|
localDevMode))
|
|
}
|
|
return handlers
|
|
}
|
|
|
|
func (configs Configs) cycleDuration(viewModel string) time.Duration {
|
|
c, ok := configs[viewModel]
|
|
if !ok {
|
|
return 3 * time.Minute
|
|
}
|
|
return c.MinimumCycleDuration.Duration
|
|
}
|
|
|
|
func (h *handler) MinimumCycleDuration() time.Duration {
|
|
return h.cycleDuration
|
|
}
|
|
|
|
func (h *handler) LockDuration() time.Duration {
|
|
return h.cycleDuration / 3
|
|
}
|
|
|
|
func (h *handler) QueryLimit() uint64 {
|
|
return h.bulkLimit
|
|
}
|