zitadel/internal at f7309f82953713922421add61d85994d876e8999 - zitadel - private dev space

TheArchive/zitadel

mirror of https://github.com/zitadel/zitadel.git synced 2025-12-02 14:22:21 +00:00

Files

History

Livio Spring f7309f8295 fix: check for 2fa even if not enforced

# Which Problems Are Solved

Zitadel enforces MFA if required by the organization's policy, but did not ensure in all cases, if a user voluntarily set it up.

# How the Problems Are Solved

Ensure 2FA/MFA is required in any call to Zitadel if set up by user even if policy does not require.

# Additional Changes

None

# Additional Context

- requires backports

(cherry picked from commit b284f8474e)

2025-10-29 10:14:15 +01:00

..

fix: correct user self management on metadata and delete (#10666 )

2025-09-30 07:09:03 +02:00

…

admin/repository/eventsourcing

chore(removing dead code): removing LabelPolicyAssetsRemovedEventType event is never made (#10742 )

2025-09-30 07:11:26 +02:00

fix: check for 2fa even if not enforced

2025-10-29 10:14:15 +01:00

auth/repository

fix: correct user self management on metadata and delete (#10666 )

2025-09-30 07:09:03 +02:00

auth_request/repository

fix: cleanup information in logs (#10634 )

2025-09-03 16:42:47 +02:00

fix: check for 2fa even if not enforced

2025-10-29 10:14:15 +01:00

fix(cache): use key versioning (#10657 )

2025-09-16 07:19:12 +02:00

fix: respect lockout policy on password change (with old password) and add tar pit for checks

2025-10-29 10:10:36 +01:00

fix: respect lockout policy on password change (with old password) and add tar pit for checks

2025-10-29 10:10:36 +01:00

feat(api): integrates drupal7 hash verifier from passwap (#10918 )

2025-10-29 06:57:44 +01:00

feat: await initial database connection (#10869 )

2025-10-16 08:04:30 +02:00

fix: check for 2fa even if not enforced

2025-10-29 10:14:15 +01:00

fix(projections): handle reduce error by updating failed events (#10726 )

2025-09-16 07:19:17 +02:00

perf(actionsv2): execution target router (#10564 )

2025-09-01 08:16:52 +02:00

fix: remove legacy events (#10464 )

2025-08-21 09:24:03 +02:00

…

fix: use a single translator for middleware (#10633 )

2025-09-15 08:30:05 +02:00

chore(removing dead code): removing LabelPolicyAssetsRemovedEventType event is never made (#10742 )

2025-09-30 07:11:26 +02:00

…

fix(zitadel): LDAP binding error with non-ASCII characters in DN (#10578 )

2025-10-16 08:05:48 +02:00

feat(api): move instance service to v2 (#10919 )

2025-10-28 15:10:54 +01:00

…

feat(service ping): add additional resource counts (#10621 )

2025-09-15 08:30:02 +02:00

…

fix: sanitize host headers before use

2025-10-29 10:07:05 +01:00

…

…

feat: exchange gRPC server implementation to connectRPC (#10145 )

2025-07-04 14:06:20 +00:00

…

fix: check for 2fa even if not enforced

2025-10-29 10:14:15 +01:00

fix: correct river otel metrics units (#10425 )

2025-09-01 13:10:52 +02:00

fix: use a single translator for middleware (#10633 )

2025-09-15 08:30:05 +02:00

chore(removing dead code): removing LabelPolicyAssetsRemovedEventType event is never made (#10742 )

2025-09-30 07:11:26 +02:00

fix(service ping): log body size of reports (#10686 )

2025-09-16 15:20:27 +02:00

chore(i18n): Completion Chinese translation (#10109 )

2025-08-29 13:17:57 +02:00

…

fix: drop default otel scope info from metrics (#10306 )

2025-08-15 14:46:31 +02:00

…

fix(login v1): handle old sessions in logout (#10926 )

2025-10-27 08:35:20 +01:00

feat: implement service ping (#10080 )

2025-07-02 13:57:41 +02:00

view/repository

…

fix: sanitize host headers before use

2025-10-29 10:07:05 +01:00

…