Tim Möhlmann
6907b52b32
chore(deps): update oidc ( #6002 )
2023-06-09 15:18:14 +00:00
Tim Möhlmann
a301c40f9f
feat: implement register Passkey user API v2 ( #5873 )
...
* command/crypto: DRY the code
- reuse the the algorithm switch to create a secret generator
- add a verifyCryptoCode function
* command: crypto code tests
* migrate webauthn package
* finish integration tests with webauthn mock client
2023-05-24 10:22:00 +00:00
Tim Möhlmann
6839a5c203
chore: update oidc ( #5918 )
2023-05-24 08:11:56 +00:00
Tim Möhlmann
5819924275
feat: device authorization RFC 8628 ( #5646 )
...
* device auth: implement the write events
* add grant type device code
* fix(init): check if default value implements stringer
---------
Co-authored-by: adlerhurst <silvan.reusser@gmail.com>
2023-04-19 08:46:02 +00:00
Stefan Benz
440ba9f5ef
fix: update saml to v0.0.11 ( #5628 )
...
* fix: update saml to v0.0.11
* chore: remove unused sum
---------
Co-authored-by: adlerhurst <silvan.reusser@gmail.com>
2023-04-11 07:39:12 +00:00
Silvan
698f46fe6a
chore: update dependencies ( #5401 )
...
* chore(backend): update dependencies
* chore(pipeline): update golangci-lint
2023-04-06 06:29:55 +00:00
Livio Spring
991a56341b
fix: role claims mapping ( #5601 )
...
* fix: role claims mapping
* update oidc pkg
* update oidc pkg
2023-04-04 12:36:39 +00:00
Tim Möhlmann
25c3c17986
chore: upgrade to oidc v2 release ( #5437 )
...
* chore: upgrade to oidc v2 release
* fix tests
* fix build errors after rebase
* pin oidc v2.1.0
* pin oidc v2.1.1 (include bugfix)
* pin oidc v2.1.2 (include bugfix)
* pin oidc v2.2.1 (bugfix)
include fix zitadel/oidc#349
* fix: refresh token handling
* simplify cognitive complexity
* fix: handle error
---------
Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-03-28 11:28:56 +00:00
Stefan Benz
41ff0bbc63
feat: ldap provider login ( #5448 )
...
Add the logic to configure and use LDAP provider as an external IDP with a dedicated login GUI.
2023-03-24 15:18:56 +00:00
Silvan
20e4f1ce57
feat(actions): add fields to complement token flow ( #5336 )
...
* deprecated `ctx.v1.userinfo`-field in "pre userinfo creation" trigger in favour of `ctx.v1.claims`. The trigger now behaves the same as "pre access token creation"
* added `ctx.v1.claims` to "complement tokens" flow
* added `ctx.v1.grants` to "complement tokens" flow
* document `ctx.v1.getUser()` in "complement tokens" flow
* feat(actions): add getUser() and grant
* map user grants
* map claims
* feat(actions): claims in complement token ctx
* docs(actions): add new fields of complement token
* docs(actions): additions to complement token
* docs(actions): correct field names
2023-03-08 15:26:28 +01:00
Silvan
e38abdcdf3
perf: query data AS OF SYSTEM TIME ( #5231 )
...
Queries the data in the storage layser at the timestamp when the call hit the API layer
2023-02-27 22:36:43 +01:00
Livio Spring
80003939ad
feat(api): add oidc and jwt provider template ( #5290 )
...
Adds possibility to manage OIDC and JWT template based providers
2023-02-27 16:32:18 +01:00
Florian Forster
aa9518ac02
docs: improve api docs ( #5158 )
...
* integrate docs into nav
* generator for local use, production needs to be set by env
* fix typo
* local dev
* docs: annotate the first user endpoints in the management api
* docs: annotate the first user endpoints in the management api
* docs: annotate the first user endpoints in the management api
* docs: annotate the first user endpoints in the management api
* docs: add header params
* rewrite docs links and improve ci
* tweak build command
* fix path
* Update docs/docusaurus.config.js
Co-authored-by: Max Peintner <max@caos.ch>
* fix docker
* docs: add header params
* docs: Add tags to management api. add some descriptions
* docs: more descriptions
* docs: more descriptions
* docs: required fields
* docs: example request
* docs: example request
* docs: example request
* docs: example request
* docs: example request
* docs: user metadata requests
* docs: user requests
* docs: user requests
* docs: user requests
* docs: user requests
* docs: change nav add first methods to authentication api
* docs: auth api
* docs: auth api
* docs: auth api
* docs: auth api
* docs: auth api
* docs: api sidenav
* chore: use buf without docker
* fix deploy
* fix ci
* fix vercel
* docs: admin
* docs: admin api docs
* docs: admin api docs
* docs: admin api docs
* docs: admin api docs
* docs: security
* docs: security
* docs: admin api
* docs: change to env vars
* docs: auth api
* docs: remove assets, deprecated requests, menu
* reworked page with PaloAltoNetworks/docusaurus-openapi-docs
* works with the resolutions
* fix broken build by adding assets again
* add tags to menu
* chore: improve build speed
* no-minify
* test ssr
* ssr 20
* use lazy
* increase mem
* use default mem
* change names
* docs: remove assets, deprecated requests, menu
* docs: management api
* docs: management api
* docs: management api
* docs: sidebar
* not the best word smithing but it is ;-)
* more typos
* merge main
* fix some error
* trial
* update grpc gateway
* trigger vercel build
* docs: deprecated requests
* docs: deprecated requests
---------
Co-authored-by: Fabienne <fabienne.gerschwiler@gmail.com>
Co-authored-by: Max Peintner <max@caos.ch>
2023-02-23 18:08:06 +07:00
Stefan Benz
50728129ee
fix: update saml dependency to v0.0.10 ( #5268 )
...
* fix: update saml dependency to v0.0.10
* fix: update saml dependency to v0.0.10
2023-02-22 14:24:27 +00:00
Stefan Benz
586495a0be
feat: add management for ldap idp template ( #5220 )
...
Add management functionality for LDAP idps with templates and the basic functionality for the LDAP provider, which can then be used with a separate login page in the future.
---------
Co-authored-by: Livio Spring <livio.a@gmail.com>
2023-02-15 08:14:59 +00:00
Stefan Benz
3616b6b028
feat(api): allow specifying access_token type (opaque/JWT) for service users ( #5150 )
...
Add functionality to configure the access token type on the service accounts to provide the oidc library with the necessary information to create the right type of access token.
2023-02-08 08:06:34 +00:00
Stefan Benz
e2fdd3f077
feat: support client_credentials for service users ( #5134 )
...
Request an access_token for service users with OAuth 2.0 Client Credentials Grant. Added functionality to generate and remove a secret on service users.
2023-01-31 19:52:47 +00:00
Livio Spring
598a4d2d4b
feat: add basic structure of idp templates ( #5053 )
...
add basic structure and implement first providers for IDP templates to be able to manage and use them in the future
2023-01-23 08:11:40 +01:00
Livio Spring
0a30e39b46
fix(CORS): add X-Requested-With to Access-Control-Request-Headers ( #5009 )
...
allows clients with `X-Requested-With` header to succeed with their CORS request
2023-01-09 13:37:10 +01:00
Silvan
384cc34303
chore: cockroach version ( #4775 )
...
* chore: cockroach version for tests
2022-12-02 09:42:27 +00:00
Stefan Benz
24ae69b726
fix: update saml dependency v0.0.8=>v0.0.9 ( #4701 )
2022-11-15 06:30:36 +00:00
Stefan Benz
4ba45280fe
fix(saml): update saml dependency ( #4606 )
2022-10-25 14:06:53 +02:00
Silvan
43fb3fd1a6
feat(actions): add token customization flow and extend functionally with modules ( #4337 )
...
* fix: potential memory leak
* feat(actions): possibility to parse json
feat(actions): possibility to perform http calls
* add query call
* feat(api): list flow and trigger types
fix(api): switch flow and trigger types to dynamic objects
* fix(translations): add action translations
* use `domain.FlowType`
* localizers
* localization
* trigger types
* options on `query.Action`
* add functions for actions
* feat: management api: add list flow and trigger (#4352 )
* console changes
* cleanup
* fix: wrong localization
Co-authored-by: Max Peintner <max@caos.ch>
* id token works
* check if claims not nil
* feat(actions): metadata api
* refactor(actions): modules
* fix: allow prerelease
* fix: test
* feat(actions): deny list for http hosts
* feat(actions): deny list for http hosts
* refactor: actions
* fix: different error ids
* fix: rename statusCode to status
* Actions objects as options (#4418 )
* fix: rename statusCode to status
* fix(actions): objects as options
* fix(actions): objects as options
* fix(actions): set fields
* add http client to old actions
* fix(actions): add log module
* fix(actions): add user to context where possible
* fix(actions): add user to ctx in external authorization/pre creation
* fix(actions): query correct flow in claims
* test: actions
* fix(id-generator): panic if no machine id
* tests
* maybe this?
* fix linting
* refactor: improve code
* fix: metadata and usergrant usage in actions
* fix: appendUserGrant
* fix: allowedToFail and timeout in action execution
* fix: allowed to fail in token complement flow
* docs: add action log claim
* Update defaults.yaml
* fix log claim
* remove prerelease build
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Livio Spring <livio.a@gmail.com>
2022-10-06 14:23:59 +02:00
Stefan Benz
7a5f7f82cf
feat(saml): implementation of saml for ZITADEL v2 ( #3618 )
2022-09-12 18:18:08 +02:00
Silvan
77b4fc5487
feat(database): support for postgres ( #3998 )
...
* beginning with postgres statements
* try pgx
* use pgx
* database
* init works for postgres
* arrays working
* init for cockroach
* init
* start tests
* tests
* TESTS
* ch
* ch
* chore: use go 1.18
* read stmts
* fix typo
* tests
* connection string
* add missing error handler
* cleanup
* start all apis
* go mod tidy
* old update
* switch back to minute
* on conflict
* replace string slice with `database.StringArray` in db models
* fix tests and start
* update go version in dockerfile
* setup go
* clean up
* remove notification migration
* update
* docs: add deploy guide for postgres
* fix: revert sonyflake
* use `database.StringArray` for daos
* use `database.StringArray` every where
* new tables
* index naming,
metadata primary key,
project grant role key type
* docs(postgres): change to beta
* chore: correct compose
* fix(defaults): add empty postgres config
* refactor: remove unused code
* docs: add postgres to self hosted
* fix broken link
* so?
* change title
* add mdx to link
* fix stmt
* update goreleaser in test-code
* docs: improve postgres example
* update more projections
* fix: add beta log for postgres
* revert index name change
* prerelease
* fix: add sequence to v1 "reduce paniced"
* log if nil
* add logging
* fix: log output
* fix(import): check if org exists and user
* refactor: imports
* fix(user): ignore malformed events
* refactor: method naming
* fix: test
* refactor: correct errors.Is call
* ci: don't build dev binaries on main
* fix(go releaser): update version to 1.11.0
* fix(user): projection should not break
* fix(user): handle error properly
* docs: correct config example
* Update .releaserc.js
* Update .releaserc.js
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
2022-08-31 07:52:43 +00:00
Livio Spring
f610d48569
feat: prepare for multiple database types ( #4068 )
...
BREAKING CHANGE: the database and admin user config has changed.
2022-07-28 16:25:42 +02:00
Stefan Benz
bc9a85daf3
feat: V2 alpha import and export of organizations ( #3798 )
...
* feat(import): add functionality to import data into an instance
* feat(import): move import to admin api and additional checks for nil pointer
* fix(export): export implementation with filtered members and grants
* fix: export and import implementation
* fix: add possibility to export hashed passwords with the user
* fix(import): import with structure of v1 and v2
* docs: add v1 proto
* fix(import): check im imported user is already existing
* fix(import): add otp import function
* fix(import): add external idps, domains, custom text and messages
* fix(import): correct usage of default values from login policy
* fix(export): fix renaming of add project function
* fix(import): move checks for unit tests
* expect filter
* fix(import): move checks for unit tests
* fix(import): move checks for unit tests
* fix(import): produce prerelease from branch
* fix(import): correctly use provided user id for machine user imports
* fix(import): corrected otp import and added guide for export and import
* fix: import verified and primary domains
* fix(import): add reading from gcs, s3 and localfile with tracing
* fix(import): gcs and s3, file size correction and error logging
* Delete docker-compose.yml
* fix(import): progress logging and count of resources
* fix(import): progress logging and count of resources
* log subscription
* fix(import): incorporate review
* fix(import): incorporate review
* docs: add suggestion for import
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
* fix(import): add verification otp event and handling of deleted but existing users
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: Fabienne <fabienne.gerschwiler@gmail.com>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
2022-07-28 13:42:35 +00:00
Livio Spring
c15577c1f9
fix: use default redirect uri when not passed on end_session endpoint ( #4054 )
...
* fix: use default redirect uri when not passed on end_session endpoint
* instance state
2022-07-27 09:49:16 +02:00
Livio Spring
ccde49b323
feat: extend claims of introspection response ( #4018 )
...
* feat: extend claims of introspection response
* update oidc lib
2022-07-25 09:38:15 +02:00
Livio Spring
aed7010508
fix: scheduling ( #3978 )
...
* fix: improve scheduling
* build pre-release
* fix: locker
* fix: user handler and print stack in case of panic in reducer
* chore: remove sentry
* fix: improve handler projection and implement tests
* more tests
* fix: race condition in tests
* Update internal/eventstore/repository/sql/query.go
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* fix: implemented suggested changes
* fix: lock statement
Co-authored-by: Silvan <silvan.reusser@gmail.com>
2022-07-22 10:08:39 +00:00
Livio Spring
f4e91f0b5b
fix: update oidc pkg (state and redirect_uri handling) ( #3853 )
2022-06-22 07:31:36 +00:00
Alexei-Barnes
09b021b257
feat: Configurable Unique Machine Identification ( #3626 )
...
* feat: Configurable Unique Machine Identification
This change fixes Segfault on AWS App Runner with v2 #3625
The change introduces two new dependencies:
* github.com/drone/envsubst for supporting AWS ECS, which has its metadata endpoint described by an environment variable
* github.com/jarcoal/jpath so that only relevant data from a metadata response is used to identify the machine.
The change ads new configuration (see `defaults.yaml`):
* `Machine.Identification` enables configuration of how machines are uniquely identified - I'm not sure about the top level category `Machine`, as I don't have anything else to add to it. Happy to hear suggestions for better naming or structure here.
* `Machine.Identifiation.PrivateId` turns on or off the existing private IP based identification. Default is on.
* `Machine.Identification.Hostname` turns on or off using the OS hostname to identify the machine. Great for most cloud environments, where this tends to be set to something that identifies the machine uniquely. Enabled by default.
* `Machine.Identification.Webhook` configures identification based on the response to an HTTP GET request. Request headers can be configured, a JSONPath can be set for processing the response (no JSON parsing is done if this is not set), and the URL is allowed to contain environment variables in the format `"${var}"`.
The new flow for getting a unique machine id is:
1. PrivateIP (if enabled)
2. Hostname (if enabled)
3. Webhook (if enabled, to configured URL)
4. Give up and error out.
It's important that init configures machine identity first. Otherwise we could try to get an ID before configuring it. To prevent this from causing difficult to debug issues, where for example the default configuration was used, I've ensured that
the application will generate an error if the module hasn't been configured and you try to get an ID.
Misc changes:
* Spelling and gramatical corrections to `init.go::New()` long description.
* Spelling corrections to `verify_zitadel.go::newZitadel()`.
* Updated `production.md` and `development.md` based on the new build process. I think the run instructions are also out of date, but I'll leave that for someone else.
* `id.SonyFlakeGenerator` is now a function, which sets `id.sonyFlakeGenerator`, this allows us to defer initialization until configuration has been read.
* Update internal/id/config.go
Co-authored-by: Alexei-Barnes <82444470+Alexei-Barnes@users.noreply.github.com>
* Fix authored by @livio-a for tests
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-05-24 16:57:57 +02:00
Florian Forster
fa9f581d56
chore(v2): move to new org ( #3499 )
...
* chore: move to new org
* logging
* fix: org rename caos -> zitadel
Co-authored-by: adlerhurst <silvan.reusser@gmail.com>
2022-04-26 23:01:45 +00:00
Livio Amstutz
75ec73ca4a
feat: dynamic issuer ( #3481 )
...
* feat: dynamic issuer
* dynamic domain handling
* key rotation durations
* feat: dynamic issuer
* make webauthn displayname dynamic
2022-04-25 10:01:17 +02:00
Livio Amstutz
b949b8fc65
chore(deps): update oidc to 1.2.0 ( #3363 )
...
* chore(deps): update oidc to 1.2.0
* add comment
2022-04-05 07:22:00 +00:00
Livio Amstutz
504fe5b761
cherry pick changes from main ( #3371 )
...
* feat: remove exif data from uploaded images (#3221 )
* feat: remove exif tags from images
* feat: remove exif data
* feat: remove exif
* fix: add preferredLoginName to user grant response (#3271 )
* chore: log webauthn parse error (#3272 )
* log error
* log error
* feat: Help link in privacy policy
* fix: convert correct detail data on organization (#3279 )
* fix: handle empty editor users
* fix: add some missing translations (#3291 )
* fix: org policy translations
* fix: metadata event types translation
* fix: translations
* fix: filter resource owner correctly on project grant members (#3281 )
* fix: filter resource owner correctly on project grant members
* fix: filter resource owner correctly on project grant members
* fix: add orgIDs to zitadel permissions request
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
* fix: get IAM memberships correctly in MyZitadelPermissions (#3309 )
* fix: correct login names on auth and notification users (#3349 )
* fix: correct login names on auth and notification users
* fix: migration
* fix: handle resource owner in action flows (#3361 )
* fix merge
* fix: exchange exif library (#3366 )
* fix: exchange exif library
* ignore tiffs
* requested fixes
* feat: Help link in privacy policy
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
2022-03-24 14:00:24 +01:00
Fabi
e3528ff0b2
feat: Config to eventstore ( #3158 )
...
* feat: add default language to eventstore
* feat: add secret generator configs events
* feat: tests
* feat: secret generators in eventstore
* feat: secret generators in eventstore
* feat: smtp config in eventstore
* feat: smtp config in eventstore
* feat: smtp config in eventstore
* feat: smtp config in eventstore
* feat: smtp config in eventstore
* fix: migrations
* fix migration version
* fix test
* feat: change secret generator type to enum
* feat: change smtp attribute names
* feat: change smtp attribute names
* feat: remove engryption algorithms from command side
* feat: remove engryption algorithms from command side
* feat: smtp config
* feat: smtp config
* format smtp from header
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-02-16 15:49:17 +00:00
Livio Amstutz
389eb4a27a
feat: run on a single port ( #3163 )
...
* start v2
* start
* run
* some cleanup
* remove v2 pkg again
* simplify
* webauthn
* remove unused config
* fix login path in Dockerfile
* fix asset_generator.go
* health handler
* fix grpc web
* refactor
* merge
* build new main.go
* run new main.go
* update logging pkg
* fix error msg
* update logging
* cleanup
* cleanup
* go mod tidy
* change localDevMode
* fix customEndpoints
* update logging
* comments
* change local flag to external configs
* fix location generated go code
* fix
Co-authored-by: fforootd <florian@caos.ch>
2022-02-14 17:22:30 +01:00
Livio Amstutz
2d208dd8ba
fix: remove operator ( #3195 )
2022-02-11 15:00:14 +01:00
Silvan
e8ab237ada
fix(init): prepare database ( #3191 )
...
* fix(init): prepare database
* fix(defaults): cockroach local defaults
2022-02-11 11:02:47 +01:00
Silvan
9d471d0d30
feat(cli): init cli ( #3186 )
...
* feat(cli): initilize cli
* fix(config): allow multiple files
* refactor(cli): constructor naming
* go mod tidy
* refactor: move code out of v2 package
* chore: logging v0.1
* chore: remove old gitignore
* fix func
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-02-09 15:01:19 +01:00
Livio Amstutz
f1b02254b2
fix: update OIDC lib to handle keys without use ( #3123 )
2022-01-28 14:03:22 +00:00
Livio Amstutz
9ab566fdeb
fix(query): keys ( #2755 )
...
* fix: add keys to projections
* change to multiple tables
* query keys
* query keys
* fix race condition
* fix timer reset
* begin tests
* tests
* remove migration
* only send to keyChannel if not nil
2022-01-12 13:22:04 +01:00
Elio Bischof
aa2a1848da
feat: add stdout and filesystem notification channels ( #2925 )
...
* feat: add filesystem and stdout notification channels
* configure through env vars
* compile
* feat: add compact option for debug notification channels
* fix channel mock generation
* avoid sensitive information in error message
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* add review improvements
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2022-01-06 09:00:24 +01:00
dependabot[bot]
175c6fd5f7
chore(deps): bump github.com/minio/minio-go/v7 from 7.0.16 to 7.0.20 ( #2919 )
...
Bumps [github.com/minio/minio-go/v7](https://github.com/minio/minio-go ) from 7.0.16 to 7.0.20.
- [Release notes](https://github.com/minio/minio-go/releases )
- [Commits](https://github.com/minio/minio-go/compare/v7.0.16...v7.0.20 )
---
updated-dependencies:
- dependency-name: github.com/minio/minio-go/v7
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-01-05 16:18:49 +01:00
Livio Amstutz
8b0c3e63d6
chore(deps): update github.com/duo-labs/webauthn ( #2861 )
2021-12-17 13:36:24 +01:00
Livio Amstutz
9967a3ee5e
chore(deps): bump dependencies ( #2811 )
2021-12-08 16:25:28 +01:00
Silvan
61f2883719
fix(operator): update cockroach to 21.2.1 ( #2766 )
2021-12-01 15:09:35 +00:00
dependabot[bot]
144e6e4b57
chore(deps): bump github.com/minio/minio-go/v7 from 7.0.15 to 7.0.16 ( #2749 )
...
* chore(deps): bump github.com/minio/minio-go/v7 from 7.0.15 to 7.0.16
Bumps [github.com/minio/minio-go/v7](https://github.com/minio/minio-go ) from 7.0.15 to 7.0.16.
- [Release notes](https://github.com/minio/minio-go/releases )
- [Commits](https://github.com/minio/minio-go/compare/v7.0.15...v7.0.16 )
---
updated-dependencies:
- dependency-name: github.com/minio/minio-go/v7
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
* add genproto again
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-11-29 07:46:27 +01:00
Silvan
a194354f47
chore: update go modules ( #2729 )
2021-11-22 19:58:24 +01:00
Silvan
7b38158ca5
chore(backend): update dependencies ( #2701 )
2021-11-17 17:46:34 +00:00
Silvan
66093efdaa
chore(modules): update dependencies ( #2691 )
...
* chore(queries): test suite for prepare stmt funcs
* test(queries): prepare project funcs
* refactor: add comments
* test: simlify expected sql, added possibility to add args to expected queries
* test(queries): prepare funcs in org
* chore(backend): correct modules
* test(queries): org domain prepare funcs
* test: correct name
* refactor: file name
* refactor: add table to login policy columns
* chore(prepare_test): only add row to result if columns
* test(queries): login policy prepare funcs
* chore: add comments for configs
* test(queries): prepare idp funcs
* fix(queries): add table to password complexity policy cols
* test(queries): password complexity policy prepare funcs
* fix(queries): add table to password age policy cols
* test(queries): password age policy prepare func
* fix(queries): set cols on lockout policy
* test(queries): lockout policy prepare funs
* fix(queries): set table on privacy policy cols
* test(queries): privacy policy prepare funcs
* fix(queries): set table on org iam policy cols
* fix(queries): correct table in org iam policy cols
* test(queries): org iam policy prepare funcs
* test(queries): prepare project grant funcs
* refactor(queries): prepareProjectRoleQuery as func
* test(queries): prepare project role funcs
* test(queries): project grant check for nulls in joins
* fix(queries): allow null values in project grant
* refactor(queries): make toQuery private
* test(queries): action prepare funcs
* refactor: rename prepareFlowQuery to prepareFlowsQuery
* test: generic count only if count in cols
* refactor: remove param in prepareFlowQuery
* fix(queries): correct left joins in action flows
* test(queries): action flow prepare funcs
* chore(modules): update modules
2021-11-16 13:39:56 +00:00
Silvan
f927f4af02
test(queries): suite for prepare stmt funcs ( #2644 )
...
* chore(queries): test suite for prepare stmt funcs
* test(queries): prepare project funcs
* refactor: add comments
* test: simlify expected sql, added possibility to add args to expected queries
2021-11-15 10:04:46 +01:00
dependabot[bot]
df25e9de5e
chore(deps): bump google.golang.org/api from 0.59.0 to 0.60.0 ( #2636 )
...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.59.0 to 0.60.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.59.0...v0.60.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-11-10 08:54:57 +00:00
dependabot[bot]
8d5f7c7c17
chore(deps): bump github.com/lib/pq from 1.10.3 to 1.10.4 ( #2652 )
...
Bumps [github.com/lib/pq](https://github.com/lib/pq ) from 1.10.3 to 1.10.4.
- [Release notes](https://github.com/lib/pq/releases )
- [Commits](https://github.com/lib/pq/compare/v1.10.3...v1.10.4 )
---
updated-dependencies:
- dependency-name: github.com/lib/pq
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-11-10 09:23:20 +01:00
dependabot[bot]
7255f791dd
chore(deps): bump google.golang.org/grpc from 1.41.0 to 1.42.0 ( #2639 )
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.41.0 to 1.42.0.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.41.0...v1.42.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-11-10 09:21:43 +01:00
dependabot[bot]
d774770379
chore(deps): bump go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp ( #2637 )
...
Bumps [go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp](https://github.com/open-telemetry/opentelemetry-go-contrib ) from 0.25.0 to 0.26.1.
- [Release notes](https://github.com/open-telemetry/opentelemetry-go-contrib/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go-contrib/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go-contrib/compare/zpages/v0.25.0...zpages/v0.26.1 )
---
updated-dependencies:
- dependency-name: go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-11-10 08:32:48 +01:00
dependabot[bot]
294d9d5496
chore(deps): bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc ( #2634 )
...
Bumps [go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc](https://github.com/open-telemetry/opentelemetry-go-contrib ) from 0.25.0 to 0.26.1.
- [Release notes](https://github.com/open-telemetry/opentelemetry-go-contrib/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go-contrib/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go-contrib/compare/zpages/v0.25.0...zpages/v0.26.1 )
---
updated-dependencies:
- dependency-name: go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-11-10 07:56:23 +01:00
dependabot[bot]
9b38061ed4
chore(deps): bump github.com/manifoldco/promptui from 0.8.0 to 0.9.0 ( #2632 )
...
Bumps [github.com/manifoldco/promptui](https://github.com/manifoldco/promptui ) from 0.8.0 to 0.9.0.
- [Release notes](https://github.com/manifoldco/promptui/releases )
- [Changelog](https://github.com/manifoldco/promptui/blob/master/CHANGELOG.md )
- [Commits](https://github.com/manifoldco/promptui/compare/v0.8.0...v0.9.0 )
---
updated-dependencies:
- dependency-name: github.com/manifoldco/promptui
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-11-10 07:56:01 +01:00
Livio Amstutz
fc6154cffc
feat: token revocation and OP certification ( #2594 )
...
* fix: try using only user session if no user is set (id_token_hint) on prompt none
* fix caos errors As implementation
* implement request mode
* return explicit error on invalid refresh token use
* begin token revocation
* token revocation
* tests
* tests
* cleanup
* set op config
* add revocation endpoint to config
* add revocation endpoint to config
* migration version
* error handling in token revocation
* migration version
* update oidc lib to 1.0.0
2021-11-03 08:35:24 +01:00
Silvan
d689b2192a
fix: Allow empty email ( #2593 )
...
* fix(management): allow emty email in resend initialization email
* fix: update dependencies
* download correct files
2021-10-28 15:35:24 +00:00
Livio Amstutz
f1afdef7fb
fix: remove vulnerable dependencies ( #2577 )
...
* fix: remove vulnerable dependencies
* fix: replace vulnerable dependencies (gin-gonic)
* fix: replace vulnerable dependencies (gin-gonic)
2021-10-27 14:55:03 +02:00
Stefan Benz
476cb6137b
fix(zitadelctl): add repokey parameter to configure command ( #2120 )
...
* fix(zitadelctl): add repokey parameter to configure command
* fix(zitadelctl): correct orbos import for failed go vet
* fix: update orbos dependency to merged master
* fix: correct use of the repo key
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
* chore: update orbos
* chore: update orbos
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
2021-10-25 18:23:35 +02:00
Silvan
bdf63800f7
update modules ( #2534 )
2021-10-21 20:41:37 +02:00
Silvan
d7c681e4eb
fix(query): pw complexity policy ( #2417 )
...
* job queue
* wg improvements
* start handler
* statement
* statements
* imporve handler
* improve statement
* statement in seperate file
* move handlers
* move query/old to query
* handler
* read models
* bulk works
* cleanup
* contrib
* rename readmodel to projection
* rename read_models schema to projections
* rename read_models schema to projections
* search query as func,
bulk iterates as long as new events
* add event sequence less query
* update checks for events between current sequence and sequence of first statement if it has previous sequence 0
* cleanup crdb projection
* refactor projection handler
* start with testing
* tests for handler
* remove todo
* refactor statement: remove table name,
add tests
* improve projection handler shutdown,
no savepoint if noop stmt,
tests for stmt handler
* tests
* start failed events
* seperate branch for contrib
* move statement constructors to crdb pkg
* correct import
* Subscribe for eventtypes (#1800 )
* fix: is default (#1737 )
* fix: use email as username on global org (#1738 )
* fix: use email as username on global org
* Update user_human.go
* Update register_handler.go
* chore(deps): update docusaurus (#1739 )
* chore: remove PAT and use GH Token (#1716 )
* chore: remove PAT and use GH Token
* fix env
* fix env
* fix env
* md lint
* trigger ci
* change user
* fix GH bug
* replace login part
* chore: add GH Token to sem rel (#1746 )
* chore: add GH Token to sem rel
* try branch
* add GH Token
* remove test branch again
* docs: changes acme to acme-caos (#1744 )
* changes acme to acme-caos
* Apply suggestions from code review
Co-authored-by: Florian Forster <florian@caos.ch>
Co-authored-by: Maximilian Panne <maximilian.panne@gmail.com>
Co-authored-by: Florian Forster <florian@caos.ch>
* feat: add additional origins on applications (#1691 )
* feat: add additional origins on applications
* app additional redirects
* chore(deps-dev): bump @angular/cli from 11.2.8 to 11.2.11 in /console (#1706 )
* fix: show org with regex (#1688 )
* fix: flag mapping (#1699 )
* chore(deps-dev): bump @angular/cli from 11.2.8 to 11.2.11 in /console
Bumps [@angular/cli](https://github.com/angular/angular-cli ) from 11.2.8 to 11.2.11.
- [Release notes](https://github.com/angular/angular-cli/releases )
- [Commits](https://github.com/angular/angular-cli/compare/v11.2.8...v11.2.11 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps-dev): bump stylelint from 13.10.0 to 13.13.1 in /console (#1703 )
* fix: show org with regex (#1688 )
* fix: flag mapping (#1699 )
* chore(deps-dev): bump stylelint from 13.10.0 to 13.13.1 in /console
Bumps [stylelint](https://github.com/stylelint/stylelint ) from 13.10.0 to 13.13.1.
- [Release notes](https://github.com/stylelint/stylelint/releases )
- [Changelog](https://github.com/stylelint/stylelint/blob/master/CHANGELOG.md )
- [Commits](https://github.com/stylelint/stylelint/compare/13.10.0...13.13.1 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps-dev): bump @types/node from 14.14.37 to 15.0.1 in /console (#1702 )
* fix: show org with regex (#1688 )
* fix: flag mapping (#1699 )
* chore(deps-dev): bump @types/node from 14.14.37 to 15.0.1 in /console
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 14.14.37 to 15.0.1.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps): bump ts-protoc-gen from 0.14.0 to 0.15.0 in /console (#1701 )
* fix: show org with regex (#1688 )
* fix: flag mapping (#1699 )
* chore(deps): bump ts-protoc-gen from 0.14.0 to 0.15.0 in /console
Bumps [ts-protoc-gen](https://github.com/improbable-eng/ts-protoc-gen ) from 0.14.0 to 0.15.0.
- [Release notes](https://github.com/improbable-eng/ts-protoc-gen/releases )
- [Changelog](https://github.com/improbable-eng/ts-protoc-gen/blob/master/CHANGELOG.md )
- [Commits](https://github.com/improbable-eng/ts-protoc-gen/compare/0.14.0...0.15.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps-dev): bump @types/jasmine from 3.6.9 to 3.6.10 in /console (#1682 )
Bumps [@types/jasmine](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jasmine ) from 3.6.9 to 3.6.10.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jasmine )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps): bump @types/google-protobuf in /console (#1681 )
Bumps [@types/google-protobuf](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/google-protobuf ) from 3.7.4 to 3.15.2.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/google-protobuf )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps): bump grpc from 1.24.5 to 1.24.7 in /console (#1666 )
Bumps [grpc](https://github.com/grpc/grpc-node ) from 1.24.5 to 1.24.7.
- [Release notes](https://github.com/grpc/grpc-node/releases )
- [Commits](https://github.com/grpc/grpc-node/compare/grpc@1.24.5...grpc@1.24.7 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* lock
* chore(deps-dev): bump @angular/language-service from 11.2.9 to 11.2.12 in /console (#1704 )
* fix: show org with regex (#1688 )
* fix: flag mapping (#1699 )
* chore(deps-dev): bump @angular/language-service in /console
Bumps [@angular/language-service](https://github.com/angular/angular/tree/HEAD/packages/language-service ) from 11.2.9 to 11.2.12.
- [Release notes](https://github.com/angular/angular/releases )
- [Changelog](https://github.com/angular/angular/blob/master/CHANGELOG.md )
- [Commits](https://github.com/angular/angular/commits/11.2.12/packages/language-service )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* package lock
* downgrade grpc
* downgrade protobuf types
* revert npm packs 🥸
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Silvan <silvan.reusser@gmail.com>
* docs: update run and start section texts (#1745 )
* update run and start section texts
* adds showcase
Co-authored-by: Maximilian Panne <maximilian.panne@gmail.com>
* fix: additional origin list (#1753 )
* fix: handle api configs in authz handler (#1755 )
* fix(console): add model for api keys, fix toast, binding (#1757 )
* fix: add model for api keys, fix toast, binding
* show api clientid
* fix: missing patchvalue (#1758 )
* feat: refresh token (#1728 )
* begin refresh tokens
* refresh tokens
* list and revoke refresh tokens
* handle remove
* tests for refresh tokens
* uniqueness and default expiration
* rename oidc token methods
* cleanup
* migration version
* Update internal/static/i18n/en.yaml
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
* fixes
* feat: update oidc pkg for refresh tokens
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
* fix: correct json name of clientId in key.json (#1760 )
* fix: migration version (#1767 )
* start subscription
* eventtypes
* fix(login): links (#1778 )
* fix(login): href for help
* fix(login): correct link to tos
* fix: access tokens for service users and refresh token infos (#1779 )
* fix: access token for service user
* handle info from refresh request
* uniqueness
* postpone access token uniqueness change
* chore(coc): recommend code of conduct (#1782 )
* subscribe for events
* feat(console): refresh toggle out of granttype context (#1785 )
* refresh toggle
* disable if not code flow, lint
* lint
* fix: change oidc config order
* accept refresh option within flow
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: refresh token activation (#1795 )
* fix: oidc grant type check
* docs: add offline_access scope
* docs: update refresh token status in supported grant types
* fix: update oidc pkg
* fix: check refresh token grant type (#1796 )
* configuration structs
* org admins
* failed events
* fixes
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: Florian Forster <florian@caos.ch>
Co-authored-by: mffap <mpa@caos.ch>
Co-authored-by: Maximilian Panne <maximilian.panne@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
* remove comment
* aggregate reducer
* remove eventtypes
* add protoc-get-validate to mod
* fix transaltion
* upsert
* add gender on org admins,
allow to retry failed stmts after configurable time
* remove if
* sub queries
* fix: tests
* add builder to tests
* new search query
* rename searchquerybuilder to builder
* remove comment from code
* test with multiple queries
* add filters test
* current sequences
* make org and org_admins work again
* add aggregate type to current sequence
* fix(contibute): listing
* add validate module
* fix: search queries
* feat(eventstore): previous aggregate root sequence (#1810 )
* feat(eventstore): previous aggregate root sequence
* fix tests
* fix: eventstore v1 test
* add col to all mocked rows
* next try
* fix mig
* rename aggregate root to aggregate type
* update comment
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* small refactorings
* allow update multiple current sequences
* unique log id
* fix migrations
* rename org admin to org owner
* improve error handling and logging
* fix(migration): optimize prev agg root seq
* fix: projection handler test
* fix: sub queries
* small fixes
* additional event types
* correct org owner projection
* fix primary key
* feat(eventstore): jobs for projections (#2026 )
* fix: template names in login (#1974 )
* fix: template names in login
* fix: error.html
* fix: check for features on mgmt only (#1976 )
* fix: add sentry in ui, http and projection handlers (#1977 )
* fix: add sentry in ui, http and projection handlers
* fix test
* fix(eventstore): sub queries (#1805 )
* sub queries
* fix: tests
* add builder to tests
* new search query
* rename searchquerybuilder to builder
* remove comment from code
* test with multiple queries
* add filters test
* fix(contibute): listing
* add validate module
* fix: search queries
* remove unused event type in query
* ignore query if error in marshal
* go mod tidy
* update privacy policy query
* update queries
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* feat: Extend oidc idp with oauth endpoints (#1980 )
* feat: add oauth attributes to oidc idp configuration
* feat: return idpconfig id on create idp
* feat: tests
* feat: descriptions
* feat: docs
* feat: tests
* docs: update to beta 3 (#1984 )
* fix: role assertion (#1986 )
* fix: enum to display access token role assertion
* improve assertion descriptions
* fix nil pointer
* docs: eventstore (#1982 )
* docs: eventstore
* Apply suggestions from code review
Co-authored-by: Florian Forster <florian@caos.ch>
Co-authored-by: Florian Forster <florian@caos.ch>
* fix(sentry): trigger sentry release (#1989 )
* feat(send sentry release): send sentry release
* fix(moved step and added releasetag): moved step and added releasetag
* fix: set version for sentry release (#1990 )
* feat(send sentry release): send sentry release
* fix(moved step and added releasetag): moved step and added releasetag
* fix(corrected var name): corrected var name
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: log error reason on terminate session (#1973 )
* fix: return default language file, if requested lang does not exist for default login texts (#1988 )
* fix: return default language file, if requested lang doesnt exists
* feat: read default translation file
* feat: docs
* fix: race condition in auth request unmarshalling (#1993 )
* feat: handle ui_locales in login (#1994 )
* fix: handle ui_locales in login
* move supportedlanguage func into i18n package
* update oidc pkg
* fix: handle closed channels on unsubscribe (#1995 )
* fix: give restore more time (#1997 )
* fix: translation file read (#2009 )
* feat: translation file read
* feat: readme
* fix: enable idp add button for iam users (#2010 )
* fix: filter event_data (#2011 )
* feat: Custom message files (#1992 )
* feat: add get custom message text to admin api
* feat: read custom message texts from files
* feat: get languages in apis
* feat: get languages in apis
* feat: get languages in apis
* feat: pr feedback
* feat: docs
* feat: merge main
* fix: sms notification (#2013 )
* fix: phone verifications
* feat: fix password reset as sms
* fix: phone verification
* fix: grpc status in sentry and validation interceptors (#2012 )
* fix: remove oauth endpoints from oidc config proto (#2014 )
* try with view
* fix(console): disable sw (#2021 )
* fix: disable sw
* angular.json disable sw
* project projections
* fix typos
* customize projections
* customizable projections,
add change date to projects
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Florian Forster <florian@caos.ch>
Co-authored-by: mffap <mpa@caos.ch>
Co-authored-by: Christian Jakob <47860090+thesephirot@users.noreply.github.com>
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
* env file
* typo
* correct users
* correct migration
* fix: merge fail
* fix test
* fix(tests): unordered matcher
* improve currentSequenceMatcher
* correct certs
* correct certs
* add zitadel database on database list
* refctor switch in match
* enable all handlers
* Delete io.env
* cleanup
* add handlers
* rename view to projection
* rename view to projection
* fix type typo
* remove unnecessary logs
* refactor stmts
* simplify interval calculation
* fix tests
* fix unlock test
* fix migration
* migs
* fix(operator): update cockroach and flyway versions (#2138 )
* chore(deps): bump k8s.io/apiextensions-apiserver from 0.19.2 to 0.21.3
Bumps [k8s.io/apiextensions-apiserver](https://github.com/kubernetes/apiextensions-apiserver ) from 0.19.2 to 0.21.3.
- [Release notes](https://github.com/kubernetes/apiextensions-apiserver/releases )
- [Commits](https://github.com/kubernetes/apiextensions-apiserver/compare/v0.19.2...v0.21.3 )
---
updated-dependencies:
- dependency-name: k8s.io/apiextensions-apiserver
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
* chore(deps): bump google.golang.org/api from 0.34.0 to 0.52.0
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.34.0 to 0.52.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/master/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.34.0...v0.52.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
* start update dependencies
* update mods and otlp
* fix(build): update to go 1.16
* old version for k8s mods
* update k8s versions
* update orbos
* fix(operator): update cockroach and flyway version
* Update images.go
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Stefan Benz <stefan@caos.ch>
* fix import
* fix typo
* fix(migration): add org projection
* fix(projection): correct table for org events in org owners
* better insert stmt
* fix typo
* fix typo
* set max connection lifetime
* set max conns and conn lifetime in eventstore v1
* configure sql connection settings
* add mig for agg type index
* fix replace tab in yaml
* handler interfaces
* subscription
* first try
* handler
* move sql client initialization
* first part implemented
* removed all occurencies of org by id and search orgs
* fix merge issues
* cleanup code
* fix: queries implements orgviewprovider
* cleanup
* refactor text comparison
* remove unused file
* remove unused code
* log
* remove unused code
* remove unused field
* remove unused file
* refactor
* tests for search query
* remove try
* simplify state change mappers
* projection tests
* query functions
* move reusable objects to separate files
* rename domain column to primar_domain
* fix tests
* add current sequence
* remove log prints
* fix tests
* fix: verifier
* fix test
* rename domain col migrations
* simplify search response
* add custom column constructors
* fix: org projection table const
* fix: full column name
* feat: text query extension
* fix: tests for query
* number query
* add deprection message
* projection
* correct migration
* column in a single place (#2416 )
* column in a single place
* use projection for columns
* query column with aliases
* rename methods
* remove unused code
* column for current sequences
* global counter column
* fix is org unique
* query
* fix wrong code
* remove unused code
* remove unused code
* remove unused code
* tests
* fix: tests
* migrations
* fixes
* errors
* add converter option
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: Florian Forster <florian@caos.ch>
Co-authored-by: mffap <mpa@caos.ch>
Co-authored-by: Maximilian Panne <maximilian.panne@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
Co-authored-by: Christian Jakob <47860090+thesephirot@users.noreply.github.com>
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
Co-authored-by: Stefan Benz <stefan@caos.ch>
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
2021-10-20 13:44:02 +02:00
Stefan Benz
425a8b5fd5
feat(crdb): use crdb native backup and s3 backup added ( #1915 )
...
* fix(zitadelctl): implement takedown command
* fix(zitadelctl): correct destroy flow
* fix(zitadelctl): correct backup commands to read crds beforehand
* fix: add of destroyfile
* fix: clean for userlist
* fix: change backup and restore to crdb native
* fix: timeout for delete pvc for cockroachdb
* fix: corrected unit tests
* fix: add ignored file for scale
* fix: correct handling of gitops in backup command
* feat: add s3 backup kind
* fix: backuplist for s3 and timeout for pv deletion
* fix(database): fix nil pointer with binary version
* fix(database): cleanup of errors which cam with merging of the s3 logic
* fix: correct unit tests
* fix: cleanup monitor output
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
* fix: backup imagepullpolixy to ifnotpresent
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
2021-10-13 14:34:03 +02:00
Fabi
f14ca1dc00
docs: Admin training ( #2436 )
...
* docs: zitadel concepts
* docs: zitadel concepts
* docs: zitadel concepts
* docs: graphics
* docs: graphics
* docs: image zoom
* docs: readme fix
* docs: applications
* fix: graphics
* add plugins
* fix: links
* Update docs/docs/concepts/zitadel/objects/projects.md
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update docs/docs/concepts/zitadel/objects/projects.md
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update docs/docs/concepts/zitadel/objects/projects.md
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update docs/docs/concepts/zitadel/objects/projects.md
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update docs/docs/concepts/zitadel/objects/projects.md
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update docs/docs/concepts/zitadel/objects/projects.md
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* Update docs/docs/concepts/zitadel/objects/applications.md
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-09-30 11:49:57 +02:00
dependabot[bot]
583b1c42d4
chore(deps): bump google.golang.org/grpc from 1.40.0 to 1.41.0 ( #2427 )
...
* chore(deps): bump google.golang.org/grpc from 1.40.0 to 1.41.0
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.40.0 to 1.41.0.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.40.0...v1.41.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
* validate
* ensure import
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: adlerhurst <silvan.reusser@gmail.com>
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-09-27 17:14:40 +02:00
Livio Amstutz
ed80a8bb1e
feat: actions ( #2377 )
...
* feat(actions): begin api
* feat(actions): begin api
* api and projections
* fix: handle multiple statements for a single event in projections
* export func type
* fix test
* update to new reduce interface
* flows in login
* feat: jwt idp
* feat: command side
* feat: add tests
* actions and flows
* fill idp views with jwt idps and return apis
* add jwtEndpoint to jwt idp
* begin jwt request handling
* add feature
* merge
* merge
* handle jwt idp
* cleanup
* bug fixes
* autoregister
* get token from specific header name
* fix: proto
* fixes
* i18n
* begin tests
* fix and log http proxy
* remove docker cache
* fixes
* usergrants in actions api
* tests adn cleanup
* cleanup
* fix add user grant
* set login context
* i18n
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
2021-09-27 13:43:49 +02:00
Silvan
30153cff39
chore(gomod): update otel to 1.0.0 ( #2414 )
2021-09-23 12:50:17 +02:00
Silvan
c8dd64cbb4
chore(backend): update dependencies ( #2308 )
...
* docker dependencies
* update mod
* update modules
* update otel to rc3
* fix metrics constructors
* chore(gomod): update dependencies
* update protoc and gatway in dockerfile
* operator has issues with 1.17
2021-09-21 14:58:26 +02:00
Silvan
8609ced24b
fix(build): update go version to 1.16 and dependencies ( #2136 )
...
* chore(deps): bump k8s.io/apiextensions-apiserver from 0.19.2 to 0.21.3
Bumps [k8s.io/apiextensions-apiserver](https://github.com/kubernetes/apiextensions-apiserver ) from 0.19.2 to 0.21.3.
- [Release notes](https://github.com/kubernetes/apiextensions-apiserver/releases )
- [Commits](https://github.com/kubernetes/apiextensions-apiserver/compare/v0.19.2...v0.21.3 )
---
updated-dependencies:
- dependency-name: k8s.io/apiextensions-apiserver
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
* chore(deps): bump google.golang.org/api from 0.34.0 to 0.52.0
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client ) from 0.34.0 to 0.52.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases )
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/master/CHANGES.md )
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.34.0...v0.52.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
* start update dependencies
* update mods and otlp
* fix(build): update to go 1.16
* old version for k8s mods
* update k8s versions
* update orbos
* with batcher
* add batch span processor
* try with older otel version 0.20
* remove syncer
* otel rc2
* fix config
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Stefan Benz <stefan@caos.ch>
2021-08-10 07:27:27 +02:00
Elio Bischof
fbe0f311f2
feat: comprehensive sentry instrumentation ( #2023 )
...
* feat: comprehensive sentry instrumentation
* test: pass
* fix: only fetch zitadel dsn in zitadel-operator
* chore: use dns for sentry environment as soon as parsed
* fix: trust ca certs
* ci: update orbos
* docs: add usage data explanation
* fix: dont send validation errors
* docs: improve ingestion data explanation
* style: rename flag --disable-ingestion to --disable-analytics
* fix: pass --disable-analytics flag to self deployments
* fix: destroy command for sentry
* fix: update orbos
* fix: only switch environment if analytics is enabled
* fix: ensure SENTRY_DSN is always set
* test: test empty sentry dsn
* ci: invalidate build caches
* chore: use zitadel-dev if no version is passed
* chore: combine dev releases in sentry
* refactor: only check for semrel if sentry is enabled
2021-07-30 09:52:08 +00:00
Livio Amstutz
21001862ae
fix: update oidc lib to fix userinfo claims in id_token ( #2052 )
2021-07-21 09:00:04 +02:00
Livio Amstutz
09b5c964cc
feat: handle ui_locales in login ( #1994 )
...
* fix: handle ui_locales in login
* move supportedlanguage func into i18n package
* update oidc pkg
2021-07-09 07:45:31 +00:00
Fabi
ff9af1704f
feat: Extend oidc idp with oauth endpoints ( #1980 )
...
* feat: add oauth attributes to oidc idp configuration
* feat: return idpconfig id on create idp
* feat: tests
* feat: descriptions
* feat: docs
* feat: tests
2021-07-06 14:39:48 +00:00
Fabi
99b2c33ccb
feat: Custom text login ( #1925 )
...
* feat: default custom message text
* feat: org custom message text
* feat: org custom message text
* feat: custom messages query side
* feat: default messages
* feat: message text user fields
* feat: check for inactive user
* feat: fix send password reset
* feat: fix custom org text
* feat: add variables to docs
* feat: custom text tests
* feat: fix notifications
* feat: add custom text feature
* feat: add custom text feature
* feat: feature in custom message texts
* feat: add custom text feature in frontend
* feat: merge main
* feat: feature tests
* feat: change phone message in setup
* fix: remove unused code, add event translation
* fix: merge main and fix problems
* fix: english translation file
* fix: migration versions
* fix: setup
* fix: custom login text
* feat: add all possible custom texts for login
* feat: iam login texts
* feat: org login texts
* feat: protos
* fix: custom text in admin api
* fix: add success login text
* fix: docs
* fix: add custom login texts to management api
* fix: add sub messages to custom login texts
* fix: setup custom texts
* feat: get org login texts
* feat: get org login texts
* feat: handler in adminapi
* feat: handlers in auth and admin
* feat: render login texts
* feat: custom login text
* feat: add all login text keys
* feat: handle correct login texts
* feat: custom login texts in command side
* feat: custom login texts in command side
* feat: fix yaml file
* feat: merge master and add confirmation text
* feat: fix html
* feat: read default login texts
* feat: get default text files
* feat: get custom texts org
* feat: tests
* feat: change translator handling
* fix translator from authReq
* feat: change h1 on login screens
* feat: add custom login text for remove
* feat: add custom login text for remove
* feat: cache translation files
* feat: cache translation files
* feat: zitadel user in env var
* feat: add registration user description
* feat: better func naming
* feat: tests
* feat: add mutex to read file
* feat: add mutex to read file
* fix mutex for accessing translation map
* fix: translation key
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-07-05 15:10:49 +02:00
Christian Jakob
b024cda4e5
feat: sentry integration ( #1944 )
...
* initial sentry variables and secrets
* feat: sentry monitoring
* fix typo
* feat(sentry version): sentry capability
* fix(sentry include): included sentry import 4 zitadel
* usage flag for sentry
* improve sentry flag
* merge main
* fix sentry config
* add sentry dsn to secret env vars
* fix test
* log sentry start
* add sentry grpc interceptor and recover
* add sentry http interceptor to asset api
* fix interceptor order
* try improve sentry recover
* fix i18n interception
* panic
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-07-05 10:58:58 +02:00
Fabi
2037d7d41c
fix: usergrant pre condition check ( #1947 )
...
* fix: usergrant pre condition check
* fix: usergrant pre condition check
* fix: usergrant pre condition check
2021-07-01 13:53:52 +00:00
dependabot[bot]
5d5c15ca9c
chore(deps): bump github.com/grpc-ecosystem/go-grpc-middleware ( #1799 )
...
Bumps [github.com/grpc-ecosystem/go-grpc-middleware](https://github.com/grpc-ecosystem/go-grpc-middleware ) from 1.2.2 to 1.3.0.
- [Release notes](https://github.com/grpc-ecosystem/go-grpc-middleware/releases )
- [Changelog](https://github.com/grpc-ecosystem/go-grpc-middleware/blob/master/CHANGELOG.md )
- [Commits](https://github.com/grpc-ecosystem/go-grpc-middleware/compare/v1.2.2...v1.3.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-06-21 06:46:16 +02:00
Livio Amstutz
4a2ca5a1e8
fix: handle reauth correctly (max_age=0 or prompt=login) ( #1870 )
...
* max age
* merge main
* fix when no prompt is set
* fix: update oidc pkg
* fix tests
2021-06-16 10:02:15 +02:00
Livio Amstutz
770994e143
fix: add avatar url in members, user grants, session and oidc responses ( #1852 )
...
* fix: add avatar url in members, user grants, session and oidc responses
* fix auth request tests
2021-06-11 13:20:39 +02:00
Livio Amstutz
81974b977d
fix: label policy ( #1828 )
...
* fix: font color
* fix: assets from iam when policy is default
* fix: remove multiple files
* fix mock storage
* doc: add asset api
* build assets docs
* fix operator test
* docs
* fix remove assets from org label policy and not default
* fix remove label policy assets and feature downgrade correctly
* fix storage mock
* Update docs/docs/apis/apis.md
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
2021-06-08 09:48:44 +02:00
Fabi
73d37459bb
feat: label policy ( #1708 )
...
* feat: label policy proto extension
* feat: label policy and activate event
* feat: label policy asset events
* feat: label policy asset commands
* feat: add storage key
* feat: storage key validation
* feat: label policy asset tests
* feat: label policy query side
* feat: avatar
* feat: avatar event
* feat: human avatar
* feat: avatar read side
* feat: font on iam label policy
* feat: label policy font
* feat: possiblity to create bucket on put file
* uplaoder
* login policy logo
* set bucket prefix
* feat: avatar upload
* feat: avatar upload
* feat: use assets on command side
* feat: fix human avatar removed event
* feat: remove human avatar
* feat: mock asset storage
* feat: remove human avatar
* fix(operator): add configuration of asset storage to zitadel operator
* feat(console): private labeling policy (#1697 )
* private labeling component, routing, preview
* font, colors, upload, i18n
* show logo
* fix: uniqueness (#1710 )
* fix: uniqueconstraint to lower
* feat: change org
* feat: org change test
* feat: change org
* fix: tests
* fix: handle domain claims correctly
* feat: update org
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
* fix: handle domain claimed event correctly for service users (#1711 )
* fix: handle domain claimed event correctly on user view
* fix: ignore domain claimed events for email notifications
* fix: change org
* handle org changed in read models correctly
* fix: change org in user grant handler
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
* fix: correct value (#1695 )
* docs(api): correct link (#1712 )
* upload service
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
Co-authored-by: Florian Forster <florian@caos.ch>
* feat: fix tests,
* feat: remove assets from label policy
* fix npm, set environment
* lint ts
* remove stylelinting
* fix(operator): add mapping for console with changed unit tests
* fix(operator): add secrets as env variables to pod
* feat: remove human avatar
* fix(operator): add secrets as env variables to pod
* feat: map label policy
* feat: labelpolicy, admin, mgmt, adv settings (#1715 )
* fetch label policy, mgmt, admin service
* feat: advanced beh, links, add, update
* lint ts
* feat: watermark
* feat: remove human avatar
* feat: remove human avatar
* feat: remove human avatar
* feat: remove human avatar
* feat: remove human avatar
* feat: remove human avatar
* feat: remove human avatar
* feat: custom css
* css
* css
* css
* css
* css
* getobject
* feat: dynamic handler
* feat: varibale css
* content info
* css overwrite
* feat: variablen css
* feat: generate css file
* feat: dark mode
* feat: dark mode
* fix logo css
* feat: upload logos
* dark mode with cookie
* feat: handle images in login
* avatar css and begin font
* feat: avatar
* feat: user avatar
* caching of static assets in login
* add avatar.js to main.html
* feat: header dont show logo if no url
* feat: label policy colors
* feat: mock asset storage
* feat: mock asset storage
* feat: fix tests
* feat: user avatar
* feat: header logo
* avatar
* avatar
* make it compatible with go 1.15
* feat: remove unused logos
* fix handler
* fix: styling error handling
* fonts
* fix: download func
* switch to mux
* fix: change upload api to assets
* fix build
* fix: download avatar
* fix: download logos
* fix: my avatar
* font
* fix: remove error msg popup possibility
* fix: docs
* fix: svalidate colors
* rem msg popup from frontend
* fix: email with private labeling
* fix: tests
* fix: email templates
* fix: change migration version
* fix: fix duplicate imports
* fix(console): assets, service url, upload, policy current and preview (#1781 )
* upload endpoint, layout
* fetch current, preview, fix upload
* cleanup private labeling
* fix linting
* begin generated asset handler
* generate asset api in dockerfile
* features for label policy
* features for label policy
* features
* flag for asset generator
* change asset generator flag
* fix label policy view in grpc
* fix: layout, activate policy (#1786 )
* theme switcher up on top
* change layout
* activate policy
* feat(console): label policy back color, layout (#1788 )
* theme switcher up on top
* change layout
* activate policy
* fix overwrite value fc
* reset policy, reset service
* autosave policy, preview desc, layout impv
* layout, i18n
* background colors, inject material styles
* load images
* clean, lint
* fix layout
* set custom hex
* fix content size conversion
* remove font format in generated css
* fix features for assets
* fix(console): label policy colors, image downloads, preview (#1804 )
* load images
* colors, images binding
* lint
* refresh emitter
* lint
* propagate font colors
* upload error handling
* label policy feature check
* add blob in csp for console
* log
* fix: feature edits for label policy, refresh state on upload (#1807 )
* show error on load image, stop spinner
* fix merge
* fix migration versions
* fix assets
* fix csp
* fix background color
* scss
* fix build
* lint scss
* fix statik for console
* fix features check for label policy
* cleanup
* lint
* public links
* fix notifications
* public links
* feat: merge main
* feat: fix translation files
* fix migration
* set api domain
* fix logo in email
* font face in email
* font face in email
* validate assets on upload
* cleanup
* add missing translations
* add missing translations
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: Stefan Benz <stefan@caos.ch>
Co-authored-by: Max Peintner <max@caos.ch>
Co-authored-by: Florian Forster <florian@caos.ch>
2021-06-04 14:53:51 +02:00
Livio Amstutz
92506d69c0
fix: handle logout correctly on tokens ( #1803 )
2021-06-01 13:30:29 +02:00
dependabot[bot]
6ce4e83d36
chore(deps): bump github.com/nicksnyder/go-i18n/v2 from 2.1.1 to 2.1.2 ( #1334 )
...
* chore(deps): bump github.com/nicksnyder/go-i18n/v2 from 2.1.1 to 2.1.2
Bumps [github.com/nicksnyder/go-i18n/v2](https://github.com/nicksnyder/go-i18n ) from 2.1.1 to 2.1.2.
- [Release notes](https://github.com/nicksnyder/go-i18n/releases )
- [Changelog](https://github.com/nicksnyder/go-i18n/blob/main/CHANGELOG.md )
- [Commits](https://github.com/nicksnyder/go-i18n/compare/v2.1.1...v2.1.2 )
Signed-off-by: dependabot[bot] <support@github.com>
* update release-action
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Florian Forster <florianÂ@caos.ch>
2021-06-01 07:45:59 +02:00
Livio Amstutz
4fde6df477
fix: check refresh token grant type ( #1796 )
2021-05-31 12:27:32 +02:00
Livio Amstutz
f8ab1f5b7b
fix: refresh token activation ( #1795 )
...
* fix: oidc grant type check
* docs: add offline_access scope
* docs: update refresh token status in supported grant types
* fix: update oidc pkg
2021-05-31 11:06:01 +02:00
Livio Amstutz
ec5020bebc
feat: refresh token ( #1728 )
...
* begin refresh tokens
* refresh tokens
* list and revoke refresh tokens
* handle remove
* tests for refresh tokens
* uniqueness and default expiration
* rename oidc token methods
* cleanup
* migration version
* Update internal/static/i18n/en.yaml
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
* fixes
* feat: update oidc pkg for refresh tokens
Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
2021-05-20 11:33:35 +00:00
Fabi
667cc30291
feat: asset storage ( #1696 )
...
* feat: remove assets
* feat: minio implementation
* fix: remove assets from tests
* feat: minio implementation
* feat: Env vars
* fix: sprintf
* fix: sprintf
* Update internal/eventstore/repository/repository.go
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
* fix: error handling
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2021-05-03 10:15:50 +02:00
Livio Amstutz
5277dd0818
fix: add loopback for native apps redirect_uri ( #1690 )
...
* fix: allow loopback redirect_uri for native apps
* add loopback to native redirect_uri
* fix loopback
* update oidc pkg
* merge
* fix: oidc compliance in read model
2021-05-03 09:07:54 +02:00
Elio Bischof
fe4f6a963e
feat(operator): enable specifying custom acme authority for subdomains ( #1634 )
...
* feat: enable specifying custom acme authority for subdomains
* test: none authority
* chore: use latest ORBOS
* chore: use latest ORBOS
* test: host tls secret is unmanaged if not provided
* chore: use latest ORBOS
* chore: use latest ORBOS
* fix: default acme authority to "none"
* chore: use latest ORBOS
* chore: compile with latest ORBOS
2021-04-28 11:00:56 +02:00
Fabi
dbafb7b419
fix: check user is unique ( #1678 )
2021-04-27 09:22:33 +00:00
Elio Bischof
f9a7f1e27d
fix: use latest ORBOS ( #1660 )
2021-04-23 13:46:28 +02:00
Livio Amstutz
920ada55fc
fix: update oidc pkg for jwt profile fix ( #1659 )
2021-04-23 12:13:18 +02:00
Elio Bischof
c0878e4509
feat(operator): make running ZITADEL easy ( #1562 )
...
* docs: describe crd mode
* docs: fix links
* docs: fix commands and crdb resources
* feat: add configure command
* chore: use latest ORBOS
* chore: use latest ORBOS
* docs: start gitops docs
* fix: compile
* chore: fix build script path
* chore: remove redundant prebuild
* chore: add configure.go
* docs: describe gitops mode
* docs: point template links to main branch
* docs: fix versions
* feat: initialize empty keys
* feat: reconfigure running ZITADEL
* docs: describe crd mode
* docs: fix links
* docs: fix commands and crdb resources
* feat: add configure command
* chore: use latest ORBOS
* chore: use latest ORBOS
* docs: start gitops docs
* fix: compile
* chore: fix build script path
* chore: remove redundant prebuild
* chore: add configure.go
* docs: describe gitops mode
* docs: point template links to main branch
* docs: fix versions
* feat: initialize empty keys
* feat: reconfigure running ZITADEL
* test: fix
* docs: keys are generated with configure
* docs: remove keys from template
* chore: pass compile time data
* chore: use latest ORBOS
* fix: when in-cluster, use in-cluster k8s client
* fix: try in-cluster config if kubeconfig is empty
* fix: reduce unneeded side effects for configure command
* docs: boom version
* chore: use latest ORBOS
* chore: use latest ORBOS
* initial commit
* inital changes
* commit WIP Information Architecture
* commit a working state
* add static assets and project
* add org and fix img names
* add plausible
* remove img
* change sidebar to easier mgmt
* add openid oauth and domains
* lint md
* quickstarts
* add auth flow
* identity brokering
* remove site
* fix broken links
* extend footer
* extend readme
* fix: styling
* fix: zitadel logo on index
* styling
* border
* fix: nav
* fix: nav
* fix: index
* fix: corrected zitadelctl examples
* fix: rename architecture to concepts
* fix: introductions
* fix: introductions
* fix: introductions
* docs: cli r/w secrets examples
* docs: finish ZITADEL Enterprise Cloud
* docs: mention ZITADEL Enterprise Cloud tier
* docs: comment configuration options
* docs: fix broken links
* docs: move some introduction texts around
* docs: twilio and email are mandatory
* docs: download latest binaries
Co-authored-by: Florian Forster <florian@caos.ch>
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
Co-authored-by: Livio Amstutz <livio.a@gmail.com>
Co-authored-by: Stefan Benz <stefan@caos.ch>
2021-04-22 16:43:34 +00:00
Livio Amstutz
b04c97d21e
fix: update oidc to encrypt code and tokens url safe ( #1616 )
2021-04-20 10:01:47 +02:00
Max Peintner
057537cc82
feat(notification): new mail templates ( #1579 )
...
* fix: new template light only
* add border radius to img
* system first font, font weight
* fix: change email template
* fix: go mod
* update ref
* fix: template
Co-authored-by: fabi <fabienne.gerschwiler@gmail.com>
2021-04-16 14:55:55 +02:00
Fabi
c2fedbbfc6
docs: generate admin api ( #1584 )
...
* fix: generate admin api
* fix: generate admin api
* fix: generate admin api
* fix: http option
* fix: admin api
* fix: md files
* fix: correct headers
* fix: proto definitions
* fix: proto api
* fix: proto api
* fix: proto api
* fix: proto api
2021-04-15 18:21:46 +02:00
Livio Amstutz
bacfc3b099
fix: operator picks ( #1463 )
...
* feat(crd): add crd mode for operators (#1329 )
* feat(operator): add base for zitadel operator
* fix(operator): changed pipeline to release operator
* fix(operator): fmt with only one parameter
* fix(operator): corrected workflow job name
* fix(zitadelctl): added restore and backuplist command
* fix(zitadelctl): scale for restore
* chore(container): use scratch for deploy container
* fix(zitadelctl): limit image to scratch
* fix(migration): added migration scripts for newer version
* fix(operator): changed handling of kubeconfig in operator logic
* fix(operator): changed handling of secrets in operator logic
* fix(operator): use new version of zitadel
* fix(operator): added path for migrations
* fix(operator): delete doublets of migration scripts
* fix(operator): delete subpaths and integrate logic into init container
* fix(operator): corrected path in dockerfile for local migrations
* fix(operator): added migrations for cockroachdb-secure
* fix(operator): delete logic for ambassador module
* fix(operator): added read and write secret commands
* fix(operator): correct and align operator pipeline with zitadel pipeline
* fix(operator): correct yaml error in operator pipeline
* fix(operator): correct action name in operator pipeline
* fix(operator): correct case-sensitive filename in operator pipeline
* fix(operator): upload artifacts from buildx output
* fix(operator): corrected attribute spelling error
* fix(operator): combined jobs for operator binary and image
* fix(operator): added missing comma in operator pipeline
* fix(operator): added codecov for operator image
* fix(operator): added codecov for operator image
* fix(testing): code changes for testing and several unit-tests (#1009 )
* fix(operator): usage of interface of kubernetes client for testing and several unit-tests
* fix(operator): several unit-tests
* fix(operator): several unit-tests
* fix(operator): changed order for the operator logic
* fix(operator): added version of zitadelctl from semantic release
* fix(operator): corrected function call with version of zitadelctl
* fix(operator): corrected function call with version of zitadelctl
* fix(operator): add check output to operator release pipeline
* fix(operator): set --short length everywhere to 12
* fix(operator): zitadel setup in job instead of exec with several unit tests
* fix(operator): fixes to combine newest zitadel and testing branch
* fix(operator): corrected path in Dockerfile
* fix(operator): fixed unit-test that was ignored during changes
* fix(operator): fixed unit-test that was ignored during changes
* fix(operator): corrected Dockerfile to correctly use env variable
* fix(operator): quickfix takeoff deployment
* fix(operator): corrected the clusterrolename in the applied artifacts
* fix: update secure migrations
* fix(operator): migrations (#1057 )
* fix(operator): copied migrations from orbos repository
* fix(operator): newest migrations
* chore: use cockroach-secure
* fix: rename migration
* fix: remove insecure cockroach migrations
Co-authored-by: Stefan Benz <stefan@caos.ch>
* fix: finalize labels
* fix(operator): cli logging concurrent and fixe deployment of operator during restore
* fix: finalize labels and cli commands
* fix: restore
* chore: cockroachdb is always secure
* chore: use orbos consistent-labels latest commit
* test: make tests compatible with new labels
* fix: default to sa token for start command
* fix: use cockroachdb v12.02
* fix: don't delete flyway user
* test: fix migration test
* fix: use correct table qualifiers
* fix: don't alter sequence ownership
* fix: upgrade flyway
* fix: change ownership of all dbs and tables to admin user
* fix: change defaultdb user
* fix: treat clientid status codes >= 400 as errors
* fix: reconcile specified ZITADEL version, not binary version
* fix: add ca-certs
* fix: use latest orbos code
* fix: use orbos with fixed race condition
* fix: use latest ORBOS code
* fix: use latest ORBOS code
* fix: make migration and scaling around restoring work
* fix(operator): move zitadel operator
* chore(migrations): include owner change migration
* feat(db): add code base for database operator
* fix(db): change used image registry for database operator
* fix(db): generated mock
* fix(db): add accidentally ignored file
* fix(db): add cockroachdb backup image to pipeline
* fix(db): correct pipeline and image versions
* fix(db): correct version of used orbos
* fix(db): correct database import
* fix(db): go mod tidy
* fix(db): use new version for orbos
* fix(migrations): include migrations into zitadelctl binary (#1211 )
* fix(db): use statik to integrate migrations into binary
* fix(migrations): corrections unit tests and pipeline for integrated migrations into zitadelctl binary
* fix(migrations): correction in dockerfile for pipeline build
* fix(migrations): correction in dockerfile for pipeline build
* fix(migrations): dockerfile changes for cache optimization
* fix(database): correct used part-of label in database operator
* fix(database): correct used selectable label in zitadel operator
* fix(operator): correct lables for user secrets in zitadel operator
* fix(operator): correct lables for service test in zitadel operator
* fix: don't enable database features for user operations (#1227 )
* fix: don't enable database features for user operations
* fix: omit database feature for connection info adapter
* fix: use latest orbos version
* fix(crd): corrected logic to get database connection and other info
* fix(crd): corrected yaml tags and start for zitadel operator
* fix(crd): move some dependencies and use consistent structure
* fix(crd): corrected unit-tests
* fix(crd): corrected main files for debug starts
* chore(pipeline): use correct version for zitadelctl build
* fix(crd): correct calculating of current db state for zitadel operator
* fix(crd): use binary version for deployment of crd mode operators
* fix(crd): add gitops attribute for reconciling
* fix(crd): corrected crd with newest version
* fix(migration): collect cleanup functions and only use them if all jobs are successful
* fix(zitadelctl): import gcp auth to connect to gke cluster
* feat: Add read and writesecret options for crd mode (#1435 )
* fix: don't require orbconfig for crd mode
* test: pass
* fix(zitadelctl): import gcp auth to connect to gke cluster
* feat: add read and writesecret option for crd mode
* test: fix
* fix: make all crd secrets writable
* fix: use in-cluster configs for in-cluster operators
* chore: remove unnecessary debug files
Co-authored-by: Stefan Benz <stefan@caos.ch>
* fix: Crdoperatormerge review (#1385 )
* fix: don't require orbconfig for crd mode
* test: pass
* fix(zitadelctl): import gcp auth to connect to gke cluster
* fix: ensure caos-system namespace
* fix: apply orbconfig at takeoff
* docs: improve help for creating an orbconfig
* docs: describe orbconfig properties
* docs: add --gitops to help message example
* fix(pipeline): correct upload of artifacts in dev releases
* test: pass
Co-authored-by: Stefan Benz <stefan@caos.ch>
* fix(test): corrected falsely merged tests
* chore: update orbos library
* fix: only handle exactly named and namespaced crd resource
* fix: print errors, check correct crd namespace
* fix: validate bucket secret
* chore: compile
* fix(operator): corrected secret handling when unused secrets are not defined
* fix(operator): corrected handling of jobs
* fix: dont print logs when readsecret path is provided
* fix(operator): corrected handling of jobs and sort for mounted volumes
* fix(operator): sort for volumes
* fix(operator): change orboos import to newest release
Co-authored-by: Florian Forster <florian@caos.ch>
Co-authored-by: Elio Bischof <eliobischof@gmail.com>
(cherry picked from commit fa9bd5a8e7#1458 )
* fix: always use standard time.Duration
* fix: give backup and restore more time
* fix: give backup and restore jobs more time
(cherry picked from commit 7468b7d1e8
2021-03-24 10:31:19 +01:00
