feat: upgrade protos and use UTC in service account auth (#54)

smartive · May 7, 2021 · 05616b8 · 05616b8
1 parent 8dcded7
commit 05616b8
Show file tree

Hide file tree

Showing 9 changed files with 386 additions and 31 deletions.
diff --git a/src/Zitadel.Api/google/api/annotations.proto b/src/Zitadel.Api/google/api/annotations.proto
@@ -1,4 +1,4 @@
-// Copyright (c) 2015, Google Inc.
+// Copyright 2015 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.

diff --git a/src/Zitadel.Api/google/api/http.proto b/src/Zitadel.Api/google/api/http.proto
@@ -1,4 +1,4 @@
-// Copyright 2020 Google LLC
+// Copyright 2015 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.

diff --git a/src/Zitadel.Api/zitadel/admin.proto b/src/Zitadel.Api/zitadel/admin.proto
@@ -23,13 +23,14 @@ option go_package ="github.com/caos/zitadel/pkg/grpc/admin";
 
 option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_swagger) = {
     info: {
-        title: "Administrator API for ZITADEL";
-        description: "This API provides all functions to administrate ZITADEL.";
+        title: "Administration API aka Admin";
         version: "1.0";
-        contact: {
-            name: "file an issue",
-            url: "https://github.com/caos/zitadel";
-        };
+        description: "This API is intended to configure and manage the IAM itself.";
+        contact:{
+            name: "CAOS developers of ZITADEL"
+            url: "https://zitadel.ch"
+            email: "[email protected]"
+        }
         license: {
             name: "Apache 2.0",
             url: "https://github.com/caos/zitadel/blob/main/LICENSE";
@@ -172,6 +173,7 @@ service AdminService {
         };
     }
 
+    // Returns an organisation by id
     rpc GetOrgByID(GetOrgByIDRequest) returns (GetOrgByIDResponse) {
         option (google.api.http) = {
             get: "/orgs/{id}";
@@ -198,7 +200,7 @@ service AdminService {
     }
 
     //Returns all organisations matching the request
-    // all queries need to match (ANDed)
+    // all queries need to match (AND)
     rpc ListOrgs(ListOrgsRequest) returns (ListOrgsResponse) {
         option (google.api.http) = {
             post: "/orgs/_search";
@@ -275,6 +277,7 @@ service AdminService {
         };
     }
 
+    // Returns a identity provider configuration of the IAM
     rpc GetIDPByID(GetIDPByIDRequest) returns (GetIDPByIDResponse) {
         option (google.api.http) = {
             get: "/idps/{id}";
@@ -310,6 +313,7 @@ service AdminService {
         };
     }
 
+    // Returns all identity provider configurations of the IAM
     rpc ListIDPs(ListIDPsRequest) returns (ListIDPsResponse) {
         option (google.api.http) = {
             post: "/idps/_search";
@@ -346,6 +350,7 @@ service AdminService {
         };
     }
 
+    // Adds a new oidc identity provider configuration the IAM
     rpc AddOIDCIDP(AddOIDCIDPRequest) returns (AddOIDCIDPResponse) {
         option (google.api.http) = {
             post: "/idps/oidc";
@@ -1675,8 +1680,11 @@ service AdminService {
     }
 }
 
+
+//This is an empty request
 message HealthzRequest {}
 
+//This is an empty response
 message HealthzResponse {}
 
 // if name or domain is already in use, org is not unique
@@ -1883,11 +1891,8 @@ message SetUpOrgRequest {
         Email email = 3 [(validate.rules).message.required = true];
         Phone phone = 4;
         string password = 5 [
-            (validate.rules).string = {min_len: 1, max_len: 72},
             (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_field) = {
                 description: "the initial password of the user";
-                min_length: 1;
-                max_length: 72;
                 example: "\"my_53cr3t-P4$$w0rd\"";
             }
         ];
@@ -2188,6 +2193,7 @@ message SetDefaultFeaturesRequest {
     bool login_policy_passwordless = 10;
     bool password_complexity_policy = 11;
     bool label_policy = 12;
+    bool custom_domain = 13;
 }
 
 message SetDefaultFeaturesResponse {
@@ -2217,6 +2223,7 @@ message SetOrgFeaturesRequest {
     bool login_policy_passwordless = 11;
     bool password_complexity_policy = 12;
     bool label_policy = 13;
+    bool custom_domain = 14;
 }
 
 message SetOrgFeaturesResponse {
@@ -2338,6 +2345,7 @@ message ResetCustomOrgIAMPolicyToDefaultResponse {
     zitadel.v1.ObjectDetails details = 1;
 }
 
+//This is an empty request
 message GetLabelPolicyRequest {}
 
 message GetLabelPolicyResponse {
@@ -2380,6 +2388,7 @@ message UpdateLabelPolicyResponse {
     zitadel.v1.ObjectDetails details = 1;
 }
 
+//This is an empty request
 message GetLoginPolicyRequest {}
 
 message GetLoginPolicyResponse {
@@ -2470,6 +2479,7 @@ message RemoveIDPFromLoginPolicyResponse {
     zitadel.v1.ObjectDetails details = 1;
 }
 
+//This is an empty request
 message ListLoginPolicySecondFactorsRequest {}
 
 message ListLoginPolicySecondFactorsResponse {
@@ -2505,6 +2515,7 @@ message RemoveSecondFactorFromLoginPolicyResponse {
     zitadel.v1.ObjectDetails details = 1;
 }
 
+//This is an empty request
 message ListLoginPolicyMultiFactorsRequest {}
 
 message ListLoginPolicyMultiFactorsResponse {
@@ -2578,6 +2589,7 @@ message UpdatePasswordComplexityPolicyResponse {
     zitadel.v1.ObjectDetails details = 1;
 }
 
+//This is an empty request
 message GetPasswordAgePolicyRequest {}
 
 message GetPasswordAgePolicyResponse {
@@ -2603,6 +2615,7 @@ message UpdatePasswordAgePolicyResponse {
     zitadel.v1.ObjectDetails details = 1;
 }
 
+//This is an empty request
 message GetPasswordLockoutPolicyRequest {}
 
 message GetPasswordLockoutPolicyResponse {
@@ -2692,6 +2705,7 @@ message RemoveIAMMemberResponse {
     zitadel.v1.ObjectDetails details = 1;
 }
 
+//This is an empty request
 message ListIAMMemberRolesRequest {}
 
 message ListIAMMemberRolesResponse {
@@ -2711,6 +2725,7 @@ message ListIAMMembersResponse {
     repeated zitadel.member.v1.Member result = 2;
 }
 
+//This is an empty request
 message ListViewsRequest {}
 
 message ListViewsResponse {
@@ -2743,8 +2758,10 @@ message ClearViewRequest {
     ];
 }
 
+//This is an empty response
 message ClearViewResponse {}
 
+//This is an empty request
 message ListFailedEventsRequest {}
 
 message ListFailedEventsResponse {
@@ -2782,6 +2799,7 @@ message RemoveFailedEventRequest {
     ];
 }
 
+//This is an empty response
 message RemoveFailedEventResponse {}
 
 message View {