Feature List - Githubissues

zitadel / typescript

Typescript packages and application to showcase the ZITADEL resource API

https://typescript-login.vercel.app

MIT License

56 stars 29 forks source link

Feature List #170

Open hifabienne opened 2 months ago

hifabienne commented 2 months ago

Login Authentication Possibilities

I should be able to configure if the following authentication possibilities are allowed or not.

Should we add to each method how long it should be valid? To get rid of the loginlifetimes?

[ ] Username (enabled?)
- [ ] suffix?
[ ] Password (enabled & lifetime?)
- [ ] password complexity
- [ ] password expiry
- [ ] password reset allowed?
- [ ] password reset code
[ ] Passkey
- [ ] Code Generator
[ ] TOTP
[ ] SMS OTP
- [ ] OTP Code Generator
[ ] EMail OTP
- [ ] OTP Code Generator
[ ] External IDP
- [ ] Mapping?
- [ ] auto creation / linking/ update
- [ ] manual creation / linking

(Remove from Login Policy

Username and Password allowed
Email login
Phone Login

Login

[ ] Trigger organization including settings and branding (without oidc, e.g org param)

OIDC

SAML

Selfservice Possibilities

[ ] Register Local User
- [ ] Link to external form?
[ ] Register Authentication (add mfa/force mfa)
[ ] Register External User
[ ] Register Org
[ ] Terms of Service (accept, or show)
[ ] Privacy Policy (accept or show)
[ ] Help Link
[ ] Support Email
[ ] User Profile Page

Configurations

[ ] Minimal Authentication Level Step up authentication (replace force mfa).
[ ] Domain Discovery (Org Domains)
[ ] Ignore unknown usernames? (Better name?)
[ ] Default Redirect URL
[ ] Add more security prompt (mfa init check)
[ ] Re-authentication
[ ] lockout

Notifications

[ ] Providers
[ ] Enabled / Disable

To Remove

[ ] SMTP Sender Address matches Instance domain

Questions:

[ ] Is is possible to somehow inject CSS? e.g get rid of the password reset link?
[ ] Can I do so per organization?

hifabienne commented 2 months ago

General Flows: