Affected by GO-2024-2637
and 10 other vulnerabilities
GO-2024-2637: Account Takeover via Session Fixation in Zitadel [Bypassing MFA] in github.com/zitadel/zitadel
GO-2024-2664: ZITADEL's actions can overload reserved claims in github.com/zitadel/zitadel
GO-2024-2665: ZITADEL's Improper Content-Type Validation Leads to Account Takeover via Stored XSS + CSP Bypass in github.com/zitadel/zitadel
GO-2024-2788: ZITADEL's Improper Lockout Mechanism Leads to MFA Bypass in github.com/zitadel/zitadel
GO-2024-2804: Zitadel exposing internal database user name and host information in github.com/zitadel/zitadel
GO-2024-2968: ZITADEL Vulnerable to Session Information Leakage in github.com/zitadel/zitadel
GO-2024-3014: ZITADEL "ignoring unknown usernames" vulnerability in github.com/zitadel/zitadel
GO-2024-3015: ZITADEL has improper HTML sanitization in emails and Console UI in github.com/zitadel/zitadel
GO-2024-3137: ZITADEL's User Grant Deactivation not Working in github.com/zitadel/zitadel
GO-2024-3138: ZITADEL Allows Unauthorized Access After Organization or Project Deactivation in github.com/zitadel/zitadel
GO-2024-3139: ZITADEL's Service Users Deactivation not Working in github.com/zitadel/zitadel
package
Version:
v1.83.5
Opens a new window with list of versions in this module.
Published: Apr 29, 2022
License: Apache-2.0
Opens a new window with license information.
Imports: 26
Opens a new window with list of imports.
Imported by: 0
Opens a new window with list of known importers.
Documentation
¶
View Source
const (
SfsName = "cockroachdb"
PublicServiceName = SfsName + "-public"
Clean = "clean"
DBReady = "dbready"
)
type DesiredV0 struct {
Common *tree.Common `yaml:",inline"`
Spec Spec
}
type Spec struct {
Verbose bool
Force bool `yaml:"force,omitempty"`
ReplicaCount int `yaml:"replicaCount,omitempty"`
StorageCapacity string `yaml:"storageCapacity,omitempty"`
StorageClass string `yaml:"storageClass,omitempty"`
NodeSelector map[string]string `yaml:"nodeSelector,omitempty"`
Tolerations []corev1.Toleration `yaml:"tolerations,omitempty"`
ClusterDns string `yaml:"clusterDNS,omitempty"`
Backups map[string]*tree.Tree `yaml:"backups,omitempty"`
Resources *k8s.Resources `yaml:"resources,omitempty"`
MaxSQLMemory string `yaml:"maxSqlMemory,omitempty"`
Cache string `yaml:"cache,omitempty"`
ZitadelUserPassword *secret.Secret `yaml:"zitadelUserPassword,omitempty"`
ZitadelUserPasswordExisting *secret.Existing `yaml:"zitadelUserPasswordExisting,omitempty"`
}
Source Files
¶
Directories
¶
Click to show internal directories.
Click to hide internal directories.