letro/letro-authentication-service
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity
NaN Commits 2 Branches 1 Tag
main
Commit Graph

2727 Commits

Author SHA1 Message Date
Quentin Gliech
889545fed4 Simplify compat login SSO redirect URI building 2026-01-05 14:44:03 +01:00
Quentin Gliech
6ab4c189be Add more context to serialization errors 2026-01-05 13:49:11 +01:00
Quentin Gliech
f587c17bcd Fix the 'invalid type' error during compat SSO login with urlencoded parameters 
Fixes #5384
 2026-01-05 13:41:44 +01:00
Hugh Nimmo-Smith
28b0f77543 Support for stable MSC3824 names 2025-12-19 18:13:01 +00:00
Quentin Gliech
c360144bfe Handle pre-compressed assets better (#5370) 2025-12-18 17:00:30 +01:00
Quentin Gliech
926721c279 Only serve pre-compressed gzip and brotli files 2025-12-18 14:39:58 +01:00
Quentin Gliech
cfa775c06b Pre-load locale data in the React app 2025-12-17 15:53:37 +01:00
Quentin Gliech
579304e53a Deduplicate included assets 2025-12-17 15:53:00 +01:00
Quentin Gliech
e6810efdab Expose process metrics on Linux (#5342) 2025-12-16 13:31:42 +01:00
Quentin Gliech
4ee344012f Remove rustls-pemfile dependency (#5339) 2025-12-16 13:27:30 +01:00
Quentin Gliech
cc67f515a6 Merge remote-tracking branch 'origin/main' into quenting/process-metrics 2025-12-16 13:23:10 +01:00
Quentin Gliech
74899939bf Switch to opentelemetry-instrumentation-tokio crate for Tokio instrumentation 2025-12-15 12:17:31 +01:00
Quentin Gliech
30c4e12d12 Merge branch 'main' into rei/reapply_5297 2025-12-10 22:09:56 +01:00
Quentin Gliech
9300a60242 Fix running multiple migration process in parallel (#5329) 2025-12-10 22:08:51 +01:00
Quentin Gliech
4a79fdc5be Expose process metrics on Linux 2025-12-10 16:45:48 +01:00
Devon Hudson
9b65574885 Remove rustls-pemfile dependency 2025-12-09 12:37:56 -07:00
Quentin Gliech
cca2015920 Fix typos 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2025-12-04 16:32:13 +01:00
Quentin Gliech
b99722f42a Better error message when checksum in database is invalid 2025-12-04 15:14:14 +01:00
Quentin Gliech
368cd4541d Don't error out if a migration is missing 
This allows us to roll back to older versions of MAS.
 2025-12-04 15:13:42 +01:00
Quentin Gliech
eb2284ba7c Better lock and handle missing and modified migrations 
This rewrites the database migration code to:

 - avoid deadlocks when running multiple migration processes at the same
   time with a `CREATE INDEX CONCURRENTLY` statement
 - allow us to remove some migrations from the code base and mark them as
   intentionally removed
 - allow us to modify some migrations and declare alternate checksums
   for previous versions of the migration
 2025-12-04 14:44:16 +01:00
Quentin Gliech
56ce9ccd1c Simplify the consent screen (#5310) 2025-12-03 14:22:14 +01:00
Quentin Gliech
9cc9fc8bbe Update comment on the id_color_hash template filter 2025-12-03 13:47:59 +01:00
Quentin Gliech
c7bb887c65 Apply minor suggestions from Copilot 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2025-12-03 13:39:34 +01:00
Hugh Nimmo-Smith
0521f44756 Lint 2025-12-03 11:50:52 +00:00
Hugh Nimmo-Smith
a51ba7d07b Stabilisation of supported MSC4191 account management actions 
- Support the stable names and the unstable names
- Advertise both the stable names and the unstable names

This means that MAS supports either names. We can remove the unstable names once the is enough client adoption of the stable names.

n.b. this does not change the oauth2-types crate as not used by MAS.
 2025-12-03 10:43:39 +00:00
Quentin Gliech
7c3e6701c1 Add a test for the new skip_confirmation option 2025-12-03 11:00:32 +01:00
Quentin Gliech
5efd963707 Merge remote-tracking branch 'origin/main' into quenting/upstream-oauth/skip-interactive 2025-12-03 10:48:31 +01:00
Quentin Gliech
1b77b5ce4b Add more options to deal with localpart conflicts on upstream OAuth 2.0 logins (#5295) 2025-12-03 10:39:05 +01:00
Quentin Gliech
8a615fd8ba Merge remote-tracking branch 'origin/main' into quenting/simpler-consent-screen 2025-12-02 19:42:57 +01:00
Quentin Gliech
f9008f3184 Add the Matrix user display name in the compat SSO login context 2025-12-02 18:09:47 +01:00
Quentin Gliech
29383dfd49 Add a template function to compute the avatar color hash same as 
Compound Web
 2025-12-02 17:51:51 +01:00
Quentin Gliech
ff6b25061e Get the display name of the Matrix user on the consent screens 2025-12-02 17:51:23 +01:00
Olivier 'reivilibre
eeb0692b8e Add experimental and preliminary policy-driven session limiting when logging in compatibility sessions. (#5287) 2025-12-02 15:50:04 +00:00
Olivier 'reivilibre
1dd51c77f4 Reapply "Add 'IF NOT EXISTS' to all 'CREATE INDEX CONCURRENTLY' statements to avoid deadlocks (#5297)" (#5299) 
This reverts commit 2c3054bb24, reversing
changes made to 396950806c.
 2025-12-01 12:45:19 +00:00
Olivier 'reivilibre
21e45ce972 Revert "Add 'IF NOT EXISTS' to all 'CREATE INDEX CONCURRENTLY' statements to avoid deadlocks (#5297)" 
This reverts commit 396950806c, reversing
changes made to ef563f33c6.
 2025-12-01 12:14:31 +00:00
Olivier 'reivilibre
a59d38fc0b Comment on why we special-case 'only violation is too-many-sessions' 2025-12-01 11:47:59 +00:00
Olivier 'reivilibre
65b7cdc409 Expose Violations directly to the compat policy violation template 2025-12-01 11:47:59 +00:00
Olivier 'reivilibre
70f3efc0b8 Remove is_interactive and carry on with login types 2025-12-01 11:47:59 +00:00
Quentin Gliech
e484a810a7 Typos and error message rewording 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2025-12-01 11:03:04 +01:00
Quentin Gliech
3e65ff54b7 Merge branch 'main' into quenting/upstream-oauth/better-conflict-options 2025-11-28 18:10:22 +01:00
Quentin Gliech
a56482cf60 Merge branch 'quenting/upstream-oauth/better-conflict-options' into quenting/upstream-oauth/skip-interactive 2025-11-28 18:08:09 +01:00
Quentin Gliech
7c16212c4c Skip the attributes confirmation screen if configured to do so 2025-11-28 18:01:49 +01:00
Ben Banfield-Zanin
e065f830e9 Add 'IF NOT EXISTS' to all 'CREATE INDEX CONCURRENTLY' statements to avoid deadlocks 2025-11-28 15:18:53 +00:00
Quentin Gliech
450b1fa24c Check for the new on_conflict options & update docs 2025-11-28 16:10:07 +01:00
Quentin Gliech
d38662e395 Option to skip confirmation when registering through an upstream OAuth provider 2025-11-28 15:51:43 +01:00
Olivier 'reivilibre
ffec0020a4 We don't know if there's a device ID 2025-11-28 12:42:48 +00:00
Quentin Gliech
868a50030a Add tests for the new on_conflict options 2025-11-28 11:55:34 +01:00
Quentin Gliech
f97f56ed11 Add more options to deal with localpart conflicts on upstream OAuth 2.0 logins 2025-11-28 10:53:28 +01:00
Quentin Gliech
5e1100d22f Apply suggestions from code review 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2025-11-27 17:23:10 +01:00
Quentin Gliech
e90f11b8f8 Remove unused login_link.html template 2025-11-27 16:18:18 +01:00