letro/letro-authentication-service
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity
6,625 Commits 2 Branches 1 Tag
02c8a7a92be1bf75463b8bb2ae76c19eb1278f22
Commit Graph

67 Commits

Author SHA1 Message Date
Olivier 'reivilibre
74f4e13c61 Support for stable MSC4191 account management actions (#5312) 2026-01-12 12:14:16 +00:00
Hugh Nimmo-Smith
28b0f77543 Support for stable MSC3824 names 2025-12-19 18:13:01 +00:00
Hugh Nimmo-Smith
a51ba7d07b Stabilisation of supported MSC4191 account management actions 
- Support the stable names and the unstable names
- Advertise both the stable names and the unstable names

This means that MAS supports either names. We can remove the unstable names once the is enough client adoption of the stable names.

n.b. this does not change the oauth2-types crate as not used by MAS.
 2025-12-03 10:43:39 +00:00
Quentin Gliech
93820de8f0 Receive and validate backchannel logout requests 
We don't yet do anything with them, other than logging them
 2025-07-04 16:27:10 +02:00
Quentin Gliech
52b0a9b2ba Update license headers to match the actual license 2025-06-12 10:32:16 +02:00
Quentin Gliech
14b77c150a Registration token step view 2025-06-03 17:42:53 +02:00
Quentin Gliech
92e84be45a Hacky support for the /logout/all compatibility endpoint 2025-05-05 16:12:50 +02:00
Quentin Gliech
e0dacf0761 Remove the complete handler, make it go through the consent page 2025-04-11 15:04:34 +02:00
Quentin Gliech
59e5068855 Remove the reauth view 2025-04-11 13:35:59 +02:00
Quentin Gliech
56d9c7e63b Upgrade to Rust 1.85 and edition 2024 2025-02-21 16:15:02 +01:00
Quentin Gliech
418e257061 Upgrade axum to 0.8 2025-01-27 15:11:10 +01:00
Quentin Gliech
3eed8d39fb Registration step to set a display name 2025-01-15 15:28:48 +01:00
Quentin Gliech
f03a817738 Move the finishing of registration to a dedicated view 2025-01-15 15:28:48 +01:00
Quentin Gliech
588c1bdcd4 Implement email verification in the registration flow 2025-01-15 15:28:48 +01:00
Quentin Gliech
ce256684fe Remove the dedicated page to add an email address 2025-01-14 15:46:39 +01:00
Quentin Gliech
3f842bc045 Split the base registration page with local password registration 2025-01-07 11:49:01 +01:00
Quentin Gliech
9a946c19e7 Remove (C) 2024-09-10 14:28:55 +02:00
Quentin Gliech
9da19e2af0 License headers change 2024-09-05 13:25:42 +02:00
Quentin Gliech
2a2f37725d Host a Swagger UI both in the static documentation and by the server 2024-08-01 15:17:14 +02:00
Olivier 'reivilibre
33ce228a84 Remove the server-side rendered account recovery 'finish' form 
Replace with the React frontend form
 2024-07-26 10:20:32 +01:00
Quentin Gliech
df89f570ac Actually send emails for recovery 2024-06-28 15:59:21 +02:00
Quentin Gliech
50742b4d2b Start recovery view 2024-06-28 15:59:21 +02:00
reivilibre
45b1e77108 Remove the old password change page (#2874) 2024-06-27 13:41:24 +01:00
Quentin Gliech
545b014fd7 Actually verify the CAPTCHA during registration 2024-05-15 09:38:10 +02:00
Quentin Gliech
2d9157986e Allow disabling registrations (#2553) 2024-04-03 09:27:14 +02:00
Quentin Gliech
576d8bb791 Move the cross signing reset UI in its own page 2024-02-17 09:48:53 +01:00
Quentin Gliech
234ab49f5e Move the /link/:device endpoint to /device/:device 
It prevents browsers to try to autocomplete /link to /link/:device
 2024-02-02 18:01:51 +01:00
Quentin Gliech
f866310d7e Implement the device consent logic 2024-02-02 18:01:51 +01:00
Quentin Gliech
fc78e7bf7e Implement the device code authorisation request 2024-02-02 18:01:51 +01:00
Quentin Gliech
d7b2414792 Setup the device link form page 2024-02-02 18:01:51 +01:00
Quentin Gliech
afd10b62a3 Implement account management discovery as per MSC2965 2023-12-05 17:40:36 +01:00
Quentin Gliech
a7ff6b00aa Enable clippy lints on a workspace level 
This enables a lot more lints than before in some crates, so this fixed a lot of warnings as well.
 2023-12-05 17:20:42 +01:00
Quentin Gliech
253495e8bd Upgrade clippy lints to 1.74.0 & fix warnings 2023-12-05 17:20:42 +01:00
Quentin Gliech
b96d95792d Add instance privacy policy, TOS and imprint, and loads of design cleanups 2023-10-30 15:55:15 +01:00
Quentin Gliech
fd4481713b Allow running the authentication service on a different base path 2023-10-06 14:07:55 +02:00
Quentin Gliech
49a4ff7899 router: fix a test in the url builder because a field changed name 2023-10-05 19:29:23 +02:00
Quentin Gliech
0d69e42021 templates: translate a lot more stuff 2023-10-05 19:29:23 +02:00
Quentin Gliech
20d7770011 Add a way to discover the GraphQL endpoint in the .well-known/openid-configuration 
This adds a `org.matrix.matrix-authentication-service.graphql_endpoint` key to it
 2023-10-05 16:43:13 +02:00
Kerry
5a8f05e518 Implement MSC2965 action parameter (#1673) 
* redirect session_end action to session detail

* fix react key warning in oauth session detail

* move Route type to /routing

* test getRouteActionRedirection

* comment

* frontend: Split the routing-related stuff in multiple files under routing/

* frontend: Cover all the redirections defined by MSC2965

* frontend: fix test

* Make the backend keep query parameters through login to the /account/ interface

* Fix frontend tests & clippy lints

---------

Co-authored-by: Quentin Gliech <quenting@element.io>
 2023-09-01 09:42:50 +00:00
Quentin Gliech
f81899b72c Allow a trailing slash on the compat SSO route 2023-08-08 19:23:07 +02:00
Quentin Gliech
82afe9471c Better frontend assets handling and move the react app to /account/ (#1324) 
This makes the Vite assets handling better, namely:

 - make it possible to include any vite assets in the templates
 - include the right `<link rel="preload">` tags for assets
 - include Subresource Integrity hashes
 - pre-compress assets and remove on-the-fly compression by the Rust server
 - build the CSS used by templates through Vite

It also moves the React app from /app/ to /account/, and remove some of the old SSR account screens.
 2023-07-06 15:30:26 +02:00
Quentin Gliech
439e51ca80 Allow setting a different issuer from the public base URL 2023-06-27 12:53:15 +02:00
Quentin Gliech
36cae34f4c Support for token revocation 2023-02-21 12:06:30 +01:00
Quentin Gliech
79d72b9123 ci: Update clippy to 1.66 and fix new warnings 2022-12-16 18:16:18 +01:00
Quentin Gliech
1674996a6a router: fix tests 2022-12-08 15:29:15 +01:00
Quentin Gliech
84f86c7230 template: more cleanups 2022-12-08 15:29:15 +01:00
Quentin Gliech
944f44792e Save the post auth action during upstream OAuth login 2022-12-05 19:39:51 +01:00
Quentin Gliech
d1ce3628a6 Tidy up upstream linking templates 2022-12-05 19:39:51 +01:00
Quentin Gliech
19f5e2d417 WIP: handle account linking 2022-12-05 19:39:51 +01:00
Quentin Gliech
28704ab473 WIP: upstream OIDC provider support 2022-12-05 19:39:51 +01:00