letro/letro-authentication-service
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity
NaN Commits 2 Branches 1 Tag
0e465f4904e302d9deef588fe81e461351a66bf1
Commit Graph

153 Commits

Author SHA1 Message Date
Quentin Gliech
0e465f4904 Remove the contacts requirement from the client registration policy 2024-09-20 20:39:04 +02:00
Quentin Gliech
9e1cd0cdec Move the remaining mentions of matrix-org to element-hq 2024-09-10 14:28:55 +02:00
Quentin Gliech
c0f98e3de7 Move the docker image to ghcr.io/element-hq/matrix-authentication-service 2024-09-10 14:28:55 +02:00
Quentin Gliech
d1dcac46d7 Rename @matrix-org/syn2mas to @vector-im/syn2mas 2024-09-10 14:28:55 +02:00
Quentin Gliech
72d3f4039a Fix the email policy documentation indentation 2024-09-03 17:47:43 +02:00
Marcel
05fa8b3ee0 Apply suggestions on wording 2024-09-03 17:33:10 +02:00
Marcel
74796e6e72 Document policy settings for changing the policy wasm file 2024-09-03 17:33:10 +02:00
Marcel
f47473ccff Document the email policy in the reference 2024-08-30 13:57:31 +02:00
Quentin Gliech
862e34e79e Small documentation fixes 
- Removes mentions of the `mas-cli templates save` command
 - Removes the old `experimental` flags
 - Removes the old `policy.data.passwords` configs
 - Document the `policy.data.client_registration` flags
 - Remove references to the pre-built macOS binaries
 - Explains how to get syn2mas
 - State that you need to prepare the database before importing data
 - Clean up the reverse proxy documentation
 - Clarify that you don't need to provede templates/policy/assets
   manually when running the docker image
 2024-08-19 13:53:43 +02:00
Quentin Gliech
5c9b475674 admin: rename the can_request_admin field to admin 2024-08-07 20:13:43 +02:00
Quentin Gliech
4c347939fa admin: set can_request_admin API 2024-08-07 20:13:43 +02:00
reivilibre
ca05566e82 Add rate-limiting for account recovery and registration (#3093) 
* Add rate-limiting for account recovery and registration

* Rename login ratelimiter `per_address` to `per_ip` for consistency

Co-authored-by: Quentin Gliech <quenting@element.io>
 2024-08-07 17:57:36 +00:00
reivilibre
8f0d7800ff Add configuration for rate-limiting of logins, replacing hardcoded limits (#3090) 2024-08-07 18:36:02 +01:00
Quentin Gliech
58b673d54d Disallow OAuth 2.0 use of the GraphQL API by default 2024-08-07 18:09:51 +02:00
Quentin Gliech
cc22a3d9ac Document the admin API (#3038) 
Co-authored-by: Hugh Nimmo-Smith <hughns@matrix.org>
 2024-08-07 17:41:46 +02:00
Quentin Gliech
b5c96c6fd9 admin: get OAuth 2.0 session API 2024-08-07 17:41:18 +02:00
Quentin Gliech
68b7a58429 admin: list OAuth 2.0 sessions API 2024-08-07 17:41:18 +02:00
Quentin Gliech
52982d64a6 admin: setup base for oauth2 sessions endpoints 2024-08-07 17:41:18 +02:00
Quentin Gliech
c8d868850c admin: better error when password auth is disabled 2024-08-07 15:10:19 +02:00
Quentin Gliech
17b10a5232 admin: check password complexity in password set API 2024-08-07 15:10:19 +02:00
Quentin Gliech
720122e1d8 admin: set password API 2024-08-07 15:10:19 +02:00
Quentin Gliech
19711c2b31 admin: lock user API 2024-08-06 13:43:13 +02:00
Quentin Gliech
65a007e846 admin: user unlock API 2024-08-06 13:31:28 +02:00
Quentin Gliech
fae48cd43e admin: user deactivation API 2024-08-06 11:48:19 +02:00
Quentin Gliech
99394694e4 admin: add operation ID on user add operation 2024-08-01 16:23:08 +02:00
Quentin Gliech
ee3cb61e0f Rename the payload struct to appease clippy 2024-08-01 16:23:08 +02:00
Quentin Gliech
1fa154b2d9 admin: add API to create users 2024-08-01 16:23:08 +02:00
Quentin Gliech
9d75679595 admin: add operation IDs on user operations & other improvements 
This also documents better the user list operation parameters
 2024-08-01 15:17:14 +02:00
Quentin Gliech
7872337305 Tweak the schema generation and use a common definition for ULIDs 2024-08-01 15:17:14 +02:00
Quentin Gliech
8ae8fe1223 Tweak the schema to use summary instead of description and add tags 2024-08-01 15:17:14 +02:00
Quentin Gliech
2a2f37725d Host a Swagger UI both in the static documentation and by the server 2024-08-01 15:17:14 +02:00
Quentin Gliech
8b8ee86d8b Document the new account-management options 2024-08-01 14:50:21 +02:00
Quentin Gliech
a8cf8c519a Move the account-related options out of experimental 2024-08-01 14:50:21 +02:00
Quentin Gliech
51efe3be98 admin: add APIs to list and get users 2024-07-26 11:36:55 +02:00
Quentin Gliech
cc8a16f2d9 doc: auto-generate the API schema in the documentation 2024-07-26 11:36:55 +02:00
Quentin Gliech
c8b4a17a55 config: allow serving the admin API routes 2024-07-26 11:36:55 +02:00
Josh Simmons
c8037cd284 update contributing docs with DCO 2024-07-25 10:01:53 +02:00
reivilibre
a4891fa9ef Backend work to support minimum password complexity (#2965) 
* config: Add minimum password complexity option

* PasswordManager: add function for checking if complexity is sufficient

* Enforce password complexity on registration, change and recovery

* cli: Use exit code 1 for weak passwords

This seems preferable to exit code 0, but ideally we should choose one
and document it.

* Expose minimum password complexity score over GraphQL
 2024-07-11 10:17:39 +01:00
Christian Tramnitz
b52342cee5 Fix RFC1918 network in default proxy configuration (#2908) 2024-07-05 08:22:39 +00:00
Quentin Gliech
5448515388 Document the new SSL options 2024-07-05 09:54:18 +02:00
Quentin Gliech
65c416ff2e New config options to set the database certificates 2024-07-05 09:54:18 +02:00
Quentin Gliech
041c74e7b2 Gate account recovery behing a configuration flag 2024-06-28 15:59:21 +02:00
Quentin Gliech
eb83bc4b71 Document the CAPTCHA configuration 2024-05-15 09:38:10 +02:00
Quentin Gliech
5e1e27f7ea hCaptcha support 2024-05-15 09:38:10 +02:00
Quentin Gliech
608daa9ac2 Cloudflare Turnstile support 2024-05-15 09:38:10 +02:00
Quentin Gliech
764069b6bc Render reCAPTCHA challenge on the registration form 2024-05-15 09:38:10 +02:00
Quentin Gliech
431ba0c429 Add a few words on what MAS is at the beginning of the documentation 2024-05-14 10:44:41 +02:00
Quentin Gliech
1a33716f6b Apply typos corrections from review 
Co-authored-by: Will Lewis <1543626+wrjlewis@users.noreply.github.com>
 2024-05-14 10:44:41 +02:00
Quentin Gliech
6df839b8c8 Clarify what authz as a user means for the urn:mas:graphql:* scope 2024-05-14 10:44:41 +02:00
Quentin Gliech
6993b1db14 Add missing documentation for some configuration parameters 2024-05-14 10:44:41 +02:00