letro/letro-authentication-service
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity
NaN Commits 2 Branches 1 Tag
17b10a5232e404166ccadeb184c251bf1e1e1254
Commit Graph

134 Commits

Author SHA1 Message Date
Quentin Gliech
17b10a5232 admin: check password complexity in password set API 2024-08-07 15:10:19 +02:00
Quentin Gliech
720122e1d8 admin: set password API 2024-08-07 15:10:19 +02:00
Quentin Gliech
19711c2b31 admin: lock user API 2024-08-06 13:43:13 +02:00
Quentin Gliech
65a007e846 admin: user unlock API 2024-08-06 13:31:28 +02:00
Quentin Gliech
fae48cd43e admin: user deactivation API 2024-08-06 11:48:19 +02:00
Quentin Gliech
99394694e4 admin: add operation ID on user add operation 2024-08-01 16:23:08 +02:00
Quentin Gliech
ee3cb61e0f Rename the payload struct to appease clippy 2024-08-01 16:23:08 +02:00
Quentin Gliech
1fa154b2d9 admin: add API to create users 2024-08-01 16:23:08 +02:00
Quentin Gliech
9d75679595 admin: add operation IDs on user operations & other improvements 
This also documents better the user list operation parameters
 2024-08-01 15:17:14 +02:00
Quentin Gliech
7872337305 Tweak the schema generation and use a common definition for ULIDs 2024-08-01 15:17:14 +02:00
Quentin Gliech
8ae8fe1223 Tweak the schema to use summary instead of description and add tags 2024-08-01 15:17:14 +02:00
Quentin Gliech
2a2f37725d Host a Swagger UI both in the static documentation and by the server 2024-08-01 15:17:14 +02:00
Quentin Gliech
8b8ee86d8b Document the new account-management options 2024-08-01 14:50:21 +02:00
Quentin Gliech
a8cf8c519a Move the account-related options out of experimental 2024-08-01 14:50:21 +02:00
Quentin Gliech
51efe3be98 admin: add APIs to list and get users 2024-07-26 11:36:55 +02:00
Quentin Gliech
cc8a16f2d9 doc: auto-generate the API schema in the documentation 2024-07-26 11:36:55 +02:00
Quentin Gliech
c8b4a17a55 config: allow serving the admin API routes 2024-07-26 11:36:55 +02:00
Josh Simmons
c8037cd284 update contributing docs with DCO 2024-07-25 10:01:53 +02:00
reivilibre
a4891fa9ef Backend work to support minimum password complexity (#2965) 
* config: Add minimum password complexity option

* PasswordManager: add function for checking if complexity is sufficient

* Enforce password complexity on registration, change and recovery

* cli: Use exit code 1 for weak passwords

This seems preferable to exit code 0, but ideally we should choose one
and document it.

* Expose minimum password complexity score over GraphQL
 2024-07-11 10:17:39 +01:00
Christian Tramnitz
b52342cee5 Fix RFC1918 network in default proxy configuration (#2908) 2024-07-05 08:22:39 +00:00
Quentin Gliech
5448515388 Document the new SSL options 2024-07-05 09:54:18 +02:00
Quentin Gliech
65c416ff2e New config options to set the database certificates 2024-07-05 09:54:18 +02:00
Quentin Gliech
041c74e7b2 Gate account recovery behing a configuration flag 2024-06-28 15:59:21 +02:00
Quentin Gliech
eb83bc4b71 Document the CAPTCHA configuration 2024-05-15 09:38:10 +02:00
Quentin Gliech
5e1e27f7ea hCaptcha support 2024-05-15 09:38:10 +02:00
Quentin Gliech
608daa9ac2 Cloudflare Turnstile support 2024-05-15 09:38:10 +02:00
Quentin Gliech
764069b6bc Render reCAPTCHA challenge on the registration form 2024-05-15 09:38:10 +02:00
Quentin Gliech
431ba0c429 Add a few words on what MAS is at the beginning of the documentation 2024-05-14 10:44:41 +02:00
Quentin Gliech
1a33716f6b Apply typos corrections from review 
Co-authored-by: Will Lewis <1543626+wrjlewis@users.noreply.github.com>
 2024-05-14 10:44:41 +02:00
Quentin Gliech
6df839b8c8 Clarify what authz as a user means for the urn:mas:graphql:* scope 2024-05-14 10:44:41 +02:00
Quentin Gliech
6993b1db14 Add missing documentation for some configuration parameters 2024-05-14 10:44:41 +02:00
Quentin Gliech
764d301a03 Rework the docuemntation overview 2024-05-14 10:44:41 +02:00
Quentin Gliech
99fddddb54 Document part of the GraphQL API and the scopes used by MAS 2024-05-14 10:44:41 +02:00
Quentin Gliech
8576dfa3ee Explain what the different grants and sessions are 2024-05-14 10:44:41 +02:00
Quentin Gliech
e83f0ced4b Write about the policy engine 2024-05-14 10:44:41 +02:00
Quentin Gliech
34a7d185a3 docs: Rename the "usage" section to "reference" 2024-05-14 10:44:41 +02:00
Quentin Gliech
3e450b50f0 Fix recently added Clippy lints 
This also ignores the clippy::blocks_in_conditions lint in two crates,
until tracing gets fixed: https://github.com/tokio-rs/tracing/issues/2876
 2024-05-07 07:32:02 +02:00
Quentin Gliech
9c22a39c0e Introduce config to restrict user capabilities 2024-04-30 13:33:47 +02:00
Quentin Gliech
f82ad8c0e6 Soft-delete upstream OAuth 2.0 providers on config sync 2024-04-03 09:51:22 +02:00
Quentin Gliech
2d9157986e Allow disabling registrations (#2553) 2024-04-03 09:27:14 +02:00
Quentin Gliech
4674db94f4 Simplify ConfigurationSection trait & skip default values when serializing 
This removes the `test` and `generate` methods from the
`ConfigurationSection` trait, as they did not really had a reason to
exist in the trait itself.
 2024-03-22 13:33:09 +01:00
Quentin Gliech
ff1267eefd Flatten the upstream_oauth2 config section 2024-03-22 13:33:09 +01:00
Quentin Gliech
5eadd1ffbd Flatten the telemetry config section 2024-03-22 13:33:09 +01:00
Quentin Gliech
4fd2bc8000 Flatten the secrets config section 2024-03-22 13:33:09 +01:00
Quentin Gliech
8d41352a1b Clean up the default policy config data 2024-03-22 13:33:09 +01:00
Quentin Gliech
0e7e2e7089 Flatten the passwords config section 2024-03-22 13:33:09 +01:00
Quentin Gliech
0f0dff8c1a Flatten the http config 
Also properly remove the `spa` resource
 2024-03-22 13:33:09 +01:00
Quentin Gliech
fedf41fe38 Flatten the email config 2024-03-22 13:33:09 +01:00
Quentin Gliech
8eff88e9e8 Flatten the database config 2024-03-22 13:33:09 +01:00
Quentin Gliech
f61bdbba72 Flatten the clients config 2024-03-22 13:33:09 +01:00