letro/letro-authentication-service
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity
NaN Commits 2 Branches 1 Tag
37e5fc50153bed73226eee1052267d7ae287c961
Commit Graph

70 Commits

Author SHA1 Message Date
Quentin Gliech
44168aa628 Apply suggestions from code review 
Co-authored-by: Will Lewis <willl@element.io>
 2023-11-22 15:13:28 +01:00
Quentin Gliech
1afe103e18 Mention the configuration file reference in the SSO guide 2023-11-22 15:13:28 +01:00
Quentin Gliech
36a793b971 Make the claims_imports optional in the config 2023-11-22 15:13:28 +01:00
Quentin Gliech
537ceedb91 Document all the upstream oauth2 provider options 2023-11-22 15:13:28 +01:00
Quentin Gliech
636ec19b8b Document how upstream OAuth 2.0 providers should be setup 2023-11-22 15:13:28 +01:00
Quentin Gliech
b7f509532e Add upstream OAuth 2.0 providers name and branding 2023-11-20 17:23:02 +01:00
Quentin Gliech
6942fc4570 Allow endpoints and discovery mode override for upstream oauth2 providers 
This time, at the configuration and database level
 2023-11-17 16:18:39 +01:00
Quentin Gliech
097f314d8b Use minijinja templates to map OIDC claims to user attributes 2023-11-08 12:05:58 +01:00
Quentin Gliech
b96d95792d Add instance privacy policy, TOS and imprint, and loads of design cleanups 2023-10-30 15:55:15 +01:00
Quentin Gliech
e7744c6b50 Add placeholders in the documentation to make browsing the documentation source less confusing 
Fixes #1078
 2023-10-11 17:34:06 +02:00
Quentin Gliech
647e777cff Expand the documentation about the pre-built binaries (#1944) 2023-10-11 15:07:32 +00:00
Hugh Nimmo-Smith
35fc1c2e8a Fix README link again 2023-10-09 15:53:13 +02:00
Hugh Nimmo-Smith
f9e4354fd2 Try fixing internal docs link to README.md 2023-10-09 15:53:13 +02:00
Hugh Nimmo-Smith
49efe97dd4 Docs fixes 2023-10-09 15:53:13 +02:00
Hugh Nimmo-Smith
f1de552807 Migration mode + docs 2023-10-09 15:53:13 +02:00
Quentin Gliech
fd4481713b Allow running the authentication service on a different base path 2023-10-06 14:07:55 +02:00
Quentin Gliech
ad8cc6be9e templates: add translations function 2023-10-05 19:29:23 +02:00
Quentin Gliech
baaa725fcd Infer client IP address from the peer address and the X-Forwarded-Proxy header 2023-09-20 20:24:30 +02:00
Hugh Nimmo-Smith
c073d9a2f7 Typo 2023-09-13 14:57:01 +02:00
Hugh Nimmo-Smith
91e3b0151b Migration guide 2023-09-13 14:57:01 +02:00
Hugh Nimmo-Smith
488ef41879 Draft scope and goals 2023-09-13 14:57:01 +02:00
Hugh Nimmo-Smith
b6bf0d2778 Learn about MAS 2023-09-13 14:57:01 +02:00
Hugh Nimmo-Smith
4ae96172c1 Sections 2023-09-13 14:57:01 +02:00
Hugh Nimmo-Smith
fe983a1a6c Move getting started to contributing guide 2023-09-13 14:57:01 +02:00
Hugh Nimmo-Smith
367d85036f Contributing placeholder 2023-09-13 14:57:01 +02:00
Quentin Gliech
00a4508d87 Rename the 'hack' configuration section to 'experimental' 2023-08-31 18:05:00 +02:00
Quentin Gliech
8d0cf9fdbf Make the access tokens TTL configurable 2023-08-31 18:05:00 +02:00
Quentin Gliech
80b3398424 Make the email verification state more configurable on upstream OAuth 2.0 registration 
This also marks the email as primary
 2023-08-31 14:20:06 +02:00
Quentin Gliech
86d40b0345 Make sure we validate passwords & emails by the policy at all stages 
Also refactors the way we get the policy engines in requests
 2023-08-30 19:39:39 +02:00
David Robertson
d802c1c001 Tweak phrasing 2023-08-23 17:31:31 +02:00
David Robertson
dd03a131c8 Explain how to run mas-cli with docker image 2023-08-23 17:31:31 +02:00
Quentin Gliech
a6dc094f09 Move some common dependencies on the workspace level 
Also deprecates the AWS SESv2 transport for emails
 2023-08-14 13:00:01 +02:00
Quentin Gliech
ea00250137 docs: expand the setup documentation and configuration file reference 2023-07-28 17:13:07 +02:00
Quentin Gliech
b0e16cc374 docs: greatly improve the setup documentation (WIP) 2023-07-28 17:13:07 +02:00
Dirk Klimpel
5f6c608567 Apply suggestions from code review 
Co-authored-by: Quentin Gliech <quenting@element.io>
 2023-07-24 15:03:28 +02:00
Dirk Klimpel
d55e1bfe34 make database migrations clearer 2023-07-24 15:03:28 +02:00
Dirk Klimpel
8063aaf2b7 require postgres 13+ 2023-07-24 15:03:28 +02:00
dklimpel
cede3eb58c update installation documentation 2023-07-24 15:03:28 +02:00
Quentin Gliech
82afe9471c Better frontend assets handling and move the react app to /account/ (#1324) 
This makes the Vite assets handling better, namely:

 - make it possible to include any vite assets in the templates
 - include the right `<link rel="preload">` tags for assets
 - include Subresource Integrity hashes
 - pre-compress assets and remove on-the-fly compression by the Rust server
 - build the CSS used by templates through Vite

It also moves the React app from /app/ to /account/, and remove some of the old SSR account screens.
 2023-07-06 15:30:26 +02:00
Quentin Gliech
439e51ca80 Allow setting a different issuer from the public base URL 2023-06-27 12:53:15 +02:00
Quentin Gliech
086c2c8a8e CLI tool to sync the upstream IDPs with the config 2023-06-26 17:24:56 +02:00
Quentin Gliech
cef7efca8c Define upstream OAuth providers in the config 
And adds CLI tool to sync them with the database (WIP)
 2023-06-26 17:24:56 +02:00
Quentin Gliech
f767130e1b Update the JSON schema 2023-06-14 12:53:48 +02:00
Quentin Gliech
5d14582686 Make password-based login optional 2023-05-23 17:02:02 +02:00
Quentin Gliech
cef2064e99 Lint 2023-04-14 10:22:22 +02:00
Quentin Gliech
9675b64313 Fix the default listener configuration 2023-03-14 12:14:06 +01:00
Quentin Gliech
3e2dd767d2 iana: manually implement JsonSchema/Display/FromStr/Serialize/Deserialize 
This removes the dependency on serde_with and parse-display, and makes
the serde & schemars dependencies optional
 2023-02-01 15:11:45 +01:00
Quentin Gliech
cb4bfe5b6b Log more errors and setup Sentry integration 2023-01-30 18:04:44 +01:00
Quentin Gliech
3b015b4419 docs: fix links to other docs 2023-01-27 15:54:19 +01:00
Quentin Gliech
bcea592c04 ci: Build Storybook docs in CI 2023-01-27 15:46:13 +01:00