letro/letro-authentication-service
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity
NaN Commits 2 Branches 1 Tag
6421d9d1f516aac78acb6b2b1ace6a486811b4f5
Commit Graph

288 Commits

Author SHA1 Message Date
Quentin Gliech
9c515f0e0e Enable operation deep-linking in the admin API docs 2025-02-11 19:06:19 +01:00
Quentin Gliech
a398d8d579 Fix the user session admin API docs 2025-02-11 17:09:33 +01:00
Quentin Gliech
487d1633e2 Admin API to list and get user sessions (#4004) 
Similar to #4002, this adds an admin API to list and get user (browser
cookies) sessions
 2025-02-11 16:38:21 +01:00
Quentin Gliech
c48e063d3a Admin API to list and get user sessions 2025-02-11 14:24:16 +01:00
Quentin Gliech
bf900e7e5a Fix the definition of the set-password success response in the OpenAPI spec 2025-02-11 13:54:15 +01:00
Quentin Gliech
38daf613af Admin API to list and get compatibility sessions 2025-02-11 12:01:54 +01:00
Quentin Gliech
cbd3d8c072 Admin API to list and get user emails (#4001) 
This adds endpoints to get and list user emails.

I chose to not scope them to users, so listing the emails for a user
means listing emails with a user filter
 2025-02-10 17:24:46 +01:00
Quentin Gliech
b366e5d3cf Update links to policy files (#3982) 2025-02-10 17:23:45 +01:00
Quentin Gliech
845f0c274b Admin API to list and get user emails 2025-02-10 17:13:55 +01:00
Strac Consulting Engineers Pty Ltd
d13a101d8c Update README.md 2025-02-09 13:07:31 +11:00
Will Lewis
fff4549494 Add reference to worker page 2025-02-07 13:57:28 +00:00
Will Lewis
b6be29bece Add documentation to account for all cli mas options and standardise format 2025-02-07 13:38:36 +00:00
Travis Ralston
b5981e2bc3 Update links to policy files 2025-02-06 15:41:55 -07:00
Quentin Gliech
7f72ba51f9 Merge pull request #3790 from Stogas/patch-1 
Add 'introspection_endpoint' to homeserver config example
 2025-01-28 10:10:27 +01:00
Quentin Gliech
b54598ed6c Clarify why one would override the introspection_endpoint 2025-01-28 10:02:06 +01:00
reivilibre
163b9e8849 Add pre-migration checks to syn2mas (#3805) 
This matches or exceeds `advisor.mts` from the old tool.

Co-authored-by: Quentin Gliech <quenting@element.io>
 2025-01-27 18:01:46 +00:00
Quentin Gliech
ea6b80c5ac Rate-limit email authentications 2025-01-23 12:09:26 +01:00
Quentin Gliech
9db14f6743 Rip out the email verification codes 
This considers all user_emails as confirmed, and removes the verification code.
It will be replaced by a new email authentication code flow
 2025-01-14 15:46:45 +01:00
Ovidijus Balkauskas
f197567a03 Add 'introspection_endpoint' to homeserver config example 
This value was previously undocumented, but helpful in our case to access MAS within the same K8s cluster

Signed-off-by: Ovidijus Balkauskas <570945@gmail.com>
 2025-01-13 14:10:34 +02:00
Quentin Gliech
e58f0ad5be Document the response_mode parameter 2025-01-06 11:59:53 +01:00
Quentin Gliech
6756c6ebaf Document the new usptream OAuth 2.0 configuration options 2025-01-06 11:59:53 +01:00
ChurchOfTheSubgenius
4095dd0a64 Include example SSO config for Rauthy. (#3725) 
Co-authored-by: Quentin Gliech <quenting@element.io>
 2024-12-19 15:26:02 +00:00
Quentin Gliech
f563daf822 Make the issue optional on upstream OAuth 2.0 providers 2024-12-17 13:40:34 +01:00
Mathieu Velten
75ee9a1e58 Add id_token_signed_response_alg and userinfo_signed_response_alg (#3664) 2024-12-17 11:54:16 +01:00
reivilibre
05e90b7c91 Add documentation against using database transaction poolers (#3617) 2024-12-05 11:28:22 +00:00
Quentin Gliech
2903ff5e7a Allow setting an explicit upstream account name (#3600) 2024-11-29 12:30:18 +01:00
Mathieu Velten
f832666a86 Add fetch_userinfo to upstream SSO provider (#3363) 2024-11-26 15:01:03 +00:00
Phan Trung Thanh
3193d6a8c0 Update configuration.md to include a missing parameter 2024-11-26 13:17:52 +01:00
Quentin Gliech
4852649268 Document how to set up Sign-in with Apple 2024-11-22 08:48:00 +01:00
Quentin Gliech
ec28c30e3c Allow setting the response_mode on upstream OAuth 2.0 providers 2024-11-22 08:48:00 +01:00
Quentin Gliech
dddd9fe998 Support Sign in with Apple 2024-11-22 08:48:00 +01:00
hatch01
8e2e3af418 fix sso exemple config for authelia 2024-11-18 08:47:38 +01:00
Tonkku
92a3b40835 Add note about password schemes to migration docs 2024-11-18 08:46:51 +01:00
Thilo-Alexander Ginkel
eb2529d772 Add SSO sample configuration for Authelia 
Signed-off-by: Thilo-Alexander Ginkel <tg@tgbyte.de>
 2024-10-25 09:00:45 +02:00
morguldir
33fe484311 Fix link to setup docs for the mdbook 
https://rust-lang.github.io/mdBook/format/markdown.html?highlight=readm#links

"Links to README.md will be converted to index.html. This is done since some services like GitHub render README files automatically, but web servers typically expect the root file to be called index.html."
 2024-10-01 14:39:52 +02:00
Quentin Gliech
0e465f4904 Remove the contacts requirement from the client registration policy 2024-09-20 20:39:04 +02:00
Quentin Gliech
9e1cd0cdec Move the remaining mentions of matrix-org to element-hq 2024-09-10 14:28:55 +02:00
Quentin Gliech
c0f98e3de7 Move the docker image to ghcr.io/element-hq/matrix-authentication-service 2024-09-10 14:28:55 +02:00
Quentin Gliech
d1dcac46d7 Rename @matrix-org/syn2mas to @vector-im/syn2mas 2024-09-10 14:28:55 +02:00
Quentin Gliech
72d3f4039a Fix the email policy documentation indentation 2024-09-03 17:47:43 +02:00
Marcel
05fa8b3ee0 Apply suggestions on wording 2024-09-03 17:33:10 +02:00
Marcel
74796e6e72 Document policy settings for changing the policy wasm file 2024-09-03 17:33:10 +02:00
Marcel
f47473ccff Document the email policy in the reference 2024-08-30 13:57:31 +02:00
Quentin Gliech
862e34e79e Small documentation fixes 
- Removes mentions of the `mas-cli templates save` command
 - Removes the old `experimental` flags
 - Removes the old `policy.data.passwords` configs
 - Document the `policy.data.client_registration` flags
 - Remove references to the pre-built macOS binaries
 - Explains how to get syn2mas
 - State that you need to prepare the database before importing data
 - Clean up the reverse proxy documentation
 - Clarify that you don't need to provede templates/policy/assets
   manually when running the docker image
 2024-08-19 13:53:43 +02:00
Quentin Gliech
5c9b475674 admin: rename the can_request_admin field to admin 2024-08-07 20:13:43 +02:00
Quentin Gliech
4c347939fa admin: set can_request_admin API 2024-08-07 20:13:43 +02:00
reivilibre
ca05566e82 Add rate-limiting for account recovery and registration (#3093) 
* Add rate-limiting for account recovery and registration

* Rename login ratelimiter `per_address` to `per_ip` for consistency

Co-authored-by: Quentin Gliech <quenting@element.io>
 2024-08-07 17:57:36 +00:00
reivilibre
8f0d7800ff Add configuration for rate-limiting of logins, replacing hardcoded limits (#3090) 2024-08-07 18:36:02 +01:00
Quentin Gliech
58b673d54d Disallow OAuth 2.0 use of the GraphQL API by default 2024-08-07 18:09:51 +02:00
Quentin Gliech
cc22a3d9ac Document the admin API (#3038) 
Co-authored-by: Hugh Nimmo-Smith <hughns@matrix.org>
 2024-08-07 17:41:46 +02:00