letro/letro-authentication-service
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity
NaN Commits 2 Branches 1 Tag
65e46a2fc28787cec41ce3c1f379ed76bf2cdfdf
Commit Graph

52 Commits

Author SHA1 Message Date
Kai A. Hiller
770016ebf7 Merge branch 'main' into keys_dir 2025-11-18 18:12:14 +01:00
networkException
23322cfc28 Add upstream_oauth2.providers.[].client_secret_file config option 
This patch factors out the previously introduced config
wrapper for client secrets to also use it for upstream oauth
providers.

See dd040220db
 2025-11-08 16:10:19 +01:00
Quentin Gliech
28e573b400 Add a configuration option to make email optional for password registration 2025-10-07 17:28:01 +02:00
Kai A. Hiller
db8555a589 Add secrets.keys_dir config option 2025-09-08 16:02:38 +02:00
Quentin Gliech
bdb44498b8 Automatically derive the kid from the key fingerprint if missing (#4876) 2025-09-02 17:04:35 +02:00
Patrick Maier
e4e2d266b1 Add missing branding config to docs (#4577) 2025-08-15 12:22:07 +02:00
Kai A. Hiller
968968bdbb Auto-generate kid if not given 2025-08-08 11:38:45 +02:00
Quentin Gliech
f610994a0f Merge branch 'main' into secret_file 2025-08-05 11:17:39 +02:00
Kai A. Hiller
dd040220db Add clients.[].client_secret_file config option 2025-08-04 19:32:39 +02:00
Kai A. Hiller
357420a56f Add matrix.secret_file config option 2025-07-29 19:46:07 +02:00
Quentin Gliech
0c32681e26 docs: Remove requirement for arbitrary KIDs (#4807) 2025-07-23 12:38:47 +02:00
Kai A. Hiller
d066259a31 KIDs must be stable across restarts 2025-07-23 12:31:38 +02:00
Kai A. Hiller
6612a90e4b Fix wording 2025-07-23 09:43:43 +02:00
Kai A. Hiller
0fb4a195a2 Adapt markdown formatting 2025-07-23 09:39:52 +02:00
Kai A. Hiller
c16384d2f3 docs: Remove requirement for arbitrary KIDs 2025-07-21 18:37:03 +02:00
mcalinghee
1886e73e40 allow importing existing users when the localpart matches in upstream OAuth 2.0 logins 2025-07-21 09:52:24 +02:00
Quentin Gliech
b2ca7d5f9e Add documentation for backchannel logout 2025-07-04 16:27:10 +02:00
Quentin Gliech
186b5cbdbe Add secrets.encryption_file config option (#4617) 2025-06-05 15:14:55 +02:00
Kai A. Hiller
4a8dfae7b9 Update encryption secret warning in docs 2025-06-04 14:50:54 +02:00
Kai A. Hiller
6db309f796 Document secrets.encryption_file 
Signed-off-by: Kai A. Hiller <git@kaialexhiller.de>
 2025-06-04 11:42:51 +02:00
Quentin Gliech
dcef4bcf3f Add config flag to require registration tokens for password registrations 2025-06-03 17:42:53 +02:00
Jason Robinson
8638538163 Add missing branding config to docs 
Mostly copied from the code, with some additions from https://github.com/matrix-org/matrix-authentication-service/pull/2325
 2025-05-20 15:21:13 +03:00
Doug
5a93bf69ec Update upstream_oauth2.providers docs. 2025-05-07 11:14:10 +01:00
Quentin Gliech
db5c39e11d Fix headings in config doc (#4419) 2025-04-23 14:11:33 +02:00
Hugh Nimmo-Smith
86ff994fb3 Remove reference to unsupported aws_ses email transport 2025-04-22 13:21:07 +01:00
Kai A. Hiller
e1631f6dfd Fix headings in config doc 
Signed-off-by: Kai A. Hiller <git@kaialexhiller.de>
 2025-04-16 15:05:36 +02:00
mcalinghee
2fe4752aa4 add login by email + feature flag 2025-04-10 17:57:58 +02:00
Quentin Gliech
25fd400ffb Change the default value of account_deactivation_allowed to true. 2025-03-13 12:04:57 +01:00
Quentin Gliech
3e77684a8b Add the new configuration option to the configuration reference 2025-03-12 16:02:52 +01:00
Quentin Gliech
41349c1a96 Document the new username ban/allow policy 2025-03-03 10:35:44 +01:00
Quentin Gliech
993342ef58 Match suffixes and prefixes in string constraints 2025-02-17 16:40:10 +01:00
Quentin Gliech
6a373657cb Update the policy documentation 2025-02-17 15:43:25 +01:00
Quentin Gliech
9ce746f975 Add documentation for session timeout configuration 2025-02-12 17:34:23 +01:00
Quentin Gliech
e58f0ad5be Document the response_mode parameter 2025-01-06 11:59:53 +01:00
Quentin Gliech
6756c6ebaf Document the new usptream OAuth 2.0 configuration options 2025-01-06 11:59:53 +01:00
reivilibre
05e90b7c91 Add documentation against using database transaction poolers (#3617) 2024-12-05 11:28:22 +00:00
Phan Trung Thanh
3193d6a8c0 Update configuration.md to include a missing parameter 2024-11-26 13:17:52 +01:00
Quentin Gliech
0e465f4904 Remove the contacts requirement from the client registration policy 2024-09-20 20:39:04 +02:00
Quentin Gliech
72d3f4039a Fix the email policy documentation indentation 2024-09-03 17:47:43 +02:00
Marcel
05fa8b3ee0 Apply suggestions on wording 2024-09-03 17:33:10 +02:00
Marcel
74796e6e72 Document policy settings for changing the policy wasm file 2024-09-03 17:33:10 +02:00
Marcel
f47473ccff Document the email policy in the reference 2024-08-30 13:57:31 +02:00
Quentin Gliech
862e34e79e Small documentation fixes 
- Removes mentions of the `mas-cli templates save` command
 - Removes the old `experimental` flags
 - Removes the old `policy.data.passwords` configs
 - Document the `policy.data.client_registration` flags
 - Remove references to the pre-built macOS binaries
 - Explains how to get syn2mas
 - State that you need to prepare the database before importing data
 - Clean up the reverse proxy documentation
 - Clarify that you don't need to provede templates/policy/assets
   manually when running the docker image
 2024-08-19 13:53:43 +02:00
reivilibre
ca05566e82 Add rate-limiting for account recovery and registration (#3093) 
* Add rate-limiting for account recovery and registration

* Rename login ratelimiter `per_address` to `per_ip` for consistency

Co-authored-by: Quentin Gliech <quenting@element.io>
 2024-08-07 17:57:36 +00:00
reivilibre
8f0d7800ff Add configuration for rate-limiting of logins, replacing hardcoded limits (#3090) 2024-08-07 18:36:02 +01:00
Quentin Gliech
cc22a3d9ac Document the admin API (#3038) 
Co-authored-by: Hugh Nimmo-Smith <hughns@matrix.org>
 2024-08-07 17:41:46 +02:00
Quentin Gliech
8b8ee86d8b Document the new account-management options 2024-08-01 14:50:21 +02:00
Quentin Gliech
5448515388 Document the new SSL options 2024-07-05 09:54:18 +02:00
Quentin Gliech
eb83bc4b71 Document the CAPTCHA configuration 2024-05-15 09:38:10 +02:00
Quentin Gliech
1a33716f6b Apply typos corrections from review 
Co-authored-by: Will Lewis <1543626+wrjlewis@users.noreply.github.com>
 2024-05-14 10:44:41 +02:00