letro/letro-authentication-service
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity
1,938 Commits 2 Branches 1 Tag
96fd597fef3e9dd514b44d8dcebffcdb00a6ffc0
Commit Graph

1938 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Kerry Archibald
23b81fd9c3 test clientavatar 2023-09-08 10:41:26 +02:00
Kerry Archibald
4ab1d15aca add client logo to session tile and detail 2023-09-08 10:41:26 +02:00
dependabot[bot]
eb9729b810 build(deps): bump actions/upload-artifact from 3.1.2 to 3.1.3 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.2 to 3.1.3.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v3.1.2...v3.1.3)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-07 11:52:39 +02:00
dependabot[bot]
21a518d3dd build(deps-dev): bump happy-dom from 10.11.2 to 11.0.1 in /frontend 
Bumps [happy-dom](https://github.com/capricorn86/happy-dom) from 10.11.2 to 11.0.1.
- [Release notes](https://github.com/capricorn86/happy-dom/releases)
- [Commits](https://github.com/capricorn86/happy-dom/compare/v10.11.2...v11.0.1)

---
updated-dependencies:
- dependency-name: happy-dom
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-07 11:52:27 +02:00
Kerry Archibald
be9355aeef add spinners to session end buttons 2023-09-07 10:13:51 +02:00
Quentin Gliech
cb6d89e308 Compoundify the consent screens 2023-09-06 15:58:54 +02:00
dependabot[bot]
edbc1769e0 build(deps-dev): bump @types/react-test-renderer in /frontend 
Bumps [@types/react-test-renderer](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react-test-renderer) from 18.0.0 to 18.0.1.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react-test-renderer)

---
updated-dependencies:
- dependency-name: "@types/react-test-renderer"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-06 10:08:35 +02:00
dependabot[bot]
15b0ea3c2a build(deps-dev): bump @types/node from 20.5.7 to 20.5.9 in /frontend 
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 20.5.7 to 20.5.9.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

---
updated-dependencies:
- dependency-name: "@types/node"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-06 09:42:36 +02:00
Quentin Gliech
2d27ca978d Test that a client_credentials token with the admin scope can add a user 2023-09-06 09:35:34 +02:00
Quentin Gliech
5ec7e7ef05 Suggestion from code review 
Co-authored-by: Hugh Nimmo-Smith <hughns@users.noreply.github.com>
 2023-09-06 09:35:34 +02:00
Quentin Gliech
b0c9e02b26 policy: only require redirect_uris for the authorization_code and implicit grants 2023-09-06 09:35:34 +02:00
Quentin Gliech
28b408878b Only allow using the refresh token grant if it was asked during the client registration 2023-09-06 09:35:34 +02:00
Quentin Gliech
af7066a60d oauth2-types: Only require redirect_uris & change the default response type for the auth code grant and implicit grant 2023-09-06 09:35:34 +02:00
Quentin Gliech
53c6e8a871 Advertise the client_credentials grant in the discovery document 2023-09-06 09:35:34 +02:00
Quentin Gliech
a53040b94b Implement the client credentials grant 2023-09-06 09:35:34 +02:00
Quentin Gliech
07d895e33a storage: add a method to create an OAuth 2.0 session for a client credentials grant 2023-09-06 09:35:34 +02:00
Quentin Gliech
03a4d56415 policy: prepare for the client credentials grant 2023-09-06 09:35:34 +02:00
Quentin Gliech
9ffbb5742a storage-pg: make the user_id in oauth2_sessions nullable 2023-09-06 09:35:34 +02:00
Quentin Gliech
43aa2db3d5 data-model: Make the user_id optional in the OAuth 2.0 sessions 2023-09-06 09:35:34 +02:00
dependabot[bot]
677b96b7e4 build(deps): bump the urql group in /frontend with 1 update 
Bumps the urql group in /frontend with 1 update: [@urql/exchange-graphcache](https://github.com/urql-graphql/urql/tree/HEAD/exchanges/graphcache).

- [Release notes](https://github.com/urql-graphql/urql/releases)
- [Changelog](https://github.com/urql-graphql/urql/blob/main/exchanges/graphcache/CHANGELOG.md)
- [Commits](https://github.com/urql-graphql/urql/commits/@urql/exchange-graphcache@6.3.3/exchanges/graphcache)

---
updated-dependencies:
- dependency-name: "@urql/exchange-graphcache"
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: urql
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-06 09:34:46 +02:00
dependabot[bot]
e70e601e37 build(deps): bump @vector-im/compound-web in /frontend 
Bumps [@vector-im/compound-web](https://github.com/vector-im/compound-web) from 0.2.17 to 0.2.18.
- [Release notes](https://github.com/vector-im/compound-web/releases)
- [Commits](https://github.com/vector-im/compound-web/compare/v0.2.17...v0.2.18)

---
updated-dependencies:
- dependency-name: "@vector-im/compound-web"
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-06 09:34:40 +02:00
dependabot[bot]
1c12314855 build(deps): bump argon2 from 0.5.1 to 0.5.2 
Bumps [argon2](https://github.com/RustCrypto/password-hashes) from 0.5.1 to 0.5.2.
- [Commits](https://github.com/RustCrypto/password-hashes/compare/argon2-v0.5.1...argon2-v0.5.2)

---
updated-dependencies:
- dependency-name: argon2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-06 09:34:17 +02:00
dependabot[bot]
7d2d94a511 build(deps): bump tera from 1.19.0 to 1.19.1 
Bumps [tera](https://github.com/Keats/tera) from 1.19.0 to 1.19.1.
- [Changelog](https://github.com/Keats/tera/blob/master/CHANGELOG.md)
- [Commits](https://github.com/Keats/tera/commits)

---
updated-dependencies:
- dependency-name: tera
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-06 09:34:09 +02:00
dependabot[bot]
7a7793ca5b build(deps): bump thiserror from 1.0.47 to 1.0.48 
Bumps [thiserror](https://github.com/dtolnay/thiserror) from 1.0.47 to 1.0.48.
- [Release notes](https://github.com/dtolnay/thiserror/releases)
- [Commits](https://github.com/dtolnay/thiserror/compare/1.0.47...1.0.48)

---
updated-dependencies:
- dependency-name: thiserror
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-06 09:34:01 +02:00
Quentin Gliech
8fd1d0149c frontend: also bump other storybook addons 2023-09-06 09:32:11 +02:00
dependabot[bot]
bfa3400658 build(deps-dev): bump the storybook group in /frontend with 8 updates 
Bumps the storybook group in /frontend with 8 updates:

| Package | From | To |
| --- | --- | --- |
| [@storybook/addon-actions](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/actions) | `7.3.2` | `7.4.0` |
| [@storybook/addon-backgrounds](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/backgrounds) | `7.3.2` | `7.4.0` |
| [@storybook/addon-controls](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/controls) | `7.3.2` | `7.4.0` |
| [@storybook/addon-docs](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/docs) | `7.3.2` | `7.4.0` |
| [@storybook/addon-essentials](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/essentials) | `7.3.2` | `7.4.0` |
| [@storybook/react](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/react) | `7.3.2` | `7.4.0` |
| [@storybook/react-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/react-vite) | `7.3.2` | `7.4.0` |
| [storybook](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/cli) | `7.3.2` | `7.4.0` |


Updates `@storybook/addon-actions` from 7.3.2 to 7.4.0
- [Release notes](https://github.com/storybookjs/storybook/releases)
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md)
- [Commits](https://github.com/storybookjs/storybook/commits/v7.4.0/code/addons/actions)

Updates `@storybook/addon-backgrounds` from 7.3.2 to 7.4.0
- [Release notes](https://github.com/storybookjs/storybook/releases)
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md)
- [Commits](https://github.com/storybookjs/storybook/commits/v7.4.0/code/addons/backgrounds)

Updates `@storybook/addon-controls` from 7.3.2 to 7.4.0
- [Release notes](https://github.com/storybookjs/storybook/releases)
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md)
- [Commits](https://github.com/storybookjs/storybook/commits/v7.4.0/code/addons/controls)

Updates `@storybook/addon-docs` from 7.3.2 to 7.4.0
- [Release notes](https://github.com/storybookjs/storybook/releases)
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md)
- [Commits](https://github.com/storybookjs/storybook/commits/v7.4.0/code/addons/docs)

Updates `@storybook/addon-essentials` from 7.3.2 to 7.4.0
- [Release notes](https://github.com/storybookjs/storybook/releases)
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md)
- [Commits](https://github.com/storybookjs/storybook/commits/v7.4.0/code/addons/essentials)

Updates `@storybook/react` from 7.3.2 to 7.4.0
- [Release notes](https://github.com/storybookjs/storybook/releases)
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md)
- [Commits](https://github.com/storybookjs/storybook/commits/v7.4.0/code/renderers/react)

Updates `@storybook/react-vite` from 7.3.2 to 7.4.0
- [Release notes](https://github.com/storybookjs/storybook/releases)
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md)
- [Commits](https://github.com/storybookjs/storybook/commits/v7.4.0/code/frameworks/react-vite)

Updates `storybook` from 7.3.2 to 7.4.0
- [Release notes](https://github.com/storybookjs/storybook/releases)
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md)
- [Commits](https://github.com/storybookjs/storybook/commits/v7.4.0/code/lib/cli)

---
updated-dependencies:
- dependency-name: "@storybook/addon-actions"
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: storybook
- dependency-name: "@storybook/addon-backgrounds"
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: storybook
- dependency-name: "@storybook/addon-controls"
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: storybook
- dependency-name: "@storybook/addon-docs"
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: storybook
- dependency-name: "@storybook/addon-essentials"
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: storybook
- dependency-name: "@storybook/react"
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: storybook
- dependency-name: "@storybook/react-vite"
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: storybook
- dependency-name: storybook
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: storybook
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-06 09:32:11 +02:00
Quentin Gliech
8d75280c28 Fix a grammar mistake on the consent page template 2023-09-06 09:29:36 +02:00
Quentin Gliech
28e61de6e3 graphql: expose the logo_uri in the OAuth 2.0 client 
Fixes #1705
 2023-09-06 09:28:47 +02:00
Kerry
35da1a3495 Parse browser session userAgent for session name (#1685) 
* parse browser session user agent and use for session name

* move current session badge to session component

* simplify browser session name
 2023-09-06 17:27:20 +12:00
dependabot[bot]
adfea4811a build(deps): bump actions/checkout from 3.6.0 to 4.0.0 
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.6.0 to 4.0.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v3.6.0...v4.0.0)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-05 10:11:53 +02:00
dependabot[bot]
1c98619b5c build(deps): bump sigstore/cosign-installer from 3.1.1 to 3.1.2 
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 3.1.1 to 3.1.2.
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](https://github.com/sigstore/cosign-installer/compare/v3.1.1...v3.1.2)

---
updated-dependencies:
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-05 10:09:19 +02:00
Quentin Gliech
bc19b381a1 Fix Clippy warnings about enum size variants difference 2023-09-04 16:45:21 +02:00
Quentin Gliech
b43bac2f75 Update the graphql schema after the async-graphql update. 2023-09-04 09:37:26 +02:00
dependabot[bot]
03dabb49f9 build(deps): bump async-graphql from 6.0.4 to 6.0.5 
Bumps [async-graphql](https://github.com/async-graphql/async-graphql) from 6.0.4 to 6.0.5.
- [Release notes](https://github.com/async-graphql/async-graphql/releases)
- [Changelog](https://github.com/async-graphql/async-graphql/blob/master/CHANGELOG.md)
- [Commits](https://github.com/async-graphql/async-graphql/commits)

---
updated-dependencies:
- dependency-name: async-graphql
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-04 09:37:26 +02:00
dependabot[bot]
f4a47b5d54 build(deps): bump the jotai group in /frontend with 1 update 
Bumps the jotai group in /frontend with 1 update: [jotai](https://github.com/pmndrs/jotai).

- [Release notes](https://github.com/pmndrs/jotai/releases)
- [Commits](https://github.com/pmndrs/jotai/compare/v2.4.0...v2.4.1)

---
updated-dependencies:
- dependency-name: jotai
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: jotai
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-04 09:25:39 +02:00
dependabot[bot]
d94c501a4d build(deps): bump clap from 4.4.1 to 4.4.2 
Bumps [clap](https://github.com/clap-rs/clap) from 4.4.1 to 4.4.2.
- [Release notes](https://github.com/clap-rs/clap/releases)
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md)
- [Commits](https://github.com/clap-rs/clap/compare/v4.4.1...v4.4.2)

---
updated-dependencies:
- dependency-name: clap
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-04 09:25:21 +02:00
dependabot[bot]
8e8ee57997 build(deps): bump the urql group in /frontend with 1 update 
Bumps the urql group in /frontend with 1 update: [@urql/core](https://github.com/urql-graphql/urql/tree/HEAD/packages/core).

- [Release notes](https://github.com/urql-graphql/urql/releases)
- [Changelog](https://github.com/urql-graphql/urql/blob/main/packages/core/CHANGELOG.md)
- [Commits](https://github.com/urql-graphql/urql/commits/@urql/core@4.1.2/packages/core)

---
updated-dependencies:
- dependency-name: "@urql/core"
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: urql
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-04 09:20:38 +02:00
dependabot[bot]
f3e610acba build(deps): bump tower-http from 0.4.3 to 0.4.4 
Bumps [tower-http](https://github.com/tower-rs/tower-http) from 0.4.3 to 0.4.4.
- [Release notes](https://github.com/tower-rs/tower-http/releases)
- [Commits](https://github.com/tower-rs/tower-http/compare/tower-http-0.4.3...tower-http-0.4.4)

---
updated-dependencies:
- dependency-name: tower-http
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-04 09:17:59 +02:00
Hugh Nimmo-Smith
0c8719057f Only show client details if available 2023-09-01 18:07:32 +02:00
Quentin Gliech
575f9d3a92 ci: make the -debug suffix global 2023-09-01 18:06:30 +02:00
Quentin Gliech
05718b9732 ci: Fix the release workflow 2023-09-01 18:06:30 +02:00
Quentin Gliech
26a1504bad Release workflow 2023-09-01 18:06:30 +02:00
Hugh Nimmo-Smith
2d21ebdcd5 Add CORS headers for /graphql 2023-09-01 17:30:33 +02:00
Quentin Gliech
d39daf48c5 Define common crates metadata on the workspace level 2023-09-01 16:27:22 +02:00
Quentin Gliech
a1b91e1eb0 frontend: bump compound-web 2023-09-01 15:57:13 +02:00
Quentin Gliech
92528f361e Compoundify the inputs 2023-09-01 15:57:13 +02:00
Quentin Gliech
2bbd0d2292 Compoundify the templates 2023-09-01 15:57:13 +02:00
Hugh Nimmo-Smith
3b9fbda181 lintt 2023-09-01 15:23:05 +02:00
Hugh Nimmo-Smith
f0c4d160c8 Hide placeholder footer content 2023-09-01 15:23:05 +02:00
Hugh Nimmo-Smith
c49b757bc5 Nor does it have extrabold 2023-09-01 15:22:42 +02:00