letro/letro-authentication-service
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity
NaN Commits 2 Branches 1 Tag
b2d7e2d83514ea34b92b304b6b768aa1187b7070
Commit Graph

2420 Commits

Author SHA1 Message Date
Quentin Gliech
bdb44498b8 Automatically derive the kid from the key fingerprint if missing (#4876) 2025-09-02 17:04:35 +02:00
Quentin Gliech
6e3d2e79f1 Merge branch 'main' into quenting/stable-docs 2025-09-02 14:11:40 +02:00
Quentin Gliech
6d4747cd28 Fix the wording about admin token vs. secret in the doctor command 2025-09-02 14:08:20 +02:00
Kai A. Hiller
897d6de572 Switch to JWK Thumbprints 2025-08-20 18:22:21 +02:00
Kai A. Hiller
7f7f9918b0 Remove kid from test config and config generation 2025-08-20 18:04:39 +02:00
Quentin Gliech
9ab64403dd Simplify handling of login hints 2025-08-18 16:48:21 +02:00
Quentin Gliech
76f9b8657e Remove unnecessary crate-level comment 2025-08-18 16:48:04 +02:00
Quentin Gliech
7253ca69b0 Merge remote-tracking branch 'origin/main' into feat/login_hint_with_email 2025-08-18 16:43:00 +02:00
Quentin Gliech
a4cafa8ed0 Reformat with rustfmt 2025-08-18 13:46:25 +02:00
Quentin Gliech
4f33544eb7 Apply suggestions from code review 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2025-08-18 13:44:10 +02:00
Quentin Gliech
29e88691ab Update mas-cli doctor to suggest the stable MAS integration 2025-08-18 13:23:09 +02:00
Quentin Gliech
8dd096ce60 Fix a few more clippy lints 2025-08-18 10:45:20 +02:00
Quentin Gliech
bef50474ab Un-hide a few elidded lifetimes 2025-08-18 10:35:28 +02:00
Quentin Gliech
eded025ff4 Fix a few clippy lints, mostly in doc comments 2025-08-18 10:34:28 +02:00
Quentin Gliech
78933acb3c Collapse a few nested if now that we have if let chains 2025-08-18 10:29:30 +02:00
Kai A. Hiller
3f816ba9c4 Improve clarity of return type 2025-08-08 12:04:56 +02:00
Kai A. Hiller
968968bdbb Auto-generate kid if not given 2025-08-08 11:38:45 +02:00
mcalinghee
8bad68cc34 Merge branch 'main' into feat/login_hint_with_email 2025-08-05 17:02:14 +02:00
Quentin Gliech
c93b051da4 Merge branch 'main' into secret_file 2025-08-05 15:37:32 +02:00
Quentin Gliech
9d6c357f45 Make MAS use the modern Synapse API by default 2025-08-05 15:03:32 +02:00
Quentin Gliech
8df0c57c4c Fix usage of homeserver_connection_from_config 2025-08-05 11:54:28 +02:00
Quentin Gliech
f610994a0f Merge branch 'main' into secret_file 2025-08-05 11:17:39 +02:00
Quentin Gliech
a503856b7a Add clients.[].client_secret_file config option (#4857) 2025-08-05 11:17:00 +02:00
Kai A. Hiller
dd040220db Add clients.[].client_secret_file config option 2025-08-04 19:32:39 +02:00
Quentin Gliech
4d83fcb25e Merge remote-tracking branch 'origin/main' into quenting/stable-api 2025-08-04 16:38:49 +02:00
Quentin Gliech
c20ce916d8 Make mas-cli manage issue-compatibility-token create the device on the homeserver 2025-08-04 11:21:57 +02:00
mcalinghee
1e2bf7f2f3 use of static RNG and MockClock in tests 2025-07-31 12:48:16 +02:00
mcalinghee
a45a1d7f73 move Clock/MockClock/SystemClock/BoxClock/BoxRng to mas-data-model : format 2025-07-31 12:35:56 +02:00
mcalinghee
9fa91b9524 move Clock/MockClock/SystemClock/BoxClock/BoxRng to mas-data-model : correct documentation 2025-07-31 12:34:01 +02:00
mcalinghee
062f5aced7 move Clock/MockClock/SystemClock/BoxClock/BoxRng to mas-data-model 2025-07-31 11:17:33 +02:00
mcalinghee
70cf833f0d use of login_with_email_allowed at caller level 2025-07-30 15:19:57 +02:00
mcalinghee
0e79ed5268 rename Login:EMAIL to Login::Email + remove use of email prefix 2025-07-30 15:19:57 +02:00
mcalinghee
929c14a6aa display email login_hint when login_with_email_allowed is activated 2025-07-30 15:19:57 +02:00
Quentin Gliech
b8d23be313 Fix many clippy warnings 
This is because the tracing-attributes update made clippy look at those
again. I've removed the `too_many_lines` lint, as it's not really useful
and we ignore it most of the time anyway.
 2025-07-30 14:49:38 +02:00
Quentin Gliech
77f371c6f6 Replace usage of deprecated SentryHttpLayer::with_transaction 2025-07-30 14:27:07 +02:00
Quentin Gliech
9a191a2b21 Remove unused Sentry options 2025-07-30 14:27:07 +02:00
Quentin Gliech
1d0499ce68 Properly use rustls-platform-verifier with reqwest 2025-07-30 12:04:30 +02:00
Quentin Gliech
b10db6f5b0 Use the renamed functions from socket2 2025-07-30 11:24:04 +02:00
Kai A. Hiller
357420a56f Add matrix.secret_file config option 2025-07-29 19:46:07 +02:00
networkException
017fd53308 fix: don't attempt to set TCP_NODELAY on accepted unix streams 
This patch fixes accepting streams from unix sockets resulting
in operation not supported errors.
 2025-07-27 02:41:39 +02:00
Quentin Gliech
1a680a26f8 Fix spec compliance of upstream OAuth 2.0 client auth methods (#4819) 2025-07-24 15:36:25 +02:00
Quentin Gliech
4b54a731b9 Show a better error page in most human-facing pages (#4816) 2025-07-24 15:36:09 +02:00
Quentin Gliech
3a13eb68c5 Don't check for client_id in tests 2025-07-24 11:31:54 +02:00
Quentin Gliech
a3540411dd Fix spec compliance of upstream OAuth 2.0 client auth methods 
We were sending the `client_id` in all cases, but the spec says it
should only be sent for the `none` and `client_secret_post` methods.
 2025-07-24 11:16:00 +02:00
Kai A. Hiller
9a21e44d4b Fix typo in secrets config output 2025-07-24 10:21:55 +02:00
Quentin Gliech
00234469a9 Human-readable error page on the compat SSO login redirect 2025-07-24 10:01:00 +02:00
Quentin Gliech
e964c08eb6 Make the compat_router also recover from errors in human-facing routes 2025-07-23 19:45:59 +02:00
Quentin Gliech
32f8d22dec Include the issuer URLs in the error message when they don't match 2025-07-23 19:36:54 +02:00
Quentin Gliech
e21d113cfb Human-readable error page on the upstream callback page 2025-07-23 19:36:39 +02:00
Quentin Gliech
089de9ef8f Human-readable error page on the upstream authorization page 2025-07-23 19:36:17 +02:00