letro/letro-authentication-service
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity
2,796 Commits 2 Branches 1 Tag
b37b2897dcc8a67ee398595fcdb3965d27b3579e
Commit Graph

2796 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Quentin Gliech
b37b2897dc frontend: remove the packageManager field 2024-08-01 15:00:49 +02:00
Quentin Gliech
f9d23a87d0 Make the optional configuration sections really optional 2024-08-01 15:00:16 +02:00
dependabot[bot]
62fe8071a4 build(deps): bump clap from 4.5.11 to 4.5.12 
Bumps [clap](https://github.com/clap-rs/clap) from 4.5.11 to 4.5.12.
- [Release notes](https://github.com/clap-rs/clap/releases)
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md)
- [Commits](https://github.com/clap-rs/clap/compare/clap_complete-v4.5.11...clap_complete-v4.5.12)

---
updated-dependencies:
- dependency-name: clap
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-08-01 14:52:08 +02:00
dependabot[bot]
10074f5224 build(deps): bump bytes from 1.6.1 to 1.7.0 
Bumps [bytes](https://github.com/tokio-rs/bytes) from 1.6.1 to 1.7.0.
- [Release notes](https://github.com/tokio-rs/bytes/releases)
- [Changelog](https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md)
- [Commits](https://github.com/tokio-rs/bytes/compare/v1.6.1...v1.7.0)

---
updated-dependencies:
- dependency-name: bytes
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-08-01 14:51:59 +02:00
dependabot[bot]
2a5206a530 build(deps): bump minijinja from 2.1.0 to 2.1.1 
Bumps [minijinja](https://github.com/mitsuhiko/minijinja) from 2.1.0 to 2.1.1.
- [Release notes](https://github.com/mitsuhiko/minijinja/releases)
- [Changelog](https://github.com/mitsuhiko/minijinja/blob/main/CHANGELOG.md)
- [Commits](https://github.com/mitsuhiko/minijinja/compare/2.1.0...2.1.1)

---
updated-dependencies:
- dependency-name: minijinja
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-08-01 14:51:37 +02:00
Quentin Gliech
8b8ee86d8b Document the new account-management options 2024-08-01 14:50:21 +02:00
Quentin Gliech
a8cf8c519a Move the account-related options out of experimental 2024-08-01 14:50:21 +02:00
Quentin Gliech
035d23bdba frontend: move getNinetyDaysAgo to a shared utility 2024-08-01 14:13:22 +02:00
Quentin Gliech
e682428b5a frontend: don't wait before rendering 
The default behaviour of Tanstack Router is to wait at least 500ms
before showing the rendered route, so that the loading spinner doesn't
flicker. We don't want that, as we don't seem to have a working loading
spinner anyway, and this just unnecessarily adds FCP latency.
 2024-08-01 14:13:22 +02:00
Quentin Gliech
c1139ba7f1 frontend: lazy-load all routes 2024-08-01 14:13:22 +02:00
Quentin Gliech
46e21d1838 frontend: lazy-load the password complexity calculation logic 2024-08-01 14:13:22 +02:00
Quentin Gliech
c523bc97e8 vite: enable preloading and make sure we load the right dev/prod deps 2024-08-01 14:13:22 +02:00
dependabot[bot]
de67dd655e build(deps): bump zxcvbn from 3.0.1 to 3.1.0 
Bumps [zxcvbn](https://github.com/shssoichiro/zxcvbn-rs) from 3.0.1 to 3.1.0.
- [Changelog](https://github.com/shssoichiro/zxcvbn-rs/blob/master/CHANGELOG.md)
- [Commits](https://github.com/shssoichiro/zxcvbn-rs/compare/v3.0.1...v3.1.0)

---
updated-dependencies:
- dependency-name: zxcvbn
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-30 11:51:20 +02:00
dependabot[bot]
c103923734 build(deps): bump clap from 4.5.10 to 4.5.11 
Bumps [clap](https://github.com/clap-rs/clap) from 4.5.10 to 4.5.11.
- [Release notes](https://github.com/clap-rs/clap/releases)
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md)
- [Commits](https://github.com/clap-rs/clap/compare/clap_complete-v4.5.10...clap_complete-v4.5.11)

---
updated-dependencies:
- dependency-name: clap
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-30 11:50:30 +02:00
dependabot[bot]
200515e025 build(deps): bump serde_json from 1.0.120 to 1.0.121 
Bumps [serde_json](https://github.com/serde-rs/json) from 1.0.120 to 1.0.121.
- [Release notes](https://github.com/serde-rs/json/releases)
- [Commits](https://github.com/serde-rs/json/compare/v1.0.120...v1.0.121)

---
updated-dependencies:
- dependency-name: serde_json
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-29 23:46:06 +02:00
dependabot[bot]
141614c972 build(deps): bump rustls-platform-verifier from 0.3.2 to 0.3.3 
Bumps [rustls-platform-verifier](https://github.com/rustls/rustls-platform-verifier) from 0.3.2 to 0.3.3.
- [Release notes](https://github.com/rustls/rustls-platform-verifier/releases)
- [Changelog](https://github.com/rustls/rustls-platform-verifier/blob/main/CHANGELOG)
- [Commits](https://github.com/rustls/rustls-platform-verifier/compare/v/0.3.2...v/0.3.3)

---
updated-dependencies:
- dependency-name: rustls-platform-verifier
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-29 23:45:27 +02:00
dependabot[bot]
3620dce7ba build(deps): bump tokio from 1.39.1 to 1.39.2 
Bumps [tokio](https://github.com/tokio-rs/tokio) from 1.39.1 to 1.39.2.
- [Release notes](https://github.com/tokio-rs/tokio/releases)
- [Commits](https://github.com/tokio-rs/tokio/compare/tokio-1.39.1...tokio-1.39.2)

---
updated-dependencies:
- dependency-name: tokio
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-29 23:45:20 +02:00
dependabot[bot]
127b818ffa build(deps): bump docker/setup-buildx-action from 3.5.0 to 3.6.1 
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 3.5.0 to 3.6.1.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/v3.5.0...v3.6.1)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-29 23:45:09 +02:00
Quentin Gliech
9d13a06f64 Upgrade Rust toolchain to 1.80.0 
This also tweaks the workspace-level lints configuration to add priority
on groups
 2024-07-29 12:04:30 +02:00
Olivier 'reivilibre
9f66cb783f graphql: Expose CAPTCHA config and whether password registration is enabled 2024-07-26 13:02:58 +01:00
Quentin Gliech
58ba68b938 Call retain_recent periodically on rate limiters 2024-07-26 13:56:45 +02:00
Quentin Gliech
0b55719b12 Rate-limit password-based login attempts 2024-07-26 13:56:45 +02:00
Quentin Gliech
51efe3be98 admin: add APIs to list and get users 2024-07-26 11:36:55 +02:00
Quentin Gliech
1996506db4 Define common response types for the admin API 
This adds a Single and a Paginated response type, which have links to the next, previous, first and last pages.
 2024-07-26 11:36:55 +02:00
Quentin Gliech
1103674672 Add an extractor to check for credentails in the admin API 2024-07-26 11:36:55 +02:00
Quentin Gliech
cc8a16f2d9 doc: auto-generate the API schema in the documentation 2024-07-26 11:36:55 +02:00
Quentin Gliech
c8b4a17a55 config: allow serving the admin API routes 2024-07-26 11:36:55 +02:00
Quentin Gliech
445fedc602 handlers: bootstrap the admin API router 2024-07-26 11:36:55 +02:00
Quentin Gliech
3276ee713d axum-utils: make the ErrorWrapper implement std::error::Error 2024-07-26 11:36:55 +02:00
Quentin Gliech
678753c2e1 storage: freeze the error type on BoxRepository 
This avoids having to deal with traits bounds everywhere. It also moves
the `boxed()` method to the PgRepository, because it was unnecessary to
keep it on the `Repository` trait
 2024-07-26 11:36:55 +02:00
Olivier 'reivilibre
33ce228a84 Remove the server-side rendered account recovery 'finish' form 
Replace with the React frontend form
 2024-07-26 10:20:32 +01:00
Olivier 'reivilibre
f3ac672539 graphql: use NoSuchRecoveryTicket when link is invalid 2024-07-26 10:20:32 +01:00
Olivier 'reivilibre
a2d393be05 frontend: password recovery 2024-07-26 10:20:32 +01:00
Olivier 'reivilibre
66a69719ec frontend: pull out translations of SetPasswordStatus into function 2024-07-26 10:20:32 +01:00
Quentin Gliech
bb5bcf0f40 Rework assets loading to fix splitting CSS chunks 2024-07-25 12:59:29 +02:00
dependabot[bot]
edffd88813 build(deps): bump clap from 4.5.8 to 4.5.10 
Bumps [clap](https://github.com/clap-rs/clap) from 4.5.8 to 4.5.10.
- [Release notes](https://github.com/clap-rs/clap/releases)
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md)
- [Commits](https://github.com/clap-rs/clap/compare/clap_complete-v4.5.8...v4.5.10)

---
updated-dependencies:
- dependency-name: clap
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-25 12:02:12 +02:00
Quentin Gliech
00f4265bcc OTEL: remove custom Header{Injector,Extractor} implementations 2024-07-25 11:27:07 +02:00
dependabot[bot]
64f9780380 build(deps): bump command-line-args 
Bumps the production group in /tools/syn2mas with 1 update: [command-line-args](https://github.com/75lb/command-line-args).


Updates `command-line-args` from 5.2.1 to 6.0.0
- [Release notes](https://github.com/75lb/command-line-args/releases)
- [Commits](https://github.com/75lb/command-line-args/compare/v5.2.1...v6.0.0)

---
updated-dependencies:
- dependency-name: command-line-args
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-25 11:02:29 +02:00
Quentin Gliech
1381e92409 Update opentelemetry to 0.24.0 2024-07-25 11:01:43 +02:00
Josh Simmons
c8037cd284 update contributing docs with DCO 2024-07-25 10:01:53 +02:00
dependabot[bot]
c648e83163 build(deps): bump psl from 2.1.50 to 2.1.55 
Bumps [psl](https://github.com/addr-rs/psl) from 2.1.50 to 2.1.55.
- [Release notes](https://github.com/addr-rs/psl/releases)
- [Commits](https://github.com/addr-rs/psl/compare/v2.1.50...v2.1.55)

---
updated-dependencies:
- dependency-name: psl
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-25 09:34:05 +02:00
dependabot[bot]
c4c23c79c4 build(deps): bump tokio from 1.38.0 to 1.39.1 
Bumps [tokio](https://github.com/tokio-rs/tokio) from 1.38.0 to 1.39.1.
- [Release notes](https://github.com/tokio-rs/tokio/releases)
- [Commits](https://github.com/tokio-rs/tokio/compare/tokio-1.38.0...tokio-1.39.1)

---
updated-dependencies:
- dependency-name: tokio
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-25 09:33:57 +02:00
dependabot[bot]
4ddf8306cd build(deps): bump serde_with from 3.8.3 to 3.9.0 
Bumps [serde_with](https://github.com/jonasbb/serde_with) from 3.8.3 to 3.9.0.
- [Release notes](https://github.com/jonasbb/serde_with/releases)
- [Commits](https://github.com/jonasbb/serde_with/compare/v3.8.3...v3.9.0)

---
updated-dependencies:
- dependency-name: serde_with
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-25 09:33:43 +02:00
dependabot[bot]
c4d1c0408d build(deps): bump ulid from 1.1.2 to 1.1.3 
Bumps [ulid](https://github.com/dylanhart/ulid-rs) from 1.1.2 to 1.1.3.
- [Commits](https://github.com/dylanhart/ulid-rs/compare/v1.1.2...v1.1.3)

---
updated-dependencies:
- dependency-name: ulid
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-25 09:33:36 +02:00
dependabot[bot]
27468c2b53 build(deps): bump thiserror from 1.0.61 to 1.0.63 
Bumps [thiserror](https://github.com/dtolnay/thiserror) from 1.0.61 to 1.0.63.
- [Release notes](https://github.com/dtolnay/thiserror/releases)
- [Commits](https://github.com/dtolnay/thiserror/compare/1.0.61...1.0.63)

---
updated-dependencies:
- dependency-name: thiserror
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-24 23:53:12 +02:00
dependabot[bot]
c257497594 build(deps): bump wiremock from 0.6.0 to 0.6.1 
Bumps [wiremock](https://github.com/LukeMathWalker/wiremock-rs) from 0.6.0 to 0.6.1.
- [Changelog](https://github.com/LukeMathWalker/wiremock-rs/blob/main/CHANGELOG.md)
- [Commits](https://github.com/LukeMathWalker/wiremock-rs/compare/v0.6.0...v0.6.1)

---
updated-dependencies:
- dependency-name: wiremock
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-24 23:52:24 +02:00
dependabot[bot]
d28507cb66 build(deps): bump async-graphql from 7.0.6 to 7.0.7 
Bumps [async-graphql](https://github.com/async-graphql/async-graphql) from 7.0.6 to 7.0.7.
- [Release notes](https://github.com/async-graphql/async-graphql/releases)
- [Changelog](https://github.com/async-graphql/async-graphql/blob/master/CHANGELOG.md)
- [Commits](https://github.com/async-graphql/async-graphql/commits)

---
updated-dependencies:
- dependency-name: async-graphql
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-24 23:52:09 +02:00
dependabot[bot]
f409e37930 build(deps): bump minijinja from 2.0.3 to 2.1.0 
Bumps [minijinja](https://github.com/mitsuhiko/minijinja) from 2.0.3 to 2.1.0.
- [Release notes](https://github.com/mitsuhiko/minijinja/releases)
- [Changelog](https://github.com/mitsuhiko/minijinja/blob/main/CHANGELOG.md)
- [Commits](https://github.com/mitsuhiko/minijinja/compare/2.0.3...2.1.0)

---
updated-dependencies:
- dependency-name: minijinja
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-24 23:51:41 +02:00
reivilibre
e759197307 frontend: refactor password change form to extract double-input password creation inputs as new component (#2994) 2024-07-24 16:22:40 +01:00
reivilibre
3c118e2b7a graphql: Add a SetPasswordByRecovery mutation to perform account recovery (#2986) 2024-07-24 16:19:14 +01:00