letro/letro-authentication-service
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity
2,737 Commits 2 Branches 1 Tag
bd2ca39209bd9ebec5c8a6782d16b1a48aa96b0c
Commit Graph

2737 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
dependabot[bot]
bd2ca39209 build(deps): bump docker/setup-buildx-action from 3.4.0 to 3.5.0 
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 3.4.0 to 3.5.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/v3.4.0...v3.5.0)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-24 16:57:50 +02:00
Quentin Gliech
99ffd69e50 frontend: add filter for inactive sessions 2024-07-19 13:40:27 +02:00
Quentin Gliech
35e81405e2 graphql: allow filtering of sessions by last activity 2024-07-19 13:40:27 +02:00
Quentin Gliech
57b3aad1b1 storage: add a filter by last active time on app sessions 2024-07-19 13:40:27 +02:00
Quentin Gliech
9a2aa61dc5 storage: add a filter by last active time on OAuth 2.0 sessions 2024-07-19 13:40:27 +02:00
Quentin Gliech
92509ed453 storage: add a filter by last active time on compatibility sessions 2024-07-19 13:40:27 +02:00
Quentin Gliech
04c85ad9bc storage: add a filter by last active time on browser sessions 2024-07-19 13:40:27 +02:00
Quentin Gliech
a2a0db57e9 Add an index on the last_active_at column of the sessions tables 2024-07-19 13:40:27 +02:00
Quentin Gliech
6ab0d087ae Code-split the password channge page 2024-07-17 17:56:04 +02:00
Quentin Gliech
defec9f412 Replace all icons by the ones exported by compound-design-tokens 2024-07-17 09:04:48 +02:00
Quentin Gliech
7f7e78af28 Upgrade Compound to 5.5.0 (and the design tokens) 2024-07-17 09:04:48 +02:00
Olivier 'reivilibre
325711a497 frontend: fetch min password complexity and enforce locally 2024-07-16 17:30:28 +01:00
Olivier 'reivilibre
fed23e99c1 frontend: add password complexity bar to change password form 2024-07-16 17:30:28 +01:00
Olivier 'reivilibre
2395b3c2f1 Bump Compound to 5.3.0 2024-07-16 17:30:28 +01:00
Olivier 'reivilibre
f2965e2f0d Add JSON dictionaries with words from zxcvbn-rs but for use with zxcvbn-ts 2024-07-16 17:30:28 +01:00
Olivier 'reivilibre
4e3e82aa67 Add zxcvbn-ts dependency 2024-07-16 17:30:28 +01:00
Quentin Gliech
ff1a6e95c9 Use dynamic filters on app sessions by reusing the OAuth/compat sessions filters 2024-07-16 18:23:23 +02:00
Quentin Gliech
d4c31b094b Add new filters on the OAuth and compat sessions 2024-07-16 18:23:23 +02:00
Quentin Gliech
637358438f Use dynamic filters on browser sessions 2024-07-16 18:23:23 +02:00
Quentin Gliech
e3fe85b1dd Use dynamic filters on users 2024-07-16 18:23:23 +02:00
Quentin Gliech
cf658fde63 Use dynamic filters on user emails 2024-07-16 18:23:23 +02:00
Quentin Gliech
fad0af8fe8 Use dynamic filters on upstream OAuth 2.0 providers 2024-07-16 18:23:23 +02:00
Quentin Gliech
beb77f48d4 Use dynamic filters on upstream OAuth 2.0 links 2024-07-16 18:23:23 +02:00
Quentin Gliech
9aedefee30 Use dynamic filters on OAuth 2.0 sessions 2024-07-16 18:23:23 +02:00
Quentin Gliech
3a1ec6ebb9 Use dynamic filters on compatibility SSO logins 2024-07-16 18:23:23 +02:00
Quentin Gliech
7b90fc0d52 Use dynamic filters on compatibility sessions 2024-07-16 18:23:23 +02:00
Quentin Gliech
3ac9743d18 Add a trait to help building dynamic filters 2024-07-16 18:23:23 +02:00
reivilibre
fbd57ad51a Remove OPA-based password policy enforcement (#2875) 
Co-authored-by: Quentin Gliech <quenting@element.io>
 2024-07-16 14:33:04 +01:00
Quentin Gliech
745ec1ea9b Update the query introspection data 2024-07-16 14:13:11 +02:00
Quentin Gliech
a2f581a99a Kill all sessions when deactivating a user 2024-07-16 14:13:11 +02:00
Quentin Gliech
450fcaafc7 Make mas-cli manage kill-sessions finish sessions in bulk 2024-07-16 14:13:11 +02:00
Quentin Gliech
51865c8519 Batch finish browser sessions 2024-07-16 14:13:11 +02:00
Quentin Gliech
9afef472a2 Batch finish OAuth 2.0 sessions 2024-07-16 14:13:11 +02:00
Quentin Gliech
6536d6eef9 Batch finish compatibility sessions 2024-07-16 14:13:11 +02:00
Quentin Gliech
9987a4e305 Show whether the user is deactivated on the homeserver in the GraphQL API 
Fix #2375
 2024-07-16 13:20:28 +02:00
Quentin Gliech
eb8688172d GraphQL API to unlock a user 
Fixes #2101
 2024-07-16 13:20:28 +02:00
Quentin Gliech
98d66c1356 Add a way to reactivate users on the homeserver 2024-07-16 13:20:28 +02:00
Quentin Gliech
c7963c3af5 Add a lock during syncs of user devices 2024-07-16 09:32:07 +02:00
Quentin Gliech
e926585b4f Provision users on the fake homeserver in tests 
Because we now provision devices synchronously, we need to update the
tests so that the users exist on the fake homeserver.
 2024-07-16 09:32:07 +02:00
Quentin Gliech
52b260fdcf Deprecate the ProvisionDeviceJob and DeleteDeviceJob jobs 2024-07-16 09:32:07 +02:00
Quentin Gliech
16d309fff4 Provision the devices synchronously 
This means Synapse won't have to provision them on the fly anymore
 2024-07-16 09:32:07 +02:00
Quentin Gliech
fa218d2cac Don't hold the database connection for too long 2024-07-16 09:32:07 +02:00
Quentin Gliech
f5e189304e Fully sync the devices with the homeserver 2024-07-16 09:32:07 +02:00
reivilibre
a4891fa9ef Backend work to support minimum password complexity (#2965) 
* config: Add minimum password complexity option

* PasswordManager: add function for checking if complexity is sufficient

* Enforce password complexity on registration, change and recovery

* cli: Use exit code 1 for weak passwords

This seems preferable to exit code 0, but ideally we should choose one
and document it.

* Expose minimum password complexity score over GraphQL
 2024-07-11 10:17:39 +01:00
dependabot[bot]
5a4ed20733 build(deps): bump matrix-org/done-action from 2 to 3 
Bumps [matrix-org/done-action](https://github.com/matrix-org/done-action) from 2 to 3.
- [Release notes](https://github.com/matrix-org/done-action/releases)
- [Commits](https://github.com/matrix-org/done-action/compare/v2...v3)

---
updated-dependencies:
- dependency-name: matrix-org/done-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-08 23:19:27 +02:00
Quentin Gliech
09ddf8de7c graphql: users query to list users with a few filters 2024-07-05 13:44:14 +02:00
Quentin Gliech
210d35b29b graphql: move the users queries to their own module 2024-07-05 13:44:14 +02:00
Quentin Gliech
b597292d6f storage: methods to list and count users with filters and pagination 2024-07-05 13:44:14 +02:00
dependabot[bot]
b8e6ca2f5a build(deps): bump serde_with from 3.8.2 to 3.8.3 
Bumps [serde_with](https://github.com/jonasbb/serde_with) from 3.8.2 to 3.8.3.
- [Release notes](https://github.com/jonasbb/serde_with/releases)
- [Commits](https://github.com/jonasbb/serde_with/compare/v3.8.2...v3.8.3)

---
updated-dependencies:
- dependency-name: serde_with
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-05 10:29:10 +02:00
Christian Tramnitz
b52342cee5 Fix RFC1918 network in default proxy configuration (#2908) 2024-07-05 08:22:39 +00:00