letro/letro-authentication-service
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity
NaN Commits 2 Branches 1 Tag
bdffeb6ef5b18e78ff3d60a8c3068a0d3e193a6b
Commit Graph

387 Commits

Author SHA1 Message Date
Quentin Gliech
bdffeb6ef5 Document the new conflict options 2025-11-28 11:57:46 +01:00
Quentin Gliech
f97f56ed11 Add more options to deal with localpart conflicts on upstream OAuth 2.0 logins 2025-11-28 10:53:28 +01:00
Olivier 'reivilibre
07febe3ca6 Modify example Nginx compatibility-layer location block to also forward /_synapse/mas to Synapse (#5240) 2025-11-27 12:32:26 +00:00
Olivier 'reivilibre
3fcbbfe567 Update docs/setup/reverse-proxy.md 2025-11-27 12:31:48 +00:00
Olivier 'reivilibre
1d2f7fecf8 Add experimental and preliminary policy-driven session limiting when logging in OAuth 2 sessions. (#5221) 2025-11-25 15:24:02 +00:00
reivilibre
96b596fa0c templates check: Add --stabilise flag to make renders reproducible (#5214) 2025-11-24 16:16:11 +00:00
Kai A. Hiller
770016ebf7 Merge branch 'main' into keys_dir 2025-11-18 18:12:14 +01:00
May
b712f9c352 Modify Nginx compatibility-layer location block to forward not just client stuff to matrix-synapse 
Before the change, it did just just forward `/_matrix` & `/_synapse/client` to synapse.
 2025-11-14 11:36:18 +01:00
Olivier 'reivilibre
c007695e04 (update files after merge) 2025-11-13 15:55:25 +00:00
Olivier 'reivilibre
236de8f071 Merge branch 'main' into rei/policy_driven_session_limit 2025-11-13 15:54:48 +00:00
networkException
23322cfc28 Add upstream_oauth2.providers.[].client_secret_file config option 
This patch factors out the previously introduced config
wrapper for client secrets to also use it for upstream oauth
providers.

See dd040220db
 2025-11-08 16:10:19 +01:00
Quentin Gliech
d0a5a1406b Remove the nullable transformation for the config schema. 2025-11-07 11:08:59 +01:00
Quentin Gliech
7901657b72 Remove the nullable transform 2025-11-07 10:53:46 +01:00
Quentin Gliech
56911f25c1 Merge remote-tracking branch 'origin/main' into quenting/schemars-0.9 2025-11-06 17:34:43 +01:00
reivilibre
29ab273e5a Update crates/config/src/sections/experimental.rs 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2025-11-06 15:29:54 +00:00
Olivier 'reivilibre
dc535d7451 Add configuration for session limiting 2025-11-06 10:12:14 +00:00
reivilibre
c2ea8f7fa1 Add basic documentation for personal sessions (#5187) 2025-11-05 16:19:10 +00:00
reivilibre
5bbc26cb16 Update docs/development/contributing.md 
Co-authored-by: Quentin Gliech <quenting@element.io>
 2025-11-05 15:40:12 +00:00
Olivier 'reivilibre
1262a2b2a8 Drive-by contributing doc update for policies makefile 2025-10-31 15:07:19 +00:00
Olivier 'reivilibre
6f583e18bf Add rest of documentation on templates check 2025-10-30 16:33:50 +00:00
Olivier 'reivilibre
08acaa447c document new options on templates check 2025-10-30 15:14:49 +00:00
Olivier 'reivilibre
ef73828361 Make clear that owners are the ones to regenerate 2025-10-28 12:22:24 +00:00
Olivier 'reivilibre
b5a6057c09 Note that you can auth to the admin API with PATs 2025-10-24 12:02:25 +01:00
Olivier 'reivilibre
d389c8164a Add basic documentation for personal sessions 2025-10-22 15:46:48 +01:00
Quentin Gliech
eae1801e16 docs: add missing --reactivate option to unlock-user subcommand (#5162) 2025-10-22 16:09:16 +02:00
Olivier 'reivilibre
dd5eec7780 (update JSONSchema) 2025-10-21 12:16:45 +01:00
Olivier 'reivilibre
e06fb33e37 Add personal sessions admin API 2025-10-20 14:51:40 +01:00
teutat3s
486f6e00e7 docs: add missing --reactivate option 2025-10-17 19:39:34 +02:00
Quentin Gliech
ecafcaa175 Add admin APIs to finish individual sessions (#5091) 2025-10-08 10:30:22 +02:00
Quentin Gliech
28e573b400 Add a configuration option to make email optional for password registration 2025-10-07 17:28:01 +02:00
Quentin Gliech
ce1aabdb8a Admin API to get the version of the service 2025-10-03 11:58:53 +02:00
Quentin Gliech
4423ee130f Admin API to finish a compatibility session 2025-09-30 16:50:37 +02:00
Quentin Gliech
f7e01450da Admin API to finish an OAuth2 session 2025-09-30 16:50:37 +02:00
Quentin Gliech
c3d77e01d2 Admin API to finish a user session 2025-09-30 15:53:18 +02:00
Quentin Gliech
50a8d00dc6 Admin API: make sure the meta fields are nullable 2025-09-30 13:23:54 +02:00
Quentin Gliech
10efae35fe Admin API: add endpoint to get an Upstream OAuth Provider by ID 2025-09-30 12:08:31 +02:00
Quentin Gliech
9756bd0a4a Merge remote-tracking branch 'origin/main' into quenting/admin-api/optional-count 2025-09-30 11:46:50 +02:00
Quentin Gliech
39fc59deb2 Admin API: parameter to include total number of items 
This allows removing the count calculation when not needed, or to skip
the list of items entirely.
 2025-09-29 18:27:22 +02:00
Quentin Gliech
209bc05ae7 Admin API: add pagination cursors to list endpoints 2025-09-29 15:09:15 +02:00
Quentin Gliech
c1c76177bd Admin API to list upstream OAuth 2.0 providers 2025-09-19 11:12:48 +02:00
Quentin Gliech
1644b41894 Simple CLI commands to manage server admins 2025-09-16 12:42:32 +02:00
Quentin Gliech
cb8c408489 Admin API filter to search users by username 2025-09-15 14:12:31 +02:00
Quentin Gliech
b7015c0b3d Allow filtering guest/non-guest users 2025-09-15 12:51:06 +02:00
Quentin Gliech
a2172a02ba Surface the user guest flag in the admin API 2025-09-15 12:51:00 +02:00
Quentin Gliech
ca9aeb42c0 Admin API to expose a few configuration values 2025-09-12 17:47:36 +02:00
Quentin Gliech
bba152f382 Request a refresh token in the device-code-grant.sh helper script (#4974) 2025-09-12 15:47:15 +02:00
Kai A. Hiller
db8555a589 Add secrets.keys_dir config option 2025-09-08 16:02:38 +02:00
Andrew Ferrazzutti
e0c56cc1a8 Documentation: update links to policy files 2025-09-03 15:08:21 -04:00
Twilight Sparkle
0d2246d172 Mention the refresh token in the docs 2025-09-03 14:34:26 +00:00
Quentin Gliech
bdb44498b8 Automatically derive the kid from the key fingerprint if missing (#4876) 2025-09-02 17:04:35 +02:00