letro/letro-authentication-service
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity
NaN Commits 2 Branches 1 Tag
bef50474abfbdc3d1444df2f2b34ddd034da07b4
Commit Graph

2398 Commits

Author SHA1 Message Date
Quentin Gliech
bef50474ab Un-hide a few elidded lifetimes 2025-08-18 10:35:28 +02:00
Quentin Gliech
eded025ff4 Fix a few clippy lints, mostly in doc comments 2025-08-18 10:34:28 +02:00
Quentin Gliech
78933acb3c Collapse a few nested if now that we have if let chains 2025-08-18 10:29:30 +02:00
Quentin Gliech
c93b051da4 Merge branch 'main' into secret_file 2025-08-05 15:37:32 +02:00
Quentin Gliech
9d6c357f45 Make MAS use the modern Synapse API by default 2025-08-05 15:03:32 +02:00
Quentin Gliech
8df0c57c4c Fix usage of homeserver_connection_from_config 2025-08-05 11:54:28 +02:00
Quentin Gliech
f610994a0f Merge branch 'main' into secret_file 2025-08-05 11:17:39 +02:00
Quentin Gliech
a503856b7a Add clients.[].client_secret_file config option (#4857) 2025-08-05 11:17:00 +02:00
Kai A. Hiller
dd040220db Add clients.[].client_secret_file config option 2025-08-04 19:32:39 +02:00
Quentin Gliech
4d83fcb25e Merge remote-tracking branch 'origin/main' into quenting/stable-api 2025-08-04 16:38:49 +02:00
Quentin Gliech
c20ce916d8 Make mas-cli manage issue-compatibility-token create the device on the homeserver 2025-08-04 11:21:57 +02:00
Quentin Gliech
b8d23be313 Fix many clippy warnings 
This is because the tracing-attributes update made clippy look at those
again. I've removed the `too_many_lines` lint, as it's not really useful
and we ignore it most of the time anyway.
 2025-07-30 14:49:38 +02:00
Quentin Gliech
77f371c6f6 Replace usage of deprecated SentryHttpLayer::with_transaction 2025-07-30 14:27:07 +02:00
Quentin Gliech
9a191a2b21 Remove unused Sentry options 2025-07-30 14:27:07 +02:00
Quentin Gliech
1d0499ce68 Properly use rustls-platform-verifier with reqwest 2025-07-30 12:04:30 +02:00
Quentin Gliech
b10db6f5b0 Use the renamed functions from socket2 2025-07-30 11:24:04 +02:00
Kai A. Hiller
357420a56f Add matrix.secret_file config option 2025-07-29 19:46:07 +02:00
networkException
017fd53308 fix: don't attempt to set TCP_NODELAY on accepted unix streams 
This patch fixes accepting streams from unix sockets resulting
in operation not supported errors.
 2025-07-27 02:41:39 +02:00
Quentin Gliech
1a680a26f8 Fix spec compliance of upstream OAuth 2.0 client auth methods (#4819) 2025-07-24 15:36:25 +02:00
Quentin Gliech
4b54a731b9 Show a better error page in most human-facing pages (#4816) 2025-07-24 15:36:09 +02:00
Quentin Gliech
3a13eb68c5 Don't check for client_id in tests 2025-07-24 11:31:54 +02:00
Quentin Gliech
a3540411dd Fix spec compliance of upstream OAuth 2.0 client auth methods 
We were sending the `client_id` in all cases, but the spec says it
should only be sent for the `none` and `client_secret_post` methods.
 2025-07-24 11:16:00 +02:00
Kai A. Hiller
9a21e44d4b Fix typo in secrets config output 2025-07-24 10:21:55 +02:00
Quentin Gliech
00234469a9 Human-readable error page on the compat SSO login redirect 2025-07-24 10:01:00 +02:00
Quentin Gliech
e964c08eb6 Make the compat_router also recover from errors in human-facing routes 2025-07-23 19:45:59 +02:00
Quentin Gliech
32f8d22dec Include the issuer URLs in the error message when they don't match 2025-07-23 19:36:54 +02:00
Quentin Gliech
e21d113cfb Human-readable error page on the upstream callback page 2025-07-23 19:36:39 +02:00
Quentin Gliech
089de9ef8f Human-readable error page on the upstream authorization page 2025-07-23 19:36:17 +02:00
Quentin Gliech
d356ae5732 Human-readable error page on the authorization endpoint 2025-07-23 19:35:51 +02:00
Quentin Gliech
db27ffb0a2 Human-readable error page on the consent page 2025-07-23 19:35:28 +02:00
Quentin Gliech
e22f8f87b4 Handle device syncs for many devices more quickly (#4815) 2025-07-23 17:40:28 +02:00
Quentin Gliech
116a0e6974 Handle device syncs for many devices more quickly 2025-07-23 17:37:25 +02:00
Quentin Gliech
d439fbd1fa Fix the user deactivation/reactivation jobs 
Those got broken when we switched to using localparts in the
HomeserverConnection in #4801
 2025-07-23 10:38:27 +02:00
Quentin Gliech
0730a3b18a Allow the homeserver to perform introspection using a shared secret (#4808) 2025-07-22 13:30:49 +02:00
Quentin Gliech
faa3282792 Clarify comment 
Co-authored-by: reivilibre <oliverw@element.io>
 2025-07-22 13:24:03 +02:00
Quentin Gliech
01d5a2cca2 Allow the homeserver to perform introspection using a shared secret 2025-07-22 11:27:56 +02:00
Quentin Gliech
6ffe95cdc6 Merge branch 'main' into feat/allow_override_user 2025-07-21 17:03:35 +02:00
Quentin Gliech
942287f99b Threaten to switch to using the modern API in a few releases. 2025-07-21 13:15:48 +02:00
Quentin Gliech
81efce0b7f Avoid a few unnecessary clones when talking to Synapse 2025-07-21 13:14:38 +02:00
Quentin Gliech
0680d8b565 Remove the spurious password field from the request body 2025-07-21 13:08:36 +02:00
olivier
e3511bef2e simplify unit tests 2025-07-21 11:32:54 +02:00
Quentin Gliech
089229732e Rename create_device -> upsert_device 2025-07-21 10:54:40 +02:00
olivier
ad1e35d651 remove unused function 2025-07-21 10:19:57 +02:00
olivier
d9d5130051 fix err return 2025-07-21 10:13:04 +02:00
Olivier D
aa62b92638 Update crates/handlers/src/upstream_oauth2/link.rs 
Co-authored-by: Quentin Gliech <quenting@element.io>
 2025-07-21 09:52:24 +02:00
Olivier D
9d2cceb497 Update crates/handlers/src/upstream_oauth2/link.rs 
Co-authored-by: Quentin Gliech <quenting@element.io>
 2025-07-21 09:52:24 +02:00
olivier
64b3b1b2a5 fix rust style 2025-07-21 09:52:24 +02:00
olivier
54cb82af3e add semi column 2025-07-21 09:52:24 +02:00
Olivier D
e2a6091424 fix code style 
Co-authored-by: Quentin Gliech <quenting@element.io>
 2025-07-21 09:52:24 +02:00
Olivier D
2172a961cc Update crates/handlers/src/upstream_oauth2/link.rs 
Co-authored-by: Quentin Gliech <quenting@element.io>
 2025-07-21 09:52:24 +02:00