letro/letro-authentication-service
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity
NaN Commits 2 Branches 1 Tag
def6fa65399df279953913b67f0e5421c8dd3fb2
Commit Graph

78 Commits

Author SHA1 Message Date
Letro Bot
def6fa6539 Integrate postnumber resolver across MAS flows 2026-04-08 17:58:30 +03:30
Letro Bot
f62aad70b0 more lint issues 2026-04-03 18:30:49 +03:30
Letro Bot
e8ff36d4af add in remaining translations 2026-04-03 17:36:07 +03:30
Letro Bot
dc3133021f name for app 2026-04-03 17:25:36 +03:30
Letro Bot
38bae98a7f translations 2026-04-03 17:00:23 +03:30
Quentin Gliech
0cf481c6e7 Un-break the scope tempalte helpers 2025-12-03 14:04:46 +01:00
Quentin Gliech
8a39f4181f Fix the consent templates failing to render in tests 2025-12-03 10:27:18 +01:00
Quentin Gliech
8a615fd8ba Merge remote-tracking branch 'origin/main' into quenting/simpler-consent-screen 2025-12-02 19:42:57 +01:00
Quentin Gliech
5ed3c87818 Simplify the consent screens 2025-12-02 18:10:12 +01:00
Quentin Gliech
f18b63ad64 Reword the MAS and Synapse admin scopes 2025-12-02 17:58:22 +01:00
Olivier 'reivilibre
eeb0692b8e Add experimental and preliminary policy-driven session limiting when logging in compatibility sessions. (#5287) 2025-12-02 15:50:04 +00:00
Olivier 'reivilibre
6c066ca972 Update templates/pages/compat_login_policy_violation.html 
Co-authored-by: Quentin Gliech <quenting@element.io>
 2025-12-02 15:25:04 +00:00
Olivier 'reivilibre
5c7ff7b8dc We can't show a cancel button, so don't show one 2025-11-28 12:42:48 +00:00
Quentin Gliech
e90f11b8f8 Remove unused login_link.html template 2025-11-27 16:18:18 +01:00
Olivier 'reivilibre
31c3fe2b39 Add a 'compat login policy violation' page 2025-11-25 18:41:14 +00:00
Olivier 'reivilibre
1d2f7fecf8 Add experimental and preliminary policy-driven session limiting when logging in OAuth 2 sessions. (#5221) 2025-11-25 15:24:02 +00:00
Quentin Gliech
c08c028883 Fix frontend style, template syntax and regenerate translations 2025-11-19 13:07:02 +01:00
Olivier 'reivilibre
b137e49b99 drive-by english string fix 2025-11-06 10:13:51 +00:00
Quentin Gliech
3f66053943 Update extracted translations 2025-10-22 11:50:10 +02:00
Quentin Gliech
28e573b400 Add a configuration option to make email optional for password registration 2025-10-07 17:28:01 +02:00
mcalinghee
1886e73e40 allow importing existing users when the localpart matches in upstream OAuth 2.0 logins 2025-07-21 09:52:24 +02:00
Quentin Gliech
14b77c150a Registration token step view 2025-06-03 17:42:53 +02:00
Quentin Gliech
a10e517d4e Generate a device name based on the client name and user agent 2025-04-25 16:55:29 +02:00
mcalinghee
b8eacd9f68 Update translations/en.json 
Co-authored-by: Quentin Gliech <quenting@element.io>
 2025-04-10 19:41:17 +02:00
mcalinghee
4269bc3ce3 correct format and translation 2025-04-10 17:57:58 +02:00
mcalinghee
2fe4752aa4 add login by email + feature flag 2025-04-10 17:57:58 +02:00
Quentin Gliech
b3572801df Fallback link in password recovery emails 2025-04-10 11:35:32 +02:00
Quentin Gliech
a2b5a208b1 Better error pages when a user is deactivated or locked 2025-03-11 17:35:13 +01:00
Quentin Gliech
f66e82adc5 Show proper error messages when registering with a banned/not-allowed username 2025-03-03 10:45:30 +01:00
Quentin Gliech
84f139aeeb Run misc/update.sh 2025-02-21 17:04:13 +01:00
Quentin Gliech
a4bece6a77 Add translatable errors for the email policy constraints 2025-02-17 15:53:57 +01:00
Quentin Gliech
7f1b3866ba Disclose that email is already in use after verification 2025-01-23 18:18:19 +01:00
Quentin Gliech
3eed8d39fb Registration step to set a display name 2025-01-15 15:28:48 +01:00
Quentin Gliech
588c1bdcd4 Implement email verification in the registration flow 2025-01-15 15:28:48 +01:00
Quentin Gliech
90fb2f0369 Make the password registration create a user_registration 2025-01-14 16:30:44 +01:00
Quentin Gliech
c2587e294c Move the registration-related views into a sub-module 2025-01-14 16:30:44 +01:00
Quentin Gliech
5aa5c9cb03 Job to send the new email authentication codes 2025-01-14 15:47:17 +01:00
Quentin Gliech
1d84c862d3 Typo in the consent screen 2025-01-13 16:58:42 +01:00
Quentin Gliech
3f842bc045 Split the base registration page with local password registration 2025-01-07 11:49:01 +01:00
Quentin Gliech
a51ab2fb5c Propagate more specific error messages from the policy on registration 
This makes some policy errors translatable
 2025-01-06 10:15:08 +01:00
Quentin Gliech
2903ff5e7a Allow setting an explicit upstream account name (#3600) 2024-11-29 12:30:18 +01:00
Quentin Gliech
ec883e15ef Avoid using SameSite=None by re-submitting incoming form data 2024-11-22 08:48:00 +01:00
Quentin Gliech
8309d6c823 Update translations context (#3194) 2024-09-10 19:41:30 +02:00
reivilibre
ca05566e82 Add rate-limiting for account recovery and registration (#3093) 
* Add rate-limiting for account recovery and registration

* Rename login ratelimiter `per_address` to `per_ip` for consistency

Co-authored-by: Quentin Gliech <quenting@element.io>
 2024-08-07 17:57:36 +00:00
Quentin Gliech
0b55719b12 Rate-limit password-based login attempts 2024-07-26 13:56:45 +02:00
Quentin Gliech
af40a9f815 Separate error page when the recovery link was already used 2024-06-28 15:59:21 +02:00
Quentin Gliech
44ebc8e683 Show a proper 'link expired' page 2024-06-28 15:59:21 +02:00
Quentin Gliech
041c74e7b2 Gate account recovery behing a configuration flag 2024-06-28 15:59:21 +02:00
Quentin Gliech
8d4e6719b1 Implement the password change form 2024-06-28 15:59:21 +02:00
Quentin Gliech
ee22699e57 Recovery progress page 2024-06-28 15:59:21 +02:00