letro/letro-authentication-service
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity
1,605 Commits 2 Branches 1 Tag
e80aa8b311f8a55e190830f35ff1e218dc434b71
Commit Graph

1605 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Quentin Gliech
e80aa8b311 graphql: API to query client sessions out of a device_id and a user ID 2023-08-29 16:53:38 +02:00
Quentin Gliech
df474f9e55 storage: Look up compat sessions by device_id 2023-08-29 16:53:38 +02:00
Quentin Gliech
42cb190ab6 storage: Allow filtering oauth2 sessions by scope 2023-08-29 16:53:38 +02:00
Kerry
c43691532c Allow user to view and change display name in My Account UI (#1628) 
Co-authored-by: Quentin Gliech <quenting@element.io>
 2023-08-29 13:40:00 +02:00
Quentin Gliech
e8b2ab8df1 Add the user_id directly on oauth2_sessions and make the scope a text list 2023-08-29 12:52:24 +02:00
Kerry Archibald
bbb59e70d2 add finishedAt to browser sessions 2023-08-29 12:43:04 +02:00
Quentin Gliech
d1c041cfad api: Add a finishedAt property to the BrowserSession and a state property to all 3 session types 2023-08-29 08:34:07 +02:00
Quentin Gliech
6c6f121146 Fix sentry transport post-upgrade 2023-08-29 08:23:26 +02:00
dependabot[bot]
08b8401b99 build(deps): bump the sentry group with 1 update 
Bumps the sentry group with 1 update: [sentry](https://github.com/getsentry/sentry-rust).

- [Release notes](https://github.com/getsentry/sentry-rust/releases)
- [Changelog](https://github.com/getsentry/sentry-rust/blob/master/CHANGELOG.md)
- [Commits](https://github.com/getsentry/sentry-rust/compare/0.31.5...0.31.6)

---
updated-dependencies:
- dependency-name: sentry
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: sentry
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-29 08:23:26 +02:00
dependabot[bot]
c1aea1197f build(deps): bump schemars from 0.8.12 to 0.8.13 
Bumps [schemars](https://github.com/GREsau/schemars) from 0.8.12 to 0.8.13.
- [Release notes](https://github.com/GREsau/schemars/releases)
- [Changelog](https://github.com/GREsau/schemars/blob/master/CHANGELOG.md)
- [Commits](https://github.com/GREsau/schemars/compare/v0.8.12...v0.8.13)

---
updated-dependencies:
- dependency-name: schemars
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-29 08:00:46 +02:00
dependabot[bot]
81fa7e0750 build(deps): bump rustls from 0.21.6 to 0.21.7 
Bumps [rustls](https://github.com/rustls/rustls) from 0.21.6 to 0.21.7.
- [Release notes](https://github.com/rustls/rustls/releases)
- [Commits](https://github.com/rustls/rustls/compare/v/0.21.6...v/0.21.7)

---
updated-dependencies:
- dependency-name: rustls
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-29 08:00:31 +02:00
dependabot[bot]
b9bceed881 build(deps-dev): bump @types/node from 20.5.6 to 20.5.7 in /frontend 
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 20.5.6 to 20.5.7.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

---
updated-dependencies:
- dependency-name: "@types/node"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-29 07:27:04 +02:00
Kerry
71dd531830 Browser session UI (#1616) 
* tweak blocklist spacing

* use same session design for browser sessions

* remove change to session

* remove unused class
 2023-08-29 00:07:48 +00:00
dependabot[bot]
282847a119 build(deps): bump clap from 4.4.0 to 4.4.1 
Bumps [clap](https://github.com/clap-rs/clap) from 4.4.0 to 4.4.1.
- [Release notes](https://github.com/clap-rs/clap/releases)
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md)
- [Commits](https://github.com/clap-rs/clap/compare/clap_complete-v4.4.0...v4.4.1)

---
updated-dependencies:
- dependency-name: clap
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-29 00:10:05 +02:00
dependabot[bot]
1c4f4ef069 build(deps): bump docker/setup-buildx-action from 2.9.1 to 2.10.0 
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2.9.1 to 2.10.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/v2.9.1...v2.10.0)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-29 00:09:30 +02:00
dependabot[bot]
9017e76bcd build(deps-dev): bump happy-dom from 10.11.0 to 10.11.1 in /frontend 
Bumps [happy-dom](https://github.com/capricorn86/happy-dom) from 10.11.0 to 10.11.1.
- [Release notes](https://github.com/capricorn86/happy-dom/releases)
- [Commits](https://github.com/capricorn86/happy-dom/compare/v10.11.0...v10.11.1)

---
updated-dependencies:
- dependency-name: happy-dom
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-29 00:09:10 +02:00
Quentin Gliech
1283e78f18 Cache the upstream OAuth 2.0 provider metadata 2023-08-28 18:30:40 +02:00
Quentin Gliech
ea7299a14a Upgrade Rust to 1.72.0 
Fixes new clippy errors and upgrade other tools
 2023-08-28 18:05:56 +02:00
Quentin Gliech
4495a5eca8 Save the authentication method on each authorization 
This will help us logging out of the upstream.
 2023-08-28 17:14:59 +02:00
Quentin Gliech
d06061c14d Save the application_type and the contacts in the OAuth 2.0 clients 
This also removes the dedicated "redirect_uris" table and makes it a field of the "oauth2_clients" table
 2023-08-28 14:41:49 +02:00
dependabot[bot]
793567b6a6 build(deps): bump url from 2.4.0 to 2.4.1 
Bumps [url](https://github.com/servo/rust-url) from 2.4.0 to 2.4.1.
- [Release notes](https://github.com/servo/rust-url/releases)
- [Commits](https://github.com/servo/rust-url/compare/v2.4.0...v2.4.1)

---
updated-dependencies:
- dependency-name: url
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-28 14:21:20 +02:00
dependabot[bot]
8b1f2b6780 build(deps): bump sea-query from 0.30.0 to 0.30.1 
Bumps [sea-query](https://github.com/SeaQL/sea-query) from 0.30.0 to 0.30.1.
- [Release notes](https://github.com/SeaQL/sea-query/releases)
- [Changelog](https://github.com/SeaQL/sea-query/blob/master/CHANGELOG.md)
- [Commits](https://github.com/SeaQL/sea-query/compare/0.30.0...0.30.1)

---
updated-dependencies:
- dependency-name: sea-query
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-27 19:12:56 +02:00
dependabot[bot]
e39f9a6551 build(deps-dev): bump the eslint group in /frontend with 1 update 
Bumps the eslint group in /frontend with 1 update: [eslint](https://github.com/eslint/eslint).

- [Release notes](https://github.com/eslint/eslint/releases)
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md)
- [Commits](https://github.com/eslint/eslint/compare/v8.47.0...v8.48.0)

---
updated-dependencies:
- dependency-name: eslint
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: eslint
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-27 19:12:25 +02:00
dependabot[bot]
bfe7e7bef6 build(deps): bump serde from 1.0.187 to 1.0.188 
Bumps [serde](https://github.com/serde-rs/serde) from 1.0.187 to 1.0.188.
- [Release notes](https://github.com/serde-rs/serde/releases)
- [Commits](https://github.com/serde-rs/serde/compare/v1.0.187...v1.0.188)

---
updated-dependencies:
- dependency-name: serde
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-27 19:11:57 +02:00
dependabot[bot]
33fe98c80f build(deps): bump time from 0.3.27 to 0.3.28 
Bumps [time](https://github.com/time-rs/time) from 0.3.27 to 0.3.28.
- [Release notes](https://github.com/time-rs/time/releases)
- [Changelog](https://github.com/time-rs/time/blob/main/CHANGELOG.md)
- [Commits](https://github.com/time-rs/time/compare/v0.3.27...v0.3.28)

---
updated-dependencies:
- dependency-name: time
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-27 19:11:35 +02:00
dependabot[bot]
0f42cd2d31 build(deps-dev): bump @types/node from 20.5.3 to 20.5.6 in /frontend 
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 20.5.3 to 20.5.6.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

---
updated-dependencies:
- dependency-name: "@types/node"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-27 18:06:26 +02:00
dependabot[bot]
e01f0b4e9a build(deps-dev): bump the vitest group in /frontend with 2 updates 
Bumps the vitest group in /frontend with 2 updates: [@vitest/coverage-v8](https://github.com/vitest-dev/vitest/tree/HEAD/packages/coverage-v8) and [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest).


Updates `@vitest/coverage-v8` from 0.34.2 to 0.34.3
- [Release notes](https://github.com/vitest-dev/vitest/releases)
- [Commits](https://github.com/vitest-dev/vitest/commits/v0.34.3/packages/coverage-v8)

Updates `vitest` from 0.34.2 to 0.34.3
- [Release notes](https://github.com/vitest-dev/vitest/releases)
- [Commits](https://github.com/vitest-dev/vitest/commits/v0.34.3/packages/vitest)

---
updated-dependencies:
- dependency-name: "@vitest/coverage-v8"
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: vitest
- dependency-name: vitest
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: vitest
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-27 18:05:43 +02:00
dependabot[bot]
e374c56d8d build(deps): bump serde from 1.0.186 to 1.0.187 
Bumps [serde](https://github.com/serde-rs/serde) from 1.0.186 to 1.0.187.
- [Release notes](https://github.com/serde-rs/serde/releases)
- [Commits](https://github.com/serde-rs/serde/compare/v1.0.186...v1.0.187)

---
updated-dependencies:
- dependency-name: serde
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-27 17:42:22 +02:00
dependabot[bot]
a6b4eba129 build(deps): bump pin-project-lite from 0.2.12 to 0.2.13 
Bumps [pin-project-lite](https://github.com/taiki-e/pin-project-lite) from 0.2.12 to 0.2.13.
- [Release notes](https://github.com/taiki-e/pin-project-lite/releases)
- [Changelog](https://github.com/taiki-e/pin-project-lite/blob/main/CHANGELOG.md)
- [Commits](https://github.com/taiki-e/pin-project-lite/compare/v0.2.12...v0.2.13)

---
updated-dependencies:
- dependency-name: pin-project-lite
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-27 17:42:03 +02:00
Kerry
8d7205bc5b Rename Home tab to Sessions (#1568) 
* rename /account/emails route to profile

* rename tab to sessions

* quick design pass and new session labels

* align copy on list pages with home page

* comment

* remove support for /emails

* bad unit test for Layout

* update snapshots, fix layout test

* fix snapshots from old version of compound

* better layout test

* coverage?

* userhome styles

* move no primary email alert to email list

* update snapshots

* Remove obselete snapshot & remove unnecessary logs

---------

Co-authored-by: Quentin Gliech <quenting@element.io>
 2023-08-25 16:17:46 +02:00
dependabot[bot]
bd2c138753 build(deps-dev): bump typescript from 5.1.6 to 5.2.2 in /frontend 
Bumps [typescript](https://github.com/Microsoft/TypeScript) from 5.1.6 to 5.2.2.
- [Release notes](https://github.com/Microsoft/TypeScript/releases)
- [Commits](https://github.com/Microsoft/TypeScript/commits)

---
updated-dependencies:
- dependency-name: typescript
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-25 15:59:36 +02:00
Quentin Gliech
c840e3ec55 Grab a database lock when syncing the config 
Fixes #1475
 2023-08-25 15:48:47 +02:00
Quentin Gliech
8eb93229f6 Add a basic login test to check session & CSRF cookies are correctly handled 2023-08-25 14:35:46 +02:00
Quentin Gliech
d054d72fee Handle cookies better by setting the right flags & expiration 2023-08-25 14:35:46 +02:00
dependabot[bot]
92f4d73438 build(deps): bump actions/checkout from 3.5.3 to 3.6.0 
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.5.3 to 3.6.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v3.5.3...v3.6.0)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-25 12:33:48 +02:00
dependabot[bot]
d0ea7e5f0e build(deps): bump @vector-im/compound-web in /frontend 
Bumps [@vector-im/compound-web](https://github.com/vector-im/compound-web) from 0.2.12 to 0.2.15.
- [Release notes](https://github.com/vector-im/compound-web/releases)
- [Commits](https://github.com/vector-im/compound-web/compare/v0.2.12...v0.2.15)

---
updated-dependencies:
- dependency-name: "@vector-im/compound-web"
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-25 12:33:31 +02:00
dependabot[bot]
1c7913f51c build(deps): bump serde from 1.0.185 to 1.0.186 
Bumps [serde](https://github.com/serde-rs/serde) from 1.0.185 to 1.0.186.
- [Release notes](https://github.com/serde-rs/serde/releases)
- [Commits](https://github.com/serde-rs/serde/compare/v1.0.185...v1.0.186)

---
updated-dependencies:
- dependency-name: serde
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-25 12:32:17 +02:00
dependabot[bot]
eece803306 build(deps): bump clap from 4.3.24 to 4.4.0 
Bumps [clap](https://github.com/clap-rs/clap) from 4.3.24 to 4.4.0.
- [Release notes](https://github.com/clap-rs/clap/releases)
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md)
- [Commits](https://github.com/clap-rs/clap/compare/v4.3.24...clap_complete-v4.4.0)

---
updated-dependencies:
- dependency-name: clap
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-25 12:32:06 +02:00
dependabot[bot]
db6f8ec1ca build(deps): bump wasmtime from 12.0.0 to 12.0.1 
Bumps [wasmtime](https://github.com/bytecodealliance/wasmtime) from 12.0.0 to 12.0.1.
- [Release notes](https://github.com/bytecodealliance/wasmtime/releases)
- [Changelog](https://github.com/bytecodealliance/wasmtime/blob/main/docs/WASI-some-possible-changes.md)
- [Commits](https://github.com/bytecodealliance/wasmtime/compare/v12.0.0...v12.0.1)

---
updated-dependencies:
- dependency-name: wasmtime
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-25 12:31:57 +02:00
Quentin Gliech
53f45f591c Skip the "continue" screens on upstream IDP logins for new accounts 2023-08-25 10:56:10 +02:00
Kerry
838c7d1c0a Rename 'Emails' route to 'Profile' (#1567) 
* rename /account/emails route to profile

* remove support for /emails

* bad unit test for Layout

* update snapshots, fix layout test

* fix snapshots from old version of compound

* better layout test

* coverage?
 2023-08-25 17:10:34 +12:00
Jonas Platte
8d0c39ea0e Replace serde_with's base64 encoding / decoding with a custom wrapper (#1526) 
Co-authored-by: Quentin Gliech <quenting@element.io>
 2023-08-24 17:40:25 +02:00
dependabot[bot]
314fbfa5a6 build(deps-dev): bump happy-dom from 10.9.0 to 10.11.0 in /frontend 
Bumps [happy-dom](https://github.com/capricorn86/happy-dom) from 10.9.0 to 10.11.0.
- [Release notes](https://github.com/capricorn86/happy-dom/releases)
- [Commits](https://github.com/capricorn86/happy-dom/compare/v10.9.0...v10.11.0)

---
updated-dependencies:
- dependency-name: happy-dom
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-23 23:11:20 +02:00
dependabot[bot]
cefc53f353 build(deps-dev): bump @types/react from 18.2.20 to 18.2.21 in /frontend 
Bumps [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) from 18.2.20 to 18.2.21.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react)

---
updated-dependencies:
- dependency-name: "@types/react"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-23 22:54:41 +02:00
dependabot[bot]
3b6518f085 build(deps-dev): bump postcss from 8.4.27 to 8.4.28 in /frontend 
Bumps [postcss](https://github.com/postcss/postcss) from 8.4.27 to 8.4.28.
- [Release notes](https://github.com/postcss/postcss/releases)
- [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md)
- [Commits](https://github.com/postcss/postcss/compare/8.4.27...8.4.28)

---
updated-dependencies:
- dependency-name: postcss
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-23 22:52:33 +02:00
dependabot[bot]
afce1a136a build(deps-dev): bump prettier from 3.0.1 to 3.0.2 in /frontend 
Bumps [prettier](https://github.com/prettier/prettier) from 3.0.1 to 3.0.2.
- [Release notes](https://github.com/prettier/prettier/releases)
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prettier/prettier/compare/3.0.1...3.0.2)

---
updated-dependencies:
- dependency-name: prettier
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-23 22:28:31 +02:00
dependabot[bot]
6567abbed7 build(deps-dev): bump @types/node from 20.5.0 to 20.5.3 in /frontend 
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 20.5.0 to 20.5.3.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

---
updated-dependencies:
- dependency-name: "@types/node"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-23 22:26:47 +02:00
Michael Telatynski
8bb5d69953 Remove [matrix] logo to be branding agnostic 
Fixes https://github.com/matrix-org/matrix-authentication-service/issues/1548
 2023-08-23 21:46:49 +02:00
Quentin Gliech
1da064d0cc frontend: update test snapshots 2023-08-23 20:09:55 +02:00
dependabot[bot]
3da08eed72 build(deps): bump @vector-im/compound-web in /frontend 
Bumps [@vector-im/compound-web](https://github.com/vector-im/compound-web) from 0.2.9 to 0.2.12.
- [Release notes](https://github.com/vector-im/compound-web/releases)
- [Commits](https://github.com/vector-im/compound-web/compare/v0.2.9...v0.2.12)

---
updated-dependencies:
- dependency-name: "@vector-im/compound-web"
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-23 20:09:55 +02:00