authentication-service

mirror of https://github.com/matrix-org/matrix-authentication-service.git synced 2025-08-09 04:22:45 +03:00

Author	SHA1	Message	Date
Quentin Gliech	6bce5e241b	Gracefully shutdown connections	2023-09-20 15:56:01 +02:00
Quentin Gliech	41dadcfd74	Fix broken doc links	2023-09-19 21:57:54 +02:00
Quentin Gliech	894957934d	Test the activity tracker on the introspection endpoint	2023-09-19 21:57:54 +02:00
Quentin Gliech	50558a7319	Make the last activity timestamp and IP available through the API	2023-09-19 21:57:54 +02:00
Quentin Gliech	b85655b944	Save the session activity in the database	2023-09-19 21:57:54 +02:00
Quentin Gliech	407c78a7be	Record the user session activity for most routes	2023-09-19 21:57:54 +02:00
Quentin Gliech	cf5510a1a2	Add an ActivityTracker which tracks session activity and regularly flush them to the database	2023-09-19 21:57:54 +02:00
dependabot[bot]	3f3e7daeeb	build(deps): bump clap from 4.4.3 to 4.4.4 Bumps [clap](https://github.com/clap-rs/clap) from 4.4.3 to 4.4.4. - [Release notes](https://github.com/clap-rs/clap/releases) - [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md) - [Commits](https://github.com/clap-rs/clap/compare/v4.4.3...v4.4.4) --- updated-dependencies: - dependency-name: clap dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-09-18 23:55:04 +02:00
dependabot[bot]	23f79426bb	build(deps): bump schemars from 0.8.13 to 0.8.15 Bumps [schemars](https://github.com/GREsau/schemars) from 0.8.13 to 0.8.15. - [Release notes](https://github.com/GREsau/schemars/releases) - [Changelog](https://github.com/GREsau/schemars/blob/master/CHANGELOG.md) - [Commits](https://github.com/GREsau/schemars/compare/v0.8.13...v0.8.15) --- updated-dependencies: - dependency-name: schemars dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-09-18 23:53:37 +02:00
dependabot[bot]	19c070cf5b	build(deps): bump axum-extra from 0.7.7 to 0.8.0 Bumps [axum-extra](https://github.com/tokio-rs/axum) from 0.7.7 to 0.8.0. - [Release notes](https://github.com/tokio-rs/axum/releases) - [Changelog](https://github.com/tokio-rs/axum/blob/main/CHANGELOG.md) - [Commits](https://github.com/tokio-rs/axum/compare/axum-extra-v0.7.7...axum-extra-v0.8.0) --- updated-dependencies: - dependency-name: axum-extra dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2023-09-18 23:52:53 +02:00
dependabot[bot]	c9997e76ab	build(deps): bump indoc from 2.0.3 to 2.0.4 Bumps [indoc](https://github.com/dtolnay/indoc) from 2.0.3 to 2.0.4. - [Release notes](https://github.com/dtolnay/indoc/releases) - [Commits](https://github.com/dtolnay/indoc/compare/2.0.3...2.0.4) --- updated-dependencies: - dependency-name: indoc dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-09-18 23:51:20 +02:00
Quentin Gliech	21406218aa	fixup! Deny URIs from client that are public suffixes	2023-09-18 11:57:50 +02:00
Quentin Gliech	7887387568	Deny URIs from client that are public suffixes	2023-09-18 11:57:50 +02:00
dependabot[bot]	db88d46945	build(deps): bump wasmtime from 12.0.1 to 12.0.2 Bumps [wasmtime](https://github.com/bytecodealliance/wasmtime) from 12.0.1 to 12.0.2. - [Release notes](https://github.com/bytecodealliance/wasmtime/releases) - [Changelog](https://github.com/bytecodealliance/wasmtime/blob/main/docs/WASI-some-possible-changes.md) - [Commits](https://github.com/bytecodealliance/wasmtime/compare/v12.0.1...v12.0.2) --- updated-dependencies: - dependency-name: wasmtime dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-09-16 12:05:41 +02:00
Quentin Gliech	c9155ef0cf	Rust dependencies housekeeping Including: - package upgrades - stop using the patched version of `ulid` - update cargo deny duplicate exception list	2023-09-14 23:43:00 +02:00
Quentin Gliech	386de570c7	Enable HTTP keepalive correctly	2023-09-14 17:03:17 +02:00
Quentin Gliech	54071c4969	Make the HTTP client factory reuse the underlying client This avoids duplicating clients, and makes it so that they all share the same connection pool.	2023-09-14 16:52:01 +02:00
Quentin Gliech	f29e4adcfa	Always initialize a metric reader to avoid crashes Fix #1552	2023-09-14 16:52:01 +02:00
dependabot[bot]	e7497d8cd2	build(deps): bump libc from 0.2.147 to 0.2.148 Bumps [libc](https://github.com/rust-lang/libc) from 0.2.147 to 0.2.148. - [Release notes](https://github.com/rust-lang/libc/releases) - [Commits](https://github.com/rust-lang/libc/compare/0.2.147...0.2.148) --- updated-dependencies: - dependency-name: libc dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-09-14 14:38:17 +02:00
dependabot[bot]	a016b30b08	build(deps): bump clap from 4.4.2 to 4.4.3 Bumps [clap](https://github.com/clap-rs/clap) from 4.4.2 to 4.4.3. - [Release notes](https://github.com/clap-rs/clap/releases) - [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md) - [Commits](https://github.com/clap-rs/clap/compare/v4.4.2...v4.4.3) --- updated-dependencies: - dependency-name: clap dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-09-13 18:28:48 +02:00
Quentin Gliech	9fcdad3142	Stop using deprecated chrono::DateTime::from_utc method	2023-09-13 18:28:41 +02:00
Quentin Gliech	9a77f67fbe	Make the error on introspection failure more explicit in the logs	2023-09-13 18:24:52 +02:00
dependabot[bot]	fdca016e38	build(deps): bump event-listener from 2.5.3 to 3.0.0 Bumps [event-listener](https://github.com/smol-rs/event-listener) from 2.5.3 to 3.0.0. - [Release notes](https://github.com/smol-rs/event-listener/releases) - [Changelog](https://github.com/smol-rs/event-listener/blob/master/CHANGELOG.md) - [Commits](https://github.com/smol-rs/event-listener/compare/v2.5.3...v3.0.0) --- updated-dependencies: - dependency-name: event-listener dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	2023-09-12 15:31:20 +02:00
Quentin Gliech	789040d22f	graphql: Fix the createOauth2Session mutation not persisting the changes to the database	2023-09-12 11:31:19 +02:00
Quentin Gliech	9c97a0c37a	storage: make the access token expiration optional	2023-09-11 12:03:42 +02:00
Quentin Gliech	e6b91c1ce4	data-model: make the access token expiration optional	2023-09-11 12:03:42 +02:00
Quentin Gliech	83ca90ee3d	Add a GraphQL mutation to create arbitrary OAuth2 sessions.	2023-09-11 12:03:42 +02:00
Quentin Gliech	20cb5dda8c	Have more granular errors on the refresh token grant	2023-09-08 15:19:43 +02:00
Quentin Gliech	0bb34ed3e0	Add the Sentry event ID in error response headers	2023-09-08 15:19:43 +02:00
dependabot[bot]	18734fee0d	build(deps): bump bytes from 1.4.0 to 1.5.0 Bumps [bytes](https://github.com/tokio-rs/bytes) from 1.4.0 to 1.5.0. - [Release notes](https://github.com/tokio-rs/bytes/releases) - [Changelog](https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md) - [Commits](https://github.com/tokio-rs/bytes/compare/v1.4.0...v1.5.0) --- updated-dependencies: - dependency-name: bytes dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2023-09-08 13:44:34 +02:00
dependabot[bot]	7bedb75976	build(deps): bump async-graphql from 6.0.5 to 6.0.6 Bumps [async-graphql](https://github.com/async-graphql/async-graphql) from 6.0.5 to 6.0.6. - [Release notes](https://github.com/async-graphql/async-graphql/releases) - [Changelog](https://github.com/async-graphql/async-graphql/blob/master/CHANGELOG.md) - [Commits](https://github.com/async-graphql/async-graphql/commits) --- updated-dependencies: - dependency-name: async-graphql dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-09-08 13:44:27 +02:00
Quentin Gliech	b0fb3281b0	Compoundify the consent screens	2023-09-06 15:58:54 +02:00
Quentin Gliech	5a6e630c73	Test that a client_credentials token with the admin scope can add a user	2023-09-06 09:35:34 +02:00
Quentin Gliech	d16b880267	policy: only require redirect_uris for the authorization_code and implicit grants	2023-09-06 09:35:34 +02:00
Quentin Gliech	c85f5f2768	Only allow using the refresh token grant if it was asked during the client registration	2023-09-06 09:35:34 +02:00
Quentin Gliech	aeb379eee9	oauth2-types: Only require redirect_uris & change the default response type for the auth code grant and implicit grant	2023-09-06 09:35:34 +02:00
Quentin Gliech	b9edbda5e1	Advertise the client_credentials grant in the discovery document	2023-09-06 09:35:34 +02:00
Quentin Gliech	542d0a6073	Implement the client credentials grant	2023-09-06 09:35:34 +02:00
Quentin Gliech	00fe5f902b	storage: add a method to create an OAuth 2.0 session for a client credentials grant	2023-09-06 09:35:34 +02:00
Quentin Gliech	8658a3400d	policy: prepare for the client credentials grant	2023-09-06 09:35:34 +02:00
Quentin Gliech	7a9197f222	storage-pg: make the user_id in oauth2_sessions nullable	2023-09-06 09:35:34 +02:00
Quentin Gliech	7e247830c9	data-model: Make the user_id optional in the OAuth 2.0 sessions	2023-09-06 09:35:34 +02:00
dependabot[bot]	d256bee1fd	build(deps): bump argon2 from 0.5.1 to 0.5.2 Bumps [argon2](https://github.com/RustCrypto/password-hashes) from 0.5.1 to 0.5.2. - [Commits](https://github.com/RustCrypto/password-hashes/compare/argon2-v0.5.1...argon2-v0.5.2) --- updated-dependencies: - dependency-name: argon2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-09-06 09:34:17 +02:00
dependabot[bot]	ef388b9fdc	build(deps): bump tera from 1.19.0 to 1.19.1 Bumps [tera](https://github.com/Keats/tera) from 1.19.0 to 1.19.1. - [Changelog](https://github.com/Keats/tera/blob/master/CHANGELOG.md) - [Commits](https://github.com/Keats/tera/commits) --- updated-dependencies: - dependency-name: tera dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-09-06 09:34:09 +02:00
Quentin Gliech	bc3f665739	graphql: expose the logo_uri in the OAuth 2.0 client Fixes #1705	2023-09-06 09:28:47 +02:00
Quentin Gliech	0896292006	Fix Clippy warnings about enum size variants difference	2023-09-04 16:45:21 +02:00
dependabot[bot]	455f2a7725	build(deps): bump async-graphql from 6.0.4 to 6.0.5 Bumps [async-graphql](https://github.com/async-graphql/async-graphql) from 6.0.4 to 6.0.5. - [Release notes](https://github.com/async-graphql/async-graphql/releases) - [Changelog](https://github.com/async-graphql/async-graphql/blob/master/CHANGELOG.md) - [Commits](https://github.com/async-graphql/async-graphql/commits) --- updated-dependencies: - dependency-name: async-graphql dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-09-04 09:37:26 +02:00
dependabot[bot]	650bb3cf1c	build(deps): bump clap from 4.4.1 to 4.4.2 Bumps [clap](https://github.com/clap-rs/clap) from 4.4.1 to 4.4.2. - [Release notes](https://github.com/clap-rs/clap/releases) - [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md) - [Commits](https://github.com/clap-rs/clap/compare/v4.4.1...v4.4.2) --- updated-dependencies: - dependency-name: clap dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-09-04 09:25:21 +02:00
dependabot[bot]	a46bd43dd2	build(deps): bump tower-http from 0.4.3 to 0.4.4 Bumps [tower-http](https://github.com/tower-rs/tower-http) from 0.4.3 to 0.4.4. - [Release notes](https://github.com/tower-rs/tower-http/releases) - [Commits](https://github.com/tower-rs/tower-http/compare/tower-http-0.4.3...tower-http-0.4.4) --- updated-dependencies: - dependency-name: tower-http dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-09-04 09:17:59 +02:00
Hugh Nimmo-Smith	bca3ab5eb6	Add CORS headers for /graphql	2023-09-01 17:30:33 +02:00

... 7 8 9 10 11 ...

1576 Commits