matrix/authentication-service
1
0
Fork 0
mirror of https://github.com/matrix-org/matrix-authentication-service.git synced 2025-08-07 17:03:01 +03:00
Code Activity
2,847 Commits 59 Branches 22 Tags
rei/rate_limiting_configuration
Commit Graph

135 Commits

Author SHA1 Message Date
Olivier 'reivilibre
610064571f fixup! Add configuration for rate-limiting of logins, replacing hardcoded limits 2024-08-07 17:32:17 +01:00
Olivier 'reivilibre
8df3ec459f fixup! Add configuration for rate-limiting of logins, replacing hardcoded limits 2024-08-07 15:19:59 +01:00
Olivier 'reivilibre
11abd7a458 Add configuration for rate-limiting of logins, replacing hardcoded limits 2024-08-07 13:56:06 +01:00
Quentin Gliech
9ea77a9562 admin: lock user API 2024-08-06 13:43:13 +02:00
Quentin Gliech
2307c05c69 admin: user unlock API 2024-08-06 13:31:28 +02:00
Quentin Gliech
117e124ddf admin: user deactivation API 2024-08-06 11:48:19 +02:00
Quentin Gliech
65f1c45095 admin: add operation ID on user add operation 2024-08-01 16:23:08 +02:00
Quentin Gliech
94004ce18c Rename the payload struct to appease clippy 2024-08-01 16:23:08 +02:00
Quentin Gliech
221f227baa admin: add API to create users 2024-08-01 16:23:08 +02:00
Quentin Gliech
d03dd41345 admin: add operation IDs on user operations & other improvements 
This also documents better the user list operation parameters
 2024-08-01 15:17:14 +02:00
Quentin Gliech
78e988b7cc Tweak the schema generation and use a common definition for ULIDs 2024-08-01 15:17:14 +02:00
Quentin Gliech
cdecac735e Tweak the schema to use summary instead of description and add tags 2024-08-01 15:17:14 +02:00
Quentin Gliech
3f947025e2 Host a Swagger UI both in the static documentation and by the server 2024-08-01 15:17:14 +02:00
Quentin Gliech
b261ac0a17 Document the new account-management options 2024-08-01 14:50:21 +02:00
Quentin Gliech
8b3451d66f Move the account-related options out of experimental 2024-08-01 14:50:21 +02:00
Quentin Gliech
f5b4caf520 admin: add APIs to list and get users 2024-07-26 11:36:55 +02:00
Quentin Gliech
43ff6dc9d3 doc: auto-generate the API schema in the documentation 2024-07-26 11:36:55 +02:00
Quentin Gliech
76755610cb config: allow serving the admin API routes 2024-07-26 11:36:55 +02:00
Josh Simmons
d6a54124c7 update contributing docs with DCO 2024-07-25 10:01:53 +02:00
reivilibre
fbc360d1a9 Backend work to support minimum password complexity (#2965) 
* config: Add minimum password complexity option

* PasswordManager: add function for checking if complexity is sufficient

* Enforce password complexity on registration, change and recovery

* cli: Use exit code 1 for weak passwords

This seems preferable to exit code 0, but ideally we should choose one
and document it.

* Expose minimum password complexity score over GraphQL
 2024-07-11 10:17:39 +01:00
Christian Tramnitz
3ab733bf3a Fix RFC1918 network in default proxy configuration (#2908) 2024-07-05 08:22:39 +00:00
Quentin Gliech
c4c0c74473 Document the new SSL options 2024-07-05 09:54:18 +02:00
Quentin Gliech
eff66726d5 New config options to set the database certificates 2024-07-05 09:54:18 +02:00
Quentin Gliech
f9f2f4a3be Gate account recovery behing a configuration flag 2024-06-28 15:59:21 +02:00
Quentin Gliech
ba8749fe33 Document the CAPTCHA configuration 2024-05-15 09:38:10 +02:00
Quentin Gliech
0e270d5449 hCaptcha support 2024-05-15 09:38:10 +02:00
Quentin Gliech
f9ae7ae313 Cloudflare Turnstile support 2024-05-15 09:38:10 +02:00
Quentin Gliech
a3beeb2398 Render reCAPTCHA challenge on the registration form 2024-05-15 09:38:10 +02:00
Quentin Gliech
56d370f1d5 Add a few words on what MAS is at the beginning of the documentation 2024-05-14 10:44:41 +02:00
Quentin Gliech
f3b481f4ae Apply typos corrections from review 
Co-authored-by: Will Lewis <1543626+wrjlewis@users.noreply.github.com>
 2024-05-14 10:44:41 +02:00
Quentin Gliech
0c2305ad6f Clarify what authz as a user means for the urn:mas:graphql:* scope 2024-05-14 10:44:41 +02:00
Quentin Gliech
e2cfa23401 Add missing documentation for some configuration parameters 2024-05-14 10:44:41 +02:00
Quentin Gliech
603de2b620 Rework the docuemntation overview 2024-05-14 10:44:41 +02:00
Quentin Gliech
76e9c32642 Document part of the GraphQL API and the scopes used by MAS 2024-05-14 10:44:41 +02:00
Quentin Gliech
3a55a0d745 Explain what the different grants and sessions are 2024-05-14 10:44:41 +02:00
Quentin Gliech
10eb93059c Write about the policy engine 2024-05-14 10:44:41 +02:00
Quentin Gliech
87dc0debbf docs: Rename the "usage" section to "reference" 2024-05-14 10:44:41 +02:00
Quentin Gliech
3978acd94e Fix recently added Clippy lints 
This also ignores the clippy::blocks_in_conditions lint in two crates,
until tracing gets fixed: https://github.com/tokio-rs/tracing/issues/2876
 2024-05-07 07:32:02 +02:00
Quentin Gliech
90080235da Introduce config to restrict user capabilities 2024-04-30 13:33:47 +02:00
Quentin Gliech
cd0ec35d2f Soft-delete upstream OAuth 2.0 providers on config sync 2024-04-03 09:51:22 +02:00
Quentin Gliech
58fd6ab4c1 Allow disabling registrations (#2553) 2024-04-03 09:27:14 +02:00
Quentin Gliech
8e7bb26a51 Simplify ConfigurationSection trait & skip default values when serializing 
This removes the `test` and `generate` methods from the
`ConfigurationSection` trait, as they did not really had a reason to
exist in the trait itself.
 2024-03-22 13:33:09 +01:00
Quentin Gliech
fc7489c5f8 Flatten the upstream_oauth2 config section 2024-03-22 13:33:09 +01:00
Quentin Gliech
aa6178abe6 Flatten the telemetry config section 2024-03-22 13:33:09 +01:00
Quentin Gliech
809fe16d29 Flatten the secrets config section 2024-03-22 13:33:09 +01:00
Quentin Gliech
156dc08280 Clean up the default policy config data 2024-03-22 13:33:09 +01:00
Quentin Gliech
f5b34b5b18 Flatten the passwords config section 2024-03-22 13:33:09 +01:00
Quentin Gliech
8bc35f63d8 Flatten the http config 
Also properly remove the `spa` resource
 2024-03-22 13:33:09 +01:00
Quentin Gliech
6d77d0ed25 Flatten the email config 2024-03-22 13:33:09 +01:00
Quentin Gliech
bf50469da1 Flatten the database config 2024-03-22 13:33:09 +01:00