matrix/authentication-service
1
0
Fork 0
mirror of https://github.com/matrix-org/matrix-authentication-service.git synced 2025-11-20 12:02:22 +03:00
Code Activity
1,308 Commits 59 Branches 22 Tags
859c4486bbcb35e5ffb10a9c1cf7a338409d24e6
Commit Graph

240 Commits

Author SHA1 Message Date
Quentin Gliech
39cd9a2578 data-model: don't embed the client in the auth grant 2023-01-09 10:49:51 +01:00
Quentin Gliech
fb7c6f4dd1 storage: do less joins on authorization grants and refresh tokens 2023-01-05 16:49:19 +01:00
Quentin Gliech
603a26eabd storage: oauth2 session repository 2023-01-05 16:44:56 +01:00
Quentin Gliech
e26f75246d storage: Load with less joins 
This is done to simplify some queries, to avoid loading more data than
necessary, and in preparation of a proper cache layer
 2023-01-04 18:06:17 +01:00
Quentin Gliech
a7883618be Better tracing spans 2023-01-04 16:30:38 +01:00
Quentin Gliech
09a567ab17 storage: OAuth2 client repository 2023-01-04 16:30:32 +01:00
Quentin Gliech
53172d6a3f strorage: browser session and user password repositories 2023-01-03 15:58:01 +01:00
Quentin Gliech
13a9d03647 storage: user and user email repository 2023-01-02 15:28:44 +01:00
Quentin Gliech
870a37151f storage: upstream oauth session repository + unit tests 2022-12-30 15:39:51 +01:00
Quentin Gliech
0faf08fce2 storage: repository pattern for upstream oauth2 providers 2022-12-30 10:55:37 +01:00
Quentin Gliech
5969b574e2 WIP: repository pattern for upstream oauth2 links 2022-12-30 10:16:22 +01:00
Quentin Gliech
3bca5ab9be Add the standard API scope to the compat token introspection 2022-12-28 11:33:53 +01:00
Quentin Gliech
ca112d45e1 ci: Update clippy to 1.66 and fix new warnings 2022-12-16 18:16:18 +01:00
Quentin Gliech
82421c493c Remove the dependency mas-axum-utils <- mas-graphql 
This is done by loading the browser session earlier
Also removes the GraphQL subscription logic
 2022-12-15 16:51:43 +01:00
Quentin Gliech
fbbb842255 Remove dependency on mas-email and lettre in mas-config 2022-12-15 16:51:43 +01:00
Hugh Nimmo-Smith
61b14a08b3 Make the introspection endpoint return JSON error responses 2022-12-14 16:33:27 +01:00
Quentin Gliech
a475a9a164 Make the compat login use the new password manager 2022-12-14 16:04:36 +01:00
Quentin Gliech
533cabe005 Use the new password manager 2022-12-14 16:04:36 +01:00
Quentin Gliech
ff2f009b0e Password schemes configuration 2022-12-14 16:04:36 +01:00
Quentin Gliech
a6c3951d8c Start a modular password manager 2022-12-14 16:04:36 +01:00
Quentin Gliech
56d43b0166 storage: finish cleaning up the errors 2022-12-08 15:29:15 +01:00
Quentin Gliech
0ea9089f7f template: more cleanups 2022-12-08 15:29:15 +01:00
Quentin Gliech
13b1ac7c83 policy: define custom errors and ditch anyhow 2022-12-08 15:29:15 +01:00
Quentin Gliech
68890b7291 handlers: remove most usage of anyhow 2022-12-08 15:29:15 +01:00
Quentin Gliech
a836cc864a storage: unify most of the remaining errors 2022-12-08 15:29:15 +01:00
Quentin Gliech
102571512e storage: unify most oauth2 related errors 2022-12-08 15:29:15 +01:00
Quentin Gliech
b7cad48bbd storage: unify user operations errors 2022-12-08 15:29:15 +01:00
Quentin Gliech
f7f65e314b storage: unify the compat login errors 2022-12-08 15:29:15 +01:00
Quentin Gliech
1ddc05ff01 storage: start unifying database errors 2022-12-08 15:29:15 +01:00
Quentin Gliech
12ce2a3d04 data-model: simplify the authorization grants and sessions 2022-12-08 15:29:15 +01:00
Quentin Gliech
92d6f5b087 data-model: simplify the oauth2 clients 2022-12-08 15:29:15 +01:00
Quentin Gliech
6d82199910 Resolve clippy errors 2022-12-08 15:29:15 +01:00
Quentin Gliech
479e009931 data-model: simplify the compat sessions 2022-12-08 15:29:15 +01:00
Quentin Gliech
feebbd0e97 data-model: simplify users and sessions 2022-12-08 15:29:15 +01:00
Quentin Gliech
23fd833d45 Save the post auth action during upstream OAuth login 2022-12-05 19:39:51 +01:00
Quentin Gliech
4d93f4d4f0 Refactor the upstream oauth session cookie 2022-12-05 19:39:51 +01:00
Quentin Gliech
989e464dd0 WIP: Provider list on the login page 2022-12-05 19:39:51 +01:00
Quentin Gliech
2e7112ef13 GraphQL API 2022-12-05 19:39:51 +01:00
Quentin Gliech
07636dd9e7 Tidy up upstream linking templates 2022-12-05 19:39:51 +01:00
Quentin Gliech
fcb6190a56 Simplify route error handling 2022-12-05 19:39:51 +01:00
Quentin Gliech
28bfce7e45 Save the ID token during an upstream authorization 2022-12-05 19:39:51 +01:00
Quentin Gliech
bf432a31e1 OIDC account linking and login 2022-12-05 19:39:51 +01:00
Quentin Gliech
22a337cd45 WIP: handle account linking 2022-12-05 19:39:51 +01:00
Quentin Gliech
cde9187adc Lookup and save upstream links 2022-12-05 19:39:51 +01:00
Quentin Gliech
4227fa7a83 Add a global HTTP client factory 2022-12-05 19:39:51 +01:00
Quentin Gliech
16088fc11c Refactor the provider client credentials extraction 2022-12-05 19:39:51 +01:00
Quentin Gliech
bedcf44741 WIP: upstream OIDC provider support 2022-12-05 19:39:51 +01:00
Quentin Gliech
95a879585b Make the OIDC issuer a string instead of a URL 2022-12-02 18:04:07 +01:00
Quentin Gliech
0ca4366f75 Use associated error type in claims validator instead of anyhow. 2022-12-01 14:34:19 +01:00
Quentin Gliech
809f836bb4 Migrate to axum 0.6.0-rc.5 2022-11-21 15:04:16 +01:00