matrix/authentication-service
1
0
Fork 0
mirror of https://github.com/matrix-org/matrix-authentication-service.git synced 2025-11-20 12:02:22 +03:00
Code Activity
2,030 Commits 59 Branches 22 Tags
8984cc703b2242d39b5e7033f1d8f08b51ebd0c4
Commit Graph

1240 Commits

Author SHA1 Message Date
dependabot[bot]
9f6abefa21 Bump ecdsa from 0.14.3 to 0.14.4 
Bumps [ecdsa](https://github.com/RustCrypto/signatures) from 0.14.3 to 0.14.4.
- [Release notes](https://github.com/RustCrypto/signatures/releases)
- [Commits](https://github.com/RustCrypto/signatures/compare/ecdsa/v0.14.3...ecdsa/v0.14.4)

---
updated-dependencies:
- dependency-name: ecdsa
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-19 12:43:27 +02:00
dependabot[bot]
862332543d Bump once_cell from 1.13.0 to 1.13.1 
Bumps [once_cell](https://github.com/matklad/once_cell) from 1.13.0 to 1.13.1.
- [Release notes](https://github.com/matklad/once_cell/releases)
- [Changelog](https://github.com/matklad/once_cell/blob/master/CHANGELOG.md)
- [Commits](https://github.com/matklad/once_cell/compare/v1.13.0...v1.13.1)

---
updated-dependencies:
- dependency-name: once_cell
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-19 12:41:16 +02:00
Quentin Gliech
fbe12a67f2 Add the evaluation context policy generic parameter 2022-08-19 12:37:10 +02:00
dependabot[bot]
22b1406279 Bump chrono from 0.4.20 to 0.4.22 
Bumps [chrono](https://github.com/chronotope/chrono) from 0.4.20 to 0.4.22.
- [Release notes](https://github.com/chronotope/chrono/releases)
- [Changelog](https://github.com/chronotope/chrono/blob/main/CHANGELOG.md)
- [Commits](https://github.com/chronotope/chrono/compare/v0.4.20...v0.4.22)

---
updated-dependencies:
- dependency-name: chrono
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-19 12:21:07 +02:00
dependabot[bot]
739507d883 Bump futures-util from 0.3.21 to 0.3.23 
Bumps [futures-util](https://github.com/rust-lang/futures-rs) from 0.3.21 to 0.3.23.
- [Release notes](https://github.com/rust-lang/futures-rs/releases)
- [Changelog](https://github.com/rust-lang/futures-rs/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rust-lang/futures-rs/compare/0.3.21...0.3.23)

---
updated-dependencies:
- dependency-name: futures-util
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-19 12:19:45 +02:00
dependabot[bot]
f0efc2c695 Bump axum-extra from 0.3.6 to 0.3.7 
Bumps [axum-extra](https://github.com/tokio-rs/axum) from 0.3.6 to 0.3.7.
- [Release notes](https://github.com/tokio-rs/axum/releases)
- [Changelog](https://github.com/tokio-rs/axum/blob/main/CHANGELOG.md)
- [Commits](https://github.com/tokio-rs/axum/compare/axum-extra-v0.3.6...axum-extra-v0.3.7)

---
updated-dependencies:
- dependency-name: axum-extra
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-19 12:18:16 +02:00
dependabot[bot]
569c2f71d8 Bump signature from 1.5.0 to 1.6.0 
Bumps [signature](https://github.com/RustCrypto/traits) from 1.5.0 to 1.6.0.
- [Release notes](https://github.com/RustCrypto/traits/releases)
- [Commits](https://github.com/RustCrypto/traits/compare/signature-v1.5.0...signature-v1.6.0)

---
updated-dependencies:
- dependency-name: signature
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-19 12:11:30 +02:00
dependabot[bot]
3a0d4a43d7 Bump serde_yaml from 0.9.4 to 0.9.9 
Bumps [serde_yaml](https://github.com/dtolnay/serde-yaml) from 0.9.4 to 0.9.9.
- [Release notes](https://github.com/dtolnay/serde-yaml/releases)
- [Commits](https://github.com/dtolnay/serde-yaml/compare/0.9.4...0.9.9)

---
updated-dependencies:
- dependency-name: serde_yaml
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-19 11:57:58 +02:00
dependabot[bot]
9d3dd3d168 Bump tera from 1.16.0 to 1.17.0 
Bumps [tera](https://github.com/Keats/tera) from 1.16.0 to 1.17.0.
- [Release notes](https://github.com/Keats/tera/releases)
- [Changelog](https://github.com/Keats/tera/blob/master/CHANGELOG.md)
- [Commits](https://github.com/Keats/tera/compare/v1.16.0...v1.17.0)

---
updated-dependencies:
- dependency-name: tera
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-19 11:55:24 +02:00
dependabot[bot]
b64812d77c Bump axum from 0.5.13 to 0.5.15 
Bumps [axum](https://github.com/tokio-rs/axum) from 0.5.13 to 0.5.15.
- [Release notes](https://github.com/tokio-rs/axum/releases)
- [Changelog](https://github.com/tokio-rs/axum/blob/main/CHANGELOG.md)
- [Commits](https://github.com/tokio-rs/axum/compare/axum-v0.5.13...axum-v0.5.15)

---
updated-dependencies:
- dependency-name: axum
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-19 11:47:07 +02:00
Quentin Gliech
809a3ad00c Bump OPA to 0.43 and Rust to 1.63 in Docker image 
Also bumps the Dockerfile frontend to 1.4
 2022-08-19 11:43:36 +02:00
Quentin Gliech
0ac41a7a2a Bump AWS crates 2022-08-19 11:13:36 +02:00
dependabot[bot]
7c12b330db Bump chacha20poly1305 from 0.10.0 to 0.10.1 
Bumps [chacha20poly1305](https://github.com/RustCrypto/AEADs) from 0.10.0 to 0.10.1.
- [Release notes](https://github.com/RustCrypto/AEADs/releases)
- [Commits](https://github.com/RustCrypto/AEADs/compare/chacha20poly1305-v0.10.0...chacha20poly1305-v0.10.1)

---
updated-dependencies:
- dependency-name: chacha20poly1305
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-19 11:04:39 +02:00
Quentin Gliech
95eba8f88b Apply suggestions from code review 
Co-authored-by: Kévin Commaille <76261501+zecakeh@users.noreply.github.com>
 2022-08-19 10:51:24 +02:00
Quentin Gliech
185ff622f9 Gate some crates behind features in mas-http 2022-08-19 10:51:24 +02:00
Quentin Gliech
9fe541f7b6 Add a layer to catch HTTP error codes 2022-08-19 10:51:24 +02:00
Quentin Gliech
d94442f972 Layer to application/x-www-form-urlencoded bodies 2022-08-19 10:51:24 +02:00
Quentin Gliech
398379e21b Better Tower layers 2022-08-19 10:51:24 +02:00
dependabot[bot]
244aa1d0ac Bump cssnano from 5.1.12 to 5.1.13 in /crates/static-files 
Bumps [cssnano](https://github.com/cssnano/cssnano) from 5.1.12 to 5.1.13.
- [Release notes](https://github.com/cssnano/cssnano/releases)
- [Commits](https://github.com/cssnano/cssnano/commits)

---
updated-dependencies:
- dependency-name: cssnano
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-19 10:34:11 +02:00
dependabot[bot]
31aa7b6913 Bump anyhow from 1.0.59 to 1.0.62 
Bumps [anyhow](https://github.com/dtolnay/anyhow) from 1.0.59 to 1.0.62.
- [Release notes](https://github.com/dtolnay/anyhow/releases)
- [Commits](https://github.com/dtolnay/anyhow/compare/1.0.59...1.0.62)

---
updated-dependencies:
- dependency-name: anyhow
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-19 10:23:21 +02:00
dependabot[bot]
fffeef80c5 Bump postcss from 8.4.14 to 8.4.16 in /crates/static-files 
Bumps [postcss](https://github.com/postcss/postcss) from 8.4.14 to 8.4.16.
- [Release notes](https://github.com/postcss/postcss/releases)
- [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md)
- [Commits](https://github.com/postcss/postcss/compare/8.4.14...8.4.16)

---
updated-dependencies:
- dependency-name: postcss
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-19 10:14:18 +02:00
Kévin Commaille
78f41c7d86 Improve docs for the prompt_values_supported field 2022-08-12 12:19:17 +02:00
Kévin Commaille
5c8b442747 Fix new clippy 0.1.63 warnings 2022-08-12 11:05:21 +02:00
Kévin Commaille
759809b7fd Document field requirements in ProviderMetadata docs 2022-08-11 17:20:17 +02:00
Kévin Commaille
f6fc51a76f Use LanguageTag for lists of locales in ProviderMetadata 2022-08-11 17:20:17 +02:00
Kévin Commaille
222551ad7f Allow to validate provider metadata 
According to the OpenID Connect Discovery 1.0 spec.
Provide the default values for fields when they are defined.
Introduce VerifiedProviderMetadata.
Rename Metadata to ProviderMetadata.
Implement Deserialize for ProviderMetadata.
 2022-08-11 17:20:17 +02:00
Kévin Commaille
c63345fe31 Fix type of metadata pushed authorization request endpoint 2022-08-11 17:20:17 +02:00
Quentin Gliech
d00bf6a2d2 Add missing clippy lints in mas-axum-utils 2022-08-08 10:06:20 +02:00
Quentin Gliech
c1ed726dc8 Enable the clippy::str_to_string lint 2022-08-08 10:06:20 +02:00
dependabot[bot]
78fe152d9b Bump tailwindcss from 3.1.7 to 3.1.8 in /crates/static-files 
Bumps [tailwindcss](https://github.com/tailwindlabs/tailwindcss) from 3.1.7 to 3.1.8.
- [Release notes](https://github.com/tailwindlabs/tailwindcss/releases)
- [Changelog](https://github.com/tailwindlabs/tailwindcss/blob/master/CHANGELOG.md)
- [Commits](https://github.com/tailwindlabs/tailwindcss/compare/v3.1.7...v3.1.8)

---
updated-dependencies:
- dependency-name: tailwindcss
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-08 09:58:00 +02:00
Hugh Nimmo-Smith
3215e86eaa Use unstable prefixes for scope names (#337) 2022-08-05 17:58:22 +00:00
dependabot[bot]
2568720106 Bump chrono from 0.4.19 to 0.4.20 
Bumps [chrono](https://github.com/chronotope/chrono) from 0.4.19 to 0.4.20.
- [Release notes](https://github.com/chronotope/chrono/releases)
- [Changelog](https://github.com/chronotope/chrono/blob/main/CHANGELOG.md)
- [Commits](https://github.com/chronotope/chrono/compare/v0.4.19...v0.4.20)

---
updated-dependencies:
- dependency-name: chrono
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-05 09:48:09 +02:00
Quentin Gliech
2e2c3d54a6 Test HTTP handlers 2022-08-05 09:48:02 +02:00
Quentin Gliech
646a0f26d6 Database testing 2022-08-05 09:48:02 +02:00
dependabot[bot]
3cfd0f1553 Bump serde from 1.0.141 to 1.0.142 
Bumps [serde](https://github.com/serde-rs/serde) from 1.0.141 to 1.0.142.
- [Release notes](https://github.com/serde-rs/serde/releases)
- [Commits](https://github.com/serde-rs/serde/compare/v1.0.141...v1.0.142)

---
updated-dependencies:
- dependency-name: serde
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-04 11:30:39 +02:00
dependabot[bot]
25a7d6cba5 Bump serde_json from 1.0.82 to 1.0.83 
Bumps [serde_json](https://github.com/serde-rs/json) from 1.0.82 to 1.0.83.
- [Release notes](https://github.com/serde-rs/json/releases)
- [Commits](https://github.com/serde-rs/json/compare/v1.0.82...v1.0.83)

---
updated-dependencies:
- dependency-name: serde_json
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-04 10:43:50 +02:00
dependabot[bot]
2e8f180675 Bump sqlx from 0.6.0 to 0.6.1 
Bumps [sqlx](https://github.com/launchbadge/sqlx) from 0.6.0 to 0.6.1.
- [Release notes](https://github.com/launchbadge/sqlx/releases)
- [Changelog](https://github.com/launchbadge/sqlx/blob/main/CHANGELOG.md)
- [Commits](https://github.com/launchbadge/sqlx/commits)

---
updated-dependencies:
- dependency-name: sqlx
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-04 10:03:39 +02:00
dependabot[bot]
3b56287c99 Bump thiserror from 1.0.31 to 1.0.32 
Bumps [thiserror](https://github.com/dtolnay/thiserror) from 1.0.31 to 1.0.32.
- [Release notes](https://github.com/dtolnay/thiserror/releases)
- [Commits](https://github.com/dtolnay/thiserror/compare/1.0.31...1.0.32)

---
updated-dependencies:
- dependency-name: thiserror
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-04 09:21:37 +02:00
dependabot[bot]
b3486cc373 Bump elliptic-curve from 0.12.2 to 0.12.3 
Bumps [elliptic-curve](https://github.com/RustCrypto/traits) from 0.12.2 to 0.12.3.
- [Release notes](https://github.com/RustCrypto/traits/releases)
- [Commits](https://github.com/RustCrypto/traits/compare/elliptic-curve-v0.12.2...elliptic-curve-v0.12.3)

---
updated-dependencies:
- dependency-name: elliptic-curve
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-03 19:08:56 +02:00
dependabot[bot]
4ad3bfccbc Bump serde_yaml from 0.9.2 to 0.9.4 
Bumps [serde_yaml](https://github.com/dtolnay/serde-yaml) from 0.9.2 to 0.9.4.
- [Release notes](https://github.com/dtolnay/serde-yaml/releases)
- [Commits](https://github.com/dtolnay/serde-yaml/compare/0.9.2...0.9.4)

---
updated-dependencies:
- dependency-name: serde_yaml
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-03 16:29:48 +02:00
dependabot[bot]
20f2b5db74 Bump indoc from 1.0.6 to 1.0.7 
Bumps [indoc](https://github.com/dtolnay/indoc) from 1.0.6 to 1.0.7.
- [Release notes](https://github.com/dtolnay/indoc/releases)
- [Commits](https://github.com/dtolnay/indoc/compare/1.0.6...1.0.7)

---
updated-dependencies:
- dependency-name: indoc
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-03 16:29:39 +02:00
Quentin Gliech
649e5cd645 Move the PKCE validation logic to oauth2-types 2022-08-03 13:57:31 +02:00
Quentin Gliech
f7361f871e Fix PKCE characters verification rules & add tests 2022-08-03 13:57:31 +02:00
Quentin Gliech
51848bf89d Update crates/data-model/src/oauth2/authorization_grant.rs 
Co-authored-by: Hugh Nimmo-Smith <hughns@users.noreply.github.com>
 2022-08-03 13:57:31 +02:00
Quentin Gliech
372b32a780 Make PKCE implementation compliant with RFC7636 
This checks for the PKCE code_verifier length as well as the characters
used. It also give better errors when the PKCE verifier is invalid.

Fixes #316
 2022-08-03 13:57:31 +02:00
Quentin Gliech
23360bc233 Support the autocorrect and autocapitalize attributes in the field macro 2022-08-01 20:27:27 +02:00
Doug
669773ae4d Disable autocorrection/captialisation on username text fields 2022-08-01 20:27:27 +02:00
Quentin Gliech
e3e659b701 Switch back rsa crate to a published pre-version 2022-08-01 19:41:38 +02:00
Quentin Gliech
44b2708f7a Bump serde_with 2022-08-01 19:38:22 +02:00
dependabot[bot]
97eb6a44e0 Bump tailwindcss from 3.1.5 to 3.1.7 in /crates/static-files 
Bumps [tailwindcss](https://github.com/tailwindlabs/tailwindcss) from 3.1.5 to 3.1.7.
- [Release notes](https://github.com/tailwindlabs/tailwindcss/releases)
- [Changelog](https://github.com/tailwindlabs/tailwindcss/blob/master/CHANGELOG.md)
- [Commits](https://github.com/tailwindlabs/tailwindcss/compare/v3.1.5...v3.1.7)

---
updated-dependencies:
- dependency-name: tailwindcss
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-08-01 17:50:58 +02:00