authentication-service

mirror of https://github.com/matrix-org/matrix-authentication-service.git synced 2025-11-20 12:02:22 +03:00

Author	SHA1	Message	Date
Quentin Gliech	aa2e2229bc	Finish moving the site config	2024-04-30 13:33:47 +02:00
Quentin Gliech	61a69f5af4	Upgrade chrono and replace deprecated methods usage	2024-03-18 17:26:40 +01:00
Quentin Gliech	f3cbd3b315	Parse User Agents on the backend side (#2388 ) * Parse user agents on the server side * Parse and expose user agents on the backend * Use the parsed user agent in the device consent page * Fix the device icon tests * Fix clippy warnings * Box stuff to avoid large enum variants * Ignore a clippy warning * Fix the requester boxing	2024-02-23 16:47:48 +01:00
Quentin Gliech	f171d76dc5	Record user agents on OAuth 2.0 and compat sessions (#2386 ) * Record user agents on OAuth 2.0 and compat sessions * Add tests for recording user agent in sessions	2024-02-22 10:01:32 +01:00
Quentin Gliech	31936bcc00	Save whether the client supports the device code grant in the database	2024-02-02 18:01:51 +01:00
Quentin Gliech	efa6af3294	Run generated files updates, fix doc links & fmt	2024-02-02 18:01:51 +01:00
Quentin Gliech	7d9d97a006	Implement the device access token request	2024-02-02 18:01:51 +01:00
Quentin Gliech	407c78a7be	Record the user session activity for most routes	2023-09-19 21:57:54 +02:00
Quentin Gliech	9c97a0c37a	storage: make the access token expiration optional	2023-09-11 12:03:42 +02:00
Quentin Gliech	20cb5dda8c	Have more granular errors on the refresh token grant	2023-09-08 15:19:43 +02:00
Quentin Gliech	0bb34ed3e0	Add the Sentry event ID in error response headers	2023-09-08 15:19:43 +02:00
Quentin Gliech	c85f5f2768	Only allow using the refresh token grant if it was asked during the client registration	2023-09-06 09:35:34 +02:00
Quentin Gliech	542d0a6073	Implement the client credentials grant	2023-09-06 09:35:34 +02:00
Quentin Gliech	00fe5f902b	storage: add a method to create an OAuth 2.0 session for a client credentials grant	2023-09-06 09:35:34 +02:00
Quentin Gliech	bc04860afb	Make the access tokens TTL configurable	2023-08-31 18:05:00 +02:00
Quentin Gliech	5d3b8cd92f	Store the browser user-agent when starting a browser session	2023-08-29 17:38:01 +02:00
Quentin Gliech	438a10332a	Add the user_id directly on oauth2_sessions and make the scope a text list	2023-08-29 12:52:24 +02:00
Quentin Gliech	17e28f56c1	Upgrade Rust to 1.72.0 Fixes new clippy errors and upgrade other tools	2023-08-28 18:05:56 +02:00
Quentin Gliech	802cf142fd	Remove the last authentication from the browser session model	2023-07-21 19:50:30 +02:00
Quentin Gliech	77fc67c29b	Silence clippy warning about a function being too long	2023-04-24 10:42:38 +02:00
Quentin Gliech	d34e01fc67	Provision and delete Matrix devices in OAuth sessions	2023-04-24 10:42:38 +02:00
Quentin Gliech	17471c651e	handlers: add tests for the token endpoint This also simplifies the way we issue tokens in tests	2023-02-22 19:38:01 +01:00
Quentin Gliech	87914cbcb3	Capture better errors in Sentry	2023-01-31 16:25:15 +01:00
Quentin Gliech	875025467e	Log more errors and setup Sentry integration	2023-01-30 18:04:44 +01:00
Quentin Gliech	6a8c79c497	storage: impl Repository for Box<impl Repository + ?Sized>	2023-01-24 09:51:49 +01:00
Quentin Gliech	a9facab131	Box the repository everywhere	2023-01-20 17:53:04 +01:00
Quentin Gliech	f4c64c2171	storage: ensure the repository trait can be boxed and define some wrappers to map the errors	2023-01-19 19:10:35 +01:00
Quentin Gliech	876bc9fcb3	handlers: extract the PgRepository from the request Also fix a bunch of clippy errors & doctests	2023-01-18 18:22:13 +01:00
Quentin Gliech	9005931e2a	handlers: box the rng and clock, and extract it from the state	2023-01-18 17:49:59 +01:00
Quentin Gliech	142fdbd45a	storage: make the Clock a trait	2023-01-18 12:20:30 +01:00
Quentin Gliech	73a921cc30	Split the storage trait from the implementation	2023-01-18 10:38:22 +01:00
Quentin Gliech	195203823a	storage: wrap the postgres repository in a struct	2023-01-13 18:03:37 +01:00
Quentin Gliech	488a666a8d	storage: remaining oauth2 repositories - authorization grants - access tokens - refresh tokens	2023-01-12 18:26:04 +01:00
Quentin Gliech	9f0c9f1466	storage: cleanup access/refresh token lookups	2023-01-11 12:14:52 +01:00
Quentin Gliech	fb7c6f4dd1	storage: do less joins on authorization grants and refresh tokens	2023-01-05 16:49:19 +01:00
Quentin Gliech	603a26eabd	storage: oauth2 session repository	2023-01-05 16:44:56 +01:00
Quentin Gliech	e26f75246d	storage: Load with less joins This is done to simplify some queries, to avoid loading more data than necessary, and in preparation of a proper cache layer	2023-01-04 18:06:17 +01:00
Quentin Gliech	68890b7291	handlers: remove most usage of anyhow	2022-12-08 15:29:15 +01:00
Quentin Gliech	a836cc864a	storage: unify most of the remaining errors	2022-12-08 15:29:15 +01:00
Quentin Gliech	102571512e	storage: unify most oauth2 related errors	2022-12-08 15:29:15 +01:00
Quentin Gliech	92d6f5b087	data-model: simplify the oauth2 clients	2022-12-08 15:29:15 +01:00
Quentin Gliech	4227fa7a83	Add a global HTTP client factory	2022-12-05 19:39:51 +01:00
Quentin Gliech	0ca4366f75	Use associated error type in claims validator instead of anyhow.	2022-12-01 14:34:19 +01:00
Quentin Gliech	78778648ca	Allow fetching more nodes by their IDs	2022-11-18 13:43:01 +01:00
Quentin Gliech	559181c2c3	Pass the rng and clock around	2022-11-02 18:59:00 +01:00
Quentin Gliech	e2142f9cd4	Database refactoring	2022-11-02 18:59:00 +01:00
Kévin Commaille	80d317f23c	Add variants for unknown values on mas-iana types Remove the Copy derive and mark enums as non-exhaustive.	2022-09-28 13:43:39 +02:00
Kévin Commaille	0452ac10e6	Move claim hash token function to mas-jose crate Change the hash function according to the signature algorithm, according to the OpendID Connect spec.	2022-09-06 14:15:05 +02:00
Quentin Gliech	fa47f6e150	Upgrade axum to 0.6.0-rc.1	2022-09-06 13:11:54 +02:00
Quentin Gliech	b9e46dfc55	Some cleanups	2022-09-02 15:37:46 +02:00

1 2

76 Commits