matrix/authentication-service
1
0
Fork 0
mirror of https://github.com/matrix-org/matrix-authentication-service.git synced 2025-11-19 00:26:27 +03:00
Code Activity
2,802 Commits 59 Branches 22 Tags
d03dd41345d74ba9c784ea79500318b33ebca16c
Commit Graph

1549 Commits

Author SHA1 Message Date
Quentin Gliech
8608e46eba Graceful shutdown of the server 2021-11-22 18:30:17 +01:00
Quentin Gliech
de2e078e18 Match the spec on handling request/registration params 
Raise a (request|request_uri|registration)_unsupported error when one of
those parameters are in an authorization request
 2021-11-22 16:14:25 +01:00
Quentin Gliech
d78f64d077 Support the prompt param in authorization requests 2021-11-22 15:54:52 +01:00
Quentin Gliech
5a4d3f6c94 Generate a scope with a random device ID 2021-11-22 14:06:25 +01:00
Quentin Gliech
6a69ef8456 Fix post-auth redirects & support max_age 
This also displays some context on login and reauth page about the next
step
 2021-11-16 19:16:52 +01:00
Quentin Gliech
04f8c5fe97 Better post-login/auth redirects 2021-11-16 15:09:14 +01:00
Quentin Gliech
0a2fda35fd Bump all dependencies 2021-11-05 17:19:07 +01:00
Quentin Gliech
16fe5a8d76 Implement client_secret_jwt authentication method 2021-11-05 17:18:48 +01:00
Quentin Gliech
a4e9ad3d0b Split the data-model in different modules 2021-11-02 12:58:13 +01:00
Quentin Gliech
bca8b11e46 Upgrade all dependencies 2021-10-25 17:40:54 -04:00
Quentin Gliech
004821f4f2 Refactor authorization grant 
The authorization grant is now properly separated from the OAuth2
session, which helps avoiding a lot of potential database
inconsistencies
 2021-10-25 17:27:19 -04:00
Quentin Gliech
4307276b0e Refactor DB interactions for OAuth code and tokens 
This ensures complex types like scopes are properly parsed back from the
database.
 2021-10-19 20:08:08 +02:00
Quentin Gliech
617ab83ab2 Upgrade all dependencies 2021-10-18 17:45:45 +02:00
Quentin Gliech
026bc47c27 Move templates to their own crate 2021-10-18 17:40:25 +02:00
Quentin Gliech
cf8793da27 Zipkin and Jaeger support 2021-10-14 19:38:57 +02:00
Quentin Gliech
f016019553 Make the OTEL propagator configurable 2021-10-14 18:55:47 +02:00
Quentin Gliech
29f3edd833 Better CORS filter to allow OTEL propagator headers 2021-10-14 18:47:38 +02:00
Quentin Gliech
e630279b54 Propagate parent trace context 2021-10-14 17:39:49 +02:00
Quentin Gliech
f9036aecd4 Make telemetry configurable 
Also allows opting-out of the OTLP exporter to remove the dependency to
protoc when building.
 2021-10-13 16:48:16 +02:00
Quentin Gliech
27ae6a5167 Initial OpenTelemetry tracing support 2021-10-13 13:56:42 +02:00
Quentin Gliech
b3587c677c WIP: Refactor higher-level data-model to its own crate 2021-10-12 19:03:01 +02:00
Quentin Gliech
ec7d936b10 Better data structure to handle scopes 2021-10-05 20:36:36 +02:00
Quentin Gliech
8ecdf7c6c8 PKCE support 2021-10-05 14:08:47 +02:00
Quentin Gliech
af71adbe7a Upgrade dependencies 2021-10-04 14:48:23 +02:00
Quentin Gliech
bb8fe28f4f Fix request handling when the cookie header is not there 2021-09-25 18:09:37 +02:00
Quentin Gliech
8e34dd3778 Trigger a rebuild when the migration files change 2021-09-24 19:08:52 +02:00
Quentin Gliech
e9158382ef Simplify template render check logic 
Also documents a bunch of things in mas_core::templates
 2021-09-24 11:45:25 +02:00
Quentin Gliech
a1c7b7f82d Add missing file forgotten in ff41ae5762 2021-09-24 09:20:22 +02:00
Quentin Gliech
ddf155b901 WIP: generate sample template contexts for testing 2021-09-23 23:51:50 +02:00
Quentin Gliech
ff41ae5762 Templates config 2021-09-23 23:51:17 +02:00
Quentin Gliech
5100cbdef2 Document the mas_core::reply and mas_core::tokens modules 2021-09-23 21:34:13 +02:00
Quentin Gliech
3cbce1e33e Upgrade all dependencies 2021-09-23 20:54:24 +02:00
Quentin Gliech
3bf86c4b21 Fully document the mas_core::filters module 2021-09-23 20:53:51 +02:00
Quentin Gliech
2cfaff737e Simplify session-related filters 2021-09-23 19:16:30 +02:00
Quentin Gliech
d06cdb6e02 Make database-related warp filters generic over the DB type 2021-09-23 17:40:50 +02:00
Quentin Gliech
4a927861b0 Proper error when submitting invalid authorization code 2021-09-23 14:48:12 +02:00
Quentin Gliech
a9f1f8bb71 Refactor token generation a bit 2021-09-23 14:24:44 +02:00
Quentin Gliech
29126e336e Clean up some warp filters and add documentation 2021-09-23 14:02:44 +02:00
Quentin Gliech
e08dae27b1 Consume authorization code on use 2021-09-17 18:24:43 +02:00
Quentin Gliech
1813984a1c Include "state" in authorization request errors 2021-09-17 18:13:30 +02:00
Quentin Gliech
dc0d54aaf5 Better error handling in cookies, session and csrf filters 2021-09-17 18:12:34 +02:00
Quentin Gliech
59df55c2f9 Handle auth errors on the userinfo endpoint 2021-09-17 16:20:10 +02:00
Quentin Gliech
463184bbb1 Make the template contexts a bit more clear 2021-09-17 14:30:06 +02:00
Quentin Gliech
3159a9972f Allow loading multiple configuration files 2021-09-17 12:22:03 +02:00
Quentin Gliech
bd441ceef7 Allow splitting database connection options 2021-09-17 12:03:00 +02:00
Quentin Gliech
789ace84fd Ability to run migrations on startup 
Also adds a bunch of logging information on startup
 2021-09-17 11:27:06 +02:00
Quentin Gliech
76c69485e9 Embed templates in binary & add command to export them 2021-09-16 23:39:07 +02:00
Quentin Gliech
721b67fe48 Fix minor code style issues 2021-09-16 14:54:17 +02:00
Quentin Gliech
a44e33931c Split the service in multiple crates 2021-09-16 14:43:56 +02:00