matrix/authentication-service
1
0
Fork 0
mirror of https://github.com/matrix-org/matrix-authentication-service.git synced 2025-12-10 01:01:09 +03:00
Code Activity
2,802 Commits 59 Branches 22 Tags
d03dd41345d74ba9c784ea79500318b33ebca16c
Commit Graph

2802 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Quentin Gliech
9c97a0c37a storage: make the access token expiration optional 2023-09-11 12:03:42 +02:00
Quentin Gliech
e6b91c1ce4 data-model: make the access token expiration optional 2023-09-11 12:03:42 +02:00
Quentin Gliech
83ca90ee3d Add a GraphQL mutation to create arbitrary OAuth2 sessions. 2023-09-11 12:03:42 +02:00
Quentin Gliech
b8012bb66c ci: better workaround for the macOS build not being cached 2023-09-09 11:07:39 +02:00
Quentin Gliech
20cb5dda8c Have more granular errors on the refresh token grant 2023-09-08 15:19:43 +02:00
Quentin Gliech
0bb34ed3e0 Add the Sentry event ID in error response headers 2023-09-08 15:19:43 +02:00
Quentin Gliech
be90cbb3da ci: work around cargo-zigbuild cache bug 2023-09-08 15:05:59 +02:00
dependabot[bot]
c9c49f260c build(deps): bump the jotai group in /frontend with 1 update 
Bumps the jotai group in /frontend with 1 update: [jotai](https://github.com/pmndrs/jotai).

- [Release notes](https://github.com/pmndrs/jotai/releases)
- [Commits](https://github.com/pmndrs/jotai/compare/v2.4.1...v2.4.2)

---
updated-dependencies:
- dependency-name: jotai
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: jotai
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-08 13:44:51 +02:00
dependabot[bot]
0926e5b492 build(deps-dev): bump happy-dom from 11.0.1 to 11.0.2 in /frontend 
Bumps [happy-dom](https://github.com/capricorn86/happy-dom) from 11.0.1 to 11.0.2.
- [Release notes](https://github.com/capricorn86/happy-dom/releases)
- [Commits](https://github.com/capricorn86/happy-dom/compare/v11.0.1...v11.0.2)

---
updated-dependencies:
- dependency-name: happy-dom
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-08 13:44:45 +02:00
dependabot[bot]
18734fee0d build(deps): bump bytes from 1.4.0 to 1.5.0 
Bumps [bytes](https://github.com/tokio-rs/bytes) from 1.4.0 to 1.5.0.
- [Release notes](https://github.com/tokio-rs/bytes/releases)
- [Changelog](https://github.com/tokio-rs/bytes/blob/master/CHANGELOG.md)
- [Commits](https://github.com/tokio-rs/bytes/compare/v1.4.0...v1.5.0)

---
updated-dependencies:
- dependency-name: bytes
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-08 13:44:34 +02:00
dependabot[bot]
7bedb75976 build(deps): bump async-graphql from 6.0.5 to 6.0.6 
Bumps [async-graphql](https://github.com/async-graphql/async-graphql) from 6.0.5 to 6.0.6.
- [Release notes](https://github.com/async-graphql/async-graphql/releases)
- [Changelog](https://github.com/async-graphql/async-graphql/blob/master/CHANGELOG.md)
- [Commits](https://github.com/async-graphql/async-graphql/commits)

---
updated-dependencies:
- dependency-name: async-graphql
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-08 13:44:27 +02:00
dependabot[bot]
6971db3e6e build(deps): bump opa-wasm from 4997f99 to d07721d 
Bumps [opa-wasm](https://github.com/matrix-org/rust-opa-wasm) from `4997f99` to `d07721d`.
- [Commits](4997f99223...d07721d048)

---
updated-dependencies:
- dependency-name: opa-wasm
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-08 13:44:22 +02:00
Quentin Gliech
627ea2c421 frontend: upgrade compound & use the Badge component to mark the current session 2023-09-08 11:51:01 +02:00
Kerry Archibald
bf13e58d16 link to client detail, design pass on client detail page 2023-09-08 11:37:26 +02:00
Kerry Archibald
5e76adb325 test clientavatar 2023-09-08 10:41:26 +02:00
Kerry Archibald
0d726cd7cb add client logo to session tile and detail 2023-09-08 10:41:26 +02:00
dependabot[bot]
0bee1284b2 build(deps): bump actions/upload-artifact from 3.1.2 to 3.1.3 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.2 to 3.1.3.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v3.1.2...v3.1.3)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-07 11:52:39 +02:00
dependabot[bot]
3b4301ec4a build(deps-dev): bump happy-dom from 10.11.2 to 11.0.1 in /frontend 
Bumps [happy-dom](https://github.com/capricorn86/happy-dom) from 10.11.2 to 11.0.1.
- [Release notes](https://github.com/capricorn86/happy-dom/releases)
- [Commits](https://github.com/capricorn86/happy-dom/compare/v10.11.2...v11.0.1)

---
updated-dependencies:
- dependency-name: happy-dom
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-07 11:52:27 +02:00
Kerry Archibald
e84049c815 add spinners to session end buttons 2023-09-07 10:13:51 +02:00
Quentin Gliech
b0fb3281b0 Compoundify the consent screens 2023-09-06 15:58:54 +02:00
dependabot[bot]
f6303beb2c build(deps-dev): bump @types/react-test-renderer in /frontend 
Bumps [@types/react-test-renderer](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react-test-renderer) from 18.0.0 to 18.0.1.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react-test-renderer)

---
updated-dependencies:
- dependency-name: "@types/react-test-renderer"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-06 10:08:35 +02:00
dependabot[bot]
15691cd2b4 build(deps-dev): bump @types/node from 20.5.7 to 20.5.9 in /frontend 
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 20.5.7 to 20.5.9.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

---
updated-dependencies:
- dependency-name: "@types/node"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-06 09:42:36 +02:00
Quentin Gliech
5a6e630c73 Test that a client_credentials token with the admin scope can add a user 2023-09-06 09:35:34 +02:00
Quentin Gliech
86c425eaf3 Suggestion from code review 
Co-authored-by: Hugh Nimmo-Smith <hughns@users.noreply.github.com>
 2023-09-06 09:35:34 +02:00
Quentin Gliech
d16b880267 policy: only require redirect_uris for the authorization_code and implicit grants 2023-09-06 09:35:34 +02:00
Quentin Gliech
c85f5f2768 Only allow using the refresh token grant if it was asked during the client registration 2023-09-06 09:35:34 +02:00
Quentin Gliech
aeb379eee9 oauth2-types: Only require redirect_uris & change the default response type for the auth code grant and implicit grant 2023-09-06 09:35:34 +02:00
Quentin Gliech
b9edbda5e1 Advertise the client_credentials grant in the discovery document 2023-09-06 09:35:34 +02:00
Quentin Gliech
542d0a6073 Implement the client credentials grant 2023-09-06 09:35:34 +02:00
Quentin Gliech
00fe5f902b storage: add a method to create an OAuth 2.0 session for a client credentials grant 2023-09-06 09:35:34 +02:00
Quentin Gliech
8658a3400d policy: prepare for the client credentials grant 2023-09-06 09:35:34 +02:00
Quentin Gliech
7a9197f222 storage-pg: make the user_id in oauth2_sessions nullable 2023-09-06 09:35:34 +02:00
Quentin Gliech
7e247830c9 data-model: Make the user_id optional in the OAuth 2.0 sessions 2023-09-06 09:35:34 +02:00
dependabot[bot]
3691090757 build(deps): bump the urql group in /frontend with 1 update 
Bumps the urql group in /frontend with 1 update: [@urql/exchange-graphcache](https://github.com/urql-graphql/urql/tree/HEAD/exchanges/graphcache).

- [Release notes](https://github.com/urql-graphql/urql/releases)
- [Changelog](https://github.com/urql-graphql/urql/blob/main/exchanges/graphcache/CHANGELOG.md)
- [Commits](https://github.com/urql-graphql/urql/commits/@urql/exchange-graphcache@6.3.3/exchanges/graphcache)

---
updated-dependencies:
- dependency-name: "@urql/exchange-graphcache"
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: urql
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-06 09:34:46 +02:00
dependabot[bot]
9177231dee build(deps): bump @vector-im/compound-web in /frontend 
Bumps [@vector-im/compound-web](https://github.com/vector-im/compound-web) from 0.2.17 to 0.2.18.
- [Release notes](https://github.com/vector-im/compound-web/releases)
- [Commits](https://github.com/vector-im/compound-web/compare/v0.2.17...v0.2.18)

---
updated-dependencies:
- dependency-name: "@vector-im/compound-web"
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-06 09:34:40 +02:00
dependabot[bot]
d256bee1fd build(deps): bump argon2 from 0.5.1 to 0.5.2 
Bumps [argon2](https://github.com/RustCrypto/password-hashes) from 0.5.1 to 0.5.2.
- [Commits](https://github.com/RustCrypto/password-hashes/compare/argon2-v0.5.1...argon2-v0.5.2)

---
updated-dependencies:
- dependency-name: argon2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-06 09:34:17 +02:00
dependabot[bot]
ef388b9fdc build(deps): bump tera from 1.19.0 to 1.19.1 
Bumps [tera](https://github.com/Keats/tera) from 1.19.0 to 1.19.1.
- [Changelog](https://github.com/Keats/tera/blob/master/CHANGELOG.md)
- [Commits](https://github.com/Keats/tera/commits)

---
updated-dependencies:
- dependency-name: tera
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-06 09:34:09 +02:00
dependabot[bot]
8e23945d96 build(deps): bump thiserror from 1.0.47 to 1.0.48 
Bumps [thiserror](https://github.com/dtolnay/thiserror) from 1.0.47 to 1.0.48.
- [Release notes](https://github.com/dtolnay/thiserror/releases)
- [Commits](https://github.com/dtolnay/thiserror/compare/1.0.47...1.0.48)

---
updated-dependencies:
- dependency-name: thiserror
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-06 09:34:01 +02:00
Quentin Gliech
4019d610cf frontend: also bump other storybook addons 2023-09-06 09:32:11 +02:00
dependabot[bot]
5db56480e9 build(deps-dev): bump the storybook group in /frontend with 8 updates 
Bumps the storybook group in /frontend with 8 updates:

| Package | From | To |
| --- | --- | --- |
| [@storybook/addon-actions](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/actions) | `7.3.2` | `7.4.0` |
| [@storybook/addon-backgrounds](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/backgrounds) | `7.3.2` | `7.4.0` |
| [@storybook/addon-controls](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/controls) | `7.3.2` | `7.4.0` |
| [@storybook/addon-docs](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/docs) | `7.3.2` | `7.4.0` |
| [@storybook/addon-essentials](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/essentials) | `7.3.2` | `7.4.0` |
| [@storybook/react](https://github.com/storybookjs/storybook/tree/HEAD/code/renderers/react) | `7.3.2` | `7.4.0` |
| [@storybook/react-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/react-vite) | `7.3.2` | `7.4.0` |
| [storybook](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/cli) | `7.3.2` | `7.4.0` |


Updates `@storybook/addon-actions` from 7.3.2 to 7.4.0
- [Release notes](https://github.com/storybookjs/storybook/releases)
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md)
- [Commits](https://github.com/storybookjs/storybook/commits/v7.4.0/code/addons/actions)

Updates `@storybook/addon-backgrounds` from 7.3.2 to 7.4.0
- [Release notes](https://github.com/storybookjs/storybook/releases)
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md)
- [Commits](https://github.com/storybookjs/storybook/commits/v7.4.0/code/addons/backgrounds)

Updates `@storybook/addon-controls` from 7.3.2 to 7.4.0
- [Release notes](https://github.com/storybookjs/storybook/releases)
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md)
- [Commits](https://github.com/storybookjs/storybook/commits/v7.4.0/code/addons/controls)

Updates `@storybook/addon-docs` from 7.3.2 to 7.4.0
- [Release notes](https://github.com/storybookjs/storybook/releases)
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md)
- [Commits](https://github.com/storybookjs/storybook/commits/v7.4.0/code/addons/docs)

Updates `@storybook/addon-essentials` from 7.3.2 to 7.4.0
- [Release notes](https://github.com/storybookjs/storybook/releases)
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md)
- [Commits](https://github.com/storybookjs/storybook/commits/v7.4.0/code/addons/essentials)

Updates `@storybook/react` from 7.3.2 to 7.4.0
- [Release notes](https://github.com/storybookjs/storybook/releases)
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md)
- [Commits](https://github.com/storybookjs/storybook/commits/v7.4.0/code/renderers/react)

Updates `@storybook/react-vite` from 7.3.2 to 7.4.0
- [Release notes](https://github.com/storybookjs/storybook/releases)
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md)
- [Commits](https://github.com/storybookjs/storybook/commits/v7.4.0/code/frameworks/react-vite)

Updates `storybook` from 7.3.2 to 7.4.0
- [Release notes](https://github.com/storybookjs/storybook/releases)
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md)
- [Commits](https://github.com/storybookjs/storybook/commits/v7.4.0/code/lib/cli)

---
updated-dependencies:
- dependency-name: "@storybook/addon-actions"
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: storybook
- dependency-name: "@storybook/addon-backgrounds"
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: storybook
- dependency-name: "@storybook/addon-controls"
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: storybook
- dependency-name: "@storybook/addon-docs"
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: storybook
- dependency-name: "@storybook/addon-essentials"
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: storybook
- dependency-name: "@storybook/react"
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: storybook
- dependency-name: "@storybook/react-vite"
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: storybook
- dependency-name: storybook
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: storybook
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-06 09:32:11 +02:00
Quentin Gliech
0ede219a7f Fix a grammar mistake on the consent page template 2023-09-06 09:29:36 +02:00
Quentin Gliech
bc3f665739 graphql: expose the logo_uri in the OAuth 2.0 client 
Fixes #1705
 2023-09-06 09:28:47 +02:00
Kerry
571e4d2d75 Parse browser session userAgent for session name (#1685) 
* parse browser session user agent and use for session name

* move current session badge to session component

* simplify browser session name
 2023-09-06 17:27:20 +12:00
dependabot[bot]
25df547f9f build(deps): bump actions/checkout from 3.6.0 to 4.0.0 
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.6.0 to 4.0.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v3.6.0...v4.0.0)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-05 10:11:53 +02:00
dependabot[bot]
83ff03acd1 build(deps): bump sigstore/cosign-installer from 3.1.1 to 3.1.2 
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 3.1.1 to 3.1.2.
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](https://github.com/sigstore/cosign-installer/compare/v3.1.1...v3.1.2)

---
updated-dependencies:
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-05 10:09:19 +02:00
Quentin Gliech
0896292006 Fix Clippy warnings about enum size variants difference 2023-09-04 16:45:21 +02:00
Quentin Gliech
15ade8e1c8 Update the graphql schema after the async-graphql update. 2023-09-04 09:37:26 +02:00
dependabot[bot]
455f2a7725 build(deps): bump async-graphql from 6.0.4 to 6.0.5 
Bumps [async-graphql](https://github.com/async-graphql/async-graphql) from 6.0.4 to 6.0.5.
- [Release notes](https://github.com/async-graphql/async-graphql/releases)
- [Changelog](https://github.com/async-graphql/async-graphql/blob/master/CHANGELOG.md)
- [Commits](https://github.com/async-graphql/async-graphql/commits)

---
updated-dependencies:
- dependency-name: async-graphql
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-04 09:37:26 +02:00
dependabot[bot]
84fd9e043c build(deps): bump the jotai group in /frontend with 1 update 
Bumps the jotai group in /frontend with 1 update: [jotai](https://github.com/pmndrs/jotai).

- [Release notes](https://github.com/pmndrs/jotai/releases)
- [Commits](https://github.com/pmndrs/jotai/compare/v2.4.0...v2.4.1)

---
updated-dependencies:
- dependency-name: jotai
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: jotai
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-04 09:25:39 +02:00
dependabot[bot]
650bb3cf1c build(deps): bump clap from 4.4.1 to 4.4.2 
Bumps [clap](https://github.com/clap-rs/clap) from 4.4.1 to 4.4.2.
- [Release notes](https://github.com/clap-rs/clap/releases)
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md)
- [Commits](https://github.com/clap-rs/clap/compare/v4.4.1...v4.4.2)

---
updated-dependencies:
- dependency-name: clap
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-04 09:25:21 +02:00