cca5f70c69
Bump clap from 3.1.18 to 3.2.6
...
Bumps [clap](https://github.com/clap-rs/clap ) from 3.1.18 to 3.2.6.
- [Release notes](https://github.com/clap-rs/clap/releases )
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md )
- [Commits](https://github.com/clap-rs/clap/compare/v3.1.18...v3.2.6 )
---
updated-dependencies:
- dependency-name: clap
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-06-23 20:27:32 +02:00
2ed22a618a
Bump anyhow from 1.0.57 to 1.0.58
...
Bumps [anyhow](https://github.com/dtolnay/anyhow ) from 1.0.57 to 1.0.58.
- [Release notes](https://github.com/dtolnay/anyhow/releases )
- [Commits](https://github.com/dtolnay/anyhow/compare/1.0.57...1.0.58 )
---
updated-dependencies:
- dependency-name: anyhow
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-06-23 18:33:39 +02:00
98b248f959
Bump tera from 1.15.0 to 1.16.0
...
Bumps [tera](https://github.com/Keats/tera ) from 1.15.0 to 1.16.0.
- [Release notes](https://github.com/Keats/tera/releases )
- [Changelog](https://github.com/Keats/tera/blob/master/CHANGELOG.md )
- [Commits](https://github.com/Keats/tera/compare/v1.15.0...v1.16.0 )
---
updated-dependencies:
- dependency-name: tera
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-06-23 17:46:54 +02:00
7207616657
Use unstable prefix for SSO redirect action param
2022-06-23 17:08:28 +02:00
ff2e569c98
Bump watchman_client from 0.7.2 to 0.8.0
...
Bumps [watchman_client](https://github.com/facebook/watchman ) from 0.7.2 to 0.8.0.
- [Release notes](https://github.com/facebook/watchman/releases )
- [Commits](https://github.com/facebook/watchman/commits )
---
updated-dependencies:
- dependency-name: watchman_client
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-06-23 17:07:36 +02:00
65bcea97de
Bump cssnano from 5.1.11 to 5.1.12 in /crates/static-files
...
Bumps [cssnano](https://github.com/cssnano/cssnano ) from 5.1.11 to 5.1.12.
- [Release notes](https://github.com/cssnano/cssnano/releases )
- [Commits](https://github.com/cssnano/cssnano/compare/cssnano@5.1.11...cssnano@5.1.12 )
---
updated-dependencies:
- dependency-name: cssnano
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-06-22 14:21:46 +02:00
83d30f1722
Bump p256 from 0.11.0 to 0.11.1
...
Bumps [p256](https://github.com/RustCrypto/elliptic-curves ) from 0.11.0 to 0.11.1.
- [Release notes](https://github.com/RustCrypto/elliptic-curves/releases )
- [Commits](https://github.com/RustCrypto/elliptic-curves/compare/p256/v0.11.0...p256/v0.11.1 )
---
updated-dependencies:
- dependency-name: p256
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-06-22 14:21:16 +02:00
2112fc61fa
Bump tailwindcss from 3.0.24 to 3.1.4 in /crates/static-files
...
Bumps [tailwindcss](https://github.com/tailwindlabs/tailwindcss ) from 3.0.24 to 3.1.4.
- [Release notes](https://github.com/tailwindlabs/tailwindcss/releases )
- [Changelog](https://github.com/tailwindlabs/tailwindcss/blob/master/CHANGELOG.md )
- [Commits](https://github.com/tailwindlabs/tailwindcss/compare/v3.0.24...v3.1.4 )
---
updated-dependencies:
- dependency-name: tailwindcss
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-06-22 14:20:45 +02:00
54751d8563
temporary stop validating the redirect_uri
2022-06-21 11:14:15 +02:00
50af460e22
Use unstable prefix for MSC3824 ( #251 )
2022-06-19 18:37:50 +00:00
9e3f43f1f0
Move from MSC3824 actions to org.matrix.msc3824.delegated_oidc_compatibility flag ( #250 )
...
Co-authored-by: Quentin Gliech <quenting@element.io >
2022-06-15 15:49:03 +00:00
5632f6ba99
feat: support for MSC3824 action param on SSO redirect ( #248 )
...
Co-authored-by: Quentin Gliech <quenting@element.io >
2022-06-14 11:34:56 +00:00
482bfeecc2
Bump axum-extra from 0.3.3 to 0.3.4
...
Bumps [axum-extra](https://github.com/tokio-rs/axum ) from 0.3.3 to 0.3.4.
- [Release notes](https://github.com/tokio-rs/axum/releases )
- [Changelog](https://github.com/tokio-rs/axum/blob/main/CHANGELOG.md )
- [Commits](https://github.com/tokio-rs/axum/compare/axum-extra-v0.3.3...axum-extra-v0.3.4 )
---
updated-dependencies:
- dependency-name: axum-extra
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-06-09 12:39:21 +02:00
3f9863e7d3
Bump tracing from 0.1.34 to 0.1.35
...
Bumps [tracing](https://github.com/tokio-rs/tracing ) from 0.1.34 to 0.1.35.
- [Release notes](https://github.com/tokio-rs/tracing/releases )
- [Commits](https://github.com/tokio-rs/tracing/compare/tracing-0.1.34...tracing-0.1.35 )
---
updated-dependencies:
- dependency-name: tracing
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-06-09 11:40:21 +02:00
b1a17194b7
Bump axum from 0.5.6 to 0.5.7
...
Bumps [axum](https://github.com/tokio-rs/axum ) from 0.5.6 to 0.5.7.
- [Release notes](https://github.com/tokio-rs/axum/releases )
- [Changelog](https://github.com/tokio-rs/axum/blob/main/CHANGELOG.md )
- [Commits](https://github.com/tokio-rs/axum/compare/axum-v0.5.6...axum-v0.5.7 )
---
updated-dependencies:
- dependency-name: axum
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-06-09 11:40:05 +02:00
dc8c6a8550
Bump tracing-opentelemetry from 0.17.2 to 0.17.3
...
Bumps [tracing-opentelemetry](https://github.com/tokio-rs/tracing ) from 0.17.2 to 0.17.3.
- [Release notes](https://github.com/tokio-rs/tracing/releases )
- [Commits](https://github.com/tokio-rs/tracing/compare/tracing-opentelemetry-0.17.2...tracing-opentelemetry-0.17.3 )
---
updated-dependencies:
- dependency-name: tracing-opentelemetry
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-06-08 10:16:12 +02:00
909091a401
Bump http from 0.2.7 to 0.2.8
...
Bumps [http](https://github.com/hyperium/http ) from 0.2.7 to 0.2.8.
- [Release notes](https://github.com/hyperium/http/releases )
- [Changelog](https://github.com/hyperium/http/blob/master/CHANGELOG.md )
- [Commits](https://github.com/hyperium/http/compare/v0.2.7...v0.2.8 )
---
updated-dependencies:
- dependency-name: http
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-06-07 15:37:29 +02:00
bfd49f5684
Bump cssnano from 5.1.10 to 5.1.11 in /crates/static-files
...
Bumps [cssnano](https://github.com/cssnano/cssnano ) from 5.1.10 to 5.1.11.
- [Release notes](https://github.com/cssnano/cssnano/releases )
- [Commits](https://github.com/cssnano/cssnano/compare/cssnano@5.1.10...cssnano@5.1.11 )
---
updated-dependencies:
- dependency-name: cssnano
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-06-07 14:06:05 +02:00
f9f2fab46b
Bump tokio-stream from 0.1.8 to 0.1.9
...
Bumps [tokio-stream](https://github.com/tokio-rs/tokio ) from 0.1.8 to 0.1.9.
- [Release notes](https://github.com/tokio-rs/tokio/releases )
- [Commits](https://github.com/tokio-rs/tokio/compare/tokio-stream-0.1.8...tokio-stream-0.1.9 )
---
updated-dependencies:
- dependency-name: tokio-stream
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-06-07 14:05:58 +02:00
a0573feedb
Bump tower-http from 0.3.3 to 0.3.4
...
Bumps [tower-http](https://github.com/tower-rs/tower-http ) from 0.3.3 to 0.3.4.
- [Release notes](https://github.com/tower-rs/tower-http/releases )
- [Commits](https://github.com/tower-rs/tower-http/compare/tower-http-0.3.3...tower-http-0.3.4 )
---
updated-dependencies:
- dependency-name: tower-http
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-06-07 14:05:50 +02:00
274739b537
Bump tokio from 1.19.0 to 1.19.2
...
Bumps [tokio](https://github.com/tokio-rs/tokio ) from 1.19.0 to 1.19.2.
- [Release notes](https://github.com/tokio-rs/tokio/releases )
- [Commits](https://github.com/tokio-rs/tokio/commits )
---
updated-dependencies:
- dependency-name: tokio
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-06-07 14:05:45 +02:00
13e78e3caf
Bump lettre from 0.10.0-rc.6 to 0.10.0-rc.7
...
Bumps [lettre](https://github.com/lettre/lettre ) from 0.10.0-rc.6 to 0.10.0-rc.7.
- [Release notes](https://github.com/lettre/lettre/releases )
- [Changelog](https://github.com/lettre/lettre/blob/master/CHANGELOG.md )
- [Commits](https://github.com/lettre/lettre/compare/v0.10.0-rc.6...v0.10.0-rc.7 )
---
updated-dependencies:
- dependency-name: lettre
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-06-07 14:05:39 +02:00
478f62fa9b
Bump async-trait from 0.1.53 to 0.1.56
...
Bumps [async-trait](https://github.com/dtolnay/async-trait ) from 0.1.53 to 0.1.56.
- [Release notes](https://github.com/dtolnay/async-trait/releases )
- [Commits](https://github.com/dtolnay/async-trait/compare/0.1.53...0.1.56 )
---
updated-dependencies:
- dependency-name: async-trait
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-06-04 16:43:35 +02:00
b94983ca41
Bump tokio from 1.18.2 to 1.19.0
...
Bumps [tokio](https://github.com/tokio-rs/tokio ) from 1.18.2 to 1.19.0.
- [Release notes](https://github.com/tokio-rs/tokio/releases )
- [Commits](https://github.com/tokio-rs/tokio/compare/tokio-1.18.2...tokio-1.19.0 )
---
updated-dependencies:
- dependency-name: tokio
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-06-04 15:52:31 +02:00
581e011c7b
Fix policy test
2022-06-04 12:47:36 +02:00
5a4a4ed21e
Fix policies test
2022-06-03 17:03:25 +02:00
e694932daf
Handle password strength verification through OPA
2022-06-03 16:14:26 +02:00
eb22c33a7d
Remove the login policy (since it is not implemented yet)
2022-06-03 13:37:20 +02:00
7c8893e596
Switch the policies to a violation list based approach
...
This allows policies to give proper feedback on form fields
2022-06-03 13:37:20 +02:00
88c2625dc0
Compile and check OPA policies in CI
2022-06-03 13:37:20 +02:00
071055ad18
Embed the default policy in the binary
2022-06-03 13:37:20 +02:00
a2b53f0395
Run OPA policies during registration
2022-06-03 13:37:20 +02:00
9ebff410d1
Generate spans for policy evaluations
2022-06-03 13:37:20 +02:00
aab1f49374
Support for applying OPA policies during client registration
2022-06-03 13:37:20 +02:00
959466a5ba
Bump serde_with from 1.13.0 to 1.14.0
...
Bumps [serde_with](https://github.com/jonasbb/serde_with ) from 1.13.0 to 1.14.0.
- [Release notes](https://github.com/jonasbb/serde_with/releases )
- [Commits](https://github.com/jonasbb/serde_with/compare/v1.13.0...v1.14.0 )
---
updated-dependencies:
- dependency-name: serde_with
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-06-02 16:29:41 +02:00
7cba5f7e67
Bump hyper from 0.14.18 to 0.14.19
...
Bumps [hyper](https://github.com/hyperium/hyper ) from 0.14.18 to 0.14.19.
- [Release notes](https://github.com/hyperium/hyper/releases )
- [Changelog](https://github.com/hyperium/hyper/blob/master/CHANGELOG.md )
- [Commits](https://github.com/hyperium/hyper/compare/v0.14.18...v0.14.19 )
---
updated-dependencies:
- dependency-name: hyper
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-06-02 16:29:30 +02:00
59e338102b
Bump cssnano from 5.1.9 to 5.1.10 in /crates/static-files
...
Bumps [cssnano](https://github.com/cssnano/cssnano ) from 5.1.9 to 5.1.10.
- [Release notes](https://github.com/cssnano/cssnano/releases )
- [Commits](https://github.com/cssnano/cssnano/compare/cssnano@5.1.9...cssnano@5.1.10 )
---
updated-dependencies:
- dependency-name: cssnano
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-06-02 16:29:19 +02:00
e0c4b39482
Add an email field in the registration form
2022-06-02 16:18:55 +02:00
f88ff5517d
Update sqlx-data.json
2022-06-02 16:18:55 +02:00
125afd61c0
Make email verification mandatory
2022-06-02 16:18:55 +02:00
89597dbf81
Switch email verification to a code-based flow
2022-06-02 16:18:55 +02:00
35fa7c732a
Implementation of MSC3824 actions for compat ( #221 )
...
Co-authored-by: Quentin Gliech <quenting@element.io >
2022-05-31 09:49:52 +00:00
0a32ba3431
Bump once_cell from 1.11.0 to 1.12.0
...
Bumps [once_cell](https://github.com/matklad/once_cell ) from 1.11.0 to 1.12.0.
- [Release notes](https://github.com/matklad/once_cell/releases )
- [Changelog](https://github.com/matklad/once_cell/blob/master/CHANGELOG.md )
- [Commits](https://github.com/matklad/once_cell/compare/v1.11.0...v1.12.0 )
---
updated-dependencies:
- dependency-name: once_cell
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-05-23 22:46:53 +02:00
6a8e069618
Bump http-body from 0.4.4 to 0.4.5
...
Bumps [http-body](https://github.com/hyperium/http-body ) from 0.4.4 to 0.4.5.
- [Release notes](https://github.com/hyperium/http-body/releases )
- [Changelog](https://github.com/hyperium/http-body/blob/v0.4.5/CHANGELOG.md )
- [Commits](https://github.com/hyperium/http-body/compare/v0.4.4...v0.4.5 )
---
updated-dependencies:
- dependency-name: http-body
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-05-23 22:01:21 +02:00
9229f36809
Bump cssnano from 5.1.8 to 5.1.9 in /crates/static-files
...
Bumps [cssnano](https://github.com/cssnano/cssnano ) from 5.1.8 to 5.1.9.
- [Release notes](https://github.com/cssnano/cssnano/releases )
- [Commits](https://github.com/cssnano/cssnano/compare/cssnano@5.1.8...cssnano@5.1.9 )
---
updated-dependencies:
- dependency-name: cssnano
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-05-23 21:43:05 +02:00
bfc20b6faa
Have a better error on registration if the username is already taken
2022-05-23 14:36:38 +02:00
dd8eea7da3
Bump once_cell from 1.10.0 to 1.11.0
...
Bumps [once_cell](https://github.com/matklad/once_cell ) from 1.10.0 to 1.11.0.
- [Release notes](https://github.com/matklad/once_cell/releases )
- [Changelog](https://github.com/matklad/once_cell/blob/master/CHANGELOG.md )
- [Commits](https://github.com/matklad/once_cell/compare/v1.10.0...v1.11.0 )
---
updated-dependencies:
- dependency-name: once_cell
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-05-23 10:42:52 +02:00
f05bd80e14
Advertise m.login.token as compat login method
2022-05-23 10:42:25 +02:00
99ac59bc5d
Make the sign out buttons keep the current action context
2022-05-23 10:42:25 +02:00
af4f01b769
Check timings when validating an SSO login
...
- exchanging a token twice should not work
- exchanging a token more than 30s after its fullfillment should not
work
- exchanging a pending token should not work
- fullfilling a login more than 30min after its creation should not
work
- also have better errors in some cases
2022-05-23 10:42:25 +02:00
