authentication-service

mirror of https://github.com/matrix-org/matrix-authentication-service.git synced 2025-11-19 00:26:27 +03:00

Author	SHA1	Message	Date
dependabot[bot]	162d7f7ea8	build(deps): bump lettre from 0.11.0 to 0.11.1 Bumps [lettre](https://github.com/lettre/lettre) from 0.11.0 to 0.11.1. - [Release notes](https://github.com/lettre/lettre/releases) - [Changelog](https://github.com/lettre/lettre/blob/master/CHANGELOG.md) - [Commits](https://github.com/lettre/lettre/compare/v0.11.0...v0.11.1) --- updated-dependencies: - dependency-name: lettre dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-11-03 15:50:35 +01:00
Quentin Gliech	6d65bcae13	Make the upstream provider URL better display & fix test	2023-10-30 15:55:15 +01:00
Quentin Gliech	a404398c2c	Polish all forms and add nice page headings to most screens	2023-10-30 15:55:15 +01:00
Quentin Gliech	8984cc703b	Add instance privacy policy, TOS and imprint, and loads of design cleanups	2023-10-30 15:55:15 +01:00
dependabot[bot]	dbb3a86309	build(deps): bump async-graphql from 6.0.7 to 6.0.9 Bumps [async-graphql](https://github.com/async-graphql/async-graphql) from 6.0.7 to 6.0.9. - [Release notes](https://github.com/async-graphql/async-graphql/releases) - [Changelog](https://github.com/async-graphql/async-graphql/blob/master/CHANGELOG.md) - [Commits](https://github.com/async-graphql/async-graphql/commits) --- updated-dependencies: - dependency-name: async-graphql dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-10-23 23:01:47 +02:00
dependabot[bot]	a5bb9b5089	build(deps): bump lettre from 0.10.4 to 0.11.0 Bumps [lettre](https://github.com/lettre/lettre) from 0.10.4 to 0.11.0. - [Release notes](https://github.com/lettre/lettre/releases) - [Changelog](https://github.com/lettre/lettre/blob/master/CHANGELOG.md) - [Commits](https://github.com/lettre/lettre/compare/v0.10.4...v0.11.0) --- updated-dependencies: - dependency-name: lettre dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2023-10-20 00:22:40 +02:00
dependabot[bot]	aa5f214fc3	build(deps): bump serde_with from 3.3.0 to 3.4.0 Bumps [serde_with](https://github.com/jonasbb/serde_with) from 3.3.0 to 3.4.0. - [Release notes](https://github.com/jonasbb/serde_with/releases) - [Commits](https://github.com/jonasbb/serde_with/compare/v3.3.0...v3.4.0) --- updated-dependencies: - dependency-name: serde_with dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2023-10-19 21:33:03 +02:00
dependabot[bot]	84209e16f9	build(deps): bump time from 0.3.29 to 0.3.30 Bumps [time](https://github.com/time-rs/time) from 0.3.29 to 0.3.30. - [Release notes](https://github.com/time-rs/time/releases) - [Changelog](https://github.com/time-rs/time/blob/main/CHANGELOG.md) - [Commits](https://github.com/time-rs/time/compare/v0.3.29...v0.3.30) --- updated-dependencies: - dependency-name: time dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-10-19 17:41:13 +02:00
dependabot[bot]	db6e3ffe34	build(deps): bump insta from 1.33.0 to 1.34.0 Bumps [insta](https://github.com/mitsuhiko/insta) from 1.33.0 to 1.34.0. - [Changelog](https://github.com/mitsuhiko/insta/blob/master/CHANGELOG.md) - [Commits](https://github.com/mitsuhiko/insta/compare/1.33.0...1.34.0) --- updated-dependencies: - dependency-name: insta dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2023-10-10 10:12:23 +02:00
dependabot[bot]	69798aef47	build(deps): bump tokio from 1.32.0 to 1.33.0 Bumps [tokio](https://github.com/tokio-rs/tokio) from 1.32.0 to 1.33.0. - [Release notes](https://github.com/tokio-rs/tokio/releases) - [Commits](https://github.com/tokio-rs/tokio/compare/tokio-1.32.0...tokio-1.33.0) --- updated-dependencies: - dependency-name: tokio dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2023-10-09 16:11:09 +02:00
Quentin Gliech	9b5c8fb44b	Allow running the authentication service on a different base path	2023-10-06 14:07:55 +02:00
dependabot[bot]	71c28d6453	build(deps): bump insta from 1.32.0 to 1.33.0 Bumps [insta](https://github.com/mitsuhiko/insta) from 1.32.0 to 1.33.0. - [Changelog](https://github.com/mitsuhiko/insta/blob/master/CHANGELOG.md) - [Commits](https://github.com/mitsuhiko/insta/compare/1.32.0...1.33.0) --- updated-dependencies: - dependency-name: insta dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2023-10-05 20:13:41 +02:00
dependabot[bot]	fe92203f59	build(deps): bump sqlx from 0.7.1 to 0.7.2 Bumps [sqlx](https://github.com/launchbadge/sqlx) from 0.7.1 to 0.7.2. - [Changelog](https://github.com/launchbadge/sqlx/blob/main/CHANGELOG.md) - [Commits](https://github.com/launchbadge/sqlx/commits) --- updated-dependencies: - dependency-name: sqlx dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-10-05 19:36:48 +02:00
Quentin Gliech	f2f51d45a4	handlers: fix test after a translation update	2023-10-05 19:29:23 +02:00
Quentin Gliech	b2cd8d83f7	templates: translate a lot more stuff	2023-10-05 19:29:23 +02:00
Quentin Gliech	1feafc1d13	handlers/templates: infer the language from the Accept-Language browser header	2023-10-05 19:29:23 +02:00
Quentin Gliech	15ad89aa82	templates: add translations function	2023-10-05 19:29:23 +02:00
Quentin Gliech	995bdfc13b	templates: replace tera with minijinja	2023-10-05 19:29:23 +02:00
Quentin Gliech	f666da79b3	i18n-scan: utility to scan translatable strings in templates	2023-10-05 19:29:23 +02:00
Quentin Gliech	5f8411e88c	i18n: translator structure, to hold translations	2023-10-05 19:29:23 +02:00
Quentin Gliech	3303e74123	Add a way to discover the GraphQL endpoint in the .well-known/openid-configuration This adds a `org.matrix.matrix-authentication-service.graphql_endpoint` key to it	2023-10-05 16:43:13 +02:00
dependabot[bot]	02b136e34d	build(deps): bump time from 0.3.28 to 0.3.29 Bumps [time](https://github.com/time-rs/time) from 0.3.28 to 0.3.29. - [Release notes](https://github.com/time-rs/time/releases) - [Changelog](https://github.com/time-rs/time/blob/main/CHANGELOG.md) - [Commits](https://github.com/time-rs/time/compare/v0.3.28...v0.3.29) --- updated-dependencies: - dependency-name: time dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-09-26 14:48:05 +02:00
dependabot[bot]	3f84123529	build(deps): bump async-graphql from 6.0.6 to 6.0.7 Bumps [async-graphql](https://github.com/async-graphql/async-graphql) from 6.0.6 to 6.0.7. - [Release notes](https://github.com/async-graphql/async-graphql/releases) - [Changelog](https://github.com/async-graphql/async-graphql/blob/master/CHANGELOG.md) - [Commits](https://github.com/async-graphql/async-graphql/commits) --- updated-dependencies: - dependency-name: async-graphql dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-09-26 14:37:54 +02:00
dependabot[bot]	05ac6f185e	build(deps): bump insta from 1.31.0 to 1.32.0 Bumps [insta](https://github.com/mitsuhiko/insta) from 1.31.0 to 1.32.0. - [Changelog](https://github.com/mitsuhiko/insta/blob/master/CHANGELOG.md) - [Commits](https://github.com/mitsuhiko/insta/compare/1.31.0...1.32.0) --- updated-dependencies: - dependency-name: insta dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2023-09-22 22:30:40 +02:00
Quentin Gliech	f20c8d8ef3	Infer client IP address from the peer address and the X-Forwarded-Proxy header	2023-09-20 20:24:30 +02:00
Quentin Gliech	894957934d	Test the activity tracker on the introspection endpoint	2023-09-19 21:57:54 +02:00
Quentin Gliech	b85655b944	Save the session activity in the database	2023-09-19 21:57:54 +02:00
Quentin Gliech	407c78a7be	Record the user session activity for most routes	2023-09-19 21:57:54 +02:00
Quentin Gliech	cf5510a1a2	Add an ActivityTracker which tracks session activity and regularly flush them to the database	2023-09-19 21:57:54 +02:00
dependabot[bot]	19c070cf5b	build(deps): bump axum-extra from 0.7.7 to 0.8.0 Bumps [axum-extra](https://github.com/tokio-rs/axum) from 0.7.7 to 0.8.0. - [Release notes](https://github.com/tokio-rs/axum/releases) - [Changelog](https://github.com/tokio-rs/axum/blob/main/CHANGELOG.md) - [Commits](https://github.com/tokio-rs/axum/compare/axum-extra-v0.7.7...axum-extra-v0.8.0) --- updated-dependencies: - dependency-name: axum-extra dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2023-09-18 23:52:53 +02:00
Quentin Gliech	21406218aa	fixup! Deny URIs from client that are public suffixes	2023-09-18 11:57:50 +02:00
Quentin Gliech	7887387568	Deny URIs from client that are public suffixes	2023-09-18 11:57:50 +02:00
Quentin Gliech	c9155ef0cf	Rust dependencies housekeeping Including: - package upgrades - stop using the patched version of `ulid` - update cargo deny duplicate exception list	2023-09-14 23:43:00 +02:00
Quentin Gliech	54071c4969	Make the HTTP client factory reuse the underlying client This avoids duplicating clients, and makes it so that they all share the same connection pool.	2023-09-14 16:52:01 +02:00
Quentin Gliech	9fcdad3142	Stop using deprecated chrono::DateTime::from_utc method	2023-09-13 18:28:41 +02:00
Quentin Gliech	9a77f67fbe	Make the error on introspection failure more explicit in the logs	2023-09-13 18:24:52 +02:00
Quentin Gliech	789040d22f	graphql: Fix the createOauth2Session mutation not persisting the changes to the database	2023-09-12 11:31:19 +02:00
Quentin Gliech	9c97a0c37a	storage: make the access token expiration optional	2023-09-11 12:03:42 +02:00
Quentin Gliech	e6b91c1ce4	data-model: make the access token expiration optional	2023-09-11 12:03:42 +02:00
Quentin Gliech	83ca90ee3d	Add a GraphQL mutation to create arbitrary OAuth2 sessions.	2023-09-11 12:03:42 +02:00
Quentin Gliech	20cb5dda8c	Have more granular errors on the refresh token grant	2023-09-08 15:19:43 +02:00
Quentin Gliech	0bb34ed3e0	Add the Sentry event ID in error response headers	2023-09-08 15:19:43 +02:00
dependabot[bot]	7bedb75976	build(deps): bump async-graphql from 6.0.5 to 6.0.6 Bumps [async-graphql](https://github.com/async-graphql/async-graphql) from 6.0.5 to 6.0.6. - [Release notes](https://github.com/async-graphql/async-graphql/releases) - [Changelog](https://github.com/async-graphql/async-graphql/blob/master/CHANGELOG.md) - [Commits](https://github.com/async-graphql/async-graphql/commits) --- updated-dependencies: - dependency-name: async-graphql dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2023-09-08 13:44:27 +02:00
Quentin Gliech	5a6e630c73	Test that a client_credentials token with the admin scope can add a user	2023-09-06 09:35:34 +02:00
Quentin Gliech	d16b880267	policy: only require redirect_uris for the authorization_code and implicit grants	2023-09-06 09:35:34 +02:00
Quentin Gliech	c85f5f2768	Only allow using the refresh token grant if it was asked during the client registration	2023-09-06 09:35:34 +02:00
Quentin Gliech	b9edbda5e1	Advertise the client_credentials grant in the discovery document	2023-09-06 09:35:34 +02:00
Quentin Gliech	542d0a6073	Implement the client credentials grant	2023-09-06 09:35:34 +02:00
Quentin Gliech	00fe5f902b	storage: add a method to create an OAuth 2.0 session for a client credentials grant	2023-09-06 09:35:34 +02:00
Quentin Gliech	7e247830c9	data-model: Make the user_id optional in the OAuth 2.0 sessions	2023-09-06 09:35:34 +02:00

1 2 3 4 5 ...

640 Commits