matrix/authentication-service
1
0
Fork 0
mirror of https://github.com/matrix-org/matrix-authentication-service.git synced 2025-11-20 12:02:22 +03:00
Code Activity
2,673 Commits 59 Branches 22 Tags
f338aacf260d8932c6b3243f99494ed03ecec46c
Commit Graph

2673 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Quentin Gliech
8a3b7f79f3 Inject custom Jinja2 environment when rendering the subject template 
This was missing when rendering the subject for upstream OAuth 2.0
callbacks.
 2024-06-18 18:05:43 +02:00
reivilibre
49e8fe57f4 Improve errors when MAS contacts the Synapse homeserver (#2794) 
* Add some drive-by docstrings

* Change text rendering of catch_http_codes::HttpError

Using `#[source]` is unnatural here because it makes it look like
two distinct errors (one being a cause of the other),
when in reality it is just one error, with 2 parts.

Using `Display` formatting for that leads to a more natural error.

* Add constraints to `catch_http_code{,s}` methods

Not strictly required, but does two things:

- documents what kind of function is expected
- provides a small extra amount of type enforcement at the call site,
  rather than later on when you find the result doesn't implement Service

* Add a `catch_http_errors` shorthand

Nothing major, just a quality of life improvement so you don't have to
repetitively write out what a HTTP error is

* Unexpected error page: remove leading whitespace from preformatted 'details' section

The extra whitespace was probably unintentional and makes the error harder to read,
particularly when it wraps onto a new line unnecessarily

* Capture and log Matrix errors received from Synapse

* Drive-by clippy fix: use clamp instead of min().max()

* Convert `err(Display)` to `err(Debug)` for `anyhow::Error`s in matrix-synapse support module
 2024-06-07 11:14:04 +00:00
reivilibre
d76b54b13f Add a setPassword GraphQL mutation for setting a user's password (#2820) 
* Feed `PasswordManager` through to the GraphQL `State`

* Add `setPassword` GraphQL mutation to update a user's password
 2024-06-05 18:04:17 +01:00
Kévin Commaille
fa0dec737b Use headers API 
Signed-off-by: Kévin Commaille <zecakeh@tedomum.fr>
 2024-05-30 10:52:53 +02:00
Kévin Commaille
683516bb66 Allow parameters in UserInfo endpoint's response's content-type 
Signed-off-by: Kévin Commaille <zecakeh@tedomum.fr>
 2024-05-30 10:52:53 +02:00
reivilibre
206d45bb31 Merge the mas_graphql crate into the mas_handlers crate (#2783) 2024-05-17 17:22:34 +01:00
Olivier 'reivilibre
37a10aea96 Use Reverse() helper instead of sorting then reversing 2024-05-16 16:39:57 +02:00
Olivier 'reivilibre
d20b0a04fe 'migration' -> 'database migration' in startup output 2024-05-16 16:39:57 +02:00
Olivier 'reivilibre
f8bfad37a1 Fix typos in doctor command output 2024-05-16 16:39:57 +02:00
Quentin Gliech
d061d7f6b3 Move tokio to a workspace dependency 2024-05-15 14:54:34 +02:00
Quentin Gliech
098f7fba03 Move async-graphql to workspace deps & disable apollo tracing 2024-05-15 14:54:34 +02:00
Quentin Gliech
c8e074c8e2 Don't panic when the repository fails on the introspection endpoint 2024-05-15 14:15:11 +02:00
Quentin Gliech
5ef6fa4109 Place the CAPTCHA error at the end of the form 2024-05-15 09:38:10 +02:00
Quentin Gliech
359da66b88 Display a user-friendly error on CAPTCHA failures 2024-05-15 09:38:10 +02:00
Quentin Gliech
ba8749fe33 Document the CAPTCHA configuration 2024-05-15 09:38:10 +02:00
Quentin Gliech
e4d6bbee14 Disable hCaptcha compatibility with reCAPTCHA 2024-05-15 09:38:10 +02:00
Quentin Gliech
cef069564a Add a <noscript> fallback message 2024-05-15 09:38:10 +02:00
Quentin Gliech
4d9d8a8ba3 Actually verify the CAPTCHA during registration 2024-05-15 09:38:10 +02:00
Quentin Gliech
0e270d5449 hCaptcha support 2024-05-15 09:38:10 +02:00
Quentin Gliech
f9ae7ae313 Cloudflare Turnstile support 2024-05-15 09:38:10 +02:00
Quentin Gliech
a3beeb2398 Render reCAPTCHA challenge on the registration form 2024-05-15 09:38:10 +02:00
Quentin Gliech
c422c29a60 Always show the primary email first 
This loads the primary email with the page, reducing the number of
requests before displaying it, and reducing the layout shifts
 2024-05-14 17:32:06 +02:00
Quentin Gliech
56d370f1d5 Add a few words on what MAS is at the beginning of the documentation 2024-05-14 10:44:41 +02:00
Quentin Gliech
f3b481f4ae Apply typos corrections from review 
Co-authored-by: Will Lewis <1543626+wrjlewis@users.noreply.github.com>
 2024-05-14 10:44:41 +02:00
Quentin Gliech
0c2305ad6f Clarify what authz as a user means for the urn:mas:graphql:* scope 2024-05-14 10:44:41 +02:00
Quentin Gliech
e2cfa23401 Add missing documentation for some configuration parameters 2024-05-14 10:44:41 +02:00
Quentin Gliech
603de2b620 Rework the docuemntation overview 2024-05-14 10:44:41 +02:00
Quentin Gliech
76e9c32642 Document part of the GraphQL API and the scopes used by MAS 2024-05-14 10:44:41 +02:00
Quentin Gliech
3a55a0d745 Explain what the different grants and sessions are 2024-05-14 10:44:41 +02:00
Quentin Gliech
10eb93059c Write about the policy engine 2024-05-14 10:44:41 +02:00
Quentin Gliech
87dc0debbf docs: Rename the "usage" section to "reference" 2024-05-14 10:44:41 +02:00
dependabot[bot]
201fb7359d build(deps): bump the tanstack-router group in /frontend with 2 updates 
Bumps the tanstack-router group in /frontend with 2 updates: [@tanstack/react-router](https://github.com/TanStack/router/tree/HEAD/packages/react-router) and [@tanstack/router-devtools](https://github.com/TanStack/router/tree/HEAD/packages/router-devtools).


Updates `@tanstack/react-router` from 1.31.26 to 1.31.27
- [Release notes](https://github.com/TanStack/router/releases)
- [Commits](https://github.com/TanStack/router/commits/v1.31.27/packages/react-router)

Updates `@tanstack/router-devtools` from 1.31.26 to 1.31.27
- [Release notes](https://github.com/TanStack/router/releases)
- [Commits](https://github.com/TanStack/router/commits/v1.31.27/packages/router-devtools)

---
updated-dependencies:
- dependency-name: "@tanstack/react-router"
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: tanstack-router
- dependency-name: "@tanstack/router-devtools"
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: tanstack-router
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-10 22:20:03 +02:00
dependabot[bot]
876bb179d2 build(deps): bump i18next in /frontend in the i18next group 
Bumps the i18next group in /frontend with 1 update: [i18next](https://github.com/i18next/i18next).


Updates `i18next` from 23.11.3 to 23.11.4
- [Release notes](https://github.com/i18next/i18next/releases)
- [Changelog](https://github.com/i18next/i18next/blob/master/CHANGELOG.md)
- [Commits](https://github.com/i18next/i18next/compare/v23.11.3...v23.11.4)

---
updated-dependencies:
- dependency-name: i18next
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: i18next
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-10 21:51:43 +02:00
dependabot[bot]
53d025a678 build(deps): bump the urql group in /frontend with 4 updates 
Bumps the urql group in /frontend with 4 updates: [@urql/exchange-graphcache](https://github.com/urql-graphql/urql/tree/HEAD/exchanges/graphcache), [@urql/exchange-refocus](https://github.com/urql-graphql/urql/tree/HEAD/exchanges/refocus), [@urql/exchange-request-policy](https://github.com/urql-graphql/urql/tree/HEAD/exchanges/request-policy) and [urql](https://github.com/urql-graphql/urql/tree/HEAD/packages/react-urql).


Updates `@urql/exchange-graphcache` from 7.0.2 to 7.1.0
- [Release notes](https://github.com/urql-graphql/urql/releases)
- [Changelog](https://github.com/urql-graphql/urql/blob/main/exchanges/graphcache/CHANGELOG.md)
- [Commits](https://github.com/urql-graphql/urql/commits/@urql/exchange-graphcache@7.1.0/exchanges/graphcache)

Updates `@urql/exchange-refocus` from 1.0.2 to 1.1.0
- [Release notes](https://github.com/urql-graphql/urql/releases)
- [Changelog](https://github.com/urql-graphql/urql/blob/main/exchanges/refocus/CHANGELOG.md)
- [Commits](https://github.com/urql-graphql/urql/commits/@urql/exchange-refocus@1.1.0/exchanges/refocus)

Updates `@urql/exchange-request-policy` from 1.1.0 to 1.2.0
- [Release notes](https://github.com/urql-graphql/urql/releases)
- [Changelog](https://github.com/urql-graphql/urql/blob/main/exchanges/request-policy/CHANGELOG.md)
- [Commits](https://github.com/urql-graphql/urql/commits/@urql/exchange-request-policy@1.2.0/exchanges/request-policy)

Updates `urql` from 4.0.7 to 4.1.0
- [Release notes](https://github.com/urql-graphql/urql/releases)
- [Changelog](https://github.com/urql-graphql/urql/blob/main/packages/react-urql/CHANGELOG.md)
- [Commits](https://github.com/urql-graphql/urql/commits/urql@4.1.0/packages/react-urql)

---
updated-dependencies:
- dependency-name: "@urql/exchange-graphcache"
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: urql
- dependency-name: "@urql/exchange-refocus"
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: urql
- dependency-name: "@urql/exchange-request-policy"
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: urql
- dependency-name: urql
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: urql
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-10 21:51:19 +02:00
Quentin Gliech
1b4898aa3a Make the consent screens (almost completely) translatable 
One exception is the wording for the privacy policy/TOS, because it's
annoying to do with the conditionals.
 2024-05-10 14:49:54 +02:00
dependabot[bot]
caca7318e1 build(deps): bump zod from 3.23.6 to 3.23.8 in /frontend 
Bumps [zod](https://github.com/colinhacks/zod) from 3.23.6 to 3.23.8.
- [Release notes](https://github.com/colinhacks/zod/releases)
- [Changelog](https://github.com/colinhacks/zod/blob/master/CHANGELOG.md)
- [Commits](https://github.com/colinhacks/zod/compare/v3.23.6...v3.23.8)

---
updated-dependencies:
- dependency-name: zod
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-10 10:35:25 +02:00
dependabot[bot]
a3fb983c09 build(deps): bump the tanstack-router group across 1 directory with 2 updates 
Bumps the tanstack-router group with 2 updates in the /frontend directory: [@tanstack/react-router](https://github.com/TanStack/router/tree/HEAD/packages/react-router) and [@tanstack/router-devtools](https://github.com/TanStack/router/tree/HEAD/packages/router-devtools).


Updates `@tanstack/react-router` from 1.31.20 to 1.31.26
- [Release notes](https://github.com/TanStack/router/releases)
- [Commits](https://github.com/TanStack/router/commits/v1.31.26/packages/react-router)

Updates `@tanstack/router-devtools` from 1.31.20 to 1.31.26
- [Release notes](https://github.com/TanStack/router/releases)
- [Commits](https://github.com/TanStack/router/commits/v1.31.26/packages/router-devtools)

---
updated-dependencies:
- dependency-name: "@tanstack/react-router"
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: tanstack-router
- dependency-name: "@tanstack/router-devtools"
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: tanstack-router
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-10 10:23:10 +02:00
dependabot[bot]
63fb0efcf3 build(deps): bump vaul from 0.9.0 to 0.9.1 in /frontend 
Bumps [vaul](https://github.com/emilkowalski/vaul) from 0.9.0 to 0.9.1.
- [Release notes](https://github.com/emilkowalski/vaul/releases)
- [Commits](https://github.com/emilkowalski/vaul/compare/v0.9.0...v0.9.1)

---
updated-dependencies:
- dependency-name: vaul
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-10 10:22:15 +02:00
dependabot[bot]
2565a068a5 build(deps): bump @vector-im/compound-web in /frontend 
Bumps [@vector-im/compound-web](https://github.com/vector-im/compound-web) from 4.1.2 to 4.2.0.
- [Release notes](https://github.com/vector-im/compound-web/releases)
- [Commits](https://github.com/vector-im/compound-web/compare/v4.1.2...v4.2.0)

---
updated-dependencies:
- dependency-name: "@vector-im/compound-web"
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-10 10:21:50 +02:00
dependabot[bot]
5ed10e0e06 build(deps): bump wasmtime from 20.0.1 to 20.0.2 
Bumps [wasmtime](https://github.com/bytecodealliance/wasmtime) from 20.0.1 to 20.0.2.
- [Release notes](https://github.com/bytecodealliance/wasmtime/releases)
- [Changelog](https://github.com/bytecodealliance/wasmtime/blob/main/docs/WASI-some-possible-changes.md)
- [Commits](https://github.com/bytecodealliance/wasmtime/compare/v20.0.1...v20.0.2)

---
updated-dependencies:
- dependency-name: wasmtime
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-10 10:20:37 +02:00
dependabot[bot]
036a778af6 build(deps): bump rustls-pki-types from 1.5.0 to 1.7.0 
Bumps [rustls-pki-types](https://github.com/rustls/pki-types) from 1.5.0 to 1.7.0.
- [Release notes](https://github.com/rustls/pki-types/releases)
- [Commits](https://github.com/rustls/pki-types/compare/v/1.5.0...v/1.7.0)

---
updated-dependencies:
- dependency-name: rustls-pki-types
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-10 10:20:28 +02:00
dependabot[bot]
7b1dfa9b0b build(deps): bump serde_json from 1.0.116 to 1.0.117 
Bumps [serde_json](https://github.com/serde-rs/json) from 1.0.116 to 1.0.117.
- [Release notes](https://github.com/serde-rs/json/releases)
- [Commits](https://github.com/serde-rs/json/compare/v1.0.116...v1.0.117)

---
updated-dependencies:
- dependency-name: serde_json
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-10 10:20:22 +02:00
dependabot[bot]
ba7b029128 build(deps): bump psl from 2.1.36 to 2.1.37 
Bumps [psl](https://github.com/addr-rs/psl) from 2.1.36 to 2.1.37.
- [Release notes](https://github.com/addr-rs/psl/releases)
- [Commits](https://github.com/addr-rs/psl/compare/v2.1.36...v2.1.37)

---
updated-dependencies:
- dependency-name: psl
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-10 10:20:16 +02:00
Quentin Gliech
353815bc6f Skip the device code form when using the full verification URI 
This changes the form to use a GET method, as it is only really doing
a redirect.
 2024-05-07 12:19:10 +02:00
dependabot[bot]
2e84e226c7 build(deps): bump thiserror from 1.0.59 to 1.0.60 
Bumps [thiserror](https://github.com/dtolnay/thiserror) from 1.0.59 to 1.0.60.
- [Release notes](https://github.com/dtolnay/thiserror/releases)
- [Commits](https://github.com/dtolnay/thiserror/compare/1.0.59...1.0.60)

---
updated-dependencies:
- dependency-name: thiserror
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-07 08:21:08 +02:00
dependabot[bot]
91855a2a2e build(deps): bump schemars from 0.8.17 to 0.8.19 
Bumps [schemars](https://github.com/GREsau/schemars) from 0.8.17 to 0.8.19.
- [Release notes](https://github.com/GREsau/schemars/releases)
- [Changelog](https://github.com/GREsau/schemars/blob/master/CHANGELOG.md)
- [Commits](https://github.com/GREsau/schemars/compare/v0.8.17...v0.8.19)

---
updated-dependencies:
- dependency-name: schemars
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-07 08:20:17 +02:00
dependabot[bot]
415261f076 build(deps-dev): bump happy-dom from 14.7.1 to 14.10.1 in /frontend 
Bumps [happy-dom](https://github.com/capricorn86/happy-dom) from 14.7.1 to 14.10.1.
- [Release notes](https://github.com/capricorn86/happy-dom/releases)
- [Commits](https://github.com/capricorn86/happy-dom/compare/v14.7.1...v14.10.1)

---
updated-dependencies:
- dependency-name: happy-dom
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-07 08:15:13 +02:00
dependabot[bot]
e5098e7df2 build(deps-dev): bump @types/node in /frontend in the types group 
Bumps the types group in /frontend with 1 update: [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node).


Updates `@types/node` from 20.12.8 to 20.12.10
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

---
updated-dependencies:
- dependency-name: "@types/node"
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: types
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-07 08:14:53 +02:00
dependabot[bot]
87f1c82755 build(deps): bump the tanstack-router group across 1 directory with 3 updates 
Bumps the tanstack-router group with 3 updates in the /frontend directory: [@tanstack/react-router](https://github.com/TanStack/router/tree/HEAD/packages/react-router), [@tanstack/router-devtools](https://github.com/TanStack/router/tree/HEAD/packages/router-devtools) and [@tanstack/router-vite-plugin](https://github.com/TanStack/router/tree/HEAD/packages/router-vite-plugin).


Updates `@tanstack/react-router` from 1.31.6 to 1.31.20
- [Release notes](https://github.com/TanStack/router/releases)
- [Commits](https://github.com/TanStack/router/commits/v1.31.20/packages/react-router)

Updates `@tanstack/router-devtools` from 1.31.6 to 1.31.20
- [Release notes](https://github.com/TanStack/router/releases)
- [Commits](https://github.com/TanStack/router/commits/v1.31.20/packages/router-devtools)

Updates `@tanstack/router-vite-plugin` from 1.30.0 to 1.31.18
- [Release notes](https://github.com/TanStack/router/releases)
- [Commits](https://github.com/TanStack/router/commits/v1.31.18/packages/router-vite-plugin)

---
updated-dependencies:
- dependency-name: "@tanstack/react-router"
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: tanstack-router
- dependency-name: "@tanstack/router-devtools"
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: tanstack-router
- dependency-name: "@tanstack/router-vite-plugin"
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: tanstack-router
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-07 07:46:56 +02:00
dependabot[bot]
a50dba3596 build(deps): bump zod from 3.23.5 to 3.23.6 in /frontend 
Bumps [zod](https://github.com/colinhacks/zod) from 3.23.5 to 3.23.6.
- [Release notes](https://github.com/colinhacks/zod/releases)
- [Changelog](https://github.com/colinhacks/zod/blob/master/CHANGELOG.md)
- [Commits](https://github.com/colinhacks/zod/compare/v3.23.5...v3.23.6)

---
updated-dependencies:
- dependency-name: zod
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-07 07:46:36 +02:00