dandri/matrix-authentication-service
1
0
Fork 0
mirror of https://github.com/element-hq/matrix-authentication-service.git synced 2026-06-06 22:02:15 +00:00
Code Issues Packages Projects Releases Wiki Activity
3,748 Commits 96 Branches 90 Tags
0623d4252bcb4e7acdda123c0c5a73f3d4745ce2
Commit Graph

190 Commits

Author SHA1 Message Date
Quentin Gliech a7ae36e1ce Allow filtering by subject in the upstream OAuth links admin API 2025-02-12 11:07:11 +01:00
Quentin Gliech c880a3dbac Admin API to list and get upstream OAuth links 2025-02-12 10:51:31 +01:00
Quentin Gliech 91d4d0ea39 Load Swagger UI earlier 2025-02-11 19:16:59 +01:00
Quentin Gliech 3d36b234f3 Enable operation deep-linking in the admin API docs 2025-02-11 19:06:19 +01:00
Quentin Gliech 9216d547ea Fix the user session admin API docs 2025-02-11 17:09:33 +01:00
Quentin Gliech 3792cd4f3b Admin API to list and get user sessions (#4004) 
Similar to #4002, this adds an admin API to list and get user (browser
cookies) sessions
 2025-02-11 16:38:21 +01:00
Quentin Gliech 2a9fb26265 Admin API to list and get user sessions 2025-02-11 14:24:16 +01:00
Quentin Gliech c881fb24f5 Fix the definition of the set-password success response in the OpenAPI spec 2025-02-11 13:54:15 +01:00
Quentin Gliech 42841cea3e Admin API to list and get compatibility sessions 2025-02-11 12:01:54 +01:00
Quentin Gliech 36e9d62db3 Admin API to list and get user emails (#4001) 
This adds endpoints to get and list user emails.

I chose to not scope them to users, so listing the emails for a user
means listing emails with a user filter
 2025-02-10 17:24:46 +01:00
Quentin Gliech 7b63b8d191 Update links to policy files (#3982) 2025-02-10 17:23:45 +01:00
Quentin Gliech 7ade439ac3 Admin API to list and get user emails 2025-02-10 17:13:55 +01:00
Will Lewis 76cdbc0ef0 Add reference to worker page 2025-02-07 13:57:28 +00:00
Will Lewis 20ee39af20 Add documentation to account for all cli mas options and standardise format 2025-02-07 13:38:36 +00:00
Travis Ralston 485e742ee4 Update links to policy files 2025-02-06 15:41:55 -07:00
Quentin Gliech fbbbf5b8fd Merge pull request #3790 from Stogas/patch-1 
Add 'introspection_endpoint' to homeserver config example
 2025-01-28 10:10:27 +01:00
Quentin Gliech a8e7749a07 Clarify why one would override the introspection_endpoint 2025-01-28 10:02:06 +01:00
reivilibre e5b6e1e8c2 Add pre-migration checks to syn2mas (#3805) 
This matches or exceeds `advisor.mts` from the old tool.

Co-authored-by: Quentin Gliech <quenting@element.io>
 2025-01-27 18:01:46 +00:00
Quentin Gliech ef077d0e51 Rate-limit email authentications 2025-01-23 12:09:26 +01:00
Quentin Gliech 0513f198d8 Rip out the email verification codes 
This considers all user_emails as confirmed, and removes the verification code.
It will be replaced by a new email authentication code flow
 2025-01-14 15:46:45 +01:00
Ovidijus Balkauskas 713bdeca75 Add 'introspection_endpoint' to homeserver config example 
This value was previously undocumented, but helpful in our case to access MAS within the same K8s cluster

Signed-off-by: Ovidijus Balkauskas <570945@gmail.com>
 2025-01-13 14:10:34 +02:00
Quentin Gliech 6ba8554bc7 Document the response_mode parameter 2025-01-06 11:59:53 +01:00
Quentin Gliech cd078cb567 Document the new usptream OAuth 2.0 configuration options 2025-01-06 11:59:53 +01:00
ChurchOfTheSubgenius 1434429b6c Include example SSO config for Rauthy. (#3725) 
Co-authored-by: Quentin Gliech <quenting@element.io>
 2024-12-19 15:26:02 +00:00
Quentin Gliech a97d2daa3d Make the issue optional on upstream OAuth 2.0 providers 2024-12-17 13:40:34 +01:00
Mathieu Velten 80903ed629 Add id_token_signed_response_alg and userinfo_signed_response_alg (#3664) 2024-12-17 11:54:16 +01:00
reivilibre 93ddaeefc3 Add documentation against using database transaction poolers (#3617) 2024-12-05 11:28:22 +00:00
Quentin Gliech 2e3b8bdd86 Allow setting an explicit upstream account name (#3600) 2024-11-29 12:30:18 +01:00
Mathieu Velten 56edcb4e52 Add fetch_userinfo to upstream SSO provider (#3363) 2024-11-26 15:01:03 +00:00
Phan Trung Thanh a0c2ce67ba Update configuration.md to include a missing parameter 2024-11-26 13:17:52 +01:00
Quentin Gliech 93bbfabf8e Document how to set up Sign-in with Apple 2024-11-22 08:48:00 +01:00
Quentin Gliech 6efe8bf45a Allow setting the response_mode on upstream OAuth 2.0 providers 2024-11-22 08:48:00 +01:00
Quentin Gliech ab4f438464 Support Sign in with Apple 2024-11-22 08:48:00 +01:00
hatch01 ba6d69b4a4 fix sso exemple config for authelia 2024-11-18 08:47:38 +01:00
Tonkku 1a7f34b0ff Add note about password schemes to migration docs 2024-11-18 08:46:51 +01:00
Thilo-Alexander Ginkel c13c8860c5 Add SSO sample configuration for Authelia 
Signed-off-by: Thilo-Alexander Ginkel <tg@tgbyte.de>
 2024-10-25 09:00:45 +02:00
morguldir 093809cad8 Fix link to setup docs for the mdbook 
https://rust-lang.github.io/mdBook/format/markdown.html?highlight=readm#links

"Links to README.md will be converted to index.html. This is done since some services like GitHub render README files automatically, but web servers typically expect the root file to be called index.html."
 2024-10-01 14:39:52 +02:00
Quentin Gliech 4ccce4de46 Remove the contacts requirement from the client registration policy 2024-09-20 20:39:04 +02:00
Quentin Gliech 847ccf8bb4 Move the remaining mentions of matrix-org to element-hq 2024-09-10 14:28:55 +02:00
Quentin Gliech 76367ff4ef Move the docker image to ghcr.io/element-hq/matrix-authentication-service 2024-09-10 14:28:55 +02:00
Quentin Gliech 36eb0fb77e Rename @matrix-org/syn2mas to @vector-im/syn2mas 2024-09-10 14:28:55 +02:00
Quentin Gliech 3a05f24b45 Fix the email policy documentation indentation 2024-09-03 17:47:43 +02:00
Marcel b5ed252573 Apply suggestions on wording 2024-09-03 17:33:10 +02:00
Marcel 7fe70aac80 Document policy settings for changing the policy wasm file 2024-09-03 17:33:10 +02:00
Marcel 6d30bc530f Document the email policy in the reference 2024-08-30 13:57:31 +02:00
Quentin Gliech 62e01883b6 Small documentation fixes 
- Removes mentions of the `mas-cli templates save` command
 - Removes the old `experimental` flags
 - Removes the old `policy.data.passwords` configs
 - Document the `policy.data.client_registration` flags
 - Remove references to the pre-built macOS binaries
 - Explains how to get syn2mas
 - State that you need to prepare the database before importing data
 - Clean up the reverse proxy documentation
 - Clarify that you don't need to provede templates/policy/assets
   manually when running the docker image
 2024-08-19 13:53:43 +02:00
Quentin Gliech 29d6383c5d admin: rename the can_request_admin field to admin 2024-08-07 20:13:43 +02:00
Quentin Gliech 6189abe7b4 admin: set can_request_admin API 2024-08-07 20:13:43 +02:00
reivilibre 5d4a4a6fb8 Add rate-limiting for account recovery and registration (#3093) 
* Add rate-limiting for account recovery and registration

* Rename login ratelimiter `per_address` to `per_ip` for consistency

Co-authored-by: Quentin Gliech <quenting@element.io>
 2024-08-07 17:57:36 +00:00
reivilibre 244f8f5e5e Add configuration for rate-limiting of logins, replacing hardcoded limits (#3090) 2024-08-07 18:36:02 +01:00