dandri/matrix-authentication-service
1
0
Fork 0
mirror of https://github.com/element-hq/matrix-authentication-service.git synced 2026-05-18 07:35:34 +00:00
Code Issues Packages Projects Releases Wiki Activity
6,062 Commits 93 Branches 87 Tags
2f94de202cc00450b49a41d9f97040f069955686
Commit Graph

6062 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
github-actions[bot] 2f94de202c 1.5.0-rc.1 v1.5.0-rc.1 2025-10-24 11:29:40 +00:00
reivilibre e934b226c6 Fix UNIQUE constraint on active personal access tokens per session (#5196) 2025-10-24 12:27:19 +01:00
Olivier 'reivilibre a01c0af73e fix up test that relied on it being broken 2025-10-23 16:02:19 +01:00
Olivier 'reivilibre f020cce619 Fix UNIQUE constraint on active personal access tokens per session 2025-10-23 15:01:39 +01:00
github-actions[bot] 6d2ed5a3fd 1.5.0-rc.0 v1.5.0-rc.0 2025-10-22 14:41:41 +00:00
matrixbot 78fd24b21c Translations updates for main (#5185) 2025-10-22 16:21:20 +02:00
github-actions[bot] 59ebf42797 Translations updates 2025-10-22 14:12:35 +00:00
Quentin Gliech 988bc8ef1d docs: add missing --reactivate option to unlock-user subcommand (#5162) 2025-10-22 16:09:16 +02:00
Quentin Gliech 0931d5df61 build(deps-dev): bump @graphql-codegen/cli from 6.0.0 to 6.0.1 in /frontend in the graphql-codegen group (#5175) 2025-10-22 16:03:54 +02:00
Quentin Gliech 5ce8ffcc23 build(deps-dev): bump @types/node from 24.8.1 to 24.9.1 in /frontend in the types group (#5176) 2025-10-22 16:03:29 +02:00
Quentin Gliech 013d9dc458 build(deps): bump reqwest from 0.12.23 to 0.12.24 (#5178) 2025-10-22 16:03:10 +02:00
Quentin Gliech bb9dc1c0af build(deps): bump react-i18next from 16.1.0 to 16.1.3 in /frontend in the i18next group (#5173) 2025-10-22 16:02:49 +02:00
Quentin Gliech 35dabbb6c6 build(deps-dev): bump the storybook group in /frontend with 3 updates (#5172) 2025-10-22 16:02:08 +02:00
Quentin Gliech e644f682c9 build(deps): bump clap from 4.5.48 to 4.5.50 (#5177) 2025-10-22 15:59:32 +02:00
reivilibre 0d28304c11 Revoke personal sessions when users are deactivated (#5181) 
Revoke both personal sessions that are owned by, and acting as, the deactivated user.

Owned by because: it doesn't make sense for a deactivated user to be able to control themselves or other users, so them having active personal sessions is just confusing.

Acting as because: current precedent is that deactivated users are not controllable, even by admins.
To uphold this, the admin API is also fixed to stop allowing the creation of personal sessions for deactivated users.
 2025-10-22 14:53:56 +01:00
reivilibre 8359f8b4e3 When adding or revoking personal sessions, schedule device synchronisation (#5182) 2025-10-22 14:53:31 +01:00
Olivier 'reivilibre 3d80097bae Merge branch 'main' into rei/pat_devicesync 2025-10-22 14:27:40 +01:00
Olivier 'reivilibre 409f35476a Remove stale comment 2025-10-22 14:23:18 +01:00
Olivier 'reivilibre 80feaffe16 Add comments for the filters 2025-10-22 14:22:10 +01:00
Olivier 'reivilibre 54c025f333 Use is_valid_actor 2025-10-22 14:20:55 +01:00
Olivier 'reivilibre e648c8ecc3 Merge branch 'main' into rei/pat_revoke_on_deactivate 2025-10-22 14:18:17 +01:00
dependabot[bot] 7473f4f0e2 build(deps-dev): bump the storybook group in /frontend with 3 updates 
Bumps the storybook group in /frontend with 3 updates: [@storybook/addon-docs](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/docs), [@storybook/react-vite](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/react-vite) and [storybook](https://github.com/storybookjs/storybook/tree/HEAD/code/core).


Updates `@storybook/addon-docs` from 9.1.10 to 9.1.13
- [Release notes](https://github.com/storybookjs/storybook/releases)
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md)
- [Commits](https://github.com/storybookjs/storybook/commits/HEAD/code/addons/docs)

Updates `@storybook/react-vite` from 9.1.10 to 9.1.13
- [Release notes](https://github.com/storybookjs/storybook/releases)
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md)
- [Commits](https://github.com/storybookjs/storybook/commits/HEAD/code/frameworks/react-vite)

Updates `storybook` from 9.1.10 to 9.1.13
- [Release notes](https://github.com/storybookjs/storybook/releases)
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md)
- [Commits](https://github.com/storybookjs/storybook/commits/HEAD/code/core)

---
updated-dependencies:
- dependency-name: "@storybook/addon-docs"
  dependency-version: 9.1.13
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: storybook
- dependency-name: "@storybook/react-vite"
  dependency-version: 9.1.13
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: storybook
- dependency-name: storybook
  dependency-version: 9.1.13
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: storybook
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-10-22 13:15:56 +00:00
dependabot[bot] 9061e9757a build(deps): bump react-i18next in /frontend in the i18next group 
Bumps the i18next group in /frontend with 1 update: [react-i18next](https://github.com/i18next/react-i18next).


Updates `react-i18next` from 16.1.0 to 16.1.3
- [Changelog](https://github.com/i18next/react-i18next/blob/master/CHANGELOG.md)
- [Commits](https://github.com/i18next/react-i18next/compare/v16.1.0...v16.1.3)

---
updated-dependencies:
- dependency-name: react-i18next
  dependency-version: 16.1.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: i18next
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-10-22 13:15:48 +00:00
dependabot[bot] cf4ecaec04 build(deps-dev): bump @graphql-codegen/cli 
Bumps the graphql-codegen group in /frontend with 1 update: [@graphql-codegen/cli](https://github.com/dotansimha/graphql-code-generator/tree/HEAD/packages/graphql-codegen-cli).


Updates `@graphql-codegen/cli` from 6.0.0 to 6.0.1
- [Release notes](https://github.com/dotansimha/graphql-code-generator/releases)
- [Changelog](https://github.com/dotansimha/graphql-code-generator/blob/master/packages/graphql-codegen-cli/CHANGELOG.md)
- [Commits](https://github.com/dotansimha/graphql-code-generator/commits/@graphql-codegen/cli@6.0.1/packages/graphql-codegen-cli)

---
updated-dependencies:
- dependency-name: "@graphql-codegen/cli"
  dependency-version: 6.0.1
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: graphql-codegen
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-10-22 13:15:46 +00:00
dependabot[bot] b5fefb2951 build(deps-dev): bump @types/node in /frontend in the types group 
Bumps the types group in /frontend with 1 update: [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node).


Updates `@types/node` from 24.8.1 to 24.9.1
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

---
updated-dependencies:
- dependency-name: "@types/node"
  dependency-version: 24.9.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: types
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-10-22 13:15:46 +00:00
reivilibre d8b5e162da Accept personal access tokens on the Admin API (#5183) 2025-10-22 14:03:59 +01:00
Olivier 'reivilibre 95bc20e440 When adding personal session, upsert devices synchronously 2025-10-22 14:03:21 +01:00
Olivier 'reivilibre e5a54f2d68 Restructure user validity check 2025-10-22 13:29:53 +01:00
Olivier 'reivilibre 84450a7bfb remove redundant #[source] 2025-10-22 13:29:45 +01:00
Olivier 'reivilibre c8ed12512e Relax the validity check of the token actor 2025-10-22 13:15:12 +01:00
Olivier 'reivilibre f51747a666 Check validity of token owner 2025-10-22 13:04:39 +01:00
Olivier 'reivilibre a7d83540c2 Pass through the TokenFormatError 2025-10-22 12:59:49 +01:00
Olivier 'reivilibre 42f6664396 When adding or revoking personal sessions, schedule needed device syncs 2025-10-22 11:50:27 +01:00
Olivier 'reivilibre c74150f8df Accept PATs on the Admin API 2025-10-22 11:37:04 +01:00
Olivier 'reivilibre b23a35a214 Rename record_personal_session function 2025-10-22 11:37:04 +01:00
Olivier 'reivilibre c5756d4d7f Don't allow creating personal sessions for deactivated users 2025-10-22 11:31:17 +01:00
Olivier 'reivilibre 7d5e9b863d Revoke personal sessions on user deactivation 2025-10-22 11:27:10 +01:00
Olivier 'reivilibre be40e1bed7 Add revoke_bulk for personal sessions storage 2025-10-22 11:27:10 +01:00
reivilibre eeba7e192c Personal Sessions: add create, list, get, revoke, regenerate Admin APIs (#5141) 
Introduces some admin API endpoints for Personal Sessions.

- add: Creates a personal session along with its first personal access token, returning both. This is currently the only way to get a personal access token.
- get: Shows the information about a personal session
- list: Shows many personal sessions
- revoke: Revokes a personal session, so it can't be used anymore
- regenerate: Revoke the active personal access token for a session and issue a new one to replace it.
 2025-10-22 11:20:02 +01:00
Quentin Gliech 5fa972510e Highlight dangerous scopes when consenting to them (#5180) 2025-10-22 12:11:32 +02:00
Quentin Gliech 820b1d7fde Update extracted translations 2025-10-22 11:50:10 +02:00
Quentin Gliech bc3d3d4235 Align the icons used in the session details page 2025-10-22 11:39:56 +02:00
Quentin Gliech c9fd4653c4 Make the font slightly bolder on dangerous scopes 2025-10-22 11:37:58 +02:00
Quentin Gliech 806a815f75 Highlight dangerous scopes when consenting to them 2025-10-22 11:29:52 +02:00
dependabot[bot] 112dd4052f build(deps): bump reqwest from 0.12.23 to 0.12.24 
Bumps [reqwest](https://github.com/seanmonstar/reqwest) from 0.12.23 to 0.12.24.
- [Release notes](https://github.com/seanmonstar/reqwest/releases)
- [Changelog](https://github.com/seanmonstar/reqwest/blob/master/CHANGELOG.md)
- [Commits](https://github.com/seanmonstar/reqwest/compare/v0.12.23...v0.12.24)

---
updated-dependencies:
- dependency-name: reqwest
  dependency-version: 0.12.24
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-10-21 13:18:27 +00:00
dependabot[bot] f8ba4ffe88 build(deps): bump clap from 4.5.48 to 4.5.50 
Bumps [clap](https://github.com/clap-rs/clap) from 4.5.48 to 4.5.50.
- [Release notes](https://github.com/clap-rs/clap/releases)
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md)
- [Commits](https://github.com/clap-rs/clap/compare/clap_complete-v4.5.48...clap_complete-v4.5.50)

---
updated-dependencies:
- dependency-name: clap
  dependency-version: 4.5.50
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-10-21 13:18:03 +00:00
Olivier 'reivilibre dda3a498b3 (update JSONSchema) 2025-10-21 12:16:45 +01:00
Olivier 'reivilibre 8fb0caf06a fixup! Add expires filter to personal sessions list 2025-10-21 11:30:11 +01:00
Olivier 'reivilibre db3dcce753 use axum_extract's version of Query everywhere 2025-10-21 11:30:11 +01:00
Olivier 'reivilibre a0c55835df fixup! Make expires_in u32 and (on regenerate) not default to the same as last time 2025-10-21 11:21:00 +01:00