dandri/matrix-authentication-service
1
0
Fork 0
mirror of https://github.com/element-hq/matrix-authentication-service.git synced 2026-05-18 16:16:41 +00:00
Code Issues Packages Projects Releases Wiki Activity
6,062 Commits 93 Branches 87 Tags
2f94de202cc00450b49a41d9f97040f069955686
Commit Graph

122 Commits

Author SHA1 Message Date
Quentin Gliech 806a815f75 Highlight dangerous scopes when consenting to them 2025-10-22 11:29:52 +02:00
Quentin Gliech e4844968d3 Add a configuration option to make email optional for password registration 2025-10-07 17:28:01 +02:00
Quentin Gliech 7e018a06aa Merge remote-tracking branch 'origin/main' into quenting/stable-api 2025-08-04 16:38:49 +02:00
Olivier D 95ab780fb2 update license 
Co-authored-by: Quentin Gliech <quenting@element.io>
 2025-07-21 09:52:24 +02:00
mcalinghee 98912f4ada allow importing existing users when the localpart matches in upstream OAuth 2.0 logins 2025-07-21 09:52:24 +02:00
Quentin Gliech b2a2ba07bf Upgrade @vector-im/compound-web as well 2025-07-10 15:20:52 +02:00
Quentin Gliech b824e697e4 Parse the stable scopes in the templates 2025-06-13 15:55:42 +02:00
Quentin Gliech 3d96dc9d47 Update license headers to match the actual license 2025-06-12 10:32:16 +02:00
Quentin Gliech d4e2d06ed9 Registration token step view 2025-06-03 17:42:53 +02:00
Quentin Gliech 7c0eeec347 Generate a device name based on the client name and user agent 2025-04-25 16:55:29 +02:00
Quentin Gliech fc94c751bc templates: introduce a parse_user_agent filter and use it in the device consent page 2025-04-25 12:55:30 +02:00
mcalinghee 77e954e475 correct format and translation 2025-04-10 17:57:58 +02:00
mcalinghee f2a47f9a88 add login by email + feature flag 2025-04-10 17:57:58 +02:00
Quentin Gliech 0643133bc4 Fallback link in password recovery emails 2025-04-10 11:35:32 +02:00
hummingbard 9f925e6f09 Added upstream sample config for Discord, brand logo in templates 2025-03-30 15:53:56 +06:00
Quentin Gliech 62a4aba08b Better error pages when a user is deactivated or locked 2025-03-11 17:35:13 +01:00
Quentin Gliech 70b561291e Show proper error messages when registering with a banned/not-allowed username 2025-03-03 10:45:30 +01:00
Quentin Gliech bde473faf7 Update the compound design tokens, replace the error icon with error-solid 2025-02-21 17:04:11 +01:00
Quentin Gliech 0027980cf4 Add translatable errors for the email policy constraints 2025-02-17 15:53:57 +01:00
Quentin Gliech 44f7b46b63 Fix the rendering of the embedded API doc 2025-02-12 18:19:25 +01:00
Quentin Gliech 8d50088d1e Apply code style suggestion 
Co-authored-by: reivilibre <oliverw@element.io>
 2025-01-23 18:35:11 +01:00
Quentin Gliech 7e6ab8ffc3 Disclose that email is already in use after verification 2025-01-23 18:18:19 +01:00
Quentin Gliech f50a386b10 Registration step to set a display name 2025-01-15 15:28:48 +01:00
Quentin Gliech f8517a5982 Implement email verification in the registration flow 2025-01-15 15:28:48 +01:00
Quentin Gliech 0bedaf3745 Make the password registration create a user_registration 2025-01-14 16:30:44 +01:00
Quentin Gliech a294b37e89 Fix the post auth action being lost during the registration flow 2025-01-14 16:30:44 +01:00
Quentin Gliech 3da27afc91 Move the registration-related views into a sub-module 2025-01-14 16:30:44 +01:00
Quentin Gliech 5f5fc44fbd Job to send the new email authentication codes 2025-01-14 15:47:17 +01:00
Quentin Gliech 1f83b39313 Remove the dedicated page to add an email address 2025-01-14 15:46:39 +01:00
Quentin Gliech f6e8a014b8 Username on the first registration page is optional 2025-01-07 11:49:01 +01:00
Quentin Gliech 342eaefa81 Split the base registration page with local password registration 2025-01-07 11:49:01 +01:00
Quentin Gliech 3088d35012 Update the IDP brand icons from Figma 2025-01-07 11:49:01 +01:00
Quentin Gliech b51a6c02ab Tweak the login page to match the design 2025-01-07 11:49:01 +01:00
Quentin Gliech d16049524b Propagate more specific error messages from the policy on registration 
This makes some policy errors translatable
 2025-01-06 10:15:08 +01:00
Quentin Gliech 2e3b8bdd86 Allow setting an explicit upstream account name (#3600) 2024-11-29 12:30:18 +01:00
Quentin Gliech 7296364cd3 Avoid using SameSite=None by re-submitting incoming form data 2024-11-22 08:48:00 +01:00
Quentin Gliech 4b7aff6049 Enable better minijinja compatibility with the Python implementation 2024-10-28 14:59:36 +01:00
Quentin Gliech 15c02fa643 Manual license edit of remaining files 2024-09-10 14:28:55 +02:00
reivilibre 5d4a4a6fb8 Add rate-limiting for account recovery and registration (#3093) 
* Add rate-limiting for account recovery and registration

* Rename login ratelimiter `per_address` to `per_ip` for consistency

Co-authored-by: Quentin Gliech <quenting@element.io>
 2024-08-07 17:57:36 +00:00
Quentin Gliech 3f947025e2 Host a Swagger UI both in the static documentation and by the server 2024-08-01 15:17:14 +02:00
Quentin Gliech e25c170403 Rate-limit password-based login attempts 2024-07-26 13:56:45 +02:00
Quentin Gliech e937ea8fa8 Rework assets loading to fix splitting CSS chunks 2024-07-25 12:59:29 +02:00
Quentin Gliech 756f2c01f8 Separate error page when the recovery link was already used 2024-06-28 15:59:21 +02:00
Quentin Gliech 96df94104e Show a proper 'link expired' page 2024-06-28 15:59:21 +02:00
Quentin Gliech f9f2f4a3be Gate account recovery behing a configuration flag 2024-06-28 15:59:21 +02:00
Quentin Gliech 09fca9fd75 Implement the password change form 2024-06-28 15:59:21 +02:00
Quentin Gliech 2e4d868385 Recovery progress page 2024-06-28 15:59:21 +02:00
Quentin Gliech c156a3891e Actually send emails for recovery 2024-06-28 15:59:21 +02:00
Quentin Gliech 319c43abc5 Start recovery view 2024-06-28 15:59:21 +02:00
reivilibre 7c67630c95 Remove the old password change page (#2874) 2024-06-27 13:41:24 +01:00