0a5d048deb
Admin API to get the version of the service
2025-10-03 11:58:53 +02:00
eb8a87c02c
Admin API: make sure the meta fields are nullable
2025-09-30 13:23:54 +02:00
38278fa453
Admin API: add endpoint to get an Upstream OAuth Provider by ID
2025-09-30 12:08:31 +02:00
0d7144836e
Merge remote-tracking branch 'origin/main' into quenting/admin-api/optional-count
2025-09-30 11:46:50 +02:00
afaa7c44aa
Admin API: parameter to include total number of items
...
This allows removing the count calculation when not needed, or to skip
the list of items entirely.
2025-09-29 18:27:22 +02:00
10a4c8e215
Admin API: add pagination cursors to list endpoints
2025-09-29 15:09:15 +02:00
04758bee99
Admin API to list upstream OAuth 2.0 providers
2025-09-19 11:12:48 +02:00
815ce17cc5
Simple CLI commands to manage server admins
2025-09-16 12:42:32 +02:00
a7e56b3849
Admin API filter to search users by username
2025-09-15 14:12:31 +02:00
1e1dfdadc2
Allow filtering guest/non-guest users
2025-09-15 12:51:06 +02:00
5d63ee2edf
Surface the user guest flag in the admin API
2025-09-15 12:51:00 +02:00
f9f23fb12d
Admin API to expose a few configuration values
2025-09-12 17:47:36 +02:00
46cc1b8790
Request a refresh token in the device-code-grant.sh helper script ( #4974 )
2025-09-12 15:47:15 +02:00
741138e5b9
Documentation: update links to policy files
2025-09-03 15:08:21 -04:00
829c20f39e
Mention the refresh token in the docs
2025-09-03 14:34:26 +00:00
6eac7ed2d7
Automatically derive the kid from the key fingerprint if missing ( #4876 )
2025-09-02 17:04:35 +02:00
0a5f05ffe9
Merge branch 'main' into quenting/stable-docs
2025-09-02 14:11:40 +02:00
a65c9afb29
Switch to JWK Thumbprints
2025-08-20 18:22:21 +02:00
d23e5da105
Minor grammatical fixes to access-token.md ( #4917 )
2025-08-19 17:00:04 +01:00
64ed65c89b
Minor grammatical fixes to access-token.md
2025-08-19 12:18:27 +01:00
25260c7d74
Link directly to Localazy branching page in release docs
...
To make it quicker to get to the right page.
2025-08-19 12:14:22 +01:00
850bdd76b0
Docs: Run local tests via cargo-nextest ( #4873 )
2025-08-18 15:51:21 +02:00
13b6994bff
Apply suggestion from @sandhose
2025-08-18 15:44:23 +02:00
6a2d341657
Apply suggestions from code review
...
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com >
2025-08-18 13:44:10 +02:00
ef50efe9e6
Document Synapse integration with the stable feature
2025-08-18 13:38:35 +02:00
a3d1148055
Fix a few more clippy lints
2025-08-18 10:45:20 +02:00
cf997048e4
Add missing branding config to docs ( #4577 )
2025-08-15 12:22:07 +02:00
5ff85b730d
Include simple script to generate an access token
2025-08-12 16:58:00 +02:00
1b7b43b559
Auto-generate kid if not given
2025-08-08 11:38:45 +02:00
2174e2d5ce
Docs: Run local tests via cargo-nextest
...
Mention this specifically in contributing.md since CI also uses this test runner. My attempt to use `cargo test` failed due to PG connection pooling. In any case, unless there are reasons not to, we should keep close to mirroring what we do in CI.
2025-08-07 13:33:59 +03:00
9969898031
Merge branch 'main' into secret_file
2025-08-05 15:37:32 +02:00
f302711a37
Make MAS use the modern Synapse API by default
2025-08-05 15:03:32 +02:00
884c66891a
Merge branch 'main' into secret_file
2025-08-05 11:17:39 +02:00
c6ae5c7557
Add clients.[].client_secret_file config option ( #4857 )
2025-08-05 11:17:00 +02:00
a7e7c3caa1
Add clients.[].client_secret_file config option
2025-08-04 19:32:39 +02:00
7e018a06aa
Merge remote-tracking branch 'origin/main' into quenting/stable-api
2025-08-04 16:38:49 +02:00
d4a318a8ae
Add matrix.secret_file config option
2025-07-29 19:46:07 +02:00
97cd5d86ba
docs: Remove requirement for arbitrary KIDs ( #4807 )
2025-07-23 12:38:47 +02:00
858b388eec
KIDs must be stable across restarts
2025-07-23 12:31:38 +02:00
da94650706
Fix wording
2025-07-23 09:43:43 +02:00
2ecc502b05
Adapt markdown formatting
2025-07-23 09:39:52 +02:00
5587dd37e3
docs: Remove requirement for arbitrary KIDs
2025-07-21 18:37:03 +02:00
cfa9a23d86
Merge branch 'main' into feat/allow_override_user
2025-07-21 17:03:35 +02:00
832244675d
Threaten to switch to using the modern API in a few releases.
2025-07-21 13:15:48 +02:00
98912f4ada
allow importing existing users when the localpart matches in upstream OAuth 2.0 logins
2025-07-21 09:52:24 +02:00
c649603830
Use the new dedicated Synapse API
2025-07-18 16:39:24 +02:00
b83c747f37
Allow skipping GDPR-erasure when deactivating a user through the admin API ( #4744 )
2025-07-17 09:15:25 +02:00
d807975137
Decouple (un)locking from (re/de)activation
...
Unify the admin API, CLI, and GraphQL API in not having the unlock
command also reactivate, or the deactivate command also lock.
Still let the unlock command of the CLI and GraphQL API to also
reactivate the target user, albeit as a non-default option.
2025-07-16 14:17:01 -04:00
6c1afee13d
Separate active state from lock state in admin API
...
- Allow the admin API to deactivate a user without locking it, and to
unlock a user without reactivating it.
- Make unlock-and-reactivate flows unset the "deactivated_at" timestamp.
- Revert adding an "unlock" parameter on `ReactivateUserJob`, as the
option is used only by the admin API which doesn't use a job.
2025-07-16 14:17:01 -04:00
13a21cc018
Update schema
2025-07-16 14:17:01 -04:00
Quentin Gliech