5c13757e1d
Deduplicate client registrations by hashing the metadata
2025-03-25 15:00:23 +01:00
6a37fdfe30
Merge branch 'main' into quenting/dynamic-policy-data
2025-03-14 10:16:16 +01:00
19f1091e56
Config option to allow account self-deactivation
2025-03-12 15:58:54 +01:00
6519d6c9ea
Add a deactivated_at flag on users
2025-03-11 17:35:13 +01:00
7c9bb73f67
Merge remote-tracking branch 'origin/main' into quenting/compat-device-id
2025-03-04 13:33:09 +01:00
aa3af157a3
storage: store dynamic policy data in the database
2025-02-25 12:26:22 +01:00
d1d95ee69a
Fix some old Synapse access tokens not being recognized
2025-02-24 11:12:02 +01:00
3d2b67a0b2
Upgrade to Rust 1.85 and edition 2024
2025-02-21 16:15:02 +01:00
9cdc3b9f37
Allow compat session devices to have spaces
2025-02-19 17:55:18 +01:00
935400d87b
Experimental feature to timeout inactive sessions
2025-02-12 17:31:21 +01:00
33fc45605f
Update most Rust dependencies & disable some unused features
2025-02-06 12:50:50 +01:00
1a6932214f
Introduce optional human_name column on compat_sessions
2025-02-05 11:36:51 +01:00
463ba2ea50
Avoid unnecessary clones in the login_hint parser
2025-01-28 17:25:54 +01:00
a5c9468f4e
Utility to extract the localpart from a MXID
2025-01-28 17:25:36 +01:00
0c26dd859a
Support compatibility sessions that do not have devices ( #3801 )
...
Co-authored-by: Quentin Gliech <quenting@element.io >
2025-01-27 14:50:31 +00:00
6092efe949
Merge branch 'main' into quenting/optional-email
2025-01-20 11:31:48 +01:00
21e2c36e89
Recognise macaroons as access tokens from Synapse ( #3797 )
2025-01-17 09:50:13 +00:00
dbb53160b6
Data model and storage layer for storing user registrations
2025-01-14 16:30:43 +01:00
0513f198d8
Rip out the email verification codes
...
This considers all user_emails as confirmed, and removes the verification code.
It will be replaced by a new email authentication code flow
2025-01-14 15:46:45 +01:00
75526ff0c4
storage: new email authentication codes
2025-01-13 17:00:30 +01:00
ee33e9c0fb
Remove the primary email address concept
2025-01-13 17:00:30 +01:00
af1282b510
Allow response_mode to be null and if so do not add the query param ( #3700 )
2024-12-18 18:18:39 +01:00
a97d2daa3d
Make the issue optional on upstream OAuth 2.0 providers
2024-12-17 13:40:34 +01:00
80903ed629
Add id_token_signed_response_alg and userinfo_signed_response_alg ( #3664 )
2024-12-17 11:54:16 +01:00
f054ff887b
build(deps): bump ruma-common from 0.14.1 to 0.15.0
...
Bumps [ruma-common](https://github.com/ruma/ruma ) from 0.14.1 to 0.15.0.
- [Release notes](https://github.com/ruma/ruma/releases )
- [Commits](https://github.com/ruma/ruma/compare/ruma-common-0.14.1...ruma-common-0.15.0 )
---
updated-dependencies:
- dependency-name: ruma-common
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-12-17 10:14:06 +01:00
177a0f42bd
Allow revoking refresh tokens
...
This lets us track 'revoked' tokens separately from 'consumed' tokens.
2024-12-11 14:15:01 +01:00
23c73cf191
Record when access tokens are first used
2024-12-11 14:15:01 +01:00
56cb293fbb
Record the next refresh token ID when refreshing
...
This will help us determine whether we had a double-refresh happening
2024-12-11 14:15:01 +01:00
2e3b8bdd86
Allow setting an explicit upstream account name ( #3600 )
2024-11-29 12:30:18 +01:00
56edcb4e52
Add fetch_userinfo to upstream SSO provider ( #3363 )
2024-11-26 15:01:03 +00:00
98f13004bc
Record extra query parameters during upstream callback
...
And make them available in the templates.
This is useful to get the user display name for Sign-in with Apple
2024-11-22 08:48:00 +01:00
6efe8bf45a
Allow setting the response_mode on upstream OAuth 2.0 providers
2024-11-22 08:48:00 +01:00
ab4f438464
Support Sign in with Apple
2024-11-22 08:48:00 +01:00
9b12442308
build(deps): bump ruma-common from 0.13.0 to 0.14.1
...
Bumps [ruma-common](https://github.com/ruma/ruma ) from 0.13.0 to 0.14.1.
- [Release notes](https://github.com/ruma/ruma/releases )
- [Commits](https://github.com/ruma/ruma/compare/ruma-common-0.13.0...ruma-common-0.14.1 )
---
updated-dependencies:
- dependency-name: ruma-common
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-11-18 15:42:58 +01:00
00432ddba8
Remove mas-matrix dependency on mas-data-model
2024-11-18 11:42:43 +01:00
751b6f2259
Allow use of chrono::Utc::now in the tests
...
Clock cannot be used because of a circular dependency
2024-11-18 11:42:43 +01:00
80fbaaa41c
More format
...
For some reason my cargo disagrees with the use line
2024-11-18 11:42:43 +01:00
32eb5499b9
clippy 📎
2024-11-18 11:42:43 +01:00
edc4604a6c
cargo fmt
2024-11-18 11:42:43 +01:00
c017dd0840
Implement login_hint
2024-11-18 11:42:43 +01:00
9f22502eb2
build(deps): bump regex from 1.11.0 to 1.11.1
...
Bumps [regex](https://github.com/rust-lang/regex ) from 1.11.0 to 1.11.1.
- [Release notes](https://github.com/rust-lang/regex/releases )
- [Changelog](https://github.com/rust-lang/regex/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rust-lang/regex/compare/1.11.0...1.11.1 )
---
updated-dependencies:
- dependency-name: regex
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-10-29 12:58:41 +01:00
63e6e98083
Remove most doctests
2024-10-29 12:37:59 +01:00
c5aac3d878
build(deps): bump regex from 1.10.6 to 1.11.0
...
Bumps [regex](https://github.com/rust-lang/regex ) from 1.10.6 to 1.11.0.
- [Release notes](https://github.com/rust-lang/regex/releases )
- [Changelog](https://github.com/rust-lang/regex/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rust-lang/regex/compare/1.10.6...1.11.0 )
---
updated-dependencies:
- dependency-name: regex
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-10-07 19:05:21 +02:00
87f34522c8
Output the registered client metadata in the registration endpoint
...
Fixes #2848
2024-09-20 20:39:04 +02:00
21fb01d961
Remove contacts from the data model
2024-09-20 20:39:04 +02:00
ed4b6c42a7
Remove (C)
2024-09-10 14:28:55 +02:00
f6bb100c0a
License headers change
2024-09-05 13:25:42 +02:00
19d485a68b
admin: model definition for the OAuth 2.0 sessions
2024-08-07 17:41:18 +02:00
5c72712391
build(deps): bump regex from 1.10.5 to 1.10.6
...
Bumps [regex](https://github.com/rust-lang/regex ) from 1.10.5 to 1.10.6.
- [Release notes](https://github.com/rust-lang/regex/releases )
- [Changelog](https://github.com/rust-lang/regex/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rust-lang/regex/compare/1.10.5...1.10.6 )
---
updated-dependencies:
- dependency-name: regex
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-08-04 22:49:17 +02:00
fbc360d1a9
Backend work to support minimum password complexity ( #2965 )
...
* config: Add minimum password complexity option
* PasswordManager: add function for checking if complexity is sufficient
* Enforce password complexity on registration, change and recovery
* cli: Use exit code 1 for weak passwords
This seems preferable to exit code 0, but ideally we should choose one
and document it.
* Expose minimum password complexity score over GraphQL
2024-07-11 10:17:39 +01:00
Quentin Gliech