f2a47f9a88
add login by email + feature flag
2025-04-10 17:57:58 +02:00
2b81c8a42e
Admin API for adding and removing upstream oauth links ( #4255 )
2025-04-09 13:33:16 +02:00
7c4a9bf5be
Handle the correct conflict
2025-04-09 07:27:04 +00:00
12b316198e
Expose more Sentry configuration ( #4352 )
2025-04-07 08:50:27 +02:00
65f4c4dc6c
Added Discord to default upstream oauth2 providers, regenerated config schema
2025-04-06 23:21:12 +06:00
5bcc1ec011
Allow setting the OTLP tracing sample rate
2025-04-05 23:19:50 +02:00
bb34e9a6b5
Allow setting the Sentry environment & sample rates
...
Also record the version in the Sentry release field.
2025-04-05 23:19:16 +02:00
9f925e6f09
Added upstream sample config for Discord, brand logo in templates
2025-03-30 15:53:56 +06:00
ecef762e9e
Missing token_endpoint_auth_method field in upstream sample config for Github
2025-03-30 14:08:14 +06:00
5996cac327
Disable Verification for Microsoft Azure AD OIDC
...
Required to avoid `token_endpoint missing auth signing algorithm values` error.
2025-03-18 10:44:45 +00:00
272a9b8caf
Admin API endpoint to remove upstream link
2025-03-17 16:33:49 +00:00
61091ff7e6
Admin API endpoint to add upstream link
2025-03-17 14:40:27 +00:00
6a37fdfe30
Merge branch 'main' into quenting/dynamic-policy-data
2025-03-14 10:16:16 +01:00
3543b4048f
Change the default value of account_deactivation_allowed to true.
2025-03-13 12:04:57 +01:00
25b4784803
Add the new configuration option to the configuration reference
2025-03-12 16:02:52 +01:00
19f1091e56
Config option to allow account self-deactivation
2025-03-12 15:58:54 +01:00
9b254721ef
Merge remote-tracking branch 'origin/main' into quenting/dynamic-policy-data
2025-03-04 13:28:56 +01:00
d0f1cf4971
Allow configuring the connection to the homeserver to be read-only.
2025-03-03 17:24:15 +01:00
5a97ec5cca
Merge branch 'main' into quenting/dynamic-policy-data
2025-03-03 14:25:05 +01:00
6e881d60f2
Document the new username ban/allow policy
2025-03-03 10:35:44 +01:00
c3296a2e22
Make the admin API update the local policy data
2025-02-25 16:42:21 +01:00
d393494e76
Admin API to get and set policy data
2025-02-25 13:06:44 +01:00
674c1a4ada
Upgrade OpenTelemetry to 0.28
2025-02-24 10:44:08 +01:00
0ab0f13c7c
Match suffixes and prefixes in string constraints
2025-02-17 16:40:10 +01:00
b603b32186
Update the policy documentation
2025-02-17 15:43:25 +01:00
ffb6e2e9be
Fix the HTTP status code for the user creation admin endpoint ( #4040 )
2025-02-14 15:01:58 +01:00
be1da26bd8
Fix the HTTP status code for the user creation admin endpoint
2025-02-14 14:54:22 +01:00
a8b03bbd86
Admin API to add user emails
2025-02-14 14:50:47 +01:00
344794bb0b
Admin API to delete user emails
2025-02-14 14:50:46 +01:00
f2ef058283
Experimental feature to automatically expire inactive sessions ( #4022 )
...
Fixes #1875
This adds an experimental feature which allows expiring sessions that
are inactive for a certain amount of time.
It runs as a scheduled task every 15 minutes, checking for the 'last
activity' on each session type.
It processes sessions by batches of 100 at a time, to avoid overloading
Synapse when syncing back the database.
It expires:
- all user (browser) sessions
- all compatibility sessions
- oauth sessions which are:
- for a user
- using a 'dynamic' client (so the sessions started from clients defined
in the config are excluded)
2025-02-13 10:33:00 +01:00
25d3dbd07c
Simplify the setup documentation introduction ( #3994 )
2025-02-13 09:08:26 +01:00
da944ccde7
Update README.md
...
Amended issuer.
2025-02-13 18:03:51 +11:00
7bfb1a155e
Add documentation for session timeout configuration
2025-02-12 17:34:23 +01:00
dab640aa51
Allow filtering sessions by client kind (dynamic or static)
2025-02-12 17:31:21 +01:00
935400d87b
Experimental feature to timeout inactive sessions
2025-02-12 17:31:21 +01:00
a7ae36e1ce
Allow filtering by subject in the upstream OAuth links admin API
2025-02-12 11:07:11 +01:00
c880a3dbac
Admin API to list and get upstream OAuth links
2025-02-12 10:51:31 +01:00
91d4d0ea39
Load Swagger UI earlier
2025-02-11 19:16:59 +01:00
3d36b234f3
Enable operation deep-linking in the admin API docs
2025-02-11 19:06:19 +01:00
9216d547ea
Fix the user session admin API docs
2025-02-11 17:09:33 +01:00
3792cd4f3b
Admin API to list and get user sessions ( #4004 )
...
Similar to #4002 , this adds an admin API to list and get user (browser
cookies) sessions
2025-02-11 16:38:21 +01:00
2a9fb26265
Admin API to list and get user sessions
2025-02-11 14:24:16 +01:00
c881fb24f5
Fix the definition of the set-password success response in the OpenAPI spec
2025-02-11 13:54:15 +01:00
42841cea3e
Admin API to list and get compatibility sessions
2025-02-11 12:01:54 +01:00
36e9d62db3
Admin API to list and get user emails ( #4001 )
...
This adds endpoints to get and list user emails.
I chose to not scope them to users, so listing the emails for a user
means listing emails with a user filter
2025-02-10 17:24:46 +01:00
7b63b8d191
Update links to policy files ( #3982 )
2025-02-10 17:23:45 +01:00
7ade439ac3
Admin API to list and get user emails
2025-02-10 17:13:55 +01:00
ee9eeea648
Update README.md
2025-02-09 13:07:31 +11:00
76cdbc0ef0
Add reference to worker page
2025-02-07 13:57:28 +00:00
20ee39af20
Add documentation to account for all cli mas options and standardise format
2025-02-07 13:38:36 +00:00
mcalinghee