bf8bd85170
frontend: fetch min password complexity and enforce locally
2024-07-16 17:30:28 +01:00
df2271630a
frontend: add password complexity bar to change password form
2024-07-16 17:30:28 +01:00
991ece2d59
Bump Compound to 5.3.0
2024-07-16 17:30:28 +01:00
6db71fd48e
Add JSON dictionaries with words from zxcvbn-rs but for use with zxcvbn-ts
2024-07-16 17:30:28 +01:00
a06bd5edc8
Add zxcvbn-ts dependency
2024-07-16 17:30:28 +01:00
e89a818ff2
Use dynamic filters on app sessions by reusing the OAuth/compat sessions filters
2024-07-16 18:23:23 +02:00
12d2f1f827
Add new filters on the OAuth and compat sessions
2024-07-16 18:23:23 +02:00
c4e7cf1a27
Use dynamic filters on browser sessions
2024-07-16 18:23:23 +02:00
aa992d31f8
Use dynamic filters on users
2024-07-16 18:23:23 +02:00
76c033b76a
Use dynamic filters on user emails
2024-07-16 18:23:23 +02:00
112f673e22
Use dynamic filters on upstream OAuth 2.0 providers
2024-07-16 18:23:23 +02:00
7c2c310cac
Use dynamic filters on upstream OAuth 2.0 links
2024-07-16 18:23:23 +02:00
7c54c5f2e6
Use dynamic filters on OAuth 2.0 sessions
2024-07-16 18:23:23 +02:00
df7bc53826
Use dynamic filters on compatibility SSO logins
2024-07-16 18:23:23 +02:00
15c2c740a7
Use dynamic filters on compatibility sessions
2024-07-16 18:23:23 +02:00
452024764a
Add a trait to help building dynamic filters
2024-07-16 18:23:23 +02:00
1afd2a2906
Remove OPA-based password policy enforcement ( #2875 )
...
Co-authored-by: Quentin Gliech <quenting@element.io >
2024-07-16 14:33:04 +01:00
e47f26fde6
Update the query introspection data
2024-07-16 14:13:11 +02:00
6db455412f
Kill all sessions when deactivating a user
2024-07-16 14:13:11 +02:00
857b76bb04
Make mas-cli manage kill-sessions finish sessions in bulk
2024-07-16 14:13:11 +02:00
dcaf65e6e7
Batch finish browser sessions
2024-07-16 14:13:11 +02:00
04b96b87b8
Batch finish OAuth 2.0 sessions
2024-07-16 14:13:11 +02:00
f8d12cc305
Batch finish compatibility sessions
2024-07-16 14:13:11 +02:00
fa32387ca5
Show whether the user is deactivated on the homeserver in the GraphQL API
...
Fix #2375
2024-07-16 13:20:28 +02:00
bac2db9884
GraphQL API to unlock a user
...
Fixes #2101
2024-07-16 13:20:28 +02:00
0207495225
Add a way to reactivate users on the homeserver
2024-07-16 13:20:28 +02:00
3eab10672f
Add a lock during syncs of user devices
2024-07-16 09:32:07 +02:00
695228ade4
Provision users on the fake homeserver in tests
...
Because we now provision devices synchronously, we need to update the
tests so that the users exist on the fake homeserver.
2024-07-16 09:32:07 +02:00
35c06ac27b
Deprecate the ProvisionDeviceJob and DeleteDeviceJob jobs
2024-07-16 09:32:07 +02:00
037cf996a8
Provision the devices synchronously
...
This means Synapse won't have to provision them on the fly anymore
2024-07-16 09:32:07 +02:00
11fd3b231a
Don't hold the database connection for too long
2024-07-16 09:32:07 +02:00
bf276289b6
Fully sync the devices with the homeserver
2024-07-16 09:32:07 +02:00
fbc360d1a9
Backend work to support minimum password complexity ( #2965 )
...
* config: Add minimum password complexity option
* PasswordManager: add function for checking if complexity is sufficient
* Enforce password complexity on registration, change and recovery
* cli: Use exit code 1 for weak passwords
This seems preferable to exit code 0, but ideally we should choose one
and document it.
* Expose minimum password complexity score over GraphQL
2024-07-11 10:17:39 +01:00
569eb07bd6
build(deps): bump matrix-org/done-action from 2 to 3
...
Bumps [matrix-org/done-action](https://github.com/matrix-org/done-action ) from 2 to 3.
- [Release notes](https://github.com/matrix-org/done-action/releases )
- [Commits](https://github.com/matrix-org/done-action/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: matrix-org/done-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-07-08 23:19:27 +02:00
f849b487cf
graphql: users query to list users with a few filters
2024-07-05 13:44:14 +02:00
8a1ac9cc91
graphql: move the users queries to their own module
2024-07-05 13:44:14 +02:00
e75df0752d
storage: methods to list and count users with filters and pagination
2024-07-05 13:44:14 +02:00
9486460aae
build(deps): bump serde_with from 3.8.2 to 3.8.3
...
Bumps [serde_with](https://github.com/jonasbb/serde_with ) from 3.8.2 to 3.8.3.
- [Release notes](https://github.com/jonasbb/serde_with/releases )
- [Commits](https://github.com/jonasbb/serde_with/compare/v3.8.2...v3.8.3 )
---
updated-dependencies:
- dependency-name: serde_with
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-07-05 10:29:10 +02:00
3ab733bf3a
Fix RFC1918 network in default proxy configuration ( #2908 )
2024-07-05 08:22:39 +00:00
732fac1ced
build(deps): bump docker/bake-action from 5.2.0 to 5.3.0
...
Bumps [docker/bake-action](https://github.com/docker/bake-action ) from 5.2.0 to 5.3.0.
- [Release notes](https://github.com/docker/bake-action/releases )
- [Commits](https://github.com/docker/bake-action/compare/v5.2.0...v5.3.0 )
---
updated-dependencies:
- dependency-name: docker/bake-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-07-05 10:22:30 +02:00
1c1acfa384
build(deps): bump docker/setup-buildx-action from 3.3.0 to 3.4.0
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 3.3.0 to 3.4.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](https://github.com/docker/setup-buildx-action/compare/v3.3.0...v3.4.0 )
---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-07-05 10:22:21 +02:00
5d0c94e057
build(deps-dev): bump typescript from 5.5.2 to 5.5.3 in /frontend
...
Bumps [typescript](https://github.com/Microsoft/TypeScript ) from 5.5.2 to 5.5.3.
- [Release notes](https://github.com/Microsoft/TypeScript/releases )
- [Changelog](https://github.com/microsoft/TypeScript/blob/main/azure-pipelines.release.yml )
- [Commits](https://github.com/Microsoft/TypeScript/compare/v5.5.2...v5.5.3 )
---
updated-dependencies:
- dependency-name: typescript
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-07-05 10:21:03 +02:00
17041b783e
build(deps): bump @vector-im/compound-web in /frontend
...
Bumps [@vector-im/compound-web](https://github.com/vector-im/compound-web ) from 5.1.1 to 5.2.2.
- [Release notes](https://github.com/vector-im/compound-web/releases )
- [Commits](https://github.com/vector-im/compound-web/compare/v5.1.1...v5.2.2 )
---
updated-dependencies:
- dependency-name: "@vector-im/compound-web"
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-07-05 10:20:52 +02:00
b6c11b5a21
Fix a reference in a doc comment
2024-07-05 10:07:40 +02:00
2336b1b1c6
Initialize the crypto backend in the mas-oidc-client tests
2024-07-05 10:07:40 +02:00
378bcbc39e
Update the schema
2024-07-05 10:07:40 +02:00
57c87071d1
Update some dependencies and the cargo-deny allowlist
2024-07-05 10:07:40 +02:00
798ca90241
Fix mas-cli
...
This does a few things:
- move `bytes` to workspace dependencies
- write an hyper-based transport for Sentry
- ignore OTEL errors related to propagations
- fix everything else in mas-cli
2024-07-05 10:07:40 +02:00
dafc781957
Move Sentry to the workspace dependencies and upgrade
2024-07-05 10:07:40 +02:00
2e63e3da71
Write an adapter for opentelemetry-http
2024-07-05 10:07:40 +02:00
Olivier 'reivilibre