59 Commits

Author	SHA1	Message	Date
Quentin Gliech	e4844968d3	Add a configuration option to make email optional for password registration	2025-10-07 17:28:01 +02:00
Quentin Gliech	815ce17cc5	Simple CLI commands to manage server admins	2025-09-16 12:42:32 +02:00
Quentin Gliech	6eac7ed2d7	Automatically derive the kid from the key fingerprint if missing (#4876)	2025-09-02 17:04:35 +02:00
Patrick Maier	cf997048e4	Add missing branding config to docs (#4577)	2025-08-15 12:22:07 +02:00
Kai A. Hiller	1b7b43b559	Auto-generate kid if not given	2025-08-08 11:38:45 +02:00
Quentin Gliech	884c66891a	Merge branch 'main' into secret_file	2025-08-05 11:17:39 +02:00
Quentin Gliech	c6ae5c7557	Add clients.[].client_secret_file config option (#4857)	2025-08-05 11:17:00 +02:00
Kai A. Hiller	a7e7c3caa1	Add clients.[].client_secret_file config option	2025-08-04 19:32:39 +02:00
Quentin Gliech	7e018a06aa	Merge remote-tracking branch 'origin/main' into quenting/stable-api	2025-08-04 16:38:49 +02:00
Kai A. Hiller	d4a318a8ae	Add matrix.secret_file config option	2025-07-29 19:46:07 +02:00
Quentin Gliech	97cd5d86ba	docs: Remove requirement for arbitrary KIDs (#4807)	2025-07-23 12:38:47 +02:00
Kai A. Hiller	858b388eec	KIDs must be stable across restarts	2025-07-23 12:31:38 +02:00
Kai A. Hiller	da94650706	Fix wording	2025-07-23 09:43:43 +02:00
Kai A. Hiller	2ecc502b05	Adapt markdown formatting	2025-07-23 09:39:52 +02:00
Kai A. Hiller	5587dd37e3	docs: Remove requirement for arbitrary KIDs	2025-07-21 18:37:03 +02:00
mcalinghee	98912f4ada	allow importing existing users when the localpart matches in upstream OAuth 2.0 logins	2025-07-21 09:52:24 +02:00
Quentin Gliech	3bc3db1527	Add documentation for backchannel logout	2025-07-04 16:27:10 +02:00
Quentin Gliech	d27f7e3cd9	Mention the stable scopes in the doc, remove the guest scope	2025-06-13 15:56:13 +02:00
Quentin Gliech	50b41a6613	Add secrets.encryption_file config option (#4617)	2025-06-05 15:14:55 +02:00
Kai A. Hiller	187838802d	Update encryption secret warning in docs	2025-06-04 14:50:54 +02:00
Kai A. Hiller	fbee4bfe8c	Document secrets.encryption_file ... Signed-off-by: Kai A. Hiller <git@kaialexhiller.de>	2025-06-04 11:42:51 +02:00
Quentin Gliech	5d13691acd	CLI tool to issue user registration tokens	2025-06-03 17:42:55 +02:00
Quentin Gliech	685f4761cd	Add config flag to require registration tokens for password registrations	2025-06-03 17:42:53 +02:00
Jason Robinson	f3ef263e11	Add missing branding config to docs ... Mostly copied from the code, with some additions from https://github.com/matrix-org/matrix-authentication-service/pull/2325	2025-05-20 15:21:13 +03:00
Doug	e3c7b8054c	Update upstream_oauth2.providers docs.	2025-05-07 11:14:10 +01:00
Quentin Gliech	114ae7dd48	Document the new migration tool	2025-04-23 18:50:15 +02:00
Quentin Gliech	5e30d50f38	Fix headings in config doc (#4419)	2025-04-23 14:11:33 +02:00
Hugh Nimmo-Smith	2414e147fb	Remove reference to unsupported aws_ses email transport	2025-04-22 13:21:07 +01:00
Kai A. Hiller	54a8e1194c	Fix headings in config doc ... Signed-off-by: Kai A. Hiller <git@kaialexhiller.de>	2025-04-16 15:05:36 +02:00
mcalinghee	f2a47f9a88	add login by email + feature flag	2025-04-10 17:57:58 +02:00
Quentin Gliech	3543b4048f	Change the default value of account_deactivation_allowed to true.	2025-03-13 12:04:57 +01:00
Quentin Gliech	25b4784803	Add the new configuration option to the configuration reference	2025-03-12 16:02:52 +01:00
Quentin Gliech	6e881d60f2	Document the new username ban/allow policy	2025-03-03 10:35:44 +01:00
Quentin Gliech	0ab0f13c7c	Match suffixes and prefixes in string constraints	2025-02-17 16:40:10 +01:00
Quentin Gliech	b603b32186	Update the policy documentation	2025-02-17 15:43:25 +01:00
Quentin Gliech	7bfb1a155e	Add documentation for session timeout configuration	2025-02-12 17:34:23 +01:00
Will Lewis	20ee39af20	Add documentation to account for all cli mas options and standardise format	2025-02-07 13:38:36 +00:00
Quentin Gliech	6ba8554bc7	Document the response_mode parameter	2025-01-06 11:59:53 +01:00
Quentin Gliech	cd078cb567	Document the new usptream OAuth 2.0 configuration options	2025-01-06 11:59:53 +01:00
reivilibre	93ddaeefc3	Add documentation against using database transaction poolers (#3617)	2024-12-05 11:28:22 +00:00
Phan Trung Thanh	a0c2ce67ba	Update configuration.md to include a missing parameter	2024-11-26 13:17:52 +01:00
Quentin Gliech	4ccce4de46	Remove the contacts requirement from the client registration policy	2024-09-20 20:39:04 +02:00
Quentin Gliech	3a05f24b45	Fix the email policy documentation indentation	2024-09-03 17:47:43 +02:00
Marcel	b5ed252573	Apply suggestions on wording	2024-09-03 17:33:10 +02:00
Marcel	7fe70aac80	Document policy settings for changing the policy wasm file	2024-09-03 17:33:10 +02:00
Marcel	6d30bc530f	Document the email policy in the reference	2024-08-30 13:57:31 +02:00
Quentin Gliech	62e01883b6	Small documentation fixes ... - Removes mentions of the `mas-cli templates save` command - Removes the old `experimental` flags - Removes the old `policy.data.passwords` configs - Document the `policy.data.client_registration` flags - Remove references to the pre-built macOS binaries - Explains how to get syn2mas - State that you need to prepare the database before importing data - Clean up the reverse proxy documentation - Clarify that you don't need to provede templates/policy/assets manually when running the docker image	2024-08-19 13:53:43 +02:00
reivilibre	5d4a4a6fb8	Add rate-limiting for account recovery and registration (#3093) ... * Add rate-limiting for account recovery and registration * Rename login ratelimiter `per_address` to `per_ip` for consistency Co-authored-by: Quentin Gliech <quenting@element.io>	2024-08-07 17:57:36 +00:00
reivilibre	244f8f5e5e	Add configuration for rate-limiting of logins, replacing hardcoded limits (#3090)	2024-08-07 18:36:02 +01:00
Quentin Gliech	eb4072f3c3	Document the admin API (#3038) ... Co-authored-by: Hugh Nimmo-Smith <hughns@matrix.org>	2024-08-07 17:41:46 +02:00