293150894b
Introduce mas-cli doctor, a simple diagnostic tool
...
This should help users to diagnose common issues with their setup.
2024-02-08 15:28:43 +01:00
0beb842195
Make the user agree to T&C during registration
2024-02-07 17:21:22 +01:00
d3e5f1b101
Automatically run migrations on service startup
2024-02-07 16:31:36 +01:00
979062d40e
allow config dump to file
2024-02-02 18:32:07 +01:00
aeca03a120
Upgrade rustls
2024-02-02 11:45:20 +01:00
a0f5f3c642
Enable clippy lints on a workspace level
...
This enables a lot more lints than before in some crates, so this fixed a lot of warnings as well.
2023-12-05 17:20:42 +01:00
df3ca5ae66
Upgrade clippy lints to 1.74.0 & fix warnings
2023-12-05 17:20:42 +01:00
cc10270ede
Allow config generate to generate to a file directly instead of stdout
2023-11-24 11:52:31 +01:00
5126d36b2e
Add upstream OAuth 2.0 providers name and branding
2023-11-20 17:23:02 +01:00
7315dd9a7a
Allow endpoints and discovery mode override for upstream oauth2 providers
...
This time, at the configuration and database level
2023-11-17 16:18:39 +01:00
6ded397977
Use minijinja templates to map OIDC claims to user attributes
2023-11-08 12:05:58 +01:00
5ab0e880ff
Upgrade opentelemetry to 0.21.0
2023-11-08 11:49:03 +01:00
8984cc703b
Add instance privacy policy, TOS and imprint, and loads of design cleanups
2023-10-30 15:55:15 +01:00
9b5c8fb44b
Allow running the authentication service on a different base path
2023-10-06 14:07:55 +02:00
1feafc1d13
handlers/templates: infer the language from the Accept-Language browser header
2023-10-05 19:29:23 +02:00
15ad89aa82
templates: add translations function
2023-10-05 19:29:23 +02:00
995bdfc13b
templates: replace tera with minijinja
2023-10-05 19:29:23 +02:00
f20c8d8ef3
Infer client IP address from the peer address and the X-Forwarded-Proxy header
2023-09-20 20:24:30 +02:00
b85655b944
Save the session activity in the database
2023-09-19 21:57:54 +02:00
cf5510a1a2
Add an ActivityTracker which tracks session activity and regularly flush them to the database
2023-09-19 21:57:54 +02:00
54071c4969
Make the HTTP client factory reuse the underlying client
...
This avoids duplicating clients, and makes it so that they all share the same connection pool.
2023-09-14 16:52:01 +02:00
f29e4adcfa
Always initialize a metric reader to avoid crashes
...
Fix #1552
2023-09-14 16:52:01 +02:00
21d3d3a5d4
Rename the 'hack' configuration section to 'experimental'
2023-08-31 18:05:00 +02:00
bc04860afb
Make the access tokens TTL configurable
2023-08-31 18:05:00 +02:00
ae3213fe87
Make the email verification state more configurable on upstream OAuth 2.0 registration
...
This also marks the email as primary
2023-08-31 14:20:06 +02:00
7fcd022eea
Make sure we validate passwords & emails by the policy at all stages
...
Also refactors the way we get the policy engines in requests
2023-08-30 19:39:39 +02:00
23151ef092
policies: split the email & password policies and add jsonschema validation of the input
2023-08-30 19:39:39 +02:00
6589f06d79
tracing: set the parent context from the incoming request again
2023-08-29 18:50:54 +02:00
f295d2df77
Fix sentry transport post-upgrade
2023-08-29 08:23:26 +02:00
07ca145174
Cache the upstream OAuth 2.0 provider metadata
2023-08-28 18:30:40 +02:00
17e28f56c1
Upgrade Rust to 1.72.0
...
Fixes new clippy errors and upgrade other tools
2023-08-28 18:05:56 +02:00
096386e9b9
Save the application_type and the contacts in the OAuth 2.0 clients
...
This also removes the dedicated "redirect_uris" table and makes it a field of the "oauth2_clients" table
2023-08-28 14:41:49 +02:00
9289922dfb
Grab a database lock when syncing the config
...
Fixes #1475
2023-08-25 15:48:47 +02:00
a39f71c181
Handle cookies better by setting the right flags & expiration
2023-08-25 14:35:46 +02:00
7c83dce66e
Move some common dependencies on the workspace level
...
Also deprecates the AWS SESv2 transport for emails
2023-08-14 13:00:01 +02:00
21964cbeab
Setup cargo-deny
...
Also try to remove a bunch of duplicate crates
2023-08-14 11:22:52 +02:00
699dfba55f
OpenTelemetry upgrade
2023-08-11 16:12:58 +02:00
3e6ea9a158
Add a 404 HTMl fallback
2023-08-09 16:56:11 +02:00
033479bc57
cli: always include all OTEL exporters
2023-08-03 17:13:37 +02:00
8142cad3d6
Call the homeserver for user deactivation
2023-08-03 14:06:34 +02:00
40b49cdd10
Add a way to lock users
2023-08-03 14:06:34 +02:00
e79da4a949
Bump Rust dependencies and remove unused ones
2023-07-27 17:23:08 +02:00
ba0f7ea62c
Upgrade all Rust dependencies
...
This includes breaking changes of sqlx 0.7.0
2023-07-17 19:04:06 +02:00
68db56c2a2
Reimplementation of a postgres-backed storage with a shared PG listener
2023-07-17 19:04:06 +02:00
f5143c045e
Track the database connection acquisition time and pool usage
2023-07-06 18:54:29 +02:00
76653f9638
Better frontend assets handling and move the react app to /account/ ( #1324 )
...
This makes the Vite assets handling better, namely:
- make it possible to include any vite assets in the templates
- include the right `<link rel="preload">` tags for assets
- include Subresource Integrity hashes
- pre-compress assets and remove on-the-fly compression by the Rust server
- build the CSS used by templates through Vite
It also moves the React app from /app/ to /account/, and remove some of the old SSR account screens.
2023-07-06 15:30:26 +02:00
297dbbb6ab
Add a CLI tool to kill all sessions of a user
2023-06-30 15:54:06 +02:00
859c4486bb
Add a CLI tool to trigger a provisioning job for all users
2023-06-29 10:55:48 +02:00
125a6bdf11
Allow setting a different issuer from the public base URL
2023-06-27 12:53:15 +02:00
8c42563e61
Split the full config with partial configs used by some sub-commands
2023-06-26 17:24:56 +02:00
Quentin Gliech