matrix-authentication-service

mirror of https://github.com/element-hq/matrix-authentication-service.git synced 2026-04-26 15:17:55 +00:00

Author	SHA1	Message	Date
reivilibre	fbc360d1a9	Backend work to support minimum password complexity (#2965 ) * config: Add minimum password complexity option * PasswordManager: add function for checking if complexity is sufficient * Enforce password complexity on registration, change and recovery * cli: Use exit code 1 for weak passwords This seems preferable to exit code 0, but ideally we should choose one and document it. * Expose minimum password complexity score over GraphQL	2024-07-11 10:17:39 +01:00
Christian Tramnitz	3ab733bf3a	Fix RFC1918 network in default proxy configuration (#2908 )	2024-07-05 08:22:39 +00:00
Quentin Gliech	c4c0c74473	Document the new SSL options	2024-07-05 09:54:18 +02:00
Quentin Gliech	eff66726d5	New config options to set the database certificates	2024-07-05 09:54:18 +02:00
Quentin Gliech	f9f2f4a3be	Gate account recovery behing a configuration flag	2024-06-28 15:59:21 +02:00
Quentin Gliech	ba8749fe33	Document the CAPTCHA configuration	2024-05-15 09:38:10 +02:00
Quentin Gliech	0e270d5449	hCaptcha support	2024-05-15 09:38:10 +02:00
Quentin Gliech	f9ae7ae313	Cloudflare Turnstile support	2024-05-15 09:38:10 +02:00
Quentin Gliech	a3beeb2398	Render reCAPTCHA challenge on the registration form	2024-05-15 09:38:10 +02:00
Quentin Gliech	56d370f1d5	Add a few words on what MAS is at the beginning of the documentation	2024-05-14 10:44:41 +02:00
Quentin Gliech	f3b481f4ae	Apply typos corrections from review Co-authored-by: Will Lewis <1543626+wrjlewis@users.noreply.github.com>	2024-05-14 10:44:41 +02:00
Quentin Gliech	0c2305ad6f	Clarify what authz as a user means for the `urn:mas:graphql:*` scope	2024-05-14 10:44:41 +02:00
Quentin Gliech	e2cfa23401	Add missing documentation for some configuration parameters	2024-05-14 10:44:41 +02:00
Quentin Gliech	603de2b620	Rework the docuemntation overview	2024-05-14 10:44:41 +02:00
Quentin Gliech	76e9c32642	Document part of the GraphQL API and the scopes used by MAS	2024-05-14 10:44:41 +02:00
Quentin Gliech	3a55a0d745	Explain what the different grants and sessions are	2024-05-14 10:44:41 +02:00
Quentin Gliech	10eb93059c	Write about the policy engine	2024-05-14 10:44:41 +02:00
Quentin Gliech	87dc0debbf	docs: Rename the "usage" section to "reference"	2024-05-14 10:44:41 +02:00
Quentin Gliech	3978acd94e	Fix recently added Clippy lints This also ignores the clippy::blocks_in_conditions lint in two crates, until tracing gets fixed: https://github.com/tokio-rs/tracing/issues/2876	2024-05-07 07:32:02 +02:00
Quentin Gliech	90080235da	Introduce config to restrict user capabilities	2024-04-30 13:33:47 +02:00
Quentin Gliech	cd0ec35d2f	Soft-delete upstream OAuth 2.0 providers on config sync	2024-04-03 09:51:22 +02:00
Quentin Gliech	58fd6ab4c1	Allow disabling registrations (#2553 )	2024-04-03 09:27:14 +02:00
Quentin Gliech	8e7bb26a51	Simplify ConfigurationSection trait & skip default values when serializing This removes the `test` and `generate` methods from the `ConfigurationSection` trait, as they did not really had a reason to exist in the trait itself.	2024-03-22 13:33:09 +01:00
Quentin Gliech	fc7489c5f8	Flatten the upstream_oauth2 config section	2024-03-22 13:33:09 +01:00
Quentin Gliech	aa6178abe6	Flatten the telemetry config section	2024-03-22 13:33:09 +01:00
Quentin Gliech	809fe16d29	Flatten the secrets config section	2024-03-22 13:33:09 +01:00
Quentin Gliech	156dc08280	Clean up the default policy config data	2024-03-22 13:33:09 +01:00
Quentin Gliech	f5b34b5b18	Flatten the passwords config section	2024-03-22 13:33:09 +01:00
Quentin Gliech	8bc35f63d8	Flatten the http config Also properly remove the `spa` resource	2024-03-22 13:33:09 +01:00
Quentin Gliech	6d77d0ed25	Flatten the email config	2024-03-22 13:33:09 +01:00
Quentin Gliech	bf50469da1	Flatten the database config	2024-03-22 13:33:09 +01:00
Quentin Gliech	cba431d20e	Flatten the clients config	2024-03-22 13:33:09 +01:00
Quentin Gliech	eb950151af	Upgrade OTEL and remove support for Jaeger and Zipkin exporters	2024-03-18 17:26:40 +01:00
Andrew Ferrazzutti	e5a88622db	Document systemd socket listener	2024-03-01 18:14:33 +01:00
Andrew Ferrazzutti	b2f2e152c6	Update example socket config	2024-03-01 18:14:33 +01:00
Quentin Gliech	7f9d62f409	Update documentation about syncing the configuration with the database	2024-03-01 18:14:05 +01:00
Quentin Gliech	25fbbf96b9	Load the additional OAuth parameters from the config	2024-03-01 14:36:37 +01:00
Quentin Gliech	46c565cc89	Move schemars to workspace dependencies Also enables the `preserve_order` feature, hence the big schema output diff.	2024-03-01 14:36:37 +01:00
Quentin Gliech	a980bc79cf	Update config schema Because enabled the serde_json feature which preserves the order in dicts, keys moved around in the generated schema.	2024-02-08 15:28:43 +01:00
Quentin Gliech	293150894b	Introduce `mas-cli doctor`, a simple diagnostic tool This should help users to diagnose common issues with their setup.	2024-02-08 15:28:43 +01:00
Jason Robinson	ea223a2c4e	Clarify syn2mas docs on skipping tokens without devices	2024-02-08 15:10:25 +01:00
Quentin Gliech	41ee350766	Fix the AS login docs	2024-02-07 17:27:24 +01:00
Quentin Gliech	c0afe98507	Warn loudly about encrypted appservices being unsupported	2024-02-07 17:13:01 +01:00
Quentin Gliech	d3e5f1b101	Automatically run migrations on service startup	2024-02-07 16:31:36 +01:00
dklimpel	b5fb65b1cc	rename purge to prune	2023-12-05 17:27:27 +01:00
dklimpel	a56c0d0758	remove mange register	2023-12-05 17:26:28 +01:00
Quentin Gliech	eebbf2ff6c	Apply suggestions from code review Co-authored-by: Will Lewis <willl@element.io>	2023-11-22 15:13:28 +01:00
Quentin Gliech	ef23b06261	Mention the configuration file reference in the SSO guide	2023-11-22 15:13:28 +01:00
Quentin Gliech	20fa1d516e	Make the claims_imports optional in the config	2023-11-22 15:13:28 +01:00
Quentin Gliech	e124a7a369	Document all the upstream oauth2 provider options	2023-11-22 15:13:28 +01:00

1 2 3

116 Commits