studio/tuwunel
2
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
5,882 Commits 2 Branches 0 Tags
11038b0ec73dcd540feff18d38f2932d9b07c85f
Commit Graph

19 Commits

Author SHA1 Message Date
Jason Volk
977f9e2e2e Fix deactivated user check misapplied to appservice user. (11309062a2) 
Signed-off-by: Jason Volk <jason@zemos.net>
 2025-12-28 21:59:29 +00:00
Jason Volk
14e7a001b9 Use abstracted UIAA call for login token route. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2025-12-26 14:20:07 +00:00
Jason Volk
d56ee58a73 Fix SSO cookie deserialization for cases requiring allocated strings. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2025-12-26 14:20:07 +00:00
Jason Volk
11309062a2 Implement SSO/OIDC support. (closes #7) 
Signed-off-by: Jason Volk <jason@zemos.net>
 2025-12-26 07:24:49 +00:00
Jason Volk
4150b917d8 Restructure full_register arguments with names and defaults. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2025-12-23 02:55:32 +00:00
dasha_uwu
7115fb2796 Refactor join, alias services 
Split knock, user register from api into services

Fix autojoin not working with v12 rooms

Fix 'm.login.registration_token/validity' for reloaded registration tokens

Change join servers order

Move autojoin for ldap
 2025-12-18 18:41:23 +00:00
dasha_uwu
0c7ba1dd5a Fix sync handling for appservices calling without device_id 2025-12-18 02:18:30 +00:00
yefim
085cdb30f4 Fix newly created LDAP users not added to auto-join-rooms 2025-12-17 06:53:06 +00:00
Jason Volk
a30c043386 Support creating devices without access_tokens. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2025-10-27 09:06:02 +00:00
Jason Volk
deda746222 Support JWT authentication on deactivate route. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2025-09-09 02:28:19 +00:00
Jason Volk
628597c318 State-reset and security mitigations. 
Upgrade Ruma to present.

The following are intentionally benign for activation in a later commit:

- Hydra backports not default.
- Room version 12 not default.
- Room version 12 not listed as stable.

Do not enable them manually or you can brick your database.

Signed-off-by: Jason Volk <jason@zemos.net>
 2025-08-11 18:45:28 +00:00
Jason Volk
1664a2c225 Implement refresh-tokens. (resolves #50) 
Signed-off-by: Jason Volk <jason@zemos.net>
 2025-08-01 09:14:58 +00:00
Jason Volk
dc0976a2e5 Respond with 403 instead of 404 for non-existing user. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2025-07-31 07:02:59 +00:00
Jason Volk
18b9d7bc1f Add org.matrix.login.jwt support. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2025-06-18 11:53:25 +00:00
Jason Volk
f68038a826 Restrict password login to accounts of type 'password' or legacy untyped. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2025-06-18 09:50:22 +00:00
Jason Volk
b3a47566ff Move and rename 'token' to 'access_token' where applicable. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2025-06-18 01:02:22 +00:00
Jason Volk
cd8648dce5 Auth related cleanups. 
Cleanup; additional error macros.

Signed-off-by: Jason Volk <jason@zemos.net>
 2025-06-17 03:41:27 +00:00
Jason Volk
2a2486182a Split login case bodies into handlers. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2025-06-11 01:21:11 +00:00
Jason Volk
0f256d7191 Split api::client::session into units. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2025-06-08 20:02:53 +00:00