studio/tuwunel
2
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
6,159 Commits 2 Branches 0 Tags
88bec526cbb1b787e61fecddfd58273a8a19bcf5
Commit Graph

213 Commits

Author SHA1 Message Date
Jason Volk
b20ad8a622 Add config to inhibit account registration for SSO provider. 
Add config option to inhibit random fallback ID's for SSO registration.

Signed-off-by: Jason Volk <jason@zemos.net>
 2026-03-04 19:56:51 +00:00
Jason Volk
93aee26e11 Add option for trusted providers to associate with existing accounts. (fixes #252) 
Signed-off-by: Jason Volk <jason@zemos.net>
 2026-03-04 19:56:51 +00:00
Jason Volk
ff3ccc77aa List a sentinel value for encryption_enabled_by_default to avoid confusion. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2026-03-04 07:54:54 +00:00
Enginecrafter77
1a434443b9 Add option to disable password authorization flow 2026-02-26 05:28:09 +00:00
Jason Volk
591014c190 Allow subject to be listed in a provider's userid_claims with special precedence. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2026-02-26 05:21:33 +00:00
Jason Volk
99bbcb34b6 Add config option to bypass cookie checking on SSO callback. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2026-02-26 05:04:19 +00:00
dasha_uwu
83a23e965b Update contact information 2026-02-25 05:27:43 +05:00
Jason Volk
7df373524e Add configurable concurrent batch requests to notary. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2026-02-18 04:14:49 +00:00
Jason Volk
9d7ee4f174 Increase timeout default for now. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2026-02-18 01:41:45 +00:00
Rimi Kanokawa
96ba9b0129 Add an option to fix the pathological space usage of RocksDB on btrfs. 2026-02-16 23:39:49 -08:00
dasha_uwu
4bba40982c Refactor room_version support code 
Fix advertising unsupported room versions
 2026-02-12 13:15:41 +00:00
dasha_uwu
baa1e52302 Implement local redaction blocking 2026-02-12 13:15:41 +00:00
dasha_uwu
6f5ae17dc6 Trim client_secret_file value, fixes #302 2026-02-12 13:15:41 +00:00
dasha_uwu
bd5203b406 Update axum-server to 0.8; switch to axum unix listener. 2026-02-12 13:15:41 +00:00
jeidnx
60d418118f fix: url calculation in make_url 2026-02-12 03:22:51 +00:00
Jason Volk
e279d39ff0 Fix unfulfilled lint expectation. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2026-02-12 02:06:17 +00:00
Jason Volk
0b864801f5 Use map of identity_provider to accommodate env var enumerations. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2026-02-01 01:22:13 +00:00
Jason Volk
0474753333 Set display-sensitive directive for identity_provider client_secret. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2026-01-31 09:40:50 +00:00
Jason Volk
1fc69efffe Simplify Figment init, toml config file folding. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2026-01-31 09:40:50 +00:00
Jason Volk
2fb032fabb Reduce default redaction_retention_seconds to sixty days. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2026-01-30 22:16:05 +00:00
June Strawberry
895387e8c2 error on startup for unknown config file paths 
Signed-off-by: June Strawberry <june@vern.cc>
 2026-01-30 16:56:27 -05:00
June Strawberry
fbeaed1c15 implement error_on_unknown_config_opts, slightly improve related code 
Signed-off-by: June Strawberry <june@vern.cc>
 2026-01-30 16:56:27 -05:00
Jason Volk
90d4bda70b Default redaction_retention_seconds to one year. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2026-01-28 12:16:41 +00:00
Vladislav Grechannik
ae35e5a5b2 Set save_unredacted_events option to true 2026-01-28 11:07:31 +00:00
dasha_uwu
bb26b749ae Redacted event retention, implement MSC2815 2026-01-26 19:28:56 +00:00
dasha_uwu
0c9a3abb71 clippy allow -> expect 2026-01-26 19:28:56 +00:00
Jason Volk
6db87a4027 Implement associated multi-provider single-sign-on flow support. (#252) 
Add experimental note for multi-provider flow. (#252)

Signed-off-by: Jason Volk <jason@zemos.net>
 2026-01-26 19:28:50 +00:00
Jason Volk
f048f87dac Split login_via_existing_session conf item to login_via_token. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2026-01-24 08:19:41 +00:00
Jason Volk
9d8525e7f7 Readjust auth_chain cache default size and scalars. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2026-01-22 22:17:47 +00:00
Jason Volk
3e1246984c Adjust pool defaults for many core systems with undetected topologies. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2026-01-20 00:18:00 +00:00
Jason Volk
6619171e13 Slightly increase max_request_size default. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2026-01-19 08:26:23 +00:00
Jason Volk
6579df299a Find identity providers by brand name when unique. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2026-01-18 06:11:40 +00:00
Jason Volk
5cb6d2058f Tweak some identity_provider example config doc comments. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2026-01-18 06:04:15 +00:00
Jason Volk
98f5ea203b Add simpler option to specify default identity_provider. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2026-01-18 05:00:03 +00:00
dasha_uwu
e78bf21085 Introduce OptionFuture helpers 
Optimize user directory searches
 2026-01-17 06:54:24 +00:00
dasha_uwu
95121ad905 Add a config option to show all local users in user directory, closes #260 2026-01-17 06:44:34 +00:00
Jason Volk
2880facc4c Replace hardcoded pool worker limit with configurable default. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2026-01-17 01:39:49 +00:00
Jason Volk
dfb65d771f Add sso_default_provider_id option and defaulting behavior. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2026-01-17 01:39:49 +00:00
Jason Volk
3426b824a0 Add EdDSA support to JWT login (fixes #258). 
Signed-off-by: Jason Volk <jason@zemos.net>
 2026-01-13 08:47:34 +00:00
Vladislav Grechannik
fc104d02a4 Add an option to read SSO client secret from a file 2026-01-10 04:38:29 +01:00
Jason Volk
bd0a0acf4a Add conditional for login flows; filter out SSO when no providers configured. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2026-01-03 05:22:55 +00:00
Jason Volk
11309062a2 Implement SSO/OIDC support. (closes #7) 
Signed-off-by: Jason Volk <jason@zemos.net>
 2025-12-26 07:24:49 +00:00
dasha_uwu
7115fb2796 Refactor join, alias services 
Split knock, user register from api into services

Fix autojoin not working with v12 rooms

Fix 'm.login.registration_token/validity' for reloaded registration tokens

Change join servers order

Move autojoin for ldap
 2025-12-18 18:41:23 +00:00
Jason Volk
88a6b72f0f Update config comment for default hydra backports. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2025-12-18 01:49:54 +00:00
Jason Volk
f311332bad Add configuration for make_join and send_join attempt counts. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2025-12-03 09:23:33 +00:00
Jason Volk
4f9b1d6dbd Add config options to coarsely disable log/tracing without initialization. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2025-11-30 00:52:55 +00:00
Jason Volk
5260912c3b Add admin configurable Access-Control-Allow-Origin. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2025-11-20 08:34:31 +00:00
Jason Volk
120ab1d068 Add config circuit-breaker for heroes calculations during sync. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2025-11-20 08:34:31 +00:00
Jason Volk
f77bd41837 Add empty config default for rtc_transports to not generate false. 
Signed-off-by: Jason Volk <jason@zemos.net>
 2025-11-06 17:14:45 +00:00
Jason Volk
5051da493a Fix pushrule evals relying on non-option RoomPowerLevels. 
Add option to bypass pushrules to send everything to pushers.

Improve robustness of pushrule eval loops.

Signed-off-by: Jason Volk <jason@zemos.net>
 2025-11-06 17:14:45 +00:00