File matrix-authentication-service.changes of Package matrix-authentication-service
------------------------------------------------------------------- Tue Mar 17 18:44:55 UTC 2026 - Marcus Rueckert <mrueckert@suse.de> - Update to version 1.14.0~rc0: * 1.14.0-rc.0 * Translations updates * build(deps): bump the i18next group across 1 directory with 3 updates * build(deps-dev): bump the storybook group in /frontend with 3 updates * build(deps): bump docker/bake-action from 6.10.0 to 7.0.0 * Add support for locking to the mock homeserver and use in tests * Update Cargo.lock and cargo-deny skip list * Fix dummy test router * Regenerate route tree * build(deps): bump the tanstack-router group in /frontend with 3 updates * Schedule ProvisionUserJob after locking/unlocking user * Update ProvisionRequest with locked flag * feat(recaptcha): change recaptcha endpoint * build(deps): bump rollup from 4.53.5 to 4.59.0 in /frontend * build(deps-dev): bump the storybook group in /frontend with 3 updates * build(deps): bump docker/setup-buildx-action from 3.12.0 to 4.0.0 * build(deps): bump actions/setup-node from 6.2.0 to 6.3.0 * build(deps): bump docker/login-action from 3.7.0 to 4.0.0 * feat: add system-proxy feature for reqwest to Cargo.toml * Move upstream OAuth2 link policy check * build(deps): bump actions/upload-artifact from 6.0.0 to 7.0.0 * build(deps): bump actions/download-artifact from 7 to 8 * Added signing alg setting to provider yaml * Added Kanidm Sample configuration ------------------------------------------------------------------- Tue Mar 10 11:58:37 UTC 2026 - Marcus Rueckert <mrueckert@suse.de> - Update to version 1.13.0: * 1.13.0 * Translations updates ------------------------------------------------------------------- Tue Mar 03 18:01:22 UTC 2026 - Marcus Rueckert <mrueckert@suse.de> - Update to version 1.13.0~rc0: * 1.13.0-rc.0 * Translations updates * Apply suggestion from @sandhose * build(deps-dev): bump the storybook group in /frontend with 3 updates * build(deps-dev): bump i18next-cli in /frontend in the i18next group * build(deps): bump @vector-im/compound-design-tokens in /frontend * build(deps-dev): bump @types/node in /frontend in the types group * build(deps-dev): bump i18next-cli in /frontend in the i18next group * build(deps-dev): bump the storybook group in /frontend with 3 updates * build(deps): bump wasmtime from 40.0.3 to 40.0.4 * build(deps-dev): bump the storybook group in /frontend with 3 updates * build(deps): bump the i18next group across 1 directory with 2 updates * build(deps-dev): bump the graphql-codegen group across 1 directory with 2 updates * build(deps): bump anyhow from 1.0.100 to 1.0.101 * Support MSC4198 login_hint in account management uri * build(deps-dev): bump @biomejs/biome from 2.3.9 to 2.4.2 in /frontend ------------------------------------------------------------------- Tue Feb 24 11:02:41 UTC 2026 - Marcus Rueckert <mrueckert@suse.de> - Update to version 1.12.0: * Translations updates * build(deps): bump @tanstack/react-query * build(deps): bump socket2 from 0.6.1 to 0.6.2 * build(deps): bump the i18next group in /frontend with 2 updates * build(deps): bump minijinja from 2.12.0 to 2.15.1 * build(deps-dev): bump @vitejs/plugin-react * build(deps-dev): bump the storybook group in /frontend with 3 updates * Comment what `.message_id(None)` means using lettre * Fix compat token refresh giving back a consumed token * Add compat token refresh regression test * Create default Message-ID for sent mail * build(deps-dev): bump the types group across 1 directory with 2 updates * build(deps-dev): bump the storybook group in /frontend with 3 updates * build(deps): bump the i18next group across 1 directory with 3 updates * Fix wrong username regex * build(deps): bump bcrypt from 0.17.1 to 0.18.0 * build(deps-dev): bump postcss-nesting from 13.0.2 to 14.0.0 in /frontend * build(deps): bump time from 0.3.43 to 0.3.47 * build(deps-dev): bump happy-dom from 20.0.11 to 20.5.0 in /frontend * build(deps): bump insta from 1.43.2 to 1.46.3 * build(deps-dev): bump the types group in /frontend with 2 updates * build(deps): bump the tanstack-query group in /frontend with 2 updates * Update dockerfile frontend * Update Docker image to Debian 13 * Remove unused code * Upgrade Rust, opa, regal, cargo-auditable and Node * Fix changes in React types * build(deps): bump the react group in /frontend with 2 updates * build(deps): bump arc-swap from 1.7.1 to 1.8.1 * build(deps): bump tracing-subscriber in the tracing group * build(deps): bump the sentry group with 3 updates * build(deps-dev): bump @vitejs/plugin-react * build(deps-dev): bump the storybook group in /frontend with 3 updates * Update msw * build(deps-dev): bump msw from 2.12.4 to 2.12.7 in /frontend * build(deps-dev): bump the vitest group in /frontend with 2 updates * build(deps-dev): bump @graphql-codegen/cli * Add a few tests for the cleanup jobs * Split the cleanup jobs into multiple files * build(deps): bump docker/login-action from 3.6.0 to 3.7.0 * build(deps): bump lodash from 4.17.21 to 4.17.23 in /frontend * build(deps): bump peter-evans/create-pull-request from 8.0.0 to 8.1.0 * build(deps): bump actions/setup-node from 6.1.0 to 6.2.0 ------------------------------------------------------------------- Tue Feb 10 16:32:12 UTC 2026 - Marcus Rueckert <mrueckert@suse.de> - Update to version 1.11.0: * 1.11.0 * Translations updates * Upgrade Rust to 1.93, Debian base image & other tools (#5471) * 1.11.0-rc.1 * Use #[serde(other)] for unknown values instead of serde_with::DefaultOnError * build(deps): bump time from 0.3.43 to 0.3.47 * Make the compat login SSO redirect query parameters ignore invalid values ------------------------------------------------------------------- Wed Feb 04 11:20:49 UTC 2026 - Marcus Rueckert <mrueckert@suse.de> - Update to version 1.11.0~rc0: * 1.11.0-rc.0 * Translations updates * Update bytes version * Bump opa-wasm and wasmtime * Add `syn2mas` flag to ignore missing auth providers * Refactor inactive IP cleanup to use pagination * Minor reword in the cleanup jobs documentation * Add cleanup jobs developer documentation * Include pagination params in the tracing fields of cleanup methods * Add cleanup jobs for inactive session IP addresses * Add cleanup job for finished user sessions * Fix FK constraint to preserve backchannel logout chain * Add cleanup job for finished OAuth2 sessions * Re-enable upstream OAuth session cleanup job * Use the user_session_id on upstream authorisations for filtering instead of authentications * Add trigger and backfill for upstream OAuth user session tracking * Add index on the user_session_id foreign key for upstream auth sessions * Clean up unused oauth2_consents table * Clean up unsupported threepids from already deactivated users ------------------------------------------------------------------- Tue Jan 27 20:20:33 UTC 2026 - Marcus Rueckert <mrueckert@suse.de> - Update to version 1.10.0: * 1.10.0 * Translations updates ------------------------------------------------------------------- Thu Jan 22 23:43:34 UTC 2026 - Marcus Rueckert <mrueckert@suse.de> - Fix permissions of assets ------------------------------------------------------------------- Thu Jan 22 23:05:53 UTC 2026 - Marcus Rueckert <mrueckert@suse.de> - Add asset-paths.patch: match paths for files to our installation directory - Add systemd service ------------------------------------------------------------------- Thu Jan 22 15:51:21 UTC 2026 - Marcus Rueckert <mrueckert@suse.de> - fix javascript build ------------------------------------------------------------------- Thu Jan 22 11:34:04 UTC 2026 - Marcus Rueckert <mrueckert@suse.de> - Update to version 1.10.0~rc0: * 1.10.0-rc.0 * Translations updates * Disable cleanup of upstream OAuth sessions * Only cleanup orphan upstream authorization sessions * Track user session authenticated through upstream auth sessions * Consume upstream authorization sessions later in the user registration flow * Update test snapshots * add unstable prefix for MSC3824 * Handle deleted and invalid post-auth actions * Fix foreign key constraint when cleaning up upstream OAuth 2.0 links * build(deps): bump @vector-im/compound-web in /frontend * Mark the next attempt foreign key as initially not valid * Implement cleanup job for queue jobs * Implement cleanup jobs for upstream OAuth sessions and links * build(deps-dev): bump knip from 5.75.1 to 5.80.0 in /frontend * Implement cleanup job for email authentications * Implement cleanup job for user recovery sessions * Implement cleanup job for OAuth2 device code grants * Implement cleanup job for OAuth2 authorization grants * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps): bump the i18next group across 1 directory with 3 updates * Allow hourly cleanup jobs to run for longer * Cleanup finished compat sessions after 30 days * Adjust the retention period for user registrations to 30 days * Keep the copyright info consistent with the rest * Add "Getting started" section with ESS reference to README * Cleanup old user registrations from the database * Fix typo in comment * Apply suggestions from code review * Apply suggestions from code review * Cleanup consumed refresh tokens * Replace the FK constraint on the refresh token chain to nullify the field on deletion * Cleanup revoked refresh tokens * Handle garbage-collected access tokens in the refresh token logic * Setup recurring jobs schedules when running in tests * Cleanup expired OAuth 2.0 access tokens * Rename the cleanup revoked access tokens job * Introduce a way to clear jobs from a deprecated queue * Speed up access token cleanup with an index * Clean up revoked access tokens in batches * Allow jobs to declare a timeout and cancel them * Remove imported unsupported threepids when deactivating a user * Cleanup id_token_claims trigger * Remove leftovers from OAuth 2.0 consent tracking cleanup * Remove leftovers from the old email verification system * Remove leftover in the scheam from apalis * build(deps): bump EmbarkStudios/cargo-deny-action from 2.0.14 to 2.0.15 * build(deps-dev): bump vite in /frontend in the vite group * build(deps): bump the tanstack-query group in /frontend with 2 updates * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps): bump rsa from 0.9.8 to 0.9.10 * build(deps-dev): bump the vitest group in /frontend with 2 updates * build(deps-dev): bump the storybook group in /frontend with 2 updates * Support for stable MSC3824 names * Lint * Stabilisation of supported MSC4191 account management actions ------------------------------------------------------------------- Tue Jan 13 18:25:31 UTC 2026 - Marcus Rueckert <mrueckert@suse.de> - Update to version 1.9.0: * 1.9.0 * Translations updates * 1.9.0-rc.0 * Translations updates * build(deps-dev): bump @graphql-codegen/client-preset * build(deps): bump the i18next group in /frontend with 2 updates * build(deps-dev): bump vite-plugin-graphql-codegen * Sync Compound icons * build(deps-dev): bump storybook from 10.1.9 to 10.1.10 in /frontend * build(deps): bump @vector-im/compound-design-tokens in /frontend * Fix import ordering * Set the brotli quality to 10 instead of 11 * Fix the compression and integrity calculation logic * Don't include integrity attributes on fetch and image preloads * Simplify compat login SSO redirect URI building * Add more context to serialization errors * Fix the 'invalid type' error during compat SSO login with urlencoded parameters * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps-dev): bump @types/node in /frontend in the types group * build(deps): bump docker/setup-buildx-action from 3.11.1 to 3.12.0 * build(deps-dev): bump knip from 5.74.0 to 5.75.1 in /frontend * Replace vite-plugin-sri with our own plugin * Rework the manifest augmentation to use a file handle * Only serve pre-compressed gzip and brotli files * Replace the vite compression plugin with our own * Pre-load locale data in the React app * Deduplicate included assets * Add a few <Dialog.Description> in dialogs * Upgrade all frontend dependencies to latest versions * Regenerate route tree * build(deps): bump the tanstack-router group in /frontend with 3 updates * Update icons in templates * Update snapshots * build(deps-dev): bump @biomejs/biome from 2.3.8 to 2.3.9 in /frontend * build(deps-dev): bump autoprefixer from 10.4.22 to 10.4.23 in /frontend * build(deps): bump @vector-im/compound-design-tokens in /frontend * build(deps): bump @vector-im/compound-web in /frontend * build(deps-dev): bump vite in /frontend in the vite group * build(deps-dev): bump @types/node in /frontend in the types group * build(deps): bump the i18next group in /frontend with 2 updates * build(deps-dev): bump the storybook group in /frontend with 3 updates * build(deps): bump actions/download-artifact from 6 to 7 * build(deps): bump actions/upload-artifact from 5.0.0 to 6.0.0 * Switch to `opentelemetry-instrumentation-tokio` crate for Tokio instrumentation * build(deps): bump the react group in /frontend with 2 updates * build(deps-dev): bump @types/node in /frontend in the types group * build(deps): bump the i18next group in /frontend with 2 updates * build(deps-dev): bump the storybook group in /frontend with 3 updates * @import url(..) -> @import .. to let knip discover CSS imports correctly * build(deps-dev): bump knip from 5.66.4 to 5.73.3 in /frontend * build(deps-dev): bump graphql from 16.11.0 to 16.12.0 in /frontend * build(deps-dev): bump @types/node in /frontend in the types group * build(deps-dev): bump the storybook group in /frontend with 3 updates * Minor reword in the documentation * build(deps): bump actions/setup-node from 6.0.0 to 6.1.0 * build(deps-dev): bump autoprefixer from 10.4.21 to 10.4.22 in /frontend * Expose process metrics on Linux * build(deps): bump the i18next group in /frontend with 3 updates * build(deps-dev): bump the vite group in /frontend with 2 updates * build(deps): bump codecov/codecov-action from 5.5.1 to 5.5.2 * build(deps): bump peter-evans/create-pull-request from 7.0.9 to 8.0.0 * Remove rustls-pemfile from cargo deny ignore list * Remove rustls-pemfile dependency * Fix typos * Developer documentation for modifying or removing database migrations * Better error message when checksum in database is invalid * Don't error out if a migration is missing * Better lock and handle missing and modified migrations * build(deps-dev): bump @biomejs/biome from 2.3.7 to 2.3.8 in /frontend * build(deps): bump @tanstack/react-query * build(deps): bump the react group in /frontend with 2 updates * build(deps-dev): bump i18next-cli in /frontend in the i18next group * Reapply "Add 'IF NOT EXISTS' to all 'CREATE INDEX CONCURRENTLY' statements to avoid deadlocks (#5297)" (#5299) ------------------------------------------------------------------- Thu Jan 01 22:02:09 UTC 2026 - Marcus Rueckert <mrueckert@suse.de> - Update to version 1.8.0: * 1.8.0 * Ignore cargo-deny unmaintained package for now * Translations updates * 1.8.0-rc.0 * Translations updates * build(deps): bump tracing-appender in the tracing group * build(deps-dev): bump @types/react in /frontend in the types group * build(deps): bump the tanstack-query group in /frontend with 2 updates * build(deps-dev): bump i18next-cli in /frontend in the i18next group * build(deps-dev): bump the vitest group in /frontend with 2 updates * Un-break the scope tempalte helpers * build(deps-dev): bump vite in /frontend in the vite group * Update comment on the `id_color_hash` template filter * Explain how to use scope.unsafe_scopes() better * Apply minor suggestions from Copilot * build(deps-dev): bump the storybook group in /frontend with 3 updates * Add a test for the new skip_confirmation option * Improve comments explaining function-based mock for Intl.DateTimeFormat * Fix the consent templates failing to render in tests * Fix rendering of the logout button in a few places * Make the compat SSO login page use the same layout as other consent pages * Simplify the consent screens * Add the Matrix user display name in the compat SSO login context * Reword the MAS and Synapse admin scopes * Allow rendering a custom logout button in the templates * Define a few more font classes in the templates * Add a template function to compute the avatar color hash same as Compound Web * Get the display name of the Matrix user on the consent screens * Update templates/pages/compat_login_policy_violation.html * build(deps): bump the sentry group with 3 updates * build(deps): bump the i18next group in /frontend with 2 updates * build(deps-dev): bump the vitest group in /frontend with 2 updates * build(deps): bump softprops/action-gh-release from 2.4.2 to 2.5.0 * build(deps): bump docker/metadata-action from 5.9.0 to 5.10.0 * Convert use case list to bullet points and note the niche private_key_jwt method * Improve mockLocale prototype handling and fix formatting * Fix mockLocale for vitest 4.x spyOn breaking change * Initial plan * build(deps-dev): bump the vitest group in /frontend with 2 updates * build(deps-dev): bump the graphql-codegen group * Revert "Add 'IF NOT EXISTS' to all 'CREATE INDEX CONCURRENTLY' statements to avoid deadlocks (#5297)" * (delint: Is this a less messy rule?) * Comment on why we special-case 'only violation is too-many-sessions' * Expose `Violation`s directly to the compat policy violation template * Remove `is_interactive` and carry on with login types * Typos and error message rewording * Skip the attributes confirmation screen if configured to do so * Add 'IF NOT EXISTS' to all 'CREATE INDEX CONCURRENTLY' statements to avoid deadlocks * Check for the new on_conflict options & update docs * Option to skip confirmation when registering through an upstream OAuth provider * We don't know if there's a device ID * We can't show a cancel button, so don't show one * Document the new conflict options * Add tests for the new on_conflict options * Add more options to deal with localpart conflicts on upstream OAuth 2.0 logins * Add complete Shibboleth metadata file example * Apply suggestions from code review * Remove deprecated set_email_verification option from docs * Remove unnecessary userinfo_endpoint from Shibboleth config * Add Shibboleth sample configuration to SSO documentation * Initial plan * Remove unused login_link.html template * Allow linking upstream accounts to matching users without confirmation * Fix test name * Create the new index CONCURRENTLY * build(deps): bump docker/bake-action from 6.9.0 to 6.10.0 * Update docs/setup/reverse-proxy.md * build(deps): bump valibot from 1.1.0 to 1.2.0 in /frontend * fixup! Introduce compat login policy * build(deps): bump EmbarkStudios/cargo-deny-action from 2.0.13 to 2.0.14 * Make policy depend on whether the login is interactive or not * Don't apply a session limit when genuinely replacing a session * Make `finish_sessions_to_replace_device` return whether any were finished * Enforce policy on compat login * Add a 'compat login policy violation' page * Expose the compat login policy from the policy engine * Introduce compat login policy * drive-by: Singing -> Signing * Add a little bit of explanation to the documentation about keys * cli docs: Fix `--usage-limit` and `--unlimited` * Fix typo in error message * Create user registrations for upstream OAuth registrations * build(deps): bump peter-evans/create-pull-request from 7.0.8 to 7.0.9 * Associate the upstream link with the new user if present on the registration * Don't error out if there is no email associated to the registration * Store upstream OAuth sessions on user registrations * Allow completing user email authentications using an upstream session * build(deps-dev): bump @biomejs/biome from 2.3.2 to 2.3.7 in /frontend * build(deps-dev): bump msw-storybook-addon in /frontend * build(deps): bump actions/checkout from 5 to 6 * build(deps): bump convert_case from 0.8.0 to 0.9.0 * build(deps): bump the i18next group in /frontend with 2 updates * build(deps-dev): bump vite in /frontend in the vite group * Modify Nginx compatibility-layer location block to forward not just client stuff to matrix-synapse * (update files after merge) * Replace dummy manifest with fake include_asset function * Don't require proliferation of Rng: Clone in sample method * Use less zero-y timestamp * also update is_default * Update crates/config/src/sections/experimental.rs * Pass out RepositoryError * Make explicit the data...base * Use NonZeroU64 * drive-by english string fix * Add policy violation for too many devices * Add TooManySessions violation code * Add session counts to policy input * Add session limit config to policy data * Add helper function to count user sessions for limiting * Add SessionCounts struct for use in policy * Add configuration for session limiting * Add rest of documentation on `templates check` * Stub out the vite manifest when stabilising template renders * template test: check for determinism * document new options on `templates check` * cli: templates check: add option to --stabilise date and RNG * Make `add_params_to_url` template function deterministic ------------------------------------------------------------------- Thu Nov 27 01:28:11 UTC 2025 - Marcus Rueckert <mrueckert@suse.de> - Update to version 1.7.0: * 1.7.0 * Translations updates * 1.7.0-rc.0 * Translations updates * Minor grammatical fix * Update icons in the templates * build(deps): bump hyper-util from 0.1.17 to 0.1.18 * build(deps): bump @vector-im/compound-web in /frontend * build(deps): bump @vector-im/compound-design-tokens in /frontend * build(deps-dev): bump the types group in /frontend with 3 updates * build(deps): bump the i18next group across 1 directory with 3 updates * Fix storybook build * Fix the 'username is already taken' error message * Fix the building of the docs with mdbook 0.5 * Fix frontend style, template syntax and regenerate translations * Allow keys and keys_dir simultaneously * build(deps): bump glob and i18next-cli in /frontend * Interactively guide users for selecting a valid username * Move all the frontend entrypoints to a dedicated directory * build(deps): bump bitflags from 2.9.4 to 2.10.0 * build(deps): bump @tanstack/react-query * build(deps-dev): bump the graphql-codegen group * build(deps): bump psl from 2.1.148 to 2.1.162 * build(deps-dev): bump @vitejs/plugin-react * build(deps-dev): bump the storybook group in /frontend with 3 updates * build(deps): bump rustls-pki-types from 1.12.0 to 1.13.0 * build(deps): bump csv from 1.3.1 to 1.4.0 * build(deps): bump rustls from 0.23.34 to 0.23.35 * Update opa-wasm to 0.1.8 & bump wasmtime * build(deps-dev): bump the storybook group in /frontend with 3 updates * build(deps): bump js-yaml from 4.1.0 to 4.1.1 in /frontend * build(deps): bump the i18next group across 1 directory with 2 updates * build(deps): bump @tanstack/react-query * build(deps): bump softprops/action-gh-release from 2.4.1 to 2.4.2 * Add `upstream_oauth2.providers.[].client_secret_file` config option * Add i18next.config.ts to the knip ignore list * Migrate from i18next-parser to i18next-cli * Use Node 24 in CI and for building the frontend * build(deps-dev): bump @graphql-codegen/client-preset * build(deps-dev): bump vite in /frontend in the vite group * Remove the nullable transform from the policies schemas * Remove the nullable transformation for the config schema. * Remove the nullable transform * Update aide to 0.15.1 * build(deps-dev): bump the storybook group in /frontend with 3 updates * Fix another broken link in the rustdocs * Fix broken link in rustdoc * Update docs/development/contributing.md * build(deps): bump docker/metadata-action from 5.8.0 to 5.9.0 * build(deps-dev): bump the vite group across 1 directory with 2 updates * build(deps): bump react-i18next in /frontend in the i18next group * Only allow C-S device scopes when the C-S API scope has been requested * Update tests to prepare for needing C-S API scope * Drive-by podman Makefile fix * Drive-by contributing doc update for policies makefile * build(deps-dev): bump @biomejs/biome from 2.2.5 to 2.3.2 in /frontend * build(deps-dev): bump knip from 5.64.2 to 5.66.4 in /frontend * Make clear that owners are the ones to regenerate * build(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0 * build(deps): bump actions/download-artifact from 5 to 6 * Note that you can auth to the admin API with PATs * build(deps): bump rustls from 0.23.32 to 0.23.34 * Add basic documentation for personal sessions * Add secrets.keys_dir config option * Upgrade schemars to 0.9 ------------------------------------------------------------------- Tue Nov 11 12:11:33 UTC 2025 - Marcus Rueckert <mrueckert@suse.de> - Update to version 1.6.0: * 1.6.0 * Translations updates * Don't extract the parent context if the span is disabled * Fix spurious "Failed to set parent context on span" error * 1.6.0-rc.0 * Translations updates * Fix comment and change delimiter to = * Change the format of SampleIdentifiers and don't make a subdir per locale * Downgrade to SemiStrict in production * Clarify some more conditions in the templates * For branding: use none instead of undefined * Introduce SampleIdentifiers to stably track samples * cli: templates check: allow rendering to --out-dir * template macro: generate function for all checks * template macro: return rendered samples * templates: Be strict about undefined variables * templates: fix reliance on lax undefined behaviour * Add `mas-maintainers` github team to CODEOWNERS ------------------------------------------------------------------- Wed Oct 29 00:14:03 UTC 2025 - Marcus Rueckert <mrueckert@suse.de> - Update to version 1.5.0: * 1.5.0 * Translations updates * 1.5.0-rc.1 * fix up test that relied on it being broken * Fix UNIQUE constraint on active personal access tokens per session * 1.5.0-rc.0 * Translations updates * Remove stale comment * Add comments for the filters * Use `is_valid_actor` * build(deps-dev): bump the storybook group in /frontend with 3 updates * build(deps): bump react-i18next in /frontend in the i18next group * build(deps-dev): bump @graphql-codegen/cli * build(deps-dev): bump @types/node in /frontend in the types group * When adding personal session, upsert devices synchronously * Restructure user validity check * remove redundant #[source] * Relax the validity check of the token actor * Check validity of token owner * Pass through the TokenFormatError * When adding or revoking personal sessions, schedule needed device syncs * Accept PATs on the Admin API * Rename record_personal_session function * Don't allow creating personal sessions for deactivated users * Revoke personal sessions on user deactivation * Add `revoke_bulk` for personal sessions storage * Update extracted translations * Align the icons used in the session details page * Make the font slightly bolder on dangerous scopes * Highlight dangerous scopes when consenting to them * build(deps): bump reqwest from 0.12.23 to 0.12.24 * build(deps): bump clap from 4.5.48 to 4.5.50 * (update JSONSchema) * fixup! Add `expires` filter to personal sessions list * use axum_extract's version of Query everywhere * fixup! Make `expires_in` u32 and (on regenerate) not default to the same as last time * Add `scope` filter to personal sessions list * axum_extra: enable `query` feature flag * Use Option<Ulid> in schemars * Make `expires_in` u32 and (on regenerate) not default to the same as last time * Add `expires` filter to personal sessions list * find_active_by_session: take &PersonalSession * note: `device_id` only used for compat access & refresh tokens * Add personal access token introspection test * Implement activity tracking for personal sessions * introspection: Support personal access tokens * drive-by update.sh chmod +x * drive-by formatting fixes * drive-by clippy fixes * Add Admin API to regenerate a personal session (getting a new PAT) * Update msw to 2.11.6 * build(deps): bump ruma-common from 0.15.4 to 0.16.0 * build(deps-dev): bump vite in /frontend in the vite group * build(deps): bump the sentry group with 3 updates * build(deps): bump swagger-ui-dist from 5.29.3 to 5.29.5 in /frontend * build(deps): bump @tanstack/react-query * build(deps-dev): bump msw from 2.11.3 to 2.11.6 in /frontend * Add personal sessions admin API * build(deps): bump the i18next group across 1 directory with 2 updates * Add personal session data models to admin API * Delete owned PATs & personal sessions when pruning OAuth2 clients * When revoking a personal session, also revoke its PAT * storage: include PATs alongside personal sessions * storage: introduce find_active_for_session for PATs * docs: add missing --reactivate option * build(deps-dev): bump happy-dom from 19.0.2 to 20.0.4 in /frontend * build(deps-dev): bump the types group across 1 directory with 2 updates * build(deps): bump sigstore/cosign-installer from 3.10.0 to 4.0.0 * build(deps): bump regex from 1.11.3 to 1.12.2 * build(deps): bump tokio from 1.47.1 to 1.48.0 * build(deps): bump actions/setup-node from 5.0.0 to 6.0.0 * build(deps): bump socket2 from 0.6.0 to 0.6.1 * build(deps): bump softprops/action-gh-release from 2.4.0 to 2.4.1 * introspection: introduce errors for personal sessions * build(deps): bump psl from 2.1.147 to 2.1.148 * build(deps): bump lettre from 0.11.18 to 0.11.19 * Take access_token by ref in `add` * build(deps-dev): bump typescript from 5.9.2 to 5.9.3 in /frontend * build(deps-dev): bump tailwindcss from 3.4.17 to 3.4.18 in /frontend * build(deps): bump swagger-ui-dist from 5.29.1 to 5.29.3 in /frontend * build(deps-dev): bump knip from 5.64.1 to 5.64.2 in /frontend * Support OAuth2 clients as owners of personal sessions * Enable session filter tests * Sync devices from personal sessions * Add filters for personal sessions * Add storage tests (with TODOs for unsupported functionality) * Add personal access token and session storage * data model: Add personal sessions with `mpt_` prefix * activity tracker: Add SessionKind::Personal * Add tables for personal access tokens ------------------------------------------------------------------- Thu Oct 16 18:09:35 UTC 2025 - Marcus Rueckert <mrueckert@suse.de> - Update to version 1.4.1: * 1.4.1 * Add regression tests * Better feedback when changing passwords ------------------------------------------------------------------- Thu Oct 16 18:08:45 UTC 2025 - Marcus Rueckert <mrueckert@suse.de> - Update to version 1.4.0: * 1.4.0 * Translations updates * 1.4.0-rc.1 * Translations updates * Always initialize OpenTelemetry even if no exporter is configured * 1.4.0-rc.0 * Translations updates * build(deps): bump pest_derive from 2.8.2 to 2.8.3 * Update snapshots * build(deps-dev): bump @biomejs/biome from 2.2.4 to 2.2.5 in /frontend * build(deps-dev): bump @graphql-codegen/client-preset * build(deps): bump the react group in /frontend with 2 updates * build(deps-dev): bump vite in /frontend in the vite group * Adapt to the new tracing-opentelemetry API * build(deps): bump the opentelemetry group with 2 updates * Skip loading the user when finishing a compat session * Add a configuration option to make email optional for password registration * build(deps-dev): bump the storybook group in /frontend with 3 updates * build(deps-dev): bump @types/node in /frontend in the types group * build(deps): bump i18next in /frontend in the i18next group * build(deps): bump softprops/action-gh-release from 2.3.3 to 2.4.0 * Translations updates * build(deps): bump pest from 2.8.2 to 2.8.3 * Admin API to get the version of the service * Inject the version in the app state * build(deps-dev): bump @testing-library/jest-dom in /frontend * build(deps): bump psl from 2.1.146 to 2.1.147 * Admin API to finish a compatibility session * Admin API to finish an OAuth2 session * Admin API to finish a user session * build(deps): bump thiserror from 2.0.16 to 2.0.17 * build(deps): bump the axum group with 2 updates * build(deps): bump swagger-ui-dist from 5.29.0 to 5.29.1 in /frontend * build(deps-dev): bump the storybook group in /frontend with 3 updates * Admin API: make sure the meta fields are nullable * Update msw to 2.11.3 * Admin API: add endpoint to get an Upstream OAuth Provider by ID * build(deps-dev): bump msw from 2.11.2 to 2.11.3 in /frontend * build(deps): bump psl from 2.1.145 to 2.1.146 * build(deps): bump zeroize from 1.8.1 to 1.8.2 * build(deps): bump regex from 1.11.2 to 1.11.3 * build(deps-dev): bump happy-dom from 18.0.1 to 19.0.2 in /frontend * build(deps-dev): bump knip from 5.63.1 to 5.64.1 in /frontend * Replace storybook-react-i18next with our own globals * build(deps): bump camino from 1.2.0 to 1.2.1 * build(deps): bump tokio-rustls from 0.26.3 to 0.26.4 * build(deps-dev): bump the types group in /frontend with 2 updates * build(deps): bump the tanstack-query group in /frontend with 2 updates * build(deps): bump the axum group with 2 updates * build(deps-dev): bump @graphql-codegen/client-preset * build(deps): bump react-i18next in /frontend in the i18next group * Update test snapshots * build(deps-dev): bump the vite group in /frontend with 2 updates * build(deps-dev): bump the types group across 1 directory with 2 updates * build(deps): bump serde from 1.0.225 to 1.0.228 * build(deps): bump docker/login-action from 3.5.0 to 3.6.0 * Add tests for count=false and count=only * Admin API: parameter to include total number of items * build(deps): bump psl from 2.1.141 to 2.1.145 * Admin API: add pagination cursors to list endpoints * Adapt most code to use the new edges and cursors * storage: make the edges in pages include cursors * build(deps): bump the fontsource group in /frontend with 2 updates * build(deps-dev): bump the storybook group in /frontend with 3 updates * build(deps): bump anyhow from 1.0.99 to 1.0.100 * build(deps): bump clap from 4.5.47 to 4.5.48 * build(deps): bump indexmap from 2.11.3 to 2.11.4 * build(deps): bump rustls from 0.23.31 to 0.23.32 * Update generate GraphQL types * build(deps-dev): bump the graphql-codegen group * build(deps-dev): bump the vite group across 1 directory with 3 updates * build(deps): bump tokio-rustls from 0.26.2 to 0.26.3 ------------------------------------------------------------------- Tue Sep 23 17:21:04 UTC 2025 - Marcus Rueckert <mrueckert@suse.de> - Update to version 1.3.0: * 1.3.0 * Translations updates * Admin API to list upstream OAuth 2.0 providers * 1.3.0-rc.0 * Translations updates * Bump locked dependencies * build(deps): bump serde from 1.0.223 to 1.0.225 * build(deps): bump indexmap from 2.11.1 to 2.11.3 * build(deps-dev): bump @types/node in /frontend in the types group * build(deps): bump the tanstack-query group in /frontend with 2 updates * Simple CLI commands to manage server admins * build(deps): bump serde_json from 1.0.143 to 1.0.145 * build(deps): bump serde from 1.0.219 to 1.0.223 * build(deps): bump hyper-util from 0.1.16 to 0.1.17 * build(deps): bump camino from 1.1.12 to 1.2.0 * build(deps-dev): bump the types group in /frontend with 2 updates * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps): bump @fontsource/inter in /frontend in the fontsource group * build(deps-dev): bump the storybook group in /frontend with 3 updates * build(deps): bump sigstore/cosign-installer from 3.9.2 to 3.10.0 * Add references to MSC for account management account= query param * Admin API filter to search users by username * Allow filtering guest/non-guest users * Surface the user guest flag in the admin API * Update most frontend dependencies * Admin API to expose a few configuration values * build(deps): bump @vector-im/compound-design-tokens in /frontend * build(deps): bump insta from 1.43.1 to 1.43.2 * Update mockServiceWorker.js to 2.11.2 * build(deps): bump pest_derive from 2.8.1 to 2.8.2 * build(deps): bump chrono from 0.4.41 to 0.4.42 * build(deps-dev): bump msw from 2.11.1 to 2.11.2 in /frontend * build(deps-dev): bump the types group in /frontend with 3 updates * build(deps): bump the tanstack-query group in /frontend with 2 updates * build(deps): bump clap from 4.5.46 to 4.5.47 * build(deps): bump pest from 2.8.1 to 2.8.2 * build(deps): bump indexmap from 2.11.0 to 2.11.1 * build(deps): bump psl from 2.1.140 to 2.1.141 * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps): bump @fontsource/inconsolata * Update the vite manifest definition * Fix reference to the regal image * Upgrade OPA and regal to latest versions * Upgrade cargo-auditable to 0.7.0 * Upgrade Node in the Dockerfile to 22.19.0 * Enforce npm strict engine * build(deps-dev): bump the vite group across 1 directory with 3 updates * Remove the codecov vite plugin * Ignore a few linting errors * build(deps): bump the i18next group across 1 directory with 2 updates * build(deps-dev): bump @biomejs/biome from 2.1.2 to 2.2.4 in /frontend * build(deps-dev): bump vite * build(deps-dev): bump the storybook group in /frontend with 3 updates * build(deps): bump camino from 1.1.11 to 1.1.12 * build(deps): bump psl from 2.1.136 to 2.1.140 * build(deps): bump softprops/action-gh-release from 2.3.2 to 2.3.3 * make token_endpoint_auth_signing_alg_values_supported optional * build(deps): bump codecov/codecov-action from 5.5.0 to 5.5.1 * build(deps): bump actions/github-script from 7.0.1 to 8.0.0 * build(deps): bump actions/setup-node from 4.4.0 to 5.0.0 * Documentation: update links to policy files * Don't mistakenly invoke a regex range expression * Allow more characters in redirect URI paths * Mention the refresh token in the docs * Request a refresh token in device-code-grant.sh * build(deps): bump uuid from 1.18.0 to 1.18.1 * build(deps): bump bitflags from 2.9.3 to 2.9.4 * Trim matrix secret when read from file * Switch to opentelemetry-prometheus-text-exporter ------------------------------------------------------------------- Tue Sep 09 12:58:21 UTC 2025 - Marcus Rueckert <mrueckert@suse.de> - Update to version 1.2.0: * 1.2.0 * Translations updates * 1.2.0-rc.0 * Translations updates * Update msw to 2.11.1 * Fix the wording about admin token vs. secret in the doctor command * build(deps-dev): bump msw from 2.10.4 to 2.11.1 in /frontend * build(deps): bump tracing-subscriber in the cargo group * build(deps): bump minijinja-contrib from 2.11.0 to 2.12.0 * build(deps): bump url from 2.5.6 to 2.5.7 * build(deps): bump clap from 4.5.45 to 4.5.46 * build(deps): bump regex from 1.11.1 to 1.11.2 * build(deps-dev): bump @testing-library/jest-dom in /frontend * build(deps): bump the i18next group in /frontend with 2 updates * build(deps): bump psl from 2.1.135 to 2.1.136 * build(deps): bump indexmap from 2.10.0 to 2.11.0 * build(deps): bump wiremock from 0.6.4 to 0.6.5 * build(deps): bump minijinja from 2.11.0 to 2.12.0 * build(deps-dev): bump the storybook group in /frontend with 3 updates * build(deps): bump bitflags from 2.9.2 to 2.9.3 * build(deps): bump url from 2.5.4 to 2.5.6 * build(deps): bump docker/bake-action from 6.8.0 to 6.9.0 * build(deps): bump codecov/codecov-action from 5.4.3 to 5.5.0 * build(deps): bump the i18next group in /frontend with 2 updates * build(deps): bump form_urlencoded from 1.2.1 to 1.2.2 * build(deps): bump psl from 2.1.134 to 2.1.135 * Switch to JWK Thumbprints * Remove kid from test config and config generation * build(deps): bump the tanstack-query group in /frontend with 2 updates * build(deps): bump thiserror from 2.0.15 to 2.0.16 * build(deps): bump psl from 2.1.133 to 2.1.134 * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps): bump hyper from 1.6.0 to 1.7.0 * build(deps): bump bcrypt from 0.17.0 to 0.17.1 * build(deps): bump serde_json from 1.0.142 to 1.0.143 * build(deps-dev): bump the types group in /frontend with 2 updates * build(deps): bump i18next in /frontend in the i18next group * Minor grammatical fixes to access-token.md * Link directly to Localazy branching page in release docs * Reformat with rustfmt * Apply suggestions from code review * Document Synapse integration with the stable feature * Update `mas-cli doctor` to suggest the stable MAS integration * Improve clarity of return type * Auto-generate kid if not given ------------------------------------------------------------------- Thu Aug 28 01:28:08 UTC 2025 - Marcus Rueckert <mrueckert@suse.de> - Update to version 1.1.0: * 1.1.0 * Translations updates * 1.1.0-rc.0 * Translations updates * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps): bump anyhow from 1.0.98 to 1.0.99 * build(deps): bump reqwest from 0.12.22 to 0.12.23 * build(deps): bump bitflags from 2.9.1 to 2.9.2 * build(deps): bump thiserror from 2.0.12 to 2.0.15 * build(deps-dev): bump the storybook group in /frontend with 3 updates * build(deps): bump uuid from 1.17.0 to 1.18.0 * build(deps): bump async-trait from 0.1.88 to 0.1.89 * build(deps): bump psl from 2.1.128 to 2.1.133 * Simplify handling of login hints * Remove unnecessary crate-level comment * Apply suggestion from @sandhose * Upgrade Rust (and Clippy in CI) to 1.89.0 * Fix a few more clippy lints * Un-hide a few elidded lifetimes * Fix a few clippy lints, mostly in doc comments * Collapse a few nested `if` now that we have `if let` chains * Update deny.toml * build(deps): bump EmbarkStudios/cargo-deny-action from 2.0.12 to 2.0.13 * build(deps): bump actions/upload-pages-artifact from 3.0.1 to 4.0.0 * build(deps): bump sea-query from 0.32.6 to 0.32.7 in the sea-query group * build(deps): bump camino from 1.1.10 to 1.1.11 * Enable the `urlencode` feature of minijinja * build(deps): bump clap from 4.5.42 to 4.5.45 * build(deps): bump slab from 0.4.10 to 0.4.11 in the cargo group * build(deps): bump the npm_and_yarn group in /frontend with 2 updates * Include simple script to generate an access token * 1.0.0 * Translations updates * build(deps): bump actions/checkout from 4 to 5 * build(deps): bump governor from 0.10.0 to 0.10.1 * Docs: Run local tests via `cargo-nextest` * Include `builtins` to `minijinja` features * 1.0.0-rc.0 * Translations updates * build(deps): bump swagger-ui-dist from 5.27.0 to 5.27.1 in /frontend * build(deps-dev): bump typescript from 5.8.3 to 5.9.2 in /frontend * build(deps): bump actions/download-artifact from 4 to 5 * build(deps): bump rustls-platform-verifier from 0.6.0 to 0.6.1 * build(deps): bump docker/login-action from 3.4.0 to 3.5.0 * build(deps): bump tokio-util from 0.7.15 to 0.7.16 * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps): bump psl from 2.1.127 to 2.1.128 * build(deps-dev): bump @types/node in /frontend in the types group * Make MAS use the modern Synapse API by default * Fix usage of `homeserver_connection_from_config` * Add clients.[].client_secret_file config option * build(deps-dev): bump the storybook group in /frontend with 3 updates * Make `mas-cli manage issue-compatibility-token` create the device on the homeserver * build(deps): bump tokio from 1.47.0 to 1.47.1 * build(deps): bump serde_json from 1.0.141 to 1.0.142 * build(deps): bump the tanstack-query group in /frontend with 2 updates * build(deps): bump docker/metadata-action from 5.7.0 to 5.8.0 * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps): bump the tanstack-query group in /frontend with 2 updates * use of static RNG and MockClock in tests * move Clock/MockClock/SystemClock/BoxClock/BoxRng to mas-data-model : format * move Clock/MockClock/SystemClock/BoxClock/BoxRng to mas-data-model : correct documentation * move Clock/MockClock/SystemClock/BoxClock/BoxRng to mas-data-model * use of `login_with_email_allowed` at caller level * rename Login:EMAIL to Login::Email + remove use of email prefix * display email login_hint when login_with_email_allowed is activated * Fix many clippy warnings * Update cookie_store to 0.22.0 * Replace usage of deprecated SentryHttpLayer::with_transaction * Update most dependencies in the lock file * Remove unused Sentry options * Upgrade Sentry to 0.42.0 * Upgrade opentelemetry to 0.30.0 * Update wasmtime * build(deps): bump opa-wasm from 0.1.6 to 0.1.7 * build(deps): bump clap from 4.5.41 to 4.5.42 * Properly use rustls-platform-verifier with reqwest * Use the platform-native verifier for email TLS * build(deps): bump lettre from 0.11.15 to 0.11.18 * Use the renamed functions from socket2 * build(deps): bump socket2 from 0.5.10 to 0.6.0 * build(deps): bump the tanstack-router group in /frontend with 3 updates * Ignore socket2 0.5 in cargo deny * Add matrix.secret_file config option * build(deps): bump the react group across 1 directory with 4 updates * 0.20.0 * Translations updates * build(deps): bump rustls from 0.23.29 to 0.23.30 * build(deps): bump tokio from 1.46.1 to 1.47.0 * build(deps-dev): bump @testing-library/jest-dom in /frontend * fix: don't attempt to set TCP_NODELAY on accepted unix streams * 0.20.0-rc.0 * Translations updates * build(deps): bump psl from 2.1.126 to 2.1.127 * build(deps-dev): bump knip from 5.61.3 to 5.62.0 in /frontend * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps): bump react-i18next in /frontend in the i18next group * Don't check for `client_id` in tests * Fix spec compliance of upstream OAuth 2.0 client auth methods * Fix typo in secrets config output * Human-readable error page on the compat SSO login redirect * Make the compat_router also recover from errors in human-facing routes * Include the issuer URLs in the error message when they don't match * Human-readable error page on the upstream callback page * Human-readable error page on the upstream authorization page * Human-readable error page on the authorization endpoint * Human-readable error page on the consent page * Handle device syncs for many devices more quickly * build(deps): bump hyper-util from 0.1.15 to 0.1.16 * build(deps-dev): bump the storybook group in /frontend with 3 updates * build(deps-dev): bump @types/node in /frontend in the types group * KIDs must be stable across restarts * Fix the user deactivation/reactivation jobs * Fix wording * Adapt markdown formatting * build(deps-dev): bump @biomejs/biome from 2.1.1 to 2.1.2 in /frontend * Clarify comment * Update msw to 2.10.4 * Allow the homeserver to perform introspection using a shared secret * docs: Remove requirement for arbitrary KIDs * build(deps-dev): bump msw from 2.10.3 to 2.10.4 in /frontend * build(deps): bump serde_json from 1.0.140 to 1.0.141 * build(deps): bump psl from 2.1.125 to 2.1.126 * Threaten to switch to using the modern API in a few releases. * Avoid a few unnecessary clones when talking to Synapse * Remove the spurious password field from the request body * Update wasmtime * build(deps): bump opa-wasm from 0.1.5 to 0.1.6 * simplify unit tests * Rename create_device -> upsert_device * remove unused function * fix err return * Update crates/handlers/src/upstream_oauth2/link.rs * Update crates/handlers/src/upstream_oauth2/link.rs * fix rust style * add semi column * fix code style * Update crates/handlers/src/upstream_oauth2/link.rs * update license * use match * rename `is_forced` to `is_forced_or_required` * use of UpstreamOAuthProviderLocalpartPreference * allow importing existing users when the localpart matches in upstream OAuth 2.0 logins * Use the new dedicated Synapse API * Take the localpart instead of the MXID in HomeserverConnection methods * build(deps): bump sigstore/cosign-installer from 3.9.1 to 3.9.2 * build(deps): bump swagger-ui-dist from 5.26.2 to 5.27.0 in /frontend * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps-dev): bump the storybook group in /frontend with 3 updates * build(deps): bump psl from 2.1.124 to 2.1.125 * Revert GraphQL's unlock to also reactivate * Decouple (un)locking from (re/de)activation * Satisfy Clippy * Format * Separate active state from lock state in admin API * Update schema * Add admin API endpoint to reactivate user * Format * Don't return locked error for deactivated users * Upgrade Rust and Clippy to 1.87 * Use Path::display() instead of the debug representation * Rename Claim::claim to Claim::value * Box all the figment errors to avoid large enum differences * build(deps): bump the tanstack-query group in /frontend with 2 updates * build(deps): bump @vector-im/compound-design-tokens in /frontend * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps-dev): bump @types/node in /frontend in the types group * Always add users synchronously with admin API * Update schema * Let admin API add users synchronously * Satisfy Clippy * Add test coverage * Check for compat session locking earlier * Support M_USER_LOCKED error for compat sessions * 0.19.0 * Translations updates * Negate erase option and make optional * build(deps): bump the tanstack-router group in /frontend with 3 updates * Force optional request body for JSON schema * 0.19.0-rc.1 * build(deps): bump rustls from 0.23.28 to 0.23.29 * build(deps): bump clap from 4.5.40 to 4.5.41 * build(deps): bump the tanstack-query group in /frontend with 2 updates * Upgrade @vector-im/compound-web as well * Fix link title * Use an async-aware mutex for the test queue worker * Ignore clippy lint * Update the deactivate admin API test to run the deactivation job * Test helper to run all tests in the job queue * Allow setting a custom clock on the QueueWorker & add one to the TestState * Remove the duplicate clock and rng in QueueWorker * Make the task State::clock() return a &dyn Clock instead of a BoxClock * build(deps): bump psl from 2.1.123 to 2.1.124 * build(deps): bump ruma-common from 0.15.3 to 0.15.4 * build(deps-dev): bump @biomejs/biome from 2.1.0 to 2.1.1 in /frontend * build(deps): bump @vector-im/compound-design-tokens in /frontend * build(deps-dev): bump the types group in /frontend with 2 updates * build(deps): bump i18next in /frontend in the i18next group * Split the migration in two parts, two transactions. * Only apply the trigger on rows without the id_token_claims set * Backfill the id_token_claims column in the upstream_oauth_authorization_sessions table * build(deps-dev): bump the storybook group in /frontend with 3 updates * build(deps): bump swagger-ui-dist from 5.24.2 to 5.26.2 in /frontend * build(deps): bump @vector-im/compound-design-tokens in /frontend * Update mockServiceWorker.js * build(deps-dev): bump msw from 2.10.2 to 2.10.3 in /frontend * build(deps): bump the tanstack-query group in /frontend with 2 updates * Make email address lookups case-insensitive * build(deps-dev): bump @biomejs/biome from 2.0.6 to 2.1.0 in /frontend * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps): bump hyper-util from 0.1.14 to 0.1.15 * build(deps): bump serde_with from 3.13.0 to 3.14.0 * Docs: fix link to `build` GitHub Actions workflow * 0.19.0-rc.0 * Translations updates * Regenerate graphql.ts * build(deps-dev): bump @graphql-codegen/client-preset * build(deps): bump the i18next group in /frontend with 2 updates * build(deps-dev): bump the storybook group in /frontend with 3 updates * build(deps-dev): bump @types/node in /frontend in the types group * build(deps): bump minijinja-contrib from 2.10.2 to 2.11.0 * build(deps): bump ruma-common from 0.15.2 to 0.15.3 * build(deps): bump reqwest from 0.12.20 to 0.12.22 * build(deps): bump tokio from 1.45.1 to 1.46.1 * Reformat frontend code, fix a few new linting errors * Update Biome config * Lint * Require "erase" key in deactivation request body * Add documentation for backchannel logout * Log out oauth & compat sessions when receiving a backchannel logout request * Compose filters for batch logging out of browser sessions * Log out browser sessions when receiving a backchannel logout notification * storage: allow filtering browser sessions by which upstream session authd them * Receive and validate backchannel logout requests * Backchannel logout behavior settings on upstream providers * Allow filtering upstream sessions by sub and sid claims * storage: list and count methods for upstream oauth sessions * Record the decoded ID token claims on upstream auth sessions * Lint * Add "erase" option to REST deactivate request body * 0.18.0 * Translations updates * Translations updates * Fix rogue invalid characters inside doc comments. * rand::OsRng is no longer reachable. * Replace std::io::Error::new with Error::other. * build(deps): bump minijinja from 2.10.2 to 2.11.0 * build(deps-dev): bump knip from 5.61.0 to 5.61.3 in /frontend * Fix .gitignore for cargo target directory. * build(deps): bump indexmap from 2.9.0 to 2.10.0 * build(deps): bump psl from 2.1.122 to 2.1.123 * build(deps-dev): bump @biomejs/biome from 1.9.4 to 2.0.6 in /frontend * Report AS-exclusive localparts as used, not an error * 0.18.0-rc.0 * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps): bump the tanstack-query group in /frontend with 2 updates * build(deps-dev): bump postcss from 8.5.5 to 8.5.6 in /frontend * build(deps-dev): bump the storybook group in /frontend with 3 updates * Translations updates * build(deps): bump sigstore/cosign-installer from 3.9.0 to 3.9.1 * build(deps): bump @vector-im/compound-web in /frontend * clippy * Rename PasswordVerificationFailed to PasswordMismatch * Review comments * build(deps): bump EmbarkStudios/cargo-deny-action from 2.0.11 to 2.0.12 * build(deps): bump wiremock from 0.6.3 to 0.6.4 * build(deps): bump docker/setup-buildx-action from 3.11.0 to 3.11.1 * build(deps): bump pest_derive from 2.8.0 to 2.8.1 * build(deps-dev): bump postcss-import from 16.1.0 to 16.1.1 in /frontend * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps-dev): bump the vitest group in /frontend with 2 updates * build(deps-dev): bump the storybook group in /frontend with 4 updates * Regenerate route tree * build(deps): bump docker/setup-buildx-action from 3.10.0 to 3.11.0 * 0.17.1 * Fix loading of DER-encoded key files * build(deps): bump sigstore/cosign-installer from 3.8.2 to 3.9.0 * build(deps): bump psl from 2.1.120 to 2.1.122 * build(deps): bump @vector-im/compound-web in /frontend * 0.17.0 * Translations updates * build(deps): bump swagger-ui-dist from 5.24.1 to 5.24.2 in /frontend * build(deps-dev): bump @types/node in /frontend in the types group * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps): bump serde_with from 3.12.0 to 3.13.0 * build(deps): bump pest from 2.8.0 to 2.8.1 * build(deps): bump rustls from 0.23.27 to 0.23.28 * Record password mismatch separately from errors * Seperate out password mismatch vs failure * Add logging when user fails to verify password * Update the admin API doc to use stable scope in the example * Mention the stable scopes in the doc, remove the guest scope * Parse the stable scopes in the templates * Allow the stable scope in the policy * Make the frontend parse the stable scope as well * storage: get both the stable & unstable scopes when looking for devices * Make the introspection endpoint normalise stable and unstable scopes * data-model: make the device emit both stable and unstable scope tokens * build(deps-dev): bump the tanstack-router group * build(deps): bump react-i18next in /frontend in the i18next group * Bump most frontend dependencies * Fix a few more license reference issues * Add license headers in most files that missed them * Remove unused devcontainer setup * Update license headers to match the actual license * dual licence * make dual license explicit * Fix link to contributing guidelines in the README * Apply suggestions from code review * Update geenrated routes * build(deps): bump the tanstack-router group in /frontend with 3 updates * Update the README * build(deps): bump psl from 2.1.119 to 2.1.120 * Update the contributing guidelines * build(deps-dev): bump @codecov/vite-plugin in /frontend * build(deps-dev): bump the storybook group in /frontend with 3 updates * Release documentation * build(deps): bump reqwest from 0.12.19 to 0.12.20 * Allow bumping major versions in the release workflow * build(deps): bump softprops/action-gh-release from 2.2.2 to 2.3.2 * build(deps): bump valibot from 1.0.0 to 1.1.0 in /frontend * build(deps-dev): bump msw-storybook-addon in /frontend * build(deps-dev): bump the types group in /frontend with 2 updates * build(deps-dev): bump @vitejs/plugin-react * build(deps): bump clap from 4.5.39 to 4.5.40 * build(deps): bump quanta from 0.12.5 to 0.12.6 * 0.17.0-rc.0 * Pin softprops/action-gh-release to v2.2.2 * Translations updates * Remove optional features from mas-iana & regenerate * Remove optional features from the mas-policy crate * Define all the dependencies at the workspace level * Update test snapshots * build(deps): bump psl from 2.1.116 to 2.1.119 * build(deps): bump base64ct from 1.7.3 to 1.8.0 * build(deps): bump the fontsource group in /frontend with 2 updates * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps-dev): bump the storybook group in /frontend with 3 updates * build(deps-dev): bump the vitest group in /frontend with 2 updates * build(deps): bump reqwest from 0.12.15 to 0.12.19 * build(deps): bump socket2 from 0.5.9 to 0.5.10 * build(deps): bump hyper-rustls from 0.27.6 to 0.27.7 * build(deps-dev): bump @types/node in /frontend in the types group * build(deps-dev): bump storybook-react-i18next * Schema update * Lint * GraphQL model docstring * Revert unnecessary change * Update schemas * Lint * Make plan_management_iframe_uri be a String not URL * Lint * Update frontend/src/routes/_account.plan.index.tsx * build(deps): bump the tanstack-query group in /frontend with 2 updates * Better error message when trying to create a registration token that already exists * Admin API to edit registration tokens * Admin API to un-revoke a user registration token. * build(deps): bump hyper-util from 0.1.13 to 0.1.14 * build(deps): bump psl from 2.1.114 to 2.1.116 * build(deps): bump clap from 4.5.38 to 4.5.39 * build(deps-dev): bump the graphql-codegen group * build(deps-dev): bump the storybook group in /frontend with 3 updates * Iterate * Get mutation observer working * build(deps): bump camino from 1.1.9 to 1.1.10 * Handle unloading * Review feedback * build(deps-dev): bump postcss from 8.5.3 to 8.5.4 in /frontend * build(deps-dev): bump happy-dom from 17.4.6 to 17.6.3 in /frontend * build(deps-dev): bump @types/react-dom in /frontend in the types group * build(deps): bump the tanstack-query group in /frontend with 2 updates * build(deps): bump tower-http from 0.6.4 to 0.6.6 * build(deps): bump hyper-rustls from 0.27.5 to 0.27.6 * Update encryption secret warning in docs * Skip encryption serialization if None * Treat content of encryption_file as hex-encoded * Skip deserialization if field is None * Document secrets.encryption_file * Use default implementation of validate function * Use futures-util dependency * Add whether the registration is valid or not in the admin API * CLI tool to issue user registration tokens * Admin API to revoke user registration tokens * Admin API to create a new user registration token * Admin API to get individual user registration tokens * Admin API to list user registration tokens * List and count methods on the UserRegistrationTokenRepository * Enforce registration token on registration * Registration token step view * Add config flag to require registration tokens for password registrations * Data model and repository for user registration tokens * Update generated GraphQL schema * build(deps): bump the tanstack-query group in /frontend with 2 updates * build(deps-dev): bump knip from 5.57.2 to 5.59.1 in /frontend * build(deps-dev): bump the types group in /frontend with 2 updates * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps-dev): bump @vitejs/plugin-react * build(deps): bump hyper-util from 0.1.11 to 0.1.13 * build(deps): bump tokio from 1.45.0 to 1.45.1 * build(deps): bump async-graphql from 7.0.16 to 7.0.17 * Add secrets.encryption_file config option * Update MSW to 2.8.7 * build(deps-dev): bump msw from 2.7.5 to 2.8.7 in /frontend * build(deps-dev): bump the vitest group in /frontend with 2 updates * build(deps-dev): bump the storybook group in /frontend with 3 updates * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps-dev): bump @vitejs/plugin-react * build(deps): bump the tanstack-query group in /frontend with 2 updates * build(deps): bump psl from 2.1.111 to 2.1.114 * build(deps): bump sqlx from 0.8.5 to 0.8.6 * build(deps): bump headers from 0.4.0 to 0.4.1 * Do fallback redirect at router level * Use <Navigate> component insert of redirect() * Load keys concurrently * Refactor key options in secret config * Refactor password options in secret config * Add KeyConfig doc comment * Add futures crate * Reduce the cache time for 404s on the assets * Add the user deactivation state in the admin API * Redirect to / if no URI configured * Upgrade to Storybook 9 * build(deps): bump the i18next group in /frontend with 2 updates * Allow applying unicode normalisation to passwords before hashing * delint * Add tests * build(deps): bump docker/bake-action from 6.7.0 to 6.8.0 * build(deps): bump bitflags from 2.9.0 to 2.9.1 * build(deps): bump uuid from 1.16.0 to 1.17.0 * build(deps): bump sea-query from 0.32.5 to 0.32.6 in the sea-query group * build(deps-dev): bump the vitest group in /frontend with 2 updates * build(deps-dev): bump @graphql-codegen/typescript-msw * build(deps): bump swagger-ui-dist from 5.21.0 to 5.22.0 in /frontend * build(deps): bump the tanstack-query group in /frontend with 2 updates * build(deps-dev): bump the types group across 1 directory with 3 updates * build(deps-dev): bump knip from 5.54.1 to 5.57.2 in /frontend * build(deps): bump psl from 2.1.106 to 2.1.111 * Add missing `branding` config to docs * build(deps): bump codecov/codecov-action from 5.4.2 to 5.4.3 * build(deps): bump @vector-im/compound-web in /frontend * build(deps): bump docker/bake-action from 6.6.0 to 6.7.0 * Fix client_registration URI regex not accepting full query string grammar * build(deps): bump tower-http from 0.6.3 to 0.6.4 * build(deps): bump clap from 4.5.37 to 4.5.38 * build(deps): bump the tanstack-router group in /frontend with 3 updates * Tidy up * Lint * Lint * Default height value * Revert "No need for the action as can link direct to /account/plan" * Fix encoding of MXIDs when creating devices in Synapse * build(deps): bump rustls-platform-verifier from 0.5.2 to 0.5.3 * build(deps): bump crc from 3.2.1 to 3.3.0 * build(deps): bump tower-http from 0.6.2 to 0.6.3 * build(deps): bump sea-query from 0.32.4 to 0.32.5 in the sea-query group * build(deps-dev): bump the types group in /frontend with 2 updates * build(deps): bump the tanstack-query group in /frontend with 2 updates * build(deps): bump i18next in /frontend in the i18next group * build(deps-dev): bump vite-plugin-graphql-codegen * Move the test * Allow non-default https port * Fix Swagger UI callback path * opa fmt * Fix MSC2966 compliance around redirect_uri validity * Adjust tokio metrics for tokio 1.45 * build(deps): bump rustls from 0.23.26 to 0.23.27 * build(deps-dev): bump the graphql-codegen group * cargo fmt * Explain why nonce is optional now * Don't hold db conns when creating a device on the compat login API * Use the new RepositoryFactory everywhere * Move the pool acquisition metric logic to the PgRepositoryFactory * Introduce a RepositoryFactory * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps): bump i18next in /frontend in the i18next group * build(deps-dev): bump the vite group in /frontend with 2 updates * build(deps): bump rustls-pki-types from 1.11.0 to 1.12.0 * build(deps): bump tokio from 1.44.2 to 1.45.0 * build(deps): bump minijinja-contrib from 2.9.0 to 2.10.2 * Make the default scope on upstream providers config `openid` * Don't generate and send a nonce for non-OIDC-compliant auth requests * Don't always insert the `openid` scope in upstream OAuth 2.0 requests * Allow the X-Requested-With header in CORS on the OAuth endpoints * Make the security schemes relative in the static OpenAPI spec * Use absolute URLs in the OAuth 2.0 security scheme in the API spec * Update upstream_oauth2.providers docs. * Update copyright header * Update the login schema docs. * build(deps-dev): bump the vitest group in /frontend with 2 updates * Log the trace ID in the log line only if the span is sampled * Sample traces based on the parent span if available * Suppress warning with Jaeger propagator when the header is unset * Fix database snapshot. * Generate the schema (which fixes a typo amongst other things 🤦♂️) * Add missing parameter. * Add a configuration for forwarding the login hint to the upstream provider. * Fix clippy error. * Fix lint error. * Forward the login_hint upstream. * build(deps): bump minijinja from 2.9.0 to 2.10.2 * build(deps-dev): bump knip from 5.51.1 to 5.54.1 in /frontend * build(deps): bump the tanstack-query group in /frontend with 2 updates * build(deps): bump axum from 0.8.3 to 0.8.4 in the axum group * Translations updates * Hacky support for the /logout/all compatibility endpoint * build(deps): bump psl from 2.1.105 to 2.1.106 * Update translactions from Localazy * Don't let Localazy fallback to the source language * Check rendering of templates with all supported locales. * Make sure to check all the templates * Make the check functions on templates crate private * build(deps-dev): bump happy-dom from 17.4.4 to 17.4.6 in /frontend * build(deps): bump sha2 from 0.10.8 to 0.10.9 * No need for the action as can link direct to /account/plan * Set the iframe height based on content height * Format * Fixes * WIP support for experimental plan management tab in UI ------------------------------------------------------------------- Tue May 06 14:44:43 UTC 2025 - Marcus Rueckert <mrueckert@suse.de> - Update to version 0.16.0: * 0.16.0 * 0.16.0-rc.1 * Translations updates * syn2mas: allow setting the db name via the `database` field * 0.16.0-rc.0 * Translations updates * build(deps-dev): bump @tanstack/react-router-devtools * Bump all the frontend dependencies * build(deps): bump chrono from 0.4.40 to 0.4.41 * build(deps): bump psl from 2.1.102 to 2.1.105 * build(deps): bump insta from 1.42.2 to 1.43.1 * build(deps-dev): bump vite in /frontend in the vite group * build(deps-dev): bump storybook-react-i18next * build(deps-dev): bump the vitest group in /frontend with 2 updates * Apply suggestions from code review * build(deps-dev): bump knip from 5.50.2 to 5.51.0 in /frontend * Rework the error fallback to better report the error to Sentry * Remove duplicate OTEL meter for the Tokio runtime * Allow Synapse user deactivation to take up to 5 minutes * Remove the global read_timeout on the HTTP client * Don't check for availability of usernames that aren't ASCII * Record the axum route in the Sentry context * build(deps): bump rustls-platform-verifier from 0.5.1 to 0.5.2 * Add a gauge which tracks the number of pending activity records * Reduce the size of the activity tracker batches * Avoid using anyhow in the activity tracker worker * Use a tokio interval instead of a sleep in the activity tracker * Avoid deadlocks when updating the last activity of sessions * frontend: allow setting custom names to sessions * graphql: add mutation to update device name * storage: methods to set the sessions human name * frontend: display the custom device name on OAuth 2.0 sessions * admin: expose the sessions 'human_name' * graphql: expose the humanName field on OAuth 2.0 sessions * storage: add a user-provided human name to OAuth 2.0 sessions * Generate a device name based on the client name and user agent * build(deps): bump docker/bake-action from 6.5.0 to 6.6.0 * templates: introduce a `parse_user_agent` filter and use it in the device consent page * Save the locale detected when starting an authorization grant * compat: allow setting an initial_device_display_name on login * frontend: expose the compat session humanName * storage: allow setting the human_name when creating compat sessions * matrix: allow setting a custom device display name * build(deps): bump tokio-util from 0.7.14 to 0.7.15 * Fix the ordering of the middlewares * perf: avoid unnecessary clones of the log context * Don't parse the user agent unless we need to * Compile the user-agent regexes once * docs: stop talking about the .well-known/matrix/client changes * Document the new migration tool * Fix cargo doc choking on invalid [DEPRECATED] 'link' * syn2mas: document new tool * Remove CI for the old syn2mas tool * Remove the code of the old syn2mas tool * Format code * Suggestions from code review: * build(deps): bump der from 0.7.9 to 0.7.10 * build(deps): bump clap from 4.5.36 to 4.5.37 * build(deps-dev): bump the vite group across 1 directory with 2 updates * build(deps): bump sigstore/cosign-installer from 3.8.1 to 3.8.2 * build(deps): bump psl from 2.1.100 to 2.1.102 * build(deps): bump sea-query from 0.32.3 to 0.32.4 in the sea-query group * syn2mas: introduce a dry-run mode * syn2mas: log progress more often * Allow syn2mas arguments to be specified after the subcommand * Add a few missing license headers * syn2mas: drop the experimental flag * syn2mas: provide guidance on how to re-do a fresh migration * syn2mas: warn about existing oauth-delegated user_external_ids * syn2mas: spawn the writer connections in parallel * syn2mas: only log once when rebuilding constraints * syn2mas: log the number of entities migrated at each step * syn2mas: reduce the channel buffer size * syn2mas: remove the `MasWriter::write_` methods and replaced them in tests * syn2mas: make the MasWriteBuffer use the WriteBatch trait * syn2mas: implement WriteBatch for MasNewCompatRefreshToken * syn2mas: implement WriteBatch for MasNewCompatAccessToken * syn2mas: implement WriteBatch for MasNewCompatSession * syn2mas: implement WriteBatch for MasNewUpstreamOauthLink * syn2mas: implement WriteBatch for MasNewUnsupportedThreepid * syn2mas: implement WriteBatch for MasNewEmailThreepid * Remove reference to unsupported aws_ses email transport * syn2mas: implement WriteBatch for MasNewUserPassword * syn2mas: implement WriteBatch for MasNewUser * syn2mas: introduce a WriteBatch trait to refactor how we write to MAS * syn2mas: add a buffered channel for writing refreshable tokens * syn2mas: add a buffered channel for writing external IDs * syn2mas: add a buffered channel for writing threepids * Option to generate a MAS config from an existing Synapse config * Move the synapse_idp_id field to the top of the provider section * Make a few password-related options public in the config crate * syn2mas: replace #[allow] annotations with #[expect] * syn2mas: refactor the metrics logic in the progress module * tasks: don't rely on #[instrument(err)] for logging errors * Record the job result from within the job LogContext * Replace most remaining #[instrument(err)] annotations * Make the error wrapper log errors * Create log contexts for accepted connections & log errors in them * handlers::views: don't rely on #[instrument(err)] to capture errors * handlers::upstream_oauth2: don't rely on #[instrument(err)] to capture errors * handlers::oauth2: don't rely on #[instrument(err)] for error logging * Fix Sentry creating transactions for every request * Make the FancyError type log the error when being transformed into a response. * Better errors for the introspection endpoint * Better logging of client cretentials verification errors * handlers::oauth2::token: Way better error logging on the token endpoint * handlers::compat: don't rely on #[instrument(err)] for logging errors * handlers::admin: don't rely on #[instrument(err)] for logging errors * Exclude the HTTP server response events from Sentry * Macro to record an HTTP response error with the Sentry event ID attached * Log on every HTTP response * Add context to some log messages * Roll our own event formatter * Provide log context stats in a separate structure * Create a few basic logging contexts * Introduce a task-level log context * build(deps): bump swagger-ui-dist from 5.20.7 to 5.21.0 in /frontend * build(deps-dev): bump the vite group across 1 directory with 2 updates * build(deps): bump sqlx from 0.8.4 to 0.8.5 * Fix headings in config doc * Run ./misc/update.sh * Fix clippy error * Skip serialization if not provided client_name * Add client_name to static registrations function and generate new query data * Format project with nightly toolchain * build(deps): bump codecov/codecov-action from 5.4.0 to 5.4.2 * Format project * Add comment to explain sync workflow * Fix incorrect async usage on client_credentials_for_provider * Populate private key for SIWA in sync.rs so it is simply storing private_key in db using the provided file (if given) * Update MSW * build(deps-dev): bump msw from 2.7.3 to 2.7.4 in /frontend * Format project and run misc/update.sh * Simplify credentials getter and just add new provider error for dupe keys * Fix indent * Add private_key_file option for apple sso and edit docs * fix(docs): add token_endpoint_auth_method in Authentik SSO example ------------------------------------------------------------------- Wed Apr 30 23:56:00 UTC 2025 - Marcus Rueckert <mrueckert@suse.de> - Update to version 0.15.0: * 0.15.0 * Translations updates * Fix starting up when no telemetry config is set * 0.15.0-rc.0 * Translations updates * build(deps): bump psl from 2.1.99 to 2.1.100 * Translations updates * Allow database tests to run in parallel again * build(deps): bump sqlx from 0.8.3 to 0.8.4 * build(deps): bump clap from 4.5.35 to 4.5.36 * build(deps): bump anyhow from 1.0.97 to 1.0.98 * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps): bump actions/setup-node from 4.3.0 to 4.4.0 * build(deps-dev): bump the types group in /frontend with 2 updates * build(deps): bump the tanstack-query group in /frontend with 2 updates * build(deps-dev): bump @types/node * Minor rewording * build(deps-dev): bump vite in /frontend in the vite group * build(deps-dev): bump knip from 5.48.0 to 5.50.2 in /frontend * build(deps): bump the tanstack-query group in /frontend with 2 updates * build(deps-dev): bump @types/react-dom in /frontend in the types group * Upgrade the Prometheus crate to 0.14.0 * Handle the case where there are multiple users with the same username, but with a different casing. * build(deps): bump vergen-gitcl from 1.0.7 to 1.0.8 * build(deps): bump opentelemetry-prometheus in the opentelemetry group * Remove the `complete` handler, make it go through the consent page * Remove the reauth view * Document password scheme secret field for migrations * Always ask for consent, never for reauth * Update translations/en.json * Also lowercase the username when checking if it exists. * Lookup usernames case insensitively * Create missing indexes for all the foreign keys in the database. * correct format and translation * add login by email + feature flag * build(deps): bump rustls from 0.23.25 to 0.23.26 * build(deps): bump crossbeam-channel in the cargo group * Translations updates * build(deps): bump vergen-gitcl from 1.0.5 to 1.0.7 * Fallback link in password recovery emails * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps-dev): bump knip from 5.46.5 to 5.48.0 in /frontend * Handle the correct conflict * Separate spans * Use serde_json::Error::is_data() to distinguish error kinds * Allow requests to the compat login endpoint without a Content-Type header * build(deps): bump psl from 2.1.98 to 2.1.99 * Support database poolers: clean up LISTEN/NOTIFY state when opening a connection * build(deps): bump ruma-common from 0.15.1 to 0.15.2 * build(deps): bump swagger-ui-dist from 5.20.6 to 5.20.7 in /frontend * build(deps-dev): bump typescript from 5.8.2 to 5.8.3 in /frontend * clippy fix * Fix doc comment * Properly record the queries in two spans * Added Discord to default upstream oauth2 providers, regenerated config schema * Translations updates * Upgrade Rust to 1.86.0 * Fix Clippy lints introduced by Rust 1.86 * Update locked dependencies * Upgrade bcrypt to 0.17.0 * Update opa-wasm to 0.1.5 * Upgrade to rustls 0.23.25 * Upgrade compat_str from 0.8.1 to 0.9.0 * Upgrade OpenTelemetry to 0.29.0 * cargo-deny: allow both rand 0.8 and 0.9 * Upgrade Sentry to 0.37.0 * Check that sample rates are in range in the config * Allow setting the OTLP tracing sample rate * Allow setting the Sentry environment & sample rates * build(deps-dev): bump @testing-library/react in /frontend * build(deps-dev): bump @types/node in /frontend in the types group * build(deps): bump swagger-ui-dist from 5.20.1 to 5.20.6 in /frontend * build(deps): bump tokio from 1.44.1 to 1.44.2 * build(deps): bump indexmap from 2.8.0 to 2.9.0 * Update snapshots * build(deps): bump @vector-im/compound-web in /frontend * build(deps): bump the react group across 1 directory with 4 updates * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps-dev): bump the development group across 1 directory with 2 updates * build(deps): bump the tanstack-query group in /frontend with 2 updates * UNFINISHED: finish active sessions when replacing a device * build(deps-dev): bump vite in /frontend in the npm_and_yarn group * compat login (sso): support using client-provided device_id * build(deps-dev): bump the storybook group in /frontend with 6 updates * build(deps-dev): bump knip from 5.46.4 to 5.46.5 in /frontend * build(deps-dev): bump @types/node in /frontend in the types group * build(deps): bump minijinja-contrib from 2.8.0 to 2.9.0 * build(deps): bump clap from 4.5.34 to 4.5.35 * build(deps): bump the tanstack-router group in /frontend with 3 updates * Clear the session cookie on logout from the GraphQL API * build(deps): bump minijinja from 2.8.0 to 2.9.0 * build(deps): bump hyper-util from 0.1.10 to 0.1.11 * build(deps-dev): bump knip from 5.46.2 to 5.46.4 in /frontend * build(deps-dev): bump @tanstack/react-query-devtools * build(deps-dev): bump vite in /frontend in the vite group * build(deps): bump the tanstack-query group in /frontend with 2 updates * build(deps-dev): bump the vitest group in /frontend with 2 updates * build(deps): bump psl from 2.1.97 to 2.1.98 * build(deps): bump socket2 from 0.5.8 to 0.5.9 * build(deps): bump pest_derive from 2.7.15 to 2.8.0 * build(deps): bump the axum group with 2 updates * build(deps-dev): bump @types/node * build(deps): bump yaml in /tools/syn2mas in the production group * Added upstream sample config for Discord, brand logo in templates * Missing token_endpoint_auth_method field in upstream sample config for Github * build(deps): bump tar-fs in /tools/syn2mas in the npm_and_yarn group * build(deps): bump @vector-im/compound-web in /frontend * build(deps-dev): bump the storybook group in /frontend with 6 updates * build(deps-dev): bump @graphql-codegen/client-preset * build(deps-dev): bump @types/node in /frontend in the types group * build(deps): bump psl from 2.1.96 to 2.1.97 * build(deps): bump mozilla-actions/sccache-action from 0.0.8 to 0.0.9 * build(deps): bump clap from 4.5.32 to 4.5.34 * Update governor to 0.10.0 * Record metrics for upstream OAuth 2.0 logins and registrations * Record metrics for upstream OAuth 2.0 callbacks * Record password registrations * Record password login attempts * Record metrics for OAuth 2.0 client registrations * Record metrics for OAuth 2.0 token requests * Record compat logout metrics * Record compat login metrics * Add metrics for introspection requests * Sort client registration metadata fields before hashing * build(deps-dev): bump knip from 5.46.0 to 5.46.2 in /frontend * Ensure client metadata hashing is stable * Deduplicate client registrations by hashing the metadata * build(deps): bump pest from 2.7.15 to 2.8.0 * Replace data-encoding with base64ct * Update test snapshots * Use automatic route code splitting * Don't include the target/ directory in the Docker build layers * build(deps): bump time from 0.3.40 to 0.3.41 * build(deps-dev): bump vite in /frontend in the vite group * build(deps-dev): bump the storybook group in /frontend with 6 updates * build(deps-dev): bump the development group * compat login (password): support using client-provided device ID * Observe tokio runtime metrics * Build the Tokio runtime manually, without #[tokio::main] * Enable the tokio unstable features * build(deps-dev): bump @types/node in /frontend in the types group * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps): bump async-graphql from 7.0.15 to 7.0.16 * build(deps): bump @vector-im/compound-web in /frontend * build(deps): bump actions/upload-artifact from 4.6.1 to 4.6.2 * build(deps-dev): bump @types/react in /frontend in the types group * build(deps): bump psl from 2.1.95 to 2.1.96 * build(deps): bump reqwest from 0.12.14 to 0.12.15 * build(deps): bump valibot from 1.0.0-rc.4 to 1.0.0 in /frontend * build(deps): bump the tanstack-router group in /frontend with 3 updates * change filter condition so that Some(false) does not signify dehydrated * don't delete devices marked as dehydrated devices * syn2mas: remove obsolete TODOs * build(deps): bump time from 0.3.39 to 0.3.40 * build(deps): bump the tanstack-router group in /frontend with 3 updates * syn2mas: fix handling of missing Synapse `password_config` config * syn2mas: fix handling of Synapse `user_consent` config * build(deps): bump clap from 4.5.30 to 4.5.32 * build(deps-dev): bump @types/react in /frontend in the types group * build(deps): bump the tanstack-query group in /frontend with 2 updates * build(deps): bump psl from 2.1.94 to 2.1.95 * build(deps-dev): bump the storybook group in /frontend with 6 updates * Disable Verification for Microsoft Azure AD OIDC * syn2mas: use ChaCha20 for all operations * Admin API endpoint to remove upstream link * Link removal storage API * build(deps): bump the production group in /tools/syn2mas with 2 updates * build(deps): bump rustls-platform-verifier from 0.5.0 to 0.5.1 * build(deps): bump async-trait from 0.1.87 to 0.1.88 * build(deps): bump aide from 0.14.1 to 0.14.2 * Admin API endpoint to add upstream link * build(deps-dev): bump the vitest group in /frontend with 2 updates * build(deps): bump actions/setup-node from 4.2.0 to 4.3.0 * build(deps): bump uuid from 1.15.1 to 1.16.0 * build(deps): bump insta from 1.42.1 to 1.42.2 * build(deps): bump psl from 2.1.93 to 2.1.94 * Use `DurationSeconds` * Add `expires_in` to introspection responses * build(deps-dev): bump the storybook group in /frontend with 6 updates * build(deps): bump base64ct from 1.6.0 to 1.7.3 * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps): bump indoc from 2.0.5 to 2.0.6 * build(deps): bump sea-query from 0.32.2 to 0.32.3 in the sea-query group * build(deps): bump the tanstack-query group in /frontend with 2 updates * build(deps): bump tokio from 1.44.0 to 1.44.1 * build(deps): bump @vector-im/compound-web in /frontend * build(deps-dev): bump @tanstack/react-router-devtools * build(deps-dev): bump vite in /frontend in the vite group * build(deps): bump anyhow from 1.0.96 to 1.0.97 * build(deps): bump rsa from 0.9.7 to 0.9.8 * build(deps): bump docker/login-action from 3.3.0 to 3.4.0 * Track skipped entities in the syn2mas progress * fixup! syn2mas: Add progress reporting to log and to opentelemetry metrics * build(deps): bump i18next in /frontend in the i18next group * build(deps-dev): bump knip from 5.45.0 to 5.46.0 in /frontend * build(deps): bump @vector-im/compound-web in /frontend * build(deps-dev): bump @tanstack/react-router-devtools * build(deps): bump tokio-util from 0.7.13 to 0.7.14 * build(deps): bump thiserror from 2.0.11 to 2.0.12 * build(deps): bump psl from 2.1.86 to 2.1.93 * Prune stale policy data once a day * Add a comment on the migration stating that we keep an history of the policy data * Change the default value of `account_deactivation_allowed` to `true`. * Explain what the 'hsErase' parameter does * Make sure the mobile drawers can scroll if they overflow * syn2mas: Add progress reporting to log and to opentelemetry metrics * Adjust the avatar size and list styling to match the design * build(deps): bump reqwest from 0.12.12 to 0.12.14 * build(deps): bump serde from 1.0.218 to 1.0.219 * build(deps): bump indexmap from 2.7.1 to 2.8.0 * build(deps): bump the production group in /tools/syn2mas with 2 updates * Use the react-specific packages for tanstack router * build(deps): bump the tanstack-router group in /frontend with 3 updates * Add the new configuration option to the configuration reference * Allow users to delete their account in the UI * Use our own implementation of the Separator component * GraphQL mutation to deactivate a user * Config option to allow account self-deactivation * Move the `verify_password_if_needed` helper up one level * Add dependency on arc-swap to syn2mas, moving it to a workspace dependency * Remove TODO on MIGRATOR * syn2mas: improve performance of reading access tokens / refresh tokens * syn2mas: disable logging of slow statements * build(deps): bump valibot from 1.0.0-rc.3 to 1.0.0-rc.4 in /frontend * build(deps-dev): bump happy-dom from 17.4.3 to 17.4.4 in /frontend * build(deps): bump the tanstack-query group in /frontend with 2 updates * build(deps): bump http-body-util from 0.1.2 to 0.1.3 * build(deps): bump minijinja-contrib from 2.7.0 to 2.8.0 * build(deps): bump http from 1.2.0 to 1.3.1 * build(deps): bump @babel/runtime in /frontend in the npm_and_yarn group * Update crates/cli/src/commands/syn2mas.rs * Update test snapshots * Fix missing 'ui_order' field in tests * Order the OAuth providers in the UI by their order in the config file * Better feedback on failure cases during login * syn2mas: import the deactivation and locked status independently * Proper error when the account is deactivated or locked on upstream SSO login * Better error pages when a user is deactivated or locked * Mark the user as deactivated in the user deactivation job * Repository method to deactivate a user. * Add a `deactivated_at` flag on users * Remove user emails when deactivating a user * Allow removing email addresses in bulk * Stop writing to the old email confirmation-related tables * build(deps): bump chrono from 0.4.39 to 0.4.40 * build(deps): bump time from 0.3.37 to 0.3.39 * build(deps): bump console from 0.15.10 to 0.15.11 * build(deps): bump tokio from 1.43.0 to 1.44.0 * build(deps): bump tokio-rustls from 0.26.1 to 0.26.2 * build(deps-dev): bump happy-dom from 17.2.2 to 17.4.3 in /frontend * build(deps): bump lettre from 0.11.14 to 0.11.15 * build(deps): bump the tanstack-router group in /frontend with 3 updates * Update comment * build(deps-dev): bump @types/node * build(deps): bump swagger-ui-dist from 5.20.0 to 5.20.1 in /frontend * build(deps-dev): bump autoprefixer from 10.4.20 to 10.4.21 in /frontend * build(deps-dev): bump @types/node in /frontend in the types group * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps): bump mozilla-actions/sccache-action from 0.0.7 to 0.0.8 * build(deps): bump EmbarkStudios/cargo-deny-action from 2.0.10 to 2.0.11 * build(deps): bump bytes from 1.10.0 to 1.10.1 * build(deps): bump wiremock from 0.6.2 to 0.6.3 * build(deps): bump minijinja from 2.7.0 to 2.8.0 * Add TODO on dry-run flag in syn2mas tool * Better report errors when a writing task fails * Read and write users in different tasks * Use rustc' FxHasher instead of the std one * Better tracing during the migration * Make sure tracing spans are propagated in `tokio::task::spawn` * Log timings of migrations and index/constraint rebuilds * Add spans for the constraint/index drop operations * Add a bit of padding in the syn2mas output * Don't include access tokens where the referenced device has vanished * Don't read refresh tokens that don't have associated access tokens * For performance, switch to a row count estimate for users and devices * Replace panic on unfinished buffers with an error * Downgrade presence of guests and unsupported 3pids to warnings * Remove obsolete OIDC provider warning * build(deps-dev): bump vite in /frontend in the vite group * build(deps): bump the tanstack-router group across 1 directory with 3 updates * Properly accumlate form errors on the upstream register page * Ignore RUSTSEC-2024-0436 and RUSTSEC-2024-0437 for now * Update generated graphql.ts * build(deps): bump convert_case from 0.7.1 to 0.8.0 * build(deps): bump bitflags from 2.8.0 to 2.9.0 * build(deps): bump uuid from 1.14.0 to 1.15.1 * Adjust the jobs retry delays and number of attempts * build(deps): bump the tanstack-query group in /frontend with 2 updates * build(deps-dev): bump @tanstack/router-vite-plugin * build(deps-dev): bump @graphql-codegen/client-preset * build(deps-dev): bump the vitest group in /frontend with 2 updates * Remove unnecessary @ts-expect-error * build(deps): bump the tanstack-router group across 1 directory with 3 updates * Update Ring to 0.17.13 to fix RUSTSEC-2025-0009 * Confirm account password before adding/removing email addresses * Require the user password to add or remove an email address * build(deps): bump @vector-im/compound-design-tokens in /frontend * build(deps-dev): bump the storybook group in /frontend with 6 updates * build(deps-dev): bump happy-dom from 17.1.9 to 17.2.2 in /frontend * build(deps-dev): bump @types/node in /frontend in the types group * build(deps): bump peter-evans/create-pull-request from 7.0.7 to 7.0.8 * build(deps): bump EmbarkStudios/cargo-deny-action from 2.0.6 to 2.0.10 * build(deps): bump valibot from 1.0.0-rc.2 to 1.0.0-rc.3 in /frontend * build(deps-dev): bump happy-dom from 17.1.8 to 17.1.9 in /frontend * build(deps-dev): bump typescript from 5.7.3 to 5.8.2 in /frontend * Handle AS users with invalid localparts edge case * syn2mas: use NonNilUuid for MAS user IDs * build(deps-dev): bump @types/node in /frontend in the types group * build(deps): bump the tanstack-query group across 1 directory with 2 updates * Allow configuring the connection to the homeserver to be read-only. * Remove generic error type & always use an Arc on the HS connection * build(deps): bump async-trait from 0.1.86 to 0.1.87 * build(deps): bump schemars from 0.8.21 to 0.8.22 * build(deps): bump serde_json from 1.0.139 to 1.0.140 * build(deps): bump the fontsource group in /frontend with 2 updates * build(deps-dev): bump the storybook group in /frontend with 6 updates * build(deps): bump the tanstack-router group across 1 directory with 3 updates * build(deps-dev): bump the development group * Revert "Ignore colons in localparts when importing users" * Remove spuriuous ICU errors from the logs * Show proper error messages when registering with a banned/not-allowed username * Document the new username ban/allow policy * Allow banning/alllowing usernames patterns during registration * build(deps): bump swagger-ui-dist from 5.19.0 to 5.20.0 in /frontend * build(deps-dev): bump the storybook group in /frontend with 6 updates * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps): bump docker/setup-buildx-action from 3.9.0 to 3.10.0 * build(deps): bump codecov/codecov-action from 5.3.1 to 5.4.0 * build(deps): bump docker/bake-action from 6.4.0 to 6.5.0 * build(deps): bump docker/metadata-action from 5.6.1 to 5.7.0 * Actualy read appservice users, but don't insert them * Ignore 'guest_devices' in synapse * Ignore '-' as ip on devices * Ignore colons in localparts when importing users * Pass the MasWriter as owned to the various migration functions * Fix the CI not outputting the image metadata on PRs * Trigger the build workflow on PRs with a label * build(deps-dev): bump knip from 5.44.5 to 5.45.0 in /frontend * Regularly load the latest dynamic policy data from the database * Make the admin API update the local policy data * policy: allow dynamically setting policy data * build(deps-dev): bump happy-dom from 17.1.4 to 17.1.8 in /frontend * build(deps): bump valibot from 1.0.0-rc.1 to 1.0.0-rc.2 in /frontend * build(deps): bump @vector-im/compound-web in /frontend * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps-dev): bump vite in /frontend in the vite group * build(deps-dev): bump the vitest group in /frontend with 2 updates * build(deps-dev): bump the storybook group in /frontend with 6 updates * Admin API to get and set policy data * storage: store dynamic policy data in the database * Remove warnings about password auth not being feature complete * Update msw to 2.7.3 * build(deps-dev): bump the development group * build(deps-dev): bump msw from 2.7.1 to 2.7.3 in /frontend * build(deps): bump actions/upload-artifact from 4.6.0 to 4.6.1 * build(deps): bump EmbarkStudios/cargo-deny-action from 2.0.5 to 2.0.6 * build(deps): bump peter-evans/create-pull-request from 7.0.6 to 7.0.7 * Include the new GraphQL property in test mocks * Only show the password change section if the user has a password * Bump most Rust dependencies * build(deps-dev): bump knip from 5.44.4 to 5.44.5 in /frontend * build(deps-dev): bump happy-dom from 17.1.1 to 17.1.4 in /frontend * build(deps-dev): bump @types/node in /frontend in the types group * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps-dev): bump @graphql-codegen/client-preset * Fix some old Synapse access tokens not being recognized * Update msw * Upgrade ICU4X crates to 0.15 * Upgrade OpenTelemetry to 0.28 * build(deps-dev): bump msw from 2.7.0 to 2.7.1 in /frontend * build(deps-dev): bump knip from 5.44.1 to 5.44.4 in /frontend * build(deps): bump swagger-ui-dist from 5.18.3 to 5.19.0 in /frontend * build(deps-dev): bump happy-dom from 17.1.0 to 17.1.1 in /frontend * Run misc/update.sh * Update frontend test snapshots * Update the compound design tokens, replace the error icon with error-solid * build(deps): bump @vector-im/compound-web in /frontend * Install Rust stable when running the tests * CI: call `cargo metadata` with the `--no-deps` flag when extracting the version * Force the cargo-deny action to update to stable rust * Update Clippy in the CI * Use cargo resolver version 3 * Remove explicit imports of std::future::Future, as it is now in the prelude * Convert a few closures + async move to async closures * Upgrade to Rust 1.85 and edition 2024 * Update the frontend test snapshots * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps-dev): bump postcss from 8.5.2 to 8.5.3 in /frontend * build(deps): bump valibot from 1.0.0-rc.0 to 1.0.0-rc.1 in /frontend * build(deps): bump anyhow from 1.0.95 to 1.0.96 * build(deps): bump the tanstack-query group in /frontend with 2 updates * build(deps): bump uuid from 1.13.2 to 1.14.0 * build(deps): bump sigstore/cosign-installer from 3.8.0 to 3.8.1 * Test more error cases of the compatibility login endpoint * Support the deprecated 'user' field on the compat /login endpoint * build(deps): bump serde from 1.0.217 to 1.0.218 * build(deps): bump serde_json from 1.0.138 to 1.0.139 * build(deps-dev): bump the storybook group in /frontend with 6 updates * build(deps-dev): bump vite in /frontend in the vite group * build(deps): bump the tanstack-query group across 1 directory with 2 updates * build(deps-dev): bump the vitest group in /frontend with 2 updates * build(deps-dev): bump @graphql-codegen/client-preset * build(deps): bump EmbarkStudios/cargo-deny-action from 2.0.4 to 2.0.5 * Allow compat session devices to have spaces * build(deps): bump psl from 2.1.85 to 2.1.86 * build(deps): bump uuid from 1.13.1 to 1.13.2 * build(deps): bump docker/bake-action from 6.3.0 to 6.4.0 * Convert IPv6-mapped IPv4 addresses to IPv4 addresses * Fix upstream OAuth 2.0 callbacks using the form_post method * build(deps): bump the tanstack-router group across 1 directory with 3 updates * build(deps-dev): bump the types group across 1 directory with 3 updates * build(deps): bump the tanstack-query group across 1 directory with 2 updates * build(deps): bump the i18next group across 1 directory with 2 updates * build(deps-dev): bump the storybook group in /frontend with 6 updates * build(deps): bump clap from 4.5.29 to 4.5.30 * build(deps): bump sea-query from 0.32.1 to 0.32.2 in the sea-query group * Update OPA and Regal to their latest versions * Match suffixes and prefixes in string constraints * Add translatable errors for the email policy constraints * Update the policy documentation * Built-in support for banning IPs, user agents and email patterns * build(deps): bump lettre from 0.11.12 to 0.11.13 * build(deps-dev): bump @types/node * Expose the user agent string to the policy execution context * Merge the GraphQL requester and requester fingerprint into a single struct * Allow banning registrations by IP address * Remove the unused password input schema * Pass an input object to the policy evaluation instead of multiple arguments * Don't block the upstream oauth registration if the suggested username is invalid * Fix the HTTP status code for the user creation admin endpoint * Admin API to add user emails * Admin API to delete user emails ------------------------------------------------------------------- Thu Feb 20 11:03:40 UTC 2025 - mrueckert@suse.de - Update to version 0.14.1: * 0.14.1 * Fix a crash on startup when a listener has an empty prefix ------------------------------------------------------------------- Tue Feb 18 22:41:41 UTC 2025 - mrueckert@suse.de - Update to version 0.14.0: * 0.14.0 * Translations updates * 0.14.0-rc.0 * Fix the release workflow references to scripts * Translations updates * build(deps-dev): bump @graphql-codegen/cli * build(deps-dev): bump @types/node * build(deps): bump the production group in /tools/syn2mas with 3 updates * Readjust a few spacings * Remove unnecessary wrapper around account page header * Make the new sign-out button translatable * Polish the session details * build(deps): bump psl from 2.1.84 to 2.1.85 * Move from zod to valibot to reduce the frontend bundle size * Bump all frontend dependencies * Update README.md * Fix the rendering of the embedded API doc * Add documentation for session timeout configuration * Only expire sessions from dynamic clients * Allow filtering sessions by client kind (dynamic or static) * Experimental feature to timeout inactive sessions * build(deps-dev): bump postcss from 8.5.1 to 8.5.2 in /frontend * build(deps-dev): bump @codecov/vite-plugin in /frontend * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps): bump clap from 4.5.28 to 4.5.29 * build(deps): bump rustls from 0.23.22 to 0.23.23 * Setup job to expire inactive browser sessions * Setup a job to expire compatibility sessions * Setup a job to expire OAuth 2.0 sessions * Allow filtering OAuth sessions with any/no user * Allow filtering by subject in the upstream OAuth links admin API * storage: allow filtering upstream OAuth links by subject * Admin API to list and get upstream OAuth links * Switch to swagger-ui-dist, to avoid sharing the same react version * Load Swagger UI earlier * Enable operation deep-linking in the admin API docs * Fix the user session admin API docs * build(deps): bump psl from 2.1.83 to 2.1.84 * Fix the upstream OAuth 2.0 callback form deserialisation * build(deps-dev): bump @graphql-codegen/client-preset * build(deps-dev): bump vite-plugin-graphql-codegen * build(deps-dev): bump the storybook group in /frontend with 6 updates * Admin API to list and get user sessions * Fix the definition of the set-password success response in the OpenAPI spec * Admin API to list and get compatibility sessions * Admin API to list and get user emails * build(deps): bump data-encoding from 2.7.0 to 2.8.0 * build(deps): bump aide from 0.14.0 to 0.14.1 * build(deps): bump the tanstack-router group across 1 directory with 3 updates * build(deps-dev): bump happy-dom from 16.8.1 to 17.0.2 in /frontend * build(deps-dev): bump @types/node * Pass the migration state as owned to the various stages * Update README.md * Encapsulate migration state in a single structure * Add reference to worker page * Add documentation to account for all cli mas options and standardise format * build(deps): bump p384 from 0.13.0 to 0.13.1 * build(deps): bump psl from 2.1.82 to 2.1.83 * Remove the lifetime parameter from MasWriter * Make the MAS connection owned in the locked database struct * Update links to policy files * build(deps): bump docker/setup-buildx-action from 3.8.0 to 3.9.0 * Fix the unstable build CI job * Update most Rust dependencies & disable some unused features * Update generated files * Extract CI scripts in separate files * Refactor actions to reuse shared steps * Use the ubuntu-24.04 runners in CI * Move the custom Cargo config to the right place * Enable fat LTO & reduce the number of codegen units * Split the mas-cli archives & fix job dependencies * Always run the build workflow on PRs * Speedup CI by splitting binary builds for each architecture * build(deps-dev): bump vite in /frontend in the vite group * build(deps-dev): bump @graphql-codegen/client-preset * build(deps): bump uuid from 1.12.1 to 1.13.1 * build(deps): bump async-trait from 0.1.85 to 0.1.86 * build(deps): bump clap from 4.5.27 to 4.5.28 * build(deps): bump async-graphql from 7.0.14 to 7.0.15 * build(deps): bump sigstore/cosign-installer from 3.7.0 to 3.8.0 * Stop using cargo-chef in the docker build * Use the x86-64-v2 pseudo-ABI when building for x86_64 targets * Don't return errors when finding rows dependent upon appservice users * Support reading and writing guests * Split access tokens between refreshable and unrefreshable ones * Add `MasWriter` support for compat refresh tokens + some migration progress * Add `MasWriter` support for compat access tokens * Add `MasWriter` support for compat sessions * Introduce optional `human_name` column on `compat_sessions` * Add `SynapseReader` support for devices * Add stubs for migrating devices, access tokens and refresh tokens * When consuming a compat refresh token, consume others in the session * Add `SynapseReader` support for access tokens and refresh tokens * build(deps): bump the tanstack-router group across 1 directory with 3 updates * build(deps-dev): bump the npm_and_yarn group in /frontend with 2 updates * build(deps): bump lettre from 0.11.11 to 0.11.12 * build(deps): bump bytes from 1.9.0 to 1.10.0 * build(deps-dev): bump @types/node * build(deps-dev): bump @types/node * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps): bump psl from 2.1.81 to 2.1.82 * build(deps): bump ruma-common from 0.15.0 to 0.15.1 * build(deps-dev): bump the storybook group in /frontend with 6 updates * Switch to the new scroll restoration API & update snapshots * build(deps): bump the tanstack-router group across 1 directory with 3 updates * build(deps): bump rustls from 0.23.21 to 0.23.22 * build(deps-dev): bump happy-dom from 16.7.3 to 16.8.1 in /frontend * build(deps): bump the tanstack-query group in /frontend with 2 updates * Fetch the upstream OIDC metadata in the background on startup * syn2mas: Support migrating external IDs as upstream OAuth2 providers (#3917) * Fix the account page crash introduced in #3893 * Don't prevent starting up if the mail backend is unavailable * syn2mas: Add tests for reading and writing threepids (#3907) * build(deps): bump minijinja-contrib from 2.6.0 to 2.7.0 * build(deps): bump hyper from 1.5.2 to 1.6.0 * build(deps): bump serde_json from 1.0.137 to 1.0.138 * build(deps-dev): bump knip from 5.43.3 to 5.43.6 in /frontend * build(deps): bump swagger-ui-react and @types/swagger-ui-react * build(deps-dev): bump happy-dom from 16.7.2 to 16.7.3 in /frontend * build(deps): bump the tanstack-router group in /frontend with 3 updates * Fix crash if the watchdog is not set * Buffer reading of translation files * Allow passing MXIDs in the login page * Allow passing MXIDs in compat password logins * Avoid unnecessary clones in the login_hint parser * Utility to extract the localpart from a MXID * build(deps): bump the tanstack-router group in /frontend with 3 updates * build(deps-dev): bump @types/node in /frontend in the types group * build(deps): bump the tanstack-query group in /frontend with 2 updates * build(deps-dev): bump the graphql-codegen group * Run reload handlers in parallel * Advertise the main PID through sd_notify on startup * Rename ShutdownManager to LifecycleManager * build(deps): bump rustls-pki-types from 1.10.1 to 1.11.0 * build(deps): bump tokio-stream from 0.1.16 to 0.1.17 * build(deps): bump compact_str from 0.8.0 to 0.8.1 * build(deps): bump thiserror-ext from 0.2.0 to 0.2.1 * build(deps): bump minijinja from 2.6.0 to 2.7.0 * Send notifications about the state of the service to systemd * Handle SIGHUPs as part of the shutdown manager * Clarify why one would override the introspection_endpoint * syn2mas: Migrate threepids to MAS (#3878) * Add a test for the syn2mas `SynapseReader` * Add TODO for Synapse config merge * Add pre-migration checks to syn2mas (#3805) * Add some tests for the syn2mas `MasWriter` (#3800) * Foundation of new syn2mas tool (#3636) * Support compatibility sessions that do not have devices (#3801) * build(deps): bump psl from 2.1.80 to 2.1.81 * build(deps): bump insta from 1.42.0 to 1.42.1 * Upgrade axum to 0.8 * build(deps): bump actions/setup-node from 4.1.0 to 4.2.0 * build(deps): bump codecov/codecov-action from 5.3.0 to 5.3.1 * build(deps-dev): bump @types/node * build(deps-dev): bump the storybook group in /frontend with 6 updates * build(deps): bump i18next in /frontend in the i18next group * build(deps-dev): bump vite-plugin-graphql-codegen * build(deps-dev): bump the types group across 1 directory with 2 updates * build(deps-dev): bump knip from 5.43.1 to 5.43.3 in /frontend * build(deps): bump codecov/codecov-action from 5.2.0 to 5.3.0 * build(deps): bump docker/bake-action from 6.2.0 to 6.3.0 * Add 'introspection_endpoint' to homeserver config example ------------------------------------------------------------------- Sat Feb 8 22:58:16 UTC 2025 - Marcus Rueckert <mrueckert@suse.de> - allow older rust versions ------------------------------------------------------------------- Sat Feb 08 22:09:01 UTC 2025 - mrueckert@suse.de - Update to version 0.13.0: * 0.13.0 * Translations updates * Open merge-back-release PRs from a seprate branch * 0.13.0-rc.2 * Translations updates * Also run the build workflow on PRs to a release branch ------------------------------------------------------------------- Sat Feb 8 22:08:02 UTC 2025 - Marcus Rueckert <mrueckert@suse.de> - initial package
