summary refs log tree commit diff
path: root/synapse/api/auth (follow)
Commit message (Expand)AuthorAgeFilesLines
* MSC3861: allow overriding the introspection endpoint (#17406)Quentin Gliech2024-07-081-2/+13
* Allow enabling sliding sync per-user (#17393)Erik Johnston2024-07-053-1/+74
* Correctly mention previous copyright (#16820)Erik Johnston2024-01-234-0/+4
* Merge remote-tracking branch 'gitlab/clokep/license-license' into new_developErik Johnston2023-12-134-40/+64
|\
| * Update license headersPatrick Cloke2023-11-214-40/+64
* | Keep track of `user_ips` and `monthly_active_users` when delegating auth (#16...David Robertson2023-11-233-38/+53
|/
* Fix possible AttributeError when account-api is called over unix socket (#16404)Christoph2023-10-091-1/+1
* Refactor `get_user_by_id` (#16316)Erik Johnston2023-09-142-2/+2
* Revert MSC3861 introspection cache, admin impersonation and account lock (#16...Quentin Gliech2023-09-061-85/+6
* Add an admin endpoint to allow authorizing server to signal token revocations...Shay2023-08-221-0/+13
* MSC3861: allow impersonation by an admin using a query param (#16132)Mathieu Velten2023-08-181-3/+22
* Add response time metrics for introspection requests (#16131)Erik Johnston2023-08-181-7/+27
* Cache token introspection response from OIDC provider (#16117)Shay2023-08-171-2/+38
* Implements admin API to lock an user (MSC3939) (#15870)Mathieu Velten2023-08-103-1/+28
* Add stricter mypy options (#15694)Patrick Cloke2023-05-311-1/+1
* Enforce that an admin token also has the basic Matrix API scopeQuentin Gliech2023-05-301-5/+2
* Reject tokens with multiple device scopesQuentin Gliech2023-05-301-6/+24
* Make OIDC scope constantsQuentin Gliech2023-05-301-10/+15
* Handle errors when introspecting tokensQuentin Gliech2023-05-301-5/+37
* Make AS tokens work & allow ASes to /registerQuentin Gliech2023-05-303-83/+88
* Add an admin token for MAS -> Synapse callsQuentin Gliech2023-05-301-0/+15
* Refactor config to be an experimental featureHugh Nimmo-Smith2023-05-301-25/+28
* Actually enforce guest + return www-authenticate headerHugh Nimmo-Smith2023-05-301-2/+16
* MSC2967: Check access token scope for use as user and add guest supportHugh Nimmo-Smith2023-05-301-10/+20
* Use `name` claim as display name when registering users on the fly.Hugh Nimmo-Smith2023-05-301-1/+8
* Record the `sub` claims as an external_idQuentin Gliech2023-05-301-22/+37
* Handle the Synapse admin scopeQuentin Gliech2023-05-301-0/+3
* Save the scopes in the requesterQuentin Gliech2023-05-301-0/+1
* Initial MSC3964 support: delegation of auth to OIDC serverQuentin Gliech2023-05-301-0/+227
* Make the api.auth.Auth a ProtocolQuentin Gliech2023-05-303-0/+817