Gitiles
Code Review Sign In
gerrit.hackerspace.pl / hscloud / 5ff2ccf5dfded755ec90e5b84bcaf38eb82bb49b
commit5ff2ccf5dfded755ec90e5b84bcaf38eb82bb49b[log] [tgz]
authorPiotr Dobrowolski <informatic@hackerspace.pl>Wed Apr 27 03:39:36 2022 +0200
committerinformatic <informatic@hackerspace.pl>Sun May 01 08:17:57 2022 +0000
treea3283950ccdbb6b88dba0297e04f6cf8c2cd367f
parent8bd24f4a968e7aa2d44a216cb63f82c478359e4d [diff]
app/matrix: force non-id_token flow to fix SSO

Presence of id_token in IDP token response causes synapse to demand
jwks_uri to be present in config/metadata. (login flow failing with
<<Missing "jwks_uri" in metadata>> message)
This behaviour was introduced somewhere between 1.42.0 and 1.56.0.

This is currently not set up correctly on sso.hackerspace.pl (we hand
out hs256 tokens instead of proper rsa ones) so this change will make it
fall back to non-oidc/plain oauth2 flow.

Change-Id: I4ff8aa175b4f0bbdcb3ee993b7cbd4545eac561a
Reviewed-on: https://gerrit.hackerspace.pl/c/hscloud/+/1302
Reviewed-by: informatic <informatic@hackerspace.pl>
Reviewed-by: q3k <q3k@hackerspace.pl>
1 file changed
tree: a3283950ccdbb6b88dba0297e04f6cf8c2cd367f
  1. app/
  2. bgpwtf/
  3. bzl/
  4. cluster/
  5. dc/
  6. devtools/
  7. doc/
  8. games/
  9. gcp/
  10. go/
  11. hswaw/
  12. kube/
  13. nix/
  14. ops/
  15. personal/
  16. third_party/
  17. tools/
  18. .bazelrc
  19. .gitignore
  20. BUILD
  21. ci_presubmit.sh
  22. COPYING
  23. default.nix
  24. env.fish
  25. env.sh
  26. hackdoc.toml
  27. OWNERS
  28. README.md
  29. shell.nix
  30. WORKSPACE
README.md

hscloud is the main monorepo of the Warsaw Hackerspace infrastructure code.

Getting started

See //doc/codelabs for tutorials on how to use hscloud.

If you want to browse the source of hscloud in a web browser, use cs.hackerspace.pl.

If you want some other help, talk to q3k, informatic or your therapist.

Directory Structure

Directories you should care about:

  • app: external services that we host that are somewhat universal: matrix, covid-formity, etc.
  • bgpwtf: code related to our little ISP
  • cluster: code related to our Kubernetes cluster (k0.hswaw.net)
  • dc: code related to datacenter automation
  • devtools: code related to developer tooling, like gerrit or hackdoc
  • doc: high-level documentation that doesn't fit anywhere else, ie. codelabs
  • hswaw: Warsaw Hackerspace specific/internal services. The line between this and app is unfortunately blurry.
  • personal: user's personal (experimental) directories
  • kube, go: code specific to languages but general to the whole of hscloud

Licensing

Unless noted otherwise, code in hscloud is licensed under the BSD 0-clause license - see COPYING.