Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature: PDS entryway service #1722

Closed
wants to merge 180 commits into from
Closed

Feature: PDS entryway service #1722

wants to merge 180 commits into from

Conversation

devinivy
Copy link
Collaborator

@devinivy devinivy commented Oct 9, 2023

Feature branch, handling identity for accounts across multiple PDSes.

devinivy added 23 commits October 5, 2023 11:52
@devinivy
scratch work on multi-pds auth
975e166
@devinivy
move from jsonwebtoken to jose package, impl secp256k1 auth token
3a59d67
@devinivy
pds assignment, pds in tokens
73e137c
@devinivy
move authPassthru util
966572e
@devinivy
setup proxying repo write ops
c463200
@devinivy
authed and unauthed proxying on com.atproto.repo endpoints
36f359b
@devinivy
unify authed and unauthed pds proxying
25e08b8
@devinivy
adapt admin endpoints for multi-pds
e59beca
@devinivy
pds-proxy report creation and app.bsky endpoints
92f3434
@devinivy
fix
c9c6d0a
@devinivy
move takedown id from repo_root to user_account, make repo_root optio…
7a62a2c 
…nal for accounts
@devinivy
cleanup ensuring on correct pds, add to uploadBlob
02062bc
@devinivy
Merge remote-tracking branch 'origin/multi-pds-auth-keys' into multi-…
b8ffe9b 
…pds-auth-gone-repo
@devinivy
feature branch diff
ab9dcb5
@devinivy
start testing multi-pds flows, update dev-env mocks
5862d37
@devinivy
misc fixes, tests
8c7e5fe
@devinivy
test pds entryway auth w/o priv keys on both servers
bf3dc05
@devinivy
weighted pds assignment
5f4882e
@devinivy
test auth flow when switching pdses
ad093f4
@devinivy
tidy
8b6f61a
@devinivy
configure pds as non-entryway, validate aud on non-entry, test
52022c0
@devinivy
tidy tests
21197c2
@devinivy
tidy tests
98dbf17
@devinivy devinivy changed the title Manage accounts across PDSes Feature: manage accounts across PDSes Oct 12, 2023
This was referenced Oct 12, 2023
Merged
Merged
Merged
Merged
@devinivy
Proxy for accounts across PDSes (#1724)
f7720d8 
* scratch work on multi-pds auth

* move from jsonwebtoken to jose package, impl secp256k1 auth token

* pds assignment, pds in tokens

* move authPassthru util

* setup proxying repo write ops

* authed and unauthed proxying on com.atproto.repo endpoints

* unify authed and unauthed pds proxying

* adapt admin endpoints for multi-pds

* pds-proxy report creation and app.bsky endpoints

* fix

* cleanup ensuring on correct pds, add to uploadBlob

* tidy

* tidy key promises
@devinivy
Merge remote-tracking branch 'origin/multi-pds-auth' into multi-pds-a…
2da07fc 
…uth-gone-repo
devinivy and others added 25 commits February 8, 2024 12:04
@devinivy
Sync entryway lexicons (#2147)
59494a5 
* sync lexicons with main

* fix test
@dholms
Entryway: plivo integration (#2155)
e3b9eb6 
* hook up plivo to entryway

* fix up test

* build branch

* comment

* fix up dev-env

* explicit on conflict col

* Entryway: multi verifier (#2156)

* add multi verifier

* add second try flag

* fix
@dholms
interface
b318aa1
@dholms
refactor a bit
8812d94
@devinivy
build
617ca74
@dholms
Merge branch 'multi-pds-auth' into abuse-checker
9761d75
@dholms
add very short rate limit
98dbb14
@foysalit
✨ Pass along comment with modEventEmail (#2162)
7de61a7
@dholms
increase createAccoutn rate limit
f5314ed
@devinivy
Support admin account deletion on entryway (#2177)
f758803 
* support admin acct deletion

* fail acct deletion if it fails on downstream pds
@dholms
add new idx to refresh_token table
6d13ba3
@dholms
fix codegen
7dc1cd5
@dholms
re-codegen
de46659
@dholms
add HanlderPipeThrough type to xrpc-server
875595a
@dholms
change back feedgen test
fb7ac0d
@dholms
Merge pull request #2186 from bluesky-social/entryway-codegen
950ca85 
Entryway codegen
@devinivy
sync lexicons
38867bb
@devinivy
Setup alternative self-verification in account creation (#2189)
7d8ce2c 
* setup self-verification logic in account creation

* alt verification tests

* allow passing express app to entryway

* require code only after registration checker verdict
@dholms
Entryway account migration (#2185)
40397e5 
* add schemas & codegen + getServiceAuth

* proxy activiate/deactivate account

* fleshing out plc op flow

* add email for requested plc op

* recodegen

* compile correct template for plc op email

* pr feedback

* update describeServer
@devinivy
Entryway: support jwe self-verification tokens (#2234)
abf8011 
* entryway: support jwe self-verification tokens

* entryway: add test for verification code w/ bad jwe key
@devinivy
Entryway sending email via account service auth, deprecate mod servic…
f0058e8 
…e email flow (#2271)

* allow sending email via account service auth, deprecate mod service email flow

* tests on account service auth
@devinivy
Entryway: pull correct key from based on mod service did ref (#2275)
7eb9eb4 
entryway: pull correct key from based on mod service did ref
@dholms
add new tools.ozone lexicons to entryway (#2299)
104ea99
@devinivy
Pass proxy header along with auth passthrough (#2311)
4ac82c6 
pass proxy header along with auth passthrough
@dholms
Entryway: add labeler.getServices (#2336)
2272ce5 
* add labeler lexicons, codegen & getServices impl

* re-codegen
@devinivy devinivy closed this May 2, 2024
@devinivy devinivy deleted the multi-pds-auth branch May 2, 2024 14:28
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@devinivy @dholms @pfrazee @foysalit