impl MSC2965: self-advertise as OIDC authentication provider

2025-08-06 17:40:59 +00:00 · 2025-04-17 17:59:29 +02:00 · 2025-04-17 17:59:29 +02:00 · c322cbcb79
commit c322cbcb79
parent a7e6f60b41
6 changed files with 125 additions and 2 deletions
--- a/src/config/mod.rs
+++ b/src/config/mod.rs
@ -67,6 +67,8 @@ pub struct Config {
    pub tracing_flame: bool,
    #[serde(default)]
    pub proxy: ProxyConfig,
+    #[serde(default)]
+    pub authentication: AuthenticationConfig,
    pub jwt_secret: Option<String>,
    #[serde(default = "default_trusted_servers")]
    pub trusted_servers: Vec<OwnedServerName>,
@ -115,6 +117,14 @@ pub struct WellKnownConfig {
    pub server: Option<OwnedServerName>,
 }

+#[derive(Clone, Debug, Deserialize, Default)]
+pub struct AuthenticationConfig {
+    #[serde(default = "false_fn")]
+    pub enable_oidc_login: bool,
+    #[serde(default = "false_fn")]
+    pub enable_oidc_account_management: bool,
+}
+
 const DEPRECATED_KEYS: &[&str] = &[
    "cache_capacity",
    "turn_username",
@ -260,6 +270,20 @@ impl fmt::Display for Config {
            }),
            ("Well-known server name", well_known_server.as_str()),
            ("Well-known client URL", &self.well_known_client()),
+            ("OIDC authentication",
+                if self.authentication.enable_oidc_login {
+                    "enabled"
+                } else {
+                    "disabled"
+                }
+            ),
+            ("OIDC account management enabled",
+                if self.authentication.enable_oidc_account_management {
+                    "enabled"
+                } else {
+                    "disabled"
+                }
+            ),
        ];

        let mut msg: String = "Active config values:\n\n".to_owned();