Filip/matrix-spec
1
0
Fork 0
mirror of https://github.com/matrix-org/matrix-spec synced 2026-01-07 16:33:43 +01:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity

Bump Matrix version

Browse source 
Signed-off-by: Kévin Commaille <zecakeh@tedomum.fr>
This commit is contained in:
Kévin Commaille 2025-12-19 10:35:09 +01:00
parent adcd6ba4a2
commit 5541bf1417
No known key found for this signature in database
GPG key ID: F26F4BE20A08255B
6 changed files with 11 additions and 9 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
content/client-server-api/_index.md
View file

@ -482,7 +482,7 @@ user management by [application services](application-service-api/#server-admin-
{{% /boxes/note %}}
{{% boxes/note %}}
{{% added-in v="1.17" %}}
{{% added-in v="1.18" %}}
A compatibility layer is available to ease the transition from the legacy API to
the OAuth 2.0 API for clients that only support the legacy API called [OAuth 2.0
aware clients](#oauth-20-aware-clients).
@ -1520,7 +1520,7 @@ client supports it, the client should redirect the user to the
is complete, the client will need to submit a `/login` request matching
`m.login.token`.
{{% added-in v="1.17" %}} [OAuth 2.0 aware clients](/client-server-api/#oauth-20-aware-clients)
{{% added-in v="1.18" %}} [OAuth 2.0 aware clients](/client-server-api/#oauth-20-aware-clients)
MUST only offer the `m.login.sso` flow to the user when `oauth_aware_preferred`
is set to `true` and MUST add the `action=login` parameter to the SSO redirect
endpoint.
@ -1617,6 +1617,8 @@ MAY reject weak passwords with an error code `M_WEAK_PASSWORD`.
#### OAuth 2.0 aware clients
{{% added-in v="1.18" %}}
This is a compatibility layer that allows clients that only support the legacy
API to make some less-invasive changes to improve the user experience when
talking to a homeserver that is using the OAuth 2.0 API without actually having

2
data/api/client-server/account_deactivation.yaml
View file

@ -37,7 +37,7 @@ paths:
identity server instead.
{{% boxes/warning %}}
{{% added-in v="1.17" %}} [OAuth 2.0 aware clients](/client-server-api/#oauth-20-aware-clients)
{{% added-in v="1.18" %}} [OAuth 2.0 aware clients](/client-server-api/#oauth-20-aware-clients)
MUST NOT use this endpoint when the server supports the [OAuth 2.0 API](/client-server-api/#oauth-20-api).
Instead they MUST refer the user to the [account management URL](/client-server-api/#oauth-20-account-management),
if available, and MAY use the `action=org.matrix.account_deactivate`

2
data/api/client-server/definitions/sso_login_flow.yaml
View file

@ -88,7 +88,7 @@ properties:
required: ['id', 'name']
oauth_aware_preferred:
type: boolean
x-addedInMatrixVersion: "1.17"
x-addedInMatrixVersion: "1.18"
description: |
Whether the `m.login.sso` flow is preferred over other flows for
[OAuth 2.0 aware clients](/client-server-api/#oauth-20-aware-clients).

4
data/api/client-server/device_management.yaml
View file

@ -144,7 +144,7 @@ paths:
{{% /boxes/warning %}}
{{% boxes/warning %}}
{{% added-in v="1.17" %}} [OAuth 2.0 aware clients](/client-server-api/#oauth-20-aware-clients)
{{% added-in v="1.18" %}} [OAuth 2.0 aware clients](/client-server-api/#oauth-20-aware-clients)
MUST NOT use this endpoint when the server supports the [OAuth 2.0 API](/client-server-api/#oauth-20-api).
Instead they MUST refer the user to the [account management URL](/client-server-api/#oauth-20-account-management),
if available, with the `action=org.matrix.device_delete` and `device_id={deviceId}` parameters.
@ -208,7 +208,7 @@ paths:
{{% /boxes/warning %}}
{{% boxes/warning %}}
{{% added-in v="1.17" %}} [OAuth 2.0 aware clients](/client-server-api/#oauth-20-aware-clients)
{{% added-in v="1.18" %}} [OAuth 2.0 aware clients](/client-server-api/#oauth-20-aware-clients)
MUST NOT use this endpoint when the server supports the [OAuth 2.0 API](/client-server-api/#oauth-20-api).
Instead they MUST refer the user to the [account management URL](/client-server-api/#oauth-20-account-management),
if available.

2
data/api/client-server/registration.yaml
View file

@ -62,7 +62,7 @@ paths:
[Matrix specification](/appendices/#user-identifiers).
{{% boxes/warning %}}
{{% added-in v="1.17" %}} [OAuth 2.0 aware clients](/client-server-api/#oauth-20-aware-clients)
{{% added-in v="1.18" %}} [OAuth 2.0 aware clients](/client-server-api/#oauth-20-aware-clients)
MUST NOT use this endpoint when the server offers the [`m.login.sso`
authentication flow](/client-server-api/#client-login-via-sso) with
`oauth_aware_preferred` set to `true`. Instead they MUST add the

4
data/api/client-server/sso_login_redirect.yaml
View file

@ -39,7 +39,7 @@ paths:
type: string
- in: query
name: action
x-addedInMatrixVersion: "1.17"
x-addedInMatrixVersion: "1.18"
description: |-
The action that the user wishes to take at the SSO redirect, for
[OAuth 2.0 aware clients](/client-server-api/#oauth-20-aware-clients).
@ -94,7 +94,7 @@ paths:
type: string
- in: query
name: action
x-addedInMatrixVersion: "1.17"
x-addedInMatrixVersion: "1.18"
description: |-
The action that the user wishes to take at the SSO redirect, for
[OAuth 2.0 aware clients](/client-server-api/#oauth-20-aware-clients).