cqrenet/mxids
3
0
Fork 0
Code Pull Requests 10 Actions Releases Activity
11 Commits 18 Branches 73 Tags
208d0b9efaa6a54b6135d6d136198d178771a3a6
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Maxime Dor 208d0b9efa Fix typo
2017-02-09 13:10:15 +01:00
gradle/wrapper
First implementation
2017-01-23 04:10:03 +01:00
src/main
DNS lookup strategy
2017-02-04 06:21:07 +01:00
.gitignore
First implementation
2017-01-23 04:10:03 +01:00
.travis.yml
Enforce JDK 8 in Travis-CI
2017-01-27 02:16:23 +01:00
application.example.yaml
First implementation
2017-01-23 04:10:03 +01:00
build.gradle
DNS lookup strategy
2017-02-04 06:21:07 +01:00
gradlew
First implementation
2017-01-23 04:10:03 +01:00
gradlew.bat
First implementation
2017-01-23 04:10:03 +01:00
LICENSE
First implementation
2017-01-23 04:10:03 +01:00
README.md
Fix typo
2017-02-09 13:10:15 +01:00

README.md

Travis-CI build status

Introduction

mxisd is an implementation of the Matrix Identity Server which aims to provide an alternative to sydent and an external validation implementation of the Identity Service API.

mxisd is currently in read-only mode and use a priority lookup strategy with several providers.

Given the 3PID john.doe@example.org, the following would be performed in priority order until a mapping is found:

  • LDAP: lookup the Matrix ID from a configurable attribute.
  • DNS: lookup another Identity Server using the domain part of an e-mail and:
    • Look for a SRV record under _identity._matrix._tcp.example.org
    • Lookup using the base domain name example.org
  • Forwarder: Proxy the request to other identity servers (matrix.org and vector.im currently hardcoded).

Quick start

Requirements

  • JDK 1.8

Build

git clone https://github.com/kamax-io/mxisd.git
cd mxisd
./gradlew build

Configure

  1. Create a new local config: cp application.example.yaml application.yaml
  • Edit application.yaml to your needs - at least provide the LDAP attributes
  • Edit an entity in your LDAP database and set the configure attribute with a Matrix ID (e.g. @john.doe:example.org)

Run

Start the server in foreground:

./gradlew bootRun

Ensure the signing key is available:

curl http://localhost:8090/_matrix/identity/api/v1/pubkey/ed25519:0

Validate your LDAP config and binding info (replace the e-mail):

curl "http://localhost:8090/_matrix/identity/api/v1/lookup?medium=email&address=john.doe@example.org"

If you plan on testing the integration with a homeserver, you will need to run an HTTPS reverse proxy in front of it as the homeserver implementation seems to require a HTTPS connection to an ID server.

Install

  1. Create a dedicated user: useradd -r mxisd
  • Create config directory: mkdir /etc/mxis
  • Change user ownership of /etc/mxis to dedicated user: chown mxisd /etc/mxis
  • Copy ./build/libs/mxisd to /usr/bin/mxisd: sudo cp ./build/libs/mxisd /usr/bin/mxisd
  • Copy (or create a new) ./application.yaml to /etc/mxis/mxisd.yaml
  • Configure /etc/mxis/mxisd.yaml with production value - key.path being the most important - /etc/mxis/signing.key is recommended
  • Copy main/systemd/mxisd.service to /etc/systemd/system/ and edit as needed
  • Enable service: systemctl enable mxisd
  • Start service: systemctl start mxisd

TODO

  • Deb package
  • Docker container
Description
Federated Matrix Identity Server (formerly fork of mauta/ma1sd)
Readme AGPL-3.0 3.5 MiB
Languages
Java 99%
Shell 0.8%
HTML 0.1%