cqrenet/mxids
3
0
Fork 0
Code Pull Requests 10 Actions Releases Activity
9 Commits 18 Branches 73 Tags
3509c9d94aa7e5390adae70efd27d7814a114879
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Maxime Dor 3509c9d94a Improved README
2017-01-30 17:57:10 +01:00
gradle/wrapper
First implementation
2017-01-23 04:10:03 +01:00
src/main
License header on new files
2017-01-27 02:19:06 +01:00
.gitignore
First implementation
2017-01-23 04:10:03 +01:00
.travis.yml
Enforce JDK 8 in Travis-CI
2017-01-27 02:16:23 +01:00
application.example.yaml
First implementation
2017-01-23 04:10:03 +01:00
build.gradle
First implementation
2017-01-23 04:10:03 +01:00
gradlew
First implementation
2017-01-23 04:10:03 +01:00
gradlew.bat
First implementation
2017-01-23 04:10:03 +01:00
LICENSE
First implementation
2017-01-23 04:10:03 +01:00
README.md
Improved README
2017-01-30 17:57:10 +01:00

README.md

Travis-CI build status

Introduction

mxisd is an implementation of the Matrix Identity Server which aims to provide an alternative to sydent and an external validation implementation of the Identity Service API.

mxisd is currently in read-only mode with the following lookup strategies in priority order:

  • LDAP: lookup the Matrix ID from an configurable attribute.
  • Forwarder: Proxy the request to other identity servers (matrix.org and vector.im currently hardcoded).

Quick start

Requirements

  • JDK 1.8

Build

git clone https://github.com/kamax-io/mxisd.git
cd mxisd
./gradlew build

Configure

  1. Create a new local config: cp application.example.yaml application.yaml
  • Edit application.yaml to your needs - at least provide the LDAP attributes
  • Edit an entity in your LDAP database and set the configure attribute with a Matrix ID (e.g. @johndoe:example.org)

Run

Start the server in foreground:

./gradlew bootRun

Ensure the signing key is available:

curl http://localhost:8090/_matrix/identity/api/v1/pubkey/ed25519:0

Validate your LDAP config and binding info (replace the e-mail):

curl http://localhost:8090/_matrix/identity/api/v1/lookup?medium=email&address=johndoe@example.org

If you plan on testing the integration with a homeserver, you will need to run an HTTPS reverse proxy in front of it as the homeserver implementation seems to require a HTTPS connection to an ID server.

Install

  1. Create a dedicated user: useradd -r mxisd
  • Create config directory: mkdir /etc/mxis
  • Change user ownership of /etc/mxis to dedicated user: chown mxisd /etc/mxis
  • Copy ./build/libs/mxisd to /usr/bin/mxisd: sudo cp ./build/libs/mxisd /usr/bin/mxisd
  • Copy (or create a new) ./application.yaml to /etc/mxis/mxisd.yaml
  • Configure /etc/mxis/mxisd.yaml with production value - key.path being the most important - /etc/mxis/signing.key is recommended
  • Copy main/systemd/mxisd.service to /etc/systemd/system/ and edit as needed
  • Enable service: systemctl enable mxisd
  • Start service: systemctl start mxisd

TODO

  • Deb package
  • Docker container
  • Auto-discovery of matrix ids based on server name and username-like attribute
Description
Federated Matrix Identity Server (formerly fork of mauta/ma1sd)
Readme AGPL-3.0 3.5 MiB
Languages
Java 99%
Shell 0.8%
HTML 0.1%