From 4d8c7f1a7cc558fbd033e2e96143987d55763c00 Mon Sep 17 00:00:00 2001
From: Till-JS <101404291+Till-JS@users.noreply.github.com>
Date: Sun, 1 Feb 2026 02:49:45 +0100
Subject: [PATCH] =?UTF-8?q?=F0=9F=94=A7=20chore:=20temporarily=20disable?=
 =?UTF-8?q?=20OIDC=20in=20synapse=20config?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 docker/matrix/homeserver.yaml | 47 ++++++++++++++++-------------------
 1 file changed, 22 insertions(+), 25 deletions(-)

diff --git a/docker/matrix/homeserver.yaml b/docker/matrix/homeserver.yaml
index 36e2ba17b..3139b14ae 100644
--- a/docker/matrix/homeserver.yaml
+++ b/docker/matrix/homeserver.yaml
@@ -193,31 +193,28 @@ run_background_tasks_on: synapse
 # OIDC / SSO Configuration (Mana Core Auth)
 # ============================================
 
+# TEMPORARILY DISABLED - Fix OIDC client registration first
 # Enable SSO via Mana Core Auth OIDC Provider
-oidc_providers:
-  - idp_id: manacore
-    idp_name: "Mana Core"
-    idp_brand: "org.matrix.custom"
-    discover: true
-    issuer: "https://auth.mana.how"
-    client_id: "matrix-synapse"
-    client_secret: "ms-1ac3cfdd636e4688c927aa36feb1dfa79d84da73099a1dd9c9ceacb79a77e7cd"
-    scopes: ["openid", "profile", "email"]
-    # Map OIDC claims to Matrix user attributes
-    user_mapping_provider:
-      config:
-        subject_claim: "sub"
-        localpart_template: "{{ user.email.split('@')[0] }}"
-        display_name_template: "{{ user.name }}"
-        email_template: "{{ user.email }}"
-    # Allow account linking with existing Matrix accounts
-    allow_existing_users: true
-    # Auto-provision new users from OIDC
-    enable_registration: true
+# oidc_providers:
+#   - idp_id: manacore
+#     idp_name: "Mana Core"
+#     idp_brand: "org.matrix.custom"
+#     discover: true
+#     issuer: "https://auth.mana.how"
+#     client_id: "matrix-synapse"
+#     client_secret: "ms-1ac3cfdd636e4688c927aa36feb1dfa79d84da73099a1dd9c9ceacb79a77e7cd"
+#     scopes: ["openid", "profile", "email"]
+#     user_mapping_provider:
+#       config:
+#         subject_claim: "sub"
+#         localpart_template: "{{ user.email.split('@')[0] }}"
+#         display_name_template: "{{ user.name }}"
+#         email_template: "{{ user.email }}"
+#     allow_existing_users: true
+#     enable_registration: true
 
 # SSO UI Settings
-sso:
-  # Where to redirect after SSO login
-  client_whitelist:
-    - "https://element.mana.how"
-    - "https://matrix.mana.how"
+# sso:
+#   client_whitelist:
+#     - "https://element.mana.how"
+#     - "https://matrix.mana.how"