summary refs log tree commit diff
Commit message (Collapse)AuthorAgeFilesLines
...
| | * | | | | | Revert "Revert "Merge pull request #7153 from ↵Richard van der Hoff2020-04-034-1/+28
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | matrix-org/babolivier/sso_whitelist_login_fallback"" This reverts commit 0122ef1037c8bfe826ea09d9fc7cd63fb9c59fd1.
| | * | | | | | Revert "Revert "Improve the UX of the login fallback when using SSO (#7152)""Richard van der Hoff2020-04-033-22/+32
| | | |_|/ / / | | |/| | | | | | | | | | | | | | | | | | This reverts commit 8d4cbdeaa9765ae0d87ec82b053f12ed8162f6f5.
| | * | | | | Merge tag 'v1.12.3'Richard van der Hoff2020-04-035-10/+46
| | |\ \ \ \ \ | | | | |/ / / | | | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Synapse 1.12.3 (2020-04-03) =========================== - Remove the the pin to Pillow 7.0 which was introduced in Synapse 1.12.2, and correctly fix the issue with building the Debian packages. ([\#7212](https://github.com/matrix-org/synapse/issues/7212))
| | | * | | | tweak changelog v1.12.3 github/release-v1.12.3 release-v1.12.3Richard van der Hoff2020-04-031-5/+2
| | | | | | |
| | | * | | | 1.12.3Richard van der Hoff2020-04-034-4/+16
| | | | | | |
| | | * | | | Fix the debian build in a better way. (#7212)Richard van der Hoff2020-04-034-9/+36
| | | | | | |
| | * | | | | Merge tag 'v1.12.2'Richard van der Hoff2020-04-034-2/+20
| | |\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Synapse 1.12.2 (2020-04-02) =========================== This release fixes [an issue](https://github.com/matrix-org/synapse/issues/7208) with building the debian packages. No other significant changes since 1.12.1.
| | | * | | | Fix changelog wording v1.12.2 github/release-v1.12.2 release-v1.12.2Andrew Morgan2020-04-021-1/+1
| | | | | | |
| | | * | | | 1.12.2Andrew Morgan2020-04-023-1/+17
| | | | | | |
| | | * | | | Pin Pillow>=4.3.0,<7.1.0 to fix dep issueAndrew Morgan2020-04-021-1/+3
| | | | | | |
| | | * | | | 1.12.1Andrew Morgan2020-04-023-1/+13
| | | | | | |
| | * | | | | Revert "Merge pull request #7153 from ↵Richard van der Hoff2020-04-034-28/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | matrix-org/babolivier/sso_whitelist_login_fallback" This was incorrectly merged to master. This reverts commit 319c41f573eb14a966367b60b2e6e93bf6b028d9, reversing changes made to 229eb81498b0fe1da81e9b5b333a0285acde9446.
| | * | | | | Revert "Improve the UX of the login fallback when using SSO (#7152)"Richard van der Hoff2020-04-033-32/+22
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This was incorrectly merged to `master` instead of develop. This reverts commit 90246344e340bce3417fb330da6be9338a701c5c.
| * | | | | | Fix device list update stream ids going backward (#7158)Richard van der Hoff2020-04-033-2/+15
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Occasionally we could get a federation device list update transaction which looked like: ``` [ {'edu_type': 'm.device_list_update', 'content': {'user_id': '@user:test', 'device_id': 'D2', 'prev_id': [], 'stream_id': 12, 'deleted': True}}, {'edu_type': 'm.device_list_update', 'content': {'user_id': '@user:test', 'device_id': 'D1', 'prev_id': [12], 'stream_id': 11, 'deleted': True}}, {'edu_type': 'm.device_list_update', 'content': {'user_id': '@user:test', 'device_id': 'D3', 'prev_id': [11], 'stream_id': 13, 'deleted': True}} ] ``` Having `stream_ids` which are lower than `prev_ids` looks odd. It might work (I'm not actually sure), but in any case it doesn't seem like a reasonable thing to expect other implementations to support.
| * | | | | | Merge branch 'master' into developAndrew Morgan2020-04-024-4/+26
| |\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * master: 1.12.1 Note where bugs were introduced 1.12.1rc1 Newsfile Rewrite changelog Add changelog Only import sqlite3 when type checking Fix another instance Only setdefault for signatures if device has key_json Fix starting workers when federation sending not split out. Attempt to clarify Python version requirements (#7161) Improve the UX of the login fallback when using SSO (#7152) Update the wording of the config comment Lint Changelog Regenerate sample config Whitelist the login fallback by default for SSO
| | * | | | | Merge tag 'v1.12.1'Andrew Morgan2020-04-026-13/+55
| | |\ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Synapse 1.12.1 (2020-04-02) =========================== No significant changes since 1.12.1rc1. Synapse 1.12.1rc1 (2020-03-31) ============================== Bugfixes -------- - Fix starting workers when federation sending not split out. ([\#7133](https://github.com/matrix-org/synapse/issues/7133)). Introduced in v1.12.0. - Avoid importing `sqlite3` when using the postgres backend. Contributed by David Vo. ([\#7155](https://github.com/matrix-org/synapse/issues/7155)). Introduced in v1.12.0rc1. - Fix a bug which could cause outbound federation traffic to stop working if a client uploaded an incorrect e2e device signature. ([\#7177](https://github.com/matrix-org/synapse/issues/7177)). Introduced in v1.11.0. * tag 'v1.12.1': 1.12.1 Note where bugs were introduced 1.12.1rc1 Newsfile Rewrite changelog Add changelog Only import sqlite3 when type checking Fix another instance Only setdefault for signatures if device has key_json Fix starting workers when federation sending not split out.
| | | * | | | | 1.12.1 v1.12.1 github/release-v1.12.1 release-v1.12.1Andrew Morgan2020-04-023-1/+13
| | | |/ / / /
| | | * | | | Note where bugs were introduced v1.12.1rc1Andrew Morgan2020-03-311-3/+3
| | | | | | |
| | | * | | | 1.12.1rc1Andrew Morgan2020-03-315-4/+12
| | | | | | |
| | | * | | | NewsfileErik Johnston2020-03-311-0/+1
| | | | | | |
| | | * | | | Rewrite changelogAndrew Morgan2020-03-311-1/+1
| | | | | | |
| | | * | | | Add changelogAndrew Morgan2020-03-311-0/+1
| | | | | | |
| | | * | | | Only import sqlite3 when type checkingDavid Vo2020-03-312-2/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes: #7127 Signed-off-by: David Vo <david@vovo.id.au>
| | | * | | | Fix another instanceAndrew Morgan2020-03-311-5/+7
| | | | | | |
| | | * | | | Only setdefault for signatures if device has key_jsonAndrew Morgan2020-03-311-5/+7
| | | | | | |
| | | * | | | Fix starting workers when federation sending not split out.Erik Johnston2020-03-311-0/+12
| | | | |/ / | | | |/| |
| | * | | | Attempt to clarify Python version requirements (#7161)Richard van der Hoff2020-03-301-3/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | In particular, we depend on `typing.TYPE_CHECKING`, which is only present in 3.5.2. It turns out that Ubuntu Xenial, despite having a package called `python 3 (3.5.1-3)`, actually has python 3.5.2, so I think this is fine.
| | * | | | Improve the UX of the login fallback when using SSO (#7152)Brendan Abolivier2020-03-273-22/+32
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Don't show the login forms if we're currently logging in with a password or a token. * Submit directly the SSO login form, showing only a spinner to the user, in order to eliminate from the clunkiness of SSO through this fallback.
| | * | | | Merge pull request #7153 from matrix-org/babolivier/sso_whitelist_login_fallbackBrendan Abolivier2020-03-274-1/+28
| | |\ \ \ \ | | | | | | | | | | | | | | Always whitelist the login fallback for SSO
| | | * | | | Update the wording of the config commentBrendan Abolivier2020-03-272-6/+6
| | | | | | |
| | | * | | | LintBrendan Abolivier2020-03-261-5/+1
| | | | | | |
| | | * | | | ChangelogBrendan Abolivier2020-03-261-0/+1
| | | | | | |
| | | * | | | Regenerate sample configBrendan Abolivier2020-03-261-1/+5
| | | | | | |
| | | * | | | Whitelist the login fallback by default for SSOBrendan Abolivier2020-03-262-2/+28
| | | |/ / /
| * | | | | Support SAML in the user interactive authentication workflow. (#7102)Patrick Cloke2020-04-0111-44/+227
| | | | | |
| * | | | | Allow admins to create aliases when they are not in the room (#7191)Patrick Cloke2020-04-013-1/+68
| | | | | |
| * | | | | Update postgres.md (#7119)siroccal2020-04-012-1/+28
| | | | | |
| * | | | | Remove connections per replication stream metric. (#7195)Erik Johnston2020-04-012-16/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This broke in a recent PR (#7024) and is no longer useful due to all replication clients implicitly subscribing to all streams, so let's just remove it.
| * | | | | Improve TURN documentation. (#7167)Jostein Kjønigsen2020-03-312-0/+8
| | |_|/ / | |/| | |
| * | | | Fix "'NoneType' has no attribute start|stop" logcontext errors (#7181)Richard van der Hoff2020-03-313-7/+12
| | | | | | | | | | | | | | | | | | | | Fixes #7179.
| * | | | Fill in the 'default' field for user-defined push rules (#6639)Karlinde2020-03-312-0/+2
| | | | | | | | | | | | | | | Signed-off-by: Karl Linderhed <git@karlinde.se>
| * | | | Only setdefault for signatures if device has key_json (#7177)Andrew Morgan2020-03-312-10/+15
| | | | |
| * | | | Fix use of async/await in media code (#7184)Patrick Cloke2020-03-312-2/+3
| | | | |
| * | | | Fix a bug which could cause incorrect 'cyclic dependency' error. (#7178)Richard van der Hoff2020-03-312-12/+11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | If there was an exception setting up one of the attributes of the Homeserver god object, then future attempts to fetch that attribute would raise a confusing "Cyclic dependency" error. Let's make sure that we clear the `building` flag so that we just get the original exception. Ref: #7169
| * | | | Rewrite prune_old_outbound_device_pokes for efficiency (#7159)Richard van der Hoff2020-03-305-37/+173
| | | | | | | | | | | | | | | | | | | | make sure we clear out all but one update for the user
| * | | | Transfer alias mappings when joining an upgraded room (#6946)Andrew Morgan2020-03-303-3/+27
| | | | |
| * | | | Fix a small typo in the `metrics_flags` config option. (#7171)Andrew Morgan2020-03-303-2/+3
| | | | |
| * | | | Remove usage of "conn_id" for presence. (#7128)Erik Johnston2020-03-309-22/+86
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Remove `conn_id` usage for UserSyncCommand. Each tcp replication connection is assigned a "conn_id", which is used to give an ID to a remotely connected worker. In a redis world, there will no longer be a one to one mapping between connection and instance, so instead we need to replace such usages with an ID generated by the remote instances and included in the replicaiton commands. This really only effects UserSyncCommand. * Add CLEAR_USER_SYNCS command that is sent on shutdown. This should help with the case where a synchrotron gets restarted gracefully, rather than rely on 5 minute timeout.
| * | | | Merge pull request #7160 from ↵David Baker2020-03-303-3/+19
| |\ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | matrix-org/dbkr/always_send_own_device_list_updates Always send the user updates to their own device list
| | * | | | Add explanatory commentAndrew Morgan2020-03-302-1/+4
| | | | | |
| | * | | | blackDavid Baker2020-03-301-1/+3
| | | | | |
| | * | | | Just add own user ID to the list we track device changes forDavid Baker2020-03-302-7/+11
| | | | | |
| | * | | | Fix undefined variable & remove debug loggingDavid Baker2020-03-271-10/+2
| | | | | |
| | * | | | blackDavid Baker2020-03-271-4/+4
| | | | | |
| | * | | | changelogDavid Baker2020-03-271-0/+1
| | | | | |
| | * | | | Always send the user updates to their own device listDavid Baker2020-03-272-6/+20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This will allow clients to notify users about new devices even if the user isn't in any rooms (yet).
| * | | | | Merge pull request #7157 from matrix-org/rev.outbound_device_pokes_testsRichard van der Hoff2020-03-3011-22/+318
| |\ \ \ \ \ | | | | | | | | | | | | | | Add tests for outbound device pokes
| | * | | | | Add tests for outbound device pokesRichard van der Hoff2020-03-273-3/+302
| | | | | | |
| | * | | | | Remove spurious "name" parameter to `default_config`Richard van der Hoff2020-03-249-19/+16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | this is never set to anything other than "test", and is a source of unnecessary boilerplate.
| * | | | | | Add developer documentation for running a local CAS server (#7147)Patrick Cloke2020-03-303-2/+71
| | | | | | |
| * | | | | | Always whitelist the login fallback for SSO (#7153)Richard van der Hoff2020-03-274-1/+28
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | That fallback sets the redirect URL to itself (so it can process the login token then return gracefully to the client). This would make it pointless to ask the user for confirmation, since the URL the confirmation page would be showing wouldn't be the client's.
| * | | | | | Improve the UX of the login fallback when using SSO (#7152)Brendan Abolivier2020-03-273-22/+32
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Don't show the login forms if we're currently logging in with a password or a token. * Submit directly the SSO login form, showing only a spinner to the user, in order to eliminate from the clunkiness of SSO through this fallback.
| * | | | | | Admin API to join users to a room. (#7051)Dirk Klimpel2020-03-275-4/+405
| | | | | | |
| * | | | | | Add options to prevent users from changing their profile. (#7096)Dirk Klimpel2020-03-277-1/+449
| | | | | | |
| * | | | | | update debian installation instructions to recommend installing `virtualenv` ↵txt-file2020-03-272-1/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | instead of `python3-virtualenv` (#6892) * change debian package from python3-virtualenv to virtualenv The virtualenv package is needed for the virtualenv command. The virtualenv package depends on python3-virtualenv (at least since debian jessie) so there is no need to specify python3-virtualenv additionally. Signed-off-by: Vieno Hakkerinen <vieno@hakkerinen.eu> * Add changelog Co-authored-by: Andrew Morgan <andrew@amorgan.xyz>
| * | | | | | Ensure is_verified on /_matrix/client/r0/room_keys/keys is a boolean (#7150)Andrew Morgan2020-03-273-2/+4
| | | | | | |
| * | | | | | Only import sqlite3 when type checking (#7155)David Vo2020-03-272-2/+6
| | |/ / / / | |/| | | | | | | | | | | | | | | | Fixes: #7127 Signed-off-by: David Vo <david@vovo.id.au>
| * | | | | Merge pull request #7151 from matrix-org/jaywink/saml-redirect-fixJason Robinson2020-03-262-0/+5
| |\ \ \ \ \ | | | | | | | | | | | | | | Allow RedirectResponse in SAML response handler
| | * | | | | Update changelog.d/7151.bugfixJason Robinson2020-03-261-1/+1
| | | | | | | | | | | | | | | | | | | | | Co-Authored-By: Richard van der Hoff <1389908+richvdh@users.noreply.github.com>
| | * | | | | Allow RedirectResponse in SAML response handlerJason Robinson2020-03-262-0/+5
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Allow custom SAML handlers to redirect after processing an auth response. Fixes #7149 Signed-off-by: Jason Robinson <jasonr@matrix.org>
| * | | | | | Refactor the CAS code (move the logic out of the REST layer to a handler) ↵Patrick Cloke2020-03-265-155/+227
| | | | | | | | | | | | | | | | | | | | | | | | | | | | (#7136)
| * | | | | | Don't default to an invalid sqlite config if no database configuration is ↵Nektarios Katakis2020-03-262-22/+48
| | | | | | | | | | | | | | | | | | | | | | | | | | | | provided (#6573)
| * | | | | | Allow server admins to define and enforce a password policy (MSC2000). (#7118)Dirk Klimpel2020-03-2611-0/+437
| |/ / / / /
| * | | | | Validate that the session is not modified during UI-Auth (#7068)Patrick Cloke2020-03-268-14/+117
| | | | | |
| * | | | | Remove unused captcha_bypass_secret option (#7137)Aaron Raimist2020-03-253-9/+1
| | | | | | | | | | | | | | | | | | Signed-off-by: Aaron Raimist <aaron@raim.ist>
| * | | | | Move catchup of replication streams to worker. (#7024)Erik Johnston2020-03-2524-487/+635
| | | | | | | | | | | | | | | | | | This changes the replication protocol so that the server does not send down `RDATA` for rows that happened before the client connected. Instead, the server will send a `POSITION` and clients then query the database (or master out of band) to get up to date.
| * | | | | Various cleanups to INSTALL.md (#7141)Andrew Morgan2020-03-252-59/+40
| | | | | |
| * | | | | Merge pull request #7133 from matrix-org/erikj/fix_worker_startupErik Johnston2020-03-252-0/+13
| |\ \ \ \ \ | | | | | | | | | | | | | | Fix starting workers when federation sending not split out.
| | * | | | | NewsfileErik Johnston2020-03-241-0/+1
| | | | | | |
| | * | | | | Fix starting workers when federation sending not split out.Erik Johnston2020-03-241-0/+12
| | | |/ / / | | |/| | |
| * | | | | Clean up some LoggingContext stuff (#7120)Richard van der Hoff2020-03-2424-222/+232
| | |/ / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Pull Sentinel out of LoggingContext ... and drop a few unnecessary references to it * Factor out LoggingContext.current_context move `current_context` and `set_context` out to top-level functions. Mostly this means that I can more easily trace what's actually referring to LoggingContext, but I think it's generally neater. * move copy-to-parent into `stop` this really just makes `start` and `stop` more symetric. It also means that it behaves correctly if you manually `set_log_context` rather than using the context manager. * Replace `LoggingContext.alive` with `finished` Turn `alive` into `finished` and make it a bit better defined.
| * | | | Fix CAS redirect url (#6634)Naugrimm2020-03-242-11/+17
| | | | | | | | | | | | | | | Build the same service URL when requesting the CAS ticket and when calling the proxyValidate URL.
| * | | | Use the proper error code when a canonical alias that does not exist is ↵Patrick Cloke2020-03-232-19/+39
| | | | | | | | | | | | | | | | | | | | used. (#7109)
| * | | | Update pre-built package name for FreeBSD (#7107). (#7107)Kartikaya Gupta (kats)2020-03-232-1/+2
| | | | | | | | | | | | | | | Signed-off-by: Kartikaya Gupta <kats@trevize.staktrace.com>
| * | | | Convert `*StreamRow` classes to inner classes (#7116)Richard van der Hoff2020-03-236-100/+106
| | | | | | | | | | | | | | | | | | | | | | | | | This just helps keep the rows closer to their streams, so that it's easier to see what the format of each stream is.
| * | | | Merge branch 'master' into developRichard van der Hoff2020-03-234-3/+68
| |\| | |
| | * | | Merge tag 'v1.12.0'Richard van der Hoff2020-03-23166-3778/+4329
| | |\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Synapse 1.12.0 (2020-03-23) =========================== No significant changes since 1.12.0rc1. Debian packages and Docker images are rebuilt using the latest versions of dependency libraries, including Twisted 20.3.0. **Please see security advisory below**. Security advisory ----------------- Synapse may be vulnerable to request-smuggling attacks when it is used with a reverse-proxy. The vulnerabilties are fixed in Twisted 20.3.0, and are described in [CVE-2020-10108](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10108) and [CVE-2020-10109](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10109). For a good introduction to this class of request-smuggling attacks, see https://portswigger.net/research/http-desync-attacks-request-smuggling-reborn. We are not aware of these vulnerabilities being exploited in the wild, and do not believe that they are exploitable with current versions of any reverse proxies. Nevertheless, we recommend that all Synapse administrators ensure that they have the latest versions of the Twisted library to ensure that their installation remains secure. * Administrators using the [`matrix.org` Docker image](https://hub.docker.com/r/matrixdotorg/synapse/) or the [Debian/Ubuntu packages from `matrix.org`](https://github.com/matrix-org/synapse/blob/master/INSTALL.md#matrixorg-packages) should ensure that they have version 1.12.0 installed: these images include Twisted 20.3.0. * Administrators who have [installed Synapse from source](https://github.com/matrix-org/synapse/blob/master/INSTALL.md#installing-from-source) should upgrade Twisted within their virtualenv by running: ```sh <path_to_virtualenv>/bin/pip install 'Twisted>=20.3.0' ``` * Administrators who have installed Synapse from distribution packages should consult the information from their distributions. The `matrix.org` Synapse instance was not vulnerable to these vulnerabilities. Advance notice of change to the default `git` branch for Synapse ---------------------------------------------------------------- Currently, the default `git` branch for Synapse is `master`, which tracks the latest release. After the release of Synapse 1.13.0, we intend to change this default to `develop`, which is the development tip. This is more consistent with common practice and modern `git` usage. Although we try to keep `develop` in a stable state, there may be occasions where regressions creep in. Developers and distributors who have scripts which run builds using the default branch of `Synapse` should therefore consider pinning their scripts to `master`. Synapse 1.12.0rc1 (2020-03-19) ============================== Features -------- - Changes related to room alias management ([MSC2432](https://github.com/matrix-org/matrix-doc/pull/2432)): - Publishing/removing a room from the room directory now requires the user to have a power level capable of modifying the canonical alias, instead of the room aliases. ([\#6965](https://github.com/matrix-org/synapse/issues/6965)) - Validate the `alt_aliases` property of canonical alias events. ([\#6971](https://github.com/matrix-org/synapse/issues/6971)) - Users with a power level sufficient to modify the canonical alias of a room can now delete room aliases. ([\#6986](https://github.com/matrix-org/synapse/issues/6986)) - Implement updated authorization rules and redaction rules for aliases events, from [MSC2261](https://github.com/matrix-org/matrix-doc/pull/2261) and [MSC2432](https://github.com/matrix-org/matrix-doc/pull/2432). ([\#7037](https://github.com/matrix-org/synapse/issues/7037)) - Stop sending m.room.aliases events during room creation and upgrade. ([\#6941](https://github.com/matrix-org/synapse/issues/6941)) - Synapse no longer uses room alias events to calculate room names for push notifications. ([\#6966](https://github.com/matrix-org/synapse/issues/6966)) - The room list endpoint no longer returns a list of aliases. ([\#6970](https://github.com/matrix-org/synapse/issues/6970)) - Remove special handling of aliases events from [MSC2260](https://github.com/matrix-org/matrix-doc/pull/2260) added in v1.10.0rc1. ([\#7034](https://github.com/matrix-org/synapse/issues/7034)) - Expose the `synctl`, `hash_password` and `generate_config` commands in the snapcraft package. Contributed by @devec0. ([\#6315](https://github.com/matrix-org/synapse/issues/6315)) - Check that server_name is correctly set before running database updates. ([\#6982](https://github.com/matrix-org/synapse/issues/6982)) - Break down monthly active users by `appservice_id` and emit via Prometheus. ([\#7030](https://github.com/matrix-org/synapse/issues/7030)) - Render a configurable and comprehensible error page if something goes wrong during the SAML2 authentication process. ([\#7058](https://github.com/matrix-org/synapse/issues/7058), [\#7067](https://github.com/matrix-org/synapse/issues/7067)) - Add an optional parameter to control whether other sessions are logged out when a user's password is modified. ([\#7085](https://github.com/matrix-org/synapse/issues/7085)) - Add prometheus metrics for the number of active pushers. ([\#7103](https://github.com/matrix-org/synapse/issues/7103), [\#7106](https://github.com/matrix-org/synapse/issues/7106)) - Improve performance when making HTTPS requests to sygnal, sydent, etc, by sharing the SSL context object between connections. ([\#7094](https://github.com/matrix-org/synapse/issues/7094)) Bugfixes -------- - When a user's profile is updated via the admin API, also generate a displayname/avatar update for that user in each room. ([\#6572](https://github.com/matrix-org/synapse/issues/6572)) - Fix a couple of bugs in email configuration handling. ([\#6962](https://github.com/matrix-org/synapse/issues/6962)) - Fix an issue affecting worker-based deployments where replication would stop working, necessitating a full restart, after joining a large room. ([\#6967](https://github.com/matrix-org/synapse/issues/6967)) - Fix `duplicate key` error which was logged when rejoining a room over federation. ([\#6968](https://github.com/matrix-org/synapse/issues/6968)) - Prevent user from setting 'deactivated' to anything other than a bool on the v2 PUT /users Admin API. ([\#6990](https://github.com/matrix-org/synapse/issues/6990)) - Fix py35-old CI by using native tox package. ([\#7018](https://github.com/matrix-org/synapse/issues/7018)) - Fix a bug causing `org.matrix.dummy_event` to be included in responses from `/sync`. ([\#7035](https://github.com/matrix-org/synapse/issues/7035)) - Fix a bug that renders UTF-8 text files incorrectly when loaded from media. Contributed by @TheStranjer. ([\#7044](https://github.com/matrix-org/synapse/issues/7044)) - Fix a bug that would cause Synapse to respond with an error about event visibility if a client tried to request the state of a room at a given token. ([\#7066](https://github.com/matrix-org/synapse/issues/7066)) - Repair a data-corruption issue which was introduced in Synapse 1.10, and fixed in Synapse 1.11, and which could cause `/sync` to return with 404 errors about missing events and unknown rooms. ([\#7070](https://github.com/matrix-org/synapse/issues/7070)) - Fix a bug causing account validity renewal emails to be sent even if the feature is turned off in some cases. ([\#7074](https://github.com/matrix-org/synapse/issues/7074)) Improved Documentation ---------------------- - Updated CentOS8 install instructions. Contributed by Richard Kellner. ([\#6925](https://github.com/matrix-org/synapse/issues/6925)) - Fix `POSTGRES_INITDB_ARGS` in the `contrib/docker/docker-compose.yml` example docker-compose configuration. ([\#6984](https://github.com/matrix-org/synapse/issues/6984)) - Change date in [INSTALL.md](./INSTALL.md#tls-certificates) for last date of getting TLS certificates to November 2019. ([\#7015](https://github.com/matrix-org/synapse/issues/7015)) - Document that the fallback auth endpoints must be routed to the same worker node as the register endpoints. ([\#7048](https://github.com/matrix-org/synapse/issues/7048)) Deprecations and Removals ------------------------- - Remove the unused query_auth federation endpoint per [MSC2451](https://github.com/matrix-org/matrix-doc/pull/2451). ([\#7026](https://github.com/matrix-org/synapse/issues/7026)) Internal Changes ---------------- - Add type hints to `logging/context.py`. ([\#6309](https://github.com/matrix-org/synapse/issues/6309)) - Add some clarifications to `README.md` in the database schema directory. ([\#6615](https://github.com/matrix-org/synapse/issues/6615)) - Refactoring work in preparation for changing the event redaction algorithm. ([\#6874](https://github.com/matrix-org/synapse/issues/6874), [\#6875](https://github.com/matrix-org/synapse/issues/6875), [\#6983](https://github.com/matrix-org/synapse/issues/6983), [\#7003](https://github.com/matrix-org/synapse/issues/7003)) - Improve performance of v2 state resolution for large rooms. ([\#6952](https://github.com/matrix-org/synapse/issues/6952), [\#7095](https://github.com/matrix-org/synapse/issues/7095)) - Reduce time spent doing GC, by freezing objects on startup. ([\#6953](https://github.com/matrix-org/synapse/issues/6953)) - Minor perfermance fixes to `get_auth_chain_ids`. ([\#6954](https://github.com/matrix-org/synapse/issues/6954)) - Don't record remote cross-signing keys in the `devices` table. ([\#6956](https://github.com/matrix-org/synapse/issues/6956)) - Use flake8-comprehensions to enforce good hygiene of list/set/dict comprehensions. ([\#6957](https://github.com/matrix-org/synapse/issues/6957)) - Merge worker apps together. ([\#6964](https://github.com/matrix-org/synapse/issues/6964), [\#7002](https://github.com/matrix-org/synapse/issues/7002), [\#7055](https://github.com/matrix-org/synapse/issues/7055), [\#7104](https://github.com/matrix-org/synapse/issues/7104)) - Remove redundant `store_room` call from `FederationHandler._process_received_pdu`. ([\#6979](https://github.com/matrix-org/synapse/issues/6979)) - Update warning for incorrect database collation/ctype to include link to documentation. ([\#6985](https://github.com/matrix-org/synapse/issues/6985)) - Add some type annotations to the database storage classes. ([\#6987](https://github.com/matrix-org/synapse/issues/6987)) - Port `synapse.handlers.presence` to async/await. ([\#6991](https://github.com/matrix-org/synapse/issues/6991), [\#7019](https://github.com/matrix-org/synapse/issues/7019)) - Add some type annotations to the federation base & client classes. ([\#6995](https://github.com/matrix-org/synapse/issues/6995)) - Port `synapse.rest.keys` to async/await. ([\#7020](https://github.com/matrix-org/synapse/issues/7020)) - Add a type check to `is_verified` when processing room keys. ([\#7045](https://github.com/matrix-org/synapse/issues/7045)) - Add type annotations and comments to the auth handler. ([\#7063](https://github.com/matrix-org/synapse/issues/7063))
| | | * | matrix.org was fine v1.12.0 github/release-v1.12.0 release-v1.12.0Richard van der Hoff2020-03-231-0/+2
| | | | |
| | | * | Update CHANGES.mdNeil Johnson2020-03-231-1/+1
| | | | |
| | | * | changelog typosRichard van der Hoff2020-03-231-3/+3
| | | | |
| | | * | 1.12.0 changelogRichard van der Hoff2020-03-231-1/+53
| | | | |
| | * | | Update postgres.mdRichard van der Hoff2020-03-171-2/+1
| | | | | | | | | | | | | | | fix broken link
| * | | | Fix processing of `groups` stream, and use symbolic names for streams (#7117)Richard van der Hoff2020-03-233-30/+76
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | `groups` != `receipts` Introduced in #6964
| * | | | Set Referrer-Policy to no-referrer for media (#7009)Dionysis Grigoropoulos2020-03-232-0/+4
| | | | |
| * | | | Clean-up some auth/login REST code (#7115)Patrick Cloke2020-03-203-41/+21
| | | | |
| * | | | Improve database configuration docs (#6988)Richard van der Hoff2020-03-206-71/+132
| | | | | | | | | | | | | | | | | | | | | | | | | Attempts to clarify the sample config for databases, and add some stuff about tcp keepalives to `postgres.md`.
| * | | | Remove concept of a non-limited stream. (#7011)Erik Johnston2020-03-208-67/+71
| | | | |
| * | | | Convert some of the media REST code to async/await (#7110)Patrick Cloke2020-03-204-111/+91
| | | | |
| * | | | Fix a bug in the federation API which could cause occasional "Failed to get ↵Patrick Cloke2020-03-194-30/+22
| | | | | | | | | | | | | | | | | | | | PDU" errors (#7089).
| * | | | Change device list streams to have one row per ID (#7010)Erik Johnston2020-03-197-130/+112
| |\ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Add 'device_lists_outbound_pokes' as extra table. This makes sure we check all the relevant tables to get the current max stream ID. Currently not doing so isn't problematic as the max stream ID in `device_lists_outbound_pokes` is the same as in `device_lists_stream`, however that will change. * Change device lists stream to have one row per id. This will make it possible to process the streams more incrementally, avoiding having to process large chunks at once. * Change device list replication to match new semantics. Instead of sending down batches of user ID/host tuples, send down a row per entity (user ID or host). * Newsfile * Remove handling of multiple rows per ID * Fix worker handling * Comments from review
| | * | | | Comments from reviewErik Johnston2020-03-183-8/+25
| | | | | |
| | * | | | Merge branch 'develop' of github.com:matrix-org/synapse into ↵Erik Johnston2020-03-0213-40/+55
| | |\ \ \ \ | | | | | | | | | | | | | | | | | | | | | erikj/fixup_devices_stream
| | * | | | | Fix worker handlingErik Johnston2020-03-021-2/+3
| | | | | | |
| | * | | | | Remove handling of multiple rows per IDErik Johnston2020-02-282-79/+1
| | | | | | |
| | * | | | | NewsfileErik Johnston2020-02-281-0/+1
| | | | | | |
| | * | | | | Change device list replication to match new semantics.Erik Johnston2020-02-284-23/+32
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Instead of sending down batches of user ID/host tuples, send down a row per entity (user ID or host).
| | * | | | | Change device lists stream to have one row per id.Erik Johnston2020-02-281-18/+41
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This will make it possible to process the streams more incrementally, avoiding having to process large chunks at once.
| | * | | | | Add 'device_lists_outbound_pokes' as extra table.Erik Johnston2020-02-282-2/+11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This makes sure we check all the relevant tables to get the current max stream ID. Currently not doing so isn't problematic as the max stream ID in `device_lists_outbound_pokes` is the same as in `device_lists_stream`, however that will change.
* | | | | | | Merge pull request #39 from matrix-org/dinsic-release-v1.12.xAndrew Morgan2020-05-28935-40375/+76092
|\ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Merge Synapse release v1.12.0 into 'dinsic' Accompanying Sytest PR: https://github.com/matrix-org/sytest/issues/843
| * | | | | | | Move sql schema delta files to their new locationAndrew Morgan2020-05-284-0/+0
| | | | | | | |
| * | | | | | | Blacklist tests/60app-services/03passive.pl sytestsAndrew Morgan2020-05-281-0/+5
| | | | | | | |
| * | | | | | | Fix sytest CIAndrew Morgan2020-05-286-9/+14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Switch sytest-synapse to sytest-dinsic * Be sure to invalidate our caches properly! * Remove duplicate encryption state key definition * Remove old config option name in comment * Make dinsic the default in merge_base_branch
| * | | | | | | Add ProfileStore to synapse_port_db as it has a dinsic background updateAndrew Morgan2020-05-281-0/+2
| | | | | | | |
| * | | | | | | 1.12.4Patrick Cloke2020-05-283-1/+13
| | | | | | | |
| * | | | | | | formatting for the changelogRichard van der Hoff2020-05-281-1/+1
| | | | | | | |
| * | | | | | | 1.12.4rc1Richard van der Hoff2020-05-286-5/+18
| | | | | | | |
| * | | | | | | 1.12.4rc1Richard van der Hoff2020-05-281-1/+1
| | | | | | | |
| * | | | | | | Do not treat display names as globs for push rules. (#7271)Patrick Cloke2020-05-284-30/+106
| | | | | | | |
| * | | | | | | Query missing cross-signing keys on local sig upload (#7289)Andrew Morgan2020-05-283-18/+180
| | | | | | | |
| * | | | | | | Fix changelog fileRichard van der Hoff2020-05-282-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | I updated the PR and forgot to update the changelog.
| * | | | | | | Support GET account_data requests on a worker (#7311)Richard van der Hoff2020-05-284-0/+17
| | | | | | | |
| * | | | | | | Revert "Query missing cross-signing keys on local sig upload"Richard van der Hoff2020-05-283-141/+12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This was incorrectly merged to the release branch before it was ready. This reverts commit 72fe2affb6ac86d433b80b6452da57052365aa26.
| * | | | | | | Always send the user updates to their own device list (#7160)David Baker2020-05-283-3/+19
| | | | | | | |
| * | | | | | | Query missing cross-signing keys on local sig uploadAndrew Morgan2020-05-283-12/+141
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Add changelog Save retrieved keys to the db lint Fix and de-brittle remote result dict processing Use query_user_devices instead, assume only master, self_signing key types Make changelog more useful Remove very specific exception handling Wrap get_verify_key_from_cross_signing_key in a try/except Note that _get_e2e_cross_signing_verify_key can raise a SynapseError lint Add comment explaining why this is useful Only fetch master and self_signing key types Fix log statements, docstrings Remove extraneous items from remote query try/except lint Factor key retrieval out into a separate function Send device updates, modeled after SigningKeyEduUpdater._handle_signing_key_updates Update method docstring
| * | | | | | | Only register devices edu handler on the master process (#7255)Andrew Morgan2020-05-282-7/+12
| | | | | | | |
| * | | | | | | tweak changelogRichard van der Hoff2020-05-281-5/+2
| | | | | | | |
| * | | | | | | 1.12.3Richard van der Hoff2020-05-284-4/+16
| | | | | | | |
| * | | | | | | Fix the debian build in a better way. (#7212)Richard van der Hoff2020-05-284-9/+36
| | | | | | | |
| * | | | | | | Fix changelog wordingAndrew Morgan2020-05-281-1/+1
| | | | | | | |
| * | | | | | | 1.12.2Andrew Morgan2020-05-283-1/+17
| | | | | | | |
| * | | | | | | Pin Pillow>=4.3.0,<7.1.0 to fix dep issueAndrew Morgan2020-05-281-1/+3
| | | | | | | |
| * | | | | | | 1.12.1Andrew Morgan2020-05-283-1/+13
| | | | | | | |
| * | | | | | | Note where bugs were introducedAndrew Morgan2020-05-281-3/+3
| | | | | | | |
| * | | | | | | 1.12.1rc1Andrew Morgan2020-05-285-4/+12
| | | | | | | |
| * | | | | | | NewsfileErik Johnston2020-05-281-0/+1
| | | | | | | |
| * | | | | | | Rewrite changelogAndrew Morgan2020-05-281-1/+1
| | | | | | | |
| * | | | | | | Add changelogAndrew Morgan2020-05-281-0/+1
| | | | | | | |
| * | | | | | | Only import sqlite3 when type checkingDavid Vo2020-05-282-2/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes: #7127 Signed-off-by: David Vo <david@vovo.id.au>
| * | | | | | | Fix another instanceAndrew Morgan2020-05-281-5/+7
| | | | | | | |
| * | | | | | | Only setdefault for signatures if device has key_jsonAndrew Morgan2020-05-281-5/+7
| | | | | | | |
| * | | | | | | Fix starting workers when federation sending not split out.Erik Johnston2020-05-281-0/+12
| | | | | | | |
| * | | | | | | matrix.org was fineRichard van der Hoff2020-05-281-0/+2
| | | | | | | |
| * | | | | | | Update CHANGES.mdNeil Johnson2020-05-281-1/+1
| | | | | | | |
| * | | | | | | changelog typosRichard van der Hoff2020-05-281-3/+3
| | | | | | | |
| * | | | | | | 1.12.0 changelogRichard van der Hoff2020-05-281-1/+53
| | | | | | | |
| * | | | | | | Update buildkite to match mainlineAndrew Morgan2020-05-141-70/+256
| | | | | | | |
| * | | | | | | Add docker-compose files required by pipelineAndrew Morgan2020-05-146-0/+127
| | | | | | | |
| * | | | | | | Bump mypy buildkite pipeline test to python3.7 to match mainlineAndrew Morgan2020-05-141-1/+1
| | | | | | | |
| * | | | | | | Config lintingAndrew Morgan2020-05-142-8/+8
| | | | | | | |
| * | | | | | | Fix versions in flake8 check-manifest commandsAndrew Morgan2020-05-141-2/+2
| | | | | | | |
| * | | | | | | Remove extraneous file from mergeAndrew Morgan2020-05-141-22/+0
| | | | | | | |
| * | | | | | | Pin the version of check_manifest to v0.41 until we merge the fix from v1.13.0Andrew Morgan2020-05-141-2/+2
| | | | | | | |
| * | | | | | | Add changelogAndrew Morgan2020-05-141-0/+1
| | | | | | | |
| * | | | | | | Pin flake8 to 3.7.9 until the v1.13.0 mergeAndrew Morgan2020-05-141-2/+3
| | | | | | | |
| * | | | | | | apply lintingAndrew Morgan2020-05-1415-59/+48
| | | | | | | |
| * | | | | | | Temporarily add m.lazy_load_members to unstable_featuresAndrew Morgan2020-05-041-0/+3
| | | | | | | |
| * | | | | | | Add caches for get_profile_{displayname,avatar_url}Andrew Morgan2020-05-011-0/+3
| | | | | | | |
| * | | | | | | Disable _mark_expired_users_as_inactive bg job when account validity disabledAndrew Morgan2020-04-301-2/+4
| | | | | | | |
| * | | | | | | Ensure non-federated rooms are not shown for POST /publicRoomsAndrew Morgan2020-04-291-1/+5
| | | | | | | |
| * | | | | | | Disable m.id_access_token, m.require_identity_server, ↵Andrew Morgan2020-04-281-4/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | m.separate_add_and_bind, org.matrix.e2e_cross_signing unstable_features
| * | | | | | | Simplify auto-bind email to IS hackAndrew Morgan2020-04-242-23/+6
| | | | | | | |
| * | | | | | | Remove protocol scheme from email delegateAndrew Morgan2020-04-241-1/+12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This is an update to the commit ef8e78c1e623db5df97c7401bc5af9960946915e
| * | | | | | | Remove bind_email param from dinsic-specific codeAndrew Morgan2020-04-242-3/+2
| | | | | | | |
| * | | | | | | HACK: Bind email to identity server when using it for 3pid delegationAndrew Morgan2020-04-242-1/+38
| | | | | | | |
| * | | | | | | Fix some broken referencesAndrew Morgan2020-04-242-6/+6
| | | | | | | |
| * | | | | | | Merge branch 'dinsic-release-v1.12.x' of ↵Andrew Morgan2020-04-240-0/+0
| |\ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | github.com:matrix-org/synapse-dinsic into dinsic-release-v1.12.x * 'dinsic-release-v1.12.x' of github.com:matrix-org/synapse-dinsic:
| | * \ \ \ \ \ \ Merge branch 'dinsic-release-v1.12.x' of ↵Andrew Morgan2020-04-234-88/+92
| | |\ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | github.com:matrix-org/synapse-dinsic into dinsic-release-v1.12.x * 'dinsic-release-v1.12.x' of github.com:matrix-org/synapse-dinsic: Fix and refactor rewritten IS url feature. Add sample config docs (#40)
| * | | | | | | | | Fix incorrect call to _map_email_to_display_nameAndrew Morgan2020-04-241-1/+1
| | | | | | | | | |
| * | | | | | | | | Merge branch 'dinsic-release-v1.12.x' of ↵Andrew Morgan2020-04-235-89/+93
| |\ \ \ \ \ \ \ \ \ | | |/ / / / / / / / | |/| / / / / / / / | | |/ / / / / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | github.com:matrix-org/synapse-dinsic into dinsic-release-v1.12.x * 'dinsic-release-v1.12.x' of github.com:matrix-org/synapse-dinsic: Fix and refactor rewritten IS url feature. Add sample config docs (#40)
| | * | | | | | | Fix and refactor rewritten IS url feature. Add sample config docs (#40)Andrew Morgan2020-04-224-88/+92
| | | | | | | | |
| * | | | | | | | Fix missing shadow 3pid functionAndrew Morgan2020-04-231-0/+13
| |/ / / / / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | I think this is where the code removed in 67c6de2caa1ba0f50b11ba0b158e056391cad9c3 was supposed to go.
| * | | | | | | Remove unnecessary shadow server codeAndrew Morgan2020-04-211-23/+0
| | | | | | | |
| * | | | | | | Consolidate id_server URL translationAndrew Morgan2020-04-203-35/+41
| | | | | | | |
| * | | | | | | Don't verify signatures using re-written id_server urlAndrew Morgan2020-04-171-8/+10
| | | | | | | |
| * | | | | | | await on_user_ipAndrew Morgan2020-04-161-1/+1
| | | | | | | |
| * | | | | | | Remove defer.returnValue call from async functionAndrew Morgan2020-04-161-1/+1
| | | | | | | |
| * | | | | | | Re-add third_party_rules/__init__.pyAndrew Morgan2020-04-151-0/+14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Accidentally deleted in https://github.com/matrix-org/synapse-dinsic/commit/6c058e32063b606b473f415ae6b68000f036ff94#diff-2a9df128248ff0ce75eb3f836469110a
| * | | | | | | Merge branch 'dinsic' of github.com:matrix-org/synapse-dinsic into ↵Andrew Morgan2020-03-246-2/+30
| |\ \ \ \ \ \ \ | |/ / / / / / / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | dinsic-release-v1.12.x * 'dinsic' of github.com:matrix-org/synapse-dinsic: Fixes an attribute error when using the default display name during registration. (#32) Share SSL contexts for non-federation requests (#30) Share SSL options for well-known requests (#29) Fix buggy condition in account validity handler (#28)
* | | | | | | | Fixes an attribute error when using the default display name during ↵Patrick Cloke2020-03-193-0/+25
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | registration. (#32)
* | | | | | | | Share SSL contexts for non-federation requests (#30)Richard van der Hoff2020-03-176-30/+48
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Share SSL contexts for non-federation requests * newsfile
* | | | | | | | Share SSL options for well-known requests (#29)Andrew Morgan2020-03-164-16/+20
| | | | | | | |
* | | | | | | | Fix buggy condition in account validity handler (#28)Brendan Abolivier2020-03-163-2/+9
| | | | | | | |
| * | | | | | | 1.12.0Andrew Morgan2020-03-243-6/+18
| |\ \ \ \ \ \ \ | | | |_|_|_|/ / | | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * commit '2fa55c0cc': 1.12.0 more changelog changelog fixes fix typo
| | * | | | | | 1.12.0Richard van der Hoff2020-03-233-1/+13
| | |/ / / / /
| | * | | | | more changelog v1.12.0rc1Richard van der Hoff2020-03-191-1/+1
| | | | | | |
| | * | | | | changelog fixesRichard van der Hoff2020-03-191-3/+3
| | | | | | |
| | * | | | | fix typoRichard van der Hoff2020-03-191-2/+2
| | | | | | |
| * | | | | | 1.12.0rc1Andrew Morgan2020-03-2461-91/+291
| |\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * commit 'e43e78b98': 1.12.0rc1 update grafana dashboard
| | * | | | | 1.12.0rc1Richard van der Hoff2020-03-1960-59/+78
| | | | | | |
| | * | | | | update grafana dashboardRichard van der Hoff2020-03-191-32/+213
| | | | | | |
| * | | | | | Fix concurrent modification errors in pusher metrics (#7106)Andrew Morgan2020-03-242-9/+19
| |\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * commit 'e913823a2': Fix concurrent modification errors in pusher metrics (#7106)
| | * | | | | Fix concurrent modification errors in pusher metrics (#7106)Richard van der Hoff2020-03-192-9/+19
| | | | | | | | | | | | | | | | | | | | | add a lock to try to make this metric actually work
| * | | | | | Add prometheus metrics for the number of active pushers (#7103)Andrew Morgan2020-03-245-8/+36
| |\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * commit '8c75667ad': Add prometheus metrics for the number of active pushers (#7103)
| | * | | | | Add prometheus metrics for the number of active pushers (#7103)Richard van der Hoff2020-03-195-8/+36
| | | | | | |
| * | | | | | Move pusherpool startup into _base.setup (#7104)Andrew Morgan2020-03-243-1/+2
| |\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * commit '443162e57': Move pusherpool startup into _base.setup (#7104)
| | * | | | | Move pusherpool startup into _base.setup (#7104)Richard van der Hoff2020-03-193-1/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This should be safe to do on all workers/masters because it is guarded by a config option which will ensure it is only actually done on the worker assigned as a pusher.
| * | | | | | Improve get auth chain difference algorithm. (#7095)Andrew Morgan2020-03-246-71/+310
| |\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * commit '4a17a647a': Improve get auth chain difference algorithm. (#7095)
| | * | | | | Improve get auth chain difference algorithm. (#7095)Erik Johnston2020-03-186-71/+310
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | It was originally implemented by pulling the full auth chain of all state sets out of the database and doing set comparison. However, that can take a lot work if the state and auth chains are large. Instead, lets try and fetch the auth chains at the same time and calculate the difference on the fly, allowing us to bail early if all the auth chains converge. Assuming that the auth chains do converge more often than not, this should improve performance. Hopefully.
| * | | | | | Add an option to the set password API to choose whether to logout other ↵Andrew Morgan2020-03-245-20/+39
| |\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | devices. (#7085) * commit '88b41986d': Add an option to the set password API to choose whether to logout other devices. (#7085)
| | * | | | | Add an option to the set password API to choose whether to logout other ↵Patrick Cloke2020-03-185-20/+39
| | | | | | | | | | | | | | | | | | | | | | | | | | | | devices. (#7085)
| * | | | | | Update INSTALL.md updated CentOS8 install instructions (#6925)Andrew Morgan2020-03-242-2/+12
| |\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * commit '6d110ddea': Update INSTALL.md updated CentOS8 install instructions (#6925)
| | * | | | | Update INSTALL.md updated CentOS8 install instructions (#6925)Richard von Kellner2020-03-172-2/+12
| | | | | | |
| * | | | | | Share SSL contexts for non-federation requests (#7094)Andrew Morgan2020-03-247-44/+71
| |\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * commit 'c37db0211': Share SSL contexts for non-federation requests (#7094)
| | * | | | | Share SSL contexts for non-federation requests (#7094)Richard van der Hoff2020-03-177-44/+71
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Extends #5794 etc to the SimpleHttpClient so that it also applies to non-federation requests. Fixes #7092.
| * | | | | | Set charset to utf-8 when adding headers for certain text content types (#7044)Andrew Morgan2020-03-242-1/+25
| |\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * commit '5e477c1de': Set charset to utf-8 when adding headers for certain text content types (#7044)
| | * | | | | Set charset to utf-8 when adding headers for certain text content types (#7044)The Stranjer2020-03-172-1/+25
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes #7043
| * | | | | | Remove unused federation endpoint (`query_auth`) (#7026)Andrew Morgan2020-03-245-146/+80
| |\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * commit '7581d30e9': Remove unused federation endpoint (`query_auth`) (#7026)
| | * | | | | Remove unused federation endpoint (`query_auth`) (#7026)Patrick Cloke2020-03-175-146/+80
| | | | | | |
| * | | | | | Remove special casing of `m.room.aliases` events (#7034)Andrew Morgan2020-03-245-42/+35
| |\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * commit '60724c46b': Remove special casing of `m.room.aliases` events (#7034)
| | * | | | | Remove special casing of `m.room.aliases` events (#7034)Patrick Cloke2020-03-175-42/+35
| | | | | | |
| * | | | | | Merge commit '6a3504636' into dinsic-release-v1.12.xAndrew Morgan2020-03-2415-149/+302
| |\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * commit '6a3504636': (29 commits) Revert "Add options to disable setting profile info for prevent changes. (#7053)" Populate the room version from state events (#7070) Fix buggy condition in account validity handler (#7074) Use innerText instead of innerHTML Add type annotations and comments to auth handler (#7063) Lint Put the file in the templates directory Update wording and config Changelog Move the default SAML2 error HTML to a dedicated file Refactor a bit Also don't fail on aliases events in this case Lint Changelog Also don't filter out events sent by ignored users when checking state visibility Fix condition Don't filter out dummy events when we're checking the visibility of state Update sample_config.yaml Update synapse/config/registration.py lint, fix tests ...
| | * | | | | Revert "Add options to disable setting profile info for prevent changes. ↵Richard van der Hoff2020-03-177-398/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | (#7053)" This reverts commit 54dd28621b070ca67de9f773fe9a89e1f4dc19da, reversing changes made to 6640460d054e8f4444046a34bdf638921b31c01e.
| | * | | | | Populate the room version from state events (#7070)Brendan Abolivier2020-03-163-0/+63
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes #7065 This is basically the same as https://github.com/matrix-org/synapse/pull/6847 except it tries to populate events from `state_events` rather than `current_state_events`, since the latter might have been cleared from the state of some rooms too early, leaving them with a `NULL` room version.
| | * | | | | Fix buggy condition in account validity handler (#7074)Brendan Abolivier2020-03-162-1/+6
| | | | | | |
| | * | | | | Merge pull request #7067 from matrix-org/babolivier/saml_error_moarBrendan Abolivier2020-03-134-28/+90
| | |\ \ \ \ \ | | | | | | | | | | | | | | | | Move the default SAML2 error HTML to a dedicated file
| | | * | | | | Use innerText instead of innerHTMLBrendan Abolivier2020-03-131-1/+2
| | | | | | | |
| | | * | | | | LintBrendan Abolivier2020-03-111-2/+1
| | | | | | | |
| | | * | | | | Put the file in the templates directoryBrendan Abolivier2020-03-112-19/+37
| | | | | | | |
| | | * | | | | Update wording and configBrendan Abolivier2020-03-113-2/+8
| | | | | | | |
| | | * | | | | ChangelogBrendan Abolivier2020-03-111-0/+1
| | | | | | | |
| | | * | | | | Move the default SAML2 error HTML to a dedicated fileBrendan Abolivier2020-03-112-18/+55
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Also add some JS to it to process any error we might have in the URI (see #6893).
| | * | | | | | Add type annotations and comments to auth handler (#7063)Patrick Cloke2020-03-123-89/+106
| | | | | | | |
| | * | | | | | Merge pull request #7066 from matrix-org/babolivier/dummy_events_stateBrendan Abolivier2020-03-113-31/+37
| | |\ \ \ \ \ \ | | | |/ / / / / | | |/| | | | | Skip the correct visibility checks when checking the visibility of the state at a given event
| | | * | | | | Refactor a bitBrendan Abolivier2020-03-111-28/+30
| | | | | | | |
| | | * | | | | Also don't fail on aliases events in this caseBrendan Abolivier2020-03-111-1/+1
| | | | | | | |
| | | * | | | | LintBrendan Abolivier2020-03-111-1/+5
| | | | | | | |
| | | * | | | | ChangelogBrendan Abolivier2020-03-111-0/+1
| | | | | | | |
| | | * | | | | Also don't filter out events sent by ignored users when checking state ↵Brendan Abolivier2020-03-111-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | visibility
| | | * | | | | Fix conditionBrendan Abolivier2020-03-111-1/+1
| | | | | | | |
| | | * | | | | Don't filter out dummy events when we're checking the visibility of stateBrendan Abolivier2020-03-112-9/+8
| | |/ / / / /
| | * | | | | Add options to disable setting profile info for prevent changes. (#7053)Brendan Abolivier2020-03-107-1/+398
| | |\ \ \ \ \
| | | * | | | | Update sample_config.yamlDirk Klimpel2020-03-101-1/+1
| | | | | | | |
| | | * | | | | Update synapse/config/registration.pyDirk Klimpel2020-03-101-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | Co-Authored-By: Brendan Abolivier <github@brendanabolivier.com>
| | | * | | | | lint, fix testsdklimpel2020-03-092-3/+5
| | | | | | | |
| | | * | | | | updates after reviewdklimpel2020-03-097-37/+40
| | | | | | | |
| | | * | | | | fix testsdklimpel2020-03-091-2/+2
| | | | | | | |
| | | * | | | | lintdklimpel2020-03-091-10/+8
| | | | | | | |
| | | * | | | | add testsdklimpel2020-03-092-3/+311
| | | | | | | |
| | | * | | | | add disable_3pid_changesdklimpel2020-03-083-0/+21
| | | | | | | |
| | | * | | | | lint2dklimpel2020-03-082-4/+4
| | | | | | | |
| | | * | | | | lintdklimpel2020-03-081-4/+2
| | | | | | | |
| | | * | | | | changelogdklimpel2020-03-084-4/+19
| | | | | | | |
| | | * | | | | Add options to disable setting profile info for prevent changes.dklimpel2020-03-083-1/+53
| | | | |/ / / | | | |/| | |
| * | | | | | Merge pull request #7058 from matrix-org/babolivier/saml_error_htmlAndrew Morgan2020-03-247-6/+81
| |\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * commit '6640460d0': Rephrase default message Hopefully mypy is happy now Attempt at appeasing the gods of mypy Lint Changelog Update sample config SAML2: render a comprehensible error page if something goes wrong
| | * | | | | Merge pull request #7058 from matrix-org/babolivier/saml_error_htmlBrendan Abolivier2020-03-107-6/+81
| | |\ \ \ \ \ | | | | | | | | | | | | | | | | SAML2: render a comprehensible error page if something goes wrong
| | | * | | | | Rephrase default messageBrendan Abolivier2020-03-101-2/+2
| | | | | | | |
| | | * | | | | Hopefully mypy is happy nowBrendan Abolivier2020-03-102-3/+10
| | | | | | | |
| | | * | | | | Attempt at appeasing the gods of mypyBrendan Abolivier2020-03-101-1/+1
| | | | | | | |
| | | * | | | | LintBrendan Abolivier2020-03-101-1/+1
| | | | | | | |
| | | * | | | | ChangelogBrendan Abolivier2020-03-101-0/+1
| | | | | | | |
generated by cgit-magenta 1.5.1 (git 2.48.1) at 2025-08-11 10:43:16 +0000