summary refs log tree commit diff
path: root/synapse/rest/client/v2_alpha/account.py (follow)
Commit message (Collapse)AuthorAgeFilesLines
* Merge commit '56efa9ec7' into anoa/dinsic_release_1_21_xAndrew Morgan2020-10-201-0/+10
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * commit '56efa9ec7': (22 commits) Fix rate limiting unit tests. (#8167) Add functions to `MultiWriterIdGen` used by events stream (#8164) Do not allow send_nonmember_event to be called with shadow-banned users. (#8158) Changelog fixes Make StreamIdGen `get_next` and `get_next_mult` async (#8161) Wording fixes to 'name' user admin api filter (#8163) Fix missing double-backtick in RST document Search in columns 'name' and 'displayname' in the admin users endpoint (#7377) Add type hints for state. (#8140) Stop shadow-banned users from sending non-member events. (#8142) Allow capping a room's retention policy (#8104) Add healthcheck for default localhost 8008 port on /health endpoint. (#8147) Fix flaky shadow-ban tests. (#8152) Don't fail /submit_token requests on incorrect session ID if request_token_inhibit_3pid_errors is turned on (#7991) Do not apply ratelimiting on joins to appservices (#8139) Micro-optimisations to get_auth_chain_ids (#8132) Allow denying or shadow banning registrations via the spam checker (#8034) Stop shadow-banned users from sending invites. (#8095) Be more tolerant of membership events in unknown rooms (#8110) Improve the error code when trying to register using a name reserved for guests. (#8135) ...
| * Don't fail /submit_token requests on incorrect session ID if ↵Brendan Abolivier2020-08-241-0/+10
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | request_token_inhibit_3pid_errors is turned on (#7991) * Don't raise session_id errors on submit_token if request_token_inhibit_3pid_errors is set * Changelog * Also wait some time before responding to /requestToken * Incorporate review * Update synapse/storage/databases/main/registration.py Co-authored-by: Andrew Morgan <1342360+anoadragon453@users.noreply.github.com> * Incorporate review Co-authored-by: Andrew Morgan <1342360+anoadragon453@users.noreply.github.com>
* | Merge commit 'c9c544cda' into anoa/dinsic_release_1_21_xAndrew Morgan2020-10-191-10/+8
|\| | | | | | | | | | | | | | | | | | | | | | | | | * commit 'c9c544cda': Remove `ChainedIdGenerator`. (#8123) Switch the JSON byte producer from a pull to a push producer. (#8116) Updated docs: Added note about missing 308 redirect support. (#8120) Be stricter about JSON that is accepted by Synapse (#8106) Convert runWithConnection to async. (#8121) Remove the unused inlineCallbacks code-paths in the caching code (#8119) Separate `get_current_token` into two. (#8113) Convert events worker database to async/await. (#8071) Add a link to the matrix-synapse-rest-password-provider. (#8111)
* | Merge commit 'e04e465b4' into anoa/dinsic_release_1_21_xAndrew Morgan2020-10-191-32/+12
|\| | | | | | | | | | | | | | | | | | | * commit 'e04e465b4': Use the default templates when a custom template file cannot be found (#8037) Changelog changes Convert stream database to async/await. (#8074) Add a shadow-banned flag to users. (#8092) Convert pusher databases to async/await. (#8075) Convert receipts and events databases to async/await. (#8076)
| * Use the default templates when a custom template file cannot be found (#8037)Andrew Morgan2020-08-171-32/+12
| | | | | | Fixes https://github.com/matrix-org/synapse/issues/6583
* | Merge commit '66f24449d' into anoa/dinsic_release_1_21_xAndrew Morgan2020-10-191-24/+61
|\| | | | | | | | | * commit '66f24449d': Improve performance of the register endpoint (#8009)
| * Improve performance of the register endpoint (#8009)Patrick Cloke2020-08-061-26/+60
| |
* | Only assert valid next_link params when provided (#65)Andrew Morgan2020-09-291-6/+9
| | | | | | | | | | | | | | Bug introduced in https://github.com/matrix-org/synapse-dinsic/commit/ff91a451b We were checking whether the `nextLink` param was valid, even if it wasn't provided. In that case, `nextLink` was `None`, which would clearly not be a valid URL. This would prevent password reset and other operations if `nextLink` was not provided and the `next_link_domain_whitelist` config option was in use.
* | Add a config option for validating 'next_link' parameters against a domain ↵Andrew Morgan2020-09-091-10/+56
| | | | | | | | | | | | | | | | | | | | | | | | whitelist (#8275) This is a config option ported over from DINUM's Sydent: https://github.com/matrix-org/sydent/pull/285 They've switched to validating 3PIDs via Synapse rather than Sydent, and would like to retain this functionality. This original purpose for this change is phishing prevention. This solution could also potentially be replaced by a similar one to https://github.com/matrix-org/synapse/pull/8004, but across all `*/submit_token` endpoint. This option may still be useful to enterprise even with that safeguard in place though, if they want to be absolutely sure that their employees don't follow links to other domains.
* | dinsic lintAndrew Morgan2020-08-031-1/+0
| | | | | | | | linting after the v1.18.0 mainline merge
* | Merge commit '5cdca53aa' into dinsicAndrew Morgan2020-08-031-11/+31
|\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * commit '5cdca53aa': Merge different Resource implementation classes (#7732) Fix inconsistent handling of upper and lower cases of email addresses. (#7021) Allow YAML config file to contain None (#7779) Fix a typo. Move 1.15.2 after 1.16.0rc2. 1.16.0rc2 Remove an extraneous space. Add links to the fixes. Fix tense in the release notes. Hack to add push priority to push notifications (#7765) Add early returns to `_check_for_soft_fail` (#7769) Use symbolic names for replication stream names (#7768) Type checking for `FederationHandler` (#7770) Fix new metric where we used ms instead of seconds (#7771) Fix incorrect error message when database CTYPE was set incorrectly. (#7760) Pin link in CHANGES.md Fixes to CHANGES.md
| * Fix inconsistent handling of upper and lower cases of email addresses. (#7021)Dirk Klimpel2020-07-031-9/+31
| | | | | | fixes #7016
| * Merge branch 'master' into developPatrick Cloke2020-07-021-9/+7
| |\
* | \ Merge commit 'e8c36e527' into dinsicAndrew Morgan2020-08-031-9/+7
|\ \ \ | | |/ | |/| | | | | | | | | | | | | * commit 'e8c36e527': 1.15.2 Correctly handle outliers as prev events over federation Ensure that HTML pages served from Synapse include headers to avoid embedding.
| * | Ensure that HTML pages served from Synapse include headers to avoid embedding.Patrick Cloke2020-07-021-9/+7
| | |
* | | Merge commit 'a3f11567d' into dinsicAndrew Morgan2020-08-031-2/+2
|\ \ \ | | |/ | |/| | | | | | | * commit 'a3f11567d': Replace all remaining six usage with native Python 3 equivalents (#7704)
| * | Replace all remaining six usage with native Python 3 equivalents (#7704)Dagfinn Ilmari Mannsåker2020-06-161-3/+2
| |/
* | Merge commit '03619324f' into dinsicAndrew Morgan2020-08-031-3/+3
|\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * commit '03619324f': Create a ListenerConfig object (#7681) Fix changelog wording 1.15.1 Wrap register_device coroutine in an ensureDeferred (#7684) Ensure the body is a string before comparing push rules. (#7701) Ensure etag is a string for GET room_keys/version response (#7691) Update m.id.phone to use 'phone' instead of 'number' (#7687) Fix "There was no active span when trying to log." error (#7698) Enable 3PID add/bind/unbind endpoints on r0 routes Discard RDATA from already seen positions. (#7648) Replace iteritems/itervalues/iterkeys with native versions. (#7692) Fix warnings about losing log context during UI auth. (#7688) Fix a typo when comparing the URI & method during UI Auth. (#7689) Remove "user_id" from GET /presence. (#7606) Increase the default SAML session expirary time to 15 minutes. (#7664) fix typo in sample_config.yaml (#7652) Take out a lock before modifying _CACHES (#7663) Add option to enable encryption by default for new rooms (#7639) Clean-up the fallback login code. (#7657)
| * Enable 3PID add/bind/unbind endpoints on r0 routesBrendan Abolivier2020-06-151-3/+3
| |
* | Merge branch 'release-v1.14.0' of github.com:matrix-org/synapse into ↵Andrew Morgan2020-06-101-3/+18
|\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | dinsic-release-v1.14.x * 'release-v1.14.0' of github.com:matrix-org/synapse: (108 commits) Fix typo in PR link Update debian changelog 1.14.0 Improve changelog wording 1.14.0rc2 Fix sample config docs error (#7581) Fix up comments Fix specifying cache factors via env vars with * in name. (#7580) Don't apply cache factor to event cache. (#7578) Ensure ReplicationStreamer is always started when replication enabled. (#7579) Remove the changes to the debian changelog Not full release yet, this is rc1 Merge event persistence move changelog entries More changelog fix Changelog fixes 1.14.0 Replace device_27_unique_idx bg update with a fg one (#7562) Fix incorrect exception handling in KeyUploadServlet.on_POST (#7563) Fix recording of federation stream token (#7564) Simplify reap_monthly_active_users (#7558) ...
| * Hash passwords earlier in the password reset process (#7538)Patrick Cloke2020-05-201-3/+18
| | | | | | | | This now matches the logic of the registration process as modified in 56db0b1365965c02ff539193e26c333b7f70d101 / #7523.
* | Merge branch 'release-v1.13.0' of github.com:matrix-org/synapse into ↵Andrew Morgan2020-06-101-9/+49
|\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | dinsic-release-v1.14.x * 'release-v1.13.0' of github.com:matrix-org/synapse: (257 commits) Update changelog based on feedback. Move warnings in the changelog and re-iterate changes to branches. 1.13.0 update dh-virtualenv (#7526) 1.13.0rc3 Hash passwords earlier in the registration process (#7523) 1.13.0rc2 1.13.0rc2 Stop `get_joined_users` corruption from custom statuses (#7376) Do not validate that the client dict is stable during UI Auth. (#7483) Fix new flake8 errors (#7489) Don't UPGRADE database rows RST indenting Put rollback instructions in upgrade notes Fix changelog typo Oh yeah, RST Absolute URL it is then Fix upgrade notes link Provide summary of upgrade issues in changelog. Fix ) Move next version notes from changelog to upgrade notes ...
| * Revert "Revert "Merge pull request #7315 from ↵Brendan Abolivier2020-04-231-1/+16
| | | | | | | | | | | | matrix-org/babolivier/request_token"" This reverts commit 1adf6a55870aa08de272591ff49db9dc49738076.
| * Support SAML in the user interactive authentication workflow. (#7102)Patrick Cloke2020-04-011-3/+16
| |
| * Add options to prevent users from changing their profile. (#7096)Dirk Klimpel2020-03-271-0/+16
| |
| * Validate that the session is not modified during UI-Auth (#7068)Patrick Cloke2020-03-261-4/+7
| |
* | apply lintingAndrew Morgan2020-05-141-4/+7
| |
* | Merge branch 'dinsic-release-v1.12.x' of ↵Andrew Morgan2020-04-231-1/+1
|\ \ | | | | | | | | | | | | | | | | | | github.com:matrix-org/synapse-dinsic into dinsic-release-v1.12.x * 'dinsic-release-v1.12.x' of github.com:matrix-org/synapse-dinsic: Fix and refactor rewritten IS url feature. Add sample config docs (#40)
* | | Fix missing shadow 3pid functionAndrew Morgan2020-04-231-0/+13
|/ / | | | | | | | | I think this is where the code removed in 67c6de2caa1ba0f50b11ba0b158e056391cad9c3 was supposed to go.
* | Remove unnecessary shadow server codeAndrew Morgan2020-04-211-23/+0
| |
* | Add an option to the set password API to choose whether to logout other ↵Andrew Morgan2020-03-241-1/+4
|\| | | | | | | | | | | | | devices. (#7085) * commit '88b41986d': Add an option to the set password API to choose whether to logout other devices. (#7085)
| * Add an option to the set password API to choose whether to logout other ↵Patrick Cloke2020-03-181-1/+4
| | | | | | | | devices. (#7085)
| * Revert "Add options to disable setting profile info for prevent changes. ↵Richard van der Hoff2020-03-171-16/+0
| | | | | | | | | | | | | | (#7053)" This reverts commit 54dd28621b070ca67de9f773fe9a89e1f4dc19da, reversing changes made to 6640460d054e8f4444046a34bdf638921b31c01e.
| * updates after reviewdklimpel2020-03-091-6/+12
| |
| * add disable_3pid_changesdklimpel2020-03-081-0/+10
| |
* | Validate client_secret parameter (#6767)Andrew Morgan2020-03-231-7/+14
|\| | | | | | | | | * commit '9f7aaf90b': Validate client_secret parameter (#6767)
| * Validate client_secret parameter (#6767)Andrew Morgan2020-01-241-5/+18
| |
* | Merge pull request #6483 from matrix-org/erikj/port_rest_v2Andrew Morgan2020-03-191-69/+54
|\| | | | | | | | | | | * commit 'd085a8a0a': Newsfile Port rest.client.v2
| * Port rest.client.v2Erik Johnston2019-12-051-68/+51
| |
* | Fix: Pillow error when uploading RGBA image (#3325) (#6241)Andrew Morgan2020-03-191-0/+5
|\| | | | | | | | | | | | | | | | | | | | | | | | | | | * commit '81731c6e7': Fix: Pillow error when uploading RGBA image (#3325) (#6241) Add User-Interactive Auth to /account/3pid/add (#6119) Lint Changelog Discard retention policies when retrieving state blacklist more tests Newsfile Add tests Propagate reason in remotely rejected invites MSC2367 Allow reason field on all member events
| * Add User-Interactive Auth to /account/3pid/add (#6119)Andrew Morgan2019-11-291-0/+5
| |
* | Update black to 19.10b0 (#6304)Andrew Morgan2020-03-161-2/+2
|\| | | | | | | | | * commit '020add509': Update black to 19.10b0 (#6304)
| * Update black to 19.10b0 (#6304)Amber Brown2019-11-011-2/+2
| | | | | | * update version of black and also fix the mypy config being overridden
* | Remove usage of deprecated logger.warn method from codebase (#6271)Andrew Morgan2020-03-161-7/+7
|\|
| * Remove usage of deprecated logger.warn method from codebase (#6271)Andrew Morgan2019-10-311-7/+7
| | | | | | Replace every instance of `logger.warn` with `logger.warning` as the former is deprecated.
* | Move lookup-related functions from RoomMemberHandler to IdentityHandler (#5978)Andrew Morgan2020-02-261-2/+2
|\|
* | Kill off half-implemented password-reset via sms (#6101)Andrew Morgan2020-02-251-66/+1
|\|
| * Kill off half-implemented password-reset via sms (#6101)Richard van der Hoff2019-09-261-64/+1
| | | | | | | | | | | | | | Doing a password reset via SMS has never worked, and in any case is a silly idea because msisdn recycling is a thing. See also matrix-org/matrix-doc#2303.
* | Add POST submit_token endpoint for MSISDN (#6078)Andrew Morgan2020-02-251-2/+45
|\|
| * Add POST submit_token endpoint for MSISDN (#6078)Andrew Morgan2019-09-231-2/+45
| | | | | | First part of solving #6076
* | Implement MSC2290 (#6043)Andrew Morgan2020-02-251-70/+121
|\|
| * Implement MSC2290 (#6043)Andrew Morgan2019-09-231-72/+89
| | | | | | | | | | | | | | Implements MSC2290. This PR adds two new endpoints, /unstable/account/3pid/add and /unstable/account/3pid/bind. Depending on the progress of that MSC the unstable prefix may go away. This PR also removes the blacklist on some 3PID tests which occurs in #6042, as the corresponding Sytest PR changes them to use the new endpoints. Finally, it also modifies the account deactivation code such that it doesn't just try to deactivate 3PIDs that were bound to the user's account, but any 3PIDs that were bound through the homeserver on that user's account.
* | Allow HS to send emails when adding an email to the HS (#6042)Andrew Morgan2020-02-251-49/+243
|\|
| * Allow HS to send emails when adding an email to the HS (#6042)Andrew Morgan2019-09-201-36/+216
| |
* | Remove trailing slash ability from password reset's submit_token endpoint ↵Andrew Morgan2020-02-251-1/+1
|\| | | | | | | (#6074)
| * Remove trailing slash ability from password reset's submit_token endpoint ↵Andrew Morgan2019-09-201-1/+1
| | | | | | | | | | (#6074) Remove trailing slash ability from the password reset submit_token endpoint. Since we provide the link in an email, and have never sent it with a trailing slash, there's no point for us to accept them on the endpoint.
* | Drop support for bind param on POST /account/3pid (MSC2290) (#6067)Andrew Morgan2020-02-251-4/+0
|\|
| * Drop support for bind param on POST /account/3pid (MSC2290) (#6067)Andrew Morgan2019-09-201-4/+0
| | | | | | As per [MSC2290](https://github.com/matrix-org/matrix-doc/pull/2290/files#diff-05cde9463e9209b701312b3baf2fb2ebR151), we're dropping the bind parameter from `/account/3pid`. This endpoint can now only be used for adding threepid's to the user's account on the homeserver.
* | Use unstable prefix for 3PID unbind API (#6062)Andrew Morgan2020-02-251-1/+1
|\|
| * Use unstable prefix for 3PID unbind API (#6062)J. Ryan Stinnett2019-09-191-1/+1
| |
* | Remove POST method from password reset submit_token endpoint (#6056)Andrew Morgan2020-02-251-19/+0
|\|
| * Remove POST method from password reset submit_token endpoint (#6056)Andrew Morgan2019-09-191-17/+0
| | | | | | Removes the POST method from `/password_reset/<medium>/submit_token/` as it's only used by phone number verification which Synapse does not support yet.
* | Merge pull request #6011 from matrix-org/anoa/fix_3pid_validationAndrew Morgan2020-02-251-1/+2
|\|
| * Add changelogAndrew Morgan2019-09-101-1/+1
| |
| * Use account_threepid_delegate for 3pid validationAndrew Morgan2019-09-101-1/+2
| |
* | Merge pull request #5994 from matrix-org/anoa/html_template_fixAndrew Morgan2020-02-251-1/+1
|\|
| * Apply suggestions from code reviewAndrew Morgan2019-09-061-1/+1
| | | | | | Co-Authored-By: Erik Johnston <erik@matrix.org>
| * Fix destructuring assumption bugAndrew Morgan2019-09-061-1/+1
| |
* | Allow Synapse to send registration emails + choose Synapse or an external ↵Andrew Morgan2020-02-251-143/+116
|\| | | | | | | server to handle 3pid validation (#5987)
| * Allow Synapse to send registration emails + choose Synapse or an external ↵Andrew Morgan2019-09-061-144/+116
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | server to handle 3pid validation (#5987) This is a combination of a few different PRs, finally all being merged into `develop`: * #5875 * #5876 * #5868 (This one added the `/versions` flag but the flag itself was actually [backed out](https://github.com/matrix-org/synapse/commit/891afb57cbdf9867f2848341b29c75d6f35eef5a#diff-e591d42d30690ffb79f63bb726200891) in #5969. What's left is just giving /versions access to the config file, which could be useful in the future) * #5835 * #5969 * #5940 Clients should not actually use the new registration functionality until https://github.com/matrix-org/synapse/pull/5972 is merged. UPGRADE.rst, changelog entries and config file changes should all be reviewed closely before this PR is merged.
* | Switch to using v2 Identity Service APIs other than lookup (MSC 2140) (#5892)Andrew Morgan2020-02-251-5/+7
|\|
| * Switch to using v2 Identity Service APIs other than lookup (MSC 2140) (#5892)Andrew Morgan2019-09-051-6/+7
| |
* | Add POST /_matrix/client/r0/account/3pid/unbind (MSC2140) (#5980)Andrew Morgan2020-02-251-0/+33
|\|
| * Add POST /_matrix/client/r0/account/3pid/unbind (MSC2140) (#5980)Andrew Morgan2019-09-051-0/+33
| | | | | | Implements `POST /_matrix/client/r0/account/3pid/unbind` from [MSC2140](https://github.com/matrix-org/matrix-doc/blob/dbkr/tos_2/proposals/2140-terms-of-service-2.md#post-_matrixclientr0account3pidunbind).
* | Remove unnecessary parentheses around return statements (#5931)Andrew Morgan2020-02-241-12/+12
|\|
| * Remove unnecessary parentheses around return statements (#5931)Andrew Morgan2019-08-301-12/+12
| | | | | | | | | | Python will return a tuple whether there are parentheses around the returned values or not. I'm just sick of my editor complaining about this all over the place :)
* | Revert "Use the v2 lookup API for 3PID invites (#5897)"Andrew Morgan2020-02-241-4/+2
| | | | | | | | | | This reverts commit 978f263e7c5d1eb440efaf07abc5009408ade25d, reversing changes made to 4f6ee99818d9c338944a10585d0aea4c7349d456.
* | Use the v2 lookup API for 3PID invites (#5897)Andrew Morgan2020-02-241-2/+4
|\|
* | Fix up password reset template config names (#5863)Andrew Morgan2020-02-201-2/+2
|\|
| * Fix up password reset template config names (#5863)Andrew Morgan2019-08-151-2/+2
| | | | | | | | | | Fixes #5833 The emailconfig code was attempting to pull incorrect config file names. This corrects that, while also marking a difference between a config file variable that's a filepath versus a str containing HTML.
* | Replace returnValue with return (#5736)Andrew Morgan2020-02-191-16/+16
|\|
| * Replace returnValue with return (#5736)Amber Brown2019-07-231-16/+16
| |
| * Run Black. (#5482)Amber Brown2019-06-201-114/+76
| |
* | Dinsic Blacking with black==18.6b2Andrew Morgan2020-02-111-126/+87
| |
* | Merge remote-tracking branch 'dinsic/dinsic' into dinsic-release-v1.1.0Andrew Morgan2020-02-101-2/+15
|\ \
| * | Fix resetting password via a phone number (#21) dinsic_2020-02-10Andrew Morgan2020-01-241-1/+1
| | |
| * | Validate client_secret parameter according to spec (#20)Andrew Morgan2020-01-221-1/+14
| | |
* | | Remove Python 2.7 support. (#5425)Andrew Morgan2020-02-101-4/+15
|\ \ \ | |/ / |/| / | |/
| * Merge branch 'master' of github.com:matrix-org/synapse into developErik Johnston2019-06-111-4/+5
| |\
| * | Don't warn user about password reset disabling through config code (#5387)Andrew Morgan2019-06-111-4/+15
| | | | | | | | | | | | | | | | | | | | | Moves the warning about password resets being disabled to the point where a user actually tries to reset their password. Is this an appropriate place for it to happen? Also removed the disabling of msisdn password resets when you don't have an email config, as that just doesn't make sense. Also change the error a user receives upon disabled passwords to specify that only email-based password reset is disabled.
* | | Merge branch 'master' into dinsicBrendan Abolivier2019-06-121-15/+248
|\ \ \ | | |/ | |/|
| * | Change password reset links to /_matrix.Erik Johnston2019-06-111-4/+5
| |/
| * Add ability to perform password reset via email without trusting the ↵Andrew Morgan2019-06-061-5/+238
| | | | | | | | | | | | | | | | | | | | | | | | identity server (#5377) Sends password reset emails from the homeserver instead of proxying to the identity server. This is now the default behaviour for security reasons. If you wish to continue proxying password reset requests to the identity server you must now enable the email.trust_identity_server_for_password_resets option. This PR is a culmination of 3 smaller PRs which have each been separately reviewed: * #5308 * #5345 * #5368
| * Unify v1 and v2 REST client APIs (#5226)Amber Brown2019-06-031-10/+10
| |
* | Incorporate reviewBrendan Abolivier2019-05-091-4/+3
| |
* | Incorporate reviewBrendan Abolivier2019-05-071-0/+2
| |
* | Update synapse/rest/client/v2_alpha/account.pyAndrew Morgan2019-05-011-1/+1
| | | | | | Co-Authored-By: babolivier <contact@brendanabolivier.com>
* | Update synapse/rest/client/v2_alpha/account.pyAndrew Morgan2019-05-011-1/+1
| | | | | | Co-Authored-By: babolivier <contact@brendanabolivier.com>
* | Fixed return valueBrendan Abolivier2019-04-301-2/+2
| |
* | FixesBrendan Abolivier2019-04-301-4/+7
| |
* | Fix methodBrendan Abolivier2019-04-301-1/+1
| |
* | Register servletsBrendan Abolivier2019-04-301-0/+2
| |
* | Add bulk lookupBrendan Abolivier2019-04-301-1/+26
| |
* | Move lookup endpoint to CS API (and s/is_server/id_server/)Brendan Abolivier2019-04-301-0/+32
| |
* | Merge branch 'develop' into dinsicAndrew Morgan2019-04-151-2/+3
|\|
| * Add unbind API to /r0 as it is now stabalisedErik Johnston2019-04-011-1/+1
| |
| * Allowing specifying IS to use in unbind API.Erik Johnston2019-04-011-1/+2
| | | | | | | | | | | | | | | | | | | | By default the homeserver will use the identity server used during the binding of the 3PID to unbind the 3PID. However, we need to allow clients to explicitly ask the homeserver to unbind via a particular identity server, for the case where the 3PID was bound out of band from the homeserver. Implements MSC915.
* | IsortErik Johnston2019-03-151-1/+1
| |
* | Use internal-info for identity server. Block reg on fields dinsic_2019-02-19-beta11Andrew Morgan2019-02-191-2/+2
| |
* | Synchronise account metadata onto another server. (#4145) dinsic_2019-01-11Matthew Hodgson2019-01-111-19/+92
| | | | | | | | | | * implement shadow registration via AS (untested) * shadow support for 3pid binding/unbinding (untested)
* | merge master into dinsic, again...Matthew Hodgson2018-11-031-4/+12
|\|
| * improve human readable error messagesNeil Johnson2018-09-041-4/+12
| |
* | merge in masterMatthew Hodgson2018-10-221-4/+18
|\|
| * Don't fail requests to unbind 3pids for non supporting ID serversErik Johnston2018-08-081-4/+18
| | | | | | | | | | | | | | | | | | | | Older identity servers may not support the unbind 3pid request, so we shouldn't fail the requests if we received one of 400/404/501. The request still fails if we receive e.g. 500 responses, allowing clients to retry requests on transient identity server errors that otherwise do support the API. Fixes #3661
* | Merge remote-tracking branch 'origin/master' into dinsicDavid Baker2018-07-191-36/+16
|\|
| * Merge pull request #3534 from krombel/use_parse_and_asserts_from_servletAmber Brown2018-07-141-34/+12
| |\ | | | | | | Use parse and asserts from http.servlet
| | * rename assert_params_in_request to assert_params_in_dictKrombel2018-07-131-7/+7
| | | | | | | | | | | | | | | | | | the method "assert_params_in_request" does handle dicts and not requests. A request body has to be parsed to json before this method can be used
| | * Use parse_{int,str} and assert from http.servletKrombel2018-07-131-31/+9
| | | | | | | | | | | | | | | | | | | | | parse_integer and parse_string can take a request and raise errors in case we have wrong or missing params. This PR tries to use them more to deduplicate some code and make it better readable
| * | Make auth & transactions more testable (#3499)Amber Brown2018-07-141-2/+1
| |/
| * run isortAmber Brown2018-07-091-1/+4
| |
* | More run_on_reactorDavid Baker2018-07-191-2/+0
| |
* | run_on_reactor is deadDavid Baker2018-07-191-2/+0
| |
* | Merge remote-tracking branch 'origin/master' into dinsicDavid Baker2018-07-171-8/+21
|\|
| * Revert "Revert "Merge pull request #3431 from ↵Erik Johnston2018-06-251-2/+11
| | | | | | | | | | | | matrix-org/rav/erasure_visibility"" This reverts commit 1d009013b3c3e814177afc59f066e02a202b21cd.
| * Revert "Merge pull request #3431 from matrix-org/rav/erasure_visibility"Richard van der Hoff2018-06-221-11/+2
| | | | | | | | | | This reverts commit ce0d911156b355c5bf452120bfb08653dad96497, reversing changes made to b4a5d767a94f1680d07edfd583aae54ce422573e.
| * Merge pull request #3431 from matrix-org/rav/erasure_visibilityErik Johnston2018-06-221-2/+11
| |\ | | | | | | Support hiding events from deleted users
| | * mark accounts as erased when requestedRichard van der Hoff2018-06-121-2/+11
| | |
| * | Remove run_on_reactor (#3395)Amber Brown2018-06-141-7/+0
| |/
| * pep8David Baker2018-05-241-1/+1
| |
| * Unbind 3pids when they're deleted tooDavid Baker2018-05-241-3/+10
| |
* | unbreak 3pid deletionMatrix2018-05-031-0/+1
| |
* | add option to disable changes to the 3PIDs for an account.Matthew Hodgson2018-05-031-0/+6
| | | | | | | | | | | | | | This only considers the /account/3pid API, which should be sufficient as currently we can't change emails associated with push notifs (which are provisioned at registration), and we can't directly create mappings for accounts in an IS other than by answering an invite
* | add yieldsMatthew Hodgson2018-03-131-4/+4
|/
* trailing commasMatthew Hodgson2018-01-191-4/+4
|
* rewrite based on PR feedback:Matthew Hodgson2018-01-191-1/+2
| | | | | | | | | * [ ] split config options into allowed_local_3pids and registrations_require_3pid * [ ] simplify and comment logic for picking registration flows * [ ] fix docstring and move check_3pid_allowed into a new util module * [ ] use check_3pid_allowed everywhere @erikjohnston PTAL
* fix up v1, and improve errorsMatthew Hodgson2018-01-191-4/+12
|
* add registrations_require_3pidMatthew Hodgson2018-01-191-1/+13
| | | | | lets homeservers specify a whitelist for 3PIDs that users are allowed to associate with. Typically useful for stopping people from registering with non-work emails
* Factor out a validate_user_via_ui_auth methodRichard van der Hoff2017-12-051-60/+47
| | | | Collect together all the places that validate a logged-in user via UI auth.
* Refactor UI auth implementationRichard van der Hoff2017-12-051-9/+5
| | | | | Instead of returning False when auth is incomplete, throw an exception which can be caught with a wrapper.
* Move set_password into its own handlerRichard van der Hoff2017-11-291-1/+2
| | | | | | Non-functional refactoring to move set_password. This means that we'll be able to properly deactivate devices and access tokens without introducing a dependency loop.
* Move deactivate_account into its own handlerRichard van der Hoff2017-11-291-3/+4
| | | | | | Non-functional refactoring to move deactivate_account. This means that we'll be able to properly deactivate devices and access tokens without introducing a dependency loop.
* Remove redundent callTravis Ralston2017-11-131-2/+0
| | | Signed-off-by: Travis Ralston <travpc@gmail.com>
* Add a route for determining who you areTravis Ralston2017-11-121-0/+17
| | | | | Useful for applications which may have an access token, but no idea as to who owns it. Signed-off-by: Travis Ralston <travpc@gmail.com>
* Move access token deletion into auth handlerRichard van der Hoff2017-11-011-11/+4
| | | | | | | Also move duplicated deactivation code into the auth handler. I want to add some hooks when we deactivate an access token, so let's bring it all in here so that there's somewhere to put it.
* Allow ASes to deactivate their own usersRichard van der Hoff2017-10-271-16/+32
|
* Fix token request for addition of phone numbersDavid Baker2017-03-231-1/+1
|
* Support registration / login with phone numberDavid Baker2017-03-131-20/+94
| | | | Changes from https://github.com/matrix-org/synapse/pull/1971
* Revert "Support registration & login with phone number"Erik Johnston2017-03-131-94/+20
|
* pep8David Baker2017-03-081-1/+1
|
* Pull out datastore in initialiserDavid Baker2017-03-081-5/+10
|
* Refector out assert_params_in_requestDavid Baker2017-03-081-19/+9
| | | | and replace requestEmailToken where we meant requestMsisdnToken
* Factor out msisdn canonicalisationDavid Baker2017-03-081-18/+3
| | | | Plus a couple of other minor fixes
* Fix pep8David Baker2017-03-081-2/+2
|
* WIP support for msisdn 3pid proxy methodsDavid Baker2017-02-141-8/+102
|
* Lowercase all email addresses before querying dbDavid Baker2017-01-181-0/+5
| | | | | Since we store all emails in the DB in lowercase (https://github.com/matrix-org/synapse/pull/1170)
* Add /account/3pid/delete endpointDavid Baker2016-12-201-1/+35
| | | | Also fix a typo in a comment
* Add hs objectErik Johnston2016-07-141-0/+1
|
* Only accept password authErik Johnston2016-07-141-12/+0
|
* Add an /account/deactivate endpointErik Johnston2016-07-141-0/+55
|
* be more pythonicDavid Baker2016-07-121-1/+1
|
* on_OPTIONS isn't neccessaryDavid Baker2016-07-121-7/+1
|
* Remove other debug loggingDavid Baker2016-07-121-2/+0
|
* Separate out requestTokens to separate handlersDavid Baker2016-07-111-37/+56
|
* Oops, remove debug loggingDavid Baker2016-07-111-4/+0
|
* Implement https://github.com/matrix-org/matrix-doc/pull/346/filesDavid Baker2016-07-081-0/+59
|
* Split out the auth handlerDavid Baker2016-06-021-2/+2
|
* Fix password resetDavid Baker2016-04-291-0/+1
| | | | Default requester to None, otherwise it isn't defined when resetting using email auth
* take extra return val from check_auth in account tooDavid Baker2016-03-161-1/+1
|
* Fix cache invalidation so deleting access tokens (which we did when changing ↵David Baker2016-03-111-1/+1
| | | | password) actually takes effect without HS restart. Reinstate the code to avoid logging out the session that changed the password, removed in 415c2f05491ce65a4fc34326519754cd1edd9c54
* Add a parse_json_object functionMark Haines2016-03-091-4/+4
| | | | | to deduplicate all the copy+pasted _parse_json functions. Also document the parse_.* functions.
* Allow three_pid_creds as well as threePidCreds in /account/3pidMark Haines2016-01-291-2/+3
|
* Fix change_passwordErik Johnston2016-01-201-3/+2
|
* Introduce a Requester objectDaniel Wagner-Hall2016-01-111-9/+11
| | | | | | | | | This tracks data about the entity which made the request. This is instead of passing around a tuple, which requires call-site modifications every time a new piece of optional context is passed around. I tried to introduce a User object. I gave up.
* copyrightsMatthew Hodgson2016-01-071-1/+1
|
* Update endpoints to reflect current specDaniel Wagner-Hall2015-12-021-2/+2
|
* Host /unstable and /r0 versions of r0 APIsDaniel Wagner-Hall2015-12-011-3/+3
|
* Allow guests to register and call /events?room_id=Daniel Wagner-Hall2015-11-041-3/+3
| | | | | | | This follows the same flows-based flow as regular registration, but as the only implemented flow has no requirements, it auto-succeeds. In the future, other flows (e.g. captcha) may be required, so clients should treat this like the regular registration flow choices.
* Merge pull request #274 from matrix-org/add_threepid_fixDavid Baker2015-09-101-0/+1
|\ | | | | Fix adding threepids to an existing account
| * Fix adding threepids to an existing accountDavid Baker2015-09-101-0/+1
| |
* | Remove completely unused concepts from codebaseDaniel Wagner-Hall2015-08-251-2/+2
|/ | | | | | | | | | Removes device_id and ClientInfo device_id is never actually written, and the matrix.org DB has no non-null entries for it. Right now, it's just cluttering up code. This doesn't remove the columns from the database, because that's fiddly.
* Remove spurious extra arg to set_passwordDavid Baker2015-08-201-1/+1
|
* Simplify LoginHander and AuthHandlerDaniel Wagner-Hall2015-08-121-5/+3
| | | | | | | | | * Merge LoginHandler -> AuthHandler * Add a bunch of documentation * Improve some naming * Remove unused branches I will start merging the actual logic of the two handlers shortly
* user_id now in user_threepidsDavid Baker2015-05-011-3/+3
|
* pep8David Baker2015-04-271-1/+2
|
* logging argsDavid Baker2015-04-271-2/+2
|
* More underscoresDavid Baker2015-04-241-2/+2
|
* Dedicated error code for failed 3pid auth verificationDavid Baker2015-04-231-1/+3
|
* Password reset, finally.David Baker2015-04-171-5/+16
|
* Add endpoint to get threepids from serverDavid Baker2015-04-171-0/+12
|
* make add3pid servlet workDavid Baker2015-04-171-0/+38
|
* just the once would probably be fineDavid Baker2015-04-171-1/+0
|
* Register the 3pid servletDavid Baker2015-04-171-1/+3
|
* password -> account servlet and add start of an 'add 3pid' endpointDavid Baker2015-04-171-0/+94
generated by cgit-magenta 1.5.1 (git 2.48.1) at 2025-09-11 11:56:15 +0000