diff options
author | Patrick Cloke <clokep@users.noreply.github.com> | 2021-06-16 11:07:28 -0400 |
---|---|---|
committer | GitHub <noreply@github.com> | 2021-06-16 11:07:28 -0400 |
commit | 76f9c701c3920d83c0fe8f08b9197e2e92e12dad (patch) | |
tree | eea41aae32a58a9484d27b975982143b41d65231 /docs/sample_config.yaml | |
parent | A guide to the request log lines format. (#8436) (diff) | |
download | synapse-76f9c701c3920d83c0fe8f08b9197e2e92e12dad.tar.xz |
Always require users to re-authenticate for dangerous operations. (#10184)
Dangerous actions means deactivating an account, modifying an account password, or adding a 3PID. Other actions (deleting devices, uploading keys) can re-use the same UI auth session if ui_auth.session_timeout is configured.
Diffstat (limited to 'docs/sample_config.yaml')
-rw-r--r-- | docs/sample_config.yaml | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/docs/sample_config.yaml b/docs/sample_config.yaml index f8925a5e24..2ab88eb14e 100644 --- a/docs/sample_config.yaml +++ b/docs/sample_config.yaml @@ -2318,6 +2318,10 @@ ui_auth: # the user-interactive authentication process, by allowing for multiple # (and potentially different) operations to use the same validation session. # + # This is ignored for potentially "dangerous" operations (including + # deactivating an account, modifying an account password, and + # adding a 3PID). + # # Uncomment below to allow for credential validation to last for 15 # seconds. # |