Add an admin endpoint to allow authorizing server to signal token revocations (#16125)

author: Shay <hillerys@element.io> 2023-08-22 07:15:34 -0700
committer: GitHub <noreply@github.com> 2023-08-22 14:15:34 +0000
commit: 69048f7b4848ab6a4ae6cb233f8cbf36d73c0ba1 (patch)
tree: 36358213ec30b624ac550e77c9df7f318776676e /synapse/api
parent: Bump serde from 1.0.183 to 1.0.184 (#16139) (diff)
download: synapse-69048f7b4848ab6a4ae6cb233f8cbf36d73c0ba1.tar.xz
1 files changed, 13 insertions, 0 deletions
diff --git a/synapse/api/auth/msc3861_delegated.py b/synapse/api/auth/msc3861_delegated.py
index 4bdfe31b22..14cba50c90 100644
--- a/synapse/api/auth/msc3861_delegated.py
+++ b/synapse/api/auth/msc3861_delegated.py
@@ -438,3 +438,16 @@ class MSC3861DelegatedAuth(BaseAuth):
             scope=scope,
             is_guest=(has_guest_scope and not has_user_scope),
         )
+
+    def invalidate_cached_tokens(self, keys: List[str]) -> None:
+        """
+        Invalidate the entry(s) in the introspection token cache corresponding to the given key
+        """
+        for key in keys:
+            self._token_cache.invalidate(key)
+
+    def invalidate_token_cache(self) -> None:
+        """
+        Invalidate the entire token cache.
+        """
+        self._token_cache.invalidate_all()
author	Shay <hillerys@element.io>	2023-08-22 07:15:34 -0700
committer	GitHub <noreply@github.com>	2023-08-22 14:15:34 +0000
commit	69048f7b4848ab6a4ae6cb233f8cbf36d73c0ba1 (patch)
tree	36358213ec30b624ac550e77c9df7f318776676e /synapse/api
parent	Bump serde from 1.0.183 to 1.0.184 (#16139) (diff)
download	synapse-69048f7b4848ab6a4ae6cb233f8cbf36d73c0ba1.tar.xz