Add ability for access tokens to belong to one user but grant access to another user. (#8616)

We do it this way round so that only the "owner" can delete the access token (i.e. `/logout/all` by the "owner" also deletes that token, but `/logout/all` by the "target user" doesn't). A future PR will add an API for creating such a token. When the target user and authenticated entity are different the `Processed request` log line will be logged with a: `{@admin:server as @bob:server} ...`. I'm not convinced by that format (especially since it adds spaces in there, making it harder to use `cut -d ' '` to chop off the start of log lines). Suggestions welcome.
author: Erik Johnston <erik@matrix.org> 2020-10-29 15:58:44 +0000
committer: GitHub <noreply@github.com> 2020-10-29 15:58:44 +0000
commit: f21e24ffc22a5eb01f242f47fa30979321cf20fc (patch)
tree: ec3dff4f767d024777c1b0c70d4f594a218c4a23 /synapse/appservice
parent: Fix cache call signature to accept `on_invalidate`. (#8684) (diff)
download: synapse-f21e24ffc22a5eb01f242f47fa30979321cf20fc.tar.xz
1 files changed, 2 insertions, 2 deletions
diff --git a/synapse/appservice/__init__.py b/synapse/appservice/__init__.py
index 3862d9c08f..66d008d2f4 100644
--- a/synapse/appservice/__init__.py
+++ b/synapse/appservice/__init__.py
@@ -52,11 +52,11 @@ class ApplicationService:
         self,
         token,
         hostname,
+        id,
+        sender,
         url=None,
         namespaces=None,
         hs_token=None,
-        sender=None,
-        id=None,
         protocols=None,
         rate_limited=True,
         ip_range_whitelist=None,
author	Erik Johnston <erik@matrix.org>	2020-10-29 15:58:44 +0000
committer	GitHub <noreply@github.com>	2020-10-29 15:58:44 +0000
commit	f21e24ffc22a5eb01f242f47fa30979321cf20fc (patch)
tree	ec3dff4f767d024777c1b0c70d4f594a218c4a23 /synapse/appservice
parent	Fix cache call signature to accept `on_invalidate`. (#8684) (diff)
download	synapse-f21e24ffc22a5eb01f242f47fa30979321cf20fc.tar.xz