Allow admins to require a manual approval process before new accounts can be used (using MSC3866) (#13556)

author: Brendan Abolivier <babolivier@matrix.org> 2022-09-29 14:23:24 +0100
committer: GitHub <noreply@github.com> 2022-09-29 15:23:24 +0200
commit: be76cd8200b18f3c68b895f85ac7ef5b0ddc2466 (patch)
tree: c32c1b1e7a835b9f970fc4ae28ded0dd858ff841 /synapse/handlers/register.py
parent: Explicit cast to enforce type hints. (#13939) (diff)
download: synapse-be76cd8200b18f3c68b895f85ac7ef5b0ddc2466.tar.xz
1 files changed, 8 insertions, 0 deletions
diff --git a/synapse/handlers/register.py b/synapse/handlers/register.py
index cfcadb34db..ca1c7a1866 100644
--- a/synapse/handlers/register.py
+++ b/synapse/handlers/register.py
@@ -220,6 +220,7 @@ class RegistrationHandler:
         by_admin: bool = False,
         user_agent_ips: Optional[List[Tuple[str, str]]] = None,
         auth_provider_id: Optional[str] = None,
+        approved: bool = False,
     ) -> str:
         """Registers a new client on the server.
 
@@ -246,6 +247,8 @@ class RegistrationHandler:
             user_agent_ips: Tuples of user-agents and IP addresses used
                 during the registration process.
             auth_provider_id: The SSO IdP the user used, if any.
+            approved: True if the new user should be considered already
+                approved by an administrator.
         Returns:
             The registered user_id.
         Raises:
@@ -307,6 +310,7 @@ class RegistrationHandler:
                 user_type=user_type,
                 address=address,
                 shadow_banned=shadow_banned,
+                approved=approved,
             )
 
             profile = await self.store.get_profileinfo(localpart)
@@ -695,6 +699,7 @@ class RegistrationHandler:
         user_type: Optional[str] = None,
         address: Optional[str] = None,
         shadow_banned: bool = False,
+        approved: bool = False,
     ) -> None:
         """Register user in the datastore.
 
@@ -713,6 +718,7 @@ class RegistrationHandler:
                 api.constants.UserTypes, or None for a normal user.
             address: the IP address used to perform the registration.
             shadow_banned: Whether to shadow-ban the user
+            approved: Whether to mark the user as approved by an administrator
         """
         if self.hs.config.worker.worker_app:
             await self._register_client(
@@ -726,6 +732,7 @@ class RegistrationHandler:
                 user_type=user_type,
                 address=address,
                 shadow_banned=shadow_banned,
+                approved=approved,
             )
         else:
             await self.store.register_user(
@@ -738,6 +745,7 @@ class RegistrationHandler:
                 admin=admin,
                 user_type=user_type,
                 shadow_banned=shadow_banned,
+                approved=approved,
             )
 
             # Only call the account validity module(s) on the main process, to avoid
author	Brendan Abolivier <babolivier@matrix.org>	2022-09-29 14:23:24 +0100
committer	GitHub <noreply@github.com>	2022-09-29 15:23:24 +0200
commit	be76cd8200b18f3c68b895f85ac7ef5b0ddc2466 (patch)
tree	c32c1b1e7a835b9f970fc4ae28ded0dd858ff841 /synapse/handlers/register.py
parent	Explicit cast to enforce type hints. (#13939) (diff)
download	synapse-be76cd8200b18f3c68b895f85ac7ef5b0ddc2466.tar.xz