Added PasswordResetRestServlet. Hit the IS to confirm the email/user. Need to send email.

author: Kegan Dougal <kegan@matrix.org> 2014-09-16 11:22:40 +0100
committer: Kegan Dougal <kegan@matrix.org> 2014-09-16 11:22:40 +0100
commit: 5f30a69a9e617028c39ea3851b9a5de43d42a299 (patch)
tree: e6ee0b1e8c6760693a6f36ae1c24a37fb45a9601 /synapse/handlers
parent: Merge remote-tracking branch 'origin/develop' into webclient_data_centralisation (diff)
download: synapse-5f30a69a9e617028c39ea3851b9a5de43d42a299.tar.xz
1 files changed, 28 insertions, 1 deletions
diff --git a/synapse/handlers/login.py b/synapse/handlers/login.py
index 6ee7ce5a2d..101b9a81ad 100644
--- a/synapse/handlers/login.py
+++ b/synapse/handlers/login.py
@@ -17,9 +17,11 @@ from twisted.internet import defer
 
 from ._base import BaseHandler
 from synapse.api.errors import LoginError, Codes
+from synapse.http.client import PlainHttpClient
 
 import bcrypt
 import logging
+import urllib
 
 logger = logging.getLogger(__name__)
 
@@ -62,4 +64,29 @@ class LoginHandler(BaseHandler):
             defer.returnValue(token)
         else:
             logger.warn("Failed password login for user %s", user)
-            raise LoginError(403, "", errcode=Codes.FORBIDDEN)
\ No newline at end of file
+            raise LoginError(403, "", errcode=Codes.FORBIDDEN)
+
+    @defer.inlineCallbacks
+    def reset_password(self, user_id, email):
+        is_valid = yield self._check_valid_association(user_id, email)
+        logger.info("reset_password user=%s email=%s valid=%s", user_id, email,
+                    is_valid)
+
+    @defer.inlineCallbacks
+    def _check_valid_association(self, user_id, email):
+        identity = yield self._query_email(email)
+        if identity and "mxid" in identity:
+            if identity["mxid"] == user_id:
+                defer.returnValue(True)
+                return
+        defer.returnValue(False)
+
+    @defer.inlineCallbacks
+    def _query_email(self, email):
+        httpCli = PlainHttpClient(self.hs)
+        data = yield httpCli.get_json(
+            'matrix.org:8090',  # TODO FIXME This should be configurable.
+            "/_matrix/identity/api/v1/lookup?medium=email&address=" +
+            "%s" % urllib.quote(email)
+        )
+        defer.returnValue(data)
\ No newline at end of file
author	Kegan Dougal <kegan@matrix.org>	2014-09-16 11:22:40 +0100
committer	Kegan Dougal <kegan@matrix.org>	2014-09-16 11:22:40 +0100
commit	5f30a69a9e617028c39ea3851b9a5de43d42a299 (patch)
tree	e6ee0b1e8c6760693a6f36ae1c24a37fb45a9601 /synapse/handlers
parent	Merge remote-tracking branch 'origin/develop' into webclient_data_centralisation (diff)
download	synapse-5f30a69a9e617028c39ea3851b9a5de43d42a299.tar.xz