Merge pull request #2727 from matrix-org/rav/refactor_ui_auth_return

Refactor UI auth implementation
author: Richard van der Hoff <github@rvanderhoff.org.uk> 2017-12-05 09:40:38 +0000
committer: GitHub <noreply@github.com> 2017-12-05 09:40:38 +0000
commit: aa6ecf09846951bd822970ba2b6d7d38abeec0ff (patch)
tree: f675cc0f589fb974b529024ca3403be38f03a628 /synapse/rest/client/v2_alpha/devices.py
parent: Merge pull request #2716 from matrix-org/rav/federation_client_post (diff)
parent: Refactor UI auth implementation (diff)
download: synapse-aa6ecf09846951bd822970ba2b6d7d38abeec0ff.tar.xz
1 files changed, 5 insertions, 9 deletions
diff --git a/synapse/rest/client/v2_alpha/devices.py b/synapse/rest/client/v2_alpha/devices.py
index 5321e5abbb..909f9c087b 100644
--- a/synapse/rest/client/v2_alpha/devices.py
+++ b/synapse/rest/client/v2_alpha/devices.py
@@ -19,7 +19,7 @@ from twisted.internet import defer
 
 from synapse.api import constants, errors
 from synapse.http import servlet
-from ._base import client_v2_patterns
+from ._base import client_v2_patterns, interactive_auth_handler
 
 logger = logging.getLogger(__name__)
 
@@ -60,6 +60,7 @@ class DeleteDevicesRestServlet(servlet.RestServlet):
         self.device_handler = hs.get_device_handler()
         self.auth_handler = hs.get_auth_handler()
 
+    @interactive_auth_handler
     @defer.inlineCallbacks
     def on_POST(self, request):
         try:
@@ -77,13 +78,10 @@ class DeleteDevicesRestServlet(servlet.RestServlet):
                 400, "No devices supplied", errcode=errors.Codes.MISSING_PARAM
             )
 
-        authed, result, params, _ = yield self.auth_handler.check_auth([
+        result, params, _ = yield self.auth_handler.check_auth([
             [constants.LoginType.PASSWORD],
         ], body, self.hs.get_ip_from_request(request))
 
-        if not authed:
-            defer.returnValue((401, result))
-
         requester = yield self.auth.get_user_by_req(request)
         yield self.device_handler.delete_devices(
             requester.user.to_string(),
@@ -115,6 +113,7 @@ class DeviceRestServlet(servlet.RestServlet):
         )
         defer.returnValue((200, device))
 
+    @interactive_auth_handler
     @defer.inlineCallbacks
     def on_DELETE(self, request, device_id):
         requester = yield self.auth.get_user_by_req(request)
@@ -130,13 +129,10 @@ class DeviceRestServlet(servlet.RestServlet):
             else:
                 raise
 
-        authed, result, params, _ = yield self.auth_handler.check_auth([
+        result, params, _ = yield self.auth_handler.check_auth([
             [constants.LoginType.PASSWORD],
         ], body, self.hs.get_ip_from_request(request))
 
-        if not authed:
-            defer.returnValue((401, result))
-
         # check that the UI auth matched the access token
         user_id = result[constants.LoginType.PASSWORD]
         if user_id != requester.user.to_string():
author	Richard van der Hoff <github@rvanderhoff.org.uk>	2017-12-05 09:40:38 +0000
committer	GitHub <noreply@github.com>	2017-12-05 09:40:38 +0000
commit	aa6ecf09846951bd822970ba2b6d7d38abeec0ff (patch)
tree	f675cc0f589fb974b529024ca3403be38f03a628 /synapse/rest/client/v2_alpha/devices.py
parent	Merge pull request #2716 from matrix-org/rav/federation_client_post (diff)
parent	Refactor UI auth implementation (diff)
download	synapse-aa6ecf09846951bd822970ba2b6d7d38abeec0ff.tar.xz