Allow server admins to define and enforce a password policy (MSC2000). (#7118)

author: Dirk Klimpel <5740567+dklimpel@users.noreply.github.com> 2020-03-26 17:51:13 +0100
committer: GitHub <noreply@github.com> 2020-03-26 16:51:13 +0000
commit: e8e2ddb60ae11db488f159901d918cb159695912 (patch)
tree: 11a1e2c0187b30e8c969bb3e695e1416f2d2a579 /synapse/rest/client/v2_alpha/register.py
parent: Validate that the session is not modified during UI-Auth (#7068) (diff)
download: synapse-e8e2ddb60ae11db488f159901d918cb159695912.tar.xz
1 files changed, 2 insertions, 0 deletions
diff --git a/synapse/rest/client/v2_alpha/register.py b/synapse/rest/client/v2_alpha/register.py
index 6963d79310..66fc8ec179 100644
--- a/synapse/rest/client/v2_alpha/register.py
+++ b/synapse/rest/client/v2_alpha/register.py
@@ -373,6 +373,7 @@ class RegisterRestServlet(RestServlet):
         self.room_member_handler = hs.get_room_member_handler()
         self.macaroon_gen = hs.get_macaroon_generator()
         self.ratelimiter = hs.get_registration_ratelimiter()
+        self.password_policy_handler = hs.get_password_policy_handler()
         self.clock = hs.get_clock()
 
         self._registration_flows = _calculate_registration_flows(
@@ -420,6 +421,7 @@ class RegisterRestServlet(RestServlet):
                 or len(body["password"]) > 512
             ):
                 raise SynapseError(400, "Invalid password")
+            self.password_policy_handler.validate_password(body["password"])
 
         desired_username = None
         if "username" in body:
author	Dirk Klimpel <5740567+dklimpel@users.noreply.github.com>	2020-03-26 17:51:13 +0100
committer	GitHub <noreply@github.com>	2020-03-26 16:51:13 +0000
commit	e8e2ddb60ae11db488f159901d918cb159695912 (patch)
tree	11a1e2c0187b30e8c969bb3e695e1416f2d2a579 /synapse/rest/client/v2_alpha/register.py
parent	Validate that the session is not modified during UI-Auth (#7068) (diff)
download	synapse-e8e2ddb60ae11db488f159901d918cb159695912.tar.xz