summary refs log tree commit diff
path: root/synapse/rest/client/v2_alpha
diff options
context:
space:
mode:
authorAndrew Morgan <andrew@amorgan.xyz>2020-09-28 18:46:59 +0100
committerAndrew Morgan <andrew@amorgan.xyz>2020-09-28 18:46:59 +0100
commitd4605d1f16b5d71c72dbf07b1ffeaa81c0cb87a9 (patch)
tree000f7d31d8c4eee28feb4cd9bf8a5ccb9f7e28ae /synapse/rest/client/v2_alpha
parentAdd checks for postgres sequence consistency (#8402) (diff)
downloadsynapse-d4605d1f16b5d71c72dbf07b1ffeaa81c0cb87a9.tar.xz
Don't check whether a 3pid is allowed to register during password reset
This endpoint should only deal with emails that have already been approved, and
are attached with user's account. There's no need to re-check them here.
Diffstat (limited to 'synapse/rest/client/v2_alpha')
-rw-r--r--synapse/rest/client/v2_alpha/account.py7
1 files changed, 0 insertions, 7 deletions
diff --git a/synapse/rest/client/v2_alpha/account.py b/synapse/rest/client/v2_alpha/account.py
index c3ce0f6259..ed0d0772f8 100644
--- a/synapse/rest/client/v2_alpha/account.py
+++ b/synapse/rest/client/v2_alpha/account.py
@@ -96,13 +96,6 @@ class EmailPasswordRequestTokenRestServlet(RestServlet):
         send_attempt = body["send_attempt"]
         next_link = body.get("next_link")  # Optional param
 
-        if not check_3pid_allowed(self.hs, "email", email):
-            raise SynapseError(
-                403,
-                "Your email domain is not authorized on this server",
-                Codes.THREEPID_DENIED,
-            )
-
         # Raise if the provided next_link value isn't valid
         assert_valid_next_link(self.hs, next_link)