Persist user interactive authentication sessions (#7302)

By persisting the user interactive authentication sessions to the database, this fixes situations where a user hits different works throughout their auth session and also allows sessions to persist through restarts of Synapse.
author: Patrick Cloke <clokep@users.noreply.github.com> 2020-04-30 13:47:49 -0400
committer: GitHub <noreply@github.com> 2020-04-30 13:47:49 -0400
commit: 627b0f5f2753e6910adb7a877541d50f5936b8a5 (patch)
tree: 6b4d53f91efa0675fc9df8af85cd163243976d55 /tests/rest/client
parent: Apply federation check for /publicRooms with filter list (#7367) (diff)
download: synapse-627b0f5f2753e6910adb7a877541d50f5936b8a5.tar.xz
1 files changed, 40 insertions, 0 deletions
diff --git a/tests/rest/client/v2_alpha/test_auth.py b/tests/rest/client/v2_alpha/test_auth.py
index 624bf5ada2..587be7b2e7 100644
--- a/tests/rest/client/v2_alpha/test_auth.py
+++ b/tests/rest/client/v2_alpha/test_auth.py
@@ -181,3 +181,43 @@ class FallbackAuthTests(unittest.HomeserverTestCase):
         )
         self.render(request)
         self.assertEqual(channel.code, 403)
+
+    def test_complete_operation_unknown_session(self):
+        """
+        Attempting to mark an invalid session as complete should error.
+        """
+
+        # Make the initial request to register. (Later on a different password
+        # will be used.)
+        request, channel = self.make_request(
+            "POST",
+            "register",
+            {"username": "user", "type": "m.login.password", "password": "bar"},
+        )
+        self.render(request)
+
+        # Returns a 401 as per the spec
+        self.assertEqual(request.code, 401)
+        # Grab the session
+        session = channel.json_body["session"]
+        # Assert our configured public key is being given
+        self.assertEqual(
+            channel.json_body["params"]["m.login.recaptcha"]["public_key"], "brokencake"
+        )
+
+        request, channel = self.make_request(
+            "GET", "auth/m.login.recaptcha/fallback/web?session=" + session
+        )
+        self.render(request)
+        self.assertEqual(request.code, 200)
+
+        # Attempt to complete an unknown session, which should return an error.
+        unknown_session = session + "unknown"
+        request, channel = self.make_request(
+            "POST",
+            "auth/m.login.recaptcha/fallback/web?session="
+            + unknown_session
+            + "&g-recaptcha-response=a",
+        )
+        self.render(request)
+        self.assertEqual(request.code, 400)
author	Patrick Cloke <clokep@users.noreply.github.com>	2020-04-30 13:47:49 -0400
committer	GitHub <noreply@github.com>	2020-04-30 13:47:49 -0400
commit	627b0f5f2753e6910adb7a877541d50f5936b8a5 (patch)
tree	6b4d53f91efa0675fc9df8af85cd163243976d55 /tests/rest/client
parent	Apply federation check for /publicRooms with filter list (#7367) (diff)
download	synapse-627b0f5f2753e6910adb7a877541d50f5936b8a5.tar.xz