summary refs log tree commit diff
Commit message (Collapse)AuthorAgeFilesLines
* Fix debian packages for sid being called buster. (#5775)Erik Johnston2019-07-303-1/+8
| | | | | | | | | | * Fix debian packages for sid being called buster. I don't know why the sid images return buster as its codename in `lsb_release` but it does, so lets just grab the codename from the distro we pass into dockerfile * Newsfile
* Merge pull request #5780 from matrix-org/baboliver/loopingcall-argsBrendan Abolivier2019-07-292-2/+5
|\ | | | | Add ability to pass arguments to looping calls
| * ChangelogBrendan Abolivier2019-07-291-0/+1
| |
| * Add kwargs and docBrendan Abolivier2019-07-291-2/+4
| |
| * Add ability to pass arguments to looping callsBrendan Abolivier2019-07-291-2/+2
|/
* Merge branch 'master' into developRichard van der Hoff2019-07-266-4/+38
|\
| * yet more changelog attribution fixes v1.2.1Richard van der Hoff2019-07-261-2/+2
| |
| * correct attributions in changelog github/release-v1.2.1 release-v1.2.1Richard van der Hoff2019-07-261-1/+4
| |
| * correct attributions in changelogRichard van der Hoff2019-07-261-1/+2
| |
| * 1.2.1Richard van der Hoff2019-07-265-4/+30
| |
| * Merge branch 'erikj/log_leave_origin_mismatch' into release-v1.2.1Richard van der Hoff2019-07-263-4/+38
| |\
| * | Log when we receive receipt from a different originErik Johnston2019-07-261-13/+22
| | |
| * | Fix DoS when there is a cycle in redaction eventsRichard van der Hoff2019-07-261-0/+4
| | | | | | | | | | | | | | | Make sure that synapse doesn't explode when a redaction redacts itself, or there is a larger cycle.
| * | Merge branch 'rav/redactions/cross_room_id' into release-v1.2.1Richard van der Hoff2019-07-252-0/+28
| |\ \
* | \ \ Merge pull request #5744 from matrix-org/erikj/log_leave_origin_mismatchRichard van der Hoff2019-07-263-4/+38
|\ \ \ \ | | |_|/ | |/| | Log when we receive a /make_* request from a different origin
| * | | Log when we receive a /make_* request from a different originRichard van der Hoff2019-07-263-4/+38
| | | |
* | | | Convert RedactionTestCase to modern test style (#5768)Richard van der Hoff2019-07-262-36/+39
| | | |
* | | | Merge pull request #5767 from matrix-org/rav/redactions/cross_room_idRichard van der Hoff2019-07-252-0/+28
|\ \ \ \ | | |_|/ | |/| | log when a redaction attempts to redact an event in a different room
| * | | log when a redaction attempts to redact an event in a different roomRichard van der Hoff2019-07-252-0/+28
| | |/ | |/|
* | | Fix some error cases in the caching layer. (#5749)Richard van der Hoff2019-07-253-35/+130
| | | | | | | | | | | | | | | | | | | | | There was some inconsistent behaviour in the caching layer around how exceptions were handled - particularly synchronously-thrown ones. This seems to be most easily handled by pushing the creation of ObservableDeferreds down from CacheDescriptor to the Cache.
* | | Merge branch 'master' into developAndrew Morgan2019-07-253-3/+12
|\| |
| * | 1.2.0 v1.2.0 github/release-v1.2.0 release-v1.2.0Andrew Morgan2019-07-253-3/+12
| |/
* | Merge tag 'v1.2.0rc2' into developAndrew Morgan2019-07-2411-32/+101
|\| | | | | | | | | | | | | Bugfixes -------- - Fix a regression introduced in v1.2.0rc1 which led to incorrect labels on some prometheus metrics. ([\#5734](https://github.com/matrix-org/synapse/issues/5734))
| * 1.2.0rc2 v1.2.0rc2Andrew Morgan2019-07-243-2/+10
| |
| * Fix servlet metric names (#5734)Jorik Schellekens2019-07-2410-31/+92
| | | | | | | | | | | | | | | | | | | | * Fix servlet metric names Co-Authored-By: Richard van der Hoff <1389908+richvdh@users.noreply.github.com> * Remove redundant check * Cover all return paths
* | Merge pull request #5743 from matrix-org/erikj/log_origin_receipts_mismatchErik Johnston2019-07-242-13/+23
|\ \ | | | | | | Log when we receive receipt from a different origin
| * | Update changelog.d/5743.bugfixErik Johnston2019-07-231-1/+1
| | | | | | | | | Co-Authored-By: Richard van der Hoff <1389908+richvdh@users.noreply.github.com>
| * | NewsfileErik Johnston2019-07-231-0/+1
| | |
| * | Log when we receive receipt from a different originErik Johnston2019-07-231-13/+22
| | |
* | | Stop trying to fetch events with event_id=None. (#5753)Richard van der Hoff2019-07-244-11/+23
| | | | | | | | | | | | | | | | | | | | | `None` is not a valid event id, so queuing up a database fetch for it seems like a silly thing to do. I considered making `get_event` return `None` if `event_id is None`, but then its interaction with `allow_none` seemed uninituitive, and strong typing ftw.
* | | Add a prometheus metric for active cache lookups. (#5750)Richard van der Hoff2019-07-243-2/+34
| | | | | | | | | | | | | | | | | | * Add a prometheus metric for active cache lookups. * changelog
* | | Make Jaeger fully configurable (#5694)Jorik Schellekens2019-07-234-4/+46
| | | | | | | | | | | | | | | | | | * Allow Jaeger to be configured * Update sample config
* | | Replace returnValue with return (#5736)Amber Brown2019-07-23177-1514/+1360
| | |
* | | Opentracing Utils (#5722)Jorik Schellekens2019-07-233-101/+357
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Add decerators for tracing functions * Use the new clean contexts * Context and edu utils * Move opentracing setters * Move whitelisting * Sectioning comments * Better args wrapper * Docstrings Co-Authored-By: Erik Johnston <erik@matrix.org> * Remove unused methods. * Don't use global * One tracing decorator to rule them all.
* | | Merge pull request #5732 from matrix-org/erikj/sdnotifyErik Johnston2019-07-2317-14/+67
|\ \ \ | |/ / |/| | Add process hooks to tell systemd our state.
| * | Also update systemd-with-workers contrib examplesErik Johnston2019-07-232-2/+4
| | |
| * | Update example systemd service fileErik Johnston2019-07-221-1/+3
| | |
| * | Call startup commands as system triggers.Erik Johnston2019-07-2211-11/+29
| | | | | | | | | | | | | | | This helps ensures that we only consider ourselves "up" once all the startup functions have completed.
| * | NewsfileErik Johnston2019-07-221-0/+1
| | |
| * | Add process hooks to tell systemd our state.Erik Johnston2019-07-222-0/+30
| | | | | | | | | | | | Fixes #5676.
* | | Merge pull request #5740 from matrix-org/erikj/worker_flakey_testsErik Johnston2019-07-232-1/+8
|\ \ \ | | | | | | | | Mark flakey tests as blacklisted for worker mode
| * | | NewsfileErik Johnston2019-07-231-0/+1
| | | |
| * | | Mark flakey tests as blacklisted for worker modeErik Johnston2019-07-231-1/+7
|/ / /
* | | Merge pull request #5738 from matrix-org/erikj/faster_updateErik Johnston2019-07-232-18/+31
|\ \ \ | | | | | | | | Speed up current state background update.
| * | | NewsfileErik Johnston2019-07-231-0/+1
| | | |
| * | | Speed up current state background update.Erik Johnston2019-07-231-18/+30
| | | | | | | | | | | | | | | | | | | | Turns out that storing huge JSON arrays in the progress JSON isn't something that postgres particularly likes.
* | | | Merge pull request #5733 from matrix-org/erikj/exlude_sytest_blacklistErik Johnston2019-07-232-1/+2
|\ \ \ \ | |/ / / |/| | | Don't package sytest-blacklist file.
| * | | NewsfileErik Johnston2019-07-221-0/+1
| | | |
| * | | Don't package sytest-blacklist file.Erik Johnston2019-07-221-1/+1
|/ / / | | | | | | | | | I don't think its useful, and I don't even know where it would end up.
* | | Fix logging in workers (#5729)Amber Brown2019-07-224-1/+32
| | | | | | | | | This also adds a worker blacklist.
* | | Merge pull request #5730 from matrix-org/erikj/cache_versionsErik Johnston2019-07-222-2/+22
|\ \ \ | | | | | | | | Cache get_version_string.
| * | | Update changelog.d/5730.miscErik Johnston2019-07-221-1/+1
| | | | | | | | | | | | Co-Authored-By: Richard van der Hoff <1389908+richvdh@users.noreply.github.com>
| * | | NewsfileErik Johnston2019-07-221-0/+1
| | | |
| * | | Cache get_version_string.Erik Johnston2019-07-221-2/+21
| |/ / | | | | | | | | | | | | | | | | | | | | | | | | The version of a module isn't going to change over the lifetime of the process (assuming no funky hot reloading is going on, which it isn't), so let's just cache the result to avoid spawning lots of git subprocesses. Fixes #5672.
* | | Merge pull request #5731 from matrix-org/jaywink/admin-user-list-user-typeJason Robinson2019-07-222-3/+4
|\ \ \ | | | | | | | | Add `user_type` to returned fields in admin API user list endpoints
| * | | Add `user_type` to returned fields in admin API user list endpointsJason Robinson2019-07-222-3/+4
| |/ / | | | | | | | | | | | | | | | | | | Mostly user type will be empty (normal user) but there is also the "support" user type. Signed-off-by: Jason Robinson <jasonr@matrix.org>
* | | Fix stack overflow in Keyring (#5724)Richard van der Hoff2019-07-223-80/+42
|\ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Refactor Keyring._start_key_lookups There's an awful lot of deferreds and dictionaries flying around here. The whole thing can be made much simpler and achieve the same effect. * Add a delay to key lookup lock release to fix stack overflow A tactical call_later here should fix #5723 * changelog
| * | | changelogRichard van der Hoff2019-07-191-0/+1
| | | |
| * | | Add a delay to key lookup lock release to fix stack overflowRichard van der Hoff2019-07-191-2/+8
| | | | | | | | | | | | | | | | A tactical call_later here should fix #5723
| * | | Refactor Keyring._start_key_lookupsRichard van der Hoff2019-07-192-80/+35
| | | | | | | | | | | | | | | | | | | | There's an awful lot of deferreds and dictionaries flying around here. The whole thing can be made much simpler and achieve the same effect.
* | | | Merge tag 'v1.2.0rc1' into developAndrew Morgan2019-07-2254-56/+82
|\ \ \ \ | |_|/ / |/| | / | | |/ | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | v1.2.0rc1 Features -------- - Add support for opentracing. ([\#5544](https://github.com/matrix-org/synapse/issues/5544), [\#5712](https://github.com/matrix-org/synapse/issues/5712)) - Add ability to pull all locally stored events out of synapse that a particular user can see. ([\#5589](https://github.com/matrix-org/synapse/issues/5589)) - Add a basic admin command app to allow server operators to run Synapse admin commands separately from the main production instance. ([\#5597](https://github.com/matrix-org/synapse/issues/5597)) - Add `sender` and `origin_server_ts` fields to `m.replace`. ([\#5613](https://github.com/matrix-org/synapse/issues/5613)) - Add default push rule to ignore reactions. ([\#5623](https://github.com/matrix-org/synapse/issues/5623)) - Include the original event when asking for its relations. ([\#5626](https://github.com/matrix-org/synapse/issues/5626)) - Implement `session_lifetime` configuration option, after which access tokens will expire. ([\#5660](https://github.com/matrix-org/synapse/issues/5660)) - Return "This account has been deactivated" when a deactivated user tries to login. ([\#5674](https://github.com/matrix-org/synapse/issues/5674)) - Enable aggregations support by default ([\#5714](https://github.com/matrix-org/synapse/issues/5714)) Bugfixes -------- - Fix 'utime went backwards' errors on daemonization. ([\#5609](https://github.com/matrix-org/synapse/issues/5609)) - Various minor fixes to the federation request rate limiter. ([\#5621](https://github.com/matrix-org/synapse/issues/5621)) - Forbid viewing relations on an event once it has been redacted. ([\#5629](https://github.com/matrix-org/synapse/issues/5629)) - Fix requests to the `/store_invite` endpoint of identity servers being sent in the wrong format. ([\#5638](https://github.com/matrix-org/synapse/issues/5638)) - Fix newly-registered users not being able to lookup their own profile without joining a room. ([\#5644](https://github.com/matrix-org/synapse/issues/5644)) - Fix bug in #5626 that prevented the original_event field from actually having the contents of the original event in a call to `/relations`. ([\#5654](https://github.com/matrix-org/synapse/issues/5654)) - Fix 3PID bind requests being sent to identity servers as `application/x-form-www-urlencoded` data, which is deprecated. ([\#5658](https://github.com/matrix-org/synapse/issues/5658)) - Fix some problems with authenticating redactions in recent room versions. ([\#5699](https://github.com/matrix-org/synapse/issues/5699), [\#5700](https://github.com/matrix-org/synapse/issues/5700), [\#5707](https://github.com/matrix-org/synapse/issues/5707)) - Ignore redactions of m.room.create events. ([\#5701](https://github.com/matrix-org/synapse/issues/5701)) Updates to the Docker image --------------------------- - Base Docker image on a newer Alpine Linux version (3.8 -> 3.10). ([\#5619](https://github.com/matrix-org/synapse/issues/5619)) - Add missing space in default logging file format generated by the Docker image. ([\#5620](https://github.com/matrix-org/synapse/issues/5620)) Improved Documentation ---------------------- - Add information about nginx normalisation to reverse_proxy.rst. Contributed by @skalarproduktraum - thanks! ([\#5397](https://github.com/matrix-org/synapse/issues/5397)) - --no-pep517 should be --no-use-pep517 in the documentation to setup the development environment. ([\#5651](https://github.com/matrix-org/synapse/issues/5651)) - Improvements to Postgres setup instructions. Contributed by @Lrizika - thanks! ([\#5661](https://github.com/matrix-org/synapse/issues/5661)) - Minor tweaks to postgres documentation. ([\#5675](https://github.com/matrix-org/synapse/issues/5675)) Deprecations and Removals ------------------------- - Remove support for the `invite_3pid_guest` configuration setting. ([\#5625](https://github.com/matrix-org/synapse/issues/5625)) Internal Changes ---------------- - Move logging code out of `synapse.util` and into `synapse.logging`. ([\#5606](https://github.com/matrix-org/synapse/issues/5606), [\#5617](https://github.com/matrix-org/synapse/issues/5617)) - Add a blacklist file to the repo to blacklist certain sytests from failing CI. ([\#5611](https://github.com/matrix-org/synapse/issues/5611)) - Make runtime errors surrounding password reset emails much clearer. ([\#5616](https://github.com/matrix-org/synapse/issues/5616)) - Remove dead code for persiting outgoing federation transactions. ([\#5622](https://github.com/matrix-org/synapse/issues/5622)) - Add `lint.sh` to the scripts-dev folder which will run all linting steps required by CI. ([\#5627](https://github.com/matrix-org/synapse/issues/5627)) - Move RegistrationHandler.get_or_create_user to test code. ([\#5628](https://github.com/matrix-org/synapse/issues/5628)) - Add some more common python virtual-environment paths to the black exclusion list. ([\#5630](https://github.com/matrix-org/synapse/issues/5630)) - Some counter metrics exposed over Prometheus have been renamed, with the old names preserved for backwards compatibility and deprecated. See `docs/metrics-howto.rst` for details. ([\#5636](https://github.com/matrix-org/synapse/issues/5636)) - Unblacklist some user_directory sytests. ([\#5637](https://github.com/matrix-org/synapse/issues/5637)) - Factor out some redundant code in the login implementation. ([\#5639](https://github.com/matrix-org/synapse/issues/5639)) - Update ModuleApi to avoid register(generate_token=True). ([\#5640](https://github.com/matrix-org/synapse/issues/5640)) - Remove access-token support from `RegistrationHandler.register`, and rename it. ([\#5641](https://github.com/matrix-org/synapse/issues/5641)) - Remove access-token support from `RegistrationStore.register`, and rename it. ([\#5642](https://github.com/matrix-org/synapse/issues/5642)) - Improve logging for auto-join when a new user is created. ([\#5643](https://github.com/matrix-org/synapse/issues/5643)) - Remove unused and unnecessary check for FederationDeniedError in _exception_to_failure. ([\#5645](https://github.com/matrix-org/synapse/issues/5645)) - Fix a small typo in a code comment. ([\#5655](https://github.com/matrix-org/synapse/issues/5655)) - Clean up exception handling around client access tokens. ([\#5656](https://github.com/matrix-org/synapse/issues/5656)) - Add a mechanism for per-test homeserver configuration in the unit tests. ([\#5657](https://github.com/matrix-org/synapse/issues/5657)) - Inline issue_access_token. ([\#5659](https://github.com/matrix-org/synapse/issues/5659)) - Update the sytest BuildKite configuration to checkout Synapse in `/src`. ([\#5664](https://github.com/matrix-org/synapse/issues/5664)) - Add a `docker` type to the towncrier configuration. ([\#5673](https://github.com/matrix-org/synapse/issues/5673)) - Convert `synapse.federation.transport.server` to `async`. Might improve some stack traces. ([\#5689](https://github.com/matrix-org/synapse/issues/5689)) - Documentation for opentracing. ([\#5703](https://github.com/matrix-org/synapse/issues/5703))
| * | Make changelog slightly more readable v1.2.0rc1Andrew Morgan2019-07-221-1/+1
| | |
| * | 1.2.0rc1Andrew Morgan2019-07-2254-56/+82
| | |
* | | Demo uses deprecated cli option (#5725)Jorik Schellekens2019-07-222-4/+4
| | | | | | | | | | | | | | | | | | * Remove deprecated 'verbose' cli arg * Create 5725.bugfix
* | | Merge branch 'release-v1.2.0' into developJorik Schellekens2019-07-225-24/+230
|\| |
| * | Opentracing Documentation (#5703)Jorik Schellekens2019-07-225-24/+230
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Opentracing survival guide * Update decorator names in doc * Doc cleanup These are all alterations as a result of comments in #5703, it includes mostly typos and clarifications. The most interesting changes are: - Split developer and user docs into two sections - Add a high level description of OpenTracing * newsfile * Move contributer specific info to docstring. * Sample config. * Trailing whitespace. * Update 5703.misc * Apply suggestions from code review Mostly just rewording parts of the docs for clarity. Co-Authored-By: Richard van der Hoff <1389908+richvdh@users.noreply.github.com>
* | | Revert "Remove deprecated 'verbose' cli arg"Jorik Schellekens2019-07-191-3/+4
| | | | | | | | | | | | This reverts commit dc7cf81267e464858c74e6215184de0c634e2b26.
* | | Remove deprecated 'verbose' cli argJorik Schellekens2019-07-191-4/+3
| | |
* | | Merge pull request #5720 from matrix-org/erikj/transactions_upsertErik Johnston2019-07-192-0/+21
|\ \ \ | | | | | | | | Use upsert when updating destination retry interval
| * | | NewsfileErik Johnston2019-07-191-0/+1
| | | |
| * | | Use upsert when updating destination retry intervalErik Johnston2019-07-191-0/+20
| | |/ | |/|
* | | Merge pull request #5713 from matrix-org/erikj/use_cache_for_filtered_stateErik Johnston2019-07-192-2/+7
|\ \ \ | | | | | | | | Delegate to cached version when using get_filtered_current_state_ids
| * | | NewsfileErik Johnston2019-07-181-0/+1
| | | |
| * | | Delegate to cached version when using get_filtered_current_state_idsErik Johnston2019-07-181-2/+6
| | | | | | | | | | | | | | | | In the case where it gets called with `StateFilter.all()`
* | | | Merge pull request #5706 from matrix-org/erikj/add_memberships_to_current_stateErik Johnston2019-07-198-41/+195
|\ \ \ \ | | | | | | | | | | Add membership column to current_state_events table
| * | | | LoggingTransaction accepts None for callback lists.Erik Johnston2019-07-193-6/+16
| | | | | | | | | | | | | | | | | | | | | | | | | Its a bit disingenuousto give LoggingTransaction lists to append callbacks to if we're not going to run the callbacks.
| * | | | Update comment for new columnErik Johnston2019-07-191-0/+3
| | | | |
| * | | | NewsfileErik Johnston2019-07-181-0/+1
| | | | |
| * | | | Use the current_state_events.membership columnErik Johnston2019-07-181-17/+37
| | | | |
| * | | | Track if current_state_events.membership is up to dateErik Johnston2019-07-181-0/+45
| | | | |
| * | | | Add background update for current_state_events.membership columnErik Johnston2019-07-182-0/+54
| | | | |
| * | | | Add membership column to current_state_events table.Erik Johnston2019-07-185-20/+41
| | | | | | | | | | | | | | | | | | | | | | | | | It turns out that doing a join is surprisingly expensive for the DB to do when room_membership table is larger than the disk cache.
* | | | | Don't accept opentracing data from clients. (#5715)Jorik Schellekens2019-07-192-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Don't accept opentracing data from clients. * newsfile
* | | | | Add 'rel' attribute to default welcome page. (#5695)Neil Johnson2019-07-192-2/+3
| | | | | | | | | | | | | | | | | | | | add rel attribute as a precaution against reverse tabnabbing in future
* | | | | Update the coding style doc (#5719)Richard van der Hoff2019-07-192-30/+95
| |_|/ / |/| | | | | | | | | | | | | | | A few fixes and removal of duplicated stuff, but mostly a bunch of the words on the config file.
* | | | Speed up the PostgreSQL unit tests (#5717)Amber Brown2019-07-192-3/+10
| | | |
* | | | Remove non-dedicated logging options and command line arguments (#5678)Amber Brown2019-07-193-75/+13
| |_|/ |/| |
* | | towncrierNeil Johnson2019-07-181-0/+1
| | |
* | | enable aggregations support by defaultNeil Johnson2019-07-181-1/+1
| |/ |/|
* | Clean up opentracing configuration options (#5712)Richard van der Hoff2019-07-187-63/+96
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Clean up config settings and dead code. This is mostly about cleaning up the config format, to bring it into line with our conventions. In particular: * There should be a blank line after `## Section ##' headings * There should be a blank line between each config setting * There should be a `#`-only line between a comment and the setting it describes * We don't really do the `# #` style commenting-out of whole sections if we can help it * rename `tracer_enabled` to `enabled` While we're here, do more config parsing upfront, which makes it easier to use later on. Also removes redundant code from LogContextScopeManager. Also changes the changelog fragment to a `feature` - it's exciting!
* | Support Prometheus_client 0.4.0+ (#5636)Amber Brown2019-07-1820-50/+399
| |
* | Remove the ability to query relations when the original event was redacted. ↵Andrew Morgan2019-07-185-39/+180
| | | | | | | | | | | | | | (#5629) Fixes #5594 Forbid viewing relations on an event once it has been redacted.
* | Convert synapse.federation.transport.server to async (#5689)Richard van der Hoff2019-07-182-242/+189
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Convert BaseFederationServlet._wrap to async Empirically, this fixes some lost stacktraces. It should be safe because the wrapped function is called from JsonResource._async_render, which is already async. * Convert the rest of synapse.federation.transport.server to async We may as well do the whole file while we're here. * changelog * flake8
* | Ignore redactions of m.room.create events (#5701)Richard van der Hoff2019-07-175-24/+57
| |
* | Improve `Depends` specs in debian package. (#5675)Richard van der Hoff2019-07-176-3/+33
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This is basically a contrived way of adding a `Recommends` on `libpq5`, to fix #5653. The way this is supposed to happen in debhelper is to run `dh_shlibdeps`, which in turn runs `dpkg-shlibdeps`, which spits things out into `debian/<package>.substvars` whence they can later be included by `control`. Previously, we had disabled `dh_shlibdeps`, mostly because `dpkg-shlibdeps` gets confused about PIL's interdependent objects, but that's not really the right thing to do and there is another way to work around that. Since we don't always use postgres, we don't necessarily want a hard Depends on libpq5, so I've actually ended up adding an explicit invocation of `dpkg-shlibdeps` for `psycopg2`. I've also updated the build-depends list for the package, which was missing a couple of entries.
* | More refactoring in `get_events_as_list` (#5707)Richard van der Hoff2019-07-174-27/+198
| | | | | | | | | | | | | | | | We can now use `_get_events_from_cache_or_db` rather than going right back to the database, which means that (a) we can benefit from caching, and (b) it opens the way forward to more extensive checks on the original event. We now always require the original event to exist before we will serve up a redaction.
* | Fix redaction authentication (#5700)Richard van der Hoff2019-07-172-85/+131
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Ensures that redactions are correctly authenticated for recent room versions. There are a few things going on here: * `_fetch_event_rows` is updated to return a dict rather than a list of rows. * Rather than returning multiple copies of an event which was redacted multiple times, it returns the redactions as a list within the dict. * It also returns the actual rejection reason, rather than merely the fact that it was rejected, so that we don't have to query the table again in `_get_event_from_row`. * The redaction handling is factored out of `_get_event_from_row`, and now checks if any of the redactions are valid.
* | Refactor `get_events_as_list` (#5699)Richard van der Hoff2019-07-172-48/+75
|/ | | | | | | | | | | A couple of changes here: * get rid of a redundant `allow_rejected` condition - we should already have filtered out any rejected events before we get to that point in the code, and the redundancy is confusing. Instead, let's stick in an assertion just to make double-sure we aren't leaking rejected events by mistake. * factor out a `_get_events_from_cache_or_db` method, which is going to be important for a forthcoming fix to redactions.
* Merge pull request #5597 from matrix-org/erikj/admin_api_cmdErik Johnston2019-07-168-13/+357
|\ | | | | Create basic admin command app
| * Remove pointless descriptionErik Johnston2019-07-161-1/+0
| |
| * Clean up arg name and remove lying commentErik Johnston2019-07-161-7/+5
| |
| * Fix typo in synapse/app/admin_cmd.pyErik Johnston2019-07-161-1/+1
| | | | | | Co-Authored-By: Aaron Raimist <aaron@raim.ist>
| * Fix invoking add_argument from homeserver.pyErik Johnston2019-07-151-1/+1
| |
| * s/exfiltrate_user_data/export_user_data/Erik Johnston2019-07-151-1/+1
| |
| * Add FileExfiltrationWriterErik Johnston2019-07-151-1/+69
| |
| * Merge branch 'develop' of github.com:matrix-org/synapse into erikj/admin_api_cmdErik Johnston2019-07-15293-2140/+3248
| |\ | |/ |/|
* | Return a different error from Invalid Password when a user is deactivated ↵Andrew Morgan2019-07-153-0/+26
| | | | | | | | | | (#5674) Return `This account has been deactivated` instead of `Invalid password` when a user is deactivated.
* | Merge pull request #5589 from matrix-org/erikj/admin_exfiltrate_dataErik Johnston2019-07-156-7/+423
|\ \ | | | | | | Add basic function to get all data for a user out of synapse
| * | Fixup docstringsErik Johnston2019-07-121-7/+5
| | |
| * | pep8Erik Johnston2019-07-051-4/+0
| | |
| * | Remove FileExfiltrationWriterErik Johnston2019-07-051-63/+0
| | |
| * | Merge branch 'develop' of github.com:matrix-org/synapse into ↵Erik Johnston2019-07-05217-1407/+1732
| |\ \ | | | | | | | | | | | | erikj/admin_exfiltrate_data
| * | | Assume key existence. Update docstringsErik Johnston2019-07-052-9/+11
| | | |
| * | | Fixup from review comments.Erik Johnston2019-07-042-22/+27
| | | |
| * | | Apply comment fixups from code reviewErik Johnston2019-07-031-6/+6
| | | | | | | | | | | | Co-Authored-By: Richard van der Hoff <1389908+richvdh@users.noreply.github.com>
* | | | Add a `docker` type to the towncrier configuration (#5673)Richard van der Hoff2019-07-127-14/+27
| | | | | | | | | | | | ... and certain other changelog-related fixes
* | | | Implement access token expiry (#5660)Richard van der Hoff2019-07-1214-31/+253
| | | | | | | | | | | | | | | | Record how long an access token is valid for, and raise a soft-logout once it expires.
* | | | fix typo: backgroud -> backgroundAndrew Morgan2019-07-122-5/+5
| | | |
* | | | fix changelog nameRichard van der Hoff2019-07-121-0/+0
| | | |
* | | | Update reverse_proxy.rst (#5397)Ulrik Günther2019-07-122-0/+3
| | | | | | | | | | | | | | | | | | | | Updates reverse_proxy.rst with information about nginx' URI normalisation.
* | | | Add missing space in default logging file format generated by the Docker ↵Slavi Pantaleev2019-07-122-1/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | image (#5620) This adds a missing space, without which log lines appear uglier. Signed-off-by: Slavi Pantaleev <slavi@devture.com>
* | | | Upgrade Alpine Linux used in the Docker image (3.8 -> 3.10) (#5619)Slavi Pantaleev2019-07-122-2/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Alpine Linux 3.8 is still supported, but it seems like it's quite outdated now. While Python should be the same on both, all other libraries, etc., are much newer in Alpine 3.9 and 3.10. Signed-off-by: Slavi Pantaleev <slavi@devture.com>
* | | | Add a mechanism for per-test configs (#5657)Richard van der Hoff2019-07-122-1/+55
| | | | | | | | | | | | | | | | | | | | | | | | It's useful to be able to tweak the homeserver config to be used for each test. This PR adds a mechanism to do so.
* | | | Use /src for checking out synapse during sytests (#5664)Amber Brown2019-07-112-0/+4
| | | |
* | | | Improved docs on setting up Postgresql (#5661)Lrizika2019-07-112-4/+16
| | | | | | | | | | | | | | | | | | | | Added that synapse_user needs a database to access before it can auth Noted you'll need to enable password auth, linked to pg_hba.conf docs
* | | | small typo fix (#5655)Andrew Morgan2019-07-112-1/+2
| | | |
* | | | Clean up exception handling for access_tokens (#5656)Richard van der Hoff2019-07-116-100/+111
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | First of all, let's get rid of `TOKEN_NOT_FOUND_HTTP_STATUS`. It was a hack we did at one point when it was possible to return either a 403 or a 401 if the creds were missing. We always return a 401 in these cases now (thankfully), so it's not needed. Let's also stop abusing `AuthError` for these cases. Honestly they have nothing that relates them to the other places that `AuthError` is used, other than the fact that they are loosely under the 'Auth' banner. It makes no sense for them to share exception classes. Instead, let's add a couple of new exception classes: `InvalidClientTokenError` and `MissingClientTokenError`, for the `M_UNKNOWN_TOKEN` and `M_MISSING_TOKEN` cases respectively - and an `InvalidClientCredentialsError` base class for the two of them.
* | | | Add basic opentracing support (#5544)Jorik Schellekens2019-07-1112-12/+633
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Configure and initialise tracer Includes config options for the tracer and sets up JaegerClient. * Scope manager using LogContexts We piggy-back our tracer scopes by using log context. The current log context gives us the current scope. If new scope is created we create a stack of scopes in the context. * jaeger is a dependency now * Carrier inject and extraction for Twisted Headers * Trace federation requests on the way in and out. The span is created in _started_processing and closed in _finished_processing because we need a meaningful log context. * Create logcontext for new scope. Instead of having a stack of scopes in a logcontext we create a new context for a new scope if the current logcontext already has a scope. * Remove scope from logcontext if logcontext is top level * Disable tracer if not configured * typo * Remove dependence on jaeger internals * bools * Set service name * :Explicitely state that the tracer is disabled * Black is the new black * Newsfile * Code style * Use the new config setup. * Generate config. * Copyright * Rename config to opentracing * Remove user whitelisting * Empty whitelist by default * User ConfigError instead of RuntimeError * Use isinstance * Use tag constants for opentracing. * Remove debug comment and no need to explicitely record error * Two errors a "s(c)entry" * Docstrings! * Remove debugging brainslip * Homeserver Whitlisting * Better opentracing config comment * linting * Inclue worker name in service_name * Make opentracing an optional dependency * Neater config retreival * Clean up dummy tags * Instantiate tracing as object instead of global class * Inlcude opentracing as a homeserver member. * Thread opentracing to the request level * Reference opetnracing through hs * Instantiate dummy opentracin g for tests. * About to revert, just keeping the unfinished changes just in case * Revert back to global state, commit number: 9ce4a3d9067bf9889b86c360c05ac88618b85c4f * Use class level methods in tracerutils * Start and stop requests spans in a place where we have access to the authenticated entity * Seen it, isort it * Make sure to close the active span. * I'm getting black and blue from this. * Logger formatting Co-Authored-By: Erik Johnston <erik@matrix.org> * Outdated comment * Import opentracing at the top * Return a contextmanager * Start tracing client requests from the servlet * Return noop context manager if not tracing * Explicitely say that these are federation requests * Include servlet name in client requests * Use context manager * Move opentracing to logging/ * Seen it, isort it again! * Ignore twisted return exceptions on context exit * Escape the scope * Scopes should be entered to make them useful. * Nicer decorator names * Just one init, init? * Don't need to close something that isn't open * Docs make you smarter
* | | | Inline issue_access_token (#5659)Richard van der Hoff2019-07-113-8/+5
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | this is only used in one place, so it's clearer if we inline it and reduce the API surface. Also, fixes a buglet where we would create an access token even if we were about to block the user (we would never return the AT, so the user could never use it, but it was still created and added to the db.)
* | | | Merge pull request #5658 from matrix-org/babolivier/is-jsonBrendan Abolivier2019-07-102-1/+2
|\ \ \ \ | | | | | | | | | | Send 3PID bind requests as JSON data
| * | | | TypoBrendan Abolivier2019-07-101-1/+1
| | | | |
| * | | | Rename changelog fileBrendan Abolivier2019-07-101-0/+0
| | | | |
| * | | | Send 3PID bind requests as JSON dataBrendan Abolivier2019-07-102-1/+2
| | | | |
* | | | | Remove access-token support from RegistrationStore.register (#5642)Richard van der Hoff2019-07-109-79/+30
|/ / / / | | | | | | | | | | | | | | | | The 'token' param is no longer used anywhere except the tests, so let's kill that off too.
* | | | Don't bundle aggregations when retrieving the original event (#5654)Andrew Morgan2019-07-102-2/+13
| | | | | | | | | | | | | | | | | | | | | | | | | | | | A fix for PR #5626, which returned the original event content as part of a call to /relations. Only problem was that we were attempting to aggregate the relations on top of it when we did so. We now set bundle_aggregations to False in the get_event call. We also do this when pulling the relation events as well, because edits of edits are not something we'd like to support here.
* | | | Add a linting script (#5627)Andrew Morgan2019-07-102-0/+13
| | | | | | | | | | | | Add a dev script to cover all the different linting steps.
* | | | Correct pep517 flag in readme (#5651)Bruno Windels2019-07-102-1/+2
| | | |
* | | | Merge pull request #5638 from matrix-org/babolivier/invite-jsonBrendan Abolivier2019-07-092-4/+19
|\ \ \ \ | | | | | | | | | | Use JSON when querying the IS's /store-invite endpoint
| * \ \ \ Merge branch 'develop' into babolivier/invite-jsonBrendan Abolivier2019-07-08241-1918/+2403
| |\ \ \ \
| * | | | | ChangelogBrendan Abolivier2019-07-081-0/+1
| | | | | |
| * | | | | LintBrendan Abolivier2019-07-081-1/+2
| | | | | |
| * | | | | Use application/json when querying the IS's /store-invite endpointBrendan Abolivier2019-07-081-4/+17
| | | | | |
* | | | | | remove unused and unnecessary check for FederationDeniedError (#5645)Hubert Chathi2019-07-092-4/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | FederationDeniedError is a subclass of SynapseError, which is a subclass of CodeMessageException, so if e is a FederationDeniedError, then this check for FederationDeniedError will never be reached since it will be caught by the check for CodeMessageException above. The check for CodeMessageException does almost the same thing as this check (since FederationDeniedError initialises with code=403 and msg="Federation denied with %s."), so may as well just keep allowing it to handle this case.
* | | | | | Include the original event in /relations (#5626)Andrew Morgan2019-07-094-4/+12
| | | | | | | | | | | | | | | | | | When asking for the relations of an event, include the original event in the response. This will mostly be used for efficiently showing edit history, but could be useful in other circumstances.
* | | | | | Merge pull request #5644 from matrix-org/babolivier/profile-allow-selfBrendan Abolivier2019-07-093-0/+52
|\ \ \ \ \ \ | | | | | | | | | | | | | | Allow newly-registered users to lookup their own profiles
| * | | | | | LintBrendan Abolivier2019-07-081-2/+2
| | | | | | |
| * | | | | | Add test caseBrendan Abolivier2019-07-081-0/+47
| | | | | | |
| * | | | | | ChangelogBrendan Abolivier2019-07-081-0/+1
| | | | | | |
| * | | | | | Allow newly-registered users to lookup their own profilesBrendan Abolivier2019-07-081-0/+4
| | |/ / / / | |/| | | | | | | | | | | | | | | | When a user creates an account and the 'require_auth_for_profile_requests' config flag is set, and a client that performed the registration wants to lookup the newly-created profile, the request will be denied because the user doesn't share a room with themselves yet.
* | | | | | Remove access-token support from RegistrationHandler.register (#5641)Richard van der Hoff2019-07-088-81/+44
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Nothing uses this now, so we can remove the dead code, and clean up the API. Since we're changing the shape of the return value anyway, we take the opportunity to give the method a better name.
* | | | | | Unblacklist some user_directory sytests (#5637)Richard van der Hoff2019-07-092-4/+1
| | | | | | | | | | | | | | | | | | Fixes https://github.com/matrix-org/synapse/issues/2306
* | | | | | Better logging for auto-join. (#5643)Richard van der Hoff2019-07-082-0/+8
|/ / / / / | | | | | | | | | | It was pretty unclear what was going on, so I've added a couple of log lines.
* | | | | Update ModuleApi to avoid register(generate_token=True) (#5640)Richard van der Hoff2019-07-082-8/+57
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Update ModuleApi to avoid register(generate_token=True) This is the only place this is still used, so I'm trying to kill it off. * changelog
* | | | | Factor out some redundant code in the login impl (#5639)Richard van der Hoff2019-07-082-39/+11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Factor out some redundant code in the login impl Also fixes a redundant access_token which was generated during jwt login. * changelog
* | | | | Move get_or_create_user to test code (#5628)Richard van der Hoff2019-07-083-60/+60
| | | | | | | | | | | | | | | This is only used in tests, so...
* | | | | Add a few more common environment directory names to black exclusion (#5630)Andrew Morgan2019-07-082-0/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Add a few more common environment directory names to black exclusion * Add changelog
* | | | | Add default push rule to ignore reactions (#5623)J. Ryan Stinnett2019-07-052-0/+14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This adds a default push rule following the proposal in [MSC2153](https://github.com/matrix-org/matrix-doc/pull/2153). See also https://github.com/vector-im/riot-web/issues/10208 See also https://github.com/matrix-org/matrix-js-sdk/pull/976
* | | | | Add origin_server_ts and sender fields to m.replace (#5613)Andrew Morgan2019-07-053-7/+24
| | | | | | | | | | | | | | | | | | | | | | | | | Riot team would like some extra fields as part of m.replace, so here you go. Fixes: #5598
* | | | | Remove support for invite_3pid_guest. (#5625)Richard van der Hoff2019-07-057-196/+3
| |_|/ / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This has never been documented, and I'm not sure it's ever been used outside sytest. It's quite a lot of poorly-maintained code, so I'd like to get rid of it. For now I haven't removed the database table; I suggest we leave that for a future clearout.
* | | | remove dead transaction persist code (#5622)Richard van der Hoff2019-07-054-69/+1
| | | | | | | | | | | | | | | | this hasn't done anything for years
* | | | Fixes to the federation rate limiter (#5621)Richard van der Hoff2019-07-056-16/+148
| | | | | | | | | | | | | | | | | | | | | | | | | | | | - Put the default window_size back to 1000ms (broken by #5181) - Make the `rc_federation` config actually do something - fix an off-by-one error in the 'concurrent' limit - Avoid creating an unused `_PerHostRatelimiter` object for every single incoming request
* | | | Make errors about email password resets much clearer (#5616)Andrew Morgan2019-07-052-11/+9
| | | | | | | | | | | | The runtime errors that dealt with local email password resets talked about config options that users may not even have in their config file yet (if upgrading). Instead, the cryptic errors are now replaced with hopefully much more helpful ones.
* | | | Improve the backwards compatibility re-exports of synapse.logging.context ↵Amber Brown2019-07-054-5/+62
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | (#5617) * Improve the backwards compatibility re-exports of synapse.logging.context. * reexport logformatter too
* | | | Add a sytest blacklist file (#5611)Andrew Morgan2019-07-055-148/+43
| | | | | | | | | | | | | | | | | | | | | | | | | | | | * Add a sytest blacklist file * Add changelog * Add blacklist to manifest
* | | | Merge branch 'master' of github.com:matrix-org/synapse into developErik Johnston2019-07-043-6/+26
|\ \ \ \
| * | | | Update changelog v1.1.0 github/release-v1.1.0 release-v1.1.0Erik Johnston2019-07-041-0/+10
| | | | |
| * | | | 1.1.0Erik Johnston2019-07-044-4/+9
| | | | |
| * | | | Merge pull request #5615 from matrix-org/anoa/fix_changelog_email_resetsErik Johnston2019-07-042-1/+2
| |\ \ \ \ | | | | | | | | | | | | Suggest people use a config file for Docker instead of env vars
| | * | | | Suggest people use a config file for Docker instead of env varsAndrew Morgan2019-07-042-1/+2
| |/ / / /
* | | | | Move logging utilities out of the side drawer of util/ and into logging/ (#5606)Amber Brown2019-07-0498-233/+249
| | | | |
* | | | | Fix 'utime went backwards' errors on daemonization. (#5609)Richard van der Hoff2019-07-033-31/+44
|/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Fix 'utime went backwards' errors on daemonization. Fixes #5608 * remove spurious debug
* | | | 1.1.0rc2 v1.1.0rc2Richard van der Hoff2019-07-036-5/+18
| | | |
* | | | Fix a number of "Starting txn from sentinel context" warnings (#5605)Richard van der Hoff2019-07-035-6/+35
| | | | | | | | | | | | | | | | Fixes #5602, #5603
* | | | Remove SMTP_* env var functionality from docker conf (#5596)Andrew Morgan2019-07-032-19/+1
| | | | | | | | | | | | | | | | | | | | Removes any `SMTP_*` docker container environment variables from having any effect on the default config. Fixes https://github.com/matrix-org/synapse/issues/5430
* | | | Fix media repo breaking (#5593)Amber Brown2019-07-026-24/+58
| | | |
* | | | tweak changelog v1.1.0rc1Richard van der Hoff2019-07-021-10/+13
| | | |
* | | | Merge remote-tracking branch 'origin/master' into release-v1.1.0Richard van der Hoff2019-07-023-5/+7
|\ \ \ \
| * \ \ \ Merge pull request #5552 from matrix-org/rav/github_templatesRichard van der Hoff2019-06-263-5/+7
| |\ \ \ \ | | | | | | | | | | | | Update github templates
| | * | | | changelogRichard van der Hoff2019-06-251-0/+1
| | | | | |
| | * | | | Update github templatesRichard van der Hoff2019-06-251-2/+3
| | | | | |
| | * | | | Update SUPPORT.mdRichard van der Hoff2019-06-251-3/+3
| | | | | |
* | | | | | prepare v1.1.0rc1Richard van der Hoff2019-07-0291-94/+106
| | | | | |
* | | | | | Complete the SAML2 implementation (#5422)Richard van der Hoff2019-07-027-45/+231
|\ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * SAML2 Improvements and redirect stuff Signed-off-by: Alexander Trost <galexrt@googlemail.com> * Code cleanups and simplifications. Also: share the saml client between redirect and response handlers. * changelog * Revert redundant changes to static js * Move all the saml stuff out to a centralised handler * Add support for tracking SAML2 sessions. This allows us to correctly handle `allow_unsolicited: False`. * update sample config * cleanups * update sample config * rename BaseSSORedirectServlet for consistency * Address review comments
| * \ \ \ \ \ Merge branch 'develop' into rav/saml2_clientRichard van der Hoff2019-07-0155-450/+832
| |\ \ \ \ \ \
| * | | | | | | Address review commentsRichard van der Hoff2019-07-011-5/+7
| | | | | | | |
| * | | | | | | rename BaseSSORedirectServlet for consistencyRichard van der Hoff2019-06-271-3/+3
| | | | | | | |
| * | | | | | | update sample configRichard van der Hoff2019-06-271-6/+13
| | | | | | | |
| * | | | | | | cleanupsRichard van der Hoff2019-06-273-11/+18
| | | | | | | |
| * | | | | | | update sample configRichard van der Hoff2019-06-261-0/+13
| | | | | | | |
| * | | | | | | Add support for tracking SAML2 sessions.Richard van der Hoff2019-06-262-3/+56
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This allows us to correctly handle `allow_unsolicited: False`.
| * | | | | | | Move all the saml stuff out to a centralised handlerRichard van der Hoff2019-06-264-50/+96
| | | | | | | |
| * | | | | | | Revert redundant changes to static jsRichard van der Hoff2019-06-261-4/+2
| | | | | | | |
| * | | | | | | Merge branch 'develop' into rav/saml2_clientRichard van der Hoff2019-06-26478-11486/+18913
| |\ \ \ \ \ \ \
| * | | | | | | | changelogRichard van der Hoff2019-06-111-0/+1
| | | | | | | | |
| * | | | | | | | Merge tag 'v1.0.0rc3' into rav/saml2_clientRichard van der Hoff2019-06-116-2/+14
| |\ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Synapse 1.0.0rc3 (2019-06-10) ============================= Security: Fix authentication bug introduced in 1.0.0rc1. Please upgrade to rc3 immediately
| * | | | | | | | | Code cleanups and simplifications.Richard van der Hoff2019-06-116-50/+53
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Also: share the saml client between redirect and response handlers.
| * | | | | | | | | Merge remote-tracking branch 'origin/develop' into rav/saml2_clientRichard van der Hoff2019-06-10157-1096/+5758
| |\ \ \ \ \ \ \ \ \
| * | | | | | | | | | SAML2 Improvements and redirect stuffAlexander Trost2019-06-025-2/+55
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Alexander Trost <galexrt@googlemail.com>
* | | | | | | | | | | Merge pull request #5587 from matrix-org/erikj/fix_synctlErik Johnston2019-07-022-6/+7
|\ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | Fix --no-daemonize flag for synctl
| * | | | | | | | | | | NewsfileErik Johnston2019-07-021-0/+1
| | | | | | | | | | | |
| * | | | | | | | | | | Fix --no-daemonize flag for synctlErik Johnston2019-07-021-6/+6
| | | | | | | | | | | |
* | | | | | | | | | | | Add ability to set timezone for Docker container (#5383)Amir Zarrinkafsh2019-07-023-1/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Amir Zarrinkafsh <nightah@me.com>
* | | | | | | | | | | | Fix JWT login with new users (#5586)PauRE2019-07-022-6/+4
|/ / / / / / / / / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Pau Rodriguez-Estivill <prodrigestivill@gmail.com>
| | | | | | | | | | * Use set_defaults(func=) styleErik Johnston2019-07-151-11/+8
| | | | | | | | | | |
| | | | | | | | | | * Move creation of ArgumentParser to callerErik Johnston2019-07-152-11/+8
| | | | | | | | | | |
| | | | | | | | | | * Fix up commentsErik Johnston2019-07-152-3/+3
| | | | | | | | | | |
| | | | | | | | | | * Change add_arguments to be a static methodErik Johnston2019-07-155-5/+39
| | | | | | | | | | |
| | | | | | | | | | * NewsfileErik Johnston2019-07-021-0/+1
| | | | | | | | | | |
| | | | | | | | | | * Add basic admin cmd appErik Johnston2019-07-023-6/+257
| | | | | | | | | |/
| | | | | | | | | * NewsfileErik Johnston2019-07-021-0/+1
| | | | | | | | | |
| | | | | | | | | * Add basic function to get all data for a user out of synapseErik Johnston2019-07-024-1/+478
| |_|_|_|_|_|_|_|/ |/| | | | | | | |
* | | | | | | | | fix async/await consentresource (#5585)Amber Brown2019-07-012-1/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes #5582
* | | | | | | | | Merge pull request #5507 from matrix-org/erikj/presence_sync_tighloopErik Johnston2019-07-012-2/+20
|\ \ \ \ \ \ \ \ \ | |_|_|_|_|/ / / / |/| | | | | | | | Fix sync tightloop bug.
| * | | | | | | | Fixup commentErik Johnston2019-07-011-6/+13
| | | | | | | | |
| * | | | | | | | NewsfileErik Johnston2019-06-211-0/+1
| | | | | | | | |
| * | | | | | | | Fix sync tightloop bug.Erik Johnston2019-06-211-2/+12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | If, for some reason, presence updates take a while to persist then it can trigger clients to tightloop calling `/sync` due to the presence handler returning updates but not advancing the stream token. Fixes #5503.
* | | | | | | | | Make the http server handle coroutine-making REST servlets (#5475)Amber Brown2019-06-2912-174/+162
| | | | | | | | |
* | | | | | | | | Merge pull request #5576 from matrix-org/babolivier/3pid-invite-ratelimitBrendan Abolivier2019-06-282-0/+2
|\ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | Don't update the ratelimiter before sending a 3PID invite
| * | | | | | | | | Only ratelimit when sending the emailBrendan Abolivier2019-06-281-1/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | If we do the opposite, an event can arrive after or while sending the email and the 3PID invite event will get ratelimited.
| * | | | | | | | | ChangelogBrendan Abolivier2019-06-281-0/+1
| | | | | | | | | |
| * | | | | | | | | Don't update the ratelimiter before sending a 3PID inviteBrendan Abolivier2019-06-281-1/+1
| | |_|_|_|_|_|_|/ | |/| | | | | | | | | | | | | | | | | | | | | | | | | This would cause emails being sent, but Synapse responding with a 429 when creating the event. The client would then retry, and with bad timing the same scenario would happen again. Some testing I did ended up sending me 10 emails for one single invite because of this.
* | | | | | | | | Don't log GC 0s at INFO (#5557)Amber Brown2019-06-282-1/+5
| | | | | | | | |
* | | | | | | | | Update the TLS cipher string and provide configurability for TLS on outgoing ↵Amber Brown2019-06-287-9/+190
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | federation (#5550)
* | | | | | | | | Added possibilty to disable local password authentication (#5092)Daniel Hoffend2019-06-275-1/+18
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Daniel Hoffend <dh@dotlan.net>
* | | | | | | | | Include systemd-python in Debian package to allow logging to journal (#5261)Silke Hofstra2019-06-272-1/+8
| | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Silke Hofstra <silke@slxh.eu>
* | | | | | | | | Make it clearer that the template dir is relative to synapse's root dir (#5543)Andrew Morgan2019-06-273-2/+19
| | | | | | | | | | | | | | | | | | | | | | | | | | | Helps address #5444
* | | | | | | | | Merge pull request #5559 from matrix-org/erikj/refactor_changed_devicesErik Johnston2019-06-274-37/+98
|\ \ \ \ \ \ \ \ \ | |/ / / / / / / / |/| | | | | | | | Refactor devices changed query to pull less from DB
| * | | | | | | | Review commentsErik Johnston2019-06-272-7/+5
| | | | | | | | |
| * | | | | | | | Move changelogErik Johnston2019-06-261-0/+0
| | | | | | | | |
| * | | | | | | | Refactor and comment sync device list codeErik Johnston2019-06-261-17/+53
| | | | | | | | |
| * | | | | | | | Use batch_iter and correct docstringErik Johnston2019-06-261-15/+12
| | | | | | | | |
| * | | | | | | | Rename get_users_whose_devices_changedErik Johnston2019-06-263-5/+5
| | | | | | | | |
| * | | | | | | | NewsfileErik Johnston2019-06-261-0/+1
| | | | | | | | |
| * | | | | | | | Refactor get_user_ids_changed to pull less from DBErik Johnston2019-06-263-28/+57
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | When a client asks for users whose devices have changed since a token we used to pull *all* users from the database since the token, which could easily be thousands of rows for old tokens. This PR changes this to only check for changes for users the client is actually interested in. Fixes #5553
* | | | | | | | | Docker image: Add a migrate_config mode (#5567)Richard van der Hoff2019-06-274-17/+58
| | | | | | | | | | | | | | | | | | | | | | | | | | | ... to help people escape env var hell
* | | | | | | | | Docker image: open the non-TLS port by default. (#5568)Richard van der Hoff2019-06-272-0/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | There's not much point in binding to localhost when it's in a docker container.
* | | | | | | | | Deprecate the env var way of running the docker image (#5566)Richard van der Hoff2019-06-274-154/+99
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This is mostly a documentation change, but also adds a default value for SYNAPSE_CONFIG_PATH, so that running from the generated config is the default, and will Just Work provided your config is in the right place.
* | | | | | | | | Fix JWT login (#5555)PauRE2019-06-273-1/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Fix JWT login with register Signed-off-by: Pau Rodriguez-Estivill <prodrigestivill@gmail.com> * Add pyjwt conditional dependency Signed-off-by: Pau Rodriguez-Estivill <prodrigestivill@gmail.com> * Added changelog file Signed-off-by: Pau Rodriguez-Estivill <prodrigestivill@gmail.com> * Improved changelog description Signed-off-by: Pau Rodriguez-Estivill <prodrigestivill@gmail.com>
* | | | | | | | | Merge pull request #5565 from matrix-org/rav/docker/fix_log_configRichard van der Hoff2019-06-273-1/+14
|\ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | Docker: generate our own log config
| * | | | | | | | | changelogRichard van der Hoff2019-06-261-0/+1
| | | | | | | | | |
| * | | | | | | | | Docker: generate our own log configRichard van der Hoff2019-06-261-1/+8
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | When running under docker, we want to use docker's own logging stuff rather than losing the logs somewhere on the container's filesystem, so let's use log configs that spit logs out to stdout instead.
| * | | | | | | | | Add support for SYNAPSE_CONFIG_DIRRichard van der Hoff2019-06-262-0/+5
| | | | | | | | | |
* | | | | | | | | | Reduce the amount of stuff we send in the docker context (#5564)Richard van der Hoff2019-06-272-9/+14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | this makes docker builds a bit faster.
* | | | | | | | | | Merge pull request #5563 from matrix-org/rav/docker/data_dirRichard van der Hoff2019-06-273-4/+25
|\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | Docker image: add support for SYNAPSE_DATA_DIR parameter
| * | | | | | | | | changelogRichard van der Hoff2019-06-261-0/+1
| | | | | | | | | |
| * | | | | | | | | Docker image: add support for SYNAPSE_DATA_DIR parameterRichard van der Hoff2019-06-262-4/+17
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes #4830.
| * | | | | | | | | document supported env vars for docker 'generate' optionRichard van der Hoff2019-06-261-0/+7
| | | | | | | | | |
* | | | | | | | | | Merge pull request #5562 from matrix-org/rav/docker/no-generate-keysRichard van der Hoff2019-06-272-8/+24
|\ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | Docker: only run --generate-keys when generating config on-the-fly.
| * | | | | | | | | | changelogRichard van der Hoff2019-06-261-0/+1
| | | | | | | | | | |
| * | | | | | | | | | Docker: only run --generate-keys when generating config on-the-fly.Richard van der Hoff2019-06-261-7/+21
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | We don't want to generate any missing configs when running from a precanned config. (There's a strong argument that we don't want to do this at all, since generating a new signing key on each invocation sounds disasterous, but I don't fancy unpicking that for now.)