matrix/thirdparty/synapse.git - Unnamed repository; edit this file 'description' to name the repository.

	Commit message (Collapse)	Author	Age	Files	Lines
*	Move endpoint to _synapse	Andrew Morgan	2019-06-06	1	-1/+0
\|
*	Merge branch 'anoa/hs_password_reset_sending_email' into anoa/hs_password_reset	Andrew Morgan	2019-06-06	1	-0/+1
\|\
\| *	Ability to send password reset emails	Andrew Morgan	2019-06-04	1	-0/+1
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	This changes the default behaviour of Synapse to send password reset emails itself rather than through an identity server. The reasoning behind the change is to prevent a malicious identity server from being able to initiate a password reset attempt and then answering it, successfully resetting their password, all without the user's knowledge. This also aides in decentralisation by putting less trust on the identity server itself, which traditionally is quite centralised. If users wish to continue with the old behaviour of proxying password reset requests through the user's configured identity server, they can do so by setting email.enable_password_reset_from_is to True in Synapse's config. Users should be able that with that option disabled (the default), password resets will now no longer work unless email sending has been enabled and set up correctly.
* \|	Reimplementation of /submitToken on the homeserver side. Only used by ↵	Andrew Morgan	2019-06-06	1	-0/+1
\|/ \| \| \| \| \| \| \| \| \| \| \| \| \|	password resets This PR creates an endpoint GET/POST /_matrix/identity/api/v1/validate/email/submitToken which mirrors the same endpoint on the identity server used for submitting tokens used for validating 3PID addresses. When the token is submitted, it is checked along with the client_secret and session_id in the db and if it matches and isn't expired, we mark the session as validated. Then, when the user attempts to change their password, we check if the session is valid, and if so allow it. We also delete the session at this point, as as far as I can tell there's no further use for it.
*	Drop support for v2_alpha API prefix (#5190)	Richard van der Hoff	2019-05-15	1	-2/+1
\|
*	Remove periods from copyright headers (#5046)	Andrew Morgan	2019-04-11	1	-1/+1
\|
*	Add /v2/invite federation API	Erik Johnston	2019-01-15	1	-0/+1
\|
*	Add groundwork for new versions of federation APIs	Erik Johnston	2019-01-15	1	-1/+2
\|
*	Remove deprecated v1 key exchange endpoint (#4119)	Amber Brown	2018-10-31	1	-1/+0
\|
*	Fix userconsent on Python 3 (#3938)	Amber Brown	2018-10-02	1	-1/+1
\|
*	run isort	Amber Brown	2018-07-09	1	-1/+1
\|
*	Reject attempts to send event before privacy consent is given	Richard van der Hoff	2018-05-22	1	-0/+50
\| \| \| \| \| \|	Returns an M_CONSENT_NOT_GIVEN error (cf https://github.com/matrix-org/matrix-doc/issues/1252) if consent is not yet given.
*	APP_SERVICE_PREFIX is never used; don't bother	Paul "LeoNerd" Evans	2016-08-25	1	-1/+0
\|
*	Host /media/r0 as well as /media/v1	Daniel Wagner-Hall	2016-02-05	1	-1/+2
\|
*	copyrights	Matthew Hodgson	2016-01-07	1	-1/+1
\|
*	Add a version 2 of the key server api	Mark Haines	2015-04-14	1	-0/+1
\|
*	Add RegisterFallbackResource to /_matrix/static/client/register	Kegan Dougal	2015-02-23	1	-0/+1
\| \| \| \| \|	Try to keep both forms of registration logic (native/fallback) close together for sanity.
*	Add stub application services REST API.	Kegan Dougal	2015-01-27	1	-0/+1
\|
*	Add client v2_alpha resource to synapse server resource tree	Mark Haines	2015-01-23	1	-0/+1
\|
*	Update copyright notices	Mark Haines	2015-01-06	1	-1/+1
\|
*	Get uploads working with new media repo	Mark Haines	2014-12-02	1	-0/+1
\|
*	Add a _matrix/key/v1 resource with the verification keys of the local server	Mark Haines	2014-09-23	1	-1/+2
\|
*	fix the copyright holder from matrix.org to OpenMarket Ltd, as matrix.org ↵	Matthew Hodgson	2014-09-03	1	-1/+1
\| \| \| \|	hasn't been incorporated in time for launch.
*	change the world: make the default matrix API URL prefix /_matrix rather ↵	Matthew Hodgson	2014-08-31	1	-4/+4
\| \| \| \| \| \|	than /matrix to make it easier for existing websites to mount a HS in their namespace without collisions. perl -pi -e 's#/matrix#/_matrix#g' ./cmdclient/console.py ./docs/client-server/howto.rst ./docs/client-server/specification.rst ./docs/client-server/swagger_matrix/directory ./docs/client-server/swagger_matrix/events ./docs/client-server/swagger_matrix/login ./docs/client-server/swagger_matrix/presence ./docs/client-server/swagger_matrix/profile ./docs/client-server/swagger_matrix/registration ./docs/client-server/swagger_matrix/rooms ./docs/server-server/specification.rst ./graph/graph.py ./jsfiddles/create_room_send_msg/demo.js ./jsfiddles/event_stream/demo.js ./jsfiddles/example_app/demo.js ./jsfiddles/register_login/demo.js ./jsfiddles/room_memberships/demo.js ./synapse/api/urls.py ./tests/federation/test_federation.py ./tests/handlers/test_presence.py ./tests/handlers/test_typing.py ./tests/rest/test_events.py ./tests/rest/test_presence.py ./tests/rest/test_profile.py ./tests/rest/test_rooms.py ./webclient/components/fileUpload/file-upload-service.js ./webclient/components/matrix/matrix-service.js
*	Added /matrix/content path, HS resource_for_content_repo attribute and ↵	Kegan Dougal	2014-08-18	1	-1/+2
\| \| \| \|	FileUploadResource. Added stub methods.
*	Added web client prefix	Kegan Dougal	2014-08-14	1	-1/+2
\|
*	Added a urls module for keeping client and federation prefixes.	Kegan Dougal	2014-08-14	1	-0/+19