Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Fix 'ip_range_whitelist' not working for federation servers (#10115) | Michael Kutzner | 2021-06-15 | 1 | -12/+15 |
| | | | | | Add 'federation_ip_range_whitelist'. This allows backwards-compatibility, If 'federation_ip_range_blacklist' is set. Otherwise 'ip_range_whitelist' will be used for federation servers. Signed-off-by: Michael Kutzner 1mikure@gmail.com | ||||
* | Limit how often GC happens by time. (#9902) | Erik Johnston | 2021-05-05 | 1 | -1/+30 |
| | | | | | | | | | | | | | | | Synapse can be quite memory intensive, and unless care is taken to tune the GC thresholds it can end up thrashing, causing noticable performance problems for large servers. We fix this by limiting how often we GC a given generation, regardless of current counts/thresholds. This does not help with the reverse problem where the thresholds are set too high, but that should only happen in situations where they've been manually configured. Adds a `gc_min_seconds_between` config option to override the defaults. Fixes #9890. | ||||
* | Allow OIDC cookies to work on non-root public baseurls (#9726) | Andrew Morgan | 2021-04-23 | 1 | -4/+4 |
| | | | | | Applied a (slightly modified) patch from https://github.com/matrix-org/synapse/issues/9574. As far as I understand this would allow the cookie set during the OIDC flow to work on deployments using public baseurls that do not sit at the URL path root. | ||||
* | Remove redundant "coding: utf-8" lines (#9786) | Jonathan de Jong | 2021-04-14 | 1 | -1/+0 |
| | | | | | | | Part of #9744 Removes all redundant `# -*- coding: utf-8 -*-` lines from files, as python 3 automatically reads source code as utf-8 now. `Signed-off-by: Jonathan de Jong <jonathan@automatia.nl>` | ||||
* | Add a Synapse Module for configuring presence update routing (#9491) | Andrew Morgan | 2021-04-06 | 1 | -3/+36 |
| | | | | | | | | | | | | At the moment, if you'd like to share presence between local or remote users, those users must be sharing a room together. This isn't always the most convenient or useful situation though. This PR adds a module to Synapse that will allow deployments to set up extra logic on where presence updates should be routed. The module must implement two methods, `get_users_for_states` and `get_interested_users`. These methods are given presence updates or user IDs and must return information that Synapse will use to grant passing presence updates around. A method is additionally added to `ModuleApi` which allows triggering a set of users to receive the current, online presence information for all users they are considered interested in. This is the equivalent of that user receiving presence information during an initial sync. The goal of this module is to be fairly generic and useful for a variety of applications, with hard requirements being: * Sending state for a specific set or all known users to a defined set of local and remote users. * The ability to trigger an initial sync for specific users, so they receive all current state. | ||||
* | quick config comment tweak to clarify allow_profile_lookup_over_federation | Matthew Hodgson | 2021-03-08 | 1 | -2/+1 |
| | |||||
* | Clean up `ShardedWorkerHandlingConfig` (#9466) | Erik Johnston | 2021-02-24 | 1 | -1/+0 |
| | | | | | | | | | | | | | | | | | * Split ShardedWorkerHandlingConfig This is so that we have a type level understanding of when it is safe to call `get_instance(..)` (as opposed to `should_handle(..)`). * Remove special cases in ShardedWorkerHandlingConfig. `ShardedWorkerHandlingConfig` tried to handle the various different ways it was possible to configure federation senders and pushers. This led to special cases that weren't hit during testing. To fix this the handling of the different cases is moved from there and `generic_worker` into the worker config class. This allows us to have the logic in one place and allows the rest of the code to ignore the different cases. | ||||
* | Add configs to make profile data more private (#9203) | AndrewFerr | 2021-02-19 | 1 | -0/+14 |
| | | | | | | | Add off-by-default configuration settings to: - disable putting an invitee's profile info in invite events - disable profile lookup via federation Signed-off-by: Andrew Ferrazzutti <fair@miscworks.net> | ||||
* | Update black, and run auto formatting over the codebase (#9381) | Eric Eastwood | 2021-02-16 | 1 | -4/+13 |
| | | | | | | | - Update black version to the latest - Run black auto formatting over the codebase - Run autoformatting according to [`docs/code_style.md `](https://github.com/matrix-org/synapse/blob/80d6dc9783aa80886a133756028984dbf8920168/docs/code_style.md) - Update `code_style.md` docs around installing black to use the correct version | ||||
* | Merge tag 'v1.27.0rc2' into develop | Patrick Cloke | 2021-02-11 | 1 | -9/+4 |
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Synapse 1.27.0rc2 (2021-02-11) ============================== Features -------- - Further improvements to the user experience of registration via single sign-on. ([\#9297](https://github.com/matrix-org/synapse/issues/9297)) Bugfixes -------- - Fix ratelimiting introduced in v1.27.0rc1 for invites to respect the `ratelimit` flag on application services. ([\#9302](https://github.com/matrix-org/synapse/issues/9302)) - Do not automatically calculate `public_baseurl` since it can be wrong in some situations. Reverts behaviour introduced in v1.26.0. ([\#9313](https://github.com/matrix-org/synapse/issues/9313)) Improved Documentation ---------------------- - Clarify the sample configuration for changes made to the template loading code. ([\#9310](https://github.com/matrix-org/synapse/issues/9310)) | ||||
| * | Backout changes for automatically calculating the public baseurl. (#9313) | Patrick Cloke | 2021-02-11 | 1 | -9/+4 |
| | | | | | | | | This breaks some people's configurations (if their Client-Server API is not accessed via port 443). | ||||
* | | Convert blacklisted IPv4 addresses to compatible IPv6 addresses. (#9240) | Patrick Cloke | 2021-02-03 | 1 | -17/+82 |
|/ | | | Also add a few more IP ranges to the default blacklist. | ||||
* | Support icons for Identity Providers (#9154) | Richard van der Hoff | 2021-01-20 | 1 | -1/+1 |
| | |||||
* | Give `public_baseurl` a default value (#9159) | Richard van der Hoff | 2021-01-20 | 1 | -9/+15 |
| | |||||
* | Fix the sample config location for the ip_range_whitelist setting. (#8954) | Patrick Cloke | 2020-12-16 | 1 | -0/+12 |
| | | | | Move it from the federation section to the server section to match ip_range_blacklist. | ||||
* | Default to blacklisting reserved IP ranges and add a whitelist. (#8870) | Patrick Cloke | 2020-12-09 | 1 | -0/+80 |
| | | | | This defaults `ip_range_blacklist` to reserved IP ranges and also adds an `ip_range_whitelist` setting to override it. | ||||
* | Update default room version to 6 (#8461) | Richard van der Hoff | 2020-10-05 | 1 | -1/+1 |
| | | | | Per https://github.com/matrix-org/matrix-doc/pull/2788 | ||||
* | Update description of server_name config option (#8415) | Aaron Raimist | 2020-09-29 | 1 | -4/+17 |
| | |||||
* | Add a config option for validating 'next_link' parameters against a domain ↵ | Andrew Morgan | 2020-09-08 | 1 | -1/+32 |
| | | | | | | | | | | | whitelist (#8275) This is a config option ported over from DINUM's Sydent: https://github.com/matrix-org/sydent/pull/285 They've switched to validating 3PIDs via Synapse rather than Sydent, and would like to retain this functionality. This original purpose for this change is phishing prevention. This solution could also potentially be replaced by a similar one to https://github.com/matrix-org/synapse/pull/8004, but across all `*/submit_token` endpoint. This option may still be useful to enterprise even with that safeguard in place though, if they want to be absolutely sure that their employees don't follow links to other domains. | ||||
* | Stop sub-classing object (#8249) | Patrick Cloke | 2020-09-04 | 1 | -1/+1 |
| | |||||
* | Allow capping a room's retention policy (#8104) | Brendan Abolivier | 2020-08-24 | 1 | -8/+14 |
| | |||||
* | Add resources.consent conditional dependency back (#8107) | Andrew Morgan | 2020-08-18 | 1 | -20/+0 |
| | | | Turns out that part of the codebase (synapse.config.server) checks for this key explicitly. Remove that check. | ||||
* | Typo | Brendan Abolivier | 2020-08-10 | 1 | -1/+1 |
| | |||||
* | Lint | Brendan Abolivier | 2020-08-10 | 1 | -2/+2 |
| | |||||
* | why mypy why | Brendan Abolivier | 2020-08-10 | 1 | -1/+3 |
| | |||||
* | Lint | Brendan Abolivier | 2020-08-06 | 1 | -1/+1 |
| | |||||
* | Incorporate review | Brendan Abolivier | 2020-08-06 | 1 | -2/+2 |
| | |||||
* | Incorporate review | Brendan Abolivier | 2020-08-06 | 1 | -0/+3 |
| | |||||
* | Back out the database hack and replace it with a temporary config setting | Brendan Abolivier | 2020-08-03 | 1 | -0/+10 |
| | |||||
* | Option to allow server admins to join complex rooms (#7902) | lugino-emeritus | 2020-07-28 | 1 | -0/+7 |
| | | | | | Fixes #7901. Signed-off-by: Niklas Tittjung <nik_t.01@web.de> | ||||
* | Fix a typo in the sample config. (#7890) | Adrian | 2020-07-20 | 1 | -1/+1 |
| | |||||
* | Add a default limit (of 100) to get/sync operations. (#7858) | Patrick Cloke | 2020-07-17 | 1 | -2/+4 |
| | |||||
* | Add ability to shard the federation sender (#7798) | Erik Johnston | 2020-07-10 | 1 | -66/+0 |
| | |||||
* | Create a ListenerConfig object (#7681) | Richard van der Hoff | 2020-06-16 | 1 | -85/+150 |
| | | | | | | | | | | This ended up being a bit more invasive than I'd hoped for (not helped by generic_worker duplicating some of the code from homeserver), but hopefully it's an improvement. The idea is that, rather than storing unstructured `dict`s in the config for the listener configurations, we instead parse it into a structured `ListenerConfig` object. | ||||
* | fix typo in sample_config.yaml (#7652) | wondratsch | 2020-06-11 | 1 | -1/+1 |
| | | | | | Just a simple typo fix. Signed-off-by: wondratsch 28294257+wondratsch@users.noreply.github.com | ||||
* | Fix some DETECTED VIOLATIONS in the config file (#7550) | Richard van der Hoff | 2020-05-22 | 1 | -14/+19 |
| | | | consistency ftw | ||||
* | Fix new flake8 errors (#7470) | Erik Johnston | 2020-05-12 | 1 | -1/+1 |
| | |||||
* | Add a configuration setting for the dummy event threshold (#7422) | Brendan Abolivier | 2020-05-07 | 1 | -0/+15 |
| | | | Add dummy_events_threshold which allows configuring the number of forward extremities a room needs for Synapse to send forward extremities in it. | ||||
* | Revert "Revert "Merge pull request #7315 from ↵ | Brendan Abolivier | 2020-04-23 | 1 | -0/+21 |
| | | | | | | matrix-org/babolivier/request_token"" This reverts commit 1adf6a55870aa08de272591ff49db9dc49738076. | ||||
* | Extend web_client_location to handle absolute URLs (#7006) | Martin Milata | 2020-04-03 | 1 | -3/+8 |
| | | | | | Log warning when filesystem path is used. Signed-off-by: Martin Milata <martin@martinmilata.cz> | ||||
* | Clarify list/set/dict/tuple comprehensions and enforce via flake8 (#6957) | Patrick Cloke | 2020-02-21 | 1 | -2/+2 |
| | | | | Ensure good comprehension hygiene using flake8-comprehensions. | ||||
* | Add more logging around message retention policies support (#6717) | Brendan Abolivier | 2020-01-17 | 1 | -0/+8 |
| | | | So we can debug issues like #6683 more easily | ||||
* | Reword | Brendan Abolivier | 2020-01-07 | 1 | -3/+3 |
| | |||||
* | Change the example from 5min to 12h | Brendan Abolivier | 2020-01-07 | 1 | -4/+4 |
| | | | | Have a purge job running every 5min is probably not something we want to advise admins to do as a sort-of default. | ||||
* | Fix a typo in the purge jobs configuration example | Brendan Abolivier | 2020-01-03 | 1 | -1/+1 |
| | |||||
* | Add option to allow profile queries without sharing a room (#6523) | Will Hunt | 2019-12-16 | 1 | -0/+13 |
| | |||||
* | Bump version of mypy | Erik Johnston | 2019-12-12 | 1 | -1/+1 |
| | |||||
* | privacy by default for room dir (#6355) | Neil Johnson | 2019-12-04 | 1 | -12/+14 |
| | | | | Ensure that the the default settings for the room directory are that the it is hidden from public view by default. | ||||
* | Add ephemeral messages support (MSC2228) (#6409) | Brendan Abolivier | 2019-12-03 | 1 | -0/+2 |
| | | | | | | | | Implement part [MSC2228](https://github.com/matrix-org/matrix-doc/pull/2228). The parts that differ are: * the feature is hidden behind a configuration flag (`enable_ephemeral_messages`) * self-destruction doesn't happen for state events * only implement support for the `m.self_destruct_after` field (not the `m.self_destruct` one) * doesn't send synthetic redactions to clients because for this specific case we consider the clients to be able to destroy an event themselves, instead we just censor it (by pruning its JSON) in the database | ||||
* | Merge branch 'develop' into babolivier/message_retention | Brendan Abolivier | 2019-11-26 | 1 | -6/+6 |
|\ | |||||
| * | Clean up newline quote marks around the codebase (#6362) | Andrew Morgan | 2019-11-21 | 1 | -3/+3 |
| | | |||||
| * | Merge branch 'develop' of github.com:matrix-org/synapse into ↵ | Andrew Morgan | 2019-11-14 | 1 | -1/+1 |
| |\ | | | | | | | | | | | | | | | | | | | | | | anoa/homeserver_copy * 'develop' of github.com:matrix-org/synapse: Blacklist PurgeRoomTestCase (#6361) Set room version default to 5 | ||||
| | * | Merge pull request #6220 from matrix-org/neilj/set_room_version_default_to_5 | Brendan Abolivier | 2019-11-14 | 1 | -1/+1 |
| | |\ | | | | | | | | | Set room version default to 5 | ||||
| | | * | Set room version default to 5 | Neil Johnson | 2019-10-19 | 1 | -1/+1 |
| | | | | |||||
| * | | | A couple more instances | Andrew Morgan | 2019-11-12 | 1 | -1/+1 |
| | | | | |||||
| * | | | Replace instance variations of homeserver with correct case/spacing | Andrew Morgan | 2019-11-12 | 1 | -1/+1 |
| |/ / | |||||
* | | | Lint again | Brendan Abolivier | 2019-11-19 | 1 | -1/+1 |
| | | | |||||
* | | | Lint again | Brendan Abolivier | 2019-11-19 | 1 | -1/+1 |
| | | | |||||
* | | | Lint | Brendan Abolivier | 2019-11-19 | 1 | -15/+24 |
| | | | |||||
* | | | Implement per-room message retention policies | Brendan Abolivier | 2019-11-04 | 1 | -0/+172 |
|/ / | |||||
* | | Option to suppress resource exceeded alerting (#6173) | Neil Johnson | 2019-10-24 | 1 | -2/+8 |
| | | | | | | | | The expected use case is to suppress MAU limiting on small instances | ||||
* | | Add config linting script that checks for bool casing (#6203) | Andrew Morgan | 2019-10-23 | 1 | -5/+5 |
|/ | | | | | Add a linting script that enforces all boolean values in the default config be lowercase. This has annoyed me for a while so I decided to fix it. | ||||
* | Refactor HomeserverConfig so it can be typechecked (#6137) | Amber Brown | 2019-10-10 | 1 | -0/+2 |
| | |||||
* | Fix up some typechecking (#6150) | Amber Brown | 2019-10-02 | 1 | -3/+7 |
| | | | | | | * type checking fixes * changelog | ||||
* | Fix 'redaction_retention_period' sampel config to match guidelines | Erik Johnston | 2019-09-26 | 1 | -1/+1 |
| | |||||
* | Explicitly log when a homeserver does not have a trusted key server ↵ | Neil Johnson | 2019-09-26 | 1 | -8/+8 |
| | | | | configured (#6090) | ||||
* | Merge branch 'develop' of github.com:matrix-org/synapse into ↵ | Erik Johnston | 2019-09-25 | 1 | -3/+4 |
|\ | | | | | | | erikj/cleanup_user_ips_2 | ||||
| * | Enable cleaning up extremities with dummy events by default to prevent undue ↵ | Neil Johnson | 2019-09-25 | 1 | -3/+1 |
| | | | | | | | | build up of forward extremities. (#5884) | ||||
| * | Use the federation blacklist for requests to untrusted Identity Servers (#6000) | Andrew Morgan | 2019-09-23 | 1 | -0/+3 |
| | | | | | | | | | | Uses a SimpleHttpClient instance equipped with the federation_ip_range_blacklist list for requests to identity servers provided by user input. Does not use a blacklist when contacting identity servers specified by account_threepid_delegates. The homeserver trusts the latter and we don't want to prevent homeserver admins from specifying delegates that are on internal IP addresses. Fixes #5935 | ||||
* | | Review comments | Erik Johnston | 2019-09-25 | 1 | -1/+1 |
| | | |||||
* | | Prune rows in user_ips older than configured period | Erik Johnston | 2019-09-24 | 1 | -0/+13 |
|/ | | | | Defaults to pruning everything older than 28d. | ||||
* | (#5849) Convert rst to markdown (#6040) | dstipp | 2019-09-17 | 1 | -6/+6 |
| | | | | | Converting some of the rst documentation to markdown. Attempted to preserve whitespace and line breaks to minimize cosmetic change. | ||||
* | Default to censoring redactions after seven days | Erik Johnston | 2019-09-09 | 1 | -4/+6 |
| | |||||
* | Handle setting retention period to 0 | Erik Johnston | 2019-09-09 | 1 | -1/+1 |
| | |||||
* | Make redaction retention period configurable | Erik Johnston | 2019-09-05 | 1 | -0/+15 |
| | |||||
* | Config templating (#5900) | Jorik Schellekens | 2019-08-28 | 1 | -17/+67 |
| | | | | | | | | | | | | Template config files * Imagine a system composed entirely of x, y, z etc and the basic operations.. Wait George, why XOR? Why not just neq? George: Eh, I didn't think of that.. Co-Authored-By: Erik Johnston <erik@matrix.org> | ||||
* | Room Complexity Client Implementation (#5783) | Amber Brown | 2019-07-30 | 1 | -0/+41 |
| | |||||
* | enable aggregations support by default | Neil Johnson | 2019-07-18 | 1 | -1/+1 |
| | |||||
* | Change add_arguments to be a static method | Erik Johnston | 2019-07-15 | 1 | -1/+2 |
| | |||||
* | Merge pull request #5524 from matrix-org/rav/new_cmdline_options | Richard van der Hoff | 2019-06-24 | 1 | -5/+12 |
|\ | | | | | Add --data-dir and --open-private-ports options. | ||||
| * | Add "--open-private-ports" cmdline option | Richard van der Hoff | 2019-06-24 | 1 | -5/+12 |
| | | | | | | | | This is helpful when generating a config file for running synapse under docker. | ||||
* | | Merge pull request #5523 from matrix-org/rav/arg_defaults | Richard van der Hoff | 2019-06-24 | 1 | -1/+1 |
|\| | | | | | Stop conflating generated config and default config | ||||
| * | Don't load the generated config as the default. | Richard van der Hoff | 2019-06-24 | 1 | -1/+1 |
| | | | | | | | | It's too confusing. | ||||
* | | Split public rooms directory auth config in two | Brendan Abolivier | 2019-06-24 | 1 | -10/+34 |
|/ | |||||
* | Pass config_dir_path and data_dir_path into Config.read_config. (#5522) | Richard van der Hoff | 2019-06-24 | 1 | -1/+1 |
| | | | | | | * Pull config_dir_path and data_dir_path calculation out of read_config_files * Pass config_dir_path and data_dir_path into read_config | ||||
* | Drop support for cpu_affinity (#5525) | Richard van der Hoff | 2019-06-22 | 1 | -24/+0 |
| | | | This has no useful purpose on python3, and is generally a source of confusion. | ||||
* | Run Black. (#5482) | Amber Brown | 2019-06-20 | 1 | -118/+108 |
| | |||||
* | Add experimental option to reduce extremities. | Erik Johnston | 2019-06-18 | 1 | -0/+6 |
| | | | | | | | Adds new config option `cleanup_extremities_with_dummy_events` which periodically sends dummy events to rooms with more than 10 extremities. THIS IS REALLY EXPERIMENTAL. | ||||
* | Set default room version to v4. (#5379) | Neil Johnson | 2019-06-06 | 1 | -1/+1 |
| | | | | Set default room version to v4. | ||||
* | Neilj/mau tracking config explainer (#5284) | Neil Johnson | 2019-06-05 | 1 | -0/+16 |
| | | | | Improve documentation of monthly active user blocking and mau_trial_days | ||||
* | Add missing blank line in config (#5249) | Richard van der Hoff | 2019-05-24 | 1 | -0/+1 |
| | |||||
* | Add config option for setting homeserver's default room version (#5223) | Andrew Morgan | 2019-05-23 | 1 | -0/+32 |
| | | | | | Replaces DEFAULT_ROOM_VERSION constant with a method that first checks the config, then returns a hardcoded value if the option is not present. That hardcoded value is now located in the server.py config file. | ||||
* | Merge pull request #5209 from matrix-org/erikj/reactions_base | Erik Johnston | 2019-05-20 | 1 | -0/+5 |
|\ | | | | | Land basic reaction and edit support. | ||||
| * | Add aggregations API | Erik Johnston | 2019-05-16 | 1 | -0/+5 |
| | | |||||
* | | Add option to disable per-room profiles | Brendan Abolivier | 2019-05-16 | 1 | -0/+11 |
|/ | |||||
* | Add ability to blacklist ip ranges for federation traffic (#5043) | Andrew Morgan | 2019-05-13 | 1 | -0/+38 |
| | |||||
* | add options to require an access_token to GET /profile and /publicRooms on ↵ | Matthew Hodgson | 2019-05-08 | 1 | -0/+27 |
| | | | | | | | | | | | | | | | | | CS API (#5083) This commit adds two config options: * `restrict_public_rooms_to_local_users` Requires auth to fetch the public rooms directory through the CS API and disables fetching it through the federation API. * `require_auth_for_profile_requests` When set to `true`, requires that requests to `/profile` over the CS API are authenticated, and only returns the user's profile if the requester shares a room with the profile's owner, as per MSC1301. MSC1301 also specifies a behaviour for federation (only returning the profile if the server asking for it shares a room with the profile's owner), but that's currently really non-trivial to do in a not too expensive way. Next step is writing down a MSC that allows a HS to specify which user sent the profile query. In this implementation, Synapse won't send a profile query over federation if it doesn't believe it already shares a room with the profile's owner, though. Groups have been intentionally omitted from this commit. | ||||
* | Merge pull request #5124 from matrix-org/babolivier/aliases | Brendan Abolivier | 2019-05-02 | 1 | -0/+11 |
|\ | | | | | Add some limitations to alias creation | ||||
| * | Add some limitations to alias creation | Brendan Abolivier | 2019-05-02 | 1 | -0/+11 |
| | | |||||
* | | Move admin API to a new prefix | Richard van der Hoff | 2019-05-01 | 1 | -2/+2 |
|/ | |||||
* | Config option for verifying federation certificates (MSC 1711) (#4967) | Andrew Morgan | 2019-04-25 | 1 | -2/+4 |
| | |||||
* | add context to phonehome stats (#5020) | Neil Johnson | 2019-04-08 | 1 | -0/+4 |
| | | | | add context to phonehome stats | ||||
* | Add a config option for torture-testing worker replication. (#4902) | Richard van der Hoff | 2019-03-20 | 1 | -0/+5 |
| | | | Setting this to 50 or so makes a bunch of sytests fail in worker mode. | ||||
* | Comment out most options in the generated config. (#4863) | Richard van der Hoff | 2019-03-19 | 1 | -3/+3 |
| | | | | | | | | | | | | | | | | | | | | Make it so that most options in the config are optional, and commented out in the generated config. The reasons this is a good thing are as follows: * If we decide that we should change the default for an option, we can do so, and only those admins that have deliberately chosen to override that option will be stuck on the old setting. * It moves us towards a point where we can get rid of the super-surprising feature of synapse where the default settings for the config come from the generated yaml. * It makes setting up a test config for unit testing an order of magnitude easier (see forthcoming PR). * It makes the generated config more consistent, and hopefully easier for users to understand. | ||||
* | Include a default configuration file in the 'docs' directory. (#4791) | Richard van der Hoff | 2019-03-04 | 1 | -0/+4 |
| | |||||
* | Attempt to make default config more consistent | Richard van der Hoff | 2019-02-19 | 1 | -42/+50 |
| | | | | | | The general idea here is that config examples should just have a hash and no extraneous whitespace, both to make it easier for people who don't understand yaml, and to make the examples stand out from the comments. | ||||
* | Special-case the default bind_addresses for metrics listener | Richard van der Hoff | 2019-02-13 | 1 | -1/+5 |
| | | | | | turns out it doesn't really support ipv6, so let's hack around that by only listening on ipv4 by default. | ||||
* | Disable TLS by default (#4614) | Richard van der Hoff | 2019-02-12 | 1 | -24/+24 |
| | |||||
* | Infer no_tls from presence of TLS listeners | Richard van der Hoff | 2019-02-11 | 1 | -3/+20 |
| | | | | | Rather than have to specify `no_tls` explicitly, infer whether we need to load the TLS keys etc from whether we have any TLS-enabled listeners. | ||||
* | Fail cleanly if listener config lacks a 'port' | Richard van der Hoff | 2019-02-11 | 1 | -0/+5 |
| | | | | ... otherwise we would fail with a mysterious KeyError or something later. | ||||
* | Clean up default listener configuration (#4586) | Richard van der Hoff | 2019-02-11 | 1 | -48/+81 |
| | | | | | | | | | | Rearrange the comments to try to clarify them, and expand on what some of it means. Use a sensible default 'bind_addresses' setting. For the insecure port, only bind to localhost, and enable x_forwarded, since apparently it's for use behind a load-balancer. | ||||
* | Merge pull request #4420 from matrix-org/jaywink/openid-listener | Erik Johnston | 2019-02-11 | 1 | -0/+10 |
|\ | | | | | New listener resource for the federation API "openid/userinfo" endpoint | ||||
| * | Fix flake8 issues | Jason Robinson | 2019-01-23 | 1 | -1/+1 |
| | | | | | | | | Signed-off-by: Jason Robinson <jasonr@matrix.org> | ||||
| * | Remove openid resource from default config | Jason Robinson | 2019-01-23 | 1 | -4/+13 |
| | | | | | | | | | | | | Instead document it commented out. Signed-off-by: Jason Robinson <jasonr@matrix.org> | ||||
| * | Split federation OpenID userinfo endpoint out of the federation resource | Jason Robinson | 2019-01-23 | 1 | -4/+5 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | This allows the OpenID userinfo endpoint to be active even if the federation resource is not active. The OpenID userinfo endpoint is called by integration managers to verify user actions using the client API OpenID access token. Without this verification, the integration manager cannot know that the access token is valid. The OpenID userinfo endpoint will be loaded in the case that either "federation" or "openid" resource is defined. The new "openid" resource is defaulted to active in default configuration. Signed-off-by: Jason Robinson <jasonr@matrix.org> | ||||
* | | Don't recommend :8448 to people on public_baseurl | Travis Ralston | 2019-01-28 | 1 | -1/+1 |
| | | |||||
* | | Merge pull request #4435 from matrix-org/neilj/fix_threepid_auth_check | Neil Johnson | 2019-01-24 | 1 | -5/+4 |
|\ \ | | | | | | | Neilj/fix threepid auth check | ||||
| * | | move guard out of is_threepid_reserved and into register.py | Neil Johnson | 2019-01-22 | 1 | -2/+0 |
| | | | |||||
| * | | Fix None guard in config.server.is_threepid_reserved | Neil Johnson | 2019-01-22 | 1 | -5/+6 |
| |/ | |||||
* / | Clarify docs for public_baseurl | David Baker | 2019-01-24 | 1 | -1/+5 |
|/ | | | | | | This is leading to problems with people upgrading to clients that support MSC1730 because people have this misconfigured, so try to make the docs completely unambiguous. | ||||
* | Check jinja version for consent resource (#4327) | Richard van der Hoff | 2019-01-07 | 1 | -1/+37 |
| | | | | | | | | * Raise a ConfigError if an invalid resource is specified * Require Jinja 2.9 for the consent resource * changelog | ||||
* | Add a script to generate a clean config file (#4315) | Richard van der Hoff | 2018-12-22 | 1 | -2/+3 |
| | |||||
* | Fix indentation in default config (#4313) | Richard van der Hoff | 2018-12-22 | 1 | -35/+35 |
| | | | These settings are not supposed to be under 'listeners'. | ||||
* | Stop installing Matrix Console by default | Richard van der Hoff | 2018-12-11 | 1 | -15/+27 |
| | | | | This is based on the work done by @krombel in #2601. | ||||
* | Add an option to disable search for homeservers which may not be interested ↵ | Travis Ralston | 2018-12-04 | 1 | -1/+11 |
| | | | | | | in it (#4230) This is useful for homeservers not intended for users, such as bot-only homeservers or ones that only process IoT data. | ||||
* | Add option to track MAU stats (but not limit people) (#3830) | Travis Ralston | 2018-11-15 | 1 | -0/+6 |
| | |||||
* | move threepid checker to config, add missing yields | Neil Johnson | 2018-08-31 | 1 | -0/+17 |
| | |||||
* | Change admin_uri to admin_contact in config and errors | Erik Johnston | 2018-08-24 | 1 | -2/+2 |
| | |||||
* | Implement trail users | Erik Johnston | 2018-08-23 | 1 | -0/+6 |
| | |||||
* | Integrate presence from hotfixes (#3694) | Amber Brown | 2018-08-18 | 1 | -0/+6 |
| | |||||
* | server limits config docs | Neil Johnson | 2018-08-17 | 1 | -0/+26 |
| | |||||
* | add new error type ResourceLimit | Neil Johnson | 2018-08-16 | 1 | -0/+1 |
| | |||||
* | update admin email to uri | Neil Johnson | 2018-08-15 | 1 | -1/+1 |
| | |||||
* | replace admin_email with admin_uri for greater flexibility | Neil Johnson | 2018-08-15 | 1 | -1/+1 |
| | |||||
* | support admin_email config and pass through into blocking errors, return ↵ | Neil Johnson | 2018-08-13 | 1 | -0/+4 |
| | | | | AuthError in all cases | ||||
* | Revert "support admin_email config and pass through into blocking errors, ↵ | Neil Johnson | 2018-08-13 | 1 | -4/+0 |
| | | | | | | return AuthError in all cases" This reverts commit 0d43f991a19840a224d3dac78d79f13d78212ee6. | ||||
* | support admin_email config and pass through into blocking errors, return ↵ | Neil Johnson | 2018-08-13 | 1 | -0/+4 |
| | | | | AuthError in all cases | ||||
* | Merge branch 'develop' into neilj/disable_hs | Neil Johnson | 2018-08-08 | 1 | -0/+3 |
|\ | |||||
| * | implement reserved users for mau limits | Neil Johnson | 2018-08-07 | 1 | -1/+1 |
| | | |||||
| * | load mau limit threepids | Neil Johnson | 2018-08-06 | 1 | -0/+3 |
| | | |||||
* | | disable HS from config | Neil Johnson | 2018-08-04 | 1 | -0/+4 |
|/ | |||||
* | fix (lots of) py3 test failures | Neil Johnson | 2018-08-03 | 1 | -2/+2 |
| | |||||
* | Merge branch 'master' into develop | Richard van der Hoff | 2018-08-02 | 1 | -0/+2 |
|\ | |||||
| * | Merge pull request #3377 from Valodim/note-affinity | Richard van der Hoff | 2018-07-19 | 1 | -0/+2 |
| |\ | | | | | | | document that the affinity package is required for the cpu_affinity setting | ||||
| | * | add note that the affinity package is required for the cpu_affinity setting | Vincent Breitmoser | 2018-06-09 | 1 | -0/+2 |
| | | | |||||
* | | | remove need to plot limit_usage_by_mau | Neil Johnson | 2018-08-01 | 1 | -3/+6 |
| | | | |||||
* | | | coding style | Neil Johnson | 2018-07-31 | 1 | -1/+1 |
| | | | |||||
* | | | limit register and sign in on number of monthly users | Neil Johnson | 2018-07-30 | 1 | -0/+5 |
|/ / | |||||
* | | run isort | Amber Brown | 2018-07-09 | 1 | -0/+1 |
| | | |||||
* | | More server_name validation | Richard van der Hoff | 2018-07-04 | 1 | -2/+9 |
|/ | | | | | | | | We need to do a bit more validation when we get a server name, but don't want to be re-doing it all over the shop, so factor out a separate parse_and_validate_server_name, and do the extra validation. Also, use it to verify the server name in the config file. | ||||
* | Run Prometheus on a different port, optionally. (#3274) | Amber Brown | 2018-05-31 | 1 | -0/+10 |
| | |||||
* | Add federation_domain_whitelist option (#2820) | Matthew Hodgson | 2018-01-22 | 1 | -0/+22 |
| | | | | | | Add federation_domain_whitelist gives a way to restrict which domains your HS is allowed to federate with. useful mainly for gracefully preventing a private but internet-connected HS from trying to federate to the wider public Matrix network | ||||
* | Allow binds to both :: and 0.0.0.0 | Silke Hofstra | 2017-12-17 | 1 | -5/+3 |
| | | | | | | | | | | Binding on 0.0.0.0 when :: is specified in the bind_addresses is now allowed. This causes a warning explaining the behaviour. Configuration changed to match. See #2232 Signed-off-by: Silke Hofstra <silke@slxh.eu> | ||||
* | Adapt the default config to bind on IPv6. | Willem Mulder | 2017-12-17 | 1 | -8/+9 |
| | | | | | | | | | Most deployments are on Linux (or Mac OS), so this would actually bind on both IPv4 and IPv6. Resolves #1886. Signed-off-by: Willem Mulder <willemmaster@hotmail.com> | ||||
* | Add config option to disable media_repo on main synapse | Richard van der Hoff | 2017-11-22 | 1 | -0/+6 |
| | | | | ... to stop us doing the cache cleanup jobs on the master. | ||||
* | Add a hook for custom rest endpoints | Richard van der Hoff | 2017-11-02 | 1 | -0/+7 |
| | | | | | Let the user specify custom modules which can be used for implementing extra endpoints. | ||||
* | replace 'except:' with 'except Exception:' | Richard van der Hoff | 2017-10-23 | 1 | -1/+1 |
| | | | | what could possibly go wrong | ||||
* | Add a config option to block all room invites (#2457) | Richard van der Hoff | 2017-09-19 | 1 | -0/+10 |
| | | | | | - allows sysadmins the ability to lock down their servers so that people can't send their users room invites. | ||||
* | Fix process startup | Richard van der Hoff | 2017-08-16 | 1 | -10/+13 |
| | | | | escape the % that got added in 92168cb so that the process starts up ok. | ||||
* | explain why CPU affinity is a good idea | Matthew Hodgson | 2017-08-15 | 1 | -0/+8 |
| | |||||
* | Allow configuration of CPU affinity | Richard van der Hoff | 2017-08-15 | 1 | -0/+12 |
| | | | | | Make it possible to set the CPU affinity in the config file, so that we don't need to remember to do it manually every time. | ||||
* | Initial worker impl | Erik Johnston | 2017-06-16 | 1 | -0/+4 |
| | |||||
* | Configurable maximum number of events requested by /sync and /messages (#2220) | Pablo Saavedra | 2017-05-13 | 1 | -0/+6 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | Set the limit on the returned events in the timeline in the get and sync operations. The default value is -1, means no upper limit. For example, using `filter_timeline_limit: 5000`: POST /_matrix/client/r0/user/user:id/filter { room: { timeline: { limit: 1000000000000000000 } } } GET /_matrix/client/r0/user/user:id/filter/filter:id { room: { timeline: { limit: 5000 } } } The server cuts down the room.timeline.limit. | ||||
* | web_server_root documentation fix | Matthew Wolff | 2017-04-17 | 1 | -0/+6 |
| | | | | Signed-off-by: Matthew Wolff <matthewjwolff@gmail.com> | ||||
* | Pop bind_address | Erik Johnston | 2017-01-10 | 1 | -1/+1 |
| | |||||
* | Restore default bind address | Erik Johnston | 2017-01-10 | 1 | -4/+13 |
| | |||||
* | Add IPv6 comment to default config | Johannes Löthberg | 2016-12-18 | 1 | -0/+4 |
| | | | | Signed-off-by: Johannes Löthberg <johannes@kyriasis.com> | ||||
* | Make default homeserver config use bind_addresses | Johannes Löthberg | 2016-12-18 | 1 | -4/+5 |
| | | | | Signed-off-by: Johannes Löthberg <johannes@kyriasis.com> | ||||
* | Hook up the send queue and create a federation sender worker | Erik Johnston | 2016-11-16 | 1 | -0/+5 |
| | |||||
* | Remove support for aggregate room lists | Erik Johnston | 2016-09-15 | 1 | -9/+0 |
| | |||||
* | remove vector.im from default secondary DS list | Matthew Hodgson | 2016-06-27 | 1 | -1/+0 |
| | |||||
* | Remove the legacy v0 content upload API. | Mark Haines | 2016-06-21 | 1 | -20/+0 |
| | | | | | | The existing content can still be downloaded. The last upload to the matrix.org server was in January 2015, so it is probably safe to remove the upload API. | ||||
* | Turn use_frozen_events off by default | Erik Johnston | 2016-06-17 | 1 | -1/+1 |
| | |||||
* | Inline the synchrotron and pusher configs into the main config | Mark Haines | 2016-06-16 | 1 | -13/+18 |
| | |||||
* | Allow setting of gc.set_thresholds | Erik Johnston | 2016-06-07 | 1 | -1/+18 |
| | |||||
* | Add vector.im to default secondary_directory_servers and add comment ↵ | David Baker | 2016-05-31 | 1 | -0/+4 |
| | | | | explaining it's not a permanent solution | ||||
* | Add federation room list servlet | David Baker | 2016-05-31 | 1 | -0/+6 |
| | |||||
* | Correct public_baseurl default | David Baker | 2016-04-29 | 1 | -2/+2 |
| | |||||
* | Merge remote-tracking branch 'origin/develop' into dbkr/email_notifs | David Baker | 2016-04-29 | 1 | -0/+1 |
|\ | |||||
| * | Optionally split out the pushers into a separate process | Mark Haines | 2016-04-21 | 1 | -0/+1 |
| | | |||||
* | | Hopefully all remaining bits for email notifs | David Baker | 2016-04-27 | 1 | -0/+8 |
|/ | | | | Add public facing base url to the server so synapse knows what URL to use when converting mxc to http urls for use in emails | ||||
* | Merge pull request #473 from matrix-org/erikj/ssh_manhole | Erik Johnston | 2016-01-07 | 1 | -1/+1 |
|\ | | | | | Change manhole to use ssh | ||||
| * | s/telnet/ssh/ | Erik Johnston | 2016-01-07 | 1 | -1/+1 |
| | | |||||
* | | copyrights | Matthew Hodgson | 2016-01-07 | 1 | -1/+1 |
|/ | |||||
* | Added a single line to explain what the server_name is used for | Mads R. Christensen | 2015-12-02 | 1 | -0/+1 |
| | |||||
* | Preserve version string in user agent | Daniel Wagner-Hall | 2015-10-05 | 1 | -1/+1 |
| | |||||
* | Allow synapse's useragent to be customized | Daniel Wagner-Hall | 2015-10-02 | 1 | -0/+1 |
| | | | | | This will allow me to write tests which verify which server made HTTP requests in a federation context. | ||||
* | Implement configurable stats reporting | Daniel Wagner-Hall | 2015-09-22 | 1 | -1/+1 |
| | | | | | | | | | | SYN-287 This requires that HS owners either opt in or out of stats reporting. When --generate-config is passed, --report-stats must be specified If an already-generated config is used, and doesn't have the report_stats key, it is requested to be set. | ||||
* | Allow specifying a directory to host a web client from | Erik Johnston | 2015-08-25 | 1 | -0/+1 |
| | |||||
* | Only print the pidfile path on startup if requested by a commandline flag | Paul "LeoNerd" Evans | 2015-08-07 | 1 | -0/+7 |
| | |||||
* | Remove redundant newline | Erik Johnston | 2015-06-15 | 1 | -2/+1 |
| | |||||
* | Document listener config. Remove deprecated config options | Erik Johnston | 2015-06-15 | 1 | -28/+42 |
| | |||||
* | Add backwards compat support for metrics, manhole and webclient config options | Erik Johnston | 2015-06-12 | 1 | -3/+27 |
| | |||||
* | Correctly handle x_forwaded listener option | Erik Johnston | 2015-06-12 | 1 | -0/+2 |
| | |||||
* | Use config.listeners | Erik Johnston | 2015-06-12 | 1 | -30/+84 |
| | |||||
* | Begin changing the config format | Erik Johnston | 2015-06-11 | 1 | -8/+24 |
| | |||||
* | Add config option to disable compression of http responses | Erik Johnston | 2015-06-01 | 1 | -0/+6 |
| | |||||
* | Add config option to turn off freezing events. Use new encode_json api and ↵ | Erik Johnston | 2015-05-29 | 1 | -0/+1 |
| | | | | ujson.loads | ||||
* | Use the daemonize key from the config if it exists | Mark Haines | 2015-05-01 | 1 | -1/+4 |
| | |||||
* | Allow "manhole" to be ommited from the config | Mark Haines | 2015-04-30 | 1 | -1/+1 |
| | |||||
* | Remove the ~, comment the lines instead | Mark Haines | 2015-04-30 | 1 | -1/+1 |
| | |||||
* | Manually generate the default config yaml, remove most of the commandline ↵ | Mark Haines | 2015-04-30 | 1 | -48/+69 |
| | | | | arguments for synapse anticipating that people will use the yaml instead. Simpify implementing config options by not requiring the classes to hit the super class | ||||
* | Move the key related config parser into a separate file | Mark Haines | 2015-04-24 | 1 | -84/+1 |
| | |||||
* | Better help for the old-signing-key option | Mark Haines | 2015-04-24 | 1 | -1/+4 |
| | |||||
* | Implement remote key lookup api | Mark Haines | 2015-04-22 | 1 | -2/+2 |
| | |||||
* | Add a version 2 of the key server api | Mark Haines | 2015-04-14 | 1 | -1/+33 |
| | |||||
* | Wire up the webclient option | David Baker | 2015-03-17 | 1 | -1/+3 |
| | | | | | | It existed but was hardcoded to True. Give it an underscore for consistency. Also don't pull in syweb unless we're actually using the web client. | ||||
* | Don't look for an TLS private key if we have set --no-tls | Erik Johnston | 2015-03-06 | 1 | -3/+0 |
| | |||||
* | By default set soft limit to hard limit | Erik Johnston | 2015-02-20 | 1 | -5/+5 |
| | |||||
* | Add config option to set the soft fd limit on start | Erik Johnston | 2015-02-19 | 1 | -0/+7 |
| | |||||
* | Add better help message for --server-name config option. | Erik Johnston | 2015-01-08 | 1 | -2/+6 |
| | |||||
* | Update copyright notices | Mark Haines | 2015-01-06 | 1 | -1/+1 |
| | |||||
* | SYN-187: Set a more sensible default for the content_addr v0.5.3b | Mark Haines | 2014-12-02 | 1 | -2/+5 |
| | |||||
* | Add option to not bind to HTTPS port. This is useful if running behind an ↵ | Erik Johnston | 2014-11-03 | 1 | -0/+3 |
| | | | | ssl load balancer | ||||
* | Fix pep8 warnings | Mark Haines | 2014-10-30 | 1 | -1/+1 |
| | |||||
* | Fix pyflakes warnings | Mark Haines | 2014-10-27 | 1 | -1/+1 |
| | |||||
* | Fix auto generating signing_keys | Mark Haines | 2014-10-18 | 1 | -1/+1 |
| | |||||
* | Read signing keys using methods from syutil. convert keys that are in the ↵ | Mark Haines | 2014-09-23 | 1 | -9/+30 |
| | | | | wrong format | ||||
* | Default PID file should be 'homeserver.pid' to match the other ↵ | Paul "LeoNerd" Evans | 2014-09-03 | 1 | -1/+1 |
| | | | | 'homeserver.*' naming convention | ||||
* | fix the copyright holder from matrix.org to OpenMarket Ltd, as matrix.org ↵ | Matthew Hodgson | 2014-09-03 | 1 | -1/+1 |
| | | | | hasn't been incorporated in time for launch. | ||||
* | Add option to change content repo location | Erik Johnston | 2014-09-03 | 1 | -0/+12 |
| | |||||
* | Remove option for disabling webclient because it was confusing | Mark Haines | 2014-09-02 | 1 | -4/+1 |
| | |||||
* | Default HTTP and HTTPS ports to 8008 and 8448 | Erik Johnston | 2014-09-02 | 1 | -2/+4 |
| | |||||
* | More helpful error messages for missing config | Mark Haines | 2014-09-02 | 1 | -1/+1 |
| | |||||
* | Add unsecure listener port to homeserver | Mark Haines | 2014-09-01 | 1 | -2/+5 |
| | |||||
* | specify metavars in argparse | Matthew Hodgson | 2014-09-01 | 1 | -2/+3 |
| | |||||
* | Listen using SSL | Mark Haines | 2014-09-01 | 1 | -1/+1 |
| | |||||
* | Fix homeserver config parsing | Mark Haines | 2014-09-01 | 1 | -5/+6 |
| | |||||
* | Add config tree to synapse. Add support for reading config from a file | Mark Haines | 2014-08-31 | 1 | -0/+75 |