| Commit message (Expand) | Author | Age | Files | Lines |
* | Flatten the synapse.rest.client package (#10600) | reivilibre | 2021-08-17 | 1 | -879/+0 |
* | MSC2918 Refresh tokens implementation (#9450) | Quentin Gliech | 2021-06-24 | 1 | -18/+70 |
* | Limit length of accepted email addresses (#9855) | Erik Johnston | 2021-04-22 | 1 | -2/+6 |
* | Rename handler and config modules which end in handler/config. (#9816) | Patrick Cloke | 2021-04-20 | 1 | -1/+1 |
* | Remove redundant "coding: utf-8" lines (#9786) | Jonathan de Jong | 2021-04-14 | 1 | -1/+0 |
* | Require AppserviceRegistrationType (#9548) | Will Hunt | 2021-04-12 | 1 | -7/+16 |
* | Make RateLimiter class check for ratelimit overrides (#9711) | Erik Johnston | 2021-03-30 | 1 | -3/+5 |
* | Update black, and run auto formatting over the codebase (#9381) | Eric Eastwood | 2021-02-16 | 1 | -2/+7 |
* | Type hints and validation improvements. (#9321) | Patrick Cloke | 2021-02-08 | 1 | -0/+2 |
* | Ratelimit 3PID /requestToken API (#9238) | Erik Johnston | 2021-01-28 | 1 | -0/+6 |
* | UI Auth via SSO: redirect the user to an appropriate SSO. (#9081) | Richard van der Hoff | 2021-01-12 | 1 | -4/+9 |
* | Kill off `HomeServer.get_ip_from_request()` (#9080) | Richard van der Hoff | 2021-01-12 | 1 | -6/+2 |
* | Merge remote-tracking branch 'origin/erikj/as_mau_block' into develop | Erik Johnston | 2020-12-18 | 1 | -3/+11 |
|\ |
|
| * | Correctly handle AS registerations and add test | Erik Johnston | 2020-12-17 | 1 | -3/+11 |
* | | Fix errorcode for disabled registration (#8867) | Richard van der Hoff | 2020-12-03 | 1 | -1/+1 |
|/ |
|
* | Simplify the way the `HomeServer` object caches its internal attributes. (#8... | Jonathan de Jong | 2020-11-30 | 1 | -2/+2 |
* | Add metrics for tracking 3PID /requestToken requests. (#8712) | Erik Johnston | 2020-11-13 | 1 | -0/+9 |
* | Remove unused OPTIONS handlers. (#8621) | Patrick Cloke | 2020-10-22 | 1 | -3/+0 |
* | Remove the deprecated Handlers object (#8494) | Patrick Cloke | 2020-10-09 | 1 | -3/+3 |
* | Simplify super() calls to Python 3 syntax. (#8344) | Patrick Cloke | 2020-09-18 | 1 | -5/+5 |
* | Fix a potential bug of UnboundLocalError (#8329) | Jonathan de Jong | 2020-09-17 | 1 | -5/+8 |
* | Stop sub-classing object (#8249) | Patrick Cloke | 2020-09-04 | 1 | -1/+1 |
* | Don't fail /submit_token requests on incorrect session ID if request_token_in... | Brendan Abolivier | 2020-08-24 | 1 | -0/+7 |
* | Allow denying or shadow banning registrations via the spam checker (#8034) | Patrick Cloke | 2020-08-20 | 1 | -0/+5 |
* | Use the default templates when a custom template file cannot be found (#8037) | Andrew Morgan | 2020-08-17 | 1 | -25/+6 |
* | Remove unnecessary maybeDeferred calls (#8044) | Patrick Cloke | 2020-08-07 | 1 | -1/+1 |
* | Convert synapse.api to async/await (#8031) | Patrick Cloke | 2020-08-06 | 1 | -1/+1 |
* | Improve performance of the register endpoint (#8009) | Patrick Cloke | 2020-08-06 | 1 | -39/+69 |
* | Fix inconsistent handling of upper and lower cases of email addresses. (#7021) | Dirk Klimpel | 2020-07-03 | 1 | -3/+19 |
* | Merge branch 'master' into develop | Patrick Cloke | 2020-07-02 | 1 | -6/+4 |
|\ |
|
| * | Ensure that HTML pages served from Synapse include headers to avoid embedding. | Patrick Cloke | 2020-07-02 | 1 | -6/+4 |
* | | Replace all remaining six usage with native Python 3 equivalents (#7704) | Dagfinn Ilmari Mannsåker | 2020-06-16 | 1 | -8/+3 |
|/ |
|
* | Performance improvements and refactor of Ratelimiter (#7595) | Andrew Morgan | 2020-06-05 | 1 | -15/+1 |
* | Hash passwords earlier in the password reset process (#7538) | Patrick Cloke | 2020-05-20 | 1 | -2/+2 |
* | Hash passwords earlier in the registration process (#7523) | Patrick Cloke | 2020-05-18 | 1 | -9/+13 |
* | Do not validate that the client dict is stable during UI Auth. (#7483) | Patrick Cloke | 2020-05-13 | 1 | -1/+0 |
* | Rework UI Auth session validation for registration (#7455) | Patrick Cloke | 2020-05-08 | 1 | -0/+1 |
* | Persist user interactive authentication sessions (#7302) | Patrick Cloke | 2020-04-30 | 1 | -2/+2 |
* | Revert "Revert "Merge pull request #7315 from matrix-org/babolivier/request_t... | Brendan Abolivier | 2020-04-23 | 1 | -1/+11 |
* | Support SAML in the user interactive authentication workflow. (#7102) | Patrick Cloke | 2020-04-01 | 1 | -0/+1 |
* | Allow server admins to define and enforce a password policy (MSC2000). (#7118) | Dirk Klimpel | 2020-03-26 | 1 | -0/+2 |
* | Validate that the session is not modified during UI-Auth (#7068) | Patrick Cloke | 2020-03-26 | 1 | -1/+4 |
* | Validate client_secret parameter (#6767) | Andrew Morgan | 2020-01-24 | 1 | -0/+3 |
* | Fixup synapse.rest to pass mypy (#6732) | Erik Johnston | 2020-01-20 | 1 | -1/+2 |
* | Port rest.client.v2 | Erik Johnston | 2019-12-05 | 1 | -41/+31 |
* | Update black to 19.10b0 (#6304) | Amber Brown | 2019-11-01 | 1 | -2/+2 |
* | Remove usage of deprecated logger.warn method from codebase (#6271) | Andrew Morgan | 2019-10-31 | 1 | -5/+5 |
* | Stop advertising unsupported flows for registration (#6107) | Richard van der Hoff | 2019-09-25 | 1 | -3/+29 |
* | Refactor code for calculating registration flows (#6106) | Richard van der Hoff | 2019-09-25 | 1 | -62/+62 |
* | Implement MSC2290 (#6043) | Andrew Morgan | 2019-09-23 | 1 | -0/+6 |
* | Disable /register/available if registration is disabled (#6082) | Andrew Morgan | 2019-09-23 | 1 | -0/+5 |
* | Allow HS to send emails when adding an email to the HS (#6042) | Andrew Morgan | 2019-09-20 | 1 | -15/+9 |
* | Apply suggestions from code review | Andrew Morgan | 2019-09-06 | 1 | -1/+1 |
* | Fix destructuring assumption bug | Andrew Morgan | 2019-09-06 | 1 | -1/+1 |
* | Allow Synapse to send registration emails + choose Synapse or an external ser... | Andrew Morgan | 2019-09-06 | 1 | -15/+181 |
* | Remove bind_email and bind_msisdn (#5964) | Andrew Morgan | 2019-09-04 | 1 | -2/+0 |
* | Remove double return statements (#5962) | Andrew Morgan | 2019-09-03 | 1 | -2/+0 |
* | Remove unnecessary parentheses around return statements (#5931) | Andrew Morgan | 2019-08-30 | 1 | -5/+5 |
* | Remove shared secret registration from client/r0/register endpoint | Manuel Stahl | 2019-08-22 | 1 | -53/+4 |
* | Replace returnValue with return (#5736) | Amber Brown | 2019-07-23 | 1 | -20/+18 |
* | Remove access-token support from RegistrationHandler.register (#5641) | Richard van der Hoff | 2019-07-08 | 1 | -6/+5 |
* | Run Black. (#5482) | Amber Brown | 2019-06-20 | 1 | -69/+63 |
* | Unify v1 and v2 REST client APIs (#5226) | Amber Brown | 2019-06-03 | 1 | -5/+5 |
* | Merge pull request #5174 from matrix-org/dbkr/add_dummy_flow_to_recaptcha_only | David Baker | 2019-05-16 | 1 | -5/+17 |
|\ |
|
| * | Re-order flows so that email auth is done last | David Baker | 2019-05-10 | 1 | -4/+12 |
| * | Comment | David Baker | 2019-05-10 | 1 | -0/+4 |
| * | Add a DUMMY stage to captcha-only registration flow | David Baker | 2019-05-10 | 1 | -1/+1 |
* | | Merge pull request #5187 from matrix-org/dbkr/only_check_threepid_not_in_use_... | David Baker | 2019-05-16 | 1 | -18/+22 |
|\ \ |
|
| * | | Only check 3pids not in use when registering | David Baker | 2019-05-14 | 1 | -18/+22 |
| |/ |
|
* / | Make all the rate limiting options more consistent (#5181) | Amber Brown | 2019-05-15 | 1 | -10/+13 |
|/ |
|
* | Revert 085ae346ace418e0fc043ac5f568f85ebf80038e | David Baker | 2019-05-10 | 1 | -1/+1 |
* | Add a DUMMY stage to captcha-only registration flow | David Baker | 2019-05-10 | 1 | -1/+1 |
* | Make sure we're not registering the same 3pid twice | Brendan Abolivier | 2019-04-17 | 1 | -0/+18 |
* | Add ratelimiting on login (#4821) | Brendan Abolivier | 2019-03-15 | 1 | -2/+2 |
* | Make registration ratelimiter separate from the main events one | Brendan Abolivier | 2019-03-06 | 1 | -1/+1 |
* | Revert "Split ratelimiters in two (one for events, one for registration)" | Brendan Abolivier | 2019-03-06 | 1 | -1/+1 |
* | Split ratelimiters in two (one for events, one for registration) | Brendan Abolivier | 2019-03-05 | 1 | -1/+1 |
* | Add rate-limiting on registration (#4735) | Brendan Abolivier | 2019-03-05 | 1 | -4/+29 |
* | Fix registration on workers (#4682) | Erik Johnston | 2019-02-20 | 1 | -134/+11 |
* | Move register_device into handler | Erik Johnston | 2019-02-18 | 1 | -47/+2 |
* | Update docs | Erik Johnston | 2019-02-18 | 1 | -1/+1 |
* | Split out registration to worker | Erik Johnston | 2019-02-18 | 1 | -27/+46 |
* | move guard out of is_threepid_reserved and into register.py | Neil Johnson | 2019-01-22 | 1 | -4/+5 |
* | Fix None guard in config.server.is_threepid_reserved | Neil Johnson | 2019-01-22 | 1 | -1/+3 |
* | Config option to disable requesting MSISDN on registration | Neil Johnson | 2019-01-21 | 1 | -11/+5 |
* | Neilj/fix autojoin (#4223) | Neil Johnson | 2018-11-28 | 1 | -0/+1 |
* | Add config variables for enabling terms auth and the policy name (#4142) | Travis Ralston | 2018-11-06 | 1 | -1/+1 |
* | pep8 | Travis Ralston | 2018-10-15 | 1 | -10/+2 |
* | Auto-consent to the privacy policy if the user registered with terms | Travis Ralston | 2018-10-03 | 1 | -0/+6 |
* | Make the terms flow requried | Travis Ralston | 2018-10-03 | 1 | -4/+4 |
* | Incorporate Dave's work for GDPR login flows | Travis Ralston | 2018-10-03 | 1 | -0/+15 |
* | improve human readable error message | Neil Johnson | 2018-09-04 | 1 | -1/+2 |
* | improve human readable error messages | Neil Johnson | 2018-09-04 | 1 | -3/+8 |
* | move threepid checker to config, add missing yields | Neil Johnson | 2018-08-31 | 1 | -2/+3 |
* | ensure post registration auth checks do not fail erroneously | Neil Johnson | 2018-08-31 | 1 | -0/+4 |
* | fix bug where preserved threepid user comes to sign up and server is mau blocked | Neil Johnson | 2018-08-31 | 1 | -0/+5 |
* | Python 3: Convert some unicode/bytes uses (#3569) | Amber Brown | 2018-08-02 | 1 | -6/+6 |
* | Refactor REST API tests to use explicit reactors (#3351) | Amber Brown | 2018-07-17 | 1 | -1/+1 |
* | Merge pull request #3534 from krombel/use_parse_and_asserts_from_servlet | Amber Brown | 2018-07-14 | 1 | -11/+12 |
|\ |
|
| * | rename assert_params_in_request to assert_params_in_dict | Krombel | 2018-07-13 | 1 | -5/+5 |
| * | Use parse_{int,str} and assert from http.servlet | Krombel | 2018-07-13 | 1 | -8/+9 |
* | | Make auth & transactions more testable (#3499) | Amber Brown | 2018-07-14 | 1 | -3/+2 |
|/ |
|
* | run isort | Amber Brown | 2018-07-09 | 1 | -10/+12 |
* | Remove run_on_reactor (#3395) | Amber Brown | 2018-06-14 | 1 | -3/+0 |
* | Construct HMAC as bytes on py3 | Adrian Tschira | 2018-04-29 | 1 | -4/+6 |
* | move handling of auto_join_rooms to RegisterHandler | Krombel | 2018-03-14 | 1 | -32/+0 |
* | Move RoomMemberHandler out of Handlers | Erik Johnston | 2018-03-01 | 1 | -1/+1 |
* | fix thinko on 3pid whitelisting | Matthew Hodgson | 2018-01-24 | 1 | -2/+2 |
* | fix typo (thanks sytest) | Matthew Hodgson | 2018-01-19 | 1 | -1/+1 |
* | oops, check all login types | Matthew Hodgson | 2018-01-19 | 1 | -14/+11 |
* | trailing commas | Matthew Hodgson | 2018-01-19 | 1 | -3/+3 |
* | rewrite based on PR feedback: | Matthew Hodgson | 2018-01-19 | 1 | -41/+34 |
* | fix up v1, and improve errors | Matthew Hodgson | 2018-01-19 | 1 | -4/+12 |
* | add registrations_require_3pid | Matthew Hodgson | 2018-01-19 | 1 | -12/+61 |
* | Refactor UI auth implementation | Richard van der Hoff | 2017-12-05 | 1 | -6/+3 |
* | Add some more comments appservice user registration | Richard van der Hoff | 2017-11-10 | 1 | -1/+4 |
* | Downcase userids for shared-secret registration | Richard van der Hoff | 2017-11-10 | 1 | -2/+20 |
* | Downcase userid on registration | Richard van der Hoff | 2017-11-09 | 1 | -1/+7 |
* | support inhibit_login in /register | Richard van der Hoff | 2017-11-02 | 1 | -12/+16 |
* | Break dependency of auth_handler on device_handler | Richard van der Hoff | 2017-11-01 | 1 | -1/+0 |
* | Add config option to auto-join new users to rooms | David Baker | 2017-10-16 | 1 | -0/+34 |
* | Modify register/available to be GET with query param | Luke Barnard | 2017-05-10 | 1 | -5/+4 |
* | Change register/available to POST (from GET) | Luke Barnard | 2017-05-10 | 1 | -1/+1 |
* | Appease the flake8 gods | Luke Barnard | 2017-05-03 | 1 | -5/+10 |
* | Implement username availability checker | Luke Barnard | 2017-05-03 | 1 | -0/+36 |
* | Add another missing yield on check_device_registered | Richard van der Hoff | 2017-03-23 | 1 | -1/+1 |
* | Use extend instead of += | David Baker | 2017-03-14 | 1 | -4/+4 |
* | Oops, remove print | David Baker | 2017-03-14 | 1 | -1/+0 |
* | Fix registration for broken clients | David Baker | 2017-03-13 | 1 | -4/+22 |
* | Support registration / login with phone number | David Baker | 2017-03-13 | 1 | -16/+104 |
* | Revert "Support registration & login with phone number" | Erik Johnston | 2017-03-13 | 1 | -104/+16 |
* | Comment when our 3pids would be incomplete | David Baker | 2017-03-08 | 1 | -0/+2 |
* | Better error message | David Baker | 2017-03-08 | 1 | -1/+3 |
* | Minor fixes from PR feedback | David Baker | 2017-03-08 | 1 | -4/+2 |
* | Typos | David Baker | 2017-03-08 | 1 | -2/+2 |
* | Refector out assert_params_in_request | David Baker | 2017-03-08 | 1 | -18/+8 |
* | Factor out msisdn canonicalisation | David Baker | 2017-03-08 | 1 | -9/+2 |
* | Fix pep8 | David Baker | 2017-03-08 | 1 | -1/+1 |
* | Add msisdns as 3pids during registration | David Baker | 2017-03-03 | 1 | -0/+47 |
* | WIP support for msisdn 3pid proxy methods | David Baker | 2017-02-14 | 1 | -5/+61 |
* | Fix email push in pusher worker | Erik Johnston | 2017-02-02 | 1 | -1/+2 |
* | Fix doc-string | Richard van der Hoff | 2016-12-01 | 1 | -2/+1 |
* | Rip out more refresh_token code | Richard van der Hoff | 2016-11-30 | 1 | -2/+0 |
* | Merge branch 'develop' into rav/no_more_refresh_tokens | Richard van der Hoff | 2016-11-30 | 1 | -4/+15 |
|\ |
|
| * | Give guest users a device_id | Richard van der Hoff | 2016-11-25 | 1 | -4/+15 |
* | | Stop generating refresh tokens | Richard van der Hoff | 2016-11-28 | 1 | -3/+2 |
|/ |
|
* | Fix flake8 | Mark Haines | 2016-11-18 | 1 | -1/+0 |
* | Work around client replacing reg params | David Baker | 2016-11-18 | 1 | -0/+12 |
* | Add helper function for getting access_tokens from requests | Mark Haines | 2016-09-09 | 1 | -2/+4 |
* | Preserve some logcontexts | Erik Johnston | 2016-08-24 | 1 | -2/+1 |
* | Fix adding emails on registration | David Baker | 2016-07-29 | 1 | -9/+7 |
* | Implement deleting devices | Richard van der Hoff | 2016-07-26 | 1 | -5/+5 |
* | Preserve device_id from first call to /register | Richard van der Hoff | 2016-07-21 | 1 | -11/+10 |
* | Register a device_id in the /v2/register flow. | Richard van der Hoff | 2016-07-20 | 1 | -15/+39 |
* | Merge pull request #933 from matrix-org/rav/type_annotations | Richard van der Hoff | 2016-07-20 | 1 | -0/+9 |
|\ |
|
| * | Type annotations | Richard van der Hoff | 2016-07-19 | 1 | -0/+9 |
* | | Further registration refactoring | Richard van der Hoff | 2016-07-19 | 1 | -13/+37 |
|/ |
|
* | Don't bind email unless threepid contains expected fields | Richard van der Hoff | 2016-07-19 | 1 | -28/+25 |
* | rest/client/v2_alpha/register.py: Refactor flow somewhat. | Richard van der Hoff | 2016-07-19 | 1 | -75/+102 |
* | Use body.get to check for 'user' | Will Hunt | 2016-07-16 | 1 | -2/+1 |
* | Fall back to 'username' if 'user' is not given for appservice reg. | Will Hunt | 2016-07-16 | 1 | -3/+5 |
* | on_OPTIONS isn't neccessary | David Baker | 2016-07-12 | 1 | -3/+0 |
* | Separate out requestTokens to separate handlers | David Baker | 2016-07-11 | 1 | -28/+37 |
* | Split out the auth handler | David Baker | 2016-06-02 | 1 | -1/+1 |
* | More consistent config naming | David Baker | 2016-05-10 | 1 | -1/+1 |
* | Add config option to not send email notifs for new users | David Baker | 2016-05-10 | 1 | -1/+4 |
* | Add an email pusher for new users | David Baker | 2016-04-29 | 1 | -0/+26 |
* | Make v2_alpha reg follow the AS API specification | Kegan Dougal | 2016-04-14 | 1 | -0/+5 |
* | remove debug logging | David Baker | 2016-03-16 | 1 | -3/+0 |
* | Unused import | David Baker | 2016-03-16 | 1 | -1/+0 |
* | Make registration idempotent, part 2: be idempotent if the client specifies a... | David Baker | 2016-03-16 | 1 | -5/+17 |
* | pep8 & remove debug logging | David Baker | 2016-03-16 | 1 | -4/+5 |
* | Make registration idempotent: if you specify the same session, make it give y... | David Baker | 2016-03-16 | 1 | -1/+26 |
* | Register endpoint returns refresh_token | blide | 2016-03-10 | 1 | -5/+8 |
* | Add a parse_json_object function | Mark Haines | 2016-03-09 | 1 | -4/+4 |
* | Rename config field to reflect yaml name | Daniel Wagner-Hall | 2016-02-03 | 1 | -1/+1 |
* | Fix flake8 warnings for new flake8 | Daniel Wagner-Hall | 2016-02-02 | 1 | -1/+2 |
* | Pull guest access token out of the auth session params, otherwise it will bre... | David Baker | 2016-02-01 | 1 | -0/+1 |
* | Add is_guest flag to users db to track whether a user is a guest user or not.... | David Baker | 2016-01-06 | 1 | -1/+4 |
* | Allow guests to upgrade their accounts | Daniel Wagner-Hall | 2016-01-05 | 1 | -3/+9 |
* | Host /unstable and /r0 versions of r0 APIs | Daniel Wagner-Hall | 2015-12-01 | 1 | -2/+2 |
* | Allow guests to register and call /events?room_id= | Daniel Wagner-Hall | 2015-11-04 | 1 | -1/+26 |
* | Merge pull request #211 from matrix-org/email_in_use | Mark Haines | 2015-08-20 | 1 | -0/+28 |
|\ |
|
| * | Check absent before trying to access keys | David Baker | 2015-08-12 | 1 | -3/+3 |
| * | Just leaving off the $ is fine. r* == registerrrrrrrrr | David Baker | 2015-08-12 | 1 | -1/+1 |
| * | Remember to yield: not much point testing is a deferred is not None | David Baker | 2015-08-04 | 1 | -1/+2 |
| * | splt long line | David Baker | 2015-08-04 | 1 | -1/+3 |
| * | Add endpoint that proxies ID server request token and errors if the given ema... | David Baker | 2015-08-04 | 1 | -1/+26 |
* | | Simplify LoginHander and AuthHandler | Daniel Wagner-Hall | 2015-08-12 | 1 | -2/+1 |
|/ |
|
* | Don't try & check the username if we don't have one (which we won't if it's b... | David Baker | 2015-08-03 | 1 | -1/+2 |
* | Use the same reg paths as register v1 for ASes. | Kegan Dougal | 2015-07-29 | 1 | -4/+6 |
* | Fix v2_alpha registration. Add unit tests. | Kegan Dougal | 2015-07-28 | 1 | -54/+70 |
* | pep8 + debug line | David Baker | 2015-07-15 | 1 | -6/+8 |
* | Add back in support for remembering parameters submitted to a user-interactiv... | David Baker | 2015-07-15 | 1 | -2/+9 |
* | Make shared secret registration work again | David Baker | 2015-05-14 | 1 | -1/+4 |
* | More underscores | David Baker | 2015-04-24 | 1 | -2/+2 |
* | Use underscores instead of camelcase for id server stuff | David Baker | 2015-04-24 | 1 | -2/+2 |
* | make add3pid servlet work | David Baker | 2015-04-17 | 1 | -12/+26 |
* | Return user ID in use error straight away | David Baker | 2015-04-16 | 1 | -2/+23 |
* | Dummy login so we can do the first POST request to get login flows without it... | David Baker | 2015-04-15 | 1 | -4/+14 |
* | Regstration with email in v2 | David Baker | 2015-04-15 | 1 | -4/+4 |
* | Add app service auth back in to v2 register | David Baker | 2015-04-02 | 1 | -2/+7 |
* | Add shared secret auth into register v2 and switch the script over. | David Baker | 2015-04-02 | 1 | -11/+58 |
* | Completely replace fallback auth for C/S V2: | David Baker | 2015-04-01 | 1 | -1/+1 |
* | pep8 | David Baker | 2015-03-31 | 1 | -2/+2 |
* | New registration for C/S API v2. Only ReCAPTCHA working currently. | David Baker | 2015-03-30 | 1 | -0/+86 |