summary refs log tree commit diff
path: root/synapse (follow)
Commit message (Collapse)AuthorAgeFilesLines
* Fix exception reporting due to HTTP request errors. (#7556)Erik Johnston2020-05-223-4/+23
| | | | These are business as usual errors, rather than stuff we want to log at error.
* synapse.metrics: implement detailed memory usage reporting on PyPy (#7536)Ivan Shapovalov2020-05-221-1/+78
| | | | | | PyPy's gc.get_stats() returns an object containing detailed allocator statistics which could be beneficial to collect as metrics. Signed-off-by: Ivan Shapovalov <intelfx@intelfx.name>
* Fix stacktrace mangling in `patch_inline_callbacks` (#7554)Richard van der Hoff2020-05-221-2/+7
| | | `Failure()` is more cunning than `Failure(e)`.
* mypy for synapse.http.site (#7553)Richard van der Hoff2020-05-221-3/+6
|
* Fix some DETECTED VIOLATIONS in the config file (#7550)Richard van der Hoff2020-05-226-29/+36
| | | consistency ftw
* Retry to sync out of sync device lists (#7453)Brendan Abolivier2020-05-212-19/+95
| | | | | | | | | | | When a call to `user_device_resync` fails, we don't currently mark the remote user's device list as out of sync, nor do we retry to sync it. https://github.com/matrix-org/synapse/pull/6776 introduced some code infrastructure to mark device lists as stale/out of sync. This commit uses that code infrastructure to mark device lists as out of sync if processing an incoming device list update makes the device handler realise that the device list is out of sync, but we can't resync right now. It also adds a looping call to retry all failed resync every 30s. This shouldn't cause too much spam in the logs as this commit also removes the "Failed to handle device list update for..." warning logs when catching `NotRetryingDestination`. Fixes #7418
* Stub out GET presence requests in the frontend proxy (#7545)Richard van der Hoff2020-05-211-17/+4
| | | | | We don't really make any promises about returning accurate presence data when presence is disabled, so we may as well just return a static response, rather than making the master handle a request.
* add a commentRichard van der Hoff2020-05-211-0/+3
|
* Fix bug in persist events when dealing with non member types. (#7548)Erik Johnston2020-05-211-2/+2
| | | | | `_is_server_still_joined` will throw if it is given state updates with non-user ID state keys with local user leaves. This is actually rarely a problem since local leaves almost always get persisted by themselves. (I discovered this on a branch that was otherwise broken, so I haven't seen this in the wild)
* Hash passwords earlier in the password reset process (#7538)Patrick Cloke2020-05-204-11/+32
| | | | This now matches the logic of the registration process as modified in 56db0b1365965c02ff539193e26c333b7f70d101 / #7523.
* Merge branch 'master' into developPatrick Cloke2020-05-191-1/+1
|\
| * 1.13.0Patrick Cloke2020-05-191-1/+1
| |
* | Omit displayname or avatar_url if they aren't set instead of returning null ↵Aaron Raimist2020-05-191-2/+6
| | | | | | | | | | | | | | | | | | (#7497) Per https://github.com/matrix-org/matrix-doc/issues/1436#issuecomment-410089470 they should be omitted instead of returning null or "". They aren't marked as required in the spec. Fixes https://github.com/matrix-org/synapse/issues/7333 Signed-off-by: Aaron Raimist <aaron@raim.ist>
* | Merge tag 'v1.13.0rc3' into developPatrick Cloke2020-05-184-32/+31
|\| | | | | | | | | | | | | | | Synapse 1.13.0rc3 (2020-05-18) Bugfixes: - Hash passwords as early as possible during registration. #7523
| * 1.13.0rc3 v1.13.0rc3Patrick Cloke2020-05-181-1/+1
| |
| * Hash passwords earlier in the registration process (#7523)Patrick Cloke2020-05-183-31/+30
| |
* | Allow ReplicationRestResource to be added to workers (#7515)Erik Johnston2020-05-182-5/+12
| | | | | | This allows workers to talk to each other over HTTP replication.
* | Merge pull request #7519 from matrix-org/rav/kill_py2_codeRichard van der Hoff2020-05-1814-189/+45
|\ \ | | | | | | Kill off some old python 2 code
| * | remove miscellaneous PY2 codeRichard van der Hoff2020-05-156-67/+24
| | |
| * | remove `builtins.buffer` code from storage codeRichard van der Hoff2020-05-153-24/+3
| | | | | | | | | | | | this is no longer needed on python 3
| * | remove redundant `__func__`Richard van der Hoff2020-05-152-13/+4
| | | | | | | | | | | | this is a no-op under python 3
| * | remove to_asciiRichard van der Hoff2020-05-153-38/+12
| | | | | | | | | | | | this is a no-op on python 3.
| * | Remove `exception_to_unicode`Richard van der Hoff2020-05-152-48/+3
| | | | | | | | | | | | this is a no-op on python 3.
* | | Add type hints to room member handlers (#7513)Patrick Cloke2020-05-152-139/+173
| | |
* | | Fix limit logic for AccountDataStream (#7384)Richard van der Hoff2020-05-152-31/+99
| | | | | | | | | | | | | | | | | | Make sure that the AccountDataStream presents complete updates, in the right order. This is much the same fix as #7337 and #7358, but applied to a different stream.
* | | Fix a couple of small typosAndrew Morgan2020-05-152-3/+3
| | |
* | | Support UI Authentication for OpenID Connect accounts (#7457)Patrick Cloke2020-05-154-36/+94
| | |
* | | Add a worker store for search insertion. (#7516)Erik Johnston2020-05-152-47/+51
| | | | | | | | | | | | | | | This is required as both event persistence and the background update needs access to this function. It should be perfectly safe for two workers to write to that table at the same time.
* | | Prevent 0-member/null room_version rooms from appearing in group room ↵Andrew Morgan2020-05-151-14/+78
| | | | | | | | | | | | queries (#7465)
* | | Move event stream handling out of slave store. (#7491)Erik Johnston2020-05-157-116/+160
| | | | | | | | | | | | | | | This allows us to have the logic on both master and workers, which is necessary to move event persistence off master. We also combine the instantiation of ID generators from DataStore and slave stores to the base worker stores. This allows us to select which process writes events independently of the master/worker splits.
* | | Add type hints to event_auth code. (#7505)Patrick Cloke2020-05-151-32/+46
| | |
* | | Fix a small typo in the arguments of simple_update in ↵Andrew Morgan2020-05-151-1/+1
|/ / | | | | | | update_remote_profile_cache (#7511)
* | Update the room member handler to use async/await. (#7507)Patrick Cloke2020-05-152-74/+58
| |
* | Implement room version 6 (MSC2240). (#7506)Patrick Cloke2020-05-151-26/+4
| |
* | Ignore incoming presence updates when presence is disabled (#7508)Andrew Morgan2020-05-151-2/+4
| |
* | Strictly enforce canonicaljson requirements in a new room version (#7381)Patrick Cloke2020-05-145-4/+70
| |
* | Enforce MSC2209: auth rules for notifications in power level event (#7502)Patrick Cloke2020-05-142-3/+31
| | | | | | | | In a new room version, the "notifications" key of power level events are subject to restricted auth rules.
* | Workaround for failure to wrap reason in Failure (#7473)Andrew Morgan2020-05-141-0/+7
| |
* | Fix b'GET' in prometheus metrics (#7503)Richard van der Hoff2020-05-141-2/+4
| |
* | Allow expired accounts to logout (#7443)Andrew Morgan2020-05-142-20/+36
| |
* | Move EventStream handling into default ReplicationDataHandler (#7493)Erik Johnston2020-05-144-36/+39
| | | | | | This is so that the logic can happen on both master and workers when we move event persistence out.
* | Add `instance_map` config and route replication calls (#7495)Erik Johnston2020-05-142-6/+32
| |
* | Merge tag 'v1.13.0rc2' into developRichard van der Hoff2020-05-144-22/+21
|\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Synapse 1.13.0rc2 (2020-05-14) ============================== Bugfixes -------- - Fix a long-standing bug which could cause messages not to be sent over federation, when state events with state keys matching user IDs (such as custom user statuses) were received. ([\#7376](https://github.com/matrix-org/synapse/issues/7376)) - Restore compatibility with non-compliant clients during the user interactive authentication process, fixing a problem introduced in v1.13.0rc1. ([\#7483](https://github.com/matrix-org/synapse/issues/7483)) Internal Changes ---------------- - Fix linting errors in new version of Flake8. ([\#7470](https://github.com/matrix-org/synapse/issues/7470))
| * 1.13.0rc2Richard van der Hoff2020-05-141-1/+1
| |
| * Stop `get_joined_users` corruption from custom statuses (#7376)Richard van der Hoff2020-05-141-1/+2
| | | | | | | | | | | | | | | | Fix a bug where the `get_joined_users` cache could be corrupted by custom status events (or other state events with a state_key matching the user ID). The bug was introduced by #2229, but has largely gone unnoticed since then. Fixes #7099, #7373.
| * Do not validate that the client dict is stable during UI Auth. (#7483)Patrick Cloke2020-05-132-20/+18
| | | | | | | | This backs out some of the validation for the client dictionary and logs if this changes during a user interactive authentication session instead.
| * Fix new flake8 errors (#7489)Patrick Cloke2020-05-135-11/+17
| | | | | | | | This is a cherry-pick of 1a1da60ad2c9172fe487cd38a164b39df60f4cb5 (#7470) to the release-v1.13.0 branch.
* | Allow censoring of events to happen on workers. (#7492)Erik Johnston2020-05-133-8/+3
| | | | | | This is safe as we can now write to cache invalidation stream on workers, and is required for when we move event persistence off master.
* | Fix copypasted comment (#7477)Paul Tötterman2020-05-131-1/+1
| | | | | | Signed-off-by: Paul Tötterman <paul.totterman@iki.fi>
* | SpellingErik Johnston2020-05-132-2/+2
| |
* | Shuffle persist event data store functions. (#7440)Erik Johnston2020-05-1317-1234/+1373
| | | | | | | | | | | | | | | | | | | | The aim here is to get to a stage where we have a `PersistEventStore` that holds all the write methods used during event persistence, so that we can take that class out of the `DataStore` mixin and instansiate it separately. This will allow us to instansiate it on processes other than master, while also ensuring it is only available on processes that are configured to write to events stream. This is a bit of an architectural change, where we end up with multiple classes per data store (rather than one per data store we have now). We end up having: 1. Storage classes that provide high level APIs that can talk to multiple data stores. 2. Data store modules that consist of classes that must point at the same database instance. 3. Classes in a data store that can be instantiated on processes depending on config.
* | Have all instances correctly respond to REPLICATE command. (#7475)Erik Johnston2020-05-133-48/+50
| | | | | | | | | | Before all streams were only written to from master, so only master needed to respond to `REPLICATE` commands. Before all instances wrote to the cache invalidation stream, but didn't respond to `REPLICATE`. This was a bug, which could lead to missed rows from cache invalidation stream if an instance is restarted, however all the caches would be empty in that case so it wasn't a problem.
* | Fix Redis reconnection logic (#7482)Erik Johnston2020-05-132-2/+14
| | | | | | Proactively send out `POSITION` commands (as if we had just received a `REPLICATE`) when we connect to Redis. This is important as other instances won't notice we've connected to issue a `REPLICATE` command (unlike for direct TCP connections). This is only currently an issue if master process reconnects without restarting (if it restarts then it won't have written anything and so other instances probably won't have missed anything).
* | Fix new flake8 errors (#7470)Erik Johnston2020-05-125-11/+17
| |
* | Convert federation handler to async/await. (#7459)Patrick Cloke2020-05-112-21/+16
| |
* | Convert search code to async/await. (#7460)Patrick Cloke2020-05-111-24/+20
| |
* | Allow configuration of Synapse's cache without using synctl or environment ↵Amber Brown2020-05-1121-124/+402
| | | | | | | | variables (#6391)
* | Remove unused store method get_hosts_in_room (#7448)Andrew Morgan2020-05-111-10/+0
| |
* | Merge branch 'release-v1.13.0' into developAndrew Morgan2020-05-117-20/+65
|\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * release-v1.13.0: Don't UPGRADE database rows RST indenting Put rollback instructions in upgrade notes Fix changelog typo Oh yeah, RST Absolute URL it is then Fix upgrade notes link Provide summary of upgrade issues in changelog. Fix ) Move next version notes from changelog to upgrade notes Changelog fixes 1.13.0rc1 Documentation on setting up redis (#7446) Rework UI Auth session validation for registration (#7455) Fix errors from malformed log line (#7454) Drop support for redis.dbid (#7450)
| * 1.13.0rc1Andrew Morgan2020-05-111-1/+1
| |
| * Rework UI Auth session validation for registration (#7455)Patrick Cloke2020-05-083-14/+62
| | | | | | | | Be less strict about validation of UI authentication sessions during registration to match client expecations.
| * Fix errors from malformed log line (#7454)Richard van der Hoff2020-05-071-1/+1
| |
| * Drop support for redis.dbid (#7450)Richard van der Hoff2020-05-072-4/+1
| | | | | | Since we only use pubsub, the dbid is irrelevant.
* | Extend spam checker to allow for multiple modules (#7435)Andrew Morgan2020-05-082-47/+69
| |
* | Implement OpenID Connect-based login (#7256)Quentin Gliech2020-05-0815-12/+1323
| |
* | Add room details admin endpoint (#7317)Manuel Stahl2020-05-073-1/+58
| |
* | Merge branch 'release-v1.13.0' into developBrendan Abolivier2020-05-075-18/+49
|\|
| * Add a configuration setting for the dummy event threshold (#7422)Brendan Abolivier2020-05-072-1/+18
| | | | | | Add dummy_events_threshold which allows configuring the number of forward extremities a room needs for Synapse to send forward extremities in it.
| * Improve per-block CPU and DB usage metrics (#7426)Patrick Cloke2020-05-061-12/+26
| |
| * Port group attestation renewal slow down from matrix-org-hotfixes (#7442)Andrew Morgan2020-05-061-4/+2
| |
| * Make redis go faster with hiredis (#7439)Richard van der Hoff2020-05-061-1/+3
| | | | | | | | | | For the record, the reason we need this is as follows: each RDATA command comes down the redis pipe as a subscription message. txredisapi as written needs at least three reactor ticks to read each subscription message from the tcp buffer. Hence, once the process gets loaded, it starts getting behind, and eventually redis knifes the connection. it then takes ages for the master to work its way through the backlog, before it reconnects again, during which any commands from any workers are dropped.
* | Fixes typo (bellow -> below) (#7449)Patrick Cloke2020-05-072-2/+2
| |
* | Add more type hints to SAML handler. (#7445)Patrick Cloke2020-05-071-12/+16
| |
* | Support any process writing to cache invalidation stream. (#7436)Erik Johnston2020-05-0723-225/+223
| |
* | Merge branch 'release-v1.13.0' into developRichard van der Hoff2020-05-067-117/+208
|\|
| * Stop Auth methods from polling the config on every req. (#7420)Andrew Morgan2020-05-062-73/+114
| |
| * Merge pull request #7423 from matrix-org/erikj/faster_device_lists_fetchErik Johnston2020-05-063-10/+25
| |\ | | | | | | Speed up fetching device lists changes in sync.
| | * Merge branch 'release-v1.13.0' into erikj/faster_device_lists_fetchRichard van der Hoff2020-05-0542-577/+562
| | |\
| | * | Speed up fetching device lists changes in sync.Erik Johnston2020-05-053-10/+25
| | | | | | | | | | | | | | | | | | | | Currently we copy `users_who_share_room` needlessly about three times, which is expensive when the set is large (which it can easily be).
| * | | Merge branch 'release-v1.13.0' into rav/fix_dropped_messagesRichard van der Hoff2020-05-051-1/+1
| |\ \ \
| * \ \ \ Merge branch 'release-v1.13.0' into rav/fix_dropped_messagesRichard van der Hoff2020-05-0542-576/+562
| |\ \ \ \ | | | |_|/ | | |/| |
| * | | | Wait for a POSITION on the right connection before accepting RDATARichard van der Hoff2020-05-052-19/+38
| | | | | | | | | | | | | | | | | | | | ... otherwise we can believe we're up to date when we're not.
| * | | | Wait to subscribe before sending REPLICATERichard van der Hoff2020-05-052-20/+35
| | |_|/ | |/| |
* | | | Merge pull request #7428 from matrix-org/rav/cross_signing_keys_cacheRichard van der Hoff2020-05-061-77/+21
|\ \ \ \ | | | | | | | | | | Make get_e2e_cross_signing_key delegate to get_e2e_cross_signing_keys_bulk
| * | | | Make get_e2e_cross_signing_key delegate to get_e2e_cross_signing_keys_bulkRichard van der Hoff2020-05-061-54/+6
| | | | | | | | | | | | | | | | | | | | ... mostly because the latter has a cache.
| * | | | Fix batching for fetching cross-signing keysRichard van der Hoff2020-05-061-23/+15
| | |_|/ | |/| | | | | | | | | | | | | | There's no point carefully dividing a list into batches, and then completely ignoring the batches.
* | | | Merge branch 'release-v1.13.0' into developRichard van der Hoff2020-05-063-3/+47
|\| | |
| * | | Move logs about discarded RDATA to debug (#7421)Brendan Abolivier2020-05-051-1/+1
| | |/ | |/|
| * | Add backwards compatibility codepath to LoggingContext. (#7408)Patrick Cloke2020-05-051-0/+41
| | |
| * | Fix bug in EventContext.deserialize. (#7393)Erik Johnston2020-05-051-2/+5
| | | | | | | | | | | | This caused `prev_state_ids` to be incorrect if the state event was not replacing an existing state entry.
* | | Merge branch 'develop' into rav/upsert_for_device_listRichard van der Hoff2020-05-0646-651/+794
|\ \ \
| * | | Fix typing annotations in synapse/federation (#7382)Richard van der Hoff2020-05-051-15/+31
| | | | | | | | | | | | | | | | We're pretty close to having mypy working for `synapse.federation`, so let's finish the job.
| * | | Fix catchup-on-reconnect for the Federation Stream (#7374)Richard van der Hoff2020-05-057-36/+63
| | | | | | | | | | | | | | | | looks like we managed to break this during the refactorathon.
| * | | Add MultiWriterIdGenerator. (#7281)Erik Johnston2020-05-041-2/+167
| | | | | | | | | | | | | | | | | | | | | | | | This will be used to coordinate stream IDs across multiple writers. Functions as the equivalent of both `StreamIdGenerator` and `SlavedIdTracker`.
| * | | Merge branch 'release-v1.13.0' into developBrendan Abolivier2020-05-041-0/+3
| |\| |
| | * | Fix redis password support. (#7401)Erik Johnston2020-05-041-0/+3
| | | | | | | | | | | | | | | | | | | | We forgot to set the password on the subscriber connection, as well as not calling super methods for overridden connectionMade/connectionLost functions.
| * | | Convert the room handler to async/await. (#7396)Patrick Cloke2020-05-041-24/+18
| |/ /
| * | Convert synapse.server_notices to async/await. (#7394)Patrick Cloke2020-05-011-10/+6
| | |
| * | Convert the synapse.notifier module to async/await. (#7395)Patrick Cloke2020-05-011-10/+7
| | |
| * | Wait for current_state_events_membership before populate_stats_process_rooms ↵Richard van der Hoff2020-05-011-1/+5
| | | | | | | | | | | | | | | | | | | | | (#7387) populate_stats_process_rooms was added in #5971 / v1.4.0; current_state_events_membership was added in #5706 / v1.3.0. Fixes #7380.
| * | Thread through instance name to replication client. (#7369)Erik Johnston2020-05-018-35/+94
| | | | | | | | | For in memory streams when fetching updates on workers we need to query the source of the stream, which currently is hard coded to be master. This PR threads through the source instance we received via `POSITION` through to the update function in each stream, which can then be passed to the replication client for in memory streams.
| * | Use `stream.current_token()` and remove `stream_positions()` (#7172)Erik Johnston2020-05-0114-120/+3
| | | | | | | | | | | | We move the processing of typing and federation replication traffic into their handlers so that `Stream.current_token()` points to a valid token. This allows us to remove `get_streams_to_replicate()` and `stream_positions()`.
| * | async/await is_server_admin (#7363)Andrew Morgan2020-05-0117-376/+328
| | |
| * | Further improvements to requesting the public rooms list on a homeserver ↵Andrew Morgan2020-05-012-23/+70
| |/ | | | | | | which has it set to private (#7368)
* | use an upsert to update device_lists_outbound_last_successRichard van der Hoff2020-05-063-18/+71
| |
* | Better type annotations for simple_upsert_txnRichard van der Hoff2020-05-061-30/+43
|/ | | | most of these params don't really need to be lists.
* Workaround for assertion errors from db_query_to_update_function (#7378)Richard van der Hoff2020-05-011-2/+1
| | | Hopefully this is no worse than what we have on master...
* Persist user interactive authentication sessions (#7302)Patrick Cloke2020-04-3010-120/+387
| | | | | By persisting the user interactive authentication sessions to the database, this fixes situations where a user hits different works throughout their auth session and also allows sessions to persist through restarts of Synapse.
* Apply federation check for /publicRooms with filter list (#7367)Andrew Morgan2020-04-301-1/+5
|
* Add instance name to RDATA/POSITION commands (#7364)Erik Johnston2020-04-296-31/+65
| | | | | This is primarily for allowing us to send those commands from workers, but for now simply allows us to ignore echoed RDATA/POSITION commands that we sent (we get echoes of sent commands when using redis). Currently we log a WARNING on the master process every time we receive an echoed RDATA.
* Don't relay REMOTE_SERVER_UP cmds to same conn. (#7352)Erik Johnston2020-04-294-25/+51
| | | | | | | | | | | | | | For direct TCP connections we need the master to relay REMOTE_SERVER_UP commands to the other connections so that all instances get notified about it. The old implementation just relayed to all connections, assuming that sending back to the original sender of the command was safe. This is not true for redis, where commands sent get echoed back to the sender, which was causing master to effectively infinite loop sending and then re-receiving REMOTE_SERVER_UP commands that it sent. The fix is to ensure that we only relay to *other* connections and not to the connection we received the notification from. Fixes #7334.
* Fix limit logic for EventsStream (#7358)Richard van der Hoff2020-04-294-19/+76
| | | | | | | | | | | | | | | | | | | * Factor out functions for injecting events into database I want to add some more flexibility to the tools for injecting events into the database, and I don't want to clutter up HomeserverTestCase with them, so let's factor them out to a new file. * Rework TestReplicationDataHandler This wasn't very easy to work with: the mock wrapping was largely superfluous, and it's useful to be able to inspect the received rows, and clear out the received list. * Fix AssertionErrors being thrown by EventsStream Part of the problem was that there was an off-by-one error in the assertion, but also the limit logic was too simple. Fix it all up and add some tests.
* Fix fallback value for account_threepid_delegates.email (#7316)Andrew Morgan2020-04-291-3/+8
|
* Return total number of users and profile attributes in admin users endpoint ↵Manuel Stahl2020-04-282-33/+43
| | | | | (#6881) Signed-off-by: Manuel Stahl <manuel.stahl@awesome-technologies.de>
* Fix typo 'datbases' in ConfigErrorAndrew Morgan2020-04-281-1/+1
|
* Run replication streamers on workers (#7146)Erik Johnston2020-04-282-22/+24
| | | Currently we never write to streams from workers, but that will change soon
* Fix incorrect metrics reporting for renew_attestations (#7344)Richard van der Hoff2020-04-271-10/+9
| | | | We need to wait for the renewals to finish, so that the metrics are correctly reported.
* Don't crash when one of the configuration files is empty (#7341)Brendan Abolivier2020-04-271-0/+6
| | | | | If the admin adds a `.yaml` file that's either empty or doesn't parse into a dict to a config directory (e.g. `conf.d` for debs installs), stuff like https://github.com/matrix-org/synapse/issues/7322 would happen. This PR checks that the file is correctly parsed into a dict, or ignores it with a warning if it parses into any other type (including `None` for empty files). Fixes https://github.com/matrix-org/synapse/issues/7322
* Add documentation to the sample config about the templates for SSO. (#7343)Patrick Cloke2020-04-241-0/+24
|
* Convert some of the federation handler methods to async/await. (#7338)Patrick Cloke2020-04-241-25/+24
|
* Merge pull request #7337 from matrix-org/rav/fix_update_limit_assertionRichard van der Hoff2020-04-244-44/+146
|\ | | | | Fix assertions being thrown by the EventsStream update function
| * Fix EventsStream raising assertions when it falls behindRichard van der Hoff2020-04-242-30/+129
| | | | | | | | | | | | | | | | | | | | Figuring out how to correctly limit updates from this stream without dropping entries is far more complicated than just counting the number of rows being returned. We need to consider each query separately and, if any one query hits the limit, truncate the results from the others. I think this also fixes some potentially long-standing bugs where events or state changes could get missed if we hit the limit on either query.
| * Make it clear that the limit for an update_function is a targetRichard van der Hoff2020-04-231-5/+9
| |
| * Remove 'limit' param from `get_repl_stream_updates` APIRichard van der Hoff2020-04-232-9/+8
| | | | | | | | | | there doesn't seem to be much point in passing this limit all around, since both sides agree it's meant to be 100.
* | Merge branch 'master' into developPatrick Cloke2020-04-231-1/+1
|\ \ | |/ |/|
| * 1.12.4 v1.12.4 github/release-v1.12.4 release-v1.12.4Patrick Cloke2020-04-231-1/+1
| |
* | Revert "Revert "Merge pull request #7315 from ↵Brendan Abolivier2020-04-233-2/+48
| | | | | | | | | | | | matrix-org/babolivier/request_token"" This reverts commit 1adf6a55870aa08de272591ff49db9dc49738076.
* | Stop the master relaying USER_SYNC for other workers (#7318)Richard van der Hoff2020-04-228-154/+197
| | | | | | | | | | | | | | Long story short: if we're handling presence on the current worker, we shouldn't be sending USER_SYNC commands over replication. In an attempt to figure out what is going on here, I ended up refactoring some bits of the presencehandler code, so the first 4 commits here are non-functional refactors to move this code slightly closer to sanity. (There's still plenty to do here :/). Suggest reviewing individual commits. Fixes (I hope) #7257.
* | Fix replication metrics when using redis (#7325)Erik Johnston2020-04-222-37/+29
| |
* | Merge tag 'v1.12.4rc1' into developRichard van der Hoff2020-04-221-1/+1
|\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Synapse 1.12.4rc1 (2020-04-22) ============================== Features -------- - Always send users their own device updates. ([\#7160](https://github.com/matrix-org/synapse/issues/7160)) - Add support for handling GET requests for `account_data` on a worker. ([\#7311](https://github.com/matrix-org/synapse/issues/7311)) Bugfixes -------- - Fix a bug that prevented cross-signing with users on worker-mode synapses. ([\#7255](https://github.com/matrix-org/synapse/issues/7255)) - Do not treat display names as globs in push rules. ([\#7271](https://github.com/matrix-org/synapse/issues/7271)) - Fix a bug with cross-signing devices belonging to remote users who did not share a room with any user on the local homeserver. ([\#7289](https://github.com/matrix-org/synapse/issues/7289))
| * 1.12.4rc1Richard van der Hoff2020-04-221-1/+1
| |
* | Another go at fixing one-word commands (#7326)Richard van der Hoff2020-04-221-1/+1
| | | | | | I messed this up last time I tried (#7239 / e13c6c7).
* | Extend StreamChangeCache to support multiple entities per stream ID (#7303)Richard van der Hoff2020-04-221-46/+71
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | First some background: StreamChangeCache is used to keep track of what "entities" have changed since a given stream ID. So for example, we might use it to keep track of when the last to-device message for a given user was received [1], and hence whether we need to pull any to-device messages from the database on a sync [2]. Now, it turns out that StreamChangeCache didn't support more than one thing being changed at a given stream_id (this was part of the problem with #7206). However, it's entirely valid to send to-device messages to more than one user at a time. As it turns out, this did in fact work, because *some* methods of StreamChangeCache coped ok with having multiple things changing on the same stream ID, and it seems we never actually use the methods which don't work on the stream change caches where we allow multiple changes at the same stream ID. But that feels horribly fragile, hence: let's update StreamChangeCache to properly support this, and add some typing and some more tests while we're at it. [1]: https://github.com/matrix-org/synapse/blob/release-v1.12.3/synapse/storage/data_stores/main/deviceinbox.py#L301 [2]: https://github.com/matrix-org/synapse/blob/release-v1.12.3/synapse/storage/data_stores/main/deviceinbox.py#L47-L51
* | Extend room admin api with additional attributes (#7225)Dirk Klimpel2020-04-222-5/+88
| |
* | Merge branch 'release-v1.12.4' into developRichard van der Hoff2020-04-224-18/+193
|\|
| * Do not treat display names as globs for push rules. (#7271)Patrick Cloke2020-04-221-30/+39
| |
| * Query missing cross-signing keys on local sig upload (#7289)Andrew Morgan2020-04-222-18/+179
| |
| * Support GET account_data requests on a worker (#7311)Richard van der Hoff2020-04-212-0/+14
| |
* | Add ability to run replication protocol over redis. (#7040)Erik Johnston2020-04-229-34/+299
| | | | | | This is configured via the `redis` config options.
* | Reduce logging verbosity of URL cache cleanup. (#7295)Michael Kaye2020-04-221-2/+7
| |
* | import urllib.parse when using urllib.parse.quote (#7319)Andrew Morgan2020-04-221-1/+1
| |
* | Reduce federation logging on success (#7321)Michael Kaye2020-04-221-8/+14
| | | | | | | | Splitting based on the response code means we can avoid double logging here and identical information from line 164 while still logging at info if we don't get a good response and need to retry.
* | Merge branch 'release-v1.12.4' into developRichard van der Hoff2020-04-202-140/+12
|\|
| * Revert "Query missing cross-signing keys on local sig upload"Richard van der Hoff2020-04-202-140/+12
| | | | | | | | | | | | This was incorrectly merged to the release branch before it was ready. This reverts commit 72fe2affb6ac86d433b80b6452da57052365aa26.
* | Merge branch 'release-v1.12.4' into developRichard van der Hoff2020-04-202-12/+140
|\|
| * Always send the user updates to their own device list (#7160)David Baker2020-04-202-3/+18
| |
| * Query missing cross-signing keys on local sig uploadAndrew Morgan2020-04-172-12/+140
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Add changelog Save retrieved keys to the db lint Fix and de-brittle remote result dict processing Use query_user_devices instead, assume only master, self_signing key types Make changelog more useful Remove very specific exception handling Wrap get_verify_key_from_cross_signing_key in a try/except Note that _get_e2e_cross_signing_verify_key can raise a SynapseError lint Add comment explaining why this is useful Only fetch master and self_signing key types Fix log statements, docstrings Remove extraneous items from remote query try/except lint Factor key retrieval out into a separate function Send device updates, modeled after SigningKeyEduUpdater._handle_signing_key_updates Update method docstring
| * Only register devices edu handler on the master process (#7255)Andrew Morgan2020-04-141-7/+11
| |
* | Fix indention in generated config file (#7300)Lars Franke2020-04-201-22/+22
| | | | | | | | | | | | Also adjust sample_config.yaml Signed-off-by: Lars Franke <frcl@mailbox.org>
* | Reject unknown UI auth sessions (instead of silently generating a new one) ↵Patrick Cloke2020-04-201-65/+94
| | | | | | | | (#7268)
* | On catchup, process each row with its own stream id (#7286)Richard van der Hoff2020-04-202-5/+71
| | | | | | | | | | | | Other parts of the code (such as the StreamChangeCache) assume that there will not be multiple changes with the same stream id. This code was introduced in #7024, and I hope this fixes #7206.
* | Use a template for the SSO success page to allow for customization. (#7279)Patrick Cloke2020-04-174-33/+60
| |
* | Improve type checking in `replication.tcp.Stream` (#7291)Richard van der Hoff2020-04-174-122/+142
| | | | | | | | | | | | | | The general idea here is to get rid of the type: ignore annotations on all of the current_token and update_function assignments, which would have caught #7290. After a bit of experimentation, it seems like the least-awful way to do this is to pass the offending functions in as parameters to the Stream constructor. Unfortunately that means that the concrete implementations no longer have the same constructor signature as Stream itself, which means that it gets hard to correctly annotate STREAMS_MAP. I've also introduced a couple of new types, to take out some duplication.
* | Clarify the comments for media_storage_providers options (#7272)Tristan Lins2020-04-171-4/+3
| |
* | Do not treat display names as globs for push rules. (#7271)Patrick Cloke2020-04-161-30/+39
| |
* | Fix 'generator object is not subscriptable' error (#7290)Richard van der Hoff2020-04-161-1/+2
| | | | | | | | | | | | Some of the query functions return generators rather than lists, so we can't index into the result. Happily we already have a copy of the results. (think this was introduced in #7024)
* | Convert auth handler to async/await (#7261)Patrick Cloke2020-04-155-113/+119
| |
* | Allow specifying the value of Accept-Language header for URL previews (#7265)Andrew Morgan2020-04-152-2/+35
| |
* | Fix a potentially-huge sql query (#7274)Richard van der Hoff2020-04-151-7/+16
| | | | | | | | | | We could end up looking up tens of thousands of events, which could cause large amounts of data to be logged to the postgres log.
* | Only register devices edu handler on the master process (#7255)Andrew Morgan2020-04-141-7/+11
| |
* | Check on room creation if the user is allowed to publish the room to the ↵PeerD2020-04-131-0/+7
| | | | | | | | room directory. (#7260)
* | typosMatthew Hodgson2020-04-112-2/+2
| |
* | Default PL100 to enable encryption in a room (#7230)Andrew Morgan2020-04-091-0/+1
| |
* | Do not allow a deactivated user to login via SSO. (#7240)Patrick Cloke2020-04-096-7/+70
| |
* | Fix --help commandline argument (#7249)Richard van der Hoff2020-04-091-16/+8
| | | | | | | | | | | | | | | | I don't really remember why this was so complicated; I think it dates back to the time when we had to instantiate the Config classes before we could call `add_arguments` - ie before #5597. In any case, I don't think there's a good reason for it any more, and the impact of it being complicated is that `--help` doesn't work correctly.
* | Make it clearer to the user that they haven't overridden onLogin/Register ↵Andrew Morgan2020-04-092-3/+2
| | | | | | | | (#7237)
* | Upgrade jQuery to 3.x on fallback login/registration screens (#7236)Andrew Morgan2020-04-098-16/+14
| |
* | Add documentation to password_providers config option (#7238)Andrew Morgan2020-04-081-2/+14
| |
* | bg update to clear out duplicate outbound_device_list_pokes (#7193)Richard van der Hoff2020-04-074-13/+181
| | | | | | | | We seem to have some duplicates, which could do with being cleared out.
* | Merge pull request #7239 from matrix-org/rav/replication_cleanupRichard van der Hoff2020-04-073-32/+35
|\ \ | | | | | | Miscellaneous cleanups to replication code
| * | Handle one-word replication commands correctlyRichard van der Hoff2020-04-071-3/+11
| | | | | | | | | | | | | | | `REPLICATE` is now a valid command, and it's nice if you can issue it from the console without remembering to call it `REPLICATE ` with a trailing space.
| * | Fix warnings about not calling superclass constructorRichard van der Hoff2020-04-071-15/+24
| | | | | | | | | | | | | | | | | | Separate `SimpleCommand` from `Command`, so that things which don't want to use the `data` property don't have to, and thus fix the warnings PyCharm was giving me about not calling `__init__` in the base class.
| * | Remove vestigal references to SYNC replication commandRichard van der Hoff2020-04-072-14/+0
| | | | | | | | | | | | We've ripped pretty much all of this out: let's remove the remains.
* | | Convert delete_url_cache_media to async/await. (#7241)Patrick Cloke2020-04-071-2/+2
| | |
* | | Add typing information to federation_server. (#7219)Patrick Cloke2020-04-071-66/+107
| | |
* | | Fix typo in the login fallback javascript (#7235)Brendan Abolivier2020-04-071-1/+1
|/ / | | | | | | | | * Fix typo in the login fallback javascript * Changelog
* | Remove sent outbound device list pokes from the database (#7192)Richard van der Hoff2020-04-072-2/+23
| | | | | | They just get in the way.
* | Fix race in replication (#7226)Erik Johnston2020-04-073-49/+67
| | | | | | | | Fixes a race between handling `POSITION` and `RDATA` commands. We do this by simply linearizing handling of them.
* | Move server command handling out of TCP protocol (#7187)Erik Johnston2020-04-073-269/+236
| | | | | | This completes the merging of server and client command processing.
* | Remove stream before/after debug log lines (#7207)Andrew Morgan2020-04-061-2/+0
| |
* | Improve error responses when a remote server doesn't allow you to access its ↵Andrew Morgan2020-04-062-24/+32
| | | | | | | | public rooms list (#6899)
* | Move client command handling out of TCP protocol (#7185)Erik Johnston2020-04-068-342/+352
| | | | | | The aim here is to move the command handling out of the TCP protocol classes and to also merge the client and server command handling (so that we can reuse them for redis protocol). This PR simply moves the client paths to the new `ReplicationCommandHandler`, a future PR will move the server paths too.
* | Server notices: Dissociate room creation/lookup from invite (#7199)Brendan Abolivier2020-04-042-10/+45
| | | | | | | | | | | | | | | | | | Fixes #6815 Before figuring out whether we should alert a user on MAU, we call get_notice_room_for_user to get some info on the existing server notices room for this user. This function, if the room doesn't exist, creates it and invites the user in it. This means that, if we decide later that no server notice is needed, the user gets invited in a room with no message in it. This happens at every restart of the server, since the room ID returned by get_notice_room_for_user is cached. This PR fixes that by moving the inviting bit to a dedicated function, that's only called when the server actually needs to send a notice to the user. A potential issue with this approach is that the room that's created by get_notice_room_for_user doesn't match how that same function looks for an existing room (i.e. it creates a room that doesn't have an invite or a join for the current user in it, so it could lead to a new room being created each time a user syncs), but I'm not sure this is a problem given it's cached until the server restarts, so that function won't run very often. It also renames get_notice_room_for_user into get_or_create_notice_room_for_user to make what it does clearer.
* | Support CAS in UI Auth flows. (#7186)Patrick Cloke2020-04-034-83/+130
| |
* | Extend web_client_location to handle absolute URLs (#7006)Martin Milata2020-04-032-6/+21
| | | | | | | | | | Log warning when filesystem path is used. Signed-off-by: Martin Milata <martin@martinmilata.cz>
* | Convert http.HTTPStatus objects to their int equivalent (#7188)Andrew Morgan2020-04-031-1/+8
| |
* | Reduce the number of calls to `resource.getrusage` (#7183)Richard van der Hoff2020-04-031-39/+63
| | | | | | Let's just call `getrusage` once on each logcontext change, rather than twice.
* | Merge pull request #7190 from matrix-org/rav/one_bg_update_at_a_timeRichard van der Hoff2020-04-033-59/+76
|\ \ | | | | | | Only run one background update at a time
| * | Update docstring per review commentsRichard van der Hoff2020-04-031-1/+1
| | |
| * | review commentRichard van der Hoff2020-04-021-1/+1
| | |
| * | Only run one background update at a timeRichard van der Hoff2020-03-313-27/+68
| | |
| * | Make do_next_background_update return a boolRichard van der Hoff2020-03-311-7/+5
| | | | | | | | | | | | returning a None or an int that we don't use is confusing.
| * | Make `has_completed_background_updates` asyncRichard van der Hoff2020-03-311-4/+3
| | | | | | | | | | | | (Almost) everywhere that uses it is happy with an awaitable.
| * | Remove unused `start_background_update`Richard van der Hoff2020-03-311-21/+0
| | | | | | | | | | | | This was only used in a unit test, so let's just inline it in the test.
* | | Remove some `run_in_background` calls in replication code (#7203)Richard van der Hoff2020-04-031-8/+8
| | | | | | | | | | | | | | | | | | By running this stuff with `run_in_background`, it won't be correctly reported against the relevant CPU usage stats. Fixes #7202
* | | Merge branch 'master' into developRichard van der Hoff2020-04-031-1/+1
|\ \ \
| * | | Revert "Revert "Merge pull request #7153 from ↵Richard van der Hoff2020-04-031-0/+15
| | | | | | | | | | | | | | | | | | | | | | | | matrix-org/babolivier/sso_whitelist_login_fallback"" This reverts commit 0122ef1037c8bfe826ea09d9fc7cd63fb9c59fd1.
| * | | Revert "Revert "Improve the UX of the login fallback when using SSO (#7152)""Richard van der Hoff2020-04-032-22/+31
| | |/ | |/| | | | | | | This reverts commit 8d4cbdeaa9765ae0d87ec82b053f12ed8162f6f5.
| * | 1.12.3Richard van der Hoff2020-04-031-1/+1
| | |
| * | Fix the debian build in a better way. (#7212)Richard van der Hoff2020-04-031-3/+1
| | |
| * | 1.12.2Andrew Morgan2020-04-021-1/+1
| | |
| * | Pin Pillow>=4.3.0,<7.1.0 to fix dep issueAndrew Morgan2020-04-021-1/+3
| | |
| * | 1.12.1Andrew Morgan2020-04-021-1/+1
| | |
* | | Fix device list update stream ids going backward (#7158)Richard van der Hoff2020-04-031-2/+8
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Occasionally we could get a federation device list update transaction which looked like: ``` [ {'edu_type': 'm.device_list_update', 'content': {'user_id': '@user:test', 'device_id': 'D2', 'prev_id': [], 'stream_id': 12, 'deleted': True}}, {'edu_type': 'm.device_list_update', 'content': {'user_id': '@user:test', 'device_id': 'D1', 'prev_id': [12], 'stream_id': 11, 'deleted': True}}, {'edu_type': 'm.device_list_update', 'content': {'user_id': '@user:test', 'device_id': 'D3', 'prev_id': [11], 'stream_id': 13, 'deleted': True}} ] ``` Having `stream_ids` which are lower than `prev_ids` looks odd. It might work (I'm not actually sure), but in any case it doesn't seem like a reasonable thing to expect other implementations to support.
* | | Merge branch 'master' into developAndrew Morgan2020-04-021-1/+1
|\ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * master: 1.12.1 Note where bugs were introduced 1.12.1rc1 Newsfile Rewrite changelog Add changelog Only import sqlite3 when type checking Fix another instance Only setdefault for signatures if device has key_json Fix starting workers when federation sending not split out. Attempt to clarify Python version requirements (#7161) Improve the UX of the login fallback when using SSO (#7152) Update the wording of the config comment Lint Changelog Regenerate sample config Whitelist the login fallback by default for SSO
| * \ \ Merge tag 'v1.12.1'Andrew Morgan2020-04-024-13/+32
| |\ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Synapse 1.12.1 (2020-04-02) =========================== No significant changes since 1.12.1rc1. Synapse 1.12.1rc1 (2020-03-31) ============================== Bugfixes -------- - Fix starting workers when federation sending not split out. ([\#7133](https://github.com/matrix-org/synapse/issues/7133)). Introduced in v1.12.0. - Avoid importing `sqlite3` when using the postgres backend. Contributed by David Vo. ([\#7155](https://github.com/matrix-org/synapse/issues/7155)). Introduced in v1.12.0rc1. - Fix a bug which could cause outbound federation traffic to stop working if a client uploaded an incorrect e2e device signature. ([\#7177](https://github.com/matrix-org/synapse/issues/7177)). Introduced in v1.11.0. * tag 'v1.12.1': 1.12.1 Note where bugs were introduced 1.12.1rc1 Newsfile Rewrite changelog Add changelog Only import sqlite3 when type checking Fix another instance Only setdefault for signatures if device has key_json Fix starting workers when federation sending not split out.
| | * | | 1.12.1 v1.12.1 github/release-v1.12.1 release-v1.12.1Andrew Morgan2020-04-021-1/+1
| | |/ /
| | * | 1.12.1rc1Andrew Morgan2020-03-311-1/+1
| | | |
| | * | Only import sqlite3 when type checkingDavid Vo2020-03-311-2/+5
| | | | | | | | | | | | | | | | | | | | Fixes: #7127 Signed-off-by: David Vo <david@vovo.id.au>
| | * | Fix another instanceAndrew Morgan2020-03-311-5/+7
| | | |
| | * | Only setdefault for signatures if device has key_jsonAndrew Morgan2020-03-311-5/+7
| | | |
| | * | Fix starting workers when federation sending not split out.Erik Johnston2020-03-311-0/+12
| | | |
| * | | Improve the UX of the login fallback when using SSO (#7152)Brendan Abolivier2020-03-272-22/+31
| | | | | | | | | | | | | | | | | | | | | | | | | | | | * Don't show the login forms if we're currently logging in with a password or a token. * Submit directly the SSO login form, showing only a spinner to the user, in order to eliminate from the clunkiness of SSO through this fallback.
| * | | Update the wording of the config commentBrendan Abolivier2020-03-271-3/+3
| | | |
| * | | Whitelist the login fallback by default for SSOBrendan Abolivier2020-03-261-1/+16
| |/ /
* | | Support SAML in the user interactive authentication workflow. (#7102)Patrick Cloke2020-04-019-44/+218
| | |
* | | Allow admins to create aliases when they are not in the room (#7191)Patrick Cloke2020-04-011-1/+5
| | |
* | | Remove connections per replication stream metric. (#7195)Erik Johnston2020-04-011-16/+0
| |/ |/| | | | | | | This broke in a recent PR (#7024) and is no longer useful due to all replication clients implicitly subscribing to all streams, so let's just remove it.
* | Fix "'NoneType' has no attribute start|stop" logcontext errors (#7181)Richard van der Hoff2020-03-312-7/+11
| | | | | | | | Fixes #7179.
* | Fill in the 'default' field for user-defined push rules (#6639)Karlinde2020-03-311-0/+1
| | | | | | Signed-off-by: Karl Linderhed <git@karlinde.se>
* | Only setdefault for signatures if device has key_json (#7177)Andrew Morgan2020-03-311-10/+14
| |
* | Fix use of async/await in media code (#7184)Patrick Cloke2020-03-311-2/+2
| |
* | Fix a bug which could cause incorrect 'cyclic dependency' error. (#7178)Richard van der Hoff2020-03-311-12/+10
| | | | | | | | | | | | | | | | If there was an exception setting up one of the attributes of the Homeserver god object, then future attempts to fetch that attribute would raise a confusing "Cyclic dependency" error. Let's make sure that we clear the `building` flag so that we just get the original exception. Ref: #7169
* | Rewrite prune_old_outbound_device_pokes for efficiency (#7159)Richard van der Hoff2020-03-303-37/+80
| | | | | | | | make sure we clear out all but one update for the user
* | Transfer alias mappings when joining an upgraded room (#6946)Andrew Morgan2020-03-302-3/+26
| |
* | Fix a small typo in the `metrics_flags` config option. (#7171)Andrew Morgan2020-03-301-1/+1
| |
* | Remove usage of "conn_id" for presence. (#7128)Erik Johnston2020-03-307-22/+79
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Remove `conn_id` usage for UserSyncCommand. Each tcp replication connection is assigned a "conn_id", which is used to give an ID to a remotely connected worker. In a redis world, there will no longer be a one to one mapping between connection and instance, so instead we need to replace such usages with an ID generated by the remote instances and included in the replicaiton commands. This really only effects UserSyncCommand. * Add CLEAR_USER_SYNCS command that is sent on shutdown. This should help with the case where a synchrotron gets restarted gracefully, rather than rely on 5 minute timeout.
* | Merge pull request #7160 from ↵David Baker2020-03-302-3/+18
|\ \ | | | | | | | | | | | | matrix-org/dbkr/always_send_own_device_list_updates Always send the user updates to their own device list
| * | Add explanatory commentAndrew Morgan2020-03-302-1/+4
| | |
| * | blackDavid Baker2020-03-301-1/+3
| | |
| * | Just add own user ID to the list we track device changes forDavid Baker2020-03-302-7/+11
| | |
| * | Fix undefined variable & remove debug loggingDavid Baker2020-03-271-10/+2
| | |
| * | blackDavid Baker2020-03-271-4/+4
| | |
| * | Always send the user updates to their own device listDavid Baker2020-03-272-6/+20
| | | | | | | | | | | | | | | This will allow clients to notify users about new devices even if the user isn't in any rooms (yet).
* | | Always whitelist the login fallback for SSO (#7153)Richard van der Hoff2020-03-271-0/+15
| | | | | | | | | | | | | | | | | | | | | That fallback sets the redirect URL to itself (so it can process the login token then return gracefully to the client). This would make it pointless to ask the user for confirmation, since the URL the confirmation page would be showing wouldn't be the client's.
* | | Improve the UX of the login fallback when using SSO (#7152)Brendan Abolivier2020-03-272-22/+31
| | | | | | | | | | | | | | | | | | | | | * Don't show the login forms if we're currently logging in with a password or a token. * Submit directly the SSO login form, showing only a spinner to the user, in order to eliminate from the clunkiness of SSO through this fallback.
* | | Admin API to join users to a room. (#7051)Dirk Klimpel2020-03-272-4/+82
| | |
* | | Add options to prevent users from changing their profile. (#7096)Dirk Klimpel2020-03-273-0/+59
| | |
* | | Ensure is_verified on /_matrix/client/r0/room_keys/keys is a boolean (#7150)Andrew Morgan2020-03-272-2/+3
| | |
* | | Only import sqlite3 when type checking (#7155)David Vo2020-03-271-2/+5
|/ / | | | | | | Fixes: #7127 Signed-off-by: David Vo <david@vovo.id.au>
* | Merge pull request #7151 from matrix-org/jaywink/saml-redirect-fixJason Robinson2020-03-261-0/+4
|\ \ | | | | | | Allow RedirectResponse in SAML response handler
| * | Allow RedirectResponse in SAML response handlerJason Robinson2020-03-261-0/+4
| | | | | | | | | | | | | | | | | | | | | | | | Allow custom SAML handlers to redirect after processing an auth response. Fixes #7149 Signed-off-by: Jason Robinson <jasonr@matrix.org>
* | | Refactor the CAS code (move the logic out of the REST layer to a handler) ↵Patrick Cloke2020-03-263-155/+225
| | | | | | | | | | | | (#7136)
* | | Don't default to an invalid sqlite config if no database configuration is ↵Nektarios Katakis2020-03-261-22/+47
| | | | | | | | | | | | provided (#6573)
* | | Allow server admins to define and enforce a password policy (MSC2000). (#7118)Dirk Klimpel2020-03-268-0/+222
|/ /
* | Validate that the session is not modified during UI-Auth (#7068)Patrick Cloke2020-03-265-12/+47
| |
* | Remove unused captcha_bypass_secret option (#7137)Aaron Raimist2020-03-251-5/+0
| | | | | | Signed-off-by: Aaron Raimist <aaron@raim.ist>
* | Move catchup of replication streams to worker. (#7024)Erik Johnston2020-03-2520-431/+537
| | | | | | This changes the replication protocol so that the server does not send down `RDATA` for rows that happened before the client connected. Instead, the server will send a `POSITION` and clients then query the database (or master out of band) to get up to date.
* | Merge pull request #7133 from matrix-org/erikj/fix_worker_startupErik Johnston2020-03-251-0/+12
|\ \ | | | | | | Fix starting workers when federation sending not split out.
| * | Fix starting workers when federation sending not split out.Erik Johnston2020-03-241-0/+12
| |/