summary refs log tree commit diff
path: root/tests/handlers/test_auth.py (follow)
Commit message (Collapse)AuthorAgeFilesLines
* Implement access token expiry (#5660)Richard van der Hoff2019-07-121-5/+15
| | | | Record how long an access token is valid for, and raise a soft-logout once it expires.
* Run Black. (#5482)Amber Brown2019-06-201-5/+5
|
* add new error type ResourceLimitNeil Johnson2018-08-161-5/+5
|
* fix off by 1 errorsNeil Johnson2018-08-141-1/+0
|
* fix off by 1s on mauNeil Johnson2018-08-141-1/+38
|
* Run tests under PostgreSQL (#3423)Amber Brown2018-08-131-1/+1
|
* Run black.black2018-08-101-12/+4
|
* do mau checks based on monthly_active_users tableNeil Johnson2018-08-021-4/+4
|
* fix test for py3Neil Johnson2018-08-011-0/+4
|
* make count_monthly_users async synapse/handlers/auth.pyNeil Johnson2018-08-011-17/+22
|
* coding styleNeil Johnson2018-07-311-2/+2
|
* limit register and sign in on number of monthly usersNeil Johnson2018-07-301-1/+48
|
* run isortAmber Brown2018-07-091-0/+2
|
* Fix email push in pusher workerErik Johnston2017-02-021-7/+5
| | | | | | This was broken when device list updates were implemented, as Mailer could no longer instantiate an AuthHandler due to a dependency on federation sending.
* Stop putting a time caveat on access tokensRichard van der Hoff2016-11-291-3/+3
| | | | | | | | The 'time' caveat on the access tokens was something of a lie, since we weren't enforcing it; more pertinently its presence stops us ever adding useful time caveats. Let's move in the right direction by not lying in our caveats.
* PEP8Richard van der Hoff2016-08-081-0/+1
|
* Fix login with m.login.tokenRichard van der Hoff2016-08-081-4/+49
| | | | | login with token (as used by CAS auth) was broken by 067596d, such that it always returned a 401.
* Fix flake8 warnings for testsMark Haines2016-02-191-1/+0
|
* copyrightsMatthew Hodgson2016-01-071-1/+1
|
* Move token generation to auth handlerDaniel Wagner-Hall2015-08-201-0/+70
I prefer the auth handler to worry about all auth, and register to call into it as needed, than to smatter auth logic between the two.