watcha-synapse

Commit Graph

Author	SHA1	Message	Date
Patrick Cloke	a0f48ee89d	Use direct references for configuration variables (part 7). (#10959 )	3 years ago
Patrick Cloke	94b620a5ed	Use direct references for configuration variables (part 6). (#10916 )	3 years ago
Travis Ralston	8cef1ab2ac	Implement MSC3069: Guest support on whoami (#9655 )	3 years ago
Patrick Cloke	e584534403	Use direct references for some configuration variables (part 3) (#10885 ) This avoids the overhead of searching through the various configuration classes by directly referencing the class that the attributes are in. It also improves type hints since mypy can now resolve the types of the configuration variables.	3 years ago
Patrick Cloke	d1f1b46c2c	Additional type hints for client REST servlets (part 4) (#10728 )	3 years ago
reivilibre	642a42edde	Flatten the synapse.rest.client package (#10600 )	3 years ago
Travis Ralston	b3a757eb3b	Support MSC2033: Device ID on whoami (#9918 ) * Fix no-access-token bug in deactivation tests * Support MSC2033: Device ID on whoami * Test for appservices too MSC: https://github.com/matrix-org/matrix-doc/pull/2033 The MSC has passed FCP, which means stable endpoints can be used.	3 years ago
Erik Johnston	177dae2704	Limit length of accepted email addresses (#9855 )	4 years ago
Jonathan de Jong	4b965c862d	Remove redundant "coding: utf-8" lines (#9786 ) Part of #9744 Removes all redundant `# -- coding: utf-8 --` lines from files, as python 3 automatically reads source code as utf-8 now. `Signed-off-by: Jonathan de Jong <jonathan@automatia.nl>`	4 years ago
Erik Johnston	963f4309fe	Make RateLimiter class check for ratelimit overrides (#9711 ) This should fix a class of bug where we forget to check if e.g. the appservice shouldn't be ratelimited. We also check the `ratelimit_override` table to check if the user has ratelimiting disabled. That table is really only meant to override the event sender ratelimiting, so we don't use any values from it (as they might not make sense for different rate limits), but we do infer that if ratelimiting is disabled for the user we should disabled all ratelimits. Fixes #9663	4 years ago
Patrick Cloke	b7748d3c00	Import HomeServer from the proper module. (#9665 )	4 years ago
Eric Eastwood	0a00b7ff14	Update black, and run auto formatting over the codebase (#9381 ) - Update black version to the latest - Run black auto formatting over the codebase - Run autoformatting according to [`docs/code_style.md `](`80d6dc9783/docs/code_style.md`) - Update `code_style.md` docs around installing black to use the correct version	4 years ago
Erik Johnston	4b73488e81	Ratelimit 3PID /requestToken API (#9238 )	4 years ago
Dirk Klimpel	7a2e9b549d	Remove user's avatar URL and displayname when deactivated. (#8932 ) This only applies if the user's data is to be erased.	4 years ago
Richard van der Hoff	789d9ebad3	UI Auth via SSO: redirect the user to an appropriate SSO. (#9081 ) If we have integrations with multiple identity providers, when the user does a UI Auth, we need to redirect them to the right one. There are a few steps to this. First of all we actually need to store the userid of the user we are trying to validate in the UIA session, since the /auth/sso/fallback/web request is unauthenticated. Then, once we get the /auth/sso/fallback/web request, we can fish the user id out of the session, and use it to look up the external id mappings, and hence pick an SSO provider for them.	4 years ago
Richard van der Hoff	0f8945e166	Kill off `HomeServer.get_ip_from_request()` (#9080 ) Homeserver.get_ip_from_request() used to be a bit more complicated, but now it is totally redundant. Let's get rid of it.	4 years ago
Patrick Cloke	5d4c330ed9	Allow re-using a UI auth validation for a period of time (#8970 )	4 years ago
Jonathan de Jong	ca60822b34	Simplify the way the `HomeServer` object caches its internal attributes. (#8565 ) Changes `@cache_in_self` to use underscore-prefixed attributes.	4 years ago
Erik Johnston	427ede619f	Add metrics for tracking 3PID /requestToken requests. (#8712 ) The main use case is to see how many requests are being made, and how many are second/third/etc attempts. If there are large number of retries then that likely indicates a delivery problem.	4 years ago
Patrick Cloke	514a240aed	Remove unused OPTIONS handlers. (#8621 ) The handling of OPTIONS requests was consolidated in #7534, but the endpoint specific handlers were not removed.	4 years ago
Patrick Cloke	c9c0ad5e20	Remove the deprecated Handlers object (#8494 ) All handlers now available via get_*_handler() methods on the HomeServer.	4 years ago
Andrew Morgan	1c6b8752b8	Only assert valid next_link params when provided (#8417 ) Broken in https://github.com/matrix-org/synapse/pull/8275 and has yet to be put in a release. Fixes https://github.com/matrix-org/synapse/issues/8418. `next_link` is an optional parameter. However, we were checking whether the `next_link` param was valid, even if it wasn't provided. In that case, `next_link` was `None`, which would clearly not be a valid URL. This would prevent password reset and other operations if `next_link` was not provided, and the `next_link_domain_whitelist` config option was set.	4 years ago
Andrew Morgan	d4605d1f16	Don't check whether a 3pid is allowed to register during password reset This endpoint should only deal with emails that have already been approved, and are attached with user's account. There's no need to re-check them here.	4 years ago
Patrick Cloke	8a4a4186de	Simplify super() calls to Python 3 syntax. (#8344 ) This converts calls like super(Foo, self) -> super(). Generated with: sed -i "" -Ee 's/super\([^\(]+\)/super()/g' */.py	4 years ago
Patrick Cloke	d2a3eb04a4	Fix typos in comments.	4 years ago
Andrew Morgan	a3a90ee031	Show a confirmation page during user password reset (#8004 ) This PR adds a confirmation step to resetting your user password between clicking the link in your email and your password actually being reset. This is to better align our password reset flow with the industry standard of requiring a confirmation from the user after email validation.	4 years ago
Andrew Morgan	094896a69d	Add a config option for validating 'next_link' parameters against a domain whitelist (#8275 ) This is a config option ported over from DINUM's Sydent: https://github.com/matrix-org/sydent/pull/285 They've switched to validating 3PIDs via Synapse rather than Sydent, and would like to retain this functionality. This original purpose for this change is phishing prevention. This solution could also potentially be replaced by a similar one to https://github.com/matrix-org/synapse/pull/8004, but across all `*/submit_token` endpoint. This option may still be useful to enterprise even with that safeguard in place though, if they want to be absolutely sure that their employees don't follow links to other domains.	4 years ago
Brendan Abolivier	3f49f74610	Don't fail /submit_token requests on incorrect session ID if request_token_inhibit_3pid_errors is turned on (#7991 ) * Don't raise session_id errors on submit_token if request_token_inhibit_3pid_errors is set * Changelog * Also wait some time before responding to /requestToken * Incorporate review * Update synapse/storage/databases/main/registration.py Co-authored-by: Andrew Morgan <1342360+anoadragon453@users.noreply.github.com> * Incorporate review Co-authored-by: Andrew Morgan <1342360+anoadragon453@users.noreply.github.com>	4 years ago
Andrew Morgan	e04e465b4d	Use the default templates when a custom template file cannot be found (#8037 ) Fixes https://github.com/matrix-org/synapse/issues/6583	4 years ago
Patrick Cloke	66f24449dd	Improve performance of the register endpoint (#8009 )	4 years ago
Dirk Klimpel	21a212f8e5	Fix inconsistent handling of upper and lower cases of email addresses. (#7021 ) fixes #7016	4 years ago
Patrick Cloke	ea26e9a98b	Ensure that HTML pages served from Synapse include headers to avoid embedding.	4 years ago
Dagfinn Ilmari Mannsåker	a3f11567d9	Replace all remaining six usage with native Python 3 equivalents (#7704 )	5 years ago
Brendan Abolivier	6d5985e1f2	Enable 3PID add/bind/unbind endpoints on r0 routes	5 years ago
Patrick Cloke	9dc6f3075a	Hash passwords earlier in the password reset process (#7538 ) This now matches the logic of the registration process as modified in `56db0b1365` / #7523.	5 years ago
Brendan Abolivier	2e3b9a0fcb	Revert "Revert "Merge pull request #7315 from matrix-org/babolivier/request_token"" This reverts commit `1adf6a5587`.	5 years ago
Brendan Abolivier	1adf6a5587	Revert "Merge pull request #7315 from matrix-org/babolivier/request_token" This reverts commit `6f4319368b`, reversing changes made to `0d775fcc2d`.	5 years ago
Brendan Abolivier	69ad7cc13b	Config option to inhibit 3PID errors on /requestToken Adds a request_token_inhibit_errors configuration flag (disabled by default) which, if enabled, change the behaviour of all /requestToken endpoints so that they return a 200 and a fake sid if the 3PID was/was not found associated with an account (depending on the endpoint), instead of an error. Co-Authored-By: Andrew Morgan <1342360+anoadragon453@users.noreply.github.com>	5 years ago
Patrick Cloke	b9930d24a0	Support SAML in the user interactive authentication workflow. (#7102 )	5 years ago
Dirk Klimpel	8327eb9280	Add options to prevent users from changing their profile. (#7096 )	5 years ago
Patrick Cloke	1c1242acba	Validate that the session is not modified during UI-Auth (#7068 )	5 years ago
Patrick Cloke	88b41986db	Add an option to the set password API to choose whether to logout other devices. (#7085 )	5 years ago
Richard van der Hoff	6a35046363	Revert "Add options to disable setting profile info for prevent changes. (#7053 )" This reverts commit `54dd28621b`, reversing changes made to `6640460d05`.	5 years ago
dklimpel	885134529f	updates after review	5 years ago
dklimpel	99bbe177b6	add disable_3pid_changes	5 years ago
Andrew Morgan	9f7aaf90b5	Validate client_secret parameter (#6767 )	5 years ago
Erik Johnston	9c41ba4c5f	Port rest.client.v2	5 years ago
Andrew Morgan	23ea572125	Add User-Interactive Auth to /account/3pid/add (#6119 )	5 years ago
Amber Brown	020add5099	Update black to 19.10b0 (#6304 ) * update version of black and also fix the mypy config being overridden	5 years ago
Andrew Morgan	54fef094b3	Remove usage of deprecated logger.warn method from codebase (#6271 ) Replace every instance of `logger.warn` with `logger.warning` as the former is deprecated.	5 years ago

6 Commits (7bf2d6c268bb9fb6a1b22cff4287ce5f8224ac7b)