watcha-synapse

Commit Graph

Author	SHA1	Message	Date
David Baker	0c88ab1844	Add /account/3pid/delete endpoint Also fix a typo in a comment	8 years ago
Richard van der Hoff	aa09d6b8f0	Rip out more refresh_token code We might as well treat all refresh_tokens as invalid. Just return a 403 from /tokenrefresh, so that we don't have a load of dead, untestable code hanging around. Still TODO: removing the table from the schema.	8 years ago
David Baker	29c5922021	Revert part of `6207399` older sqlite doesn't support indexes on expressions, lets just store things lowercase in the db	8 years ago
David Baker	62073992c5	Make password reset email field case insensitive	8 years ago
Erik Johnston	07229bbdae	Add appservice worker	8 years ago
Erik Johnston	dc3a00f24f	Refactor user_delete_access_tokens. Invalidate get_user_by_access_token to slaves.	8 years ago
Richard van der Hoff	33d7776473	Fix typo	8 years ago
Richard van der Hoff	8e02494166	Delete refresh tokens when deleting devices	8 years ago
Richard van der Hoff	436bffd15f	Implement deleting devices	8 years ago
Richard van der Hoff	40cbffb2d2	Further registration refactoring * `RegistrationHandler.appservice_register` no longer issues an access token: instead it is left for the caller to do it. (There are two of these, one in `synapse/rest/client/v1/register.py`, which now simply calls `AuthHandler.issue_access_token`, and the other in `synapse/rest/client/v2_alpha/register.py`, which is covered below). * In `synapse/rest/client/v2_alpha/register.py`, move the generation of access_tokens into `_create_registration_details`. This means that the normal flow no longer needs to call `AuthHandler.issue_access_token`; the shared-secret flow can tell `RegistrationHandler.register` not to generate a token; and the appservice flow continues to work despite the above change.	8 years ago
Richard van der Hoff	f863a52cea	Add device_id support to /login Add a 'devices' table to the storage, as well as a 'device_id' column to refresh_tokens. Allow the client to pass a device_id, and initial_device_display_name, to /login. If login is successful, then register the device in the devices table if it wasn't known already. If no device_id was supplied, make one up. Associate the device_id with the access token and refresh token, so that we can get at it again later. Ensure that the device_id is copied from the refresh token to the access_token when the token is refreshed.	8 years ago
Mark Haines	dfde67a6fe	Add a comment explaining allow_none	9 years ago
Mark Haines	10c843fcfb	Ensure that the guest user is in the database when upgrading accounts	9 years ago
Erik Johnston	be3548f7e1	Remove spurious txn	9 years ago
Erik Johnston	4adf93e0f7	Fix for postgres	9 years ago
Erik Johnston	651faee698	Add an admin option to shared secret registration	9 years ago
Erik Johnston	f328d95cef	Feature: Add deactivate account admin API Allows server admins to "deactivate" accounts, which: - Revokes all access tokens - Removes all threepids - Removes password The API is a POST to `/admin/deactivate/<user_id>`	9 years ago
Mark Haines	9f1800fba8	Remove registered_users from the distributor. The only place that was observed was to set the profile. I've made it so that the profile is set within store.register in the same transaction that creates the user. This required some slight changes to the registration code for upgrading guest users, since it previously relied on the distributor swallowing errors if the profile already existed.	9 years ago
Erik Johnston	4ea762c1a2	Add cache to get_user_by_id	9 years ago
David Baker	0fd1cd2400	pep8	9 years ago
David Baker	7e2c89a37f	Make pushers use the event_push_actions table instead of listening on an event stream & running the rules again. Sytest passes, but remaining to do: * Make badges work again * Remove old, unused code	9 years ago
Mark Haines	87f2dec8d4	Make the cache objects be per instance rather than being global	9 years ago
Mark Haines	2a37467fa1	Use google style doc strings. pycharm supports them so there is no need to use the other format. Might as well convert the existing strings to reduce the risk of people accidentally cargo culting the wrong doc string format.	9 years ago
Erik Johnston	15122da0e2	Thats not how transactions work.	9 years ago
Erik Johnston	b13035cc91	Implement logout	9 years ago
Erik Johnston	c081228439	Fix SQL statement	9 years ago
David Baker	2dee03aee5	more pep8	9 years ago
David Baker	af59826a2f	Make select more sensible when dseleting access tokens, rename pusher deletion to match access token deletion and make exception arg optional.	9 years ago
David Baker	f523177850	Delete old, unused methods and rename new one to just be `user_delete_access_tokens` with an `except_token_ids` argument doing what it says on the tin.	9 years ago
David Baker	57c444b3ad	Dear PyCharm, please indent sensibly for me. Thx.	9 years ago
David Baker	aa11db5f11	Fix cache invalidation so deleting access tokens (which we did when changing password) actually takes effect without HS restart. Reinstate the code to avoid logging out the session that changed the password, removed in `415c2f0549`	9 years ago
Daniel Wagner-Hall	465605d616	Store appservice ID on register	9 years ago
Mark Haines	54172924c8	Load the current id in the IdGenerator constructor Rather than loading them lazily. This allows us to remove all the yield statements and spurious arguments for the get_next methods. It also allows us to replace all instances of get_next_txn with get_next since get_next no longer needs to access the db.	9 years ago
Daniel Wagner-Hall	33300673b7	Generate guest access token on 3pid invites This means that following the same link across multiple sessions or devices can re-use the same guest account. Note that this is somewhat of an abuse vector; we can't throw up captchas on this flow, so this is a way of registering ephemeral accounts for spam, whose sign-up we don't rate limit.	9 years ago
Daniel Wagner-Hall	79a1c0574b	Allocate guest user IDs numericcally The current random IDs are ugly and confusing when presented in UIs. This makes them prettier and easier to read. Also, disable non-automated registration of numeric IDs so that we don't need to worry so much about people carving out our automated address space and us needing to keep retrying ID registration.	9 years ago
Erik Johnston	b84d59c5f0	Add descriptions	9 years ago
Erik Johnston	f59b564507	Make notifications go quicker	9 years ago
David Baker	b5d33a656f	Postgres doesn't like booleans	9 years ago
David Baker	daadcf36c0	This comma is actually important	9 years ago
David Baker	b6a585348a	Adding is_guest here won't work because it just constructs a dict of uid -> password hash	9 years ago
David Baker	c79f221192	Add is_guest flag to users db to track whether a user is a guest user or not. Use this so we can run _filter_events_for_client when calculating event_push_actions.	9 years ago
Daniel Wagner-Hall	cfd07aafff	Allow guests to upgrade their accounts	9 years ago
David Baker	3051c9d002	Address minor PR issues	9 years ago
Mark Haines	dcfc70e8ed	Allow users to change which account a 3pid is bound to	9 years ago
David Baker	21f135ba76	Very first cut of calculating actions for events as they come in. Doesn't store them yet. Not very efficient.	9 years ago
Daniel Wagner-Hall	f522f50a08	Allow guests to register and call /events?room_id= This follows the same flows-based flow as regular registration, but as the only implemented flow has no requirements, it auto-succeeds. In the future, other flows (e.g. captcha) may be required, so clients should treat this like the regular registration flow choices.	9 years ago
Daniel Wagner-Hall	6d59ffe1ce	Add some docstrings	9 years ago
Daniel Wagner-Hall	7213588083	Implement configurable stats reporting SYN-287 This requires that HS owners either opt in or out of stats reporting. When --generate-config is passed, --report-stats must be specified If an already-generated config is used, and doesn't have the report_stats key, it is requested to be set.	9 years ago
Daniel Wagner-Hall	d3c0e48859	Merge erikj/user_dedup to develop	9 years ago
Daniel Wagner-Hall	a9d8bd95e7	Stop looking up "admin", which we never read	9 years ago

1 2

93 Commits (d7457c7661fa3b28427b21f44252c3abbee45ef8)