Forgot password flow

[sandhose]

Fixes #13

This implements the password recovery flow as designed here.

The feature is disabled by default.

A few things to do still to exactly match the designs:

• The password form isn't interactive at all
• The recovery email is missing the 'user box'. This is mostly because querying the displayname was potentially annoying here, and I'm not sure about implementing that box in an email (<table> maybe?)
• We're not sending a confirmation email once the password has been changed. I think we should do this separately to also add the same notification to the password change flow

Open questions:

• Should the initial form have a CAPTCHA? It's basically an open form to spam someone's email
• I wonder if we should move that page to the React app? That would work by extending the setPassword API to accept a recovery 'ticket', and make it easier to have the same form validation logic

I made it so that it's reviewable commit by commit

[cloudflare-workers-and-pages]

Deploying matrix-authentication-service-docs with    Cloudflare Pages

Latest commit:	a792639
Status:	✅  Deploy successful!
Preview URL:	https://a5e908fd.matrix-authentication-service-docs.pages.dev
Branch Preview URL:	https://quenting-forgot-password.matrix-authentication-service-docs.pages.dev

View logs

[reivilibre]

seems reasonable to me overall. I'll spin it up in a browser tomorrow but ran out of time today

[reivilibre]

maybe we should say the link 'expired' or something. I guess.

[sandhose]

I mean it's really that you got to the wrong place, as lookup_session will give you even consumed/expired sessions. A 404 would be better, but we don't have a nice way to display that page.

I think we should track in a separate issue to have nice 404 pages for when you go to pages with an unknown ID, because we have many cases like that

[sandhose]

#2880

[reivilibre]

well this kind of raises another Q to me: Do we really want to keep old expired sessions around in the DB forever?

I can't say I see much reason to keep them for a very long time, because it's just going to be ever-growing cruft.

[sandhose]

Generally we don't cleanup most things in the database. I rather soft-delete stuff and keep things for now, and introduce maintenance/cleanup tasks later once we have a nice way of doing this?

[reivilibre]

cynical take: that's how you get Synapse ;-)

but fine

[reivilibre]

all the logic above this seems to be in common with the get route; wonder if can we pull this out into a separate function without it being too awkward?

[sandhose]

yeah that's a thing I haven't really figured out how to do nicely, that wouldn't be the only place having this issue :(

[reivilibre]

any insight why this is hard? what happens if you try it?

[sandhose]

Such a function would have to return either

• an error
• a response
• the user + the repository because passing it as a &mut won't work because of Send/Sync shenanigans…

Which means a custom enum for the return type of such a method? or at least a Result<Either<Response, (User, BoxRepository)>, FancyError>, which isn't exactly pretty?

[reivilibre]

ok for now