Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Document m.get_login_token capability #1908

Merged
merged 3 commits into from
Jul 19, 2024

Conversation

Johennes
Copy link
Contributor

@Johennes Johennes commented Jul 12, 2024

Fixes: #1547

Pull Request Checklist

Preview: https://pr1908--matrix-spec-previews.netlify.app

to generate single-use, time-limited tokens to log unauthenticated clients
into their account.

When not listed, clients SHOULD assume the user is unable to generate tokens.
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

MSC3882 doesn't appear to specify how to behave in this case. The only implementations I found are in matrix-js-sdk and matrix-react-sdk and if I'm reading them correctly, they default to enabled == false if the capability is missing.

SHOULD seemed sufficient here because if a client would still call the endpoint, it would simply receive an error response which it must be prepared to handle in any case.

@Johennes Johennes marked this pull request as ready for review July 12, 2024 13:36
@Johennes Johennes requested a review from a team as a code owner July 12, 2024 13:36
Copy link
Member

@anoadragon453 anoadragon453 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This LGTM, and was a glaring omission. Thanks for adding it!

@anoadragon453 anoadragon453 merged commit d9c447e into matrix-org:main Jul 19, 2024
12 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

m.get_login_token capability is not documented
2 participants