Skip to content
This repository has been archived by the owner on Apr 26, 2024. It is now read-only.

Client / Server Auth Refactor #126

Merged
merged 49 commits into from
Apr 28, 2015
Merged

Client / Server Auth Refactor #126

merged 49 commits into from
Apr 28, 2015

Conversation

dbkr
Copy link
Member

@dbkr dbkr commented Apr 19, 2015

...including password reset.

dbkr added 30 commits March 23, 2015 14:20
@dbkr
Implement password changing (finally) along with a start on making cl…
d98660a 
…ient/server auth more general.
@dbkr
pep8 / pyflakes
78adccf
@dbkr
Make deleting other access tokens when you change your password actua…
d19e79e 
…lly work
@dbkr
1) Pushers are now associated with an access token
c7023f2 
2) Change places where we mean unauthenticated to 401, not 403, in C/S v2: hack so it stays as 403 in v1 because web client relies on it.
@dbkr
unused import
9aa0224
@dbkr
Don't test exact equality of the list: as long as it has the fields w…
438a21c 
…e expect, that's just fine. I added the user_id (as in database pkey) and it broke: no point testing what that comes out as: it's determined by the db.
@dbkr
Fix tests
ce2766d
@dbkr
Allow multiple pushers for a single app ID & pushkey, honouring the '…
c1a256c 
…append' flag in the API.
@dbkr
pep8 blank lines
df4c12c
@dbkr
Delete pushers when changing password
a32e876
@dbkr
pep8
6f4f7e4
@dbkr
New registration for C/S API v2. Only ReCAPTCHA working currently.
59bf16e
@dbkr
Add original, unmodified CAPTCHA-SETUP from the webclient repo before…
46183cc 
… modifying (captcha setup is now purely on the HS).
@dbkr
Update CAPTCHA_SETUP (it continues to ignore fallback, but I guess I …
4891c4f 
…should fix it so that doesn't need the key in two different places)
@dbkr
pep8
9f642a9
@dbkr
Grammar and deduplication
d18e777
@dbkr
Make docs a bit more true
f129ee1
@dbkr
Completely replace fallback auth for C/S V2:
e9c908e 
 * Now only the auth part goes to fallback, not the whole operation
 * Auth fallback is a normal API endpoint, not a static page
 * Params like the recaptcha pubkey can just live in the config
Involves a little engineering on JsonResource so its servlets aren't always forced to return JSON. I should document this more, in fact I'll do that now.
@dbkr
Explain how I justified to myself making JsonResource not always send…
c5bf034 
… JSON.
@dbkr
Add shared secret auth into register v2 and switch the script over.
70a84f1
@dbkr
pep8
41cd778
@dbkr
Throw sensible errors on not-json when allowing empty body
6b59650
@dbkr
Add app service auth back in to v2 register
4eb6d66
@dbkr
Regstration with email in v2
a19b739
@dbkr
Dummy login so we can do the first POST request to get login flows wi…
766bd8e 
…thout it just succeeding
@dbkr
Return user ID in use error straight away
ea1776f
@dbkr
Oops, left debugging in.
4cd5fb1
@dbkr
Need to yield the username check, otherwise very very weird things ha…
83b5544 
…ppen.
@dbkr
password -> account servlet and add start of an 'add 3pid' endpoint
94e1e58
@dbkr
Register the 3pid servlet
bf5e54f
dbkr added 16 commits April 17, 2015 13:51
NegativeMjark
NegativeMjark reviewed Apr 27, 2015
View reviewed changes
synapse/rest/client/v2_alpha/account.py
if 'bind' in body and body['bind']:
logger.debug("Binding emails %s to %s" % (
threepid, auth_user.to_string()
))
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

You don't need to call "% ()" explicitly when logging:

logging.debug("Binding emails %s to %s", threepid, auth_user.to_string())

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ah, thanks for spotting.

NegativeMjark
NegativeMjark reviewed Apr 27, 2015
View reviewed changes
synapse/handlers/auth.py
defer.returnValue((False, ret, clientdict))

@defer.inlineCallbacks
def add_oob_auth(self, stagetype, authdict, clientip):
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think this could do with some doc string to explain what "add_oob_auth" does and what the return value means.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Done

@NegativeMjark
Copy link
Contributor

LGTM

NegativeMjark added a commit that referenced this pull request Apr 28, 2015
@NegativeMjark
Merge pull request #126 from matrix-org/csauth
9182f87 
Client / Server Auth Refactor
@NegativeMjark NegativeMjark merged commit 9182f87 into develop Apr 28, 2015
@erikjohnston erikjohnston deleted the csauth branch July 21, 2015 09:01
@turt2live turt2live mentioned this pull request Jul 23, 2019
Closed
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@dbkr @NegativeMjark