1ece06273e 
								
							
								 
							
						 
						
							
							
								
								Handle PartialDownloadError in CAS login  
							
							
							
						 
						
							2017-03-14 13:37:36 +00:00  
				
					
						
							
							
								 
						
							
							
								7eae6eaa2f 
								
							
								 
							
						 
						
							
							
								
								Revert "Support registration & login with phone number"  
							
							
							
						 
						
							2017-03-13 09:59:33 +00:00  
				
					
						
							
							
								 
						
							
							
								727124a762 
								
							
								 
							
						 
						
							
							
								
								Not any more, it doesn't  
							
							
							
						 
						
							2017-03-08 19:00:23 +00:00  
				
					
						
							
							
								 
						
							
							
								65d43f3ca5 
								
							
								 
							
						 
						
							
							
								
								Minor fixes from PR feedback  
							
							
							
						 
						
							2017-03-08 11:48:43 +00:00  
				
					
						
							
							
								 
						
							
							
								88df6c0c9a 
								
							
								 
							
						 
						
							
							
								
								Factor out msisdn canonicalisation  
							
							... 
							
							
							
							Plus a couple of other minor fixes 
							
						 
						
							2017-03-08 11:03:39 +00:00  
				
					
						
							
							
								 
						
							
							
								402a7bf63d 
								
							
								 
							
						 
						
							
							
								
								Fix pep8  
							
							
							
						 
						
							2017-03-08 09:33:40 +00:00  
				
					
						
							
							
								 
						
							
							
								00466e2feb 
								
							
								 
							
						 
						
							
							
								
								Support new login format  
							
							... 
							
							
							
							https://docs.google.com/document/d/1-6ZSSW5YvCGhVFDyD2QExAUAdpCWjccvJT5xiyTTG2Y/edit#  
						
							2017-03-07 16:37:23 +00:00  
				
					
						
							
							
								 
						
							
							
								51adaac953 
								
							
								 
							
						 
						
							
							
								
								Fix email push in pusher worker  
							
							... 
							
							
							
							This was broken when device list updates were implemented, as Mailer
could no longer instantiate an AuthHandler due to a dependency on
federation sending. 
							
						 
						
							2017-02-02 10:53:36 +00:00  
				
					
						
							
							
								 
						
							
							
								8c5009b628 
								
							
								 
							
						 
						
							
							
								
								Lowercase all email addresses before querying db  
							
							... 
							
							
							
							Since we store all emails in the DB in lowercase
(https://github.com/matrix-org/synapse/pull/1170 ) 
							
						 
						
							2017-01-18 13:25:56 +00:00  
				
					
						
							
							
								 
						
							
							
								5c4edc83b5 
								
							
								 
							
						 
						
							
							
								
								Stop generating refresh tokens  
							
							... 
							
							
							
							Since we're not doing refresh tokens any more, we should start killing off the
dead code paths. /tokenrefresh itself is a bit of a thornier subject, since
there might be apps out there using it, but we can at least not generate
refresh tokens on new logins. 
							
						 
						
							2016-11-28 10:13:01 +00:00  
				
					
						
							
							
								 
						
							
							
								29205e9596 
								
							
								 
							
						 
						
							
							
								
								Conform better to the CAS protocol specification  
							
							... 
							
							
							
							Redirect to CAS's /login endpoint properly, and
don't require an <attributes> element.
Signed-off-by: Shell Turner <cam.turn@gmail.com> 
							
						 
						
							2016-09-09 21:20:14 +01:00  
				
					
						
							
							
								 
						
							
							
								866a5320de 
								
							
								 
							
						 
						
							
							
								
								Dont invoke get_handlers fromClientV1RestServlet  
							
							... 
							
							
							
							hs.get_handlers() can not be invoked from split out processes. Moving
the invocations down a level means that we can slowly split out
individual servlets. 
							
						 
						
							2016-08-12 10:03:19 +01:00  
				
					
						
							
							
								 
						
							
							
								cd41c6ece2 
								
							
								 
							
						 
						
							
							
								
								Merge pull request  #995  from matrix-org/rav/clean_up_cas_login  
							
							... 
							
							
							
							Clean up CAS login code 
							
						 
						
							2016-08-09 10:21:56 +01:00  
				
					
						
							
							
								 
						
							
							
								65666fedd5 
								
							
								 
							
						 
						
							
							
								
								Clean up CAS login code  
							
							... 
							
							
							
							Remove some apparently unused code.
Clean up parse_cas_response, mostly to catch the exception if the CAS response
isn't valid XML. 
							
						 
						
							2016-08-08 17:17:25 +01:00  
				
					
						
							
							
								 
						
							
							
								0682ca04b3 
								
							
								 
							
						 
						
							
							
								
								Fix CAS login  
							
							... 
							
							
							
							Attempting to log in with CAS was giving a 500 error. 
							
						 
						
							2016-08-08 17:01:30 +01:00  
				
					
						
							
							
								 
						
							
							
								436bffd15f 
								
							
								 
							
						 
						
							
							
								
								Implement deleting devices  
							
							
							
						 
						
							2016-07-26 07:35:48 +01:00  
				
					
						
							
							
								 
						
							
							
								f863a52cea 
								
							
								 
							
						 
						
							
							
								
								Add device_id support to /login  
							
							... 
							
							
							
							Add a 'devices' table to the storage, as well as a 'device_id' column to
refresh_tokens.
Allow the client to pass a device_id, and initial_device_display_name, to
/login. If login is successful, then register the device in the devices table
if it wasn't known already. If no device_id was supplied, make one up.
Associate the device_id with the access token and refresh token, so that we can
get at it again later. Ensure that the device_id is copied from the refresh
token to the access_token when the token is refreshed. 
							
						 
						
							2016-07-18 16:39:44 +01:00  
				
					
						
							
							
								 
						
							
							
								dcfd71aa4c 
								
							
								 
							
						 
						
							
							
								
								Refactor login flow  
							
							... 
							
							
							
							Make sure that we have the canonical user_id *before* calling
get_login_tuple_for_user_id.
Replace login_with_password with a method which just validates the password,
and have the caller call get_login_tuple_for_user_id. This brings the password
flow into line with the other flows, and will give us a place to register the
device_id if necessary. 
							
						 
						
							2016-07-18 15:23:54 +01:00  
				
					
						
							
							
								 
						
							
							
								4a10510cd5 
								
							
								 
							
						 
						
							
							
								
								Split out the auth handler  
							
							
							
						 
						
							2016-06-02 13:31:45 +01:00  
				
					
						
							
							
								 
						
							
							
								52ecbc2843 
								
							
								 
							
						 
						
							
							
								
								Make pyjwt dependency optional  
							
							
							
						 
						
							2016-04-25 14:30:15 +01:00  
				
					
						
							
							
								 
						
							
							
								565c2edb0a 
								
							
								 
							
						 
						
							
							
								
								Fix issues with JWT login  
							
							
							
						 
						
							2016-04-21 18:10:48 +02:00  
				
					
						
							
							
								 
						
							
							
								3f9948a069 
								
							
								 
							
						 
						
							
							
								
								Add JWT support  
							
							
							
						 
						
							2016-03-29 14:36:36 +02:00  
				
					
						
							
							
								 
						
							
							
								b7dbe5147a 
								
							
								 
							
						 
						
							
							
								
								Add a parse_json_object function  
							
							... 
							
							
							
							to deduplicate all the copy+pasted _parse_json functions. Also document
the parse_.* functions. 
							
						 
						
							2016-03-09 11:26:26 +00:00  
				
					
						
							
							
								 
						
							
							
								7076082ae6 
								
							
								 
							
						 
						
							
							
								
								Fix relative imports so they work in both py3 and py27  
							
							
							
						 
						
							2016-03-08 11:45:50 +00:00  
				
					
						
							
							
								 
						
							
							
								239badea9b 
								
							
								 
							
						 
						
							
							
								
								Use syntax that works on both py2.7 and py3  
							
							
							
						 
						
							2016-03-07 20:13:10 +00:00  
				
					
						
							
							
								 
						
							
							
								87acd8fb07 
								
							
								 
							
						 
						
							
							
								
								Fix to appease the PEP8 dragon  
							
							
							
						 
						
							2016-02-26 12:05:38 +01:00  
				
					
						
							
							
								 
						
							
							
								a53774721a 
								
							
								 
							
						 
						
							
							
								
								Add error codes for malformed/bad JSON in /login  
							
							... 
							
							
							
							Signed-off-by: Gergely Polonkai <gergely@polonkaieu> 
							
						 
						
							2016-02-26 10:22:35 +01:00  
				
					
						
							
							
								 
						
							
							
								58c9f20692 
								
							
								 
							
						 
						
							
							
								
								Catch the exceptions thrown by twisted when you write to a closed connection  
							
							
							
						 
						
							2016-02-12 13:46:59 +00:00  
				
					
						
							
							
								 
						
							
							
								d83d004ccd 
								
							
								 
							
						 
						
							
							
								
								Fix flake8 warnings for new flake8  
							
							
							
						 
						
							2016-02-02 17:18:50 +00:00  
				
					
						
							
							
								 
						
							
							
								6c28ac260c 
								
							
								 
							
						 
						
							
							
								
								copyrights  
							
							
							
						 
						
							2016-01-07 04:26:29 +00:00  
				
					
						
							
							
								 
						
							
							
								32d9fd0b26 
								
							
								 
							
						 
						
							
							
								
								Expose /login under r0  
							
							... 
							
							
							
							The spec says /login should be available at r0 and 'unstable', so make it so. 
							
						 
						
							2016-01-02 17:24:28 +00:00  
				
					
						
							
							
								 
						
							
							
								872c134807 
								
							
								 
							
						 
						
							
							
								
								Update endpoints to reflect current spec  
							
							
							
						 
						
							2015-12-02 15:45:04 +00:00  
				
					
						
							
							
								 
						
							
							
								37b2d69bbc 
								
							
								 
							
						 
						
							
							
								
								Reuse a single http client, rather than creating new ones  
							
							
							
						 
						
							2015-12-02 11:36:02 +00:00  
				
					
						
							
							
								 
						
							
							
								14d7acfad4 
								
							
								 
							
						 
						
							
							
								
								Host /unstable and /r0 versions of r0 APIs  
							
							
							
						 
						
							2015-12-01 17:34:32 +00:00  
				
					
						
							
							
								 
						
							
							
								e3dae653e8 
								
							
								 
							
						 
						
							
							
								
								Comment  
							
							
							
						 
						
							2015-11-20 14:05:22 +00:00  
				
					
						
							
							
								 
						
							
							
								37de8a7f4a 
								
							
								 
							
						 
						
							
							
								
								Remove m.login.token from advertised flows.  
							
							
							
						 
						
							2015-11-19 16:16:49 +00:00  
				
					
						
							
							
								 
						
							
							
								ffdc8e5e1c 
								
							
								 
							
						 
						
							
							
								
								Snakes not camels  
							
							
							
						 
						
							2015-11-11 14:26:47 +00:00  
				
					
						
							
							
								 
						
							
							
								2b779af10f 
								
							
								 
							
						 
						
							
							
								
								Minor review fixes  
							
							
							
						 
						
							2015-11-11 11:21:43 +00:00  
				
					
						
							
							
								 
						
							
							
								414a4a71b4 
								
							
								 
							
						 
						
							
							
								
								Allow hs to do CAS login completely and issue the client with a login token that can be redeemed for the usual successful login response  
							
							
							
						 
						
							2015-11-05 14:06:48 +00:00  
				
					
						
							
							
								 
						
							
							
								259d10f0e4 
								
							
								 
							
						 
						
							
							
								
								Merge branch 'release-v0.10.1' of github.com:matrix-org/synapse into develop  
							
							
							
						 
						
							2015-10-23 11:11:56 +01:00  
				
					
						
							
							
								 
						
							
							
								5025ba959f 
								
							
								 
							
						 
						
							
							
								
								Add config option to disable password login  
							
							
							
						 
						
							2015-10-22 10:37:04 +01:00  
				
					
						
							
							
								 
						
							
							
								ede07434e0 
								
							
								 
							
						 
						
							
							
								
								Use 403 and message to match handlers/auth  
							
							
							
						 
						
							2015-10-21 09:42:07 +01:00  
				
					
						
							
							
								 
						
							
							
								b02a342750 
								
							
								 
							
						 
						
							
							
								
								Don't 500 when the email doesn't map to a valid user ID.  
							
							
							
						 
						
							2015-10-20 11:07:50 +01:00  
				
					
						
							
							
								 
						
							
							
								1a934e8bfd 
								
							
								 
							
						 
						
							
							
								
								synapse.client.v1.login.LoginFallbackRestServlet and synapse.client.v1.login.PasswordResetRestServlet are unused  
							
							
							
						 
						
							2015-10-15 11:09:57 +01:00  
				
					
						
							
							
								 
						
							
							
								739464fbc5 
								
							
								 
							
						 
						
							
							
								
								Add a comment to clarify why we split on closing curly brace when reading CAS attribute tags  
							
							
							
						 
						
							2015-10-12 16:02:17 +01:00  
				
					
						
							
							
								 
						
							
							
								83b464e4f7 
								
							
								 
							
						 
						
							
							
								
								Unpack dictionary in for loop for nicer syntax  
							
							
							
						 
						
							2015-10-12 15:05:34 +01:00  
				
					
						
							
							
								 
						
							
							
								7f8fdc9814 
								
							
								 
							
						 
						
							
							
								
								Remove not required parenthesis  
							
							
							
						 
						
							2015-10-12 14:45:24 +01:00  
				
					
						
							
							
								 
						
							
							
								01a5f1991c 
								
							
								 
							
						 
						
							
							
								
								Support multiple required attributes in CAS response, and in a nicer config format too  
							
							
							
						 
						
							2015-10-12 14:43:17 +01:00  
				
					
						
							
							
								 
						
							
							
								76421c496d 
								
							
								 
							
						 
						
							
							
								
								Allow optional config params for a required attribute and it's value, if specified any CAS user must have the given attribute and the value must equal  
							
							
							
						 
						
							2015-10-12 11:11:49 +01:00  
				
					
						
							
							
								 
						
							
							
								7845f62c22 
								
							
								 
							
						 
						
							
							
								
								Parse both user and attributes from CAS response  
							
							
							
						 
						
							2015-10-12 10:55:13 +01:00