MirrorHub/synapse
0
0
Fork 1
mirror of https://mau.dev/maunium/synapse.git synced 2024-06-18 10:38:21 +02:00
Code Issues Projects Releases Wiki Activity
synapse/synapse/storage/registration.py

564 lines
19 KiB
Python
Raw Normal View History

Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
# -*- coding: utf-8 -*-
Allow guests to upgrade their accounts
2016-01-05 19:01:18 +01:00
# Copyright 2014 - 2016 OpenMarket Ltd
Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
add in whitespace after copyright statements to improve legibility
2014-08-13 04:14:34 +02:00
Allocate guest user IDs numericcally The current random IDs are ugly and confusing when presented in UIs. This makes them prettier and easier to read. Also, disable non-automated registration of numeric IDs so that we don't need to worry so much about people carving out our automated address space and us needing to keep retrying ID registration.
2016-02-05 12:22:30 +01:00
import re
Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
from twisted.internet import defer
Be more helpful when failing to register/login, stating why (communication error, user in user, wrong credentials, etc). Make the HS send M_USER_IN_USE.
2014-08-14 17:03:04 +02:00
from synapse.api.errors import StoreError, Codes
Implement deleting devices
2016-07-22 15:52:53 +02:00
from synapse.storage import background_updates
pep8
2016-04-06 17:50:47 +02:00
from synapse.util.caches.descriptors import cached, cachedInlineCallbacks
Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
Implement deleting devices
2016-07-22 15:52:53 +02:00
class RegistrationStore(background_updates.BackgroundUpdateStore):
Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
def __init__(self, hs):
super(RegistrationStore, self).__init__(hs)
self.clock = hs.get_clock()
Implement deleting devices
2016-07-22 15:52:53 +02:00
self.register_background_index_update(
"access_tokens_device_index",
index_name="access_tokens_device_id",
table="access_tokens",
columns=["user_id", "device_id"],
)
self.register_background_index_update(
"refresh_tokens_device_index",
index_name="refresh_tokens_device_id",
table="refresh_tokens",
columns=["user_id", "device_id"],
)
Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
@defer.inlineCallbacks
Add device_id support to /login Add a 'devices' table to the storage, as well as a 'device_id' column to refresh_tokens. Allow the client to pass a device_id, and initial_device_display_name, to /login. If login is successful, then register the device in the devices table if it wasn't known already. If no device_id was supplied, make one up. Associate the device_id with the access token and refresh token, so that we can get at it again later. Ensure that the device_id is copied from the refresh token to the access_token when the token is refreshed.
2016-07-15 14:19:07 +02:00
def add_access_token_to_user(self, user_id, token, device_id=None):
Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
"""Adds an access token for the given user.
Args:
user_id (str): The user ID.
token (str): The new access token to add.
Add device_id support to /login Add a 'devices' table to the storage, as well as a 'device_id' column to refresh_tokens. Allow the client to pass a device_id, and initial_device_display_name, to /login. If login is successful, then register the device in the devices table if it wasn't known already. If no device_id was supplied, make one up. Associate the device_id with the access token and refresh token, so that we can get at it again later. Ensure that the device_id is copied from the refresh token to the access_token when the token is refreshed.
2016-07-15 14:19:07 +02:00
device_id (str): ID of the device to associate with the access
token
Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
Raises:
StoreError if there was a problem adding this.
"""
Load the current id in the IdGenerator constructor Rather than loading them lazily. This allows us to remove all the yield statements and spurious arguments for the get_next methods. It also allows us to replace all instances of get_next_txn with get_next since get_next no longer needs to access the db.
2016-03-01 15:32:56 +01:00
next_id = self._access_tokens_id_gen.get_next()
Don't use AUTOINCREMENT, use an in memory version
2015-04-07 13:05:36 +02:00
Add missing yield in storage func
2015-04-15 11:24:07 +02:00
yield self._simple_insert(
Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
"access_tokens",
{
Don't use AUTOINCREMENT, use an in memory version
2015-04-07 13:05:36 +02:00
"id": next_id,
Convert storage layer to be mysql compatible
2015-03-19 16:59:48 +01:00
"user_id": user_id,
Add device_id support to /login Add a 'devices' table to the storage, as well as a 'device_id' column to refresh_tokens. Allow the client to pass a device_id, and initial_device_display_name, to /login. If login is successful, then register the device in the devices table if it wasn't known already. If no device_id was supplied, make one up. Associate the device_id with the access token and refresh token, so that we can get at it again later. Ensure that the device_id is copied from the refresh token to the access_token when the token is refreshed.
2016-07-15 14:19:07 +02:00
"token": token,
"device_id": device_id,
Give sensible names for '_simple_...' transactions
2015-03-20 16:59:18 +01:00
},
desc="add_access_token_to_user",
Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
)
/tokenrefresh POST endpoint This allows refresh tokens to be exchanged for (access_token, refresh_token). It also starts issuing them on login, though no clients currently interpret them.
2015-08-20 17:21:35 +02:00
@defer.inlineCallbacks
Add device_id support to /login Add a 'devices' table to the storage, as well as a 'device_id' column to refresh_tokens. Allow the client to pass a device_id, and initial_device_display_name, to /login. If login is successful, then register the device in the devices table if it wasn't known already. If no device_id was supplied, make one up. Associate the device_id with the access token and refresh token, so that we can get at it again later. Ensure that the device_id is copied from the refresh token to the access_token when the token is refreshed.
2016-07-15 14:19:07 +02:00
def add_refresh_token_to_user(self, user_id, token, device_id=None):
/tokenrefresh POST endpoint This allows refresh tokens to be exchanged for (access_token, refresh_token). It also starts issuing them on login, though no clients currently interpret them.
2015-08-20 17:21:35 +02:00
"""Adds a refresh token for the given user.
Args:
user_id (str): The user ID.
token (str): The new refresh token to add.
Add device_id support to /login Add a 'devices' table to the storage, as well as a 'device_id' column to refresh_tokens. Allow the client to pass a device_id, and initial_device_display_name, to /login. If login is successful, then register the device in the devices table if it wasn't known already. If no device_id was supplied, make one up. Associate the device_id with the access token and refresh token, so that we can get at it again later. Ensure that the device_id is copied from the refresh token to the access_token when the token is refreshed.
2016-07-15 14:19:07 +02:00
device_id (str): ID of the device to associate with the access
token
/tokenrefresh POST endpoint This allows refresh tokens to be exchanged for (access_token, refresh_token). It also starts issuing them on login, though no clients currently interpret them.
2015-08-20 17:21:35 +02:00
Raises:
StoreError if there was a problem adding this.
"""
Load the current id in the IdGenerator constructor Rather than loading them lazily. This allows us to remove all the yield statements and spurious arguments for the get_next methods. It also allows us to replace all instances of get_next_txn with get_next since get_next no longer needs to access the db.
2016-03-01 15:32:56 +01:00
next_id = self._refresh_tokens_id_gen.get_next()
/tokenrefresh POST endpoint This allows refresh tokens to be exchanged for (access_token, refresh_token). It also starts issuing them on login, though no clients currently interpret them.
2015-08-20 17:21:35 +02:00
yield self._simple_insert(
"refresh_tokens",
{
"id": next_id,
"user_id": user_id,
Add device_id support to /login Add a 'devices' table to the storage, as well as a 'device_id' column to refresh_tokens. Allow the client to pass a device_id, and initial_device_display_name, to /login. If login is successful, then register the device in the devices table if it wasn't known already. If no device_id was supplied, make one up. Associate the device_id with the access token and refresh token, so that we can get at it again later. Ensure that the device_id is copied from the refresh token to the access_token when the token is refreshed.
2016-07-15 14:19:07 +02:00
"token": token,
"device_id": device_id,
/tokenrefresh POST endpoint This allows refresh tokens to be exchanged for (access_token, refresh_token). It also starts issuing them on login, though no clients currently interpret them.
2015-08-20 17:21:35 +02:00
},
desc="add_refresh_token_to_user",
)
Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
@defer.inlineCallbacks
Further registration refactoring * `RegistrationHandler.appservice_register` no longer issues an access token: instead it is left for the caller to do it. (There are two of these, one in `synapse/rest/client/v1/register.py`, which now simply calls `AuthHandler.issue_access_token`, and the other in `synapse/rest/client/v2_alpha/register.py`, which is covered below). * In `synapse/rest/client/v2_alpha/register.py`, move the generation of access_tokens into `_create_registration_details`. This means that the normal flow no longer needs to call `AuthHandler.issue_access_token`; the shared-secret flow can tell `RegistrationHandler.register` not to generate a token; and the appservice flow continues to work despite the above change.
2016-07-19 19:46:19 +02:00
def register(self, user_id, token=None, password_hash=None,
Remove registered_users from the distributor. The only place that was observed was to set the profile. I've made it so that the profile is set within store.register in the same transaction that creates the user. This required some slight changes to the registration code for upgrading guest users, since it previously relied on the distributor swallowing errors if the profile already existed.
2016-06-17 20:14:16 +02:00
was_guest=False, make_guest=False, appservice_id=None,
Add an admin option to shared secret registration
2016-07-05 18:30:22 +02:00
create_profile_with_localpart=None, admin=False):
Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
"""Attempts to register an account.
Args:
user_id (str): The desired user ID to register.
Further registration refactoring * `RegistrationHandler.appservice_register` no longer issues an access token: instead it is left for the caller to do it. (There are two of these, one in `synapse/rest/client/v1/register.py`, which now simply calls `AuthHandler.issue_access_token`, and the other in `synapse/rest/client/v2_alpha/register.py`, which is covered below). * In `synapse/rest/client/v2_alpha/register.py`, move the generation of access_tokens into `_create_registration_details`. This means that the normal flow no longer needs to call `AuthHandler.issue_access_token`; the shared-secret flow can tell `RegistrationHandler.register` not to generate a token; and the appservice flow continues to work despite the above change.
2016-07-19 19:46:19 +02:00
token (str): The desired access token to use for this user. If this
is not None, the given access token is associated with the user
id.
Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
password_hash (str): Optional. The password hash for this user.
Allow guests to upgrade their accounts
2016-01-05 19:01:18 +01:00
was_guest (bool): Optional. Whether this is a guest account being
upgraded to a non-guest account.
Add is_guest flag to users db to track whether a user is a guest user or not. Use this so we can run _filter_events_for_client when calculating event_push_actions.
2016-01-06 12:38:09 +01:00
make_guest (boolean): True if the the new user should be guest,
false to add a regular user account.
Store appservice ID on register
2016-03-10 16:58:22 +01:00
appservice_id (str): The ID of the appservice registering the user.
Remove registered_users from the distributor. The only place that was observed was to set the profile. I've made it so that the profile is set within store.register in the same transaction that creates the user. This required some slight changes to the registration code for upgrading guest users, since it previously relied on the distributor swallowing errors if the profile already existed.
2016-06-17 20:14:16 +02:00
create_profile_with_localpart (str): Optionally create a profile for
the given localpart.
Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
Raises:
StoreError if the user_id could not be registered.
"""
Add transaction level logging and timing information. Add a _simple_delete method
2014-10-28 12:18:04 +01:00
yield self.runInteraction(
"register",
Store appservice ID on register
2016-03-10 16:58:22 +01:00
self._register,
user_id,
token,
password_hash,
was_guest,
make_guest,
Remove registered_users from the distributor. The only place that was observed was to set the profile. I've made it so that the profile is set within store.register in the same transaction that creates the user. This required some slight changes to the registration code for upgrading guest users, since it previously relied on the distributor swallowing errors if the profile already existed.
2016-06-17 20:14:16 +02:00
appservice_id,
create_profile_with_localpart,
Add an admin option to shared secret registration
2016-07-05 18:30:22 +02:00
admin
Add transaction level logging and timing information. Add a _simple_delete method
2014-10-28 12:18:04 +01:00
)
Add cache to get_user_by_id
2016-05-09 11:08:21 +02:00
self.get_user_by_id.invalidate((user_id,))
Add is_guest flag to users db to track whether a user is a guest user or not. Use this so we can run _filter_events_for_client when calculating event_push_actions.
2016-01-06 12:38:09 +01:00
self.is_guest.invalidate((user_id,))
Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
Store appservice ID on register
2016-03-10 16:58:22 +01:00
def _register(
self,
txn,
user_id,
token,
password_hash,
was_guest,
make_guest,
Remove registered_users from the distributor. The only place that was observed was to set the profile. I've made it so that the profile is set within store.register in the same transaction that creates the user. This required some slight changes to the registration code for upgrading guest users, since it previously relied on the distributor swallowing errors if the profile already existed.
2016-06-17 20:14:16 +02:00
appservice_id,
create_profile_with_localpart,
Add an admin option to shared secret registration
2016-07-05 18:30:22 +02:00
admin,
Store appservice ID on register
2016-03-10 16:58:22 +01:00
):
Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
now = int(self.clock.time())
Load the current id in the IdGenerator constructor Rather than loading them lazily. This allows us to remove all the yield statements and spurious arguments for the get_next methods. It also allows us to replace all instances of get_next_txn with get_next since get_next no longer needs to access the db.
2016-03-01 15:32:56 +01:00
next_id = self._access_tokens_id_gen.get_next()
Don't use AUTOINCREMENT, use an in memory version
2015-04-07 13:05:36 +02:00
Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
try:
Allow guests to upgrade their accounts
2016-01-05 19:01:18 +01:00
if was_guest:
Ensure that the guest user is in the database when upgrading accounts
2016-07-08 16:15:55 +02:00
# Ensure that the guest user actually exists
Add a comment explaining allow_none
2016-07-08 16:57:06 +02:00
# ``allow_none=False`` makes this raise an exception
# if the row isn't in the database.
Ensure that the guest user is in the database when upgrading accounts
2016-07-08 16:15:55 +02:00
self._simple_select_one_txn(
txn,
"users",
keyvalues={
"name": user_id,
"is_guest": 1,
},
retcols=("name",),
allow_none=False,
)
Add an admin option to shared secret registration
2016-07-05 18:30:22 +02:00
self._simple_update_one_txn(
txn,
"users",
keyvalues={
"name": user_id,
Ensure that the guest user is in the database when upgrading accounts
2016-07-08 16:15:55 +02:00
"is_guest": 1,
Add an admin option to shared secret registration
2016-07-05 18:30:22 +02:00
},
updatevalues={
"password_hash": password_hash,
"upgrade_ts": now,
"is_guest": 1 if make_guest else 0,
"appservice_id": appservice_id,
Fix for postgres
2016-07-05 18:34:25 +02:00
"admin": 1 if admin else 0,
Add an admin option to shared secret registration
2016-07-05 18:30:22 +02:00
}
)
Allow guests to upgrade their accounts
2016-01-05 19:01:18 +01:00
else:
Add an admin option to shared secret registration
2016-07-05 18:30:22 +02:00
self._simple_insert_txn(
txn,
"users",
values={
"name": user_id,
"password_hash": password_hash,
"creation_ts": now,
"is_guest": 1 if make_guest else 0,
"appservice_id": appservice_id,
Fix for postgres
2016-07-05 18:34:25 +02:00
"admin": 1 if admin else 0,
Add an admin option to shared secret registration
2016-07-05 18:30:22 +02:00
}
)
Use generic db exceptions rather than sqlite3 specific ones
2015-04-08 17:53:48 +02:00
except self.database_engine.module.IntegrityError:
Fix pep8 codestyle warnings
2014-11-20 18:26:36 +01:00
raise StoreError(
400, "User ID already taken.", errcode=Codes.USER_IN_USE
)
Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
Allow guests to register and call /events?room_id= This follows the same flows-based flow as regular registration, but as the only implemented flow has no requirements, it auto-succeeds. In the future, other flows (e.g. captcha) may be required, so clients should treat this like the regular registration flow choices.
2015-11-04 18:29:07 +01:00
if token:
# it's possible for this to get a conflict, but only for a single user
# since tokens are namespaced based on their user ID
txn.execute(
"INSERT INTO access_tokens(id, user_id, token)"
" VALUES (?,?,?)",
(next_id, user_id, token,)
)
Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
Remove registered_users from the distributor. The only place that was observed was to set the profile. I've made it so that the profile is set within store.register in the same transaction that creates the user. This required some slight changes to the registration code for upgrading guest users, since it previously relied on the distributor swallowing errors if the profile already existed.
2016-06-17 20:14:16 +02:00
if create_profile_with_localpart:
txn.execute(
"INSERT INTO profiles(user_id) VALUES (?)",
(create_profile_with_localpart,)
)
Add cache to get_user_by_id
2016-05-09 11:08:21 +02:00
@cached()
Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
def get_user_by_id(self, user_id):
Merge branch 'develop' of github.com:matrix-org/synapse into postgres
2015-04-28 14:39:42 +02:00
return self._simple_select_one(
Fix unicode database support
2015-03-25 18:15:20 +01:00
table="users",
keyvalues={
"name": user_id,
},
Add is_guest flag to users db to track whether a user is a guest user or not. Use this so we can run _filter_events_for_client when calculating event_push_actions.
2016-01-06 12:38:09 +01:00
retcols=["name", "password_hash", "is_guest"],
Fix unicode database support
2015-03-25 18:15:20 +01:00
allow_none=True,
Add descriptions
2016-02-03 17:22:35 +01:00
desc="get_user_by_id",
Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
)
Merge erikj/user_dedup to develop
2015-08-26 14:42:45 +02:00
def get_users_by_id_case_insensitive(self, user_id):
"""Gets users that match user_id case insensitively.
Returns a mapping of user_id -> password_hash.
"""
def f(txn):
sql = (
Adding is_guest here won't work because it just constructs a dict of uid -> password hash
2016-01-06 18:16:02 +01:00
"SELECT name, password_hash FROM users"
Merge erikj/user_dedup to develop
2015-08-26 14:42:45 +02:00
" WHERE lower(name) = lower(?)"
)
txn.execute(sql, (user_id,))
return dict(txn.fetchall())
return self.runInteraction("get_users_by_id_case_insensitive", f)
Make deleting other access tokens when you change your password actually work
2015-03-24 16:33:48 +01:00
@defer.inlineCallbacks
Implement password changing (finally) along with a start on making client/server auth more general.
2015-03-23 15:20:28 +01:00
def user_set_password_hash(self, user_id, password_hash):
"""
NB. This does *not* evict any cache because the one use for this
removes most of the entries subsequently anyway so it would be
pointless. Use flush_user separately.
"""
Make deleting other access tokens when you change your password actually work
2015-03-24 16:33:48 +01:00
yield self._simple_update_one('users', {
Implement password changing (finally) along with a start on making client/server auth more general.
2015-03-23 15:20:28 +01:00
'name': user_id
}, {
'password_hash': password_hash
})
Add cache to get_user_by_id
2016-05-09 11:08:21 +02:00
self.get_user_by_id.invalidate((user_id,))
Implement password changing (finally) along with a start on making client/server auth more general.
2015-03-23 15:20:28 +01:00
Make deleting other access tokens when you change your password actually work
2015-03-24 16:33:48 +01:00
@defer.inlineCallbacks
Refactor user_delete_access_tokens. Invalidate get_user_by_access_token to slaves.
2016-08-15 18:04:39 +02:00
def user_delete_access_tokens(self, user_id, except_token_id=None,
Delete refresh tokens when deleting devices
2016-07-26 12:09:47 +02:00
device_id=None,
delete_refresh_tokens=False):
"""
Invalidate access/refresh tokens belonging to a user
Args:
user_id (str): ID of user the tokens belong to
Refactor user_delete_access_tokens. Invalidate get_user_by_access_token to slaves.
2016-08-15 18:04:39 +02:00
except_token_id (str): list of access_tokens IDs which should
Delete refresh tokens when deleting devices
2016-07-26 12:09:47 +02:00
*not* be deleted
device_id (str|None): ID of device the tokens are associated with.
If None, tokens associated with any device (or no device) will
be deleted
delete_refresh_tokens (bool): True to delete refresh tokens as
well as access tokens.
Returns:
defer.Deferred:
"""
Refactor user_delete_access_tokens. Invalidate get_user_by_access_token to slaves.
2016-08-15 18:04:39 +02:00
def f(txn):
keyvalues = {
"user_id": user_id,
}
Implement deleting devices
2016-07-22 15:52:53 +02:00
if device_id is not None:
Refactor user_delete_access_tokens. Invalidate get_user_by_access_token to slaves.
2016-08-15 18:04:39 +02:00
keyvalues["device_id"] = device_id
Implement deleting devices
2016-07-22 15:52:53 +02:00
Refactor user_delete_access_tokens. Invalidate get_user_by_access_token to slaves.
2016-08-15 18:04:39 +02:00
if delete_refresh_tokens:
self._simple_delete_txn(
txn,
table="refresh_tokens",
keyvalues=keyvalues,
Thats not how transactions work.
2016-03-11 17:45:27 +01:00
)
Implement logout
2016-03-11 17:27:50 +01:00
Refactor user_delete_access_tokens. Invalidate get_user_by_access_token to slaves.
2016-08-15 18:04:39 +02:00
items = keyvalues.items()
where_clause = " AND ".join(k + " = ?" for k, _ in items)
values = [v for _, v in items]
if except_token_id:
where_clause += " AND id != ?"
values.append(except_token_id)
Implement logout
2016-03-11 17:27:50 +01:00
Refactor user_delete_access_tokens. Invalidate get_user_by_access_token to slaves.
2016-08-15 18:04:39 +02:00
txn.execute(
"SELECT token FROM access_tokens WHERE %s" % where_clause,
values
)
rows = self.cursor_to_dict(txn)
Implement logout
2016-03-11 17:27:50 +01:00
Refactor user_delete_access_tokens. Invalidate get_user_by_access_token to slaves.
2016-08-15 18:04:39 +02:00
for row in rows:
self._invalidate_cache_and_stream(
txn, self.get_user_by_access_token, (row["token"],)
Implement logout
2016-03-11 17:27:50 +01:00
)
Refactor user_delete_access_tokens. Invalidate get_user_by_access_token to slaves.
2016-08-15 18:04:39 +02:00
txn.execute(
"DELETE FROM access_tokens WHERE %s" % where_clause,
values
Delete refresh tokens when deleting devices
2016-07-26 12:09:47 +02:00
)
yield self.runInteraction(
"user_delete_access_tokens", f,
)
Implement logout
2016-03-11 17:27:50 +01:00
def delete_access_token(self, access_token):
def f(txn):
self._simple_delete_one_txn(
txn,
table="access_tokens",
keyvalues={
"token": access_token
},
Fix cache invalidation so deleting access tokens (which we did when changing password) actually takes effect without HS restart. Reinstate the code to avoid logging out the session that changed the password, removed in 415c2f05491ce65a4fc34326519754cd1edd9c54
2016-03-11 14:14:18 +01:00
)
Implement logout
2016-03-11 17:27:50 +01:00
Refactor user_delete_access_tokens. Invalidate get_user_by_access_token to slaves.
2016-08-15 18:04:39 +02:00
self._invalidate_cache_and_stream(
txn, self.get_user_by_access_token, (access_token,)
)
Implement logout
2016-03-11 17:27:50 +01:00
return self.runInteraction("delete_access_token", f)
Fix unicode database support
2015-03-25 18:15:20 +01:00
@cached() annotate get_user_by_token() - achieves a minor DB performance improvement
2015-03-17 18:24:51 +01:00
@cached()
s/by_token/by_access_token/g We're about to have two kinds of token, access and refresh
2015-08-20 17:01:29 +02:00
def get_user_by_access_token(self, token):
Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
"""Get a user from the given access token.
Args:
token (str): The access token of a user.
Returns:
Fix typo
2016-07-26 14:32:15 +02:00
defer.Deferred: None, if the token did not match, otherwise dict
Delete refresh tokens when deleting devices
2016-07-26 12:09:47 +02:00
including the keys `name`, `is_guest`, `device_id`, `token_id`.
Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
"""
SYN-48: Implement WHOIS rest servlet
2014-09-29 15:59:52 +02:00
return self.runInteraction(
s/by_token/by_access_token/g We're about to have two kinds of token, access and refresh
2015-08-20 17:01:29 +02:00
"get_user_by_access_token",
SYN-48: Implement WHOIS rest servlet
2014-09-29 15:59:52 +02:00
self._query_for_auth,
token
)
Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
/tokenrefresh POST endpoint This allows refresh tokens to be exchanged for (access_token, refresh_token). It also starts issuing them on login, though no clients currently interpret them.
2015-08-20 17:21:35 +02:00
def exchange_refresh_token(self, refresh_token, token_generator):
Add device_id support to /login Add a 'devices' table to the storage, as well as a 'device_id' column to refresh_tokens. Allow the client to pass a device_id, and initial_device_display_name, to /login. If login is successful, then register the device in the devices table if it wasn't known already. If no device_id was supplied, make one up. Associate the device_id with the access token and refresh token, so that we can get at it again later. Ensure that the device_id is copied from the refresh token to the access_token when the token is refreshed.
2016-07-15 14:19:07 +02:00
"""Exchange a refresh token for a new one.
/tokenrefresh POST endpoint This allows refresh tokens to be exchanged for (access_token, refresh_token). It also starts issuing them on login, though no clients currently interpret them.
2015-08-20 17:21:35 +02:00
Doing so invalidates the old refresh token - refresh tokens are single
use.
Args:
Add device_id support to /login Add a 'devices' table to the storage, as well as a 'device_id' column to refresh_tokens. Allow the client to pass a device_id, and initial_device_display_name, to /login. If login is successful, then register the device in the devices table if it wasn't known already. If no device_id was supplied, make one up. Associate the device_id with the access token and refresh token, so that we can get at it again later. Ensure that the device_id is copied from the refresh token to the access_token when the token is refreshed.
2016-07-15 14:19:07 +02:00
refresh_token (str): The refresh token of a user.
/tokenrefresh POST endpoint This allows refresh tokens to be exchanged for (access_token, refresh_token). It also starts issuing them on login, though no clients currently interpret them.
2015-08-20 17:21:35 +02:00
token_generator (fn: str -> str): Function which, when given a
user ID, returns a unique refresh token for that user. This
function must never return the same value twice.
Returns:
Add device_id support to /login Add a 'devices' table to the storage, as well as a 'device_id' column to refresh_tokens. Allow the client to pass a device_id, and initial_device_display_name, to /login. If login is successful, then register the device in the devices table if it wasn't known already. If no device_id was supplied, make one up. Associate the device_id with the access token and refresh token, so that we can get at it again later. Ensure that the device_id is copied from the refresh token to the access_token when the token is refreshed.
2016-07-15 14:19:07 +02:00
tuple of (user_id, new_refresh_token, device_id)
/tokenrefresh POST endpoint This allows refresh tokens to be exchanged for (access_token, refresh_token). It also starts issuing them on login, though no clients currently interpret them.
2015-08-20 17:21:35 +02:00
Raises:
StoreError if no user was found with that refresh token.
"""
return self.runInteraction(
"exchange_refresh_token",
self._exchange_refresh_token,
refresh_token,
token_generator
)
def _exchange_refresh_token(self, txn, old_token, token_generator):
Add device_id support to /login Add a 'devices' table to the storage, as well as a 'device_id' column to refresh_tokens. Allow the client to pass a device_id, and initial_device_display_name, to /login. If login is successful, then register the device in the devices table if it wasn't known already. If no device_id was supplied, make one up. Associate the device_id with the access token and refresh token, so that we can get at it again later. Ensure that the device_id is copied from the refresh token to the access_token when the token is refreshed.
2016-07-15 14:19:07 +02:00
sql = "SELECT user_id, device_id FROM refresh_tokens WHERE token = ?"
/tokenrefresh POST endpoint This allows refresh tokens to be exchanged for (access_token, refresh_token). It also starts issuing them on login, though no clients currently interpret them.
2015-08-20 17:21:35 +02:00
txn.execute(sql, (old_token,))
rows = self.cursor_to_dict(txn)
if not rows:
raise StoreError(403, "Did not recognize refresh token")
user_id = rows[0]["user_id"]
Add device_id support to /login Add a 'devices' table to the storage, as well as a 'device_id' column to refresh_tokens. Allow the client to pass a device_id, and initial_device_display_name, to /login. If login is successful, then register the device in the devices table if it wasn't known already. If no device_id was supplied, make one up. Associate the device_id with the access token and refresh token, so that we can get at it again later. Ensure that the device_id is copied from the refresh token to the access_token when the token is refreshed.
2016-07-15 14:19:07 +02:00
device_id = rows[0]["device_id"]
/tokenrefresh POST endpoint This allows refresh tokens to be exchanged for (access_token, refresh_token). It also starts issuing them on login, though no clients currently interpret them.
2015-08-20 17:21:35 +02:00
# TODO(danielwh): Maybe perform a validation on the macaroon that
# macaroon.user_id == user_id.
new_token = token_generator(user_id)
sql = "UPDATE refresh_tokens SET token = ? WHERE token = ?"
txn.execute(sql, (new_token, old_token,))
Add device_id support to /login Add a 'devices' table to the storage, as well as a 'device_id' column to refresh_tokens. Allow the client to pass a device_id, and initial_device_display_name, to /login. If login is successful, then register the device in the devices table if it wasn't known already. If no device_id was supplied, make one up. Associate the device_id with the access token and refresh token, so that we can get at it again later. Ensure that the device_id is copied from the refresh token to the access_token when the token is refreshed.
2016-07-15 14:19:07 +02:00
return user_id, new_token, device_id
/tokenrefresh POST endpoint This allows refresh tokens to be exchanged for (access_token, refresh_token). It also starts issuing them on login, though no clients currently interpret them.
2015-08-20 17:21:35 +02:00
Add an EventValidator. Fix bugs in auth ++ storage
2014-11-10 19:24:43 +01:00
@defer.inlineCallbacks
Add auth check to test if a user is an admin or not.
2014-09-29 14:35:38 +02:00
def is_server_admin(self, user):
Add an EventValidator. Fix bugs in auth ++ storage
2014-11-10 19:24:43 +01:00
res = yield self._simple_select_one_onecol(
Add auth check to test if a user is an admin or not.
2014-09-29 14:35:38 +02:00
table="users",
keyvalues={"name": user.to_string()},
retcol="admin",
Add an EventValidator. Fix bugs in auth ++ storage
2014-11-10 19:24:43 +01:00
allow_none=True,
Give sensible names for '_simple_...' transactions
2015-03-20 16:59:18 +01:00
desc="is_server_admin",
Add auth check to test if a user is an admin or not.
2014-09-29 14:35:38 +02:00
)
Add an EventValidator. Fix bugs in auth ++ storage
2014-11-10 19:24:43 +01:00
defer.returnValue(res if res else False)
Add is_guest flag to users db to track whether a user is a guest user or not. Use this so we can run _filter_events_for_client when calculating event_push_actions.
2016-01-06 12:38:09 +01:00
@cachedInlineCallbacks()
Make notifications go quicker
2016-01-18 15:09:47 +01:00
def is_guest(self, user_id):
Add is_guest flag to users db to track whether a user is a guest user or not. Use this so we can run _filter_events_for_client when calculating event_push_actions.
2016-01-06 12:38:09 +01:00
res = yield self._simple_select_one_onecol(
table="users",
Make notifications go quicker
2016-01-18 15:09:47 +01:00
keyvalues={"name": user_id},
Add is_guest flag to users db to track whether a user is a guest user or not. Use this so we can run _filter_events_for_client when calculating event_push_actions.
2016-01-06 12:38:09 +01:00
retcol="is_guest",
allow_none=True,
desc="is_guest",
)
defer.returnValue(res if res else False)
Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
def _query_for_auth(self, txn, token):
SYN-48: Implement WHOIS rest servlet
2014-09-29 15:59:52 +02:00
sql = (
Add device_id support to /login Add a 'devices' table to the storage, as well as a 'device_id' column to refresh_tokens. Allow the client to pass a device_id, and initial_device_display_name, to /login. If login is successful, then register the device in the devices table if it wasn't known already. If no device_id was supplied, make one up. Associate the device_id with the access token and refresh token, so that we can get at it again later. Ensure that the device_id is copied from the refresh token to the access_token when the token is refreshed.
2016-07-15 14:19:07 +02:00
"SELECT users.name, users.is_guest, access_tokens.id as token_id,"
" access_tokens.device_id"
Fix pep8 codestyle warnings
2014-11-20 18:26:36 +01:00
" FROM users"
Convert storage layer to be mysql compatible
2015-03-19 16:59:48 +01:00
" INNER JOIN access_tokens on users.name = access_tokens.user_id"
Fix pep8 codestyle warnings
2014-11-20 18:26:36 +01:00
" WHERE token = ?"
SYN-48: Implement WHOIS rest servlet
2014-09-29 15:59:52 +02:00
)
Convert storage layer to be mysql compatible
2015-03-19 16:59:48 +01:00
txn.execute(sql, (token,))
rows = self.cursor_to_dict(txn)
SYN-48: Implement WHOIS rest servlet
2014-09-29 15:59:52 +02:00
if rows:
return rows[0]
Reference Matrix Home Server
2014-08-12 16:10:52 +02:00
1) Pushers are now associated with an access token 2) Change places where we mean unauthenticated to 401, not 403, in C/S v2: hack so it stays as 403 in v1 because web client relies on it.
2015-03-24 18:24:15 +01:00
return None
make add3pid servlet work
2015-04-17 17:44:49 +02:00
@defer.inlineCallbacks
def user_add_threepid(self, user_id, medium, address, validated_at, added_at):
yield self._simple_upsert("user_threepids", {
"medium": medium,
"address": address,
}, {
Allow users to change which account a 3pid is bound to
2015-12-15 18:02:21 +01:00
"user_id": user_id,
make add3pid servlet work
2015-04-17 17:44:49 +02:00
"validated_at": validated_at,
"added_at": added_at,
pep8
2015-04-17 17:46:45 +02:00
})
Add endpoint to get threepids from server
2015-04-17 18:20:18 +02:00
@defer.inlineCallbacks
def user_get_threepids(self, user_id):
ret = yield self._simple_select_list(
"user_threepids", {
Be more postgressive
2015-04-29 17:57:14 +02:00
"user_id": user_id
Add endpoint to get threepids from server
2015-04-17 18:20:18 +02:00
},
['medium', 'address', 'validated_at', 'added_at'],
'user_get_threepids'
)
Password reset, finally.
2015-04-17 20:53:47 +02:00
defer.returnValue(ret)
@defer.inlineCallbacks
user_id now in user_threepids
2015-05-01 16:04:20 +02:00
def get_user_id_by_threepid(self, medium, address):
Password reset, finally.
2015-04-17 20:53:47 +02:00
ret = yield self._simple_select_one(
"user_threepids",
{
"medium": medium,
"address": address
},
user_id now in user_threepids
2015-05-01 16:04:20 +02:00
['user_id'], True, 'get_user_id_by_threepid'
Password reset, finally.
2015-04-17 20:53:47 +02:00
)
if ret:
user_id now in user_threepids
2015-05-01 16:04:20 +02:00
defer.returnValue(ret['user_id'])
pep8
2015-04-17 20:56:04 +02:00
defer.returnValue(None)
Implement configurable stats reporting SYN-287 This requires that HS owners either opt in or out of stats reporting. When --generate-config is passed, --report-stats must be specified If an already-generated config is used, and doesn't have the report_stats key, it is requested to be set.
2015-09-22 13:57:40 +02:00
Feature: Add deactivate account admin API Allows server admins to "deactivate" accounts, which: - Revokes all access tokens - Removes all threepids - Removes password The API is a POST to `/admin/deactivate/<user_id>`
2016-06-30 16:40:58 +02:00
def user_delete_threepids(self, user_id):
return self._simple_delete(
"user_threepids",
keyvalues={
"user_id": user_id,
},
desc="user_delete_threepids",
)
Implement configurable stats reporting SYN-287 This requires that HS owners either opt in or out of stats reporting. When --generate-config is passed, --report-stats must be specified If an already-generated config is used, and doesn't have the report_stats key, it is requested to be set.
2015-09-22 13:57:40 +02:00
@defer.inlineCallbacks
def count_all_users(self):
Add some docstrings
2015-09-22 14:47:40 +02:00
"""Counts all users registered on the homeserver."""
Implement configurable stats reporting SYN-287 This requires that HS owners either opt in or out of stats reporting. When --generate-config is passed, --report-stats must be specified If an already-generated config is used, and doesn't have the report_stats key, it is requested to be set.
2015-09-22 13:57:40 +02:00
def _count_users(txn):
txn.execute("SELECT COUNT(*) AS users FROM users")
rows = self.cursor_to_dict(txn)
if rows:
return rows[0]["users"]
return 0
ret = yield self.runInteraction("count_users", _count_users)
defer.returnValue(ret)
Allocate guest user IDs numericcally The current random IDs are ugly and confusing when presented in UIs. This makes them prettier and easier to read. Also, disable non-automated registration of numeric IDs so that we don't need to worry so much about people carving out our automated address space and us needing to keep retrying ID registration.
2016-02-05 12:22:30 +01:00
@defer.inlineCallbacks
def find_next_generated_user_id_localpart(self):
"""
Gets the localpart of the next generated user ID.
Generated user IDs are integers, and we aim for them to be as small as
we can. Unfortunately, it's possible some of them are already taken by
existing users, and there may be gaps in the already taken range. This
function returns the start of the first allocatable gap. This is to
avoid the case of ID 10000000 being pre-allocated, so us wasting the
first (and shortest) many generated user IDs.
"""
def _find_next_generated_user_id(txn):
txn.execute("SELECT name FROM users")
rows = self.cursor_to_dict(txn)
regex = re.compile("^@(\d+):")
found = set()
for r in rows:
user_id = r["name"]
match = regex.search(user_id)
if match:
found.add(int(match.group(1)))
for i in xrange(len(found) + 1):
if i not in found:
return i
defer.returnValue((yield self.runInteraction(
"find_next_generated_user_id",
_find_next_generated_user_id
)))
Generate guest access token on 3pid invites This means that following the same link across multiple sessions or devices can re-use the same guest account. Note that this is somewhat of an abuse vector; we can't throw up captchas on this flow, so this is a way of registering ephemeral accounts for spam, whose sign-up we don't rate limit.
2016-02-24 15:41:25 +01:00
@defer.inlineCallbacks
def get_3pid_guest_access_token(self, medium, address):
ret = yield self._simple_select_one(
"threepid_guest_access_tokens",
{
"medium": medium,
"address": address
},
["guest_access_token"], True, 'get_3pid_guest_access_token'
)
if ret:
defer.returnValue(ret["guest_access_token"])
defer.returnValue(None)
@defer.inlineCallbacks
def save_or_get_3pid_guest_access_token(
self, medium, address, access_token, inviter_user_id
):
"""
Gets the 3pid's guest access token if exists, else saves access_token.
Use google style doc strings. pycharm supports them so there is no need to use the other format. Might as well convert the existing strings to reduce the risk of people accidentally cargo culting the wrong doc string format.
2016-04-01 17:08:59 +02:00
Args:
medium (str): Medium of the 3pid. Must be "email".
address (str): 3pid address.
access_token (str): The access token to persist if none is
already persisted.
inviter_user_id (str): User ID of the inviter.
Returns:
deferred str: Whichever access token is persisted at the end
Generate guest access token on 3pid invites This means that following the same link across multiple sessions or devices can re-use the same guest account. Note that this is somewhat of an abuse vector; we can't throw up captchas on this flow, so this is a way of registering ephemeral accounts for spam, whose sign-up we don't rate limit.
2016-02-24 15:41:25 +01:00
of this function call.
"""
def insert(txn):
txn.execute(
"INSERT INTO threepid_guest_access_tokens "
"(medium, address, guest_access_token, first_inviter) "
"VALUES (?, ?, ?, ?)",
(medium, address, access_token, inviter_user_id)
)
try:
yield self.runInteraction("save_3pid_guest_access_token", insert)
defer.returnValue(access_token)
except self.database_engine.module.IntegrityError:
ret = yield self.get_3pid_guest_access_token(medium, address)
defer.returnValue(ret)
Reference in a new issue Copy permalink