Merge pull request #2319 from matrix-org/erikj/prune_sessions

Use an ExpiringCache for storing registration sessions
2024-07-05 10:48:46 +02:00 · 2017-06-29 14:20:24 +01:00 · 2017-06-29 14:20:24 +01:00 · a1a253ea50
parent 731f3c37a0 c72058bcc6
commit a1a253ea50
2 changed files with 13 additions and 11 deletions
--- a/synapse/handlers/auth.py
+++ b/synapse/handlers/auth.py
@ -21,6 +21,7 @@ from synapse.api.constants import LoginType
 from synapse.types import UserID
 from synapse.api.errors import AuthError, LoginError, Codes, StoreError, SynapseError
 from synapse.util.async import run_on_reactor
 from synapse.util.caches.expiringcache import ExpiringCache
 from twisted.web.client import PartialDownloadError
@ -52,7 +53,15 @@ class AuthHandler(BaseHandler):
            LoginType.DUMMY: self._check_dummy_auth,
        }
        self.bcrypt_rounds = hs.config.bcrypt_rounds
-        self.sessions = {}
+
        # This is not a cache per se, but a store of all current sessions that
        # expire after N hours
        self.sessions = ExpiringCache(
            cache_name="register_sessions",
            clock=hs.get_clock(),
            expiry_ms=self.SESSION_EXPIRE_MS,
            reset_expiry_on_get=True,
        )
        account_handler = _AccountHandler(
            hs, check_user_exists=self.check_user_exists
@ -617,16 +626,6 @@ class AuthHandler(BaseHandler):
        logger.debug("Saving session %s", session)
        session["last_used"] = self.hs.get_clock().time_msec()
        self.sessions[session["id"]] = session
        self._prune_sessions()
    def _prune_sessions(self):
        for sid, sess in self.sessions.items():
            last_used = 0
            if 'last_used' in sess:
                last_used = sess['last_used']
            now = self.hs.get_clock().time_msec()
            if last_used < now - AuthHandler.SESSION_EXPIRE_MS:
                del self.sessions[sid]
    def hash(self, password):
        """Computes a secure hash of password.
--- a/synapse/util/caches/expiringcache.py
+++ b/synapse/util/caches/expiringcache.py
@ -94,6 +94,9 @@ class ExpiringCache(object):
        return entry.value
    def __contains__(self, key):
        return key in self._cache
    def get(self, key, default=None):
        try:
            return self[key]