Disable registration by default. Add script to register new users. #109

erikjohnston · 2015-03-13T15:30:06Z

Also implements a non-standard registration type that uses shared secret.

kegsay · 2015-03-16T09:19:32Z

synapse/rest/client/v1/register.py

+            })
+        else:
+            raise SynapseError(
+                400, "HMAC incorrect",


This seems like it should be a 403 to me.

Ooh, good spot.

kegsay · 2015-03-16T14:15:15Z

synapse/rest/client/v1/register.py

+    def _do_shared_secret(self, request, register_json, session):
+        yield run_on_reactor()
+
+        if "mac" not in register_json:


Given register_json is just a dict from JSON, users may not be setting the right types of these keys. We should be type checking here, which we can actually do in one fell swoop with checking for the existence of keys by doing isinstance(register_json.get("mac"), basestring)

kegsay · 2015-03-16T14:22:43Z

LGTM other than in-line comments.

kegsay · 2015-03-18T11:38:30Z

LGTM

Disable registration by default. Add script to register new users.

This was due to dh-virtualenv builds being broken due to Shpinx removing deprecated APIs. Co-authored-by: Erik Johnston <erik@matrix.org>

erikjohnston added 9 commits March 13, 2015 12:59

Disable registration by default

58367a9

Implement registering with shared secret.

69135f5

Add missing commas

dea236e

Add 'register_new_user' script

bcfce93

PEP8

9266cb0

Change default server url to match default ports

598c47a

Rename register script to 'register_new_matrix_user'

7393c5c

Allow enabling of registration with --disable-registration false

98a3825

Add note about disabling registration by default

a1abee0

kegsay reviewed Mar 16, 2015
View reviewed changes

erikjohnston added 2 commits March 16, 2015 13:11

Use 403 instead of 400

250e143

Comment.

8bad407

kegsay reviewed Mar 16, 2015
View reviewed changes

erikjohnston added 2 commits March 18, 2015 11:30

Do more validation of incoming request

57976f6

Factor out user id validation checks

f88db7a

erikjohnston added a commit that referenced this pull request Mar 18, 2015

Merge pull request #109 from matrix-org/default_registration

ed4d44d

Disable registration by default. Add script to register new users.

erikjohnston merged commit ed4d44d into develop Mar 18, 2015

erikjohnston deleted the default_registration branch April 27, 2015 14:22

babolivier added a commit that referenced this pull request Nov 8, 2021

Fix debian package builds. (#10931) (#109)

dd19126

This was due to dh-virtualenv builds being broken due to Shpinx removing deprecated APIs. Co-authored-by: Erik Johnston <erik@matrix.org>

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Disable registration by default. Add script to register new users. #109

Disable registration by default. Add script to register new users. #109

erikjohnston commented Mar 13, 2015

kegsay Mar 16, 2015

erikjohnston Mar 16, 2015

kegsay Mar 16, 2015

kegsay commented Mar 16, 2015

kegsay commented Mar 18, 2015

Disable registration by default. Add script to register new users. #109

Disable registration by default. Add script to register new users. #109

Conversation

erikjohnston commented Mar 13, 2015

kegsay Mar 16, 2015

Choose a reason for hiding this comment

erikjohnston Mar 16, 2015

Choose a reason for hiding this comment

kegsay Mar 16, 2015

Choose a reason for hiding this comment

kegsay commented Mar 16, 2015

kegsay commented Mar 18, 2015