'apparently some people use access tokens that are not macaroons' #10964

reivilibre · 2021-10-01T07:46:59Z

This comment seems stale, since it now seems like we encourage and use syt_... tokens by default which are not macaroons?

synapse/synapse/api/auth.py

Lines 417 to 418 in 8c7a531

    
           # TODO: it would be nice to get rid of this, but apparently some 
        
           # people use access tokens which aren't macaroons

The text was updated successfully, but these errors were encountered:

richvdh · 2021-10-01T09:00:06Z

yes it is. That comment dates from a period where we were trying to move away from random strings as access tokens, towards macaroons. We've long since aborted that plan.

reivilibre added the T-Task Refactoring, removal, replacement, enabling or disabling functionality, other engineering tasks. label Oct 1, 2021

reivilibre self-assigned this Oct 1, 2021

AndrewFerr mentioned this issue Oct 4, 2021

Don't set new room alias before potential 403 #10930

Merged

4 tasks

reivilibre mentioned this issue Apr 28, 2022

Improve comments and error messages around access tokens. #12577

Merged

reivilibre closed this as completed in #12577 May 5, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

'apparently some people use access tokens that are not macaroons' #10964

'apparently some people use access tokens that are not macaroons' #10964

reivilibre commented Oct 1, 2021

richvdh commented Oct 1, 2021

'apparently some people use access tokens that are not macaroons' #10964

'apparently some people use access tokens that are not macaroons' #10964

Comments

reivilibre commented Oct 1, 2021

richvdh commented Oct 1, 2021