From 0f18a2632ecf7e7de10933b433a8282bddcdf7fb Mon Sep 17 00:00:00 2001 From: Andrew Morgan <1342360+anoadragon453@users.noreply.github.com> Date: Wed, 30 Dec 2020 17:43:08 +0000 Subject: [PATCH 01/12] Allow users to click account renewal links multiple times without hitting an 'Invalid Token' page (#74) --- docs/sample_config.yaml | 129 ++++++++-------- synapse/api/auth.py | 4 +- synapse/config/_base.pyi | 2 + synapse/config/account_validity.py | 146 ++++++++++++++++++ synapse/config/emailconfig.py | 2 +- synapse/config/homeserver.py | 3 +- synapse/config/registration.py | 129 ---------------- synapse/handlers/account_validity.py | 83 +++++++--- synapse/handlers/deactivate_account.py | 2 +- synapse/push/pusherpool.py | 6 +- .../templates/account_previously_renewed.html | 1 + synapse/res/templates/account_renewed.html | 2 +- .../rest/client/v2_alpha/account_validity.py | 30 +++- .../storage/databases/main/registration.py | 58 +++++-- .../19account_validity_token_used_ts_ms.sql | 18 +++ tests/rest/client/v2_alpha/test_register.py | 52 +++++-- 16 files changed, 409 insertions(+), 258 deletions(-) create mode 100644 synapse/config/account_validity.py create mode 100644 synapse/res/templates/account_previously_renewed.html create mode 100644 synapse/storage/databases/main/schema/delta/58/19account_validity_token_used_ts_ms.sql diff --git a/docs/sample_config.yaml b/docs/sample_config.yaml index 9182dcd98716..c545702577de 100644 --- a/docs/sample_config.yaml +++ b/docs/sample_config.yaml @@ -1175,69 +1175,6 @@ url_preview_accept_language: # #enable_registration: false -# Optional account validity configuration. This allows for accounts to be denied -# any request after a given period. -# -# Once this feature is enabled, Synapse will look for registered users without an -# expiration date at startup and will add one to every account it found using the -# current settings at that time. -# This means that, if a validity period is set, and Synapse is restarted (it will -# then derive an expiration date from the current validity period), and some time -# after that the validity period changes and Synapse is restarted, the users' -# expiration dates won't be updated unless their account is manually renewed. This -# date will be randomly selected within a range [now + period - d ; now + period], -# where d is equal to 10% of the validity period. -# -account_validity: - # The account validity feature is disabled by default. Uncomment the - # following line to enable it. - # - #enabled: true - - # The period after which an account is valid after its registration. When - # renewing the account, its validity period will be extended by this amount - # of time. This parameter is required when using the account validity - # feature. - # - #period: 6w - - # The amount of time before an account's expiry date at which Synapse will - # send an email to the account's email address with a renewal link. By - # default, no such emails are sent. - # - # If you enable this setting, you will also need to fill out the 'email' and - # 'public_baseurl' configuration sections. - # - #renew_at: 1w - - # The subject of the email sent out with the renewal link. '%(app)s' can be - # used as a placeholder for the 'app_name' parameter from the 'email' - # section. - # - # Note that the placeholder must be written '%(app)s', including the - # trailing 's'. - # - # If this is not set, a default value is used. - # - #renew_email_subject: "Renew your %(app)s account" - - # Directory in which Synapse will try to find templates for the HTML files to - # serve to the user when trying to renew an account. If not set, default - # templates from within the Synapse package will be used. - # - #template_dir: "res/templates" - - # File within 'template_dir' giving the HTML to be displayed to the user after - # they successfully renewed their account. If not set, default text is used. - # - #account_renewed_html_path: "account_renewed.html" - - # File within 'template_dir' giving the HTML to be displayed when the user - # tries to renew an account with an invalid renewal token. If not set, - # default text is used. - # - #invalid_token_html_path: "invalid_token.html" - # Time that a user's session remains valid for, after they log in. # # Note that this is not currently compatible with guest logins. @@ -1432,6 +1369,72 @@ account_threepid_delegates: #auto_join_rooms_for_guests: false +## Account Validity ## +# +# Optional account validity configuration. This allows for accounts to be denied +# any request after a given period. +# +# Once this feature is enabled, Synapse will look for registered users without an +# expiration date at startup and will add one to every account it found using the +# current settings at that time. +# This means that, if a validity period is set, and Synapse is restarted (it will +# then derive an expiration date from the current validity period), and some time +# after that the validity period changes and Synapse is restarted, the users' +# expiration dates won't be updated unless their account is manually renewed. This +# date will be randomly selected within a range [now + period - d ; now + period], +# where d is equal to 10% of the validity period. +# +account_validity: + # The account validity feature is disabled by default. Uncomment the + # following line to enable it. + # + #enabled: true + + # The period after which an account is valid after its registration. When + # renewing the account, its validity period will be extended by this amount + # of time. This parameter is required when using the account validity + # feature. + # + #period: 6w + + # The amount of time before an account's expiry date at which Synapse will + # send an email to the account's email address with a renewal link. By + # default, no such emails are sent. + # + # If you enable this setting, you will also need to fill out the 'email' and + # 'public_baseurl' configuration sections. + # + #renew_at: 1w + + # The subject of the email sent out with the renewal link. '%(app)s' can be + # used as a placeholder for the 'app_name' parameter from the 'email' + # section. + # + # Note that the placeholder must be written '%(app)s', including the + # trailing 's'. + # + # If this is not set, a default value is used. + # + #renew_email_subject: "Renew your %(app)s account" + + # Directory in which Synapse will try to find templates for the HTML files to + # serve to the user when trying to renew an account. If not set, default + # templates from within the Synapse package will be used. + # + #template_dir: "res/templates" + + # File within 'template_dir' giving the HTML to be displayed to the user after + # they successfully renewed their account. If not set, default text is used. + # + #account_renewed_html_path: "account_renewed.html" + + # File within 'template_dir' giving the HTML to be displayed when the user + # tries to renew an account with an invalid renewal token. If not set, + # default text is used. + # + #invalid_token_html_path: "invalid_token.html" + + ## Metrics ### # Enable collection and rendering of performance metrics diff --git a/synapse/api/auth.py b/synapse/api/auth.py index 6c13f53957c4..a09fc526a9d9 100644 --- a/synapse/api/auth.py +++ b/synapse/api/auth.py @@ -79,7 +79,7 @@ def __init__(self, hs): self._auth_blocking = AuthBlocking(self.hs) - self._account_validity = hs.config.account_validity + self._account_validity_enabled = hs.config.account_validity_enabled self._track_appservice_user_ips = hs.config.track_appservice_user_ips self._macaroon_secret_key = hs.config.macaroon_secret_key @@ -222,7 +222,7 @@ async def get_user_by_req( shadow_banned = user_info.shadow_banned # Deny the request if the user account has expired. - if self._account_validity.enabled and not allow_expired: + if self._account_validity_enabled and not allow_expired: if await self.store.is_account_expired( user_info.user_id, self.clock.time_msec() ): diff --git a/synapse/config/_base.pyi b/synapse/config/_base.pyi index e896fd34e23c..ddec356a07b3 100644 --- a/synapse/config/_base.pyi +++ b/synapse/config/_base.pyi @@ -1,6 +1,7 @@ from typing import Any, Iterable, List, Optional from synapse.config import ( + account_validity, api, appservice, auth, @@ -59,6 +60,7 @@ class RootConfig: captcha: captcha.CaptchaConfig voip: voip.VoipConfig registration: registration.RegistrationConfig + account_validity: account_validity.AccountValidityConfig metrics: metrics.MetricsConfig api: api.ApiConfig appservice: appservice.AppServiceConfig diff --git a/synapse/config/account_validity.py b/synapse/config/account_validity.py new file mode 100644 index 000000000000..ea3e55c2e85e --- /dev/null +++ b/synapse/config/account_validity.py @@ -0,0 +1,146 @@ +# -*- coding: utf-8 -*- +# Copyright 2020 The Matrix.org Foundation C.I.C. +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +from synapse.config._base import Config, ConfigError + + +class AccountValidityConfig(Config): + section = "account_validity" + + def read_config(self, config, **kwargs): + account_validity_config = config.get("account_validity") or {} + self.account_validity_enabled = account_validity_config.get("enabled", False) + self.account_validity_renew_by_email_enabled = ( + "renew_at" in account_validity_config + ) + + if self.account_validity_enabled: + if "period" in account_validity_config: + self.account_validity_period = self.parse_duration( + account_validity_config["period"] + ) + else: + raise ConfigError("'period' is required when using account validity") + + if "renew_at" in account_validity_config: + self.account_validity_renew_at = self.parse_duration( + account_validity_config["renew_at"] + ) + + if "renew_email_subject" in account_validity_config: + self.account_validity_renew_email_subject = account_validity_config[ + "renew_email_subject" + ] + else: + self.account_validity_renew_email_subject = "Renew your %(app)s account" + + self.account_validity_startup_job_max_delta = ( + self.account_validity_period * 10.0 / 100.0 + ) + + if self.account_validity_renew_by_email_enabled: + if not self.public_baseurl: + raise ConfigError("Can't send renewal emails without 'public_baseurl'") + + # Load account validity templates. + # We do this here instead of in AccountValidityConfig as read_templates + # relies on state that hasn't been initialised in AccountValidityConfig + account_renewed_template_filename = account_validity_config.get( + "account_renewed_html_path", "account_renewed.html" + ) + account_previously_renewed_template_filename = account_validity_config.get( + "account_previously_renewed_html_path", "account_previously_renewed.html" + ) + invalid_token_template_filename = account_validity_config.get( + "invalid_token_html_path", "invalid_token.html" + ) + ( + self.account_validity_account_renewed_template, + self.account_validity_account_previously_renewed_template, + self.account_validity_invalid_token_template, + ) = self.read_templates( + [ + account_renewed_template_filename, + account_previously_renewed_template_filename, + invalid_token_template_filename, + ] + ) + + def generate_config_section(self, **kwargs): + return """\ + ## Account Validity ## + # + # Optional account validity configuration. This allows for accounts to be denied + # any request after a given period. + # + # Once this feature is enabled, Synapse will look for registered users without an + # expiration date at startup and will add one to every account it found using the + # current settings at that time. + # This means that, if a validity period is set, and Synapse is restarted (it will + # then derive an expiration date from the current validity period), and some time + # after that the validity period changes and Synapse is restarted, the users' + # expiration dates won't be updated unless their account is manually renewed. This + # date will be randomly selected within a range [now + period - d ; now + period], + # where d is equal to 10% of the validity period. + # + account_validity: + # The account validity feature is disabled by default. Uncomment the + # following line to enable it. + # + #enabled: true + + # The period after which an account is valid after its registration. When + # renewing the account, its validity period will be extended by this amount + # of time. This parameter is required when using the account validity + # feature. + # + #period: 6w + + # The amount of time before an account's expiry date at which Synapse will + # send an email to the account's email address with a renewal link. By + # default, no such emails are sent. + # + # If you enable this setting, you will also need to fill out the 'email' and + # 'public_baseurl' configuration sections. + # + #renew_at: 1w + + # The subject of the email sent out with the renewal link. '%(app)s' can be + # used as a placeholder for the 'app_name' parameter from the 'email' + # section. + # + # Note that the placeholder must be written '%(app)s', including the + # trailing 's'. + # + # If this is not set, a default value is used. + # + #renew_email_subject: "Renew your %(app)s account" + + # Directory in which Synapse will try to find templates for the HTML files to + # serve to the user when trying to renew an account. If not set, default + # templates from within the Synapse package will be used. + # + #template_dir: "res/templates" + + # File within 'template_dir' giving the HTML to be displayed to the user after + # they successfully renewed their account. If not set, default text is used. + # + #account_renewed_html_path: "account_renewed.html" + + # File within 'template_dir' giving the HTML to be displayed when the user + # tries to renew an account with an invalid renewal token. If not set, + # default text is used. + # + #invalid_token_html_path: "invalid_token.html" + """ diff --git a/synapse/config/emailconfig.py b/synapse/config/emailconfig.py index c587939c7a7a..5564d7d097d4 100644 --- a/synapse/config/emailconfig.py +++ b/synapse/config/emailconfig.py @@ -299,7 +299,7 @@ def read_config(self, config, **kwargs): "client_base_url", email_config.get("riot_base_url", None) ) - if self.account_validity.renew_by_email_enabled: + if self.account_validity_renew_by_email_enabled: expiry_template_html = email_config.get( "expiry_template_html", "notice_expiry.html" ) diff --git a/synapse/config/homeserver.py b/synapse/config/homeserver.py index 130953506825..58e3bcd5111d 100644 --- a/synapse/config/homeserver.py +++ b/synapse/config/homeserver.py @@ -12,8 +12,8 @@ # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. - from ._base import RootConfig +from .account_validity import AccountValidityConfig from .api import ApiConfig from .appservice import AppServiceConfig from .auth import AuthConfig @@ -68,6 +68,7 @@ class HomeServerConfig(RootConfig): CaptchaConfig, VoipConfig, RegistrationConfig, + AccountValidityConfig, MetricsConfig, ApiConfig, AppServiceConfig, diff --git a/synapse/config/registration.py b/synapse/config/registration.py index f8a2768af835..e6f52b4f40ea 100644 --- a/synapse/config/registration.py +++ b/synapse/config/registration.py @@ -12,74 +12,12 @@ # See the License for the specific language governing permissions and # limitations under the License. -import os - -import pkg_resources - from synapse.api.constants import RoomCreationPreset from synapse.config._base import Config, ConfigError from synapse.types import RoomAlias, UserID from synapse.util.stringutils import random_string_with_symbols, strtobool -class AccountValidityConfig(Config): - section = "accountvalidity" - - def __init__(self, config, synapse_config): - if config is None: - return - super().__init__() - self.enabled = config.get("enabled", False) - self.renew_by_email_enabled = "renew_at" in config - - if self.enabled: - if "period" in config: - self.period = self.parse_duration(config["period"]) - else: - raise ConfigError("'period' is required when using account validity") - - if "renew_at" in config: - self.renew_at = self.parse_duration(config["renew_at"]) - - if "renew_email_subject" in config: - self.renew_email_subject = config["renew_email_subject"] - else: - self.renew_email_subject = "Renew your %(app)s account" - - self.startup_job_max_delta = self.period * 10.0 / 100.0 - - if self.renew_by_email_enabled: - if "public_baseurl" not in synapse_config: - raise ConfigError("Can't send renewal emails without 'public_baseurl'") - - template_dir = config.get("template_dir") - - if not template_dir: - template_dir = pkg_resources.resource_filename("synapse", "res/templates") - - if "account_renewed_html_path" in config: - file_path = os.path.join(template_dir, config["account_renewed_html_path"]) - - self.account_renewed_html_content = self.read_file( - file_path, "account_validity.account_renewed_html_path" - ) - else: - self.account_renewed_html_content = ( - "Your account has been successfully renewed." - ) - - if "invalid_token_html_path" in config: - file_path = os.path.join(template_dir, config["invalid_token_html_path"]) - - self.invalid_token_html_content = self.read_file( - file_path, "account_validity.invalid_token_html_path" - ) - else: - self.invalid_token_html_content = ( - "Invalid renewal token." - ) - - class RegistrationConfig(Config): section = "registration" @@ -92,10 +30,6 @@ def read_config(self, config, **kwargs): str(config["disable_registration"]) ) - self.account_validity = AccountValidityConfig( - config.get("account_validity") or {}, config - ) - self.registrations_require_3pid = config.get("registrations_require_3pid", []) self.allowed_local_3pids = config.get("allowed_local_3pids", []) self.enable_3pid_lookup = config.get("enable_3pid_lookup", True) @@ -207,69 +141,6 @@ def generate_config_section(self, generate_secrets=False, **kwargs): # #enable_registration: false - # Optional account validity configuration. This allows for accounts to be denied - # any request after a given period. - # - # Once this feature is enabled, Synapse will look for registered users without an - # expiration date at startup and will add one to every account it found using the - # current settings at that time. - # This means that, if a validity period is set, and Synapse is restarted (it will - # then derive an expiration date from the current validity period), and some time - # after that the validity period changes and Synapse is restarted, the users' - # expiration dates won't be updated unless their account is manually renewed. This - # date will be randomly selected within a range [now + period - d ; now + period], - # where d is equal to 10%% of the validity period. - # - account_validity: - # The account validity feature is disabled by default. Uncomment the - # following line to enable it. - # - #enabled: true - - # The period after which an account is valid after its registration. When - # renewing the account, its validity period will be extended by this amount - # of time. This parameter is required when using the account validity - # feature. - # - #period: 6w - - # The amount of time before an account's expiry date at which Synapse will - # send an email to the account's email address with a renewal link. By - # default, no such emails are sent. - # - # If you enable this setting, you will also need to fill out the 'email' and - # 'public_baseurl' configuration sections. - # - #renew_at: 1w - - # The subject of the email sent out with the renewal link. '%%(app)s' can be - # used as a placeholder for the 'app_name' parameter from the 'email' - # section. - # - # Note that the placeholder must be written '%%(app)s', including the - # trailing 's'. - # - # If this is not set, a default value is used. - # - #renew_email_subject: "Renew your %%(app)s account" - - # Directory in which Synapse will try to find templates for the HTML files to - # serve to the user when trying to renew an account. If not set, default - # templates from within the Synapse package will be used. - # - #template_dir: "res/templates" - - # File within 'template_dir' giving the HTML to be displayed to the user after - # they successfully renewed their account. If not set, default text is used. - # - #account_renewed_html_path: "account_renewed.html" - - # File within 'template_dir' giving the HTML to be displayed when the user - # tries to renew an account with an invalid renewal token. If not set, - # default text is used. - # - #invalid_token_html_path: "invalid_token.html" - # Time that a user's session remains valid for, after they log in. # # Note that this is not currently compatible with guest logins. diff --git a/synapse/handlers/account_validity.py b/synapse/handlers/account_validity.py index 66ce7e8b8318..bec8fb18714b 100644 --- a/synapse/handlers/account_validity.py +++ b/synapse/handlers/account_validity.py @@ -17,7 +17,7 @@ import logging from email.mime.multipart import MIMEMultipart from email.mime.text import MIMEText -from typing import TYPE_CHECKING, List, Optional +from typing import TYPE_CHECKING, List, Optional, Tuple from synapse.api.errors import StoreError, SynapseError from synapse.logging.context import make_deferred_yieldable @@ -39,27 +39,35 @@ def __init__(self, hs: "HomeServer"): self.sendmail = self.hs.get_sendmail() self.clock = self.hs.get_clock() - self._account_validity = self.hs.config.account_validity + self._account_validity_enabled = self.hs.config.account_validity_enabled + self._account_validity_renew_by_email_enabled = ( + self.hs.config.account_validity_renew_by_email_enabled + ) + + self._account_validity_period = None + if self._account_validity_enabled: + self._account_validity_period = self.hs.config.account_validity_period if ( - self._account_validity.enabled - and self._account_validity.renew_by_email_enabled + self._account_validity_enabled + and self._account_validity_renew_by_email_enabled ): # Don't do email-specific configuration if renewal by email is disabled. self._template_html = self.config.account_validity_template_html self._template_text = self.config.account_validity_template_text + account_validity_renew_email_subject = ( + self.hs.config.account_validity_renew_email_subject + ) try: app_name = self.hs.config.email_app_name - self._subject = self._account_validity.renew_email_subject % { - "app": app_name - } + self._subject = account_validity_renew_email_subject % {"app": app_name} self._from_string = self.hs.config.email_notif_from % {"app": app_name} except Exception: # If substitution failed, fall back to the bare strings. - self._subject = self._account_validity.renew_email_subject + self._subject = account_validity_renew_email_subject self._from_string = self.hs.config.email_notif_from self._raw_from = email.utils.parseaddr(self._from_string)[1] @@ -220,50 +228,87 @@ async def _get_renewal_token(self, user_id: str) -> str: attempts += 1 raise StoreError(500, "Couldn't generate a unique string as refresh string.") - async def renew_account(self, renewal_token: str) -> bool: + async def renew_account(self, renewal_token: str) -> Tuple[bool, bool, int]: """Renews the account attached to a given renewal token by pushing back the expiration date by the current validity period in the server's configuration. + If it turns out that the token is valid but has already been used, then the + token is considered stale. A token is stale if the 'token_used_ts_ms' db column + is non-null. + Args: renewal_token: Token sent with the renewal request. Returns: - Whether the provided token is valid. + A tuple containing: + * A bool representing whether the token is valid and unused. + * A bool representing whether the token is stale. + * An int representing the user's expiry timestamp as milliseconds since the + epoch, or 0 if the token was invalid. """ try: - user_id = await self.store.get_user_from_renewal_token(renewal_token) + ( + user_id, + current_expiration_ts, + token_used_ts, + ) = await self.store.get_user_from_renewal_token(renewal_token) except StoreError: - return False + return False, False, 0 + + # Check whether this token has already been used. + if token_used_ts: + logger.info( + "User '%s' attempted to use previously used token '%s' to renew account", + user_id, + renewal_token, + ) + return False, True, current_expiration_ts logger.debug("Renewing an account for user %s", user_id) - await self.renew_account_for_user(user_id) - return True + # Renew the account. Pass the renewal_token here so that it is not cleared. + # We want to keep the token around in case the user attempts to renew their + # account with the same token twice (clicking the email link twice). + # + # In that case, the token will be accepted, but the account's expiration ts + # will remain unchanged. + new_expiration_ts = await self.renew_account_for_user( + user_id, renewal_token=renewal_token + ) + + return True, False, new_expiration_ts async def renew_account_for_user( self, user_id: str, expiration_ts: Optional[int] = None, email_sent: bool = False, + renewal_token: Optional[str] = None, ) -> int: """Renews the account attached to a given user by pushing back the expiration date by the current validity period in the server's configuration. Args: - renewal_token: Token sent with the renewal request. + user_id: The ID of the user to renew. expiration_ts: New expiration date. Defaults to now + validity period. - email_sen: Whether an email has been sent for this validity period. - Defaults to False. + email_sent: Whether an email has been sent for this validity period. + renewal_token: Token sent with the renewal request. The user's token + will be cleared if this is None. Returns: New expiration date for this account, as a timestamp in milliseconds since epoch. """ + now = self.clock.time_msec() if expiration_ts is None: - expiration_ts = self.clock.time_msec() + self._account_validity.period + expiration_ts = now + self._account_validity_period await self.store.set_account_validity_for_user( - user_id=user_id, expiration_ts=expiration_ts, email_sent=email_sent + user_id=user_id, + expiration_ts=expiration_ts, + email_sent=email_sent, + renewal_token=renewal_token, + token_used_ts=now, ) return expiration_ts diff --git a/synapse/handlers/deactivate_account.py b/synapse/handlers/deactivate_account.py index 3f6f9f7f3d57..70b3b8fff19f 100644 --- a/synapse/handlers/deactivate_account.py +++ b/synapse/handlers/deactivate_account.py @@ -49,7 +49,7 @@ def __init__(self, hs: "HomeServer"): if hs.config.run_background_tasks: hs.get_reactor().callWhenRunning(self._start_user_parting) - self._account_validity_enabled = hs.config.account_validity.enabled + self._account_validity_enabled = hs.config.account_validity_enabled async def deactivate_account( self, diff --git a/synapse/push/pusherpool.py b/synapse/push/pusherpool.py index 564a5ed0df53..e3bd0c3156a7 100644 --- a/synapse/push/pusherpool.py +++ b/synapse/push/pusherpool.py @@ -62,7 +62,7 @@ def __init__(self, hs: "HomeServer"): self.store = self.hs.get_datastore() self.clock = self.hs.get_clock() - self._account_validity = hs.config.account_validity + self._account_validity_enabled = hs.config.account_validity_enabled # We shard the handling of push notifications by user ID. self._pusher_shard_config = hs.config.push.pusher_shard_config @@ -236,7 +236,7 @@ async def _on_new_notifications(self, max_token: RoomStreamToken) -> None: for u in users_affected: # Don't push if the user account has expired - if self._account_validity.enabled: + if self._account_validity_enabled: expired = await self.store.is_account_expired( u, self.clock.time_msec() ) @@ -266,7 +266,7 @@ async def on_new_receipts( for u in users_affected: # Don't push if the user account has expired - if self._account_validity.enabled: + if self._account_validity_enabled: expired = await self.store.is_account_expired( u, self.clock.time_msec() ) diff --git a/synapse/res/templates/account_previously_renewed.html b/synapse/res/templates/account_previously_renewed.html new file mode 100644 index 000000000000..b751359bdfb7 --- /dev/null +++ b/synapse/res/templates/account_previously_renewed.html @@ -0,0 +1 @@ +Your account is valid until {{ expiration_ts|format_ts("%d-%m-%Y") }}. diff --git a/synapse/res/templates/account_renewed.html b/synapse/res/templates/account_renewed.html index 894da030afb7..e8c0f52f0542 100644 --- a/synapse/res/templates/account_renewed.html +++ b/synapse/res/templates/account_renewed.html @@ -1 +1 @@ -Your account has been successfully renewed. +Your account has been successfully renewed and is valid until {{ expiration_ts|format_ts("%d-%m-%Y") }}. diff --git a/synapse/rest/client/v2_alpha/account_validity.py b/synapse/rest/client/v2_alpha/account_validity.py index 0ad07fb89526..d5d04cf8f9a6 100644 --- a/synapse/rest/client/v2_alpha/account_validity.py +++ b/synapse/rest/client/v2_alpha/account_validity.py @@ -36,24 +36,38 @@ def __init__(self, hs): self.hs = hs self.account_activity_handler = hs.get_account_validity_handler() self.auth = hs.get_auth() - self.success_html = hs.config.account_validity.account_renewed_html_content - self.failure_html = hs.config.account_validity.invalid_token_html_content + self.account_renewed_template = ( + hs.config.account_validity_account_renewed_template + ) + self.account_previously_renewed_template = ( + hs.config.account_validity_account_previously_renewed_template + ) + self.invalid_token_template = hs.config.account_validity_invalid_token_template async def on_GET(self, request): if b"token" not in request.args: raise SynapseError(400, "Missing renewal token") renewal_token = request.args[b"token"][0] - token_valid = await self.account_activity_handler.renew_account( + ( + token_valid, + token_stale, + expiration_ts, + ) = await self.account_activity_handler.renew_account( renewal_token.decode("utf8") ) if token_valid: status_code = 200 - response = self.success_html + response = self.account_renewed_template.render(expiration_ts=expiration_ts) + elif token_stale: + status_code = 200 + response = self.account_previously_renewed_template.render( + expiration_ts=expiration_ts + ) else: status_code = 404 - response = self.failure_html + response = self.invalid_token_template.render(expiration_ts=expiration_ts) respond_with_html(request, status_code, response) @@ -71,10 +85,12 @@ def __init__(self, hs): self.hs = hs self.account_activity_handler = hs.get_account_validity_handler() self.auth = hs.get_auth() - self.account_validity = self.hs.config.account_validity + self.account_validity_renew_by_email_enabled = ( + self.hs.config.account_validity_renew_by_email_enabled + ) async def on_POST(self, request): - if not self.account_validity.renew_by_email_enabled: + if not self.account_validity_renew_by_email_enabled: raise AuthError( 403, "Account renewal via email is disabled on this server." ) diff --git a/synapse/storage/databases/main/registration.py b/synapse/storage/databases/main/registration.py index 833214b7e07b..90f61f23a643 100644 --- a/synapse/storage/databases/main/registration.py +++ b/synapse/storage/databases/main/registration.py @@ -91,13 +91,21 @@ def __init__( id_column=None, ) - self._account_validity = hs.config.account_validity - if hs.config.run_background_tasks and self._account_validity.enabled: - self._clock.call_later( - 0.0, - self._set_expiration_date_when_missing, + self._account_validity_enabled = hs.config.account_validity_enabled + self._account_validity_period = None + self._account_validity_startup_job_max_delta = None + if self._account_validity_enabled: + self._account_validity_period = hs.config.account_validity_period + self._account_validity_startup_job_max_delta = ( + hs.config.account_validity_startup_job_max_delta ) + if hs.config.run_background_tasks: + self._clock.call_later( + 0.0, + self._set_expiration_date_when_missing, + ) + # Create a background job for culling expired 3PID validity tokens if hs.config.run_background_tasks: self._clock.looping_call( @@ -194,6 +202,7 @@ async def set_account_validity_for_user( expiration_ts: int, email_sent: bool, renewal_token: Optional[str] = None, + token_used_ts: Optional[int] = None, ) -> None: """Updates the account validity properties of the given account, with the given values. @@ -207,6 +216,8 @@ async def set_account_validity_for_user( period. renewal_token: Renewal token the user can use to extend the validity of their account. Defaults to no token. + token_used_ts: A timestamp of when the current token was used to renew + the account. """ def set_account_validity_for_user_txn(txn): @@ -218,6 +229,7 @@ def set_account_validity_for_user_txn(txn): "expiration_ts_ms": expiration_ts, "email_sent": email_sent, "renewal_token": renewal_token, + "token_used_ts_ms": token_used_ts, }, ) self._invalidate_cache_and_stream( @@ -231,7 +243,7 @@ def set_account_validity_for_user_txn(txn): async def set_renewal_token_for_user( self, user_id: str, renewal_token: str ) -> None: - """Defines a renewal token for a given user. + """Defines a renewal token for a given user, and clears the token_used timestamp. Args: user_id: ID of the user to set the renewal token for. @@ -244,26 +256,40 @@ async def set_renewal_token_for_user( await self.db_pool.simple_update_one( table="account_validity", keyvalues={"user_id": user_id}, - updatevalues={"renewal_token": renewal_token}, + updatevalues={"renewal_token": renewal_token, "token_used_ts_ms": None}, desc="set_renewal_token_for_user", ) - async def get_user_from_renewal_token(self, renewal_token: str) -> str: - """Get a user ID from a renewal token. + async def get_user_from_renewal_token( + self, renewal_token: str + ) -> Tuple[str, int, Optional[int]]: + """Get a user ID and renewal status from a renewal token. Args: renewal_token: The renewal token to perform the lookup with. Returns: - The ID of the user to which the token belongs. + A tuple of containing the following values: + * The ID of a user to which the token belongs. + * An int representing the user's expiry timestamp as milliseconds since the + epoch, or 0 if the token was invalid. + * An optional int representing the timestamp of when the user renewed their + account timestamp as milliseconds since the epoch. None if the account + has not been renewed using the current token yet. """ - return await self.db_pool.simple_select_one_onecol( + ret_dict = await self.db_pool.simple_select_one( table="account_validity", keyvalues={"renewal_token": renewal_token}, - retcol="user_id", + retcols=["user_id", "expiration_ts_ms", "token_used_ts_ms"], desc="get_user_from_renewal_token", ) + return ( + ret_dict["user_id"], + ret_dict["expiration_ts_ms"], + ret_dict["token_used_ts_ms"], + ) + async def get_renewal_token_for_user(self, user_id: str) -> str: """Get the renewal token associated with a given user ID. @@ -302,7 +328,7 @@ def select_users_txn(txn, now_ms, renew_at): "get_users_expiring_soon", select_users_txn, self._clock.time_msec(), - self.config.account_validity.renew_at, + self.config.account_validity_renew_at, ) async def set_renewal_mail_status(self, user_id: str, email_sent: bool) -> None: @@ -964,11 +990,11 @@ def set_expiration_date_for_user_txn(self, txn, user_id, use_delta=False): delta equal to 10% of the validity period. """ now_ms = self._clock.time_msec() - expiration_ts = now_ms + self._account_validity.period + expiration_ts = now_ms + self._account_validity_period if use_delta: expiration_ts = self.rand.randrange( - expiration_ts - self._account_validity.startup_job_max_delta, + expiration_ts - self._account_validity_startup_job_max_delta, expiration_ts, ) @@ -1412,7 +1438,7 @@ def _register_user( except self.database_engine.module.IntegrityError: raise StoreError(400, "User ID already taken.", errcode=Codes.USER_IN_USE) - if self._account_validity.enabled: + if self._account_validity_enabled: self.set_expiration_date_for_user_txn(txn, user_id) if create_profile_with_displayname: diff --git a/synapse/storage/databases/main/schema/delta/58/19account_validity_token_used_ts_ms.sql b/synapse/storage/databases/main/schema/delta/58/19account_validity_token_used_ts_ms.sql new file mode 100644 index 000000000000..4836dac16ebf --- /dev/null +++ b/synapse/storage/databases/main/schema/delta/58/19account_validity_token_used_ts_ms.sql @@ -0,0 +1,18 @@ +/* Copyright 2020 The Matrix.org Foundation C.I.C. + * + * Licensed under the Apache License, Version 2.0 (the "License"); + * you may not use this file except in compliance with the License. + * You may obtain a copy of the License at + * + * http://www.apache.org/licenses/LICENSE-2.0 + * + * Unless required by applicable law or agreed to in writing, software + * distributed under the License is distributed on an "AS IS" BASIS, + * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. + * See the License for the specific language governing permissions and + * limitations under the License. + */ + +-- Track when users renew their account using the value of the 'renewal_token' column. +-- This field should be set to NULL after a fresh token is generated. +ALTER TABLE account_validity ADD token_used_ts_ms BIGINT; diff --git a/tests/rest/client/v2_alpha/test_register.py b/tests/rest/client/v2_alpha/test_register.py index 054d4e41402d..89c8d87eb3a4 100644 --- a/tests/rest/client/v2_alpha/test_register.py +++ b/tests/rest/client/v2_alpha/test_register.py @@ -492,8 +492,8 @@ def test_renewal_email(self): (user_id, tok) = self.create_user() - # Move 6 days forward. This should trigger a renewal email to be sent. - self.reactor.advance(datetime.timedelta(days=6).total_seconds()) + # Move 5 days forward. This should trigger a renewal email to be sent. + self.reactor.advance(datetime.timedelta(days=5).total_seconds()) self.assertEqual(len(self.email_attempts), 1) # Retrieving the URL from the email is too much pain for now, so we @@ -504,14 +504,34 @@ def test_renewal_email(self): self.assertEquals(channel.result["code"], b"200", channel.result) # Check that we're getting HTML back. - content_type = None - for header in channel.result.get("headers", []): - if header[0] == b"Content-Type": - content_type = header[1] - self.assertEqual(content_type, b"text/html; charset=utf-8", channel.result) + content_type = channel.headers.getRawHeaders(b"Content-Type") + self.assertEqual(content_type, [b"text/html; charset=utf-8"], channel.result) # Check that the HTML we're getting is the one we expect on a successful renewal. - expected_html = self.hs.config.account_validity.account_renewed_html_content + expiration_ts = self.get_success(self.store.get_expiration_ts_for_user(user_id)) + expected_html = self.hs.config.account_validity_account_renewed_template.render( + expiration_ts=expiration_ts + ) + self.assertEqual( + channel.result["body"], expected_html.encode("utf8"), channel.result + ) + + # Move 1 day forward. Try to renew with the same token again. + url = "/_matrix/client/unstable/account_validity/renew?token=%s" % renewal_token + channel = self.make_request(b"GET", url) + self.assertEquals(channel.result["code"], b"200", channel.result) + + # Check that we're getting HTML back. + content_type = channel.headers.getRawHeaders(b"Content-Type") + self.assertEqual(content_type, [b"text/html; charset=utf-8"], channel.result) + + # Check that the HTML we're getting is the one we expect when reusing a + # token. The account expiration date should not have changed. + expected_html = ( + self.hs.config.account_validity_account_previously_renewed_template.render( + expiration_ts=expiration_ts + ) + ) self.assertEqual( channel.result["body"], expected_html.encode("utf8"), channel.result ) @@ -531,15 +551,12 @@ def test_renewal_invalid_token(self): self.assertEquals(channel.result["code"], b"404", channel.result) # Check that we're getting HTML back. - content_type = None - for header in channel.result.get("headers", []): - if header[0] == b"Content-Type": - content_type = header[1] - self.assertEqual(content_type, b"text/html; charset=utf-8", channel.result) + content_type = channel.headers.getRawHeaders(b"Content-Type") + self.assertEqual(content_type, [b"text/html; charset=utf-8"], channel.result) # Check that the HTML we're getting is the one we expect when using an # invalid/unknown token. - expected_html = self.hs.config.account_validity.invalid_token_html_content + expected_html = self.hs.config.account_validity_invalid_token_template.render() self.assertEqual( channel.result["body"], expected_html.encode("utf8"), channel.result ) @@ -647,7 +664,12 @@ def make_homeserver(self, reactor, clock): config["account_validity"] = {"enabled": False} self.hs = self.setup_test_homeserver(config=config) - self.hs.config.account_validity.period = self.validity_period + + # We need to set these directly, instead of in the homeserver config dict above. + # This is due to account validity-related config options not being read by + # Synapse when account_validity.enabled is False. + self.hs.get_datastore()._account_validity_period = self.validity_period + self.hs.get_datastore()._account_validity_startup_job_max_delta = self.max_delta self.store = self.hs.get_datastore() From 4caface312d40a744f6704872346c9bc817e8c1e Mon Sep 17 00:00:00 2001 From: Andrew Morgan Date: Fri, 16 Apr 2021 16:42:41 +0100 Subject: [PATCH 02/12] Move migration file to latest migration stage --- .../12account_validity_token_used_ts_ms.sql} | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename synapse/storage/databases/main/schema/delta/{58/19account_validity_token_used_ts_ms.sql => 59/12account_validity_token_used_ts_ms.sql} (100%) diff --git a/synapse/storage/databases/main/schema/delta/58/19account_validity_token_used_ts_ms.sql b/synapse/storage/databases/main/schema/delta/59/12account_validity_token_used_ts_ms.sql similarity index 100% rename from synapse/storage/databases/main/schema/delta/58/19account_validity_token_used_ts_ms.sql rename to synapse/storage/databases/main/schema/delta/59/12account_validity_token_used_ts_ms.sql From 69e4a359d102f18713d5390ead61e3a12b571c0a Mon Sep 17 00:00:00 2001 From: Andrew Morgan Date: Fri, 16 Apr 2021 17:24:58 +0100 Subject: [PATCH 03/12] Add account_previously_renewed_html_path to sample config --- docs/sample_config.yaml | 17 ++++++++++++++--- synapse/config/account_validity.py | 17 ++++++++++++++--- 2 files changed, 28 insertions(+), 6 deletions(-) diff --git a/docs/sample_config.yaml b/docs/sample_config.yaml index c545702577de..01d041a833ef 100644 --- a/docs/sample_config.yaml +++ b/docs/sample_config.yaml @@ -1424,13 +1424,24 @@ account_validity: #template_dir: "res/templates" # File within 'template_dir' giving the HTML to be displayed to the user after - # they successfully renewed their account. If not set, default text is used. + # they successfully renewed their account. + # + # If not set, the file is assumed to be named "account_renewed.html". # #account_renewed_html_path: "account_renewed.html" + # File within 'template_dir' giving the HTML to be displayed to the user if + # they attempt to renew their account with a token that is valid, but that + # has already been used. The account is not renewed again in this case. + # + # If not set, the file is assumed to be named "account_previously_renewed.html". + # + #account_previously_renewed_html_path: "account_previously_renewed.html" + # File within 'template_dir' giving the HTML to be displayed when the user - # tries to renew an account with an invalid renewal token. If not set, - # default text is used. + # tries to renew an account with an invalid renewal token. + # + # If not set, the file is assumed to be named "invalid_token.html". # #invalid_token_html_path: "invalid_token.html" diff --git a/synapse/config/account_validity.py b/synapse/config/account_validity.py index ea3e55c2e85e..3f226f9af471 100644 --- a/synapse/config/account_validity.py +++ b/synapse/config/account_validity.py @@ -134,13 +134,24 @@ def generate_config_section(self, **kwargs): #template_dir: "res/templates" # File within 'template_dir' giving the HTML to be displayed to the user after - # they successfully renewed their account. If not set, default text is used. + # they successfully renewed their account. + # + # If not set, the file is assumed to be named "account_renewed.html". # #account_renewed_html_path: "account_renewed.html" + # File within 'template_dir' giving the HTML to be displayed to the user if + # they attempt to renew their account with a token that is valid, but that + # has already been used. The account is not renewed again in this case. + # + # If not set, the file is assumed to be named "account_previously_renewed.html". + # + #account_previously_renewed_html_path: "account_previously_renewed.html" + # File within 'template_dir' giving the HTML to be displayed when the user - # tries to renew an account with an invalid renewal token. If not set, - # default text is used. + # tries to renew an account with an invalid renewal token. + # + # If not set, the file is assumed to be named "invalid_token.html". # #invalid_token_html_path: "invalid_token.html" """ From 7ce453f2e766f1c59474871760eb96a2d7558c2a Mon Sep 17 00:00:00 2001 From: Andrew Morgan Date: Fri, 16 Apr 2021 17:44:15 +0100 Subject: [PATCH 04/12] Add note to UPGRADE.rst about changes in account validity templates --- UPGRADE.rst | 23 +++++++++++++++++++++++ 1 file changed, 23 insertions(+) diff --git a/UPGRADE.rst b/UPGRADE.rst index 665821d4ef04..f48500615e11 100644 --- a/UPGRADE.rst +++ b/UPGRADE.rst @@ -85,6 +85,29 @@ for example: wget https://packages.matrix.org/debian/pool/main/m/matrix-synapse-py3/matrix-synapse-py3_1.3.0+stretch1_amd64.deb dpkg -i matrix-synapse-py3_1.3.0+stretch1_amd64.deb +Upgrading to v1.33.0 +==================== + +Account Validity HTML templates can now display a user's expiration date +------------------------------------------------------------------------ + +This may affect you if you have enabled the account validity feature, and have made use of a +custom HTML template specified by the ``account_validity.template_dir`` and ``account_validity.account_renewed_html_path`` +Synapse config options. + +The template can now accept an ``expiration_ts`` variable, which represents the unix timestamp in milliseconds for the +future date of which their account has been renewed until. See the +`default template ` +for an example of usage. + +Relatedly, note that in this update a new HTML template has been added which is shown to users when they +attempt to renew their account with a valid renewal token that has already been used before. The default template +contents can been found +`here `, and +can also accept an ``expiration_ts`` variable. This template replaces the error message users would previously see upon +attempting to use a token more than once. + + Upgrading to v1.32.0 ==================== From c0f090874f7efad779d6b071fc1bf75cfa6dfde5 Mon Sep 17 00:00:00 2001 From: Andrew Morgan Date: Fri, 16 Apr 2021 17:49:38 +0100 Subject: [PATCH 05/12] Changelog --- changelog.d/9832.feature | 1 + 1 file changed, 1 insertion(+) create mode 100644 changelog.d/9832.feature diff --git a/changelog.d/9832.feature b/changelog.d/9832.feature new file mode 100644 index 000000000000..e76395fbe886 --- /dev/null +++ b/changelog.d/9832.feature @@ -0,0 +1 @@ +Don't return an error when a user attempts to renew their account multiple times with the same token. Instead, state when their account is set to expire. This change concerns the optional account validity feature. \ No newline at end of file From a89b3542fd3aad12bb112f14ebeb029c9c77c0e7 Mon Sep 17 00:00:00 2001 From: Andrew Morgan <1342360+anoadragon453@users.noreply.github.com> Date: Mon, 19 Apr 2021 16:28:04 +0100 Subject: [PATCH 06/12] Apply suggestions from code review Co-authored-by: Richard van der Hoff <1389908+richvdh@users.noreply.github.com> --- UPGRADE.rst | 4 ++-- synapse/config/account_validity.py | 2 +- synapse/handlers/account_validity.py | 2 +- 3 files changed, 4 insertions(+), 4 deletions(-) diff --git a/UPGRADE.rst b/UPGRADE.rst index f48500615e11..e84dbb987741 100644 --- a/UPGRADE.rst +++ b/UPGRADE.rst @@ -97,13 +97,13 @@ Synapse config options. The template can now accept an ``expiration_ts`` variable, which represents the unix timestamp in milliseconds for the future date of which their account has been renewed until. See the -`default template ` +`default template `_ for an example of usage. Relatedly, note that in this update a new HTML template has been added which is shown to users when they attempt to renew their account with a valid renewal token that has already been used before. The default template contents can been found -`here `, and +`here `_, and can also accept an ``expiration_ts`` variable. This template replaces the error message users would previously see upon attempting to use a token more than once. diff --git a/synapse/config/account_validity.py b/synapse/config/account_validity.py index 3f226f9af471..59875830ad82 100644 --- a/synapse/config/account_validity.py +++ b/synapse/config/account_validity.py @@ -80,7 +80,7 @@ def read_config(self, config, **kwargs): def generate_config_section(self, **kwargs): return """\ ## Account Validity ## - # + # Optional account validity configuration. This allows for accounts to be denied # any request after a given period. # diff --git a/synapse/handlers/account_validity.py b/synapse/handlers/account_validity.py index bec8fb18714b..529d2c4230a5 100644 --- a/synapse/handlers/account_validity.py +++ b/synapse/handlers/account_validity.py @@ -241,7 +241,7 @@ async def renew_account(self, renewal_token: str) -> Tuple[bool, bool, int]: Returns: A tuple containing: * A bool representing whether the token is valid and unused. - * A bool representing whether the token is stale. + * A bool which is `True` if the token is valid, but stale. * An int representing the user's expiry timestamp as milliseconds since the epoch, or 0 if the token was invalid. """ From bd15afef2466a2187e97695ab07088c2020d2068 Mon Sep 17 00:00:00 2001 From: Andrew Morgan Date: Mon, 19 Apr 2021 17:08:49 +0100 Subject: [PATCH 07/12] Point directly to the config class where referencing AV config --- synapse/api/auth.py | 4 ++- synapse/handlers/account_validity.py | 26 ++++++++++++------- synapse/handlers/deactivate_account.py | 4 ++- synapse/push/pusherpool.py | 4 ++- .../rest/client/v2_alpha/account_validity.py | 10 ++++--- .../storage/databases/main/registration.py | 10 ++++--- tests/rest/client/v2_alpha/test_register.py | 12 ++++----- 7 files changed, 45 insertions(+), 25 deletions(-) diff --git a/synapse/api/auth.py b/synapse/api/auth.py index a09fc526a9d9..872fd100cdd0 100644 --- a/synapse/api/auth.py +++ b/synapse/api/auth.py @@ -79,7 +79,9 @@ def __init__(self, hs): self._auth_blocking = AuthBlocking(self.hs) - self._account_validity_enabled = hs.config.account_validity_enabled + self._account_validity_enabled = ( + hs.config.account_validity.account_validity_enabled + ) self._track_appservice_user_ips = hs.config.track_appservice_user_ips self._macaroon_secret_key = hs.config.macaroon_secret_key diff --git a/synapse/handlers/account_validity.py b/synapse/handlers/account_validity.py index 529d2c4230a5..5b927f10b3a9 100644 --- a/synapse/handlers/account_validity.py +++ b/synapse/handlers/account_validity.py @@ -39,36 +39,44 @@ def __init__(self, hs: "HomeServer"): self.sendmail = self.hs.get_sendmail() self.clock = self.hs.get_clock() - self._account_validity_enabled = self.hs.config.account_validity_enabled + self._account_validity_enabled = ( + hs.config.account_validity.account_validity_enabled + ) self._account_validity_renew_by_email_enabled = ( - self.hs.config.account_validity_renew_by_email_enabled + hs.config.account_validity.account_validity_renew_by_email_enabled ) self._account_validity_period = None if self._account_validity_enabled: - self._account_validity_period = self.hs.config.account_validity_period + self._account_validity_period = ( + hs.config.account_validity.account_validity_period + ) if ( self._account_validity_enabled and self._account_validity_renew_by_email_enabled ): # Don't do email-specific configuration if renewal by email is disabled. - self._template_html = self.config.account_validity_template_html - self._template_text = self.config.account_validity_template_text + self._template_html = ( + hs.config.account_validity.account_validity_template_html + ) + self._template_text = ( + hs.config.account_validity.account_validity_template_text + ) account_validity_renew_email_subject = ( - self.hs.config.account_validity_renew_email_subject + hs.config.account_validity.account_validity_renew_email_subject ) try: - app_name = self.hs.config.email_app_name + app_name = hs.config.email_app_name self._subject = account_validity_renew_email_subject % {"app": app_name} - self._from_string = self.hs.config.email_notif_from % {"app": app_name} + self._from_string = hs.config.email_notif_from % {"app": app_name} except Exception: # If substitution failed, fall back to the bare strings. self._subject = account_validity_renew_email_subject - self._from_string = self.hs.config.email_notif_from + self._from_string = hs.config.email_notif_from self._raw_from = email.utils.parseaddr(self._from_string)[1] diff --git a/synapse/handlers/deactivate_account.py b/synapse/handlers/deactivate_account.py index 70b3b8fff19f..45d2404ddebf 100644 --- a/synapse/handlers/deactivate_account.py +++ b/synapse/handlers/deactivate_account.py @@ -49,7 +49,9 @@ def __init__(self, hs: "HomeServer"): if hs.config.run_background_tasks: hs.get_reactor().callWhenRunning(self._start_user_parting) - self._account_validity_enabled = hs.config.account_validity_enabled + self._account_validity_enabled = ( + hs.config.account_validity.account_validity_enabled + ) async def deactivate_account( self, diff --git a/synapse/push/pusherpool.py b/synapse/push/pusherpool.py index e3bd0c3156a7..579fcdf47250 100644 --- a/synapse/push/pusherpool.py +++ b/synapse/push/pusherpool.py @@ -62,7 +62,9 @@ def __init__(self, hs: "HomeServer"): self.store = self.hs.get_datastore() self.clock = self.hs.get_clock() - self._account_validity_enabled = hs.config.account_validity_enabled + self._account_validity_enabled = ( + hs.config.account_validity.account_validity_enabled + ) # We shard the handling of push notifications by user ID. self._pusher_shard_config = hs.config.push.pusher_shard_config diff --git a/synapse/rest/client/v2_alpha/account_validity.py b/synapse/rest/client/v2_alpha/account_validity.py index d5d04cf8f9a6..2d1ad3d3fbf0 100644 --- a/synapse/rest/client/v2_alpha/account_validity.py +++ b/synapse/rest/client/v2_alpha/account_validity.py @@ -37,12 +37,14 @@ def __init__(self, hs): self.account_activity_handler = hs.get_account_validity_handler() self.auth = hs.get_auth() self.account_renewed_template = ( - hs.config.account_validity_account_renewed_template + hs.config.account_validity.account_validity_account_renewed_template ) self.account_previously_renewed_template = ( - hs.config.account_validity_account_previously_renewed_template + hs.config.account_validity.account_validity_account_previously_renewed_template + ) + self.invalid_token_template = ( + hs.config.account_validity.account_validity_invalid_token_template ) - self.invalid_token_template = hs.config.account_validity_invalid_token_template async def on_GET(self, request): if b"token" not in request.args: @@ -86,7 +88,7 @@ def __init__(self, hs): self.account_activity_handler = hs.get_account_validity_handler() self.auth = hs.get_auth() self.account_validity_renew_by_email_enabled = ( - self.hs.config.account_validity_renew_by_email_enabled + hs.config.account_validity.account_validity_renew_by_email_enabled ) async def on_POST(self, request): diff --git a/synapse/storage/databases/main/registration.py b/synapse/storage/databases/main/registration.py index 90f61f23a643..6e5ee557d2ef 100644 --- a/synapse/storage/databases/main/registration.py +++ b/synapse/storage/databases/main/registration.py @@ -91,13 +91,17 @@ def __init__( id_column=None, ) - self._account_validity_enabled = hs.config.account_validity_enabled + self._account_validity_enabled = ( + hs.config.account_validity.account_validity_enabled + ) self._account_validity_period = None self._account_validity_startup_job_max_delta = None if self._account_validity_enabled: - self._account_validity_period = hs.config.account_validity_period + self._account_validity_period = ( + hs.config.account_validity.account_validity_period + ) self._account_validity_startup_job_max_delta = ( - hs.config.account_validity_startup_job_max_delta + hs.config.account_validity.account_validity_startup_job_max_delta ) if hs.config.run_background_tasks: diff --git a/tests/rest/client/v2_alpha/test_register.py b/tests/rest/client/v2_alpha/test_register.py index 89c8d87eb3a4..98695b05d5c4 100644 --- a/tests/rest/client/v2_alpha/test_register.py +++ b/tests/rest/client/v2_alpha/test_register.py @@ -509,7 +509,7 @@ def test_renewal_email(self): # Check that the HTML we're getting is the one we expect on a successful renewal. expiration_ts = self.get_success(self.store.get_expiration_ts_for_user(user_id)) - expected_html = self.hs.config.account_validity_account_renewed_template.render( + expected_html = self.hs.config.account_validity.account_validity_account_renewed_template.render( expiration_ts=expiration_ts ) self.assertEqual( @@ -527,10 +527,8 @@ def test_renewal_email(self): # Check that the HTML we're getting is the one we expect when reusing a # token. The account expiration date should not have changed. - expected_html = ( - self.hs.config.account_validity_account_previously_renewed_template.render( - expiration_ts=expiration_ts - ) + expected_html = self.hs.config.account_validity.account_validity_account_previously_renewed_template.render( + expiration_ts=expiration_ts ) self.assertEqual( channel.result["body"], expected_html.encode("utf8"), channel.result @@ -556,7 +554,9 @@ def test_renewal_invalid_token(self): # Check that the HTML we're getting is the one we expect when using an # invalid/unknown token. - expected_html = self.hs.config.account_validity_invalid_token_template.render() + expected_html = ( + self.hs.config.account_validity.account_validity_invalid_token_template.render() + ) self.assertEqual( channel.result["body"], expected_html.encode("utf8"), channel.result ) From 41a8f7dc7fe0d527e2881f58a170c6b278e9a474 Mon Sep 17 00:00:00 2001 From: Andrew Morgan Date: Mon, 19 Apr 2021 17:20:18 +0100 Subject: [PATCH 08/12] Fix empty line in sample_config --- docs/sample_config.yaml | 2 +- synapse/config/account_validity.py | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/docs/sample_config.yaml b/docs/sample_config.yaml index 01d041a833ef..5eb1ae327a0f 100644 --- a/docs/sample_config.yaml +++ b/docs/sample_config.yaml @@ -1370,7 +1370,7 @@ account_threepid_delegates: ## Account Validity ## -# + # Optional account validity configuration. This allows for accounts to be denied # any request after a given period. # diff --git a/synapse/config/account_validity.py b/synapse/config/account_validity.py index 59875830ad82..d12227b9b19c 100644 --- a/synapse/config/account_validity.py +++ b/synapse/config/account_validity.py @@ -80,7 +80,7 @@ def read_config(self, config, **kwargs): def generate_config_section(self, **kwargs): return """\ ## Account Validity ## - + # Optional account validity configuration. This allows for accounts to be denied # any request after a given period. # From a3672411b72a25bf76c9d8ce05e6c43bc0b1c3e4 Mon Sep 17 00:00:00 2001 From: Andrew Morgan Date: Mon, 19 Apr 2021 17:34:05 +0100 Subject: [PATCH 09/12] Ensure we actually read templates from the configured template_dir And remove stale comment. --- synapse/config/account_validity.py | 9 ++++++--- 1 file changed, 6 insertions(+), 3 deletions(-) diff --git a/synapse/config/account_validity.py b/synapse/config/account_validity.py index d12227b9b19c..c4fcda782820 100644 --- a/synapse/config/account_validity.py +++ b/synapse/config/account_validity.py @@ -54,8 +54,8 @@ def read_config(self, config, **kwargs): raise ConfigError("Can't send renewal emails without 'public_baseurl'") # Load account validity templates. - # We do this here instead of in AccountValidityConfig as read_templates - # relies on state that hasn't been initialised in AccountValidityConfig + account_validity_template_dir = account_validity_config.get("template_dir") + account_renewed_template_filename = account_validity_config.get( "account_renewed_html_path", "account_renewed.html" ) @@ -65,6 +65,8 @@ def read_config(self, config, **kwargs): invalid_token_template_filename = account_validity_config.get( "invalid_token_html_path", "invalid_token.html" ) + + # Read and store template content ( self.account_validity_account_renewed_template, self.account_validity_account_previously_renewed_template, @@ -74,7 +76,8 @@ def read_config(self, config, **kwargs): account_renewed_template_filename, account_previously_renewed_template_filename, invalid_token_template_filename, - ] + ], + account_validity_template_dir, ) def generate_config_section(self, **kwargs): From d702445f45c0b2db8bf80cc7c1d774790d1dbb29 Mon Sep 17 00:00:00 2001 From: Andrew Morgan Date: Mon, 19 Apr 2021 17:54:59 +0100 Subject: [PATCH 10/12] Don't add a new config option for the new template This required a bit of fiddling with the sample config in order to provide the same information about the new template, while removing the config option for it. --- UPGRADE.rst | 2 +- docs/sample_config.yaml | 32 ++++++++++++++++---------- synapse/config/account_validity.py | 36 +++++++++++++++++------------- 3 files changed, 41 insertions(+), 29 deletions(-) diff --git a/UPGRADE.rst b/UPGRADE.rst index e84dbb987741..82bfb80de933 100644 --- a/UPGRADE.rst +++ b/UPGRADE.rst @@ -92,7 +92,7 @@ Account Validity HTML templates can now display a user's expiration date ------------------------------------------------------------------------ This may affect you if you have enabled the account validity feature, and have made use of a -custom HTML template specified by the ``account_validity.template_dir`` and ``account_validity.account_renewed_html_path`` +custom HTML template specified by the ``account_validity.template_dir`` or ``account_validity.account_renewed_html_path`` Synapse config options. The template can now accept an ``expiration_ts`` variable, which represents the unix timestamp in milliseconds for the diff --git a/docs/sample_config.yaml b/docs/sample_config.yaml index 5eb1ae327a0f..d260d762590a 100644 --- a/docs/sample_config.yaml +++ b/docs/sample_config.yaml @@ -1421,25 +1421,33 @@ account_validity: # serve to the user when trying to renew an account. If not set, default # templates from within the Synapse package will be used. # + # The currently available templates are: + # + # * account_renewed.html: Displayed to the user after they have successfully + # renewed their account. + # + # * account_previously_renewed.html: Displayed to the user if they attempt to + # renew their account with a token that is valid, but that has already + # been used. In this case the account is not renewed again. + # + # * invalid_token.html: Displayed to the user when they try to renew an account + # with an unknown or invalid renewal token. + # + # See https://github.com/matrix-org/synapse/tree/master/synapse/res/templates for + # default template contents. + # + # The file name of some of these templates can be configured below for legacy + # reasons. + # #template_dir: "res/templates" - # File within 'template_dir' giving the HTML to be displayed to the user after - # they successfully renewed their account. + # A custom file name for the 'account_renewed.html' template. # # If not set, the file is assumed to be named "account_renewed.html". # #account_renewed_html_path: "account_renewed.html" - # File within 'template_dir' giving the HTML to be displayed to the user if - # they attempt to renew their account with a token that is valid, but that - # has already been used. The account is not renewed again in this case. - # - # If not set, the file is assumed to be named "account_previously_renewed.html". - # - #account_previously_renewed_html_path: "account_previously_renewed.html" - - # File within 'template_dir' giving the HTML to be displayed when the user - # tries to renew an account with an invalid renewal token. + # A custom file name for the 'invalid_token.html' template. # # If not set, the file is assumed to be named "invalid_token.html". # diff --git a/synapse/config/account_validity.py b/synapse/config/account_validity.py index c4fcda782820..76880b1d45b8 100644 --- a/synapse/config/account_validity.py +++ b/synapse/config/account_validity.py @@ -59,9 +59,6 @@ def read_config(self, config, **kwargs): account_renewed_template_filename = account_validity_config.get( "account_renewed_html_path", "account_renewed.html" ) - account_previously_renewed_template_filename = account_validity_config.get( - "account_previously_renewed_html_path", "account_previously_renewed.html" - ) invalid_token_template_filename = account_validity_config.get( "invalid_token_html_path", "invalid_token.html" ) @@ -74,7 +71,6 @@ def read_config(self, config, **kwargs): ) = self.read_templates( [ account_renewed_template_filename, - account_previously_renewed_template_filename, invalid_token_template_filename, ], account_validity_template_dir, @@ -134,25 +130,33 @@ def generate_config_section(self, **kwargs): # serve to the user when trying to renew an account. If not set, default # templates from within the Synapse package will be used. # + # The currently available templates are: + # + # * account_renewed.html: Displayed to the user after they have successfully + # renewed their account. + # + # * account_previously_renewed.html: Displayed to the user if they attempt to + # renew their account with a token that is valid, but that has already + # been used. In this case the account is not renewed again. + # + # * invalid_token.html: Displayed to the user when they try to renew an account + # with an unknown or invalid renewal token. + # + # See https://github.com/matrix-org/synapse/tree/master/synapse/res/templates for + # default template contents. + # + # The file name of some of these templates can be configured below for legacy + # reasons. + # #template_dir: "res/templates" - # File within 'template_dir' giving the HTML to be displayed to the user after - # they successfully renewed their account. + # A custom file name for the 'account_renewed.html' template. # # If not set, the file is assumed to be named "account_renewed.html". # #account_renewed_html_path: "account_renewed.html" - # File within 'template_dir' giving the HTML to be displayed to the user if - # they attempt to renew their account with a token that is valid, but that - # has already been used. The account is not renewed again in this case. - # - # If not set, the file is assumed to be named "account_previously_renewed.html". - # - #account_previously_renewed_html_path: "account_previously_renewed.html" - - # File within 'template_dir' giving the HTML to be displayed when the user - # tries to renew an account with an invalid renewal token. + # A custom file name for the 'invalid_token.html' template. # # If not set, the file is assumed to be named "invalid_token.html". # From fdbf9a8f4a7ecc842c38d432763053e89812f4b4 Mon Sep 17 00:00:00 2001 From: Andrew Morgan Date: Mon, 19 Apr 2021 18:34:32 +0100 Subject: [PATCH 11/12] Replace config option with hardcoded template name --- synapse/config/account_validity.py | 1 + 1 file changed, 1 insertion(+) diff --git a/synapse/config/account_validity.py b/synapse/config/account_validity.py index 76880b1d45b8..c58a7d95a785 100644 --- a/synapse/config/account_validity.py +++ b/synapse/config/account_validity.py @@ -71,6 +71,7 @@ def read_config(self, config, **kwargs): ) = self.read_templates( [ account_renewed_template_filename, + "account_previously_renewed.html", invalid_token_template_filename, ], account_validity_template_dir, From d3f2a260a765acf8b0a936d4bdda96e2018c4ae5 Mon Sep 17 00:00:00 2001 From: Andrew Morgan Date: Mon, 19 Apr 2021 19:15:10 +0100 Subject: [PATCH 12/12] Some small wording updates to the UPGRADES.rst notice --- UPGRADE.rst | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/UPGRADE.rst b/UPGRADE.rst index 82bfb80de933..eff976017dd5 100644 --- a/UPGRADE.rst +++ b/UPGRADE.rst @@ -100,12 +100,12 @@ future date of which their account has been renewed until. See the `default template `_ for an example of usage. -Relatedly, note that in this update a new HTML template has been added which is shown to users when they -attempt to renew their account with a valid renewal token that has already been used before. The default template -contents can been found -`here `_, and -can also accept an ``expiration_ts`` variable. This template replaces the error message users would previously see upon -attempting to use a token more than once. +ALso note that a new HTML template, ``account_previously_renewed.html``, has been added. This is is shown to users +when they attempt to renew their account with a valid renewal token that has already been used before. The default +template contents can been found +`here `_, +and can also accept an ``expiration_ts`` variable. This template replaces the error message users would previously see +upon attempting to use a valid renewal token more than once. Upgrading to v1.32.0