Make registration idempotent #649

dbkr · Mar 16, 2016

If you specify the same session, make it give you an access token for the user that was registered on previous uses of that session. Tweak the UI auth layer to not delete sessions when their auth has completed and hence expire them so they don't hang around until server restart. Allow server-side data to be associated with UI auth sessions.

sytest: matrix-org/sytest#213
Fixes vector-im/vector-web#957

Why not use hs.get_clock()?

We generally try and consistently use milliseconds internally, rather than seconds.

We generally try and consistently always use milliseconds.

(You get brownie points for including "secs" in the name though)

erikjohnston · Mar 16, 2016

To what extend do we care if session information gets dropped on the floor over restarts?

dbkr · Mar 16, 2016

We probably do care that session information gets dropped over restarts, but no more so now than before, so I think that would be a separate fix.

Do the session ids get sent to the client? Or they purely internal?

They get sent to the client

Its probably fine, but random_string_with_symbols will return a lot of silly symbols, so I've tended to avoid using them in public APIs (especially for anything that is used as query string params)

Yeah, maybe - this one only goes into json so it should be fine, but possibly the extra token space isn't worth it.

erikjohnston · Mar 16, 2016

We probably do care that session information gets dropped over restarts, but no more so now than before, so I think that would be a separate fix.

Fair enough

time_msec() :)

erikjohnston · Mar 16, 2016

LGTM

dbkr assigned erikjohnston Mar 16, 2016

dbkr referenced this pull request in matrix-org/sytest Mar 16, 2016
Merged
Test registration idempotency #213

dbkr referenced this pull request in matrix-org/matrix-react-sdk Mar 16, 2016
Merged
Poll for email validation once the validation email has been sent #223

richvdh deleted the dbkr/idempotent_registration branch Dec 1, 2016

@@ -455,11 +485,17 @@ def add_threepid(self, user_id, medium, address, validated_at):
          def _save_session(self, session):
              # TODO: Persistent storage
              logger.debug("Saving session %s", session)
+    +        session["last_used"] = time.time()

@@ -263,7 +293,7 @@ def _get_session_info(self, session_id):
              if not session_id:
                  # create a new session
                  while session_id is None or session_id in self.sessions:
-    -                session_id = stringutils.random_string(24)
+    +                session_id = stringutils.random_string_with_symbols(24)

              self.sessions[session["id"]] = session
-    -
-    -    def _remove_session(self, session):
-    -        logger.debug("Removing session %s", session)
-    -        del self.sessions[session["id"]]
+    +        self._prune_sessions()
+    +
+    +    def _prune_sessions(self):
+    +        for sid, sess in self.sessions.items():
+    +            last_used = 0
+    +            if 'last_used' in sess:
+    +                last_used = sess['last_used']
+    +            if last_used < self.hs.get_clock().time() - AuthHandler.SESSION_EXPIRE_MS:

matrix-org/synapse

Make registration idempotent #649

dbkr commented Mar 16, 2016

dbkr assigned erikjohnston Mar 16, 2016

dbkr added a commit to matrix-org/sytest that referenced this pull request Mar 16, 2016

dbkr referenced this pull request in matrix-org/sytest Mar 16, 2016

Test registration idempotency #213

dbkr added some commits Mar 16, 2016

erikjohnston commented on an outdated diff Mar 16, 2016

erikjohnston commented on an outdated diff Mar 16, 2016

erikjohnston commented Mar 16, 2016

dbkr commented Mar 16, 2016

erikjohnston and 1 other commented on an outdated diff Mar 16, 2016

erikjohnston commented Mar 16, 2016

dbkr added some commits Mar 16, 2016

erikjohnston commented on an outdated diff Mar 16, 2016

dbkr added some commits Mar 16, 2016

erikjohnston commented Mar 16, 2016

dbkr added a commit that referenced this pull request Mar 16, 2016

dbkr merged commit `48b2e85` into develop Mar 16, 2016
8 checks passed

8 checks passed

dbkr added a commit to matrix-org/matrix-react-sdk that referenced this pull request Mar 16, 2016

dbkr referenced this pull request in matrix-org/matrix-react-sdk Mar 16, 2016

Poll for email validation once the validation email has been sent #223

richvdh deleted the dbkr/idempotent_registration branch Dec 1, 2016

matrix-org/synapse

Join GitHub today

Make registration idempotent #649

Conversation

dbkr commented Mar 16, 2016

All checks have failed

dbkr assigned erikjohnston Mar 16, 2016

dbkr added a commit to matrix-org/sytest that referenced this pull request Mar 16, 2016

All checks have failed

dbkr referenced this pull request in matrix-org/sytest Mar 16, 2016

dbkr added some commits Mar 16, 2016

Some checks were not successful

All checks have passed

Show 1 comment Hide comment erikjohnston commented on an outdated diff Mar 16, 2016

Show 1 comment Hide comment erikjohnston commented on an outdated diff Mar 16, 2016

erikjohnston commented Mar 16, 2016

dbkr commented Mar 16, 2016

Show 4 comments Hide comments erikjohnston and 1 other commented on an outdated diff Mar 16, 2016

All checks have passed

erikjohnston commented Mar 16, 2016

dbkr added some commits Mar 16, 2016

All checks have passed

All checks have passed

Show 1 comment Hide comment erikjohnston commented on an outdated diff Mar 16, 2016

dbkr added some commits Mar 16, 2016

Some checks were not successful

All checks have passed

erikjohnston commented Mar 16, 2016

dbkr added a commit that referenced this pull request Mar 16, 2016

All checks have passed

Hide details View details dbkr merged commit 48b2e85 into develop Mar 16, 2016 8 checks passed

8 checks passed

dbkr added a commit to matrix-org/matrix-react-sdk that referenced this pull request Mar 16, 2016

dbkr referenced this pull request in matrix-org/matrix-react-sdk Mar 16, 2016

richvdh deleted the dbkr/idempotent_registration branch Dec 1, 2016

erikjohnston commented on an outdated diff Mar 16, 2016

erikjohnston commented on an outdated diff Mar 16, 2016

erikjohnston and 1 other commented on an outdated diff Mar 16, 2016

erikjohnston commented on an outdated diff Mar 16, 2016

dbkr merged commit `48b2e85` into develop Mar 16, 2016
8 checks passed