Add ability to perform password reset via email without trusting the identity server (#5377)
Sends password reset emails from the homeserver instead of proxying to the identity server. This is now the default behaviour for security reasons. If you wish to continue proxying password reset requests to the identity server you must now enable the email.trust_identity_server_for_password_resets option. This PR is a culmination of 3 smaller PRs which have each been separately reviewed: * #5308 * #5345 * #5368
Showing
- changelog.d/5377.feature 1 addition, 0 deletionschangelog.d/5377.feature
- docs/sample_config.yaml 50 additions, 10 deletionsdocs/sample_config.yaml
- synapse/api/errors.py 9 additions, 0 deletionssynapse/api/errors.py
- synapse/app/homeserver.py 1 addition, 0 deletionssynapse/app/homeserver.py
- synapse/config/emailconfig.py 138 additions, 15 deletionssynapse/config/emailconfig.py
- synapse/handlers/auth.py 52 additions, 12 deletionssynapse/handlers/auth.py
- synapse/handlers/identity.py 11 additions, 2 deletionssynapse/handlers/identity.py
- synapse/push/mailer.py 67 additions, 18 deletionssynapse/push/mailer.py
- synapse/push/pusher.py 2 additions, 2 deletionssynapse/push/pusher.py
- synapse/python_dependencies.py 1 addition, 1 deletionsynapse/python_dependencies.py
- synapse/res/templates/password_reset.html 9 additions, 0 deletionssynapse/res/templates/password_reset.html
- synapse/res/templates/password_reset.txt 7 additions, 0 deletionssynapse/res/templates/password_reset.txt
- synapse/res/templates/password_reset_failure.html 6 additions, 0 deletionssynapse/res/templates/password_reset_failure.html
- synapse/res/templates/password_reset_success.html 6 additions, 0 deletionssynapse/res/templates/password_reset_success.html
- synapse/rest/client/v2_alpha/account.py 238 additions, 5 deletionssynapse/rest/client/v2_alpha/account.py
- synapse/storage/_base.py 5 additions, 1 deletionsynapse/storage/_base.py
- synapse/storage/prepare_database.py 1 addition, 1 deletionsynapse/storage/prepare_database.py
- synapse/storage/registration.py 287 additions, 3 deletionssynapse/storage/registration.py
- synapse/storage/schema/delta/55/track_threepid_validations.sql 31 additions, 0 deletions...se/storage/schema/delta/55/track_threepid_validations.sql
- tests/utils.py 0 additions, 1 deletiontests/utils.py
Loading
Please register or sign in to comment