Commits · 6633a4015a7b4ba60f87c5e6f979a9c9d8f9d8fe · TeDomum / Matrix

Oct 29, 2020

Add ability for access tokens to belong to one user but grant access to another user. (#8616) · f21e24ff

Erik Johnston authored 4 years ago

We do it this way round so that only the "owner" can delete the access token (i.e. `/logout/all` by the "owner" also deletes that token, but `/logout/all` by the "target user" doesn't).

A future PR will add an API for creating such a token.

When the target user and authenticated entity are different the `Processed request` log line will be logged with a: `{@admin:server as @bob:server} ...`. I'm not convinced by that format (especially since it adds spaces in there, making it harder to use `cut -d ' '` to chop off the start of log lines). Suggestions welcome.

Unverified

f21e24ff

Aug 24, 2020

Do not apply ratelimiting on joins to appservices (#8139) · 2df82ae4

Will Hunt authored 4 years ago

Add new method ratelimiter.can_requester_do_action and ensure that appservices are exempt from being ratelimited.

Co-authored-by: Patrick Cloke <clokep@users.noreply.github.com>
Co-authored-by: Erik Johnston <erik@matrix.org>

Unverified

2df82ae4

Aug 21, 2020

Do not apply ratelimiting on joins to appservices (#8139) · cbbf9126

Will Hunt authored 4 years ago

Add new method ratelimiter.can_requester_do_action and ensure that appservices are exempt from being ratelimited.

Co-authored-by: Patrick Cloke <clokep@users.noreply.github.com>
Co-authored-by: Erik Johnston <erik@matrix.org>

Unverified

cbbf9126

Jun 05, 2020

Performance improvements and refactor of Ratelimiter (#7595) · f4e6495b

Andrew Morgan authored 4 years ago

While working on https://github.com/matrix-org/synapse/issues/5665 I found myself digging into the `Ratelimiter` class and seeing that it was both:

* Rather undocumented, and
* causing a *lot* of config checks

This PR attempts to refactor and comment the `Ratelimiter` class, as well as encourage config file accesses to only be done at instantiation. 

Best to be reviewed commit-by-commit.

Unverified

f4e6495b

May 10, 2019
- Run Black on the tests again (#5170) · b36c8257
  Amber Brown authored 5 years ago
  
  Unverified
  
  b36c8257
Mar 05, 2019

Add rate-limiting on registration (#4735) · a4c3a361

Brendan Abolivier authored 6 years ago


* Rate-limiting for registration

* Add unit test for registration rate limiting

* Add config parameters for rate limiting on auth endpoints

* Doc

* Fix doc of rate limiting function

Co-Authored-By: babolivier <contact@brendanabolivier.com>

* Incorporate review

* Fix config parsing

* Fix linting errors

* Set default config for auth rate limiting

* Fix tests

* Add changelog

* Advance reactor instead of mocked clock

* Move parameters to registration specific config and give them more sensible default values

* Remove unused config options

* Don't mock the rate limiter un MAU tests

* Rename _register_with_store into register_with_store

* Make CI happy

* Remove unused import

* Update sample config

* Fix ratelimiting test for py2

* Add non-guest test

Unverified

a4c3a361

Aug 10, 2018
- Run black. · 8b3d9b6b
  black authored 6 years ago
  
  8b3d9b6b
Feb 19, 2016
- Fix flake8 warnings for tests · 700487a7
  Mark Haines authored 9 years ago
  
  700487a7
Sep 12, 2014
- Have all unit tests import from our own subclass of trial's unittest TestCase;... · cd62ee3f
  Paul "LeoNerd" Evans authored 10 years ago
  
  Have all unit tests import from our own subclass of trial's unittest TestCase; set up logging in ONE PLACE ONLY
  cd62ee3f
Sep 02, 2014
- Test ratelimiter · dd2cd931
  Mark Haines authored 10 years ago
  
  dd2cd931