Add config variables for enabling terms auth and the policy name (#4142)

So people can still collect consent the old way if they want to.
2025-12-15 19:08:43 -05:00 · 2018-11-06 03:32:34 -07:00 · 2018-11-06 03:32:34 -07:00 · 0f5e51f726
commit 0f5e51f726
parent f1087106cf
10 changed files with 65 additions and 11 deletions
--- a/synapse/config/consent_config.py
+++ b/synapse/config/consent_config.py
@ -42,6 +42,14 @@ DEFAULT_CONFIG = """\
 # until the user consents to the privacy policy. The value of the setting is
 # used as the text of the error.
 #
+# 'require_at_registration', if enabled, will add a step to the registration
+# process, similar to how captcha works. Users will be required to accept the
+# policy before their account is created.
+#
+# 'policy_name' is the display name of the policy users will see when registering
+# for an account. Has no effect unless `require_at_registration` is enabled.
+# Defaults to "Privacy Policy".
+#
 # user_consent:
 #   template_dir: res/templates/privacy
 #   version: 1.0
@ -54,6 +62,8 @@ DEFAULT_CONFIG = """\
 #   block_events_error: >-
 #     To continue using this homeserver you must review and agree to the
 #     terms and conditions at %(consent_uri)s
+#   require_at_registration: False
+#   policy_name: Privacy Policy
 #
 """

@ -67,6 +77,8 @@ class ConsentConfig(Config):
        self.user_consent_server_notice_content = None
        self.user_consent_server_notice_to_guests = False
        self.block_events_without_consent_error = None
+        self.user_consent_at_registration = False
+        self.user_consent_policy_name = "Privacy Policy"

    def read_config(self, config):
        consent_config = config.get("user_consent")
@ -83,6 +95,12 @@ class ConsentConfig(Config):
        self.user_consent_server_notice_to_guests = bool(consent_config.get(
            "send_server_notice_to_guests", False,
        ))
+        self.user_consent_at_registration = bool(consent_config.get(
+            "require_at_registration", False,
+        ))
+        self.user_consent_policy_name = consent_config.get(
+            "policy_name", "Privacy Policy",
+        )

    def default_config(self, **kwargs):
        return DEFAULT_CONFIG
--- a/synapse/handlers/auth.py
+++ b/synapse/handlers/auth.py
@ -472,7 +472,7 @@ class AuthHandler(BaseHandler):
                "privacy_policy": {
                    "version": self.hs.config.user_consent_version,
                    "en": {
-                        "name": "Privacy Policy",
+                        "name": self.hs.config.user_consent_policy_name,
                        "url": "%s/_matrix/consent?v=%s" % (
                            self.hs.config.public_baseurl,
                            self.hs.config.user_consent_version,
--- a/synapse/rest/client/v2_alpha/register.py
+++ b/synapse/rest/client/v2_alpha/register.py
@ -360,7 +360,7 @@ class RegisterRestServlet(RestServlet):
                ])

        # Append m.login.terms to all flows if we're requiring consent
-        if self.hs.config.block_events_without_consent_error is not None:
+        if self.hs.config.user_consent_at_registration:
            new_flows = []
            for flow in flows:
                flow.append(LoginType.TERMS)
--- a/synapse/rest/consent/consent_resource.py
+++ b/synapse/rest/consent/consent_resource.py
@ -142,7 +142,7 @@ class ConsentResource(Resource):
        userhmac = None
        has_consented = False
        public_version = username == ""
-        if not public_version:
+        if not public_version or not self.hs.config.user_consent_at_registration:
            userhmac = parse_string(request, "h", required=True, encoding=None)

            self._check_hash(username, userhmac)