Merge pull request #2623 from matrix-org/rav/callbacks_for_auth_providers

Allow password_auth_providers to return a callback
2025-05-02 12:06:08 -04:00 · 2017-11-02 10:49:03 +00:00 · 2017-11-02 10:49:03 +00:00 · 1f080a6c97
commit 1f080a6c97
parent 04897c9dc1 979eed4362
3 changed files with 20 additions and 7 deletions
--- a/synapse/handlers/auth.py
+++ b/synapse/handlers/auth.py
@ -270,6 +270,7 @@ class AuthHandler(BaseHandler):
        sess = self._get_session_info(session_id)
        return sess.setdefault('serverdict', {}).get(key, default)

+    @defer.inlineCallbacks
    def _check_password_auth(self, authdict, _):
        if "user" not in authdict or "password" not in authdict:
            raise LoginError(400, "", Codes.MISSING_PARAM)
@ -277,10 +278,11 @@ class AuthHandler(BaseHandler):
        user_id = authdict["user"]
        password = authdict["password"]

-        return self.validate_login(user_id, {
+        (canonical_id, callback) = yield self.validate_login(user_id, {
            "type": LoginType.PASSWORD,
            "password": password,
        })
+        defer.returnValue(canonical_id)

    @defer.inlineCallbacks
    def _check_recaptcha(self, authdict, clientip):
@ -517,7 +519,8 @@ class AuthHandler(BaseHandler):
            login_submission (dict): the whole of the login submission
                (including 'type' and other relevant fields)
        Returns:
-            Deferred[str]: canonical user id
+            Deferred[str, func]: canonical user id, and optional callback
+                to be called once the access token and device id are issued
        Raises:
            StoreError if there was a problem accessing the database
            SynapseError if there was a problem with the request
@ -581,11 +584,13 @@ class AuthHandler(BaseHandler):
                    ),
                )

-            returned_user_id = yield provider.check_auth(
+            result = yield provider.check_auth(
                username, login_type, login_dict,
            )
-            if returned_user_id:
-                defer.returnValue(returned_user_id)
+            if result:
+                if isinstance(result, str):
+                    result = (result, None)
+                defer.returnValue(result)

        if login_type == LoginType.PASSWORD:
            known_login_type = True
@ -595,7 +600,7 @@ class AuthHandler(BaseHandler):
            )

            if canonical_user_id:
-                defer.returnValue(canonical_user_id)
+                defer.returnValue((canonical_user_id, None))

        if not known_login_type:
            raise SynapseError(400, "Unknown login type %s" % login_type)