Merge pull request #216 from matrix-org/auth

Clean up some docs and redundant fluff
2024-10-01 11:49:51 -04:00 · 2015-08-12 10:55:42 +01:00 · 2015-08-12 10:55:42 +01:00 · 7b49236b37
commit 7b49236b37
parent 275f7c987c 45610305ea
2 changed files with 21 additions and 16 deletions
--- a/synapse/api/auth.py
+++ b/synapse/api/auth.py
@ -44,6 +44,11 @@ class Auth(object):
    def check(self, event, auth_events):
        """ Checks if this event is correctly authed.

+        Args:
+            event: the event being checked.
+            auth_events (dict: event-key -> event): the existing room state.
+
+
        Returns:
            True if the auth checks pass.
        """
@ -319,7 +324,7 @@ class Auth(object):
        Returns:
            tuple : of UserID and device string:
                User ID object of the user making the request
-                Client ID object of the client instance the user is using
+                ClientInfo object of the client instance the user is using
        Raises:
            AuthError if no user by that token exists or the token is invalid.
        """
@ -352,7 +357,7 @@ class Auth(object):
                )
                return
            except KeyError:
-                pass  # normal users won't have this query parameter set
+                pass  # normal users won't have the user_id query parameter set.

            user_info = yield self.get_user_by_token(access_token)
            user = user_info["user"]
@ -521,23 +526,22 @@ class Auth(object):

        # Check state_key
        if hasattr(event, "state_key"):
-            if not event.state_key.startswith("_"):
-                if event.state_key.startswith("@"):
-                    if event.state_key != event.user_id:
+            if event.state_key.startswith("@"):
+                if event.state_key != event.user_id:
+                    raise AuthError(
+                        403,
+                        "You are not allowed to set others state"
+                    )
+                else:
+                    sender_domain = UserID.from_string(
+                        event.user_id
+                    ).domain
+
+                    if sender_domain != event.state_key:
                        raise AuthError(
                            403,
                            "You are not allowed to set others state"
                        )
-                    else:
-                        sender_domain = UserID.from_string(
-                            event.user_id
-                        ).domain
-
-                        if sender_domain != event.state_key:
-                            raise AuthError(
-                                403,
-                                "You are not allowed to set others state"
-                            )

        return True

--- a/synapse/types.py
+++ b/synapse/types.py
@ -178,7 +178,7 @@ class RoomStreamToken(namedtuple("_StreamToken", "topological stream")):

    Live tokens start with an "s" followed by the "stream_ordering" id of the
    event it comes after. Historic tokens start with a "t" followed by the
-    "topological_ordering" id of the event it comes after, follewed by "-",
+    "topological_ordering" id of the event it comes after, followed by "-",
    followed by the "stream_ordering" id of the event it comes after.
    """
    __slots__ = []
@ -211,4 +211,5 @@ class RoomStreamToken(namedtuple("_StreamToken", "topological stream")):
            return "s%d" % (self.stream,)


+# token_id is the primary key ID of the access token, not the access token itself.
 ClientInfo = namedtuple("ClientInfo", ("device_id", "token_id"))