mirror of
https://git.anonymousland.org/anonymousland/synapse.git
synced 2025-01-12 14:29:26 -05:00
Make importing display name and email optional (#9277)
This commit is contained in:
parent
4167494c90
commit
85c56b5a67
1
changelog.d/9277.feature
Normal file
1
changelog.d/9277.feature
Normal file
@ -0,0 +1 @@
|
|||||||
|
Improve the user experience of setting up an account via single-sign on.
|
@ -14,8 +14,9 @@
|
|||||||
# limitations under the License.
|
# limitations under the License.
|
||||||
|
|
||||||
"""Contains functions for registering clients."""
|
"""Contains functions for registering clients."""
|
||||||
|
|
||||||
import logging
|
import logging
|
||||||
from typing import TYPE_CHECKING, List, Optional, Tuple
|
from typing import TYPE_CHECKING, Iterable, List, Optional, Tuple
|
||||||
|
|
||||||
from synapse import types
|
from synapse import types
|
||||||
from synapse.api.constants import MAX_USERID_LENGTH, EventTypes, JoinRules, LoginType
|
from synapse.api.constants import MAX_USERID_LENGTH, EventTypes, JoinRules, LoginType
|
||||||
@ -152,7 +153,7 @@ class RegistrationHandler(BaseHandler):
|
|||||||
user_type: Optional[str] = None,
|
user_type: Optional[str] = None,
|
||||||
default_display_name: Optional[str] = None,
|
default_display_name: Optional[str] = None,
|
||||||
address: Optional[str] = None,
|
address: Optional[str] = None,
|
||||||
bind_emails: List[str] = [],
|
bind_emails: Iterable[str] = [],
|
||||||
by_admin: bool = False,
|
by_admin: bool = False,
|
||||||
user_agent_ips: Optional[List[Tuple[str, str]]] = None,
|
user_agent_ips: Optional[List[Tuple[str, str]]] = None,
|
||||||
) -> str:
|
) -> str:
|
||||||
|
@ -14,7 +14,16 @@
|
|||||||
# limitations under the License.
|
# limitations under the License.
|
||||||
import abc
|
import abc
|
||||||
import logging
|
import logging
|
||||||
from typing import TYPE_CHECKING, Awaitable, Callable, Dict, List, Mapping, Optional
|
from typing import (
|
||||||
|
TYPE_CHECKING,
|
||||||
|
Awaitable,
|
||||||
|
Callable,
|
||||||
|
Dict,
|
||||||
|
Iterable,
|
||||||
|
Mapping,
|
||||||
|
Optional,
|
||||||
|
Set,
|
||||||
|
)
|
||||||
from urllib.parse import urlencode
|
from urllib.parse import urlencode
|
||||||
|
|
||||||
import attr
|
import attr
|
||||||
@ -29,7 +38,7 @@ from synapse.handlers.ui_auth import UIAuthSessionDataConstants
|
|||||||
from synapse.http import get_request_user_agent
|
from synapse.http import get_request_user_agent
|
||||||
from synapse.http.server import respond_with_html, respond_with_redirect
|
from synapse.http.server import respond_with_html, respond_with_redirect
|
||||||
from synapse.http.site import SynapseRequest
|
from synapse.http.site import SynapseRequest
|
||||||
from synapse.types import JsonDict, UserID, contains_invalid_mxid_characters
|
from synapse.types import Collection, JsonDict, UserID, contains_invalid_mxid_characters
|
||||||
from synapse.util.async_helpers import Linearizer
|
from synapse.util.async_helpers import Linearizer
|
||||||
from synapse.util.stringutils import random_string
|
from synapse.util.stringutils import random_string
|
||||||
|
|
||||||
@ -115,7 +124,7 @@ class UserAttributes:
|
|||||||
# enter one.
|
# enter one.
|
||||||
localpart = attr.ib(type=Optional[str])
|
localpart = attr.ib(type=Optional[str])
|
||||||
display_name = attr.ib(type=Optional[str], default=None)
|
display_name = attr.ib(type=Optional[str], default=None)
|
||||||
emails = attr.ib(type=List[str], default=attr.Factory(list))
|
emails = attr.ib(type=Collection[str], default=attr.Factory(list))
|
||||||
|
|
||||||
|
|
||||||
@attr.s(slots=True)
|
@attr.s(slots=True)
|
||||||
@ -130,7 +139,7 @@ class UsernameMappingSession:
|
|||||||
|
|
||||||
# attributes returned by the ID mapper
|
# attributes returned by the ID mapper
|
||||||
display_name = attr.ib(type=Optional[str])
|
display_name = attr.ib(type=Optional[str])
|
||||||
emails = attr.ib(type=List[str])
|
emails = attr.ib(type=Collection[str])
|
||||||
|
|
||||||
# An optional dictionary of extra attributes to be provided to the client in the
|
# An optional dictionary of extra attributes to be provided to the client in the
|
||||||
# login response.
|
# login response.
|
||||||
@ -144,6 +153,8 @@ class UsernameMappingSession:
|
|||||||
|
|
||||||
# choices made by the user
|
# choices made by the user
|
||||||
chosen_localpart = attr.ib(type=Optional[str], default=None)
|
chosen_localpart = attr.ib(type=Optional[str], default=None)
|
||||||
|
use_display_name = attr.ib(type=bool, default=True)
|
||||||
|
emails_to_use = attr.ib(type=Collection[str], default=())
|
||||||
|
|
||||||
|
|
||||||
# the HTTP cookie used to track the mapping session id
|
# the HTTP cookie used to track the mapping session id
|
||||||
@ -710,7 +721,12 @@ class SsoHandler:
|
|||||||
return not user_infos
|
return not user_infos
|
||||||
|
|
||||||
async def handle_submit_username_request(
|
async def handle_submit_username_request(
|
||||||
self, request: SynapseRequest, localpart: str, session_id: str
|
self,
|
||||||
|
request: SynapseRequest,
|
||||||
|
session_id: str,
|
||||||
|
localpart: str,
|
||||||
|
use_display_name: bool,
|
||||||
|
emails_to_use: Iterable[str],
|
||||||
) -> None:
|
) -> None:
|
||||||
"""Handle a request to the username-picker 'submit' endpoint
|
"""Handle a request to the username-picker 'submit' endpoint
|
||||||
|
|
||||||
@ -720,11 +736,30 @@ class SsoHandler:
|
|||||||
request: HTTP request
|
request: HTTP request
|
||||||
localpart: localpart requested by the user
|
localpart: localpart requested by the user
|
||||||
session_id: ID of the username mapping session, extracted from a cookie
|
session_id: ID of the username mapping session, extracted from a cookie
|
||||||
|
use_display_name: whether the user wants to use the suggested display name
|
||||||
|
emails_to_use: emails that the user would like to use
|
||||||
"""
|
"""
|
||||||
session = self.get_mapping_session(session_id)
|
session = self.get_mapping_session(session_id)
|
||||||
|
|
||||||
# update the session with the user's choices
|
# update the session with the user's choices
|
||||||
session.chosen_localpart = localpart
|
session.chosen_localpart = localpart
|
||||||
|
session.use_display_name = use_display_name
|
||||||
|
|
||||||
|
emails_from_idp = set(session.emails)
|
||||||
|
filtered_emails = set() # type: Set[str]
|
||||||
|
|
||||||
|
# we iterate through the list rather than just building a set conjunction, so
|
||||||
|
# that we can log attempts to use unknown addresses
|
||||||
|
for email in emails_to_use:
|
||||||
|
if email in emails_from_idp:
|
||||||
|
filtered_emails.add(email)
|
||||||
|
else:
|
||||||
|
logger.warning(
|
||||||
|
"[session %s] ignoring user request to use unknown email address %r",
|
||||||
|
session_id,
|
||||||
|
email,
|
||||||
|
)
|
||||||
|
session.emails_to_use = filtered_emails
|
||||||
|
|
||||||
# we're done; now we can register the user
|
# we're done; now we can register the user
|
||||||
respond_with_redirect(request, b"/_synapse/client/sso_register")
|
respond_with_redirect(request, b"/_synapse/client/sso_register")
|
||||||
@ -747,11 +782,12 @@ class SsoHandler:
|
|||||||
)
|
)
|
||||||
|
|
||||||
attributes = UserAttributes(
|
attributes = UserAttributes(
|
||||||
localpart=session.chosen_localpart,
|
localpart=session.chosen_localpart, emails=session.emails_to_use,
|
||||||
display_name=session.display_name,
|
|
||||||
emails=session.emails,
|
|
||||||
)
|
)
|
||||||
|
|
||||||
|
if session.use_display_name:
|
||||||
|
attributes.display_name = session.display_name
|
||||||
|
|
||||||
# the following will raise a 400 error if the username has been taken in the
|
# the following will raise a 400 error if the username has been taken in the
|
||||||
# meantime.
|
# meantime.
|
||||||
user_id = await self._register_mapped_user(
|
user_id = await self._register_mapped_user(
|
||||||
|
@ -53,6 +53,14 @@
|
|||||||
border-top: 1px solid #E9ECF1;
|
border-top: 1px solid #E9ECF1;
|
||||||
padding: 12px;
|
padding: 12px;
|
||||||
}
|
}
|
||||||
|
.idp-pick-details .check-row {
|
||||||
|
display: flex;
|
||||||
|
align-items: center;
|
||||||
|
}
|
||||||
|
|
||||||
|
.idp-pick-details .check-row .name {
|
||||||
|
flex: 1;
|
||||||
|
}
|
||||||
|
|
||||||
.idp-pick-details .use, .idp-pick-details .idp-value {
|
.idp-pick-details .use, .idp-pick-details .idp-value {
|
||||||
color: #737D8C;
|
color: #737D8C;
|
||||||
@ -91,16 +99,31 @@
|
|||||||
<h2><img src="{{ idp.idp_icon | mxc_to_http(24, 24) }}"/>Information from {{ idp.idp_name }}</h2>
|
<h2><img src="{{ idp.idp_icon | mxc_to_http(24, 24) }}"/>Information from {{ idp.idp_name }}</h2>
|
||||||
{% if user_attributes.avatar_url %}
|
{% if user_attributes.avatar_url %}
|
||||||
<div class="idp-detail idp-avatar">
|
<div class="idp-detail idp-avatar">
|
||||||
|
<div class="check-row">
|
||||||
|
<label for="idp-avatar" class="name">Avatar</label>
|
||||||
|
<label for="idp-avatar" class="use">Use</label>
|
||||||
|
<input type="checkbox" name="use_avatar" id="idp-avatar" value="true" checked>
|
||||||
|
</div>
|
||||||
<img src="{{ user_attributes.avatar_url }}" class="avatar" />
|
<img src="{{ user_attributes.avatar_url }}" class="avatar" />
|
||||||
</div>
|
</div>
|
||||||
{% endif %}
|
{% endif %}
|
||||||
{% if user_attributes.display_name %}
|
{% if user_attributes.display_name %}
|
||||||
<div class="idp-detail">
|
<div class="idp-detail">
|
||||||
|
<div class="check-row">
|
||||||
|
<label for="idp-displayname" class="name">Display name</label>
|
||||||
|
<label for="idp-displayname" class="use">Use</label>
|
||||||
|
<input type="checkbox" name="use_display_name" id="idp-displayname" value="true" checked>
|
||||||
|
</div>
|
||||||
<p class="idp-value">{{ user_attributes.display_name }}</p>
|
<p class="idp-value">{{ user_attributes.display_name }}</p>
|
||||||
</div>
|
</div>
|
||||||
{% endif %}
|
{% endif %}
|
||||||
{% for email in user_attributes.emails %}
|
{% for email in user_attributes.emails %}
|
||||||
<div class="idp-detail">
|
<div class="idp-detail">
|
||||||
|
<div class="check-row">
|
||||||
|
<label for="idp-email{{ loop.index }}" class="name">E-mail</label>
|
||||||
|
<label for="idp-email{{ loop.index }}" class="use">Use</label>
|
||||||
|
<input type="checkbox" name="use_email" id="idp-email{{ loop.index }}" value="{{ email }}" checked>
|
||||||
|
</div>
|
||||||
<p class="idp-value">{{ email }}</p>
|
<p class="idp-value">{{ email }}</p>
|
||||||
</div>
|
</div>
|
||||||
{% endfor %}
|
{% endfor %}
|
||||||
|
@ -14,7 +14,7 @@
|
|||||||
# limitations under the License.
|
# limitations under the License.
|
||||||
|
|
||||||
import logging
|
import logging
|
||||||
from typing import TYPE_CHECKING
|
from typing import TYPE_CHECKING, List
|
||||||
|
|
||||||
from twisted.web.http import Request
|
from twisted.web.http import Request
|
||||||
from twisted.web.resource import Resource
|
from twisted.web.resource import Resource
|
||||||
@ -26,7 +26,7 @@ from synapse.http.server import (
|
|||||||
DirectServeJsonResource,
|
DirectServeJsonResource,
|
||||||
respond_with_html,
|
respond_with_html,
|
||||||
)
|
)
|
||||||
from synapse.http.servlet import parse_string
|
from synapse.http.servlet import parse_boolean, parse_string
|
||||||
from synapse.http.site import SynapseRequest
|
from synapse.http.site import SynapseRequest
|
||||||
from synapse.util.templates import build_jinja_env
|
from synapse.util.templates import build_jinja_env
|
||||||
|
|
||||||
@ -113,11 +113,19 @@ class AccountDetailsResource(DirectServeHtmlResource):
|
|||||||
|
|
||||||
try:
|
try:
|
||||||
localpart = parse_string(request, "username", required=True)
|
localpart = parse_string(request, "username", required=True)
|
||||||
|
use_display_name = parse_boolean(request, "use_display_name", default=False)
|
||||||
|
|
||||||
|
try:
|
||||||
|
emails_to_use = [
|
||||||
|
val.decode("utf-8") for val in request.args.get(b"use_email", [])
|
||||||
|
] # type: List[str]
|
||||||
|
except ValueError:
|
||||||
|
raise SynapseError(400, "Query parameter use_email must be utf-8")
|
||||||
except SynapseError as e:
|
except SynapseError as e:
|
||||||
logger.warning("[session %s] bad param: %s", session_id, e)
|
logger.warning("[session %s] bad param: %s", session_id, e)
|
||||||
self._sso_handler.render_error(request, "bad_param", e.msg, code=e.code)
|
self._sso_handler.render_error(request, "bad_param", e.msg, code=e.code)
|
||||||
return
|
return
|
||||||
|
|
||||||
await self._sso_handler.handle_submit_username_request(
|
await self._sso_handler.handle_submit_username_request(
|
||||||
request, localpart, session_id
|
request, session_id, localpart, use_display_name, emails_to_use
|
||||||
)
|
)
|
||||||
|
Loading…
Reference in New Issue
Block a user