WIP support for msisdn 3pid proxy methods

2025-05-02 12:16:09 -04:00 · 2017-02-14 15:05:55 +00:00 · 2017-02-14 15:05:55 +00:00 · ce3e583d94
commit ce3e583d94
parent 9adcd3a514
6 changed files with 228 additions and 19 deletions
--- a/synapse/handlers/auth.py
+++ b/synapse/handlers/auth.py
@ -1,5 +1,6 @@
 # -*- coding: utf-8 -*-
 # Copyright 2014 - 2016 OpenMarket Ltd
+# Copyright 2017 Vector Creations Ltd
 #
 # Licensed under the Apache License, Version 2.0 (the "License");
 # you may not use this file except in compliance with the License.
@ -47,6 +48,7 @@ class AuthHandler(BaseHandler):
            LoginType.PASSWORD: self._check_password_auth,
            LoginType.RECAPTCHA: self._check_recaptcha,
            LoginType.EMAIL_IDENTITY: self._check_email_identity,
+            LoginType.MSISDN: self._check_msisdn,
            LoginType.DUMMY: self._check_dummy_auth,
        }
        self.bcrypt_rounds = hs.config.bcrypt_rounds
@ -309,12 +311,26 @@ class AuthHandler(BaseHandler):

    @defer.inlineCallbacks
    def _check_email_identity(self, authdict, _):
+        defer.returnValue(self._check_threepid('email', authdict))
+
+    @defer.inlineCallbacks
+    def _check_msisdn(self, authdict, _):
+        defer.returnValue(self._check_threepid('msisdn', authdict))
+
+    @defer.inlineCallbacks
+    def _check_dummy_auth(self, authdict, _):
+        yield run_on_reactor()
+        defer.returnValue(True)
+
+    @defer.inlineCallbacks
+    def _check_threepid(self, medium, authdict, ):
        yield run_on_reactor()

        if 'threepid_creds' not in authdict:
            raise LoginError(400, "Missing threepid_creds", Codes.MISSING_PARAM)

        threepid_creds = authdict['threepid_creds']
+
        identity_handler = self.hs.get_handlers().identity_handler

        logger.info("Getting validated threepid. threepidcreds: %r" % (threepid_creds,))
@ -323,15 +339,19 @@ class AuthHandler(BaseHandler):
        if not threepid:
            raise LoginError(401, "", errcode=Codes.UNAUTHORIZED)

+        if threepid['medium'] != medium:
+            raise LoginError(
+                401,
+                "Expecting threepid of type '%s', got '%s'" % (
+                    medium, threepid['medium'],
+                ),
+                errcode=Codes.UNAUTHORIZED
+             )
+
        threepid['threepid_creds'] = authdict['threepid_creds']

        defer.returnValue(threepid)

-    @defer.inlineCallbacks
-    def _check_dummy_auth(self, authdict, _):
-        yield run_on_reactor()
-        defer.returnValue(True)
-
    def _get_params_recaptcha(self):
        return {"public_key": self.hs.config.recaptcha_public_key}