Allow server admins to define and enforce a password policy (MSC2000). (#7118)

2025-06-29 00:07:11 -04:00 · 2020-03-26 17:51:13 +01:00 · 2020-03-26 17:51:13 +01:00 · e8e2ddb60a
commit e8e2ddb60a
parent 1c1242acba
11 changed files with 437 additions and 0 deletions
--- a/synapse/rest/client/v2_alpha/register.py
+++ b/synapse/rest/client/v2_alpha/register.py
@ -373,6 +373,7 @@ class RegisterRestServlet(RestServlet):
        self.room_member_handler = hs.get_room_member_handler()
        self.macaroon_gen = hs.get_macaroon_generator()
        self.ratelimiter = hs.get_registration_ratelimiter()
+        self.password_policy_handler = hs.get_password_policy_handler()
        self.clock = hs.get_clock()

        self._registration_flows = _calculate_registration_flows(
@ -420,6 +421,7 @@ class RegisterRestServlet(RestServlet):
                or len(body["password"]) > 512
            ):
                raise SynapseError(400, "Invalid password")
+            self.password_policy_handler.validate_password(body["password"])

        desired_username = None
        if "username" in body: