Rename unstable access_token_lifetime configuration option to refreshable_access_token_lifetime to make it clear it only concerns refreshable access tokens. (#11388)

2025-08-14 18:55:25 -04:00 · 2021-11-23 17:01:34 +00:00 · 2021-11-23 17:01:34 +00:00 · f25c75d376
commit f25c75d376
parent 55669bd3de
6 changed files with 36 additions and 16 deletions
--- a/synapse/rest/client/login.py
+++ b/synapse/rest/client/login.py
@ -81,7 +81,9 @@ class LoginRestServlet(RestServlet):
        self.saml2_enabled = hs.config.saml2.saml2_enabled
        self.cas_enabled = hs.config.cas.cas_enabled
        self.oidc_enabled = hs.config.oidc.oidc_enabled
-        self._msc2918_enabled = hs.config.registration.access_token_lifetime is not None
+        self._msc2918_enabled = (
+            hs.config.registration.refreshable_access_token_lifetime is not None
+        )

        self.auth = hs.get_auth()

@ -453,7 +455,9 @@ class RefreshTokenServlet(RestServlet):
    def __init__(self, hs: "HomeServer"):
        self._auth_handler = hs.get_auth_handler()
        self._clock = hs.get_clock()
-        self.access_token_lifetime = hs.config.registration.access_token_lifetime
+        self.refreshable_access_token_lifetime = (
+            hs.config.registration.refreshable_access_token_lifetime
+        )

    async def on_POST(self, request: SynapseRequest) -> Tuple[int, JsonDict]:
        refresh_submission = parse_json_object_from_request(request)
@ -463,7 +467,9 @@ class RefreshTokenServlet(RestServlet):
        if not isinstance(token, str):
            raise SynapseError(400, "Invalid param: refresh_token", Codes.INVALID_PARAM)

-        valid_until_ms = self._clock.time_msec() + self.access_token_lifetime
+        valid_until_ms = (
+            self._clock.time_msec() + self.refreshable_access_token_lifetime
+        )
        access_token, refresh_token = await self._auth_handler.refresh_token(
            token, valid_until_ms
        )
@ -562,7 +568,7 @@ class CasTicketServlet(RestServlet):

 def register_servlets(hs: "HomeServer", http_server: HttpServer) -> None:
    LoginRestServlet(hs).register(http_server)
-    if hs.config.registration.access_token_lifetime is not None:
+    if hs.config.registration.refreshable_access_token_lifetime is not None:
        RefreshTokenServlet(hs).register(http_server)
    SsoRedirectServlet(hs).register(http_server)
    if hs.config.cas.cas_enabled: