2016-04-20 08:02:01 -04:00
|
|
|
#
|
2023-11-21 15:29:58 -05:00
|
|
|
# This file is licensed under the Affero General Public License (AGPL) version 3.
|
|
|
|
#
|
2024-01-23 06:26:48 -05:00
|
|
|
# Copyright 2019 The Matrix.org Foundation C.I.C.
|
|
|
|
# Copyright 2015-2016 OpenMarket Ltd
|
2023-11-21 15:29:58 -05:00
|
|
|
# Copyright (C) 2023 New Vector, Ltd
|
|
|
|
#
|
|
|
|
# This program is free software: you can redistribute it and/or modify
|
|
|
|
# it under the terms of the GNU Affero General Public License as
|
|
|
|
# published by the Free Software Foundation, either version 3 of the
|
|
|
|
# License, or (at your option) any later version.
|
|
|
|
#
|
|
|
|
# See the GNU Affero General Public License for more details:
|
|
|
|
# <https://www.gnu.org/licenses/agpl-3.0.html>.
|
|
|
|
#
|
|
|
|
# Originally licensed under the Apache License, Version 2.0:
|
|
|
|
# <http://www.apache.org/licenses/LICENSE-2.0>.
|
|
|
|
#
|
|
|
|
# [This file includes modifications made by New Vector Limited]
|
2016-04-20 08:02:01 -04:00
|
|
|
#
|
|
|
|
#
|
2018-10-17 10:44:34 -04:00
|
|
|
|
2016-04-20 08:02:01 -04:00
|
|
|
# This file can't be called email.py because if it is, we cannot:
|
|
|
|
import email.utils
|
2021-09-06 10:23:50 -04:00
|
|
|
import logging
|
2018-10-17 10:44:34 -04:00
|
|
|
import os
|
2022-04-11 12:07:23 -04:00
|
|
|
from typing import Any
|
2016-04-20 08:02:01 -04:00
|
|
|
|
2020-07-14 14:10:42 -04:00
|
|
|
import attr
|
2016-04-20 08:02:01 -04:00
|
|
|
|
2022-04-11 12:07:23 -04:00
|
|
|
from synapse.types import JsonDict
|
|
|
|
|
2018-10-19 09:01:59 -04:00
|
|
|
from ._base import Config, ConfigError
|
2018-10-17 10:44:34 -04:00
|
|
|
|
2021-09-06 10:23:50 -04:00
|
|
|
logger = logging.getLogger(__name__)
|
|
|
|
|
2020-02-24 10:18:38 -05:00
|
|
|
MISSING_PASSWORD_RESET_CONFIG_ERROR = """\
|
|
|
|
Password reset emails are enabled on this homeserver due to a partial
|
|
|
|
'email' block. However, the following required keys are missing:
|
|
|
|
%s
|
|
|
|
"""
|
|
|
|
|
2020-07-14 14:10:42 -04:00
|
|
|
DEFAULT_SUBJECTS = {
|
|
|
|
"message_from_person_in_room": "[%(app)s] You have a message on %(app)s from %(person)s in the %(room)s room...",
|
|
|
|
"message_from_person": "[%(app)s] You have a message on %(app)s from %(person)s...",
|
|
|
|
"messages_from_person": "[%(app)s] You have messages on %(app)s from %(person)s...",
|
|
|
|
"messages_in_room": "[%(app)s] You have messages on %(app)s in the %(room)s room...",
|
|
|
|
"messages_in_room_and_others": "[%(app)s] You have messages on %(app)s in the %(room)s room and others...",
|
|
|
|
"messages_from_person_and_others": "[%(app)s] You have messages on %(app)s from %(person)s and others...",
|
|
|
|
"invite_from_person": "[%(app)s] %(person)s has invited you to chat on %(app)s...",
|
|
|
|
"invite_from_person_to_room": "[%(app)s] %(person)s has invited you to join the %(room)s room on %(app)s...",
|
2021-07-21 13:29:54 -04:00
|
|
|
"invite_from_person_to_space": "[%(app)s] %(person)s has invited you to join the %(space)s space on %(app)s...",
|
2020-07-14 14:10:42 -04:00
|
|
|
"password_reset": "[%(server_name)s] Password reset",
|
|
|
|
"email_validation": "[%(server_name)s] Validate your email",
|
|
|
|
}
|
|
|
|
|
2021-09-06 10:23:50 -04:00
|
|
|
LEGACY_TEMPLATE_DIR_WARNING = """
|
|
|
|
This server's configuration file is using the deprecated 'template_dir' setting in the
|
|
|
|
'email' section. Support for this setting has been deprecated and will be removed in a
|
|
|
|
future version of Synapse. Server admins should instead use the new
|
2022-08-17 05:59:05 -04:00
|
|
|
'custom_template_directory' setting documented here:
|
2023-12-13 11:15:22 -05:00
|
|
|
https://element-hq.github.io/synapse/latest/templates.html
|
2021-09-06 10:23:50 -04:00
|
|
|
---------------------------------------------------------------------------------------"""
|
|
|
|
|
2020-07-14 14:10:42 -04:00
|
|
|
|
2022-01-13 08:49:28 -05:00
|
|
|
@attr.s(slots=True, frozen=True, auto_attribs=True)
|
2020-07-14 14:10:42 -04:00
|
|
|
class EmailSubjectConfig:
|
2022-01-13 08:49:28 -05:00
|
|
|
message_from_person_in_room: str
|
|
|
|
message_from_person: str
|
|
|
|
messages_from_person: str
|
|
|
|
messages_in_room: str
|
|
|
|
messages_in_room_and_others: str
|
|
|
|
messages_from_person_and_others: str
|
|
|
|
invite_from_person: str
|
|
|
|
invite_from_person_to_room: str
|
|
|
|
invite_from_person_to_space: str
|
|
|
|
password_reset: str
|
|
|
|
email_validation: str
|
2020-07-14 14:10:42 -04:00
|
|
|
|
2016-04-20 08:02:01 -04:00
|
|
|
|
|
|
|
class EmailConfig(Config):
|
2019-10-10 04:39:35 -04:00
|
|
|
section = "email"
|
|
|
|
|
2022-04-11 12:07:23 -04:00
|
|
|
def read_config(self, config: JsonDict, **kwargs: Any) -> None:
|
2019-06-04 08:47:44 -04:00
|
|
|
# TODO: We should separate better the email configuration from the notification
|
|
|
|
# and account validity config.
|
|
|
|
|
2016-04-27 10:09:55 -04:00
|
|
|
self.email_enable_notifs = False
|
|
|
|
|
2020-01-17 05:04:15 -05:00
|
|
|
email_config = config.get("email")
|
|
|
|
if email_config is None:
|
|
|
|
email_config = {}
|
2019-06-04 08:47:44 -04:00
|
|
|
|
2022-07-25 11:27:19 -04:00
|
|
|
self.force_tls = email_config.get("force_tls", False)
|
2020-01-17 05:04:15 -05:00
|
|
|
self.email_smtp_host = email_config.get("smtp_host", "localhost")
|
2022-07-25 11:27:19 -04:00
|
|
|
self.email_smtp_port = email_config.get(
|
|
|
|
"smtp_port", 465 if self.force_tls else 25
|
|
|
|
)
|
2019-06-04 08:47:44 -04:00
|
|
|
self.email_smtp_user = email_config.get("smtp_user", None)
|
|
|
|
self.email_smtp_pass = email_config.get("smtp_pass", None)
|
|
|
|
self.require_transport_security = email_config.get(
|
|
|
|
"require_transport_security", False
|
|
|
|
)
|
2021-08-06 06:13:34 -04:00
|
|
|
self.enable_smtp_tls = email_config.get("enable_tls", True)
|
2022-07-25 11:27:19 -04:00
|
|
|
if self.force_tls and not self.enable_smtp_tls:
|
|
|
|
raise ConfigError("email.force_tls requires email.enable_tls to be true")
|
2021-08-06 06:13:34 -04:00
|
|
|
if self.require_transport_security and not self.enable_smtp_tls:
|
|
|
|
raise ConfigError(
|
|
|
|
"email.require_transport_security requires email.enable_tls to be true"
|
|
|
|
)
|
|
|
|
|
2019-06-04 08:47:44 -04:00
|
|
|
if "app_name" in email_config:
|
|
|
|
self.email_app_name = email_config["app_name"]
|
|
|
|
else:
|
|
|
|
self.email_app_name = "Matrix"
|
|
|
|
|
2019-06-06 12:34:07 -04:00
|
|
|
# TODO: Rename notif_from to something more generic, or have a separate
|
|
|
|
# from for password resets, message notifications, etc?
|
|
|
|
# Currently the email section is a bit bogged down with settings for
|
|
|
|
# multiple functions. Would be good to split it out into separate
|
|
|
|
# sections and only put the common ones under email:
|
2019-06-04 08:47:44 -04:00
|
|
|
self.email_notif_from = email_config.get("notif_from", None)
|
2019-06-04 09:24:36 -04:00
|
|
|
if self.email_notif_from is not None:
|
|
|
|
# make sure it's valid
|
|
|
|
parsed = email.utils.parseaddr(self.email_notif_from)
|
2019-06-20 05:32:02 -04:00
|
|
|
if parsed[1] == "":
|
2019-06-04 09:24:36 -04:00
|
|
|
raise RuntimeError("Invalid notif_from address")
|
2019-06-04 08:47:44 -04:00
|
|
|
|
2020-08-17 12:05:00 -04:00
|
|
|
# A user-configurable template directory
|
2019-06-04 08:47:44 -04:00
|
|
|
template_dir = email_config.get("template_dir")
|
2021-09-06 10:23:50 -04:00
|
|
|
if template_dir is not None:
|
|
|
|
logger.warning(LEGACY_TEMPLATE_DIR_WARNING)
|
|
|
|
|
2020-08-17 12:05:00 -04:00
|
|
|
if isinstance(template_dir, str):
|
|
|
|
# We need an absolute path, because we change directory after starting (and
|
|
|
|
# we don't yet know what auxiliary templates like mail.css we will need).
|
|
|
|
template_dir = os.path.abspath(template_dir)
|
|
|
|
elif template_dir is not None:
|
|
|
|
# If template_dir is something other than a str or None, warn the user
|
|
|
|
raise ConfigError("Config option email.template_dir must be type str")
|
2019-06-04 08:47:44 -04:00
|
|
|
|
2016-04-29 09:46:18 -04:00
|
|
|
self.email_enable_notifs = email_config.get("enable_notifs", False)
|
2020-01-17 05:04:15 -05:00
|
|
|
|
2021-11-18 13:56:32 -05:00
|
|
|
if config.get("trust_identity_server_for_password_resets"):
|
|
|
|
raise ConfigError(
|
2022-08-23 07:40:00 -04:00
|
|
|
'The config option "trust_identity_server_for_password_resets" '
|
|
|
|
"is no longer supported. Please remove it from the config file."
|
2021-11-18 13:56:32 -05:00
|
|
|
)
|
2019-09-06 06:35:28 -04:00
|
|
|
|
2022-08-23 07:40:00 -04:00
|
|
|
# If we have email config settings, assume that we can verify ownership of
|
|
|
|
# email addresses.
|
|
|
|
self.can_verify_email = email_config != {}
|
2019-06-06 12:34:07 -04:00
|
|
|
|
|
|
|
# Get lifetime of a validation token in milliseconds
|
|
|
|
self.email_validation_token_lifetime = self.parse_duration(
|
|
|
|
email_config.get("validation_token_lifetime", "1h")
|
|
|
|
)
|
|
|
|
|
2022-08-23 07:40:00 -04:00
|
|
|
if self.can_verify_email:
|
2019-06-06 12:34:07 -04:00
|
|
|
missing = []
|
2020-02-24 10:18:38 -05:00
|
|
|
if not self.email_notif_from:
|
|
|
|
missing.append("email.notif_from")
|
2019-07-05 05:44:12 -04:00
|
|
|
|
2020-02-24 10:18:38 -05:00
|
|
|
if missing:
|
|
|
|
raise ConfigError(
|
|
|
|
MISSING_PASSWORD_RESET_CONFIG_ERROR % (", ".join(missing),)
|
2019-06-06 12:34:07 -04:00
|
|
|
)
|
|
|
|
|
2019-09-06 06:35:28 -04:00
|
|
|
# These email templates have placeholders in them, and thus must be
|
|
|
|
# parsed using a templating engine during a request
|
2020-08-17 12:05:00 -04:00
|
|
|
password_reset_template_html = email_config.get(
|
2019-06-20 05:32:02 -04:00
|
|
|
"password_reset_template_html", "password_reset.html"
|
2019-06-06 12:34:07 -04:00
|
|
|
)
|
2020-08-17 12:05:00 -04:00
|
|
|
password_reset_template_text = email_config.get(
|
2019-06-20 05:32:02 -04:00
|
|
|
"password_reset_template_text", "password_reset.txt"
|
2019-06-06 12:34:07 -04:00
|
|
|
)
|
2020-08-17 12:05:00 -04:00
|
|
|
registration_template_html = email_config.get(
|
2019-09-06 06:35:28 -04:00
|
|
|
"registration_template_html", "registration.html"
|
|
|
|
)
|
2020-08-17 12:05:00 -04:00
|
|
|
registration_template_text = email_config.get(
|
2019-09-06 06:35:28 -04:00
|
|
|
"registration_template_text", "registration.txt"
|
|
|
|
)
|
2020-08-17 12:05:00 -04:00
|
|
|
add_threepid_template_html = email_config.get(
|
2019-09-20 10:21:30 -04:00
|
|
|
"add_threepid_template_html", "add_threepid.html"
|
|
|
|
)
|
2020-08-17 12:05:00 -04:00
|
|
|
add_threepid_template_text = email_config.get(
|
2019-09-20 10:21:30 -04:00
|
|
|
"add_threepid_template_text", "add_threepid.txt"
|
|
|
|
)
|
|
|
|
|
2020-08-17 12:05:00 -04:00
|
|
|
password_reset_template_failure_html = email_config.get(
|
2019-08-15 11:27:11 -04:00
|
|
|
"password_reset_template_failure_html", "password_reset_failure.html"
|
2019-06-06 12:34:07 -04:00
|
|
|
)
|
2020-08-17 12:05:00 -04:00
|
|
|
registration_template_failure_html = email_config.get(
|
2019-09-06 06:35:28 -04:00
|
|
|
"registration_template_failure_html", "registration_failure.html"
|
|
|
|
)
|
2020-08-17 12:05:00 -04:00
|
|
|
add_threepid_template_failure_html = email_config.get(
|
2019-09-20 10:21:30 -04:00
|
|
|
"add_threepid_template_failure_html", "add_threepid_failure.html"
|
|
|
|
)
|
2019-09-06 06:35:28 -04:00
|
|
|
|
|
|
|
# These templates do not support any placeholder variables, so we
|
|
|
|
# will read them from disk once during setup
|
2020-08-17 12:05:00 -04:00
|
|
|
password_reset_template_success_html = email_config.get(
|
2019-08-15 11:27:11 -04:00
|
|
|
"password_reset_template_success_html", "password_reset_success.html"
|
2019-06-06 12:34:07 -04:00
|
|
|
)
|
2020-08-17 12:05:00 -04:00
|
|
|
registration_template_success_html = email_config.get(
|
2019-09-06 06:35:28 -04:00
|
|
|
"registration_template_success_html", "registration_success.html"
|
|
|
|
)
|
2020-08-17 12:05:00 -04:00
|
|
|
add_threepid_template_success_html = email_config.get(
|
2019-09-20 10:21:30 -04:00
|
|
|
"add_threepid_template_success_html", "add_threepid_success.html"
|
|
|
|
)
|
2019-06-06 12:34:07 -04:00
|
|
|
|
2020-08-17 12:05:00 -04:00
|
|
|
# Read all templates from disk
|
|
|
|
(
|
2019-06-20 05:32:02 -04:00
|
|
|
self.email_password_reset_template_html,
|
|
|
|
self.email_password_reset_template_text,
|
2019-09-06 06:35:28 -04:00
|
|
|
self.email_registration_template_html,
|
|
|
|
self.email_registration_template_text,
|
2019-09-20 10:21:30 -04:00
|
|
|
self.email_add_threepid_template_html,
|
|
|
|
self.email_add_threepid_template_text,
|
2020-09-10 06:45:12 -04:00
|
|
|
self.email_password_reset_template_confirmation_html,
|
2019-08-15 11:27:11 -04:00
|
|
|
self.email_password_reset_template_failure_html,
|
2019-09-20 10:21:30 -04:00
|
|
|
self.email_registration_template_failure_html,
|
|
|
|
self.email_add_threepid_template_failure_html,
|
2020-08-17 12:05:00 -04:00
|
|
|
password_reset_template_success_html_template,
|
|
|
|
registration_template_success_html_template,
|
|
|
|
add_threepid_template_success_html_template,
|
|
|
|
) = self.read_templates(
|
|
|
|
[
|
|
|
|
password_reset_template_html,
|
|
|
|
password_reset_template_text,
|
|
|
|
registration_template_html,
|
|
|
|
registration_template_text,
|
|
|
|
add_threepid_template_html,
|
|
|
|
add_threepid_template_text,
|
2020-09-10 06:45:12 -04:00
|
|
|
"password_reset_confirmation.html",
|
2020-08-17 12:05:00 -04:00
|
|
|
password_reset_template_failure_html,
|
|
|
|
registration_template_failure_html,
|
|
|
|
add_threepid_template_failure_html,
|
|
|
|
password_reset_template_success_html,
|
|
|
|
registration_template_success_html,
|
|
|
|
add_threepid_template_success_html,
|
|
|
|
],
|
2021-08-17 06:23:14 -04:00
|
|
|
(
|
2021-08-17 08:45:24 -04:00
|
|
|
td
|
|
|
|
for td in (
|
|
|
|
self.root.server.custom_template_directory,
|
|
|
|
template_dir,
|
|
|
|
)
|
|
|
|
if td
|
2021-08-17 06:23:14 -04:00
|
|
|
), # Filter out template_dir if not provided
|
2019-06-06 12:34:07 -04:00
|
|
|
)
|
2020-08-17 12:05:00 -04:00
|
|
|
|
|
|
|
# Render templates that do not contain any placeholders
|
|
|
|
self.email_password_reset_template_success_html_content = (
|
|
|
|
password_reset_template_success_html_template.render()
|
2019-09-06 06:35:28 -04:00
|
|
|
)
|
2020-08-17 12:05:00 -04:00
|
|
|
self.email_registration_template_success_html_content = (
|
|
|
|
registration_template_success_html_template.render()
|
2019-09-20 10:21:30 -04:00
|
|
|
)
|
2020-08-17 12:05:00 -04:00
|
|
|
self.email_add_threepid_template_success_html_content = (
|
|
|
|
add_threepid_template_success_html_template.render()
|
2019-09-20 10:21:30 -04:00
|
|
|
)
|
2019-06-06 12:34:07 -04:00
|
|
|
|
2019-06-04 08:47:44 -04:00
|
|
|
if self.email_enable_notifs:
|
2016-04-20 13:35:29 -04:00
|
|
|
missing = []
|
2020-02-24 10:18:38 -05:00
|
|
|
if not self.email_notif_from:
|
|
|
|
missing.append("email.notif_from")
|
2016-04-20 08:02:01 -04:00
|
|
|
|
2020-02-24 10:18:38 -05:00
|
|
|
if missing:
|
|
|
|
raise ConfigError(
|
|
|
|
"email.enable_notifs is True but required keys are missing: %s"
|
|
|
|
% (", ".join(missing),)
|
2016-04-27 10:09:55 -04:00
|
|
|
)
|
|
|
|
|
2020-08-17 12:05:00 -04:00
|
|
|
notif_template_html = email_config.get(
|
2020-02-24 10:18:38 -05:00
|
|
|
"notif_template_html", "notif_mail.html"
|
|
|
|
)
|
2020-08-17 12:05:00 -04:00
|
|
|
notif_template_text = email_config.get(
|
2020-02-24 10:18:38 -05:00
|
|
|
"notif_template_text", "notif_mail.txt"
|
|
|
|
)
|
2018-10-19 09:01:59 -04:00
|
|
|
|
2020-08-17 12:05:00 -04:00
|
|
|
(
|
|
|
|
self.email_notif_template_html,
|
|
|
|
self.email_notif_template_text,
|
|
|
|
) = self.read_templates(
|
2021-02-16 17:32:34 -05:00
|
|
|
[notif_template_html, notif_template_text],
|
2021-08-17 08:45:24 -04:00
|
|
|
(
|
|
|
|
td
|
|
|
|
for td in (
|
|
|
|
self.root.server.custom_template_directory,
|
|
|
|
template_dir,
|
|
|
|
)
|
|
|
|
if td
|
|
|
|
), # Filter out template_dir if not provided
|
2020-08-17 12:05:00 -04:00
|
|
|
)
|
2018-10-17 10:44:34 -04:00
|
|
|
|
2016-05-10 08:39:16 -04:00
|
|
|
self.email_notif_for_new_users = email_config.get(
|
2016-05-10 08:34:53 -04:00
|
|
|
"notif_for_new_users", True
|
|
|
|
)
|
2020-01-17 05:04:15 -05:00
|
|
|
self.email_riot_base_url = email_config.get(
|
|
|
|
"client_base_url", email_config.get("riot_base_url", None)
|
|
|
|
)
|
2023-12-12 05:28:56 -05:00
|
|
|
# The amount of time we always wait before ever emailing about a notification
|
|
|
|
# (to give the user a chance to respond to other push or notice the window)
|
|
|
|
self.notif_delay_before_mail_ms = Config.parse_duration(
|
|
|
|
email_config.get("notif_delay_before_mail", "10m")
|
|
|
|
)
|
2016-04-20 08:02:01 -04:00
|
|
|
|
2021-10-06 10:47:41 -04:00
|
|
|
if self.root.account_validity.account_validity_renew_by_email_enabled:
|
2020-08-17 12:05:00 -04:00
|
|
|
expiry_template_html = email_config.get(
|
2019-06-20 05:32:02 -04:00
|
|
|
"expiry_template_html", "notice_expiry.html"
|
2019-06-04 08:47:44 -04:00
|
|
|
)
|
2020-08-17 12:05:00 -04:00
|
|
|
expiry_template_text = email_config.get(
|
2019-06-20 05:32:02 -04:00
|
|
|
"expiry_template_text", "notice_expiry.txt"
|
2019-06-04 08:47:44 -04:00
|
|
|
)
|
|
|
|
|
2020-08-17 12:05:00 -04:00
|
|
|
(
|
|
|
|
self.account_validity_template_html,
|
|
|
|
self.account_validity_template_text,
|
|
|
|
) = self.read_templates(
|
2021-02-16 17:32:34 -05:00
|
|
|
[expiry_template_html, expiry_template_text],
|
2021-08-17 08:45:24 -04:00
|
|
|
(
|
|
|
|
td
|
|
|
|
for td in (
|
|
|
|
self.root.server.custom_template_directory,
|
|
|
|
template_dir,
|
|
|
|
)
|
|
|
|
if td
|
|
|
|
), # Filter out template_dir if not provided
|
2020-08-17 12:05:00 -04:00
|
|
|
)
|
2019-06-04 08:47:44 -04:00
|
|
|
|
2020-07-14 14:10:42 -04:00
|
|
|
subjects_config = email_config.get("subjects", {})
|
|
|
|
subjects = {}
|
|
|
|
|
|
|
|
for key, default in DEFAULT_SUBJECTS.items():
|
|
|
|
subjects[key] = subjects_config.get(key, default)
|
|
|
|
|
|
|
|
self.email_subjects = EmailSubjectConfig(**subjects)
|
|
|
|
|
2020-12-18 11:01:57 -05:00
|
|
|
# The invite client location should be a HTTP(S) URL or None.
|
|
|
|
self.invite_client_location = email_config.get("invite_client_location") or None
|
|
|
|
if self.invite_client_location:
|
|
|
|
if not isinstance(self.invite_client_location, str):
|
|
|
|
raise ConfigError(
|
|
|
|
"Config option email.invite_client_location must be type str"
|
|
|
|
)
|
|
|
|
if not (
|
|
|
|
self.invite_client_location.startswith("http://")
|
|
|
|
or self.invite_client_location.startswith("https://")
|
|
|
|
):
|
|
|
|
raise ConfigError(
|
|
|
|
"Config option email.invite_client_location must be a http or https URL",
|
|
|
|
path=("email", "invite_client_location"),
|
|
|
|
)
|