2018-01-19 10:33:55 -05:00
|
|
|
#
|
2023-11-21 15:29:58 -05:00
|
|
|
# This file is licensed under the Affero General Public License (AGPL) version 3.
|
|
|
|
#
|
|
|
|
# Copyright (C) 2023 New Vector, Ltd
|
|
|
|
#
|
|
|
|
# This program is free software: you can redistribute it and/or modify
|
|
|
|
# it under the terms of the GNU Affero General Public License as
|
|
|
|
# published by the Free Software Foundation, either version 3 of the
|
|
|
|
# License, or (at your option) any later version.
|
|
|
|
#
|
|
|
|
# See the GNU Affero General Public License for more details:
|
|
|
|
# <https://www.gnu.org/licenses/agpl-3.0.html>.
|
|
|
|
#
|
|
|
|
# Originally licensed under the Apache License, Version 2.0:
|
|
|
|
# <http://www.apache.org/licenses/LICENSE-2.0>.
|
|
|
|
#
|
|
|
|
# [This file includes modifications made by New Vector Limited]
|
2018-01-19 10:33:55 -05:00
|
|
|
#
|
|
|
|
#
|
|
|
|
|
|
|
|
import logging
|
|
|
|
import re
|
2021-09-10 12:03:18 -04:00
|
|
|
import typing
|
|
|
|
|
|
|
|
if typing.TYPE_CHECKING:
|
|
|
|
from synapse.server import HomeServer
|
2018-01-19 10:33:55 -05:00
|
|
|
|
|
|
|
logger = logging.getLogger(__name__)
|
|
|
|
|
|
|
|
|
2021-04-22 12:49:11 -04:00
|
|
|
# it's unclear what the maximum length of an email address is. RFC3696 (as corrected
|
|
|
|
# by errata) says:
|
|
|
|
# the upper limit on address lengths should normally be considered to be 254.
|
|
|
|
#
|
|
|
|
# In practice, mail servers appear to be more tolerant and allow 400 characters
|
|
|
|
# or so. Let's allow 500, which should be plenty for everyone.
|
|
|
|
#
|
|
|
|
MAX_EMAIL_ADDRESS_LENGTH = 500
|
|
|
|
|
|
|
|
|
2022-02-08 05:20:32 -05:00
|
|
|
async def check_3pid_allowed(
|
|
|
|
hs: "HomeServer",
|
|
|
|
medium: str,
|
|
|
|
address: str,
|
|
|
|
registration: bool = False,
|
|
|
|
) -> bool:
|
2018-01-19 10:33:55 -05:00
|
|
|
"""Checks whether a given format of 3PID is allowed to be used on this HS
|
|
|
|
|
|
|
|
Args:
|
2021-09-10 12:03:18 -04:00
|
|
|
hs: server
|
|
|
|
medium: 3pid medium - e.g. email, msisdn
|
|
|
|
address: address within that medium (e.g. "wotan@matrix.org")
|
2018-01-19 10:33:55 -05:00
|
|
|
msisdns need to first have been canonicalised
|
2022-02-08 05:20:32 -05:00
|
|
|
registration: whether we want to bind the 3PID as part of registering a new user.
|
|
|
|
|
2018-01-19 13:23:45 -05:00
|
|
|
Returns:
|
2022-11-16 10:25:24 -05:00
|
|
|
whether the 3PID medium/address is allowed to be added to this HS
|
2018-01-19 10:33:55 -05:00
|
|
|
"""
|
2022-02-08 05:20:32 -05:00
|
|
|
if not await hs.get_password_auth_provider().is_3pid_allowed(
|
|
|
|
medium, address, registration
|
|
|
|
):
|
|
|
|
return False
|
2018-01-19 10:33:55 -05:00
|
|
|
|
2021-10-04 07:18:54 -04:00
|
|
|
if hs.config.registration.allowed_local_3pids:
|
|
|
|
for constraint in hs.config.registration.allowed_local_3pids:
|
2018-01-19 13:23:45 -05:00
|
|
|
logger.debug(
|
|
|
|
"Checking 3PID %s (%s) against %s (%s)",
|
2019-06-20 05:32:02 -04:00
|
|
|
address,
|
|
|
|
medium,
|
|
|
|
constraint["pattern"],
|
|
|
|
constraint["medium"],
|
2018-01-19 13:23:45 -05:00
|
|
|
)
|
2019-06-20 05:32:02 -04:00
|
|
|
if medium == constraint["medium"] and re.match(
|
|
|
|
constraint["pattern"], address
|
2018-01-19 10:33:55 -05:00
|
|
|
):
|
|
|
|
return True
|
|
|
|
else:
|
|
|
|
return True
|
|
|
|
|
|
|
|
return False
|
2020-07-03 09:03:13 -04:00
|
|
|
|
|
|
|
|
|
|
|
def canonicalise_email(address: str) -> str:
|
|
|
|
"""'Canonicalise' email address
|
|
|
|
Case folding of local part of email address and lowercase domain part
|
|
|
|
See MSC2265, https://github.com/matrix-org/matrix-doc/pull/2265
|
|
|
|
|
|
|
|
Args:
|
|
|
|
address: email address to be canonicalised
|
|
|
|
Returns:
|
|
|
|
The canonical form of the email address
|
|
|
|
Raises:
|
|
|
|
ValueError if the address could not be parsed.
|
|
|
|
"""
|
|
|
|
|
|
|
|
address = address.strip()
|
|
|
|
|
|
|
|
parts = address.split("@")
|
|
|
|
if len(parts) != 2:
|
|
|
|
logger.debug("Couldn't parse email address %s", address)
|
|
|
|
raise ValueError("Unable to parse email address")
|
|
|
|
|
|
|
|
return parts[0].casefold() + "@" + parts[1].lower()
|
2021-04-22 12:49:11 -04:00
|
|
|
|
|
|
|
|
|
|
|
def validate_email(address: str) -> str:
|
|
|
|
"""Does some basic validation on an email address.
|
|
|
|
|
|
|
|
Returns the canonicalised email, as returned by `canonicalise_email`.
|
|
|
|
|
|
|
|
Raises a ValueError if the email is invalid.
|
|
|
|
"""
|
|
|
|
# First we try canonicalising in case that fails
|
|
|
|
address = canonicalise_email(address)
|
|
|
|
|
|
|
|
# Email addresses have to be at least 3 characters.
|
|
|
|
if len(address) < 3:
|
|
|
|
raise ValueError("Unable to parse email address")
|
|
|
|
|
|
|
|
if len(address) > MAX_EMAIL_ADDRESS_LENGTH:
|
|
|
|
raise ValueError("Unable to parse email address")
|
|
|
|
|
|
|
|
return address
|