synapse-product/synapse/rest/client/v2_alpha/keys.py

# -*- coding: utf-8 -*-
# Copyright 2015, 2016 OpenMarket Ltd
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
#     http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.

import logging

from twisted.internet import defer

from synapse.api.errors import SynapseError
from synapse.http.servlet import (
    RestServlet, parse_json_object_from_request, parse_integer
)
from ._base import client_v2_patterns

logger = logging.getLogger(__name__)


class KeyUploadServlet(RestServlet):
    """
    POST /keys/upload HTTP/1.1
    Content-Type: application/json

    {
      "device_keys": {
        "user_id": "<user_id>",
        "device_id": "<device_id>",
        "valid_until_ts": <millisecond_timestamp>,
        "algorithms": [
          "m.olm.curve25519-aes-sha256",
        ]
        "keys": {
          "<algorithm>:<device_id>": "<key_base64>",
        },
        "signatures:" {
          "<user_id>" {
            "<algorithm>:<device_id>": "<signature_base64>"
      } } },
      "one_time_keys": {
        "<algorithm>:<key_id>": "<key_base64>"
      },
    }
    """
    PATTERNS = client_v2_patterns("/keys/upload(/(?P<device_id>[^/]+))?$",
                                  releases=())

    def __init__(self, hs):
        """
        Args:
            hs (synapse.server.HomeServer): server
        """
        super(KeyUploadServlet, self).__init__()
        self.auth = hs.get_auth()
        self.e2e_keys_handler = hs.get_e2e_keys_handler()

    @defer.inlineCallbacks
    def on_POST(self, request, device_id):
        requester = yield self.auth.get_user_by_req(request)
        user_id = requester.user.to_string()
        body = parse_json_object_from_request(request)

        if device_id is not None:
            # passing the device_id here is deprecated; however, we allow it
            # for now for compatibility with older clients.
            if (requester.device_id is not None and
                    device_id != requester.device_id):
                logger.warning("Client uploading keys for a different device "
                               "(logged in as %s, uploading for %s)",
                               requester.device_id, device_id)
        else:
            device_id = requester.device_id

        if device_id is None:
            raise SynapseError(
                400,
                "To upload keys, you must pass device_id when authenticating"
            )

        result = yield self.e2e_keys_handler.upload_keys_for_user(
            user_id, device_id, body
        )
        defer.returnValue((200, result))


class KeyQueryServlet(RestServlet):
    """
    GET /keys/query/<user_id> HTTP/1.1

    GET /keys/query/<user_id>/<device_id> HTTP/1.1

    POST /keys/query HTTP/1.1
    Content-Type: application/json
    {
      "device_keys": {
        "<user_id>": ["<device_id>"]
    } }

    HTTP/1.1 200 OK
    {
      "device_keys": {
        "<user_id>": {
          "<device_id>": {
            "user_id": "<user_id>", // Duplicated to be signed
            "device_id": "<device_id>", // Duplicated to be signed
            "valid_until_ts": <millisecond_timestamp>,
            "algorithms": [ // List of supported algorithms
              "m.olm.curve25519-aes-sha256",
            ],
            "keys": { // Must include a ed25519 signing key
              "<algorithm>:<key_id>": "<key_base64>",
            },
            "signatures:" {
              // Must be signed with device's ed25519 key
              "<user_id>/<device_id>": {
                "<algorithm>:<key_id>": "<signature_base64>"
              }
              // Must be signed by this server.
              "<server_name>": {
                "<algorithm>:<key_id>": "<signature_base64>"
    } } } } } }
    """

    PATTERNS = client_v2_patterns(
        "/keys/query(?:"
        "/(?P<user_id>[^/]*)(?:"
        "/(?P<device_id>[^/]*)"
        ")?"
        ")?",
        releases=()
    )

    def __init__(self, hs):
        """
        Args:
            hs (synapse.server.HomeServer):
        """
        super(KeyQueryServlet, self).__init__()
        self.auth = hs.get_auth()
        self.e2e_keys_handler = hs.get_e2e_keys_handler()

    @defer.inlineCallbacks
    def on_POST(self, request, user_id, device_id):
        yield self.auth.get_user_by_req(request)
        timeout = parse_integer(request, "timeout", 10 * 1000)
        body = parse_json_object_from_request(request)
        result = yield self.e2e_keys_handler.query_devices(body, timeout)
        defer.returnValue((200, result))

    @defer.inlineCallbacks
    def on_GET(self, request, user_id, device_id):
        requester = yield self.auth.get_user_by_req(request)
        timeout = parse_integer(request, "timeout", 10 * 1000)
        auth_user_id = requester.user.to_string()
        user_id = user_id if user_id else auth_user_id
        device_ids = [device_id] if device_id else []
        result = yield self.e2e_keys_handler.query_devices(
            {"device_keys": {user_id: device_ids}},
            timeout,
        )
        defer.returnValue((200, result))


class OneTimeKeyServlet(RestServlet):
    """
    GET /keys/claim/<user-id>/<device-id>/<algorithm> HTTP/1.1

    POST /keys/claim HTTP/1.1
    {
      "one_time_keys": {
        "<user_id>": {
          "<device_id>": "<algorithm>"
    } } }

    HTTP/1.1 200 OK
    {
      "one_time_keys": {
        "<user_id>": {
          "<device_id>": {
            "<algorithm>:<key_id>": "<key_base64>"
    } } } }

    """
    PATTERNS = client_v2_patterns(
        "/keys/claim(?:/?|(?:/"
        "(?P<user_id>[^/]*)/(?P<device_id>[^/]*)/(?P<algorithm>[^/]*)"
        ")?)",
        releases=()
    )

    def __init__(self, hs):
        super(OneTimeKeyServlet, self).__init__()
        self.auth = hs.get_auth()
        self.e2e_keys_handler = hs.get_e2e_keys_handler()

    @defer.inlineCallbacks
    def on_GET(self, request, user_id, device_id, algorithm):
        yield self.auth.get_user_by_req(request)
        timeout = parse_integer(request, "timeout", 10 * 1000)
        result = yield self.e2e_keys_handler.claim_one_time_keys(
            {"one_time_keys": {user_id: {device_id: algorithm}}},
            timeout,
        )
        defer.returnValue((200, result))

    @defer.inlineCallbacks
    def on_POST(self, request, user_id, device_id, algorithm):
        yield self.auth.get_user_by_req(request)
        timeout = parse_integer(request, "timeout", 10 * 1000)
        body = parse_json_object_from_request(request)
        result = yield self.e2e_keys_handler.claim_one_time_keys(
            body,
            timeout,
        )
        defer.returnValue((200, result))


def register_servlets(hs, http_server):
    KeyUploadServlet(hs).register(http_server)
    KeyQueryServlet(hs).register(http_server)
    OneTimeKeyServlet(hs).register(http_server)
Add client API for uploading and querying keys for end to end encryption 2015-07-06 13:47:57 -04:00			`# -- coding: utf-8 --`
copyrights 2016-01-06 23:26:29 -05:00			`# Copyright 2015, 2016 OpenMarket Ltd`
Add client API for uploading and querying keys for end to end encryption 2015-07-06 13:47:57 -04:00			`#`
			`# Licensed under the Apache License, Version 2.0 (the "License");`
			`# you may not use this file except in compliance with the License.`
			`# You may obtain a copy of the License at`
			`#`
			`# http://www.apache.org/licenses/LICENSE-2.0`
			`#`
			`# Unless required by applicable law or agreed to in writing, software`
			`# distributed under the License is distributed on an "AS IS" BASIS,`
			`# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`# See the License for the specific language governing permissions and`
			`# limitations under the License.`

Add `create_requester` function Wrap the `Requester` constructor with a function which provides sensible defaults, and use it throughout 2016-07-26 11:46:53 -04:00			`import logging`

Add client API for uploading and querying keys for end to end encryption 2015-07-06 13:47:57 -04:00			`from twisted.internet import defer`

Move the E2E key handling into the e2e handler 2016-09-13 06:35:35 -04:00			`from synapse.api.errors import SynapseError`
Add a timeout parameter for end2end key queries. Add a timeout parameter for controlling how long synapse will wait for responses from remote servers. For servers that fail include how they failed to make it easier to debug. Fetch keys from different servers in parallel rather than in series. Set the default timeout to 10s. 2016-09-12 13:17:09 -04:00			`from synapse.http.servlet import (`
			`RestServlet, parse_json_object_from_request, parse_integer`
			`)`
Host /unstable and /r0 versions of r0 APIs 2015-12-01 12:34:32 -05:00			`from ._base import client_v2_patterns`
Add client API for uploading and querying keys for end to end encryption 2015-07-06 13:47:57 -04:00
			`logger = logging.getLogger(__name__)`


			`class KeyUploadServlet(RestServlet):`
			`"""`
Make the device id on e2e key upload optional We should now be able to get our device_id from the access_token, so the device_id on the upload request is optional. Where it is supplied, we should check that it matches. For active access_tokens without an associated device_id, we ought to register the device in the devices table. Also update the table on upgrade so that all of the existing e2e keys are associated with real devices. 2016-07-26 18:38:12 -04:00			`POST /keys/upload HTTP/1.1`
Add client API for uploading and querying keys for end to end encryption 2015-07-06 13:47:57 -04:00			`Content-Type: application/json`

			`{`
			`"device_keys": {`
			`"user_id": "<user_id>",`
			`"device_id": "<device_id>",`
			`"valid_until_ts": <millisecond_timestamp>,`
			`"algorithms": [`
			`"m.olm.curve25519-aes-sha256",`
			`]`
			`"keys": {`
Assume that each device for a user has only one of each type of key 2015-07-10 08:26:18 -04:00			`"<algorithm>:<device_id>": "<key_base64>",`
Add client API for uploading and querying keys for end to end encryption 2015-07-06 13:47:57 -04:00			`},`
			`"signatures:" {`
Assume that each device for a user has only one of each type of key 2015-07-10 08:26:18 -04:00			`"<user_id>" {`
			`"<algorithm>:<device_id>": "<signature_base64>"`
Add client API for uploading and querying keys for end to end encryption 2015-07-06 13:47:57 -04:00			`} } },`
			`"one_time_keys": {`
			`"<algorithm>:<key_id>": "<key_base64>"`
			`},`
			`}`
			`"""`
Make the device id on e2e key upload optional We should now be able to get our device_id from the access_token, so the device_id on the upload request is optional. Where it is supplied, we should check that it matches. For active access_tokens without an associated device_id, we ought to register the device in the devices table. Also update the table on upgrade so that all of the existing e2e keys are associated with real devices. 2016-07-26 18:38:12 -04:00			`PATTERNS = client_v2_patterns("/keys/upload(/(?P<device_id>[^/]+))?$",`
key upload tweaks 1. Add v2_alpha URL back in, since things seem to be using it. 2. Don't reject the request if the device_id in the upload request fails to match that in the access_token. 2016-07-27 11:41:06 -04:00			`releases=())`
Add client API for uploading and querying keys for end to end encryption 2015-07-06 13:47:57 -04:00
			`def __init__(self, hs):`
Make the device id on e2e key upload optional We should now be able to get our device_id from the access_token, so the device_id on the upload request is optional. Where it is supplied, we should check that it matches. For active access_tokens without an associated device_id, we ought to register the device in the devices table. Also update the table on upgrade so that all of the existing e2e keys are associated with real devices. 2016-07-26 18:38:12 -04:00			`"""`
			`Args:`
			`hs (synapse.server.HomeServer): server`
			`"""`
Add client API for uploading and querying keys for end to end encryption 2015-07-06 13:47:57 -04:00			`super(KeyUploadServlet, self).__init__()`
			`self.auth = hs.get_auth()`
Move the E2E key handling into the e2e handler 2016-09-13 06:35:35 -04:00			`self.e2e_keys_handler = hs.get_e2e_keys_handler()`
Add client API for uploading and querying keys for end to end encryption 2015-07-06 13:47:57 -04:00
			`@defer.inlineCallbacks`
			`def on_POST(self, request, device_id):`
Introduce a Requester object This tracks data about the entity which made the request. This is instead of passing around a tuple, which requires call-site modifications every time a new piece of optional context is passed around. I tried to introduce a User object. I gave up. 2016-01-11 10:29:57 -05:00			`requester = yield self.auth.get_user_by_req(request)`
			`user_id = requester.user.to_string()`
Use parse_json_object_from_request to parse JSON out of request bodies 2016-03-11 11:41:03 -05:00			`body = parse_json_object_from_request(request)`

Make the device id on e2e key upload optional We should now be able to get our device_id from the access_token, so the device_id on the upload request is optional. Where it is supplied, we should check that it matches. For active access_tokens without an associated device_id, we ought to register the device in the devices table. Also update the table on upgrade so that all of the existing e2e keys are associated with real devices. 2016-07-26 18:38:12 -04:00			`if device_id is not None:`
			`# passing the device_id here is deprecated; however, we allow it`
key upload tweaks 1. Add v2_alpha URL back in, since things seem to be using it. 2. Don't reject the request if the device_id in the upload request fails to match that in the access_token. 2016-07-27 11:41:06 -04:00			`# for now for compatibility with older clients.`
Make the device id on e2e key upload optional We should now be able to get our device_id from the access_token, so the device_id on the upload request is optional. Where it is supplied, we should check that it matches. For active access_tokens without an associated device_id, we ought to register the device in the devices table. Also update the table on upgrade so that all of the existing e2e keys are associated with real devices. 2016-07-26 18:38:12 -04:00			`if (requester.device_id is not None and`
			`device_id != requester.device_id):`
key upload tweaks 1. Add v2_alpha URL back in, since things seem to be using it. 2. Don't reject the request if the device_id in the upload request fails to match that in the access_token. 2016-07-27 11:41:06 -04:00			`logger.warning("Client uploading keys for a different device "`
			`"(logged in as %s, uploading for %s)",`
			`requester.device_id, device_id)`
Make the device id on e2e key upload optional We should now be able to get our device_id from the access_token, so the device_id on the upload request is optional. Where it is supplied, we should check that it matches. For active access_tokens without an associated device_id, we ought to register the device in the devices table. Also update the table on upgrade so that all of the existing e2e keys are associated with real devices. 2016-07-26 18:38:12 -04:00			`else:`
			`device_id = requester.device_id`

			`if device_id is None:`
Add a timeout parameter for end2end key queries. Add a timeout parameter for controlling how long synapse will wait for responses from remote servers. For servers that fail include how they failed to make it easier to debug. Fetch keys from different servers in parallel rather than in series. Set the default timeout to 10s. 2016-09-12 13:17:09 -04:00			`raise SynapseError(`
Make the device id on e2e key upload optional We should now be able to get our device_id from the access_token, so the device_id on the upload request is optional. Where it is supplied, we should check that it matches. For active access_tokens without an associated device_id, we ought to register the device in the devices table. Also update the table on upgrade so that all of the existing e2e keys are associated with real devices. 2016-07-26 18:38:12 -04:00			`400,`
			`"To upload keys, you must pass device_id when authenticating"`
			`)`

Move the E2E key handling into the e2e handler 2016-09-13 06:35:35 -04:00			`result = yield self.e2e_keys_handler.upload_keys_for_user(`
			`user_id, device_id, body`
			`)`
			`defer.returnValue((200, result))`
Add client API for uploading and querying keys for end to end encryption 2015-07-06 13:47:57 -04:00

			`class KeyQueryServlet(RestServlet):`
			`"""`
			`GET /keys/query/<user_id> HTTP/1.1`

			`GET /keys/query/<user_id>/<device_id> HTTP/1.1`

			`POST /keys/query HTTP/1.1`
			`Content-Type: application/json`
			`{`
			`"device_keys": {`
			`"<user_id>": ["<device_id>"]`
			`} }`

			`HTTP/1.1 200 OK`
			`{`
			`"device_keys": {`
			`"<user_id>": {`
			`"<device_id>": {`
			`"user_id": "<user_id>", // Duplicated to be signed`
			`"device_id": "<device_id>", // Duplicated to be signed`
			`"valid_until_ts": <millisecond_timestamp>,`
			`"algorithms": [ // List of supported algorithms`
			`"m.olm.curve25519-aes-sha256",`
			`],`
			`"keys": { // Must include a ed25519 signing key`
			`"<algorithm>:<key_id>": "<key_base64>",`
			`},`
			`"signatures:" {`
			`// Must be signed with device's ed25519 key`
			`"<user_id>/<device_id>": {`
			`"<algorithm>:<key_id>": "<signature_base64>"`
			`}`
			`// Must be signed by this server.`
			`"<server_name>": {`
			`"<algorithm>:<key_id>": "<signature_base64>"`
			`} } } } } }`
			`"""`

Host /unstable and /r0 versions of r0 APIs 2015-12-01 12:34:32 -05:00			`PATTERNS = client_v2_patterns(`
Add client API for uploading and querying keys for end to end encryption 2015-07-06 13:47:57 -04:00			`"/keys/query(?:"`
			`"/(?P<user_id>[^/]*)(?:"`
			`"/(?P<device_id>[^/]*)"`
			`")?"`
Host /unstable and /r0 versions of r0 APIs 2015-12-01 12:34:32 -05:00			`")?",`
			`releases=()`
Add client API for uploading and querying keys for end to end encryption 2015-07-06 13:47:57 -04:00			`)`

			`def __init__(self, hs):`
Move e2e query logic into a handler 2016-08-01 13:02:07 -04:00			`"""`
			`Args:`
			`hs (synapse.server.HomeServer):`
			`"""`
Add client API for uploading and querying keys for end to end encryption 2015-07-06 13:47:57 -04:00			`super(KeyQueryServlet, self).__init__()`
			`self.auth = hs.get_auth()`
Move e2e query logic into a handler 2016-08-01 13:02:07 -04:00			`self.e2e_keys_handler = hs.get_e2e_keys_handler()`
Add client API for uploading and querying keys for end to end encryption 2015-07-06 13:47:57 -04:00
			`@defer.inlineCallbacks`
			`def on_POST(self, request, user_id, device_id):`
			`yield self.auth.get_user_by_req(request)`
Add a timeout parameter for end2end key queries. Add a timeout parameter for controlling how long synapse will wait for responses from remote servers. For servers that fail include how they failed to make it easier to debug. Fetch keys from different servers in parallel rather than in series. Set the default timeout to 10s. 2016-09-12 13:17:09 -04:00			`timeout = parse_integer(request, "timeout", 10 * 1000)`
Use parse_json_object_from_request to parse JSON out of request bodies 2016-03-11 11:41:03 -05:00			`body = parse_json_object_from_request(request)`
Add a timeout parameter for end2end key queries. Add a timeout parameter for controlling how long synapse will wait for responses from remote servers. For servers that fail include how they failed to make it easier to debug. Fetch keys from different servers in parallel rather than in series. Set the default timeout to 10s. 2016-09-12 13:17:09 -04:00			`result = yield self.e2e_keys_handler.query_devices(body, timeout)`
Move the E2E key handling into the e2e handler 2016-09-13 06:35:35 -04:00			`defer.returnValue((200, result))`
Add client API for uploading and querying keys for end to end encryption 2015-07-06 13:47:57 -04:00
			`@defer.inlineCallbacks`
			`def on_GET(self, request, user_id, device_id):`
Introduce a Requester object This tracks data about the entity which made the request. This is instead of passing around a tuple, which requires call-site modifications every time a new piece of optional context is passed around. I tried to introduce a User object. I gave up. 2016-01-11 10:29:57 -05:00			`requester = yield self.auth.get_user_by_req(request)`
Add a timeout parameter for end2end key queries. Add a timeout parameter for controlling how long synapse will wait for responses from remote servers. For servers that fail include how they failed to make it easier to debug. Fetch keys from different servers in parallel rather than in series. Set the default timeout to 10s. 2016-09-12 13:17:09 -04:00			`timeout = parse_integer(request, "timeout", 10 * 1000)`
Introduce a Requester object This tracks data about the entity which made the request. This is instead of passing around a tuple, which requires call-site modifications every time a new piece of optional context is passed around. I tried to introduce a User object. I gave up. 2016-01-11 10:29:57 -05:00			`auth_user_id = requester.user.to_string()`
Add federation support for end-to-end key requests 2015-07-23 11:03:38 -04:00			`user_id = user_id if user_id else auth_user_id`
			`device_ids = [device_id] if device_id else []`
Move e2e query logic into a handler 2016-08-01 13:02:07 -04:00			`result = yield self.e2e_keys_handler.query_devices(`
Add a timeout parameter for end2end key queries. Add a timeout parameter for controlling how long synapse will wait for responses from remote servers. For servers that fail include how they failed to make it easier to debug. Fetch keys from different servers in parallel rather than in series. Set the default timeout to 10s. 2016-09-12 13:17:09 -04:00			`{"device_keys": {user_id: device_ids}},`
			`timeout,`
Add federation support for end-to-end key requests 2015-07-23 11:03:38 -04:00			`)`
Move the E2E key handling into the e2e handler 2016-09-13 06:35:35 -04:00			`defer.returnValue((200, result))`
Add federation support for end-to-end key requests 2015-07-23 11:03:38 -04:00
Add client API for uploading and querying keys for end to end encryption 2015-07-06 13:47:57 -04:00
			`class OneTimeKeyServlet(RestServlet):`
			`"""`
s/take/claim/ for end to end key APIs 2015-07-14 08:08:33 -04:00			`GET /keys/claim/<user-id>/<device-id>/<algorithm> HTTP/1.1`
Add client API for uploading and querying keys for end to end encryption 2015-07-06 13:47:57 -04:00
s/take/claim/ for end to end key APIs 2015-07-14 08:08:33 -04:00			`POST /keys/claim HTTP/1.1`
Add client API for uploading and querying keys for end to end encryption 2015-07-06 13:47:57 -04:00			`{`
			`"one_time_keys": {`
			`"<user_id>": {`
			`"<device_id>": "<algorithm>"`
			`} } }`

			`HTTP/1.1 200 OK`
			`{`
			`"one_time_keys": {`
			`"<user_id>": {`
			`"<device_id>": {`
			`"<algorithm>:<key_id>": "<key_base64>"`
			`} } } }`

			`"""`
Host /unstable and /r0 versions of r0 APIs 2015-12-01 12:34:32 -05:00			`PATTERNS = client_v2_patterns(`
s/take/claim/ for end to end key APIs 2015-07-14 08:08:33 -04:00			`"/keys/claim(?:/?\|(?:/"`
Add client API for uploading and querying keys for end to end encryption 2015-07-06 13:47:57 -04:00			`"(?P<user_id>[^/])/(?P<device_id>[^/])/(?P<algorithm>[^/]*)"`
Host /unstable and /r0 versions of r0 APIs 2015-12-01 12:34:32 -05:00			`")?)",`
			`releases=()`
Add client API for uploading and querying keys for end to end encryption 2015-07-06 13:47:57 -04:00			`)`

			`def __init__(self, hs):`
			`super(OneTimeKeyServlet, self).__init__()`
			`self.auth = hs.get_auth()`
Move the E2E key handling into the e2e handler 2016-09-13 06:35:35 -04:00			`self.e2e_keys_handler = hs.get_e2e_keys_handler()`
Add client API for uploading and querying keys for end to end encryption 2015-07-06 13:47:57 -04:00
			`@defer.inlineCallbacks`
			`def on_GET(self, request, user_id, device_id, algorithm):`
			`yield self.auth.get_user_by_req(request)`
Add a timeout parameter for end2end key queries. Add a timeout parameter for controlling how long synapse will wait for responses from remote servers. For servers that fail include how they failed to make it easier to debug. Fetch keys from different servers in parallel rather than in series. Set the default timeout to 10s. 2016-09-12 13:17:09 -04:00			`timeout = parse_integer(request, "timeout", 10 * 1000)`
Move the E2E key handling into the e2e handler 2016-09-13 06:35:35 -04:00			`result = yield self.e2e_keys_handler.claim_one_time_keys(`
Add a timeout parameter for end2end key queries. Add a timeout parameter for controlling how long synapse will wait for responses from remote servers. For servers that fail include how they failed to make it easier to debug. Fetch keys from different servers in parallel rather than in series. Set the default timeout to 10s. 2016-09-12 13:17:09 -04:00			`{"one_time_keys": {user_id: {device_id: algorithm}}},`
			`timeout,`
Add client API for uploading and querying keys for end to end encryption 2015-07-06 13:47:57 -04:00			`)`
Move the E2E key handling into the e2e handler 2016-09-13 06:35:35 -04:00			`defer.returnValue((200, result))`
Add client API for uploading and querying keys for end to end encryption 2015-07-06 13:47:57 -04:00
			`@defer.inlineCallbacks`
			`def on_POST(self, request, user_id, device_id, algorithm):`
			`yield self.auth.get_user_by_req(request)`
Add a timeout parameter for end2end key queries. Add a timeout parameter for controlling how long synapse will wait for responses from remote servers. For servers that fail include how they failed to make it easier to debug. Fetch keys from different servers in parallel rather than in series. Set the default timeout to 10s. 2016-09-12 13:17:09 -04:00			`timeout = parse_integer(request, "timeout", 10 * 1000)`
Use parse_json_object_from_request to parse JSON out of request bodies 2016-03-11 11:41:03 -05:00			`body = parse_json_object_from_request(request)`
Move the E2E key handling into the e2e handler 2016-09-13 06:35:35 -04:00			`result = yield self.e2e_keys_handler.claim_one_time_keys(`
			`body,`
			`timeout,`
			`)`
			`defer.returnValue((200, result))`
Add client API for uploading and querying keys for end to end encryption 2015-07-06 13:47:57 -04:00

			`def register_servlets(hs, http_server):`
			`KeyUploadServlet(hs).register(http_server)`
			`KeyQueryServlet(hs).register(http_server)`
			`OneTimeKeyServlet(hs).register(http_server)`