Matrix-Mirrors/synapse-product
1
0
Fork 0
mirror of https://git.anonymousland.org/anonymousland/synapse-product.git synced 2024-12-11 11:14:21 -05:00
Code Issues Packages Projects Releases Wiki Activity

README: Rewrite "Identity servers" section

Browse Source
This commit is contained in:
Richard van der Hoff 2016-12-02 10:42:10 +00:00
parent 77bf92e3c6
commit 235407a78e
1 changed files with 20 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

33
README.rst
View File

@ -571,21 +571,28 @@ For information on how to install and use PostgreSQL, please see
Identity Servers Identity Servers
================ ================
The job of authenticating 3PIDs and tracking which 3PIDs are associated with a Identity servers have the job of mapping email addresses and other 3rd Party
given Matrix user is very security-sensitive, as there is obvious risk of spam IDs (3PIDs) to Matrix user IDs, as well as verifying the ownership of 3PIDs
if it is too easy to sign up for Matrix accounts or harvest 3PID data. before creating that mapping.
Meanwhile the job of publishing the end-to-end encryption public keys for
Matrix users is also very security-sensitive for similar reasons.
Therefore the role of managing trusted identity in the Matrix ecosystem is This process is very security-sensitive, as there is obvious risk of spam if it
farmed out to a cluster of known trusted ecosystem partners, who run 'Matrix is too easy to sign up for Matrix accounts or harvest 3PID data. In the longer
Identity Servers' such as ``sydent``, whose role is purely to authenticate and term, we hope to create a decentralised system to manage it (`matrix-doc #712
track 3PID logins and publish end-user public keys. <https://github.com/matrix-org/matrix-doc/issues/712>`_), but in the meantime,
the role of managing trusted identity in the Matrix ecosystem is farmed out to
a cluster of known trusted ecosystem partners, who run 'Matrix Identity
Servers' such as `Sydent <https://github.com/matrix-org/sydent>`_, whose role
is purely to authenticate and track 3PID logins and publish end-user public
keys.
It's currently early days for identity servers as Matrix is not yet using 3PIDs You can host your own copy of Sydent, but this will prevent you reaching other
as the primary means of identity and E2E encryption is not complete. As such, users in the Matrix ecosystem via their email address, and prevent them finding
we are running a single identity server (https://matrix.org) at the current you. We therefore recommend that you use one of the centralised identity servers
time. at ``https://matrix.org`` or ``https://vector.im`` for now.
To reiterate: the Identity server will only be used if you choose to associate
an email address with your account, or send an invite to another user via their
email address.
URL Previews URL Previews