Reworked MSC1915. Add request validation.

2019-07-27 15:51:01 +03:00
parent a96920f533
commit a1f64f5159
28 changed files with 419 additions and 236 deletions
--- a/docs/threepids/notification/sendgrid-handler.md
+++ b/docs/threepids/notification/sendgrid-handler.md
@@ -31,8 +31,8 @@ notification:
              text: <Path to file containing the raw text part of the email. Do not set to not use one>
              html: <Path to file containing the HTML part of the email. Do not set to not use one>
          unbind:
-            fraudulent:
-              subject: <Subject of the email notification sent for potentially fraudulent 3PID unbinds>
+            notification:
+              subject: <Subject of the email notification sent for 3PID unbinds>
              body:
                text: <Path to file containing the raw text part of the email. Do not set to not use one>
                html: <Path to file containing the raw text part of the email. Do not set to not use one>
--- a/docs/threepids/notification/template-generator.md
+++ b/docs/threepids/notification/template-generator.md
@@ -9,7 +9,7 @@ provide your own custom templates.
 Templates for the following events/actions are available:
 - [3PID invite](../../features/identity.md)
 - [3PID session: validation](../session/session.md)
- [3PID session: fraudulent unbind](https://github.com/kamax-matrix/ma1sd/wiki/ma1sd-and-your-privacy#improving-your-privacy-one-commit-at-the-time)
+- [3PID session: unbind](https://github.com/kamax-matrix/ma1sd/wiki/ma1sd-and-your-privacy#improving-your-privacy-one-commit-at-the-time)
 - [Matrix ID invite](../../features/experimental/application-service.md#email-notification-about-room-invites-by-matrix-ids)

 ## Placeholders
@@ -71,7 +71,7 @@ under the namespace `threepid.medium.<medium>.generators.template`.
 Under such namespace, the following keys are available:
 - `invite`: Path to the 3PID invite notification template
 - `session.validation`: Path to the 3PID session validation notification template
- `session.unbind.fraudulent`: Path to the 3PID session fraudulent unbind notification template
+- `session.unbind`: Path to the 3PID session unbind notification template
 - `generic.matrixId`: Path to the Matrix ID invite notification template
 - `placeholder`: Map of key/values to set static values for some placeholders.

@@ -104,7 +104,7 @@ threepid:
          session:
            validation: '/path/to/validate-template.eml'
            unbind:
-              fraudulent: '/path/to/unbind-fraudulent-template.eml'
+              notification: '/path/to/unbind-notification-template.eml'
          generic:
            matrixId: '/path/to/mxid-invite-template.eml'
          placeholder:
--- a/docs/threepids/session/session.md
+++ b/docs/threepids/session/session.md
@@ -103,8 +103,8 @@ session:
    validation:
      enabled: true
    unbind:
-      fraudulent:
-        sendWarning: true
+      notification:
+        enabled: true

 # DO NOT COPY/PASTE AS-IS IN YOUR CONFIGURATION
 # CONFIGURATION EXAMPLE
@@ -115,11 +115,7 @@ are allowed to do in terms of 3PID sessions. The policy has a global on/off swit

 ---

-`unbind.fraudulent` controls warning notifications if an illegal/fraudulent 3PID removal is attempted on the Identity server.  
-This is directly related to synapse disregard for privacy and new GDPR laws in Europe in an attempt to inform users about
-potential privacy leaks.
-
-For more information, see the corresponding [synapse issue](https://github.com/matrix-org/synapse/issues/4540).
+`unbind` controls warning notifications for 3PID removal.  

 ### Web views
 Once a user click on a validation link, it is taken to the Identity Server validation page where the token is submitted.