mirrors/dendrite
1
0
Fork 0
mirror of https://github.com/element-hq/dendrite.git synced 2025-09-14 05:12:26 +03:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

mas: added admin's delete devices endpoint

Browse source
This commit is contained in:
Roman Isaev 2025-01-01 02:26:15 +00:00
parent f4ff4266f5
commit 803cce882f
No known key found for this signature in database
GPG key ID: 7BE2B6A6C89AEC7F
2 changed files with 126 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

120
clientapi/routing/admin.go
View file

@ -33,9 +33,14 @@ import (
userapi "github.com/element-hq/dendrite/userapi/api" userapi "github.com/element-hq/dendrite/userapi/api"
) )
const replacementPeriod = 10 * time.Minute const (
replacementPeriod time.Duration = 10 * time.Minute
)
var validRegistrationTokenRegex = regexp.MustCompile("^[[:ascii:][:digit:]_]*$") var (
validRegistrationTokenRegex = regexp.MustCompile("^[[:ascii:][:digit:]_]*$")
deviceDisplayName = "OIDC-native client"
)
func AdminCreateNewRegistrationToken(req *http.Request, cfg *config.ClientAPI, userAPI userapi.ClientUserAPI) util.JSONResponse { func AdminCreateNewRegistrationToken(req *http.Request, cfg *config.ClientAPI, userAPI userapi.ClientUserAPI) util.JSONResponse {
if !cfg.RegistrationRequiresToken { if !cfg.RegistrationRequiresToken {
@ -523,7 +528,7 @@ func AdminCheckUsernameAvailable(
} }
} }
func AdminHandleUserDeviceRetrievingCreation( func AdminUserDeviceRetrieveCreate(
req *http.Request, req *http.Request,
userAPI userapi.ClientUserAPI, userAPI userapi.ClientUserAPI,
cfg *config.ClientAPI, cfg *config.ClientAPI,
@ -574,7 +579,6 @@ func AdminHandleUserDeviceRetrievingCreation(
} }
} }
for i := range rs.Devices { for i := range rs.Devices {
logger.Errorf("%s :: %s", rs.Devices[0].ID, payload.DeviceID)
if d := rs.Devices[i]; d.ID == payload.DeviceID && d.UserID == userID { if d := rs.Devices[i]; d.ID == payload.DeviceID && d.UserID == userID {
userDeviceExists = true userDeviceExists = true
break break
@ -588,6 +592,7 @@ func AdminHandleUserDeviceRetrievingCreation(
Localpart: local, Localpart: local,
ServerName: domain, ServerName: domain,
DeviceID: &payload.DeviceID, DeviceID: &payload.DeviceID,
DeviceDisplayName: &deviceDisplayName,
IPAddr: "", IPAddr: "",
UserAgent: req.UserAgent(), UserAgent: req.UserAgent(),
NoDeviceListUpdate: false, NoDeviceListUpdate: false,
@ -638,7 +643,114 @@ func AdminHandleUserDeviceRetrievingCreation(
JSON: struct{}{}, JSON: struct{}{},
} }
} }
}
func AdminUserDeviceDelete(
req *http.Request,
userAPI userapi.ClientUserAPI,
cfg *config.ClientAPI,
) util.JSONResponse {
vars, err := httputil.URLDecodeMapValues(mux.Vars(req))
if err != nil {
return util.MessageResponse(http.StatusBadRequest, err.Error())
}
userID, _ := vars["userID"]
deviceID, _ := vars["deviceID"]
logger := util.GetLogger(req.Context())
// XXX: we probably have to delete session from the sessions dict
// like we do in DeleteDeviceById. If so, we have to fi
var device *api.Device
{
var rs api.QueryDevicesResponse
if err := userAPI.QueryDevices(req.Context(), &api.QueryDevicesRequest{UserID: userID}, &rs); err != nil {
logger.WithError(err).Error("userAPI.QueryDevices failed")
return util.JSONResponse{
Code: http.StatusInternalServerError,
JSON: spec.InternalServerError{},
}
}
if !rs.UserExists {
return util.JSONResponse{
Code: http.StatusNotFound,
JSON: spec.NotFound("Given user ID does not exist"),
}
}
for i := range rs.Devices {
if d := rs.Devices[i]; d.ID == deviceID && d.UserID == userID {
device = &d
break
}
}
}
{
// XXX: this response struct can completely removed everywhere as it doesn't
// have any functional purpose
var res api.PerformDeviceDeletionResponse
if err := userAPI.PerformDeviceDeletion(req.Context(), &api.PerformDeviceDeletionRequest{
UserID: device.UserID,
DeviceIDs: []string{device.ID},
}, &res); err != nil {
logger.WithError(err).Error("userAPI.PerformDeviceDeletion failed")
return util.JSONResponse{
Code: http.StatusInternalServerError,
JSON: spec.InternalServerError{},
}
}
}
return util.JSONResponse{
Code: http.StatusOK,
JSON: struct{}{},
}
}
func AdminUserDevicesDelete(
req *http.Request,
userAPI userapi.ClientUserAPI,
cfg *config.ClientAPI,
) util.JSONResponse {
logger := util.GetLogger(req.Context())
vars, err := httputil.URLDecodeMapValues(mux.Vars(req))
if err != nil {
return util.MessageResponse(http.StatusBadRequest, err.Error())
}
userID, _ := vars["userID"]
var payload struct {
Devices []string `json:"devices"`
}
defer req.Body.Close()
if err = json.NewDecoder(req.Body).Decode(&payload); err != nil {
util.GetLogger(req.Context()).WithError(err).Error("unable to decode device deletion request")
return util.JSONResponse{
Code: http.StatusInternalServerError,
JSON: spec.InternalServerError{},
}
}
{
// XXX: this response struct can completely removed everywhere as it doesn't
// have any functional purpose
var rs api.PerformDeviceDeletionResponse
if err := userAPI.PerformDeviceDeletion(req.Context(), &api.PerformDeviceDeletionRequest{
UserID: userID,
DeviceIDs: payload.Devices,
}, &rs); err != nil {
logger.WithError(err).Error("userAPI.PerformDeviceDeletion failed")
return util.JSONResponse{
Code: http.StatusInternalServerError,
JSON: spec.InternalServerError{},
}
}
}
return util.JSONResponse{
Code: http.StatusOK,
JSON: struct{}{},
}
} }
func AdminAllowCrossSigningReplacementWithoutUIA( func AdminAllowCrossSigningReplacementWithoutUIA(

12
clientapi/routing/routing.go
View file

@ -356,9 +356,17 @@ func Setup(
})).Methods(http.MethodPut, http.MethodGet) })).Methods(http.MethodPut, http.MethodGet)
synapseAdminRouter.Handle("/admin/v2/users/{userID}/devices", synapseAdminRouter.Handle("/admin/v2/users/{userID}/devices",
httputil.MakeServiceAdminAPI("admin_user_devices", m.AdminToken, func(r *http.Request) util.JSONResponse { httputil.MakeServiceAdminAPI("admin_create_retrieve_user_devices", m.AdminToken, func(r *http.Request) util.JSONResponse {
return AdminHandleUserDeviceRetrievingCreation(r, userAPI, cfg) return AdminUserDeviceRetrieveCreate(r, userAPI, cfg)
})).Methods(http.MethodPost, http.MethodGet) })).Methods(http.MethodPost, http.MethodGet)
synapseAdminRouter.Handle("/admin/v2/users/{userID}/devices/{deviceID}",
httputil.MakeServiceAdminAPI("admin_delete_user_device", m.AdminToken, func(r *http.Request) util.JSONResponse {
return AdminUserDeviceDelete(r, userAPI, cfg)
})).Methods(http.MethodDelete)
synapseAdminRouter.Handle("/admin/v2/users/{userID}/delete_devices",
httputil.MakeServiceAdminAPI("admin_delete_user_devices", m.AdminToken, func(r *http.Request) util.JSONResponse {
return AdminUserDevicesDelete(r, userAPI, cfg)
})).Methods(http.MethodPost)
synapseAdminRouter.Handle("/admin/v1/users/{userID}/_allow_cross_signing_replacement_without_uia", synapseAdminRouter.Handle("/admin/v1/users/{userID}/_allow_cross_signing_replacement_without_uia",
httputil.MakeServiceAdminAPI("admin_allow_cross_signing_replacement_without_uia", m.AdminToken, func(r *http.Request) util.JSONResponse { httputil.MakeServiceAdminAPI("admin_allow_cross_signing_replacement_without_uia", m.AdminToken, func(r *http.Request) util.JSONResponse {