Skip to content

Clarifications around third-party invites #2083

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 17 commits into from
Apr 22, 2025
Merged

Clarifications around third-party invites #2083

merged 17 commits into from
Apr 22, 2025

Conversation

zecakeh
Copy link
Contributor

@zecakeh zecakeh commented Feb 22, 2025
edited by github-actions bot
Loading

There are a lot of small commits to make changes easy to justify and to review.

I have tried to add more links to other APIs of the spec since this spans across 3 APIs and the links were not obvious unless we read each section. A couple of commits are about formatting the files to wrap lines that were way too long before making actual changes to the files.

The main motivation for this PR is to clarify the base64 encoding of the public keys of the identity server (#2060). Currently Sydent encodes the long-term public key using standard base64, but ephemeral public keys using URL-safe base64. Synapse uses the same python library as Sydent that decodes both indifferently.

Even if we deem that Sydent's behavior is wrong (matrix-org/sydent#593), we still need to document the current behavior, because public keys in m.room.third_party_event are used in the authorization rules to validate m.room.member invites with a third_party_invite property, so homeservers must be able to handle it.

Note that I did not touch the third_party_signed of /join because it is unclear how or when it is used (#2082).

Closes #2060.

Pull Request Checklist

Preview: https://pr2083--matrix-spec-previews.netlify.app

zecakeh added 12 commits February 22, 2025 16:45
@zecakeh
Clarify CS API third party invites explanations and add more cross-AP…
abb5d74 
…I links

Signed-off-by: Kévin Commaille <[email protected]>
@zecakeh
Clarify SS API third party invites explanations and add more cross-AP…
a05e2ca 
…I links

Signed-off-by: Kévin Commaille <[email protected]>
@zecakeh
Fix formatting of m.room.third_party_invite schema
f793658 
Signed-off-by: Kévin Commaille <[email protected]>
@zecakeh
Clarify that public keys in m.room.third_party_event is encoded using…
c21b914 
… standard or URL-safe base64.

Sydent has been using both alphabets.

Signed-off-by: Kévin Commaille <[email protected]>
@zecakeh
Remove redundant sentence in third-party /invite endpoint description
15beaff 
The exact same thing is said two paragraphs before.

Signed-off-by: Kévin Commaille <[email protected]>
@zecakeh
Clarify and fix formatting of third-party /invite endpoint
0e4c773 
Signed-off-by: Kévin Commaille <[email protected]>
@zecakeh
Fix formatting of m.room.member schema
b9724c6 
Wrap lines at around 100 characters

Signed-off-by: Kévin Commaille <[email protected]>
@zecakeh
Add link to m.room.third_party_invite definition
1f995a0 
Signed-off-by: Kévin Commaille <[email protected]>
@zecakeh
Deduplicate signed property of third party invite
d501212 
Signed-off-by: Kévin Commaille <[email protected]>
@zecakeh
Clarify formats of SS API third-party invite endpoints
0f8508d 
Signed-off-by: Kévin Commaille <[email protected]>
@zecakeh
Clarify string formats and base64 encoding of /store-invite endpoint
295b94a 
Signed-off-by: Kévin Commaille <[email protected]>
@zecakeh
Clarify base64 encoding of IS API key management endpoints
9c28036 
Signed-off-by: Kévin Commaille <[email protected]>
@zecakeh zecakeh requested a review from a team as a code owner February 22, 2025 19:17
@zecakeh
Fix typo
39ee16c 
Signed-off-by: Kévin Commaille <[email protected]>
@zecakeh
Add changelogs
827ee5f 
Signed-off-by: Kévin Commaille <[email protected]>
richvdh
richvdh requested changes Apr 16, 2025
View reviewed changes
Copy link
Member

@richvdh richvdh left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

A few editorial comments, but generally looks good. Thank you for your attempts to untangle this mess.

@zecakeh zecakeh requested a review from richvdh April 22, 2025 12:45
richvdh
richvdh approved these changes Apr 22, 2025
View reviewed changes
Copy link
Member

@richvdh richvdh left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thank you!

@richvdh richvdh merged commit fca1714 into matrix-org:main Apr 22, 2025
12 checks passed
@zecakeh zecakeh deleted the clarify-third-party-invite branch May 6, 2025 08:35
Johennes pushed a commit to Johennes/matrix-spec that referenced this pull request May 30, 2025
@zecakeh @Johennes
Clarifications around third-party invites (matrix-org#2083)
a866546 
Signed-off-by: Kévin Commaille <[email protected]>
@zecakeh zecakeh mentioned this pull request May 30, 2025
Closed
35 tasks
@Johennes Johennes mentioned this pull request Jul 3, 2025
Open
34 tasks
@turt2live turt2live mentioned this pull request Jul 24, 2025
Open
34 tasks
tcpipuk pushed a commit to tcpipuk/matrix-spec that referenced this pull request Jul 30, 2025
@zecakeh @tcpipuk
Clarifications around third-party invites (matrix-org#2083)
9dacac8 
Signed-off-by: Kévin Commaille <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@richvdh richvdh richvdh approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Identity servers public_key(s) base64 format needs to be clarified
2 participants
@zecakeh @richvdh