Parse ui_auth.session_timeout as a duration (instead of treating it as ms) (#9426)

2024-11-22 01:25:44 +03:00 · 2021-02-18 19:48:14 +05:30 · 2021-02-18 19:48:14 +05:30 · e17553e185
commit e17553e185
parent e8e7012265
4 changed files with 11 additions and 8 deletions
--- a/changelog.d/9426.bugfix
+++ b/changelog.d/9426.bugfix
@ -0,0 +1 @@
+The `ui_auth.session_timeout` configuration setting can now be specified in terms of number of seconds/minutes/etc/. Contributed by Rishabh Arya.
--- a/docs/sample_config.yaml
+++ b/docs/sample_config.yaml
@ -2228,8 +2228,8 @@ password_config:
      #require_uppercase: true

 ui_auth:
-    # The number of milliseconds to allow a user-interactive authentication
-    # session to be active.
+    # The amount of time to allow a user-interactive authentication session
+    # to be active.
    #
    # This defaults to 0, meaning the user is queried for their credentials
    # before every action, but this can be overridden to allow a single
@ -2240,7 +2240,7 @@ ui_auth:
    # Uncomment below to allow for credential validation to last for 15
    # seconds.
    #
-    #session_timeout: 15000
+    #session_timeout: "15s"


 # Configuration for sending emails from Synapse.
--- a/synapse/config/auth.py
+++ b/synapse/config/auth.py
@ -37,7 +37,9 @@ class AuthConfig(Config):

        # User-interactive authentication
        ui_auth = config.get("ui_auth") or {}
-        self.ui_auth_session_timeout = ui_auth.get("session_timeout", 0)
+        self.ui_auth_session_timeout = self.parse_duration(
+            ui_auth.get("session_timeout", 0)
+        )

    def generate_config_section(self, config_dir_path, server_name, **kwargs):
        return """\
@ -93,8 +95,8 @@ class AuthConfig(Config):
              #require_uppercase: true

        ui_auth:
-            # The number of milliseconds to allow a user-interactive authentication
-            # session to be active.
+            # The amount of time to allow a user-interactive authentication session
+            # to be active.
            #
            # This defaults to 0, meaning the user is queried for their credentials
            # before every action, but this can be overridden to allow a single
@ -105,5 +107,5 @@ class AuthConfig(Config):
            # Uncomment below to allow for credential validation to last for 15
            # seconds.
            #
-            #session_timeout: 15000
+            #session_timeout: "15s"
        """
--- a/tests/rest/client/v2_alpha/test_auth.py
+++ b/tests/rest/client/v2_alpha/test_auth.py
@ -343,7 +343,7 @@ class UIAuthTests(unittest.HomeserverTestCase):
            },
        )

-    @unittest.override_config({"ui_auth": {"session_timeout": 5 * 1000}})
+    @unittest.override_config({"ui_auth": {"session_timeout": "5s"}})
    def test_can_reuse_session(self):
        """
        The session can be reused if configured.
				`@ -0,0 +1 @@`
				The `ui_auth.session_timeout` configuration setting can now be specified in terms of number of seconds/minutes/etc/. Contributed by Rishabh Arya.