Appservice login

[vijfhoek]

Fixes #2723

This is my first contribution to this code base, so I hope I did everything correctly :)

I did move validateApplicationService (now ValidateApplicationService) from routing to internal to be able to reuse it - is this the right place for it?

Pull Request Checklist

• I have added Go unit tests or Complement integration tests for this PR or I have justified why this PR doesn't need tests
• Pull request includes a sign off below using a legally identifiable name or I have already signed off privately

Signed-off-by: Sijmen Schoon <me@sijman.nl>

[codecov]

Codecov Report

Base: 40.30% // Head: 40.47% // Increases project coverage by +0.17% 🎉

Coverage data is based on head (dc14738) compared to base (2debabf).
Patch coverage: 85.59% of modified lines in pull request are covered.

❗ Current head dc14738 differs from pull request most recent head 902eb1e. Consider uploading reports for the commit 902eb1e to get more accurate results

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #2936      +/-   ##
==========================================
+ Coverage   40.30%   40.47%   +0.17%     
==========================================
  Files         519      520       +1     
  Lines       56436    56457      +21     
==========================================
+ Hits        22745    22851     +106     
+ Misses      30968    30896      -72     
+ Partials     2723     2710      -13     

Flag	Coverage Δ
unittests	40.47% <85.59%> (+0.17%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

Impacted Files	Coverage Δ
clientapi/auth/user_interactive.go	78.62% <ø> (ø)
clientapi/routing/register.go	62.18% <0.00%> (+0.41%)	⬆️
clientapi/auth/login_application_service.go	61.53% <61.53%> (ø)
internal/validate.go	92.18% <87.34%> (-7.82%)	⬇️
clientapi/auth/login.go	86.27% <100.00%> (+4.69%)	⬆️
clientapi/routing/login.go	69.49% <100.00%> (+21.95%)	⬆️
roomserver/storage/sqlite3/event_json_table.go	80.85% <0.00%> (-6.39%)	⬇️
syncapi/streams/stream_presence.go	58.26% <0.00%> (-2.37%)	⬇️
syncapi/notifier/notifier.go	62.46% <0.00%> (-0.78%)	⬇️
roomserver/internal/query/query.go	31.44% <0.00%> (ø)
... and 17 more

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

☔ View full report at Codecov.
📢 Do you have feedback about the report comment? Let us know in this issue.

[S7evinK]

Looks good to me! Thanks for adding tests as well :)

[kegsay]

Otherwise this looks great, thanks!

[kegsay]

Good tests overall, but please make them table-driven as it's significantly easier to see the inputs / expected outputs https://dave.cheney.net/2019/05/07/prefer-table-driven-tests

[vijfhoek]

Something like this?

[kegsay]

This is only true if Dendrite has been configured with appservices surely.

[kegsay]

Please fix the linter errors.

[sebastian-de]

Hey @vijfhoek, thanks for your work - I'm currently testing your PR on my dendrite instance with mautrix-signal and so far it works great!

I rebased your PR on the current main branch: https://github.com/sebastian-de/dendrite/commits/appservice

Feel free to use this tree, if you'd like to push again.

[sebastian-de]

It seems mautrix-signal has problems to connect, when encryption is enabled. This a log from mautrix-signal.service:

[2023-03-24 13:21:20,969] [INFO@mau.user.@user:example.com] Automatically enabling custom puppet
[2023-03-24 13:21:20,979] [INFO@mau.init] Startup actions complete in 0.2 seconds, now running forever
[2023-03-24 13:21:20,983] [WARNING@mau.user.@user:example.com] New IDENTIFIED websocket state from signald CONNECTING
[2023-03-24 13:21:20,987] [WARNING@mau.user.@user:example.com] New UNIDENTIFIED websocket state from signald CONNECTING
[2023-03-24 13:21:21,110] [WARNING@mau.user.@user:example.com] Failed to enable custom puppet: Didn't get an access token: The username or password was incorrect or the account does not exist.

The dendrite logs don't reveal anything regarding that error.
The user does exist and I'm using registration_shared_secret which worked well so far with mautrix-signal.
Are there additional configuration steps neccessary to make appservice login work?

[sebastian-de]

It seems mautrix-signal has problems to connect

This was a configuration error in mautrix-signal - the bridge seems to mix things up, when shared secret auth is enabled.
Sorry for the noise.

[Fijxu]

I was trying this branch with encryption support but it seems to fails for me using mautrix-whatsapp.

The bot returns this when trying to do a request to _matrix/client/v3/sendToDevice/m.room_key_request/mautrix-go

{
    "errcode": "M_UNKNOWN_TOKEN",
    "error": "Unknown token"
}

and it fails retrieving encryption keys for the encrypted chat. Although it connects good to the Dendrite instance and it detects that the server supports appservice encryption. And in the configuration file of the Bot i need to change from appservice: false to appservice: true or it will fail to connect to the instance.

https://github.com/mautrix/whatsapp/blob/master/example-config.yaml#L353

[kegsay]

This PR is at risk of being closed. Unfortunately the lint errors haven't been fixed yet, and now there's a lot of merge conflicts.

[vijfhoek]

I haven't had too much time lately, sorry. The merge conflicts seem to be fairly simple to solve at first sight though

[kuhnchris]

Hey @vijfhoek - hope you're doing good - I took the liberty to rebase your branch and opened a new PR, if you'd prefer to have it in your repo, let me know and I'll add a PR to that instead. Thanks for your work and cheers ❤️

[vijfhoek]

Closing because this one's superseded by #3078