gitlord
/
synapse
spegling av https://github.com/matrix-org/synapse.git
1
0
Förgrening 0
Kod Ärenden 0 Släpp 671 Wiki Aktiviteter
Du kan inte välja fler än 25 ämnen Ämnen måste starta med en bokstav eller siffra, kan innehålla bindestreck ('-') och vara max 35 tecken långa.
23441 Incheckningar
842 Grenar
604 MiB
Gren: develop
Grenar Taggar
${ item.name }
Skapa branchen ${ searchTerm }
från 'develop'
${ noResults }
synapse/docs/consent_tracking.md

consent_tracking.md 7.2 KiB
Permalänk Normal vy Historik

consent tracking docs
6 år sedan
Fix-up incorrect spellings in docs. (#16282)
8 månader sedan
consent tracking docs
6 år sedan
Fix-up incorrect spellings in docs. (#16282)
8 månader sedan
consent tracking docs
6 år sedan
Fix broken links in documentation (#10180) * Fix broken links in documentation * newsfile
2 år sedan
consent tracking docs
6 år sedan
Update documentation and templates for new consent
5 år sedan
consent_tracking: formatting etc
6 år sedan
consent tracking docs
6 år sedan
consent_tracking: formatting etc
6 år sedan
consent tracking docs
6 år sedan
Add config variables for enabling terms auth and the policy name (#4142) So people can still collect consent the old way if they want to.
5 år sedan
Improve code formatting and fix a few typos in docs (#11221) * Labeled a lot more code blocks with the appropriate type * Fixed a couple of minor typos (missing/extraneous commas) Signed-off-by: Sumner Evans <me@sumnerevans.com>
2 år sedan
Add config variables for enabling terms auth and the policy name (#4142) So people can still collect consent the old way if they want to.
5 år sedan
consent tracking docs
6 år sedan
consent_tracking: formatting etc
6 år sedan
consent tracking docs
6 år sedan
Update documentation and templates for new consent
5 år sedan
Add config variables for enabling terms auth and the policy name (#4142) So people can still collect consent the old way if they want to.
5 år sedan
Update documentation and templates for new consent
5 år sedan
consent tracking docs
6 år sedan
Docs: Use something other than the document name to describe a page (#10399) Our documentation has a history of using a document's name as a way to link to it, such as "See [workers.md]() for details". This makes sense when you're traversing a directory of files, but less sense when the files are abstracted away - as they are on the documentation website. This PR changes the links to various documentation pages to something that fits better into the surrounding sentence, as you would when making any hyperlink on the web.
2 år sedan
consent tracking docs
6 år sedan
mention public_baseurl
6 år sedan
consent tracking docs
6 år sedan
consent_tracking: formatting etc
6 år sedan
consent tracking docs
6 år sedan
mention public_baseurl
6 år sedan
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197 
  1. Support in Synapse for tracking agreement to server terms and conditions

  2. ========================================================================

  3. 

  4. Synapse 0.30 introduces support for tracking whether users have agreed to the

  5. terms and conditions set by the administrator of a server - and blocking access

  6. to the server until they have.

  7. 

  8. There are several parts to this functionality; each requires some specific

  9. configuration in `homeserver.yaml` to be enabled.

  10. 

  11. Note that various parts of the configuration and this document refer to the

  12. "privacy policy": agreement with a privacy policy is one particular use of this

  13. feature, but of course administrators can specify other terms and conditions

  14. unrelated to "privacy" per se.

  15. 

  16. Collecting policy agreement from a user

  17. ---------------------------------------

  18. 

  19. Synapse can be configured to serve the user a simple policy form with an

  20. "accept" button. Clicking "Accept" records the user's acceptance in the

  21. database and shows a success page.

  22. 

  23. To enable this, first create templates for the policy and success pages.

  24. These should be stored on the local filesystem.

  25. 

  26. These templates use the [Jinja2](http://jinja.pocoo.org) templating language,

  27. and [docs/privacy_policy_templates](https://github.com/matrix-org/synapse/tree/develop/docs/privacy_policy_templates/)

  28. gives examples of the sort of thing that can be done.

  29. 

  30. Note that the templates must be stored under a name giving the language of the

  31. template - currently this must always be `en` (for "English");

  32. internationalisation support is intended for the future.

  33. 

  34. The template for the policy itself should be versioned and named according to

  35. the version: for example `1.0.html`. The version of the policy which the user

  36. has agreed to is stored in the database.

  37. 

  38. Once the templates are in place, make the following changes to `homeserver.yaml`:

  39. 

  40.  1. Add a `user_consent` section, which should look like:

  41. 

  42.     ```yaml

  43.     user_consent:

  44.       template_dir: privacy_policy_templates

  45.       version: 1.0

  46.     ```

  47. 

  48.     `template_dir` points to the directory containing the policy

  49.     templates. `version` defines the version of the policy which will be served

  50.     to the user. In the example above, Synapse will serve

  51.     `privacy_policy_templates/en/1.0.html`.

  52. 

  53. 

  54.  2. Add a `form_secret` setting at the top level:

  55. 

  56. 

  57.     ```yaml

  58.     form_secret: "<unique secret>"

  59.     ```

  60. 

  61.     This should be set to an arbitrary secret string (try `pwgen -y 30` to

  62.     generate suitable secrets).

  63. 

  64.     More on what this is used for below.

  65. 

  66.  3. Add `consent` wherever the `client` resource is currently enabled in the

  67.     `listeners` configuration. For example:

  68. 

  69.     ```yaml

  70.     listeners:

  71.       - port: 8008

  72.         resources:

  73.           - names:

  74.             - client

  75.             - consent

  76.     ```

  77. 

  78. 

  79. Finally, ensure that `jinja2` is installed. If you are using a virtualenv, this

  80. should be a matter of `pip install Jinja2`. On debian, try `apt-get install

  81. python-jinja2`.

  82. 

  83. Once this is complete, and the server has been restarted, try visiting

  84. `https://<server>/_matrix/consent`. If correctly configured, this should give

  85. an error "Missing string query parameter 'u'". It is now possible to manually

  86. construct URIs where users can give their consent.

  87. 

  88. ### Enabling consent tracking at registration

  89. 

  90. 1. Add the following to your configuration:

  91. 

  92.    ```yaml

  93.    user_consent:

  94.      require_at_registration: true

  95.      policy_name: "Privacy Policy" # or whatever you'd like to call the policy

  96.    ```

  97. 

  98. 2. In your consent templates, make use of the `public_version` variable to

  99.    see if an unauthenticated user is viewing the page. This is typically

  100.    wrapped around the form that would be used to actually agree to the document:

  101. 

  102.    ```html

  103.    {% if not public_version %}

  104.      <!-- The variables used here are only provided when the 'u' param is given to the homeserver -->

  105.      <form method="post" action="consent">

  106.        <input type="hidden" name="v" value="{{version}}"/>

  107.        <input type="hidden" name="u" value="{{user}}"/>

  108.        <input type="hidden" name="h" value="{{userhmac}}"/>

  109.        <input type="submit" value="Sure thing!"/>

  110.      </form>

  111.    {% endif %}

  112.    ```

  113. 

  114. 3. Restart Synapse to apply the changes.

  115. 

  116. Visiting `https://<server>/_matrix/consent` should now give you a view of the privacy

  117. document. This is what users will be able to see when registering for accounts.

  118. 

  119. ### Constructing the consent URI

  120. 

  121. It may be useful to manually construct the "consent URI" for a given user - for

  122. instance, in order to send them an email asking them to consent. To do this,

  123. take the base `https://<server>/_matrix/consent` URL and add the following

  124. query parameters:

  125. 

  126.  * `u`: the user id of the user. This can either be a full MXID

  127.    (`@user:server.com`) or just the localpart (`user`).

  128. 

  129.  * `h`: hex-encoded HMAC-SHA256 of `u` using the `form_secret` as a key. It is

  130.    possible to calculate this on the commandline with something like:

  131. 

  132.    ```bash

  133.    echo -n '<user>' | openssl sha256 -hmac '<form_secret>'

  134.    ```

  135. 

  136.    This should result in a URI which looks something like:

  137.    `https://<server>/_matrix/consent?u=<user>&h=68a152465a4d...`.

  138. 

  139. 

  140. Note that not providing a `u` parameter will be interpreted as wanting to view

  141. the document from an unauthenticated perspective, such as prior to registration.

  142. Therefore, the `h` parameter is not required in this scenario. To enable this

  143. behaviour, set `require_at_registration` to `true` in your `user_consent` config.

  144. 

  145. 

  146. Sending users a server notice asking them to agree to the policy

  147. ----------------------------------------------------------------

  148. 

  149. It is possible to configure Synapse to send a [server

  150. notice](server_notices.md) to anybody who has not yet agreed to the current

  151. version of the policy. To do so:

  152. 

  153.  * ensure that the consent resource is configured, as in the previous section

  154. 

  155.  * ensure that server notices are configured, as in [the server notice documentation](server_notices.md).

  156. 

  157.  * Add `server_notice_content` under `user_consent` in `homeserver.yaml`. For

  158.    example:

  159. 

  160.    ```yaml

  161.    user_consent:

  162.      server_notice_content:

  163.        msgtype: m.text

  164.        body: >-

  165.          Please give your consent to the privacy policy at %(consent_uri)s.

  166.    ```

  167. 

  168.    Synapse automatically replaces the placeholder `%(consent_uri)s` with the

  169.    consent uri for that user.

  170. 

  171.  * ensure that `public_baseurl` is set in `homeserver.yaml`, and gives the base

  172.    URI that clients use to connect to the server. (It is used to construct

  173.    `consent_uri` in the server notice.)

  174. 

  175. 

  176. Blocking users from using the server until they agree to the policy

  177. -------------------------------------------------------------------

  178. 

  179. Synapse can be configured to block any attempts to join rooms or send messages

  180. until the user has given their agreement to the policy. (Joining the server

  181. notices room is exempted from this).

  182. 

  183. To enable this, add `block_events_error` under `user_consent`. For example:

  184. 

  185. ```yaml

  186. user_consent:

  187.   block_events_error: >-

  188.     You can't send any messages until you consent to the privacy policy at

  189.     %(consent_uri)s.

  190. ```

  191. 

  192. Synapse automatically replaces the placeholder `%(consent_uri)s` with the

  193. consent uri for that user.

  194. 

  195. ensure that `public_baseurl` is set in `homeserver.yaml`, and gives the base

  196. URI that clients use to connect to the server. (It is used to construct

  197. `consent_uri` in the error.)