initial draft of .well-known discovery

2018-07-03 14:14:26 -04:00 · 2018-07-03 14:14:26 -04:00 · 0dd330962d
commit 0dd330962d
parent c1b630e975
5 changed files with 204 additions and 0 deletions
--- a/api/client-server/definitions/wellknown/homeserver.yaml
+++ b/api/client-server/definitions/wellknown/homeserver.yaml
@ -0,0 +1,23 @@
 # Copyright 2018 New Vector Ltd
 #
 # Licensed under the Apache License, Version 2.0 (the "License");
 # you may not use this file except in compliance with the License.
 # You may obtain a copy of the License at
 #
 #     http://www.apache.org/licenses/LICENSE-2.0
 #
 # Unless required by applicable law or agreed to in writing, software
 # distributed under the License is distributed on an "AS IS" BASIS,
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
 title: Homeserver Information
 description: |-
  Used by clients to discover homeserver information.
 type: object
 properties:
    base_url:
        type: string
        description: The base URL for the homeserver for client-server connections.
 required:
  - base_url
--- a/api/client-server/definitions/wellknown/homeserver.yaml~
+++ b/api/client-server/definitions/wellknown/homeserver.yaml~
@ -0,0 +1,23 @@
 # Copyright 2018 New Vector Ltd
 #
 # Licensed under the Apache License, Version 2.0 (the "License");
 # you may not use this file except in compliance with the License.
 # You may obtain a copy of the License at
 #
 #     http://www.apache.org/licenses/LICENSE-2.0
 #
 # Unless required by applicable law or agreed to in writing, software
 # distributed under the License is distributed on an "AS IS" BASIS,
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
 title: Authentication Data
 description: |-
  Used by clients to submit authentication information to the interactive-authentication API
 type: object
 properties:
    base_url:
        type: string
        description: The base URL for the homeserver for client-server connections.
 required:
  - base_url
--- a/api/client-server/definitions/wellknown/identity_server.yaml
+++ b/api/client-server/definitions/wellknown/identity_server.yaml
@ -0,0 +1,23 @@
 # Copyright 2018 New Vector Ltd
 #
 # Licensed under the Apache License, Version 2.0 (the "License");
 # you may not use this file except in compliance with the License.
 # You may obtain a copy of the License at
 #
 #     http://www.apache.org/licenses/LICENSE-2.0
 #
 # Unless required by applicable law or agreed to in writing, software
 # distributed under the License is distributed on an "AS IS" BASIS,
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
 title: Identity Server Information
 description: |-
  Used by clients to discover identity server information.
 type: object
 properties:
    base_url:
        type: string
        description: The base URL for the identity server for client-server connections.
 required:
  - base_url
--- a/api/client-server/wellknown.yaml
+++ b/api/client-server/wellknown.yaml
@ -0,0 +1,63 @@
 # Copyright 2018 New Vector Ltd
 #
 # Licensed under the Apache License, Version 2.0 (the "License");
 # you may not use this file except in compliance with the License.
 # You may obtain a copy of the License at
 #
 #     http://www.apache.org/licenses/LICENSE-2.0
 #
 # Unless required by applicable law or agreed to in writing, software
 # distributed under the License is distributed on an "AS IS" BASIS,
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
 swagger: '2.0'
 info:
  title: "Matrix Client-Server server discovery API"
  version: "1.0.0"
 host: localhost:8008
 schemes:
  - https
 basePath: /.well-known
 produces:
  - application/json
 paths:
  "/matrix/client":
    get:
      summary: Gets Matrix server discovery information about the domain.
      description: |-
        Gets discovery information about the domain.  The file may include
        additional keys, which SHOULD follow the Java package naming convention,
        e.g. ``com.example.myapp.property``. This ensures property names are
        suitably namespaced for each application and reduces the risk of
        clashes.
        **FIXME:** do we need to add a note that this endpoint is not
        necessarily handled by the homeserver, but by another webserver?  Or
        does the context make this clear enough?
      operationId: getWellknown
      responses:
        200:
          description: Server discovery information
          examples:
            application/json: {
                "m.homeserver": {
                  "base_url": "https://matrix.example.com"
                },
                "m.identity_server": {
                  "base_url": "https://identity.example.com"
                }
              }
          schema:
            type: object
            properties:
              m.homeserver:
                description: Information about the homeserver to connect to.
                "$ref": "definitions/wellknown/homeserver.yaml"
              m.identity_server:
                description: Information about the identity server to connect to.
                "$ref": "definitions/wellknown/identity_server.yaml"
        404:
          description: No server discovery information available
      tags:
        - Server administration
--- a/specification/client_server_api.rst
+++ b/specification/client_server_api.rst
@ -164,6 +164,78 @@ recommended.
 {{versions_cs_http_api}}
 Server Discovery
 ~~~~~~~~~~~~~~~~
 In order to allow users to connect to a Matrix server without needing to
 explicitly specify the homeserver's URL or other parameters, clients may use an
 auto-discovery mechanism to determine the server's URL based on a user's
 Matrix ID. Auto-discovery should only be done at login time, with the
 discovered values retained for the duration of the user's session.
 In this section, the following terms are used with specific meanings:
 ``PROMPT``
  Retrieve the specific piece of information from the user in a way which
  fits within the existing client UX, if the client is inclined to do so.
  Failure can take place instead if no good UX is possible at this point.
 ``IGNORE``
  Stop the current auto-discovery mechanism. If no more auto-discovery
  mechanisms are available, then the client may use other methods of
  determining the required parameters, such as prompting the user, or using
  default values.
 ``FAIL_PROMPT``
  Inform the user that auto-discovery failed due to invalid/empty data and
  ``PROMPT`` for the parameter.
 ``FAIL_ERROR``
  Inform the user that auto-discovery did not return any usable URLs. Do not
  continue further with the current login process. At this point, valid data
  was obtained, but no homeserver is available to serve the client. No further
  guess should be attempted and the user should make a conscientious decision
  what to do next.
 Well-known URI
 ++++++++++++++
 The ``.well-known`` method uses a JSON file at a predetermined location to
 specify parameter values.  The flow for this method is as follows:
 1. Extract the server name from the user's Matrix ID by splitting the Matrix ID
   at the first colon.
 2. Extract the DNS name from the server name.
 3. Make a GET request to ``https://dns_name/.well-known/matrix/client``.
   a. If the returned status code is 404, then ``IGNORE``.
   b. If the returned status code is not 200, or the response body is empty,
      then ``FAIL_PROMPT``.
   c. Parse the response body as a JSON object
      i. If the content cannot be parsed, then ``FAIL_PROMPT``.
   d. Extract the ``base_url`` value from the ``m.homeserver`` property.  This
      value is to be used as the base URL of the homeserver.
      i. If this value is not provided, then ``FAIL_PROMPT``.
   e. Validate the homeserver base URL:
      i. Parse it as a URL.  If it is not a URL, then ``FAIL_ERROR``.
      ii. Clients should validate that the URL points to a valid homeserver
          before accepting it.  Currently, the suggested way of validating is
          to connect to the ``/_matrix/client/versions`` endpoint, and to parse
          and validate the data.  If any step in the validation fails, then
          ``FAIL_ERROR``.
   f. If the ``m.identity_server`` property is present, extract the
      ``base_url`` value for use as the base URL of the identity server.  This
      value can be validated as in the step above, but using
      ``/_matrix/identity/api/v1``.
 {{wellknown_cs_http_api}}
 Client Authentication
 ---------------------