| 28 Apr 2019 |
 @iodine:halogen.city | So next release. | 08:59:12 |
 Maximus | Yep | 08:59:19 |
| Maximus | I didn't try to run mxisd on Java 11, so I don't even know if it breaks or not | 08:59:38 |
| @iodine:halogen.city | I can confirm it throws a few messages and nags in the logs. | 09:00:17 |
| @iodine:halogen.city | I didn't really take much time to look at those before installing Java 8. | 09:00:46 |
| @iodine:halogen.city | I don't want to imply I think it's all that critical (Amazon Corretto is supporting Java 8 well into 2023, if it becomes the case an update takes a while) but it couldn't hurt to throw up a dev/buster branch and start testing against, well, testing. | 09:02:34 |
| Maximus | We're happy to receive reports/issues about such errors, if anyone ever meets them | 09:03:35 |
| Maximus | There won't be time for it right now tho, we're focusing on The Grid fork, so all that is happening in mxisd is more a need/urgent/bug basis | 09:04:08 |
| Maximus | I wanted v1.4.x out ASAP to not have that to worry about for the time being | 09:04:47 |
| @iodine:halogen.city | I see. Best of luck with that and thanks for the most recent update. | 09:05:25 |
| Maximus | Thanks! | 09:05:37 |
 Malte | Hiho, may someone link me a synapse + mxisd + ldap configuration ? | 09:13:28 |
| Maximus | Malte: this is an example of mxisd config that also deals with authentication (dns overwrite):
matrix:
domain: 'kamax.io'
key:
path: '/var/lib/mxisd/sign.key'
storage:
provider:
sqlite:
database: '/var/lib/mxisd/mxisd.db'
ldap:
enabled: true
filter: '(memberOf=CN=A Certain Group,OU=Some OU,DC=kamax,DC=io)'
connection:
host: 'ldap'
bindDn: 'CN=Some CN,OU=Some OU,DC=kamax,DC=io'
bindPassword: 'smthsmth'
baseDNs:
- 'OU=Some OU,DC=kamax,DC=io'
dns:
overwrite:
homeserver:
client:
- name: 'kamax.io'
value: 'http://localhost:8008'
- name: 'matrix.kamax.io'
value: 'http://localhost:8008'
| 09:18:47 |
| Maximus | Redacted or Malformed Event | 09:21:05 |
| Maximus | and this is what we have in our synapse config:
server_name: "kamax.io"
# a bunch of stuff
trusted_third_party_id_servers:
- "kamax.io"
- "matrix.kamax.io"
password_providers:
- module: "rest_auth_provider.RestAuthProvider"
config:
endpoint: "http://localhost:8090"
| 09:21:23 |
| Malte | Thank you :) | 09:34:30 |
 perflyst | will mxisd work with grid? or wont be it needd | 10:09:40 |
| Maximus | Grid will have a totally different Identity mechanism, which is yet to be formalized. My proposal will use something like mxisd | 10:41:18 |
| Maximus | perflyst: ^ | 10:41:24 |
| Maximus | In Matrix, Identity is still under the authority of the data server (aka Homeserver), while in Grid I would like to be shifted to something assuming the role of Identity server, in the true sense of the term. If you want more details, happy to discuss further in #thegrid:libremonde.org | 10:42:26 |
| Maximus | I think mxisd will remain mxisd as Matrix is very specific about all of these things, and mxisd also offers "creative" solutions for the protocol shortcomings. I don't even want to end up in the same position in Grid, which would justify a clean code base | 10:46:21 |
 @sharparam:matrix.sharparam.com | In reply to @max:kamax.io
Sharparam: can you try the new latest please? Success! Thank you for the help :) | 11:20:54 |
| Maximus | \o/ | 11:21:13 |
 Matt (eggy) | Another release? | 12:37:54 |
| Maximus | More bug fixing | 12:38:12 |
 @park:mgp.ax.lt | In reply to @max:kamax.io
ππͺππ²πΆπ²π΅π²π²π΅π²πͺπ·: All the answers are here: https://github.com/kamax-matrix/mxisd/wiki/mxisd-and-your-privacy theres the passage with returning 404 to /_matrix/identity/api/v1/unbind
however this does not seem to help deactivating an account (neither help removeing a 3pid/email for that matter).
2019-04-28 14:57:16,094 - synapse.handlers.deactivate_account - 82 - ERROR - POST-58794- Failed to remove threepid from ID server
Traceback (most recent call last):
File "/home/server/.synapse/env3/lib/python3.6/site-packages/synapse/handlers/deactivate_account.py", line 76, in deactivate_account
'address': threepid['address'],
twisted.web._newclient.RequestTransmissionFailed: [<twisted.python.failure.Failure service_identity.exceptions.VerificationError: VerificationError(errors=[DNSMismatch(mismatched_id=DNS_ID(hostname=b'localhost'))])>]
| 13:03:11 |
| @park:mgp.ax.lt | this is what synapse says, is this indeed the right error case for the 3pid removal fail by mxid blocking the removal? | 13:04:07 |
| @park:mgp.ax.lt | i see this "dnsmismatch", and i dont really know how to help it.
i can imagine it expects some kind of domain as in @user:domain.tld not localhost...
| 13:05:25 |
| Maximus | no, that's your setup being misconfigured and using the wrong hostname somewhere | 13:05:42 |
| @park:mgp.ax.lt | alright, thanks | 13:06:02 |
