Tweak AS registration check and AS component HTTP clients (#1785)

* Tweak AS registration check * Check appservice usernames using correct function * Update sytest-whitelist * Use gomatrixserverlib.Client since that allows us to disable TLS validation using the config * Add appservice-specific client and ability to control TLS validation for appservices only * Set timeout on appservice client * Review comments * Remove dead code * Enforce LoginTypeApplicationService after all * Check correct auth type field
author: Neil Alexander <neilalexander@users.noreply.github.com> 2021-03-05 10:40:27 +0000
committer: GitHub <noreply@github.com> 2021-03-05 10:40:27 +0000
commit: 1ad96e2e2df9dc1f5fa7d31522babd6a64ca517f (patch)
tree: 166e2051273fc89f50d6efac1c40a12cd7c077a7 /dendrite-config.yaml
parent: 9557ccada4efe50d0f370019ad0b9f017fc7ebcf (diff)
1 files changed, 5 insertions, 0 deletions
diff --git a/dendrite-config.yaml b/dendrite-config.yaml
index a3d1065d..bf604c9d 100644
--- a/dendrite-config.yaml
+++ b/dendrite-config.yaml
@@ -125,6 +125,11 @@ app_service_api:
     max_idle_conns: 2
     conn_max_lifetime: -1
 
+  # Disable the validation of TLS certificates of appservices. This is
+  # not recommended in production since it may allow appservice traffic
+  # to be sent to an unverified endpoint.
+  disable_tls_validation: false
+
   # Appservice configuration files to load into this homeserver.
   config_files: []
author	Neil Alexander <neilalexander@users.noreply.github.com>	2021-03-05 10:40:27 +0000
committer	GitHub <noreply@github.com>	2021-03-05 10:40:27 +0000
commit	1ad96e2e2df9dc1f5fa7d31522babd6a64ca517f (patch)
tree	166e2051273fc89f50d6efac1c40a12cd7c077a7 /dendrite-config.yaml
parent	9557ccada4efe50d0f370019ad0b9f017fc7ebcf (diff)