Bump matrix-synapse from 1.10.1 to 1.28.0 in /requirements

[dependabot]

Bumps matrix-synapse from 1.10.1 to 1.28.0.

Release notes

Sourced from matrix-synapse's releases.

v1.28.0

Synapse 1.28.0 (2021-02-25)

Note that this release drops support for ARMv7 in the official Docker images, due to repeated problems building for ARMv7 (and the associated maintenance burden this entails).

This release also fixes the documentation included in v1.27.0 around the callback URI for SAML2 identity providers. If your server is configured to use single sign-on via a SAML2 IdP, you may need to make configuration changes. Please review https://github.com/matrix-org/synapse/blob/HEAD/UPGRADE.rst for more details on these changes.

Internal Changes

• Revert change in v1.28.0rc1 to remove the deprecated SAML endpoint. (#9474)

Synapse 1.28.0rc1 (2021-02-19)

Removal warning

The v1 list accounts API is deprecated and will be removed in a future release. This API was undocumented and misleading. It can be replaced by the v2 list accounts API, which has been available since Synapse 1.7.0 (2019-12-13).

Please check if you're using any scripts which use the admin API and replace GET /_synapse/admin/v1/users/<user_id> with GET /_synapse/admin/v2/users.

Features

• New admin API to get the context of an event: /_synapse/admin/rooms/{roomId}/context/{eventId}. (#9150)
• Further improvements to the user experience of registration via single sign-on. (#9300, #9301)
• Add hook to spam checker modules that allow checking file uploads and remote downloads. (#9311)
• Add support for receiving OpenID Connect authentication responses via form POSTs rather than GETs. (#9376)
• Add the shadow-banning status to the admin API for user info. (#9400)

Bugfixes

• Fix long-standing bug where sending email notifications would fail for rooms that the server had since left. (#9257)
• Fix bug introduced in Synapse 1.27.0rc1 which meant the "session expired" error page during SSO registration was badly formatted. (#9296)
• Assert a maximum length for some parameters for spec compliance. (#9321, #9393)
• Fix additional errors when previewing URLs: "AttributeError 'NoneType' object has no attribute 'xpath'" and "ValueError: Unicode strings with encoding declaration are not supported. Please use bytes input or XML fragments without declaration.". (#9333)
• Fix a bug causing Synapse to impose the wrong type constraints on fields when processing responses from appservices to /_matrix/app/v1/thirdparty/user/{protocol}. (#9361)
• Fix bug where Synapse would occasionally stop reconnecting to Redis after the connection was lost. (#9391)
• Fix a long-standing bug when upgrading a room: "TypeError: '>' not supported between instances of 'NoneType' and 'int'". (#9395)
• Reduce the amount of memory used when generating the URL preview of a file that is larger than the max_spider_size. (#9421)
• Fix a long-standing bug in the deduplication of old presence, resulting in no deduplication. (#9425)
• The ui_auth.session_timeout config option can now be specified in terms of number of seconds/minutes/etc/. Contributed by Rishabh Arya. (#9426)
• Fix a bug introduced in v1.27.0: "TypeError: int() argument must be a string, a bytes-like object or a number, not 'NoneType." related to the user directory. (#9428)

Updates to the Docker image

... (truncated)

Changelog

Sourced from matrix-synapse's changelog.

Synapse 1.28.0 (2021-02-25)

Note that this release drops support for ARMv7 in the official Docker images, due to repeated problems building for ARMv7 (and the associated maintenance burden this entails).

This release also fixes the documentation included in v1.27.0 around the callback URI for SAML2 identity providers. If your server is configured to use single sign-on via a SAML2 IdP, you may need to make configuration changes. Please review https://github.com/matrix-org/synapse/blob/develop/UPGRADE.rst for more details on these changes.

Internal Changes

• Revert change in v1.28.0rc1 to remove the deprecated SAML endpoint. (#9474)

Synapse 1.28.0rc1 (2021-02-19)

Removal warning

The v1 list accounts API is deprecated and will be removed in a future release. This API was undocumented and misleading. It can be replaced by the v2 list accounts API, which has been available since Synapse 1.7.0 (2019-12-13).

Please check if you're using any scripts which use the admin API and replace GET /_synapse/admin/v1/users/<user_id> with GET /_synapse/admin/v2/users.

Features

• New admin API to get the context of an event: /_synapse/admin/rooms/{roomId}/context/{eventId}. (#9150)
• Further improvements to the user experience of registration via single sign-on. (#9300, #9301)
• Add hook to spam checker modules that allow checking file uploads and remote downloads. (#9311)
• Add support for receiving OpenID Connect authentication responses via form POSTs rather than GETs. (#9376)
• Add the shadow-banning status to the admin API for user info. (#9400)

Bugfixes

• Fix long-standing bug where sending email notifications would fail for rooms that the server had since left. (#9257)
• Fix bug introduced in Synapse 1.27.0rc1 which meant the "session expired" error page during SSO registration was badly formatted. (#9296)
• Assert a maximum length for some parameters for spec compliance. (#9321, #9393)
• Fix additional errors when previewing URLs: "AttributeError 'NoneType' object has no attribute 'xpath'" and "ValueError: Unicode strings with encoding declaration are not supported. Please use bytes input or XML fragments without declaration.". (#9333)
• Fix a bug causing Synapse to impose the wrong type constraints on fields when processing responses from appservices to /_matrix/app/v1/thirdparty/user/{protocol}. (#9361)
• Fix bug where Synapse would occasionally stop reconnecting to Redis after the connection was lost. (#9391)
• Fix a long-standing bug when upgrading a room: "TypeError: '>' not supported between instances of 'NoneType' and 'int'". (#9395)
• Reduce the amount of memory used when generating the URL preview of a file that is larger than the max_spider_size. (#9421)

... (truncated)

Commits

• 2756517 Fixup changelog
• 0f9f30b Fixup changelog
• b5c4fe1 1.28.0
• 7292b7c Add back the deprecated SAML endpoint. (#9474)
• d0365bc Update release date.
• 1c5e715 Update the CHANGES document.
• 1381cd0 1.28.0rc1
• 84a7191 Merge branch 'master' into develop
• d804285 Clarify the release notes around SAML2 for v1.27.0.
• 9ee3b97 Remove deprecated SAML2 callback URL since it does not work. (#9434)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #25.