Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

MSC3391: API to delete account data #3391

Open
wants to merge 16 commits into
base: main
Choose a base branch
from
117 changes: 117 additions & 0 deletions proposals/3391-account-data-delete.md
turt2live marked this conversation as resolved.
Show resolved Hide resolved
Original file line number Diff line number Diff line change
@@ -0,0 +1,117 @@
# MSC3391: Deleting account data
ShadowJonathan marked this conversation as resolved.
Show resolved Hide resolved
anoadragon453 marked this conversation as resolved.
Show resolved Hide resolved

## Proposal

### Endpoints
ShadowJonathan marked this conversation as resolved.
Show resolved Hide resolved

Account data and room data currently have the following endpoints;
ShadowJonathan marked this conversation as resolved.
Show resolved Hide resolved

```
GET /_matrix/client/v3/user/{userId}/account_data/{type}

PUT /_matrix/client/v3/user/{userId}/account_data/{type}

GET /_matrix/client/v3/user/{userId}/rooms/{roomId}/account_data/{type}

PUT /_matrix/client/v3/user/{userId}/rooms/{roomId}/account_data/{type}
```

This proposal aims to add the following two endpoints (with no body);

```
DELETE /_matrix/client/v3/user/{userId}/account_data/{type}

DELETE /_matrix/client/v3/user/{userId}/rooms/{roomId}/account_data/{type}
```
ShadowJonathan marked this conversation as resolved.
Show resolved Hide resolved

These, respectively, removes account-wide account data, and room-scoped account data.
ShadowJonathan marked this conversation as resolved.
Show resolved Hide resolved

### Sync

Account Data changes are announced through sync, this proposal also aims to add the following to sync;
ShadowJonathan marked this conversation as resolved.
Show resolved Hide resolved

```json5

{
// ...
"account_data": {
"events": [
{
// ...
}
],
"removed_events": ["m.direct", "m.push_rules"] // <- NEW
},
// ...
"rooms": {
"join": {

"!this-is-a-room:example.com": {
// ...
"account_data": {
"events": [
{
// ...
}
],
"removed_events": ["m.tag", "m.fully_read"] // <- NEW
}
// ...
},

}
},
// ...
}

```

Providing an optional `removed_events` key per every `account_data` object,
containing an array which references the deleted account-data types.

These are the tags that were removed since `since` and `next_batch`, if `since` is specified and valid.

If between `since` and `next_batch` the account data has been deleted and re-created, this field shouldn't exist,
and data should be just put in `account_data.events` as if it's a normal change/creation.

If, for some reason, an event type exists in both `account_data.events` and `account_data.removed_events`, the reference in
`.removed_events` must be ignored.

Full-state syncs must not include `.removed_events`, but consequently clients must see anything
in `events` as replacing what existed previously.
ShadowJonathan marked this conversation as resolved.
Show resolved Hide resolved

#### Backwards Compatibility Note

Server implementations **may** include an empty (`{}`) `events` entry for deleted account data,
together with an entry in `removed_events`.

This is for backwards compatibility, as clients may or may not understand the `removed_events` key.

*The author thinks that this should only be necessary for a single matrix version,
as clients adapt, but the SCT can - of course - have differing opinions.*
ShadowJonathan marked this conversation as resolved.
Show resolved Hide resolved

## Potential issues

Desync is possible, and so if there's a situation where the client has a different view on account
data than the server, it should query the account data wherever possible.
ShadowJonathan marked this conversation as resolved.
Show resolved Hide resolved

anoadragon453 marked this conversation as resolved.
Show resolved Hide resolved
## Security considerations

No considerable security problems, other than the fact that a user can potentially delete important data.

Though, for the purposes of this proposal, that is seen as a proper feature of CRUD :)

## Unstable prefix

When implementing this proposal, servers should use the `org.matrix.msc3391` unstable prefix;
ShadowJonathan marked this conversation as resolved.
Show resolved Hide resolved

```
DELETE /_matrix/client/unstable/org.matrix.msc3391/user/{userId}/account_data/{type}

DELETE /_matrix/client/unstable/org.matrix.msc3391/user/{userId}/rooms/{roomId}/account_data/{type}
```

And `org.matrix.msc3391.removed_events` for `account_data` sync.

**Note:** As this operation would be largely "unknown" to clients,
cache invalidation problems could occur as clients could aggressively cache account data.
ShadowJonathan marked this conversation as resolved.
Show resolved Hide resolved