matrix-org · richvdh · Jul 12, 2022 · Jul 11, 2022 · Jul 11, 2022 · Jul 11, 2022
diff --git a/changelog.d/13239.misc b/changelog.d/13239.misc
@@ -0,0 +1 @@
+Drop v1 3pid bind support.
-Drop v1 3pid bind support.
+Drop support for calling `/_matrix/client/v3/account/3pid/bind` without an `id_access_token`.
-Drop v1 3pid bind support.
+Drop support for calling `/_matrix/client/v3/account/3pid/bind` without an `id_access_token`.
@@ -164,7 +164,6 @@ async def bind_threepid(
         mxid: str,
         id_server: str,
         id_access_token: Optional[str] = None,
-        use_v2: bool = True,
     ) -> JsonDict:
         """Bind a 3PID to an identity server
 
@@ -175,10 +174,10 @@ async def bind_threepid(
             id_server: The domain of the identity server to query
             id_access_token: The access token to authenticate to the identity
                 server with, if necessary. Required if use_v2 is true
-            use_v2: Whether to use v2 Identity Service API endpoints. Defaults to True
 
         Raises:
             SynapseError: On any of the following conditions
+                - no id_access_token was supplied
                 - the supplied id_server is not a valid identity server name
                 - we failed to contact the supplied identity server
 
@@ -187,9 +186,10 @@ async def bind_threepid(
         """
         logger.debug("Proxying threepid bind request for %s to %s", mxid, id_server)
 
-        # If an id_access_token is not supplied, force usage of v1
         if id_access_token is None:
-            use_v2 = False
+            raise SynapseError(
+                400, "id_access_token is required", errcode=Codes.MISSING_PARAM
+            )
 id_access_token = body.get("id_access_token")  # optional 
 id_access_token = body.get("id_access_token")  # optional 
 
         if not valid_id_server_location(id_server):
             raise SynapseError(
@@ -198,13 +198,9 @@ async def bind_threepid(
             )
 
         # Decide which API endpoint URLs to use
-        headers = {}
         bind_data = {"sid": sid, "client_secret": client_secret, "mxid": mxid}
-        if use_v2:
-            bind_url = "https://%s/_matrix/identity/v2/3pid/bind" % (id_server,)
-            headers["Authorization"] = create_id_access_token_header(id_access_token)  # type: ignore
-        else:
-            bind_url = "https://%s/_matrix/identity/api/v1/3pid/bind" % (id_server,)
+        bind_url = "https://%s/_matrix/identity/v2/3pid/bind" % (id_server,)
+        headers = {"Authorization": create_id_access_token_header(id_access_token)}
 
         try:
             # Use the blacklisting http client as this call is only to identity servers
@@ -223,20 +219,15 @@ async def bind_threepid(
 
             return data
         except HttpResponseException as e:
-            if e.code != 404 or not use_v2:
+            if e.code != 404:
                 logger.error("3PID bind failed with Matrix error: %r", e)
                 raise e.to_synapse_error()
         except RequestTimedOutError:
             raise SynapseError(500, "Timed out contacting identity server")
         except CodeMessageException as e:
             data = json_decoder.decode(e.msg)  # XXX WAT?
             return data
-
-        logger.info("Got 404 when POSTing JSON %s, falling back to v1 URL", bind_url)
-        res = await self.bind_threepid(
-            client_secret, sid, mxid, id_server, id_access_token, use_v2=False
-        )
-        return res
+        return {}
 
     async def try_unbind_threepid(self, mxid: str, threepid: dict) -> bool:
         """Attempt to remove a 3PID from an identity server, or if one is not provided, all