Redact passwords from admin commands
Fixes #432
- Add the
event_id
of the user message toAdminRoomEvent::ProcessMessage
variant to work with it inprocess_admin_message
- Delete the user
create-user
command message if it's contain a plain password because the admin room are unencrypted so the password will be saved in the database if we didn't deleted it - Create new function that delete the messages from admin room
called
delete_user_message
- Make
process_admin_message
function returnOption<RoomMessageEventContent>
instade ofRoomMessageEventContent
- Delete the created user message after 60s
- Delete the reset user password message after 60s
-
I agree to release my code and all other changes of this MR under the Apache-2.0 license