Skip to content

MSC3391: API to delete account data #3391

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
ShadowJonathan wants to merge 16 commits into from
Closed

MSC3391: API to delete account data #3391

Changes from 8 commits
Commits
Show all changes
16 commits
Select commit Hold shift + click to select a range
150b07b
initial
ShadowJonathan Sep 9, 2021
faacd53
rename
ShadowJonathan Sep 9, 2021
1864715
more clarifications
ShadowJonathan Sep 9, 2021
9c1ac3f
change approach to account_data.removed_events
ShadowJonathan Sep 9, 2021
861933a
fix indentation and unstable use
ShadowJonathan Sep 9, 2021
cd78ac6
Merge `main` into `account-data-delete`
ShadowJonathan Apr 15, 2022
60b1bd3
the future is now, old man
ShadowJonathan Apr 15, 2022
88f7f7c
add backwards compat note
ShadowJonathan Apr 15, 2022
da1328a
address review feedback
ShadowJonathan May 22, 2022
333264f
Address feedback
ShadowJonathan Oct 20, 2022
ae1785a
Add idempotency note
ShadowJonathan Oct 20, 2022
75b1ade
Update proposals/3391-account-data-delete.md
ShadowJonathan Nov 25, 2022
edc0d54
address misc review comments
ShadowJonathan May 10, 2023
7516cf6
More authoritative messaging
ShadowJonathan Jun 15, 2023
e2fce0a
comma -> semicolon
ShadowJonathan Jun 15, 2023
0653f34
address review feedback
ShadowJonathan Jul 13, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
117 changes: 117 additions & 0 deletions proposals/3391-account-data-delete.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,117 @@
# MSC3391: Deleting account data

## Proposal

### Endpoints

Account data and room data currently have the following endpoints;

```
GET /_matrix/client/v3/user/{userId}/account_data/{type}

PUT /_matrix/client/v3/user/{userId}/account_data/{type}

GET /_matrix/client/v3/user/{userId}/rooms/{roomId}/account_data/{type}

PUT /_matrix/client/v3/user/{userId}/rooms/{roomId}/account_data/{type}
```

This proposal aims to add the following two endpoints (with no body);

```
DELETE /_matrix/client/v3/user/{userId}/account_data/{type}

DELETE /_matrix/client/v3/user/{userId}/rooms/{roomId}/account_data/{type}
```

These, respectively, removes account-wide account data, and room-scoped account data.

### Sync

Account Data changes are announced through sync, this proposal also aims to add the following to sync;

```json5

{
// ...
"account_data": {
"events": [
{
// ...
}
],
"removed_events": ["m.direct", "m.push_rules"] // <- NEW
},
// ...
"rooms": {
"join": {

"!this-is-a-room:example.com": {
// ...
"account_data": {
"events": [
{
// ...
}
],
"removed_events": ["m.tag", "m.fully_read"] // <- NEW
}
// ...
},

}
},
// ...
}

```

Providing an optional `removed_events` key per every `account_data` object,
containing an array which references the deleted account-data types.

These are the tags that were removed since `since` and `next_batch`, if `since` is specified and valid.

If between `since` and `next_batch` the account data has been deleted and re-created, this field shouldn't exist,
and data should be just put in `account_data.events` as if it's a normal change/creation.

If, for some reason, an event type exists in both `account_data.events` and `account_data.removed_events`, the reference in
`.removed_events` must be ignored.

Full-state syncs must not include `.removed_events`, but consequently clients must see anything
in `events` as replacing what existed previously.

#### Backwards Compatibility Note

Server implementations **may** include an empty (`{}`) `events` entry for deleted account data,
together with an entry in `removed_events`.

This is for backwards compatibility, as clients may or may not understand the `removed_events` key.

*The author thinks that this should only be necessary for a single matrix version,
as clients adapt, but the SCT can - of course - have differing opinions.*

## Potential issues

Desync is possible, and so if there's a situation where the client has a different view on account
data than the server, it should query the account data wherever possible.

## Security considerations

No considerable security problems, other than the fact that a user can potentially delete important data.

Though, for the purposes of this proposal, that is seen as a proper feature of CRUD :)

## Unstable prefix

When implementing this proposal, servers should use the `org.matrix.msc3391` unstable prefix;

```
DELETE /_matrix/client/unstable/org.matrix.msc3391/user/{userId}/account_data/{type}

DELETE /_matrix/client/unstable/org.matrix.msc3391/user/{userId}/rooms/{roomId}/account_data/{type}
```

And `org.matrix.msc3391.removed_events` for `account_data` sync.

**Note:** As this operation would be largely "unknown" to clients,
cache invalidation problems could occur as clients could aggressively cache account data.