Merge pull request #856 from matrix-org/erikj/fed_pub_rooms

Enable auth on /publicRoom endpoints
2024-10-01 11:49:51 -04:00 · 2016-06-08 14:36:09 +01:00 · 2016-06-08 14:36:09 +01:00 · 958c968d02
commit 958c968d02
parent 746b2f5657 efeabd3180
2 changed files with 7 additions and 5 deletions
--- a/synapse/federation/transport/server.py
+++ b/synapse/federation/transport/server.py
@ -532,11 +532,6 @@ class PublicRoomList(BaseFederationServlet):
        data = yield self.room_list_handler.get_local_public_room_list()
        defer.returnValue((200, data))

-    # Avoid doing remote HS authorization checks which are done by default by
-    # BaseFederationServlet.
-    def _wrap(self, code):
-        return code
-

 SERVLET_CLASSES = (
    FederationSendServlet,
--- a/synapse/rest/client/v1/room.py
+++ b/synapse/rest/client/v1/room.py
@ -279,6 +279,13 @@ class PublicRoomListRestServlet(ClientV1RestServlet):

    @defer.inlineCallbacks
    def on_GET(self, request):
+        try:
+            yield self.auth.get_user_by_req(request)
+        except AuthError:
+            # This endpoint isn't authed, but its useful to know who's hitting
+            # it if they *do* supply an access token
+            pass
+
        handler = self.hs.get_room_list_handler()
        data = yield handler.get_aggregated_public_room_list()