Port the ThirdPartyEventRules module interface to the new generic interface (#10386)

Port the third-party event rules interface to the generic module interface introduced in v1.37.0
2025-12-15 10:57:47 -05:00 · 2021-07-20 12:39:46 +02:00 · 2021-07-20 12:39:46 +02:00 · a743bf4694
commit a743bf4694
parent f3ac9c6750
12 changed files with 402 additions and 107 deletions
--- a/synapse/handlers/federation.py
+++ b/synapse/handlers/federation.py
@ -1934,7 +1934,7 @@ class FederationHandler(BaseHandler):
            builder=builder
        )

-        event_allowed = await self.third_party_event_rules.check_event_allowed(
+        event_allowed, _ = await self.third_party_event_rules.check_event_allowed(
            event, context
        )
        if not event_allowed:
@ -2026,7 +2026,7 @@ class FederationHandler(BaseHandler):
        # for knock events, we run the third-party event rules. It's not entirely clear
        # why we don't do this for other sorts of membership events.
        if event.membership == Membership.KNOCK:
-            event_allowed = await self.third_party_event_rules.check_event_allowed(
+            event_allowed, _ = await self.third_party_event_rules.check_event_allowed(
                event, context
            )
            if not event_allowed:
--- a/synapse/handlers/message.py
+++ b/synapse/handlers/message.py
@ -949,10 +949,10 @@ class EventCreationHandler:
        if requester:
            context.app_service = requester.app_service

-        third_party_result = await self.third_party_event_rules.check_event_allowed(
+        res, new_content = await self.third_party_event_rules.check_event_allowed(
            event, context
        )
-        if not third_party_result:
+        if res is False:
            logger.info(
                "Event %s forbidden by third-party rules",
                event,
@ -960,11 +960,11 @@ class EventCreationHandler:
            raise SynapseError(
                403, "This event is not allowed in this context", Codes.FORBIDDEN
            )
-        elif isinstance(third_party_result, dict):
+        elif new_content is not None:
            # the third-party rules want to replace the event. We'll need to build a new
            # event.
            event, context = await self._rebuild_event_after_third_party_rules(
-                third_party_result, event
+                new_content, event
            )

        self.validator.validate_new(event, self.config)
--- a/synapse/handlers/room.py
+++ b/synapse/handlers/room.py
@ -618,15 +618,11 @@ class RoomCreationHandler(BaseHandler):
        else:
            is_requester_admin = await self.auth.is_server_admin(requester.user)

-        # Check whether the third party rules allows/changes the room create
-        # request.
-        event_allowed = await self.third_party_event_rules.on_create_room(
+        # Let the third party rules modify the room creation config if needed, or abort
+        # the room creation entirely with an exception.
+        await self.third_party_event_rules.on_create_room(
            requester, config, is_requester_admin=is_requester_admin
        )
-        if not event_allowed:
-            raise SynapseError(
-                403, "You are not permitted to create rooms", Codes.FORBIDDEN
-            )

        if not is_requester_admin and not await self.spam_checker.user_may_create_room(
            user_id