Publishing/removing from the directory requires a power level greater than canonical aliases.

2024-10-01 01:36:05 -04:00 · 2020-02-21 07:18:33 -05:00 · 2020-02-21 07:18:33 -05:00 · 7936d2a96e
commit 7936d2a96e
parent 509e381afa
2 changed files with 6 additions and 5 deletions
--- a/changelog.d/6965.feature
+++ b/changelog.d/6965.feature
@ -0,0 +1 @@
+Publishing/removing a room from the room directory now requires the user to have a power level capable of modifying the canonical alias, instead of the room aliases.
--- a/synapse/api/auth.py
+++ b/synapse/api/auth.py
@ -538,13 +538,13 @@ class Auth(object):
        return defer.succeed(auth_ids)

    @defer.inlineCallbacks
-    def check_can_change_room_list(self, room_id, user):
+    def check_can_change_room_list(self, room_id: str, user: UserID):
        """Check if the user is allowed to edit the room's entry in the
        published room list.

        Args:
-            room_id (str)
-            user (UserID)
+            room_id
+            user
        """

        is_admin = yield self.is_server_admin(user)
@ -556,7 +556,7 @@ class Auth(object):

        # We currently require the user is a "moderator" in the room. We do this
        # by checking if they would (theoretically) be able to change the
-        # m.room.aliases events
+        # m.room.canonical_alias events
        power_level_event = yield self.state.get_current_state(
            room_id, EventTypes.PowerLevels, ""
        )
@ -566,7 +566,7 @@ class Auth(object):
            auth_events[(EventTypes.PowerLevels, "")] = power_level_event

        send_level = event_auth.get_send_level(
-            EventTypes.Aliases, "", power_level_event
+            EventTypes.CanonicalAlias, "", power_level_event
        )
        user_level = event_auth.get_user_power_level(user_id, auth_events)
				`@ -0,0 +1 @@`
				`Publishing/removing a room from the room directory now requires the user to have a power level capable of modifying the canonical alias, instead of the room aliases.`