mirror of
https://mau.dev/maunium/synapse.git
synced 2024-10-01 01:36:05 -04:00
5c24d7b9eb
* Check required power levels earlier in createRoom handler. - If a server was configured to reject the creation of rooms with E2EE enabled (by specifying an unattainably high power level for "m.room.encryption" in default_power_level_content_override), the 403 error was not being triggered until after the room was created and before the "m.room.power_levels" was sent. This allowed a user to access the partially-configured room and complete the setup of E2EE and power levels manually. - This change causes the power level overrides to be checked earlier and the request to be rejected before the user gains access to the room. - A new `_validate_room_config` method is added to contain checks that should be run before a room is created. - The new test case confirms that a user request is rejected by the new validation method. Signed-off-by: Grant McLean <grant@catalyst.net.nz> * Add a changelog file. * Formatting fix for black. * Remove unneeded line from test. --------- Signed-off-by: Grant McLean <grant@catalyst.net.nz> |
||
---|---|---|
.. | ||
.gitignore | ||
14213.misc | ||
15388.feature | ||
15450.feature | ||
15520.feature | ||
15582.feature | ||
15649.misc | ||
15650.misc | ||
15674.feature | ||
15675.misc | ||
15689.misc | ||
15690.misc | ||
15694.misc | ||
15695.bugfix | ||
15697.misc | ||
15705.feature | ||
15709.misc | ||
15721.misc | ||
15723.misc | ||
15725.misc | ||
15726.misc | ||
15729.misc | ||
15731.misc |