2018-06-03 04:26:37 +02:00
|
|
|
// Matrix Construct
|
|
|
|
//
|
|
|
|
// Copyright (C) Matrix Construct Developers, Authors & Contributors
|
|
|
|
// Copyright (C) 2016-2018 Jason Volk <jason@zemos.net>
|
|
|
|
//
|
|
|
|
// Permission to use, copy, modify, and/or distribute this software for any
|
|
|
|
// purpose with or without fee is hereby granted, provided that the above
|
|
|
|
// copyright notice and this permission notice is present in all copies. The
|
|
|
|
// full license for this software is available in the LICENSE file.
|
|
|
|
|
|
|
|
using namespace ircd;
|
|
|
|
|
|
|
|
mapi::header
|
|
|
|
IRCD_MODULE
|
|
|
|
{
|
|
|
|
"federation event_auth (undocumented)"
|
|
|
|
};
|
|
|
|
|
|
|
|
resource
|
|
|
|
event_auth_resource
|
|
|
|
{
|
|
|
|
"/_matrix/federation/v1/event_auth/",
|
|
|
|
{
|
|
|
|
"federation event_auth",
|
|
|
|
resource::DIRECTORY,
|
|
|
|
}
|
|
|
|
};
|
|
|
|
|
|
|
|
conf::item<size_t>
|
|
|
|
event_auth_flush_hiwat
|
|
|
|
{
|
|
|
|
{ "name", "ircd.federation.event_auth.flush.hiwat" },
|
|
|
|
{ "default", 16384L },
|
|
|
|
};
|
|
|
|
|
|
|
|
resource::response
|
|
|
|
get__event_auth(client &client,
|
|
|
|
const resource::request &request)
|
|
|
|
{
|
|
|
|
if(request.parv.size() < 1)
|
|
|
|
throw m::NEED_MORE_PARAMS
|
|
|
|
{
|
|
|
|
"room_id path parameter required"
|
|
|
|
};
|
|
|
|
|
|
|
|
m::room::id::buf room_id
|
|
|
|
{
|
2018-12-07 01:41:47 +01:00
|
|
|
url::decode(room_id, request.parv[0])
|
2018-06-03 04:26:37 +02:00
|
|
|
};
|
|
|
|
|
2019-05-27 05:36:26 +02:00
|
|
|
if(m::room::server_acl::enable_read && !m::room::server_acl::check(room_id, request.node_id))
|
|
|
|
throw m::ACCESS_DENIED
|
|
|
|
{
|
|
|
|
"You are not permitted by the room's server access control list."
|
|
|
|
};
|
|
|
|
|
2018-06-03 04:26:37 +02:00
|
|
|
if(request.parv.size() < 2)
|
|
|
|
throw m::NEED_MORE_PARAMS
|
|
|
|
{
|
|
|
|
"event_id path parameter required"
|
|
|
|
};
|
|
|
|
|
|
|
|
m::event::id::buf event_id
|
|
|
|
{
|
2018-12-07 01:41:47 +01:00
|
|
|
url::decode(event_id, request.parv[1])
|
2018-06-03 04:26:37 +02:00
|
|
|
};
|
|
|
|
|
|
|
|
const m::room room
|
|
|
|
{
|
|
|
|
room_id, event_id
|
|
|
|
};
|
|
|
|
|
2019-04-24 04:42:48 +02:00
|
|
|
bool visible
|
|
|
|
{
|
|
|
|
room.visible(request.node_id)
|
|
|
|
};
|
|
|
|
|
|
|
|
// make an exception to the visibility for invitee cases.
|
|
|
|
if(!visible)
|
|
|
|
{
|
|
|
|
static const m::event::fetch::opts fopts
|
|
|
|
{
|
2019-04-28 01:00:56 +02:00
|
|
|
m::event::keys::include {"room_id", "sender", "type", "state_key", "content"}
|
2019-04-24 04:42:48 +02:00
|
|
|
};
|
|
|
|
|
|
|
|
const m::event::fetch event
|
|
|
|
{
|
|
|
|
event_id, fopts
|
|
|
|
};
|
|
|
|
|
2019-04-28 01:00:56 +02:00
|
|
|
visible = m::visible(event, request.node_id);
|
2019-04-24 04:42:48 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
if(!visible)
|
2018-06-03 04:26:37 +02:00
|
|
|
throw m::ACCESS_DENIED
|
|
|
|
{
|
|
|
|
"You are not permitted to view the room at this event"
|
|
|
|
};
|
|
|
|
|
|
|
|
resource::response::chunked response
|
|
|
|
{
|
|
|
|
client, http::OK
|
|
|
|
};
|
|
|
|
|
|
|
|
json::stack out
|
|
|
|
{
|
2018-09-05 07:48:23 +02:00
|
|
|
response.buf, response.flusher(), size_t(event_auth_flush_hiwat)
|
2018-06-03 04:26:37 +02:00
|
|
|
};
|
|
|
|
|
|
|
|
json::stack::object top{out};
|
|
|
|
json::stack::array auth_chain
|
|
|
|
{
|
2019-03-06 08:54:36 +01:00
|
|
|
top, "auth_chain"
|
2018-06-03 04:26:37 +02:00
|
|
|
};
|
|
|
|
|
2019-02-16 23:44:03 +01:00
|
|
|
const m::event::auth::chain chain
|
|
|
|
{
|
|
|
|
m::index(event_id)
|
|
|
|
};
|
|
|
|
|
2019-02-17 00:03:49 +01:00
|
|
|
m::event::fetch event;
|
|
|
|
chain.for_each([&auth_chain, &event]
|
|
|
|
(const m::event::idx &event_idx)
|
2018-06-03 04:26:37 +02:00
|
|
|
{
|
2019-02-17 00:03:49 +01:00
|
|
|
if(seek(event, event_idx, std::nothrow))
|
|
|
|
auth_chain.append(event);
|
2019-02-15 01:58:39 +01:00
|
|
|
});
|
2018-06-03 04:26:37 +02:00
|
|
|
|
2019-06-24 07:09:41 +02:00
|
|
|
return std::move(response);
|
2018-06-03 04:26:37 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
resource::method
|
|
|
|
method_get
|
|
|
|
{
|
|
|
|
event_auth_resource, "GET", get__event_auth,
|
|
|
|
{
|
|
|
|
method_get.VERIFY_ORIGIN
|
|
|
|
}
|
|
|
|
};
|