Admin API for querying rooms where a user is a member (#8306)

Add a new admin API `GET /_synapse/admin/v1/users/<user_id>/joined_rooms` to list all rooms where a user is a member.
2024-11-15 22:42:23 +01:00 · 2020-09-18 16:26:36 +02:00 · 2020-09-18 16:26:36 +02:00 · d688b4bafc
commit d688b4bafc
parent 36efbcaf51
5 changed files with 160 additions and 2 deletions
--- a/changelog.d/8306.feature
+++ b/changelog.d/8306.feature
@ -0,0 +1 @@
 Add an admin API for querying rooms where a user is a member. Contributed by @dklimpel.
--- a/docs/admin_api/user_admin_api.rst
+++ b/docs/admin_api/user_admin_api.rst
@ -304,6 +304,43 @@ To use it, you will need to authenticate by providing an ``access_token`` for a
 server admin: see `README.rst <README.rst>`_.
 List room memberships of an user
 ================================
 Gets a list of all ``room_id`` that a specific ``user_id`` is member.
 The API is::
  GET /_synapse/admin/v1/users/<user_id>/joined_rooms
 To use it, you will need to authenticate by providing an ``access_token`` for a
 server admin: see `README.rst <README.rst>`_.
 A response body like the following is returned:
 .. code:: json
    {
        "joined_rooms": [
            "!DuGcnbhHGaSZQoNQR:matrix.org",
            "!ZtSaPCawyWtxfWiIy:matrix.org"
        ],
        "total": 2
    }
 **Parameters**
 The following parameters should be set in the URL:
 - ``user_id`` - fully qualified: for example, ``@user:server.com``.
 **Response**
 The following fields are returned in the JSON response body:
 - ``joined_rooms`` - An array of ``room_id``.
 - ``total`` - Number of rooms.
 User devices
 ============
--- a/synapse/rest/admin/init.py
+++ b/synapse/rest/admin/init.py
@ -49,6 +49,7 @@ from synapse.rest.admin.users import (
    ResetPasswordRestServlet,
    SearchUsersRestServlet,
    UserAdminServlet,
    UserMembershipRestServlet,
    UserRegisterServlet,
    UserRestServletV2,
    UsersRestServlet,
@ -209,6 +210,7 @@ def register_servlets(hs, http_server):
    SendServerNoticeServlet(hs).register(http_server)
    VersionServlet(hs).register(http_server)
    UserAdminServlet(hs).register(http_server)
    UserMembershipRestServlet(hs).register(http_server)
    UserRestServletV2(hs).register(http_server)
    UsersRestServletV2(hs).register(http_server)
    DeviceRestServlet(hs).register(http_server)
--- a/synapse/rest/admin/users.py
+++ b/synapse/rest/admin/users.py
@ -683,3 +683,29 @@ class UserAdminServlet(RestServlet):
        await self.store.set_server_admin(target_user, set_admin_to)
        return 200, {}
 class UserMembershipRestServlet(RestServlet):
    """
    Get room list of an user.
    """
    PATTERNS = admin_patterns("/users/(?P<user_id>[^/]+)/joined_rooms$")
    def __init__(self, hs):
        self.is_mine = hs.is_mine
        self.auth = hs.get_auth()
        self.store = hs.get_datastore()
    async def on_GET(self, request, user_id):
        await assert_requester_is_admin(self.auth, request)
        if not self.is_mine(UserID.from_string(user_id)):
            raise SynapseError(400, "Can only lookup local users")
        room_ids = await self.store.get_rooms_for_user(user_id)
        if not room_ids:
            raise NotFoundError("User not found")
        ret = {"joined_rooms": list(room_ids), "total": len(room_ids)}
        return 200, ret
--- a/tests/rest/admin/test_user.py
+++ b/tests/rest/admin/test_user.py
@ -22,8 +22,8 @@ from mock import Mock
 import synapse.rest.admin
 from synapse.api.constants import UserTypes
-from synapse.api.errors import HttpResponseException, ResourceLimitError
+from synapse.api.errors import Codes, HttpResponseException, ResourceLimitError
-from synapse.rest.client.v1 import login
+from synapse.rest.client.v1 import login, room
 from synapse.rest.client.v2_alpha import sync
 from tests import unittest
@ -995,3 +995,95 @@ class UserRestTestCase(unittest.HomeserverTestCase):
        # Ensure they're still alive
        self.assertEqual(0, channel.json_body["deactivated"])
 class UserMembershipRestTestCase(unittest.HomeserverTestCase):
    servlets = [
        synapse.rest.admin.register_servlets,
        login.register_servlets,
        sync.register_servlets,
        room.register_servlets,
    ]
    def prepare(self, reactor, clock, hs):
        self.store = hs.get_datastore()
        self.admin_user = self.register_user("admin", "pass", admin=True)
        self.admin_user_tok = self.login("admin", "pass")
        self.other_user = self.register_user("user", "pass")
        self.url = "/_synapse/admin/v1/users/%s/joined_rooms" % urllib.parse.quote(
            self.other_user
        )
    def test_no_auth(self):
        """
        Try to list rooms of an user without authentication.
        """
        request, channel = self.make_request("GET", self.url, b"{}")
        self.render(request)
        self.assertEqual(401, int(channel.result["code"]), msg=channel.result["body"])
        self.assertEqual(Codes.MISSING_TOKEN, channel.json_body["errcode"])
    def test_requester_is_no_admin(self):
        """
        If the user is not a server admin, an error is returned.
        """
        other_user_token = self.login("user", "pass")
        request, channel = self.make_request(
            "GET", self.url, access_token=other_user_token,
        )
        self.render(request)
        self.assertEqual(403, int(channel.result["code"]), msg=channel.result["body"])
        self.assertEqual(Codes.FORBIDDEN, channel.json_body["errcode"])
    def test_user_does_not_exist(self):
        """
        Tests that a lookup for a user that does not exist returns a 404
        """
        url = "/_synapse/admin/v1/users/@unknown_person:test/joined_rooms"
        request, channel = self.make_request(
            "GET", url, access_token=self.admin_user_tok,
        )
        self.render(request)
        self.assertEqual(404, channel.code, msg=channel.json_body)
        self.assertEqual(Codes.NOT_FOUND, channel.json_body["errcode"])
    def test_user_is_not_local(self):
        """
        Tests that a lookup for a user that is not a local returns a 400
        """
        url = "/_synapse/admin/v1/users/@unknown_person:unknown_domain/joined_rooms"
        request, channel = self.make_request(
            "GET", url, access_token=self.admin_user_tok,
        )
        self.render(request)
        self.assertEqual(400, channel.code, msg=channel.json_body)
        self.assertEqual("Can only lookup local users", channel.json_body["error"])
    def test_get_rooms(self):
        """
        Tests that a normal lookup for rooms is successfully
        """
        # Create rooms and join
        other_user_tok = self.login("user", "pass")
        number_rooms = 5
        for n in range(number_rooms):
            self.helper.create_room_as(self.other_user, tok=other_user_tok)
        # Get rooms
        request, channel = self.make_request(
            "GET", self.url, access_token=self.admin_user_tok,
        )
        self.render(request)
        self.assertEqual(200, channel.code, msg=channel.json_body)
        self.assertEqual(number_rooms, channel.json_body["total"])
        self.assertEqual(number_rooms, len(channel.json_body["joined_rooms"]))
		`@ -0,0 +1 @@`
							`Add an admin API for querying rooms where a user is a member. Contributed by @dklimpel.`