From bc41f0398f081177ebc8036280f935d8bcb7bca0 Mon Sep 17 00:00:00 2001
From: "Paul \"LeoNerd\" Evans" <paul@matrix.org>
Date: Tue, 21 Apr 2015 20:56:08 +0100
Subject: [PATCH 1/3] Initial implementation of an 'invite' power_level

---
 synapse/api/auth.py | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/synapse/api/auth.py b/synapse/api/auth.py
index 9a5058a364..84a46385bb 100644
--- a/synapse/api/auth.py
+++ b/synapse/api/auth.py
@@ -232,6 +232,13 @@ class Auth(object):
             elif target_in_room:  # the target is already in the room.
                 raise AuthError(403, "%s is already in the room." %
                                      target_user_id)
+            else:
+                invite_level = self._get_named_level(auth_events, "invite", 0)
+
+                if user_level < invite_level:
+                    raise AuthError(
+                        403, "You cannot invite user %s." % target_user_id
+                    )
         elif Membership.JOIN == membership:
             # Joins are valid iff caller == target and they were:
             # invited: They are accepting the invitation

From 48b6ee2b67ad4f8bce9774267f863e45192f67d4 Mon Sep 17 00:00:00 2001
From: "Paul \"LeoNerd\" Evans" <paul@matrix.org>
Date: Tue, 21 Apr 2015 21:07:35 +0100
Subject: [PATCH 2/3] Create an 'invite' powerlevel when making new rooms

---
 synapse/handlers/room.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/synapse/handlers/room.py b/synapse/handlers/room.py
index f9fc4a9c98..1226b23bc7 100644
--- a/synapse/handlers/room.py
+++ b/synapse/handlers/room.py
@@ -213,7 +213,8 @@ class RoomCreationHandler(BaseHandler):
                 "state_default": 50,
                 "ban": 50,
                 "kick": 50,
-                "redact": 50
+                "redact": 50,
+                "invite": 0,
             },
         )
 

From 2808c040ef4070e6a91e2b210383393cc54f66b5 Mon Sep 17 00:00:00 2001
From: "Paul \"LeoNerd\" Evans" <paul@matrix.org>
Date: Tue, 21 Apr 2015 21:13:14 +0100
Subject: [PATCH 3/3] Also remember to check 'invite' level for changes

---
 synapse/api/auth.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/synapse/api/auth.py b/synapse/api/auth.py
index 84a46385bb..d8b7614791 100644
--- a/synapse/api/auth.py
+++ b/synapse/api/auth.py
@@ -592,6 +592,7 @@ class Auth(object):
             ("ban", []),
             ("redact", []),
             ("kick", []),
+            ("invite", []),
         ]
 
         old_list = current_state.content.get("users")