forked from MirrorHub/synapse
Merge pull request #469 from matrix-org/markjh/joined_guest_access
Guest users must be joined to a room to see it in /sync
This commit is contained in:
commit
c582f178b7
4 changed files with 56 additions and 145 deletions
|
@ -120,22 +120,6 @@ class AuthError(SynapseError):
|
||||||
super(AuthError, self).__init__(*args, **kwargs)
|
super(AuthError, self).__init__(*args, **kwargs)
|
||||||
|
|
||||||
|
|
||||||
class GuestAccessError(AuthError):
|
|
||||||
"""An error raised when a there is a problem with a guest user accessing
|
|
||||||
a room"""
|
|
||||||
|
|
||||||
def __init__(self, rooms, *args, **kwargs):
|
|
||||||
self.rooms = rooms
|
|
||||||
super(GuestAccessError, self).__init__(*args, **kwargs)
|
|
||||||
|
|
||||||
def error_dict(self):
|
|
||||||
return cs_error(
|
|
||||||
self.msg,
|
|
||||||
self.errcode,
|
|
||||||
rooms=self.rooms,
|
|
||||||
)
|
|
||||||
|
|
||||||
|
|
||||||
class EventSizeError(SynapseError):
|
class EventSizeError(SynapseError):
|
||||||
"""An error raised when an event is too big."""
|
"""An error raised when an event is too big."""
|
||||||
|
|
||||||
|
|
|
@ -149,9 +149,6 @@ class FilterCollection(object):
|
||||||
"include_leave", False
|
"include_leave", False
|
||||||
)
|
)
|
||||||
|
|
||||||
def list_rooms(self):
|
|
||||||
return self.room_filter.list_rooms()
|
|
||||||
|
|
||||||
def timeline_limit(self):
|
def timeline_limit(self):
|
||||||
return self.room_timeline_filter.limit()
|
return self.room_timeline_filter.limit()
|
||||||
|
|
||||||
|
@ -184,15 +181,6 @@ class Filter(object):
|
||||||
def __init__(self, filter_json):
|
def __init__(self, filter_json):
|
||||||
self.filter_json = filter_json
|
self.filter_json = filter_json
|
||||||
|
|
||||||
def list_rooms(self):
|
|
||||||
"""The list of room_id strings this filter restricts the output to
|
|
||||||
or None if the this filter doesn't list the room ids.
|
|
||||||
"""
|
|
||||||
if "rooms" in self.filter_json:
|
|
||||||
return list(set(self.filter_json["rooms"]))
|
|
||||||
else:
|
|
||||||
return None
|
|
||||||
|
|
||||||
def check(self, event):
|
def check(self, event):
|
||||||
"""Checks whether the filter matches the given event.
|
"""Checks whether the filter matches the given event.
|
||||||
|
|
||||||
|
|
|
@ -15,8 +15,8 @@
|
||||||
|
|
||||||
from ._base import BaseHandler
|
from ._base import BaseHandler
|
||||||
|
|
||||||
|
from synapse.streams.config import PaginationConfig
|
||||||
from synapse.api.constants import Membership, EventTypes
|
from synapse.api.constants import Membership, EventTypes
|
||||||
from synapse.api.errors import GuestAccessError
|
|
||||||
from synapse.util import unwrapFirstError
|
from synapse.util import unwrapFirstError
|
||||||
|
|
||||||
from twisted.internet import defer
|
from twisted.internet import defer
|
||||||
|
@ -29,8 +29,8 @@ logger = logging.getLogger(__name__)
|
||||||
|
|
||||||
SyncConfig = collections.namedtuple("SyncConfig", [
|
SyncConfig = collections.namedtuple("SyncConfig", [
|
||||||
"user",
|
"user",
|
||||||
"is_guest",
|
|
||||||
"filter",
|
"filter",
|
||||||
|
"is_guest",
|
||||||
])
|
])
|
||||||
|
|
||||||
|
|
||||||
|
@ -118,8 +118,6 @@ class SyncResult(collections.namedtuple("SyncResult", [
|
||||||
self.presence or self.joined or self.invited or self.archived
|
self.presence or self.joined or self.invited or self.archived
|
||||||
)
|
)
|
||||||
|
|
||||||
GuestRoom = collections.namedtuple("GuestRoom", ("room_id", "membership"))
|
|
||||||
|
|
||||||
|
|
||||||
class SyncHandler(BaseHandler):
|
class SyncHandler(BaseHandler):
|
||||||
|
|
||||||
|
@ -138,18 +136,6 @@ class SyncHandler(BaseHandler):
|
||||||
A Deferred SyncResult.
|
A Deferred SyncResult.
|
||||||
"""
|
"""
|
||||||
|
|
||||||
if sync_config.is_guest:
|
|
||||||
bad_rooms = []
|
|
||||||
for room_id in sync_config.filter.list_rooms():
|
|
||||||
world_readable = yield self._is_world_readable(room_id)
|
|
||||||
if not world_readable:
|
|
||||||
bad_rooms.append(room_id)
|
|
||||||
|
|
||||||
if bad_rooms:
|
|
||||||
raise GuestAccessError(
|
|
||||||
bad_rooms, 403, "Guest access not allowed"
|
|
||||||
)
|
|
||||||
|
|
||||||
if timeout == 0 or since_token is None or full_state:
|
if timeout == 0 or since_token is None or full_state:
|
||||||
# we are going to return immediately, so don't bother calling
|
# we are going to return immediately, so don't bother calling
|
||||||
# notifier.wait_for_events.
|
# notifier.wait_for_events.
|
||||||
|
@ -166,17 +152,6 @@ class SyncHandler(BaseHandler):
|
||||||
)
|
)
|
||||||
defer.returnValue(result)
|
defer.returnValue(result)
|
||||||
|
|
||||||
@defer.inlineCallbacks
|
|
||||||
def _is_world_readable(self, room_id):
|
|
||||||
state = yield self.hs.get_state_handler().get_current_state(
|
|
||||||
room_id,
|
|
||||||
EventTypes.RoomHistoryVisibility
|
|
||||||
)
|
|
||||||
if state and "history_visibility" in state.content:
|
|
||||||
defer.returnValue(state.content["history_visibility"] == "world_readable")
|
|
||||||
else:
|
|
||||||
defer.returnValue(False)
|
|
||||||
|
|
||||||
def current_sync_for_user(self, sync_config, since_token=None,
|
def current_sync_for_user(self, sync_config, since_token=None,
|
||||||
full_state=False):
|
full_state=False):
|
||||||
"""Get the sync for client needed to match what the server has now.
|
"""Get the sync for client needed to match what the server has now.
|
||||||
|
@ -200,52 +175,37 @@ class SyncHandler(BaseHandler):
|
||||||
"""
|
"""
|
||||||
now_token = yield self.event_sources.get_current_token()
|
now_token = yield self.event_sources.get_current_token()
|
||||||
|
|
||||||
if sync_config.is_guest:
|
now_token, ephemeral_by_room = yield self.ephemeral_by_room(
|
||||||
room_list = [
|
sync_config, now_token
|
||||||
GuestRoom(room_id, Membership.JOIN)
|
|
||||||
for room_id in sync_config.filter.list_rooms()
|
|
||||||
]
|
|
||||||
|
|
||||||
account_data = {}
|
|
||||||
account_data_by_room = {}
|
|
||||||
tags_by_room = {}
|
|
||||||
|
|
||||||
else:
|
|
||||||
membership_list = (Membership.INVITE, Membership.JOIN)
|
|
||||||
if sync_config.filter.include_leave:
|
|
||||||
membership_list += (Membership.LEAVE, Membership.BAN)
|
|
||||||
|
|
||||||
room_list = yield self.store.get_rooms_for_user_where_membership_is(
|
|
||||||
user_id=sync_config.user.to_string(),
|
|
||||||
membership_list=membership_list
|
|
||||||
)
|
|
||||||
|
|
||||||
account_data, account_data_by_room = (
|
|
||||||
yield self.store.get_account_data_for_user(
|
|
||||||
sync_config.user.to_string()
|
|
||||||
)
|
|
||||||
)
|
|
||||||
|
|
||||||
tags_by_room = yield self.store.get_tags_for_user(
|
|
||||||
sync_config.user.to_string()
|
|
||||||
)
|
|
||||||
|
|
||||||
presence_stream = self.event_sources.sources["presence"]
|
|
||||||
|
|
||||||
joined_room_ids = [
|
|
||||||
room.room_id for room in room_list
|
|
||||||
if room.membership == Membership.JOIN
|
|
||||||
]
|
|
||||||
|
|
||||||
presence, _ = yield presence_stream.get_new_events(
|
|
||||||
from_key=0,
|
|
||||||
user=sync_config.user,
|
|
||||||
room_ids=joined_room_ids,
|
|
||||||
is_guest=sync_config.is_guest,
|
|
||||||
)
|
)
|
||||||
|
|
||||||
now_token, ephemeral_by_room = yield self.ephemeral_by_room(
|
presence_stream = self.event_sources.sources["presence"]
|
||||||
sync_config, now_token, joined_room_ids
|
# TODO (mjark): This looks wrong, shouldn't we be getting the presence
|
||||||
|
# UP to the present rather than after the present?
|
||||||
|
pagination_config = PaginationConfig(from_token=now_token)
|
||||||
|
presence, _ = yield presence_stream.get_pagination_rows(
|
||||||
|
user=sync_config.user,
|
||||||
|
pagination_config=pagination_config.get_source_config("presence"),
|
||||||
|
key=None
|
||||||
|
)
|
||||||
|
|
||||||
|
membership_list = (Membership.INVITE, Membership.JOIN)
|
||||||
|
if sync_config.filter.include_leave:
|
||||||
|
membership_list += (Membership.LEAVE, Membership.BAN)
|
||||||
|
|
||||||
|
room_list = yield self.store.get_rooms_for_user_where_membership_is(
|
||||||
|
user_id=sync_config.user.to_string(),
|
||||||
|
membership_list=membership_list
|
||||||
|
)
|
||||||
|
|
||||||
|
account_data, account_data_by_room = (
|
||||||
|
yield self.store.get_account_data_for_user(
|
||||||
|
sync_config.user.to_string()
|
||||||
|
)
|
||||||
|
)
|
||||||
|
|
||||||
|
tags_by_room = yield self.store.get_tags_for_user(
|
||||||
|
sync_config.user.to_string()
|
||||||
)
|
)
|
||||||
|
|
||||||
joined = []
|
joined = []
|
||||||
|
@ -356,13 +316,11 @@ class SyncHandler(BaseHandler):
|
||||||
return account_data_events
|
return account_data_events
|
||||||
|
|
||||||
@defer.inlineCallbacks
|
@defer.inlineCallbacks
|
||||||
def ephemeral_by_room(self, sync_config, now_token, room_ids,
|
def ephemeral_by_room(self, sync_config, now_token, since_token=None):
|
||||||
since_token=None):
|
|
||||||
"""Get the ephemeral events for each room the user is in
|
"""Get the ephemeral events for each room the user is in
|
||||||
Args:
|
Args:
|
||||||
sync_config (SyncConfig): The flags, filters and user for the sync.
|
sync_config (SyncConfig): The flags, filters and user for the sync.
|
||||||
now_token (StreamToken): Where the server is currently up to.
|
now_token (StreamToken): Where the server is currently up to.
|
||||||
room_ids (list): List of room id strings to get data for.
|
|
||||||
since_token (StreamToken): Where the server was when the client
|
since_token (StreamToken): Where the server was when the client
|
||||||
last synced.
|
last synced.
|
||||||
Returns:
|
Returns:
|
||||||
|
@ -373,13 +331,16 @@ class SyncHandler(BaseHandler):
|
||||||
|
|
||||||
typing_key = since_token.typing_key if since_token else "0"
|
typing_key = since_token.typing_key if since_token else "0"
|
||||||
|
|
||||||
|
rooms = yield self.store.get_rooms_for_user(sync_config.user.to_string())
|
||||||
|
room_ids = [room.room_id for room in rooms]
|
||||||
|
|
||||||
typing_source = self.event_sources.sources["typing"]
|
typing_source = self.event_sources.sources["typing"]
|
||||||
typing, typing_key = yield typing_source.get_new_events(
|
typing, typing_key = yield typing_source.get_new_events(
|
||||||
user=sync_config.user,
|
user=sync_config.user,
|
||||||
from_key=typing_key,
|
from_key=typing_key,
|
||||||
limit=sync_config.filter.ephemeral_limit(),
|
limit=sync_config.filter.ephemeral_limit(),
|
||||||
room_ids=room_ids,
|
room_ids=room_ids,
|
||||||
is_guest=False,
|
is_guest=sync_config.is_guest,
|
||||||
)
|
)
|
||||||
now_token = now_token.copy_and_replace("typing_key", typing_key)
|
now_token = now_token.copy_and_replace("typing_key", typing_key)
|
||||||
|
|
||||||
|
@ -402,8 +363,7 @@ class SyncHandler(BaseHandler):
|
||||||
from_key=receipt_key,
|
from_key=receipt_key,
|
||||||
limit=sync_config.filter.ephemeral_limit(),
|
limit=sync_config.filter.ephemeral_limit(),
|
||||||
room_ids=room_ids,
|
room_ids=room_ids,
|
||||||
# /sync doesn't support guest access, they can't get to this point in code
|
is_guest=sync_config.is_guest,
|
||||||
is_guest=False,
|
|
||||||
)
|
)
|
||||||
now_token = now_token.copy_and_replace("receipt_key", receipt_key)
|
now_token = now_token.copy_and_replace("receipt_key", receipt_key)
|
||||||
|
|
||||||
|
@ -450,38 +410,8 @@ class SyncHandler(BaseHandler):
|
||||||
"""
|
"""
|
||||||
now_token = yield self.event_sources.get_current_token()
|
now_token = yield self.event_sources.get_current_token()
|
||||||
|
|
||||||
if sync_config.is_guest:
|
rooms = yield self.store.get_rooms_for_user(sync_config.user.to_string())
|
||||||
room_ids = sync_config.filter.list_rooms()
|
room_ids = [room.room_id for room in rooms]
|
||||||
|
|
||||||
tags_by_room = {}
|
|
||||||
account_data = {}
|
|
||||||
account_data_by_room = {}
|
|
||||||
|
|
||||||
else:
|
|
||||||
rooms = yield self.store.get_rooms_for_user(
|
|
||||||
sync_config.user.to_string()
|
|
||||||
)
|
|
||||||
room_ids = [room.room_id for room in rooms]
|
|
||||||
|
|
||||||
now_token, ephemeral_by_room = yield self.ephemeral_by_room(
|
|
||||||
sync_config, now_token, since_token
|
|
||||||
)
|
|
||||||
|
|
||||||
tags_by_room = yield self.store.get_updated_tags(
|
|
||||||
sync_config.user.to_string(),
|
|
||||||
since_token.account_data_key,
|
|
||||||
)
|
|
||||||
|
|
||||||
account_data, account_data_by_room = (
|
|
||||||
yield self.store.get_updated_account_data_for_user(
|
|
||||||
sync_config.user.to_string(),
|
|
||||||
since_token.account_data_key,
|
|
||||||
)
|
|
||||||
)
|
|
||||||
|
|
||||||
now_token, ephemeral_by_room = yield self.ephemeral_by_room(
|
|
||||||
sync_config, now_token, room_ids, since_token
|
|
||||||
)
|
|
||||||
|
|
||||||
presence_source = self.event_sources.sources["presence"]
|
presence_source = self.event_sources.sources["presence"]
|
||||||
presence, presence_key = yield presence_source.get_new_events(
|
presence, presence_key = yield presence_source.get_new_events(
|
||||||
|
@ -493,6 +423,10 @@ class SyncHandler(BaseHandler):
|
||||||
)
|
)
|
||||||
now_token = now_token.copy_and_replace("presence_key", presence_key)
|
now_token = now_token.copy_and_replace("presence_key", presence_key)
|
||||||
|
|
||||||
|
now_token, ephemeral_by_room = yield self.ephemeral_by_room(
|
||||||
|
sync_config, now_token, since_token
|
||||||
|
)
|
||||||
|
|
||||||
rm_handler = self.hs.get_handlers().room_member_handler
|
rm_handler = self.hs.get_handlers().room_member_handler
|
||||||
app_service = yield self.store.get_app_service_by_user_id(
|
app_service = yield self.store.get_app_service_by_user_id(
|
||||||
sync_config.user.to_string()
|
sync_config.user.to_string()
|
||||||
|
@ -512,8 +446,18 @@ class SyncHandler(BaseHandler):
|
||||||
from_key=since_token.room_key,
|
from_key=since_token.room_key,
|
||||||
to_key=now_token.room_key,
|
to_key=now_token.room_key,
|
||||||
limit=timeline_limit + 1,
|
limit=timeline_limit + 1,
|
||||||
room_ids=room_ids if sync_config.is_guest else (),
|
)
|
||||||
is_guest=sync_config.is_guest,
|
|
||||||
|
tags_by_room = yield self.store.get_updated_tags(
|
||||||
|
sync_config.user.to_string(),
|
||||||
|
since_token.account_data_key,
|
||||||
|
)
|
||||||
|
|
||||||
|
account_data, account_data_by_room = (
|
||||||
|
yield self.store.get_updated_account_data_for_user(
|
||||||
|
sync_config.user.to_string(),
|
||||||
|
since_token.account_data_key,
|
||||||
|
)
|
||||||
)
|
)
|
||||||
|
|
||||||
joined = []
|
joined = []
|
||||||
|
|
|
@ -120,15 +120,10 @@ class SyncRestServlet(RestServlet):
|
||||||
except:
|
except:
|
||||||
filter = FilterCollection({})
|
filter = FilterCollection({})
|
||||||
|
|
||||||
if is_guest and filter.list_rooms() is None:
|
|
||||||
raise SynapseError(
|
|
||||||
400, "Guest users must provide a list of rooms in the filter"
|
|
||||||
)
|
|
||||||
|
|
||||||
sync_config = SyncConfig(
|
sync_config = SyncConfig(
|
||||||
user=user,
|
user=user,
|
||||||
is_guest=is_guest,
|
|
||||||
filter=filter,
|
filter=filter,
|
||||||
|
is_guest=is_guest,
|
||||||
)
|
)
|
||||||
|
|
||||||
if since is not None:
|
if since is not None:
|
||||||
|
|
Loading…
Reference in a new issue