synapse/changelog.d
Grant McLean 5c24d7b9eb
Check required power levels earlier in createRoom handler. (#15695)
* Check required power levels earlier in createRoom handler.

- If a server was configured to reject the creation of rooms with E2EE
  enabled (by specifying an unattainably high power level for
  "m.room.encryption" in default_power_level_content_override), the 403
  error was not being triggered until after the room was created and
  before the "m.room.power_levels" was sent.  This allowed a user to
  access the partially-configured room and complete the setup of E2EE
  and power levels manually.

- This change causes the power level overrides to be checked earlier and
  the request to be rejected before the user gains access to the room.

- A new `_validate_room_config` method is added to contain checks that
  should be run before a room is created.

- The new test case confirms that a user request is rejected by the new
  validation method.

Signed-off-by: Grant McLean <grant@catalyst.net.nz>

* Add a changelog file.

* Formatting fix for black.

* Remove unneeded line from test.

---------

Signed-off-by: Grant McLean <grant@catalyst.net.nz>
2023-06-07 16:21:25 +01:00
..
.gitignore
14213.misc Log when events are (unexpectedly) filtered out of responses in tests (#14213) 2023-06-01 21:27:18 -05:00
15388.feature Implement stable support for MSC3882 to allow an existing device/session to generate a login token for use on a new device/session (#15388) 2023-06-01 08:52:51 -04:00
15450.feature Add get_canonical_room_alias to module API (#15450) 2023-05-31 09:18:37 -04:00
15520.feature Stabilize support for MSC3952: Intentional mentions. (#15520) 2023-06-06 09:11:07 +01:00
15582.feature Newsfile. 2023-05-30 09:43:06 -04:00
15649.misc N + 3: Read from column full_user_id rather than user_id of tables profiles and user_filters (#15649) 2023-06-02 17:24:13 -07:00
15650.misc Trace functions which return Awaitable (#15650) 2023-06-06 17:39:22 -05:00
15674.feature Add Synapse version deploy annotations to Grafana dashboard (#15674) 2023-05-31 14:35:49 -05:00
15675.misc Cache requests for user's devices from federation (#15675) 2023-06-01 13:25:20 +00:00
15689.misc Docker fully qualified image names (#15689) 2023-05-31 15:13:31 +00:00
15690.misc Remove unused FederationServer.__str__ override (#15690) 2023-05-30 14:37:39 +01:00
15694.misc Add stricter mypy options (#15694) 2023-05-31 07:18:29 -04:00
15695.bugfix Check required power levels earlier in createRoom handler. (#15695) 2023-06-07 16:21:25 +01:00
15697.misc Add stubs package for lxml. (#15697) 2023-05-31 17:06:57 +00:00
15705.feature Add a catch-all * to the supported relation types when redacting (#15705) 2023-06-02 13:13:50 +00:00
15709.misc Some house keeping on maybe_backfill() functions (#15709) 2023-06-05 23:38:52 -05:00
15721.misc Add context for when/why to use the long_retries option when sending Federation requests (#15721) 2023-06-06 16:25:03 -05:00
15723.misc Remove some unused server_name fields (#15723) 2023-06-06 12:32:29 +01:00
15725.misc Update error to more plainly explain we can only authorize our own events (#15725) 2023-06-06 16:26:12 -05:00
15726.misc Prevent "twisted trunk" and "latest deps" workflows from running on forks (#15726) 2023-06-06 18:29:54 +00:00
15729.misc Improve performance of user directory search (#15729) 2023-06-06 21:16:03 +01:00
15731.misc No need for the extra join since membership is built-in to current_state_events (#15731) 2023-06-06 22:19:57 -05:00