Merge branch 'develop' into matrix-org-hotfixes

author: Richard van der Hoff <richard@matrix.org> 2020-07-24 09:57:49 +0100
committer: Richard van der Hoff <richard@matrix.org> 2020-07-24 09:57:49 +0100
commit: be777e325dedab1ee84e5bbd96f7571b8490a8ec (patch)
tree: 16fd1b1a1b15bba5f5e78037ddada7525ae8b653 /synapse/event_auth.py
parent: Merge branch 'develop' into matrix-org-hotfixes (diff)
parent: Downgrade warning on client disconnect to INFO (#7928) (diff)
download: synapse-be777e325dedab1ee84e5bbd96f7571b8490a8ec.tar.xz
1 files changed, 6 insertions, 4 deletions
diff --git a/synapse/event_auth.py b/synapse/event_auth.py
index c582355146..c0981eee62 100644
--- a/synapse/event_auth.py
+++ b/synapse/event_auth.py
@@ -65,14 +65,16 @@ def check(
 
     room_id = event.room_id
 
-    # I'm not really expecting to get auth events in the wrong room, but let's
-    # sanity-check it
+    # We need to ensure that the auth events are actually for the same room, to
+    # stop people from using powers they've been granted in other rooms for
+    # example.
     for auth_event in auth_events.values():
         if auth_event.room_id != room_id:
-            raise Exception(
+            raise AuthError(
+                403,
                 "During auth for event %s in room %s, found event %s in the state "
                 "which is in room %s"
-                % (event.event_id, room_id, auth_event.event_id, auth_event.room_id)
+                % (event.event_id, room_id, auth_event.event_id, auth_event.room_id),
             )
 
     if do_sig_check:
author	Richard van der Hoff <richard@matrix.org>	2020-07-24 09:57:49 +0100
committer	Richard van der Hoff <richard@matrix.org>	2020-07-24 09:57:49 +0100
commit	be777e325dedab1ee84e5bbd96f7571b8490a8ec (patch)
tree	16fd1b1a1b15bba5f5e78037ddada7525ae8b653 /synapse/event_auth.py
parent	Merge branch 'develop' into matrix-org-hotfixes (diff)
parent	Downgrade warning on client disconnect to INFO (#7928) (diff)
download	synapse-be777e325dedab1ee84e5bbd96f7571b8490a8ec.tar.xz