Check domain of events properly

Federated servers still need to delegate authority to owning servers
author: Daniel Wagner-Hall <daniel@matrix.org> 2015-09-01 11:53:31 +0100
committer: Daniel Wagner-Hall <daniel@matrix.org> 2015-09-01 11:53:31 +0100
commit: b854a375b0a859f8c4e16adf9f2fcec75b5a6816 (patch)
tree: e22037ce53754e46913326b1493906f211162c90 /synapse/api/auth.py
parent: Merge branch 'develop' into redactyoself (diff)
download: synapse-b854a375b0a859f8c4e16adf9f2fcec75b5a6816.tar.xz
1 files changed, 3 insertions, 1 deletions
diff --git a/synapse/api/auth.py b/synapse/api/auth.py
index f63d2daad8..0c0d678562 100644
--- a/synapse/api/auth.py
+++ b/synapse/api/auth.py
@@ -561,7 +561,9 @@ class Auth(object):
         if user_level > redact_level:
             return False
 
-        if EventID.from_string(event.redacts).domain == self.hs.get_config().server_name:
+        redacter_domain = EventID.from_string(event.event_id).domain
+        redactee_domain = EventID.from_string(event.redacts).domain
+        if redacter_domain == redactee_domain:
             return True
 
         raise AuthError(
author	Daniel Wagner-Hall <daniel@matrix.org>	2015-09-01 11:53:31 +0100
committer	Daniel Wagner-Hall <daniel@matrix.org>	2015-09-01 11:53:31 +0100
commit	b854a375b0a859f8c4e16adf9f2fcec75b5a6816 (patch)
tree	e22037ce53754e46913326b1493906f211162c90 /synapse/api/auth.py
parent	Merge branch 'develop' into redactyoself (diff)
download	synapse-b854a375b0a859f8c4e16adf9f2fcec75b5a6816.tar.xz