diff options
author | David Baker <dave@matrix.org> | 2015-04-17 13:51:10 +0100 |
---|---|---|
committer | David Baker <dave@matrix.org> | 2015-04-17 13:51:10 +0100 |
commit | cb03fafdf150cb97d494c1a12efb730e01309fb2 (patch) | |
tree | 5c6994f2ec826599984d7a621caeb889aeef4c57 /synapse/api/auth.py | |
parent | Register the 3pid servlet (diff) | |
parent | Filter typing nofication events to only those rooms the requesting user is a ... (diff) | |
download | synapse-cb03fafdf150cb97d494c1a12efb730e01309fb2.tar.xz |
Merge branch 'develop' into csauth
Diffstat (limited to 'synapse/api/auth.py')
-rw-r--r-- | synapse/api/auth.py | 25 |
1 files changed, 11 insertions, 14 deletions
diff --git a/synapse/api/auth.py b/synapse/api/auth.py index 0bf35109cd..3d2b45d217 100644 --- a/synapse/api/auth.py +++ b/synapse/api/auth.py @@ -216,17 +216,20 @@ class Auth(object): else: ban_level = 50 # FIXME (erikj): What should we do here? - if Membership.INVITE == membership: - # TODO (erikj): We should probably handle this more intelligently - # PRIVATE join rules. - - # Invites are valid iff caller is in the room and target isn't. + if Membership.JOIN != membership: + # JOIN is the only action you can perform if you're not in the room if not caller_in_room: # caller isn't joined raise AuthError( 403, "%s not in room %s." % (event.user_id, event.room_id,) ) - elif target_banned: + + if Membership.INVITE == membership: + # TODO (erikj): We should probably handle this more intelligently + # PRIVATE join rules. + + # Invites are valid iff caller is in the room and target isn't. + if target_banned: raise AuthError( 403, "%s is banned from the room" % (target_user_id,) ) @@ -252,13 +255,7 @@ class Auth(object): raise AuthError(403, "You are not allowed to join this room") elif Membership.LEAVE == membership: # TODO (erikj): Implement kicks. - - if not caller_in_room: # trying to leave a room you aren't joined - raise AuthError( - 403, - "%s not in room %s." % (target_user_id, event.room_id,) - ) - elif target_banned and user_level < ban_level: + if target_banned and user_level < ban_level: raise AuthError( 403, "You cannot unban user &s." % (target_user_id,) ) @@ -493,7 +490,7 @@ class Auth(object): send_level = send_level_event.content.get("events", {}).get( event.type ) - if not send_level: + if send_level is None: if hasattr(event, "state_key"): send_level = send_level_event.content.get( "state_default", 50 |