summary refs log tree commit diff
path: root/synapse/config
diff options
context:
space:
mode:
authorWill Hunt <will@half-shot.uk>2019-12-16 16:11:55 +0000
committerAndrew Morgan <1342360+anoadragon453@users.noreply.github.com>2019-12-16 16:11:55 +0000
commitbfb95654c97a8d3aa164eff96ecc13755c1c326d (patch)
treeed4b8ff50105d77770898e9e485eb3060996d598 /synapse/config
parentExclude rejected state events when calculating state at backwards extrems (#6... (diff)
downloadsynapse-bfb95654c97a8d3aa164eff96ecc13755c1c326d.tar.xz
Add option to allow profile queries without sharing a room (#6523)
Diffstat (limited to 'synapse/config')
-rw-r--r--synapse/config/server.py13
1 files changed, 13 insertions, 0 deletions
diff --git a/synapse/config/server.py b/synapse/config/server.py
index 50af858c76..38f6ff9edc 100644
--- a/synapse/config/server.py
+++ b/synapse/config/server.py
@@ -102,6 +102,12 @@ class ServerConfig(Config):
             "require_auth_for_profile_requests", False
         )
 
+        # Whether to require sharing a room with a user to retrieve their
+        # profile data
+        self.limit_profile_requests_to_users_who_share_rooms = config.get(
+            "limit_profile_requests_to_users_who_share_rooms", False,
+        )
+
         if "restrict_public_rooms_to_local_users" in config and (
             "allow_public_rooms_without_auth" in config
             or "allow_public_rooms_over_federation" in config
@@ -621,6 +627,13 @@ class ServerConfig(Config):
         #
         #require_auth_for_profile_requests: true
 
+        # Uncomment to require a user to share a room with another user in order
+        # to retrieve their profile information. Only checked on Client-Server
+        # requests. Profile requests from other servers should be checked by the
+        # requesting server. Defaults to 'false'.
+        #
+        #limit_profile_requests_to_users_who_share_rooms: true
+
         # If set to 'true', removes the need for authentication to access the server's
         # public rooms directory through the client API, meaning that anyone can
         # query the room directory. Defaults to 'false'.