summary refs log tree commit diff
path: root/synapse/handlers
diff options
context:
space:
mode:
authorBrendan Abolivier <babolivier@matrix.org>2019-07-08 17:31:00 +0100
committerBrendan Abolivier <babolivier@matrix.org>2019-07-08 17:31:00 +0100
commit7556851665ce623ce49f6fd8eaf22c1b4f234b9d (patch)
treea16f0effebb9626fa88abc1f771cb031ecd5efda /synapse/handlers
parentUpdate ModuleApi to avoid register(generate_token=True) (#5640) (diff)
downloadsynapse-7556851665ce623ce49f6fd8eaf22c1b4f234b9d.tar.xz
Allow newly-registered users to lookup their own profiles
When a user creates an account and the 'require_auth_for_profile_requests' config flag is set, and a client that performed the registration wants to lookup the newly-created profile, the request will be denied because the user doesn't share a room with themselves yet.
Diffstat (limited to 'synapse/handlers')
-rw-r--r--synapse/handlers/profile.py4
1 files changed, 4 insertions, 0 deletions
diff --git a/synapse/handlers/profile.py b/synapse/handlers/profile.py
index d8462b75ec..a2388a7091 100644
--- a/synapse/handlers/profile.py
+++ b/synapse/handlers/profile.py
@@ -303,6 +303,10 @@ class BaseProfileHandler(BaseHandler):
         if not self.hs.config.require_auth_for_profile_requests or not requester:
             return
 
+        # Always allow the user to query their own profile.
+        if target_user.to_string() == requester.to_string():
+            return
+
         try:
             requester_rooms = yield self.store.get_rooms_for_user(requester.to_string())
             target_user_rooms = yield self.store.get_rooms_for_user(