Apply an IP range blacklist to push and key revocation requests. (#8821)

Replaces the `federation_ip_range_blacklist` configuration setting with an `ip_range_blacklist` setting with wider scope. It now applies to: * Federation * Identity servers * Push notifications * Checking key validitity for third-party invite events The old `federation_ip_range_blacklist` setting is still honored if present, but with reduced scope (it only applies to federation and identity servers).
author: Patrick Cloke <clokep@users.noreply.github.com> 2020-12-02 11:09:24 -0500
committer: GitHub <noreply@github.com> 2020-12-02 11:09:24 -0500
commit: 30fba6210834a4ecd91badf0c8f3eb278b72e746 (patch)
tree: 3396057c52cf6372d4bec0d32fe08f767f6f5d31 /synapse/push
parent: Correctly handle unpersisted events when calculating auth chain difference. (... (diff)
download: synapse-30fba6210834a4ecd91badf0c8f3eb278b72e746.tar.xz
1 files changed, 1 insertions, 1 deletions
diff --git a/synapse/push/httppusher.py b/synapse/push/httppusher.py
index eff0975b6a..0e845212a9 100644
--- a/synapse/push/httppusher.py
+++ b/synapse/push/httppusher.py
@@ -100,7 +100,7 @@ class HttpPusher:
         if "url" not in self.data:
             raise PusherConfigException("'url' required in data for HTTP pusher")
         self.url = self.data["url"]
-        self.http_client = hs.get_proxied_http_client()
+        self.http_client = hs.get_proxied_blacklisted_http_client()
         self.data_minus_url = {}
         self.data_minus_url.update(self.data)
         del self.data_minus_url["url"]
author	Patrick Cloke <clokep@users.noreply.github.com>	2020-12-02 11:09:24 -0500
committer	GitHub <noreply@github.com>	2020-12-02 11:09:24 -0500
commit	30fba6210834a4ecd91badf0c8f3eb278b72e746 (patch)
tree	3396057c52cf6372d4bec0d32fe08f767f6f5d31 /synapse/push
parent	Correctly handle unpersisted events when calculating auth chain difference. (... (diff)
download	synapse-30fba6210834a4ecd91badf0c8f3eb278b72e746.tar.xz