disable HS from config

3 files changed, 9 insertions, 0 deletions

diff --git a/synapse/api/auth.py b/synapse/api/auth.py

index d8ebbbc6e8..089f166152 100644
--- a/synapse/api/auth.py
+++ b/synapse/api/auth.py
@@ -782,6 +782,10 @@ class Auth(object):
             error (Error): The error that should be raised if user is to be
             blocked
             """
+        if self.hs.config.hs_disabled:
+            raise AuthError(
+                403, self.hs.config.hs_disabled_message, errcode=Codes.HS_DISABLED
+            )
         if self.hs.config.limit_usage_by_mau is True:
             current_mau = yield self.store.get_monthly_active_count()
             if current_mau >= self.hs.config.max_mau_value:
diff --git a/synapse/api/errors.py b/synapse/api/errors.py

index b41d595059..466240248a 100644
--- a/synapse/api/errors.py
+++ b/synapse/api/errors.py
@@ -56,6 +56,7 @@ class Codes(object):
     CONSENT_NOT_GIVEN = "M_CONSENT_NOT_GIVEN"
     CANNOT_LEAVE_SERVER_NOTICE_ROOM = "M_CANNOT_LEAVE_SERVER_NOTICE_ROOM"
     MAU_LIMIT_EXCEEDED = "M_MAU_LIMIT_EXCEEDED"
+    HS_DISABLED = "M_HS_DISABLED"
 
 
 class CodeMessageException(RuntimeError):
diff --git a/synapse/config/server.py b/synapse/config/server.py

index 8fd2319759..2e1e2f5961 100644
--- a/synapse/config/server.py
+++ b/synapse/config/server.py
@@ -75,6 +75,10 @@ class ServerConfig(Config):
                 "max_mau_value", 0,
             )
 
+        # Options to disable HS
+        self.hs_disabled = config.get("hs_disabled", False)
+        self.hs_disabled_message = config.get("hs_disabled_message", "")
+
         # FIXME: federation_domain_whitelist needs sytests
         self.federation_domain_whitelist = None
         federation_domain_whitelist = config.get(