MatrixSynapse

Commit Graph

Author	SHA1	Message	Date
Andrew Morgan	e08ea43463	Use the federation blacklist for requests to untrusted Identity Servers (#6000 ) Uses a SimpleHttpClient instance equipped with the federation_ip_range_blacklist list for requests to identity servers provided by user input. Does not use a blacklist when contacting identity servers specified by account_threepid_delegates. The homeserver trusts the latter and we don't want to prevent homeserver admins from specifying delegates that are on internal IP addresses. Fixes #5935	2019-09-23 20:23:20 +01:00

Author

SHA1

Message

Date

Andrew Morgan

e08ea43463

Use the federation blacklist for requests to untrusted Identity Servers (#6000 )

Uses a SimpleHttpClient instance equipped with the federation_ip_range_blacklist list for requests to identity servers provided by user input. Does not use a blacklist when contacting identity servers specified by account_threepid_delegates. The homeserver trusts the latter and we don't want to prevent homeserver admins from specifying delegates that are on internal IP addresses.

Fixes #5935

2019-09-23 20:23:20 +01:00

1 Commits (5d99713854ee0672ba95d72ef13ce1cbcbc781c5)