MatrixSynapse/synapse/handlers
Matthew Hodgson c0e0740bef add options to require an access_token to GET /profile and /publicRooms on CS API (#5083)
This commit adds two config options:

* `restrict_public_rooms_to_local_users`

Requires auth to fetch the public rooms directory through the CS API and disables fetching it through the federation API.

* `require_auth_for_profile_requests`

When set to `true`, requires that requests to `/profile` over the CS API are authenticated, and only returns the user's profile if the requester shares a room with the profile's owner, as per MSC1301.

MSC1301 also specifies a behaviour for federation (only returning the profile if the server asking for it shares a room with the profile's owner), but that's currently really non-trivial to do in a not too expensive way. Next step is writing down a MSC that allows a HS to specify which user sent the profile query. In this implementation, Synapse won't send a profile query over federation if it doesn't believe it already shares a room with the profile's owner, though.

Groups have been intentionally omitted from this commit.
2019-05-08 18:26:56 +01:00
..
__init__.py
_base.py Use flags 2019-03-20 17:40:29 +00:00
account_data.py
account_validity.py Add management endpoints for account validity 2019-04-17 19:34:45 +01:00
acme.py
admin.py
appservice.py
auth.py Allowing specifying IS to use in unbind API. 2019-04-01 15:25:18 +01:00
deactivate_account.py Correctly handle id_server param 2019-04-02 11:20:09 +01:00
device.py Merge pull request #4829 from matrix-org/erikj/device_list_seen_updates 2019-03-08 09:54:54 +00:00
devicemessage.py
directory.py Do checks on aliases for incoming m.room.aliases events (#5128) 2019-05-08 17:01:30 +01:00
e2e_keys.py
e2e_room_keys.py
events.py Fix grammar and document get_current_users_in_room (#4998) 2019-04-03 14:32:20 +01:00
federation.py Collect room-version variations into one place (#4969) 2019-04-01 10:24:38 +01:00
groups_local.py
identity.py Remove threepid binding if id server returns 400/404/501 2019-04-02 11:20:09 +01:00
initial_sync.py Deny peeking into rooms that have been blocked 2019-03-21 11:20:13 +00:00
message.py Do checks on aliases for incoming m.room.aliases events (#5128) 2019-05-08 17:01:30 +01:00
pagination.py
presence.py Fix infinite loop in presence handler 2019-04-26 11:14:49 +01:00
profile.py add options to require an access_token to GET /profile and /publicRooms on CS API (#5083) 2019-05-08 18:26:56 +01:00
read_marker.py
receipts.py Batch up outgoing read-receipts to reduce federation traffic. (#4890) 2019-03-20 16:02:25 +00:00
register.py Allow password providers to bind emails (#4947) 2019-03-28 15:48:07 +00:00
room.py Add some limitations to alias creation 2019-05-02 11:05:11 +01:00
room_list.py Fix grammar and document get_current_users_in_room (#4998) 2019-04-03 14:32:20 +01:00
room_member.py Rate limit early 2019-05-02 15:23:08 +01:00
room_member_worker.py
search.py
set_password.py
state_deltas.py Refactor out state delta handling into its own class (#4917) 2019-03-25 20:37:08 +11:00
sync.py Fix grammar and document get_current_users_in_room (#4998) 2019-04-03 14:32:20 +01:00
typing.py Fix grammar and document get_current_users_in_room (#4998) 2019-04-03 14:32:20 +01:00
user_directory.py Fix grammar and document get_current_users_in_room (#4998) 2019-04-03 14:32:20 +01:00