mirror of
				https://github.com/matrix-org/synapse.git
				synced 2025-10-25 22:32:03 +02:00 
			
		
		
		
	Merge pull request #614 from matrix-org/erikj/alias_delete
Allow alias creators to delete aliases
This commit is contained in:
		
						commit
						dd463e246d
					
				| @ -17,9 +17,9 @@ | ||||
| from twisted.internet import defer | ||||
| from ._base import BaseHandler | ||||
| 
 | ||||
| from synapse.api.errors import SynapseError, Codes, CodeMessageException | ||||
| from synapse.api.errors import SynapseError, Codes, CodeMessageException, AuthError | ||||
| from synapse.api.constants import EventTypes | ||||
| from synapse.types import RoomAlias | ||||
| from synapse.types import RoomAlias, UserID | ||||
| 
 | ||||
| import logging | ||||
| import string | ||||
| @ -38,7 +38,7 @@ class DirectoryHandler(BaseHandler): | ||||
|         ) | ||||
| 
 | ||||
|     @defer.inlineCallbacks | ||||
|     def _create_association(self, room_alias, room_id, servers=None): | ||||
|     def _create_association(self, room_alias, room_id, servers=None, creator=None): | ||||
|         # general association creation for both human users and app services | ||||
| 
 | ||||
|         for wchar in string.whitespace: | ||||
| @ -60,7 +60,8 @@ class DirectoryHandler(BaseHandler): | ||||
|         yield self.store.create_room_alias_association( | ||||
|             room_alias, | ||||
|             room_id, | ||||
|             servers | ||||
|             servers, | ||||
|             creator=creator, | ||||
|         ) | ||||
| 
 | ||||
|     @defer.inlineCallbacks | ||||
| @ -77,7 +78,7 @@ class DirectoryHandler(BaseHandler): | ||||
|                 400, "This alias is reserved by an application service.", | ||||
|                 errcode=Codes.EXCLUSIVE | ||||
|             ) | ||||
|         yield self._create_association(room_alias, room_id, servers) | ||||
|         yield self._create_association(room_alias, room_id, servers, creator=user_id) | ||||
| 
 | ||||
|     @defer.inlineCallbacks | ||||
|     def create_appservice_association(self, service, room_alias, room_id, | ||||
| @ -95,7 +96,11 @@ class DirectoryHandler(BaseHandler): | ||||
|     def delete_association(self, user_id, room_alias): | ||||
|         # association deletion for human users | ||||
| 
 | ||||
|         # TODO Check if server admin | ||||
|         can_delete = yield self._user_can_delete_alias(room_alias, user_id) | ||||
|         if not can_delete: | ||||
|             raise AuthError( | ||||
|                 403, "You don't have permission to delete the alias.", | ||||
|             ) | ||||
| 
 | ||||
|         can_delete = yield self.can_modify_alias( | ||||
|             room_alias, | ||||
| @ -261,3 +266,13 @@ class DirectoryHandler(BaseHandler): | ||||
|                 return | ||||
|         # either no interested services, or no service with an exclusive lock | ||||
|         defer.returnValue(True) | ||||
| 
 | ||||
|     @defer.inlineCallbacks | ||||
|     def _user_can_delete_alias(self, alias, user_id): | ||||
|         creator = yield self.store.get_room_alias_creator(alias.to_string()) | ||||
| 
 | ||||
|         if creator and creator == user_id: | ||||
|             defer.returnValue(True) | ||||
| 
 | ||||
|         is_admin = yield self.auth.is_server_admin(UserID.from_string(user_id)) | ||||
|         defer.returnValue(is_admin) | ||||
|  | ||||
| @ -122,9 +122,6 @@ class ClientDirectoryServer(ClientV1RestServlet): | ||||
| 
 | ||||
|         requester = yield self.auth.get_user_by_req(request) | ||||
|         user = requester.user | ||||
|         is_admin = yield self.auth.is_server_admin(user) | ||||
|         if not is_admin: | ||||
|             raise AuthError(403, "You need to be a server admin") | ||||
| 
 | ||||
|         room_alias = RoomAlias.from_string(room_alias) | ||||
| 
 | ||||
|  | ||||
| @ -70,13 +70,14 @@ class DirectoryStore(SQLBaseStore): | ||||
|         ) | ||||
| 
 | ||||
|     @defer.inlineCallbacks | ||||
|     def create_room_alias_association(self, room_alias, room_id, servers): | ||||
|     def create_room_alias_association(self, room_alias, room_id, servers, creator=None): | ||||
|         """ Creates an associatin between  a room alias and room_id/servers | ||||
| 
 | ||||
|         Args: | ||||
|             room_alias (RoomAlias) | ||||
|             room_id (str) | ||||
|             servers (list) | ||||
|             creator (str): Optional user_id of creator. | ||||
| 
 | ||||
|         Returns: | ||||
|             Deferred | ||||
| @ -87,6 +88,7 @@ class DirectoryStore(SQLBaseStore): | ||||
|                 { | ||||
|                     "room_alias": room_alias.to_string(), | ||||
|                     "room_id": room_id, | ||||
|                     "creator": creator, | ||||
|                 }, | ||||
|                 desc="create_room_alias_association", | ||||
|             ) | ||||
| @ -107,6 +109,17 @@ class DirectoryStore(SQLBaseStore): | ||||
|             ) | ||||
|         self.get_aliases_for_room.invalidate((room_id,)) | ||||
| 
 | ||||
|     def get_room_alias_creator(self, room_alias): | ||||
|         return self._simple_select_one_onecol( | ||||
|             table="room_aliases", | ||||
|             keyvalues={ | ||||
|                 "room_alias": room_alias, | ||||
|             }, | ||||
|             retcol="creator", | ||||
|             desc="get_room_alias_creator", | ||||
|             allow_none=True | ||||
|         ) | ||||
| 
 | ||||
|     @defer.inlineCallbacks | ||||
|     def delete_room_alias(self, room_alias): | ||||
|         room_id = yield self.runInteraction( | ||||
|  | ||||
							
								
								
									
										16
									
								
								synapse/storage/schema/delta/30/alias_creator.sql
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										16
									
								
								synapse/storage/schema/delta/30/alias_creator.sql
									
									
									
									
									
										Normal file
									
								
							| @ -0,0 +1,16 @@ | ||||
| /* Copyright 2016 OpenMarket Ltd | ||||
|  * | ||||
|  * Licensed under the Apache License, Version 2.0 (the "License"); | ||||
|  * you may not use this file except in compliance with the License. | ||||
|  * You may obtain a copy of the License at | ||||
|  * | ||||
|  *    http://www.apache.org/licenses/LICENSE-2.0 | ||||
|  * | ||||
|  * Unless required by applicable law or agreed to in writing, software | ||||
|  * distributed under the License is distributed on an "AS IS" BASIS, | ||||
|  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. | ||||
|  * See the License for the specific language governing permissions and | ||||
|  * limitations under the License. | ||||
|  */ | ||||
| 
 | ||||
| ALTER TABLE room_aliases ADD COLUMN creator TEXT; | ||||
		Loading…
	
	
			
			x
			
			
		
	
		Reference in New Issue
	
	Block a user