mirrors/dendrite
1
0
Fork 0
mirror of https://github.com/matrix-org/dendrite.git synced 2026-01-16 18:43:10 -06:00
Code Issues Packages Projects Releases Wiki Activity

Jterzis/pull dendrite fork (#712)

Browse source 
Co-authored-by: Tak Wai Wong <64229756+tak-hntlabs@users.noreply.github.com>
Co-authored-by: Tak Wai Wong <tak@hntlabs.com>
Co-authored-by: John Terzis <john@hntlabs.com>
This commit is contained in:
John Terzis 2022-10-21 17:38:05 -07:00 committed by GitHub
parent e0a3d62205
commit 01b94a9803
1 changed files with 14 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

15
clientapi/routing/routing.go
View file

@ -263,7 +263,7 @@ func Setup(
if !isAllowed {
return util.JSONResponse{
Code: http.StatusUnauthorized,
JSON: jsonerror.Forbidden(""),
JSON: jsonerror.Forbidden("Unauthorised"),
}
}
@ -352,6 +352,19 @@ func Setup(
return util.ErrorResponse(err)
}
isAllowedInviter, _ := authorization.IsAllowed(authz.AuthorizationArgs{
RoomId: vars["roomID"],
UserId: device.UserID,
Permission: authz.PermissionInvite,
})
if !isAllowedInviter {
return util.JSONResponse{
Code: http.StatusUnauthorized,
JSON: jsonerror.Forbidden("Inviter not allowed"),
}
}
return SendInvite(req, userAPI, device, vars["roomID"], cfg, rsAPI, asAPI)
}),
).Methods(http.MethodPost, http.MethodOptions)