mirrors/dendrite
1
0
Fork 0
mirror of https://github.com/matrix-org/dendrite.git synced 2026-01-06 13:43:09 -06:00
Code Issues Packages Projects Releases Wiki Activity

Guard endpoint

Browse source
This commit is contained in:
Neil Alexander 2022-04-28 12:33:05 +01:00
parent 87c1dae4ae
commit 7359617c1c
No known key found for this signature in database
GPG key ID: A02A2019A2BB0944
1 changed files with 13 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
clientapi/routing/routing.go
View file

@ -122,6 +122,19 @@ func Setup(
synapseAdminRouter.Handle("/admin/evacuateRoom", synapseAdminRouter.Handle("/admin/evacuateRoom",
httputil.MakeExternalAPI("admin_evacuate_room", func(req *http.Request) util.JSONResponse { httputil.MakeExternalAPI("admin_evacuate_room", func(req *http.Request) util.JSONResponse {
device, err := getSenderDevice(context.Background(), userAPI, cfg)
if err != nil {
return util.JSONResponse{
Code: http.StatusForbidden,
JSON: jsonerror.Forbidden("Couldn't determine if you were an admin or not."),
}
}
if device.AccountType != userapi.AccountTypeAdmin {
return util.JSONResponse{
Code: http.StatusForbidden,
JSON: jsonerror.Forbidden("This API can only be used by admin users."),
}
}
vars, err := httputil.URLDecodeMapValues(mux.Vars(req)) vars, err := httputil.URLDecodeMapValues(mux.Vars(req))
if err != nil { if err != nil {
return util.ErrorResponse(err) return util.ErrorResponse(err)