12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697989910010110210310410510610710810911011111211311411511611711811912012112212312412512612712812913013113213313413513613713813914014114214314414514614714814915015115215315415515615715815916016116216316416516616716816917017117217317417517617717817918018118218318418518618718818919019119219319419519619719819920020120220320420520620720820921021121221321421521621721821922022122222322422522622722822923023123223323423523623723823924024124224324424524624724824925025125225325425525625725825926026126226326426526626726826927027127227327427527627727827928028128228328428528628728828929029129229329429529629729829930030130230330430530630730830931031131231331431531631731831932032132232332432532632732832933033133233333433533633733833934034134234334434534634734834935035135235335435535635735835936036136236336436536636736836937037137237337437537637737837938038138238338438538638738838939039139239339439539639739839940040140240340440540640740840941041141241341441541641741841942042142242342442542642742842943043143243343443543643743843944044144244344444544644744844945045145245345445545645745845946046146246346446546646746846947047147247347447547647747847948048148248348448548648748848949049149249349449549649749849950050150250350450550650750850951051151251351451551651751851952052152252352452552652752852953053153253353453553653753853954054154254354454554654754854955055155255355455555655755855956056156256356456556656756856957057157257357457557657757857958058158258358458558658758858959059159259359459559659759859960060160260360460560660760860961061161261361461561661761861962062162262362462562662762862963063163263363463563663763863964064164264364464564664764864965065165265365465565665765865966066166266366466566666766866967067167267367467567667767867968068168268368468568668768868969069169269369469569669769869970070170270370470570670770870971071171271371471571671771871972072172272372472572672772872973073173273373473573673773873974074174274374474574674774874975075175275375475575675775875976076176276376476576676776876977077177277377477577677777877978078178278378478578678778878979079179279379479579679779879980080180280380480580680780880981081181281381481581681781881982082182282382482582682782882983083183283383483583683783883984084184284384484584684784884985085185285385485585685785885986086186286386486586686786886987087187287387487587687787887988088188288388488588688788888989089189289389489589689789889990090190290390490590690790890991091191291391491591691791891992092192292392492592692792892993093193293393493593693793893994094194294394494594694794894995095195295395495595695795895996096196296396496596696796896997097197297397497597697797897998098198298398498598698798898999099199299399499599699799899910001001100210031004100510061007100810091010101110121013101410151016101710181019102010211022102310241025102610271028102910301031103210331034103510361037103810391040104110421043104410451046104710481049105010511052105310541055105610571058105910601061106210631064106510661067106810691070107110721073107410751076107710781079108010811082108310841085108610871088108910901091109210931094109510961097109810991100110111021103110411051106110711081109111011111112111311141115111611171118111911201121112211231124112511261127112811291130113111321133113411351136113711381139114011411142114311441145114611471148114911501151115211531154115511561157115811591160116111621163116411651166116711681169117011711172117311741175117611771178117911801181118211831184118511861187118811891190119111921193119411951196119711981199120012011202120312041205120612071208120912101211121212131214121512161217121812191220122112221223122412251226122712281229123012311232123312341235123612371238123912401241124212431244124512461247124812491250125112521253125412551256125712581259126012611262126312641265126612671268126912701271127212731274127512761277127812791280128112821283128412851286128712881289129012911292129312941295129612971298129913001301130213031304130513061307130813091310131113121313131413151316131713181319132013211322132313241325132613271328132913301331133213331334133513361337133813391340134113421343134413451346134713481349135013511352135313541355135613571358135913601361136213631364136513661367136813691370137113721373137413751376137713781379138013811382138313841385138613871388138913901391139213931394139513961397139813991400140114021403140414051406140714081409141014111412141314141415141614171418141914201421142214231424142514261427142814291430143114321433143414351436143714381439144014411442144314441445144614471448144914501451145214531454145514561457145814591460146114621463146414651466146714681469147014711472147314741475147614771478147914801481148214831484148514861487148814891490149114921493149414951496149714981499150015011502150315041505150615071508150915101511151215131514151515161517151815191520152115221523152415251526152715281529153015311532153315341535153615371538153915401541154215431544154515461547154815491550155115521553155415551556155715581559156015611562156315641565156615671568156915701571157215731574157515761577157815791580158115821583158415851586158715881589159015911592159315941595159615971598159916001601160216031604160516061607160816091610161116121613161416151616161716181619162016211622162316241625162616271628162916301631163216331634163516361637163816391640164116421643164416451646164716481649165016511652165316541655165616571658165916601661166216631664166516661667166816691670167116721673167416751676167716781679168016811682168316841685168616871688168916901691169216931694169516961697169816991700170117021703170417051706170717081709171017111712171317141715171617171718171917201721172217231724172517261727172817291730173117321733173417351736173717381739174017411742174317441745174617471748174917501751175217531754175517561757175817591760176117621763176417651766176717681769177017711772177317741775177617771778177917801781178217831784178517861787178817891790179117921793179417951796179717981799180018011802180318041805180618071808180918101811181218131814181518161817181818191820182118221823182418251826182718281829183018311832183318341835183618371838183918401841184218431844184518461847184818491850185118521853185418551856185718581859186018611862186318641865186618671868186918701871187218731874187518761877187818791880188118821883188418851886188718881889189018911892189318941895189618971898189919001901190219031904190519061907190819091910191119121913191419151916191719181919192019211922192319241925192619271928192919301931193219331934193519361937193819391940194119421943194419451946194719481949195019511952195319541955195619571958195919601961196219631964196519661967196819691970197119721973197419751976197719781979198019811982198319841985198619871988198919901991199219931994199519961997199819992000200120022003200420052006200720082009201020112012201320142015201620172018201920202021202220232024202520262027202820292030203120322033203420352036203720382039204020412042204320442045204620472048204920502051205220532054205520562057205820592060206120622063206420652066206720682069207020712072207320742075207620772078207920802081208220832084208520862087208820892090209120922093209420952096209720982099210021012102210321042105210621072108210921102111211221132114211521162117211821192120212121222123212421252126212721282129213021312132213321342135213621372138213921402141214221432144214521462147214821492150215121522153215421552156215721582159216021612162216321642165216621672168216921702171217221732174217521762177217821792180218121822183218421852186218721882189219021912192219321942195219621972198219922002201220222032204220522062207220822092210221122122213221422152216221722182219222022212222222322242225222622272228222922302231223222332234223522362237223822392240224122422243224422452246224722482249225022512252225322542255225622572258225922602261226222632264226522662267226822692270227122722273227422752276227722782279228022812282228322842285228622872288228922902291229222932294229522962297229822992300230123022303230423052306230723082309231023112312231323142315231623172318231923202321232223232324232523262327232823292330233123322333233423352336233723382339234023412342234323442345234623472348234923502351235223532354235523562357235823592360236123622363236423652366236723682369237023712372237323742375237623772378237923802381238223832384238523862387238823892390239123922393239423952396239723982399240024012402240324042405240624072408240924102411241224132414241524162417241824192420242124222423242424252426242724282429243024312432243324342435243624372438243924402441244224432444244524462447244824492450245124522453245424552456245724582459246024612462246324642465246624672468246924702471247224732474247524762477247824792480248124822483248424852486248724882489249024912492249324942495249624972498249925002501250225032504250525062507250825092510251125122513251425152516251725182519252025212522252325242525252625272528252925302531253225332534253525362537253825392540254125422543254425452546254725482549255025512552255325542555255625572558255925602561256225632564256525662567256825692570257125722573257425752576257725782579258025812582258325842585258625872588258925902591259225932594259525962597259825992600260126022603260426052606260726082609261026112612261326142615261626172618261926202621262226232624262526262627262826292630263126322633263426352636263726382639264026412642264326442645264626472648264926502651265226532654265526562657265826592660266126622663266426652666266726682669267026712672267326742675267626772678267926802681268226832684268526862687268826892690269126922693269426952696269726982699270027012702270327042705270627072708270927102711271227132714271527162717271827192720272127222723272427252726272727282729273027312732273327342735273627372738273927402741274227432744274527462747274827492750275127522753275427552756275727582759276027612762276327642765276627672768276927702771277227732774277527762777277827792780278127822783278427852786278727882789279027912792279327942795279627972798279928002801280228032804280528062807280828092810281128122813281428152816281728182819282028212822282328242825282628272828282928302831283228332834283528362837283828392840284128422843284428452846284728482849285028512852285328542855285628572858285928602861286228632864286528662867286828692870287128722873287428752876287728782879288028812882288328842885288628872888288928902891289228932894289528962897289828992900290129022903290429052906290729082909291029112912291329142915291629172918291929202921292229232924292529262927292829292930293129322933293429352936293729382939294029412942294329442945294629472948294929502951295229532954295529562957295829592960296129622963296429652966296729682969297029712972297329742975297629772978297929802981298229832984298529862987298829892990299129922993299429952996299729982999300030013002300330043005300630073008300930103011301230133014301530163017301830193020302130223023302430253026302730283029303030313032303330343035303630373038303930403041304230433044304530463047304830493050305130523053305430553056305730583059306030613062306330643065306630673068306930703071307230733074307530763077307830793080308130823083308430853086308730883089309030913092309330943095309630973098309931003101310231033104310531063107310831093110311131123113311431153116311731183119312031213122312331243125312631273128312931303131313231333134313531363137313831393140314131423143314431453146314731483149315031513152315331543155315631573158315931603161316231633164316531663167316831693170317131723173317431753176317731783179318031813182318331843185318631873188318931903191319231933194319531963197319831993200320132023203320432053206320732083209321032113212321332143215321632173218321932203221322232233224322532263227322832293230323132323233323432353236323732383239324032413242324332443245324632473248324932503251325232533254325532563257325832593260326132623263326432653266326732683269327032713272327332743275327632773278327932803281328232833284328532863287328832893290329132923293329432953296329732983299330033013302330333043305330633073308330933103311331233133314331533163317331833193320332133223323332433253326332733283329333033313332333333343335333633373338333933403341334233433344334533463347334833493350335133523353335433553356335733583359336033613362336333643365336633673368336933703371337233733374337533763377337833793380338133823383338433853386338733883389339033913392339333943395339633973398339934003401340234033404340534063407340834093410341134123413341434153416341734183419342034213422342334243425342634273428342934303431343234333434343534363437343834393440344134423443344434453446344734483449345034513452345334543455345634573458345934603461346234633464346534663467346834693470347134723473347434753476347734783479348034813482348334843485348634873488348934903491349234933494349534963497349834993500350135023503350435053506350735083509351035113512351335143515351635173518351935203521352235233524352535263527352835293530353135323533353435353536353735383539354035413542354335443545354635473548354935503551355235533554355535563557355835593560356135623563356435653566356735683569357035713572357335743575357635773578357935803581358235833584358535863587358835893590359135923593359435953596359735983599360036013602360336043605360636073608360936103611361236133614361536163617361836193620362136223623362436253626362736283629363036313632363336343635 |
- # Copyright 2014-2016 OpenMarket Ltd
- # Copyright 2017 Vector Creations Ltd
- # Copyright 2018-2019 New Vector Ltd
- # Copyright 2019 The Matrix.org Foundation C.I.C.
- #
- # Licensed under the Apache License, Version 2.0 (the "License");
- # you may not use this file except in compliance with the License.
- # You may obtain a copy of the License at
- #
- # http://www.apache.org/licenses/LICENSE-2.0
- #
- # Unless required by applicable law or agreed to in writing, software
- # distributed under the License is distributed on an "AS IS" BASIS,
- # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- # See the License for the specific language governing permissions and
- # limitations under the License.
- """Tests REST events for /rooms paths."""
- import json
- from http import HTTPStatus
- from typing import Any, Dict, Iterable, List, Optional, Tuple, Union
- from unittest.mock import Mock, call, patch
- from urllib import parse as urlparse
- from parameterized import param, parameterized
- from typing_extensions import Literal
- from twisted.test.proto_helpers import MemoryReactor
- import synapse.rest.admin
- from synapse.api.constants import (
- EduTypes,
- EventContentFields,
- EventTypes,
- Membership,
- PublicRoomsFilterFields,
- RoomTypes,
- )
- from synapse.api.errors import Codes, HttpResponseException
- from synapse.appservice import ApplicationService
- from synapse.events import EventBase
- from synapse.events.snapshot import EventContext
- from synapse.handlers.pagination import PurgeStatus
- from synapse.rest import admin
- from synapse.rest.client import account, directory, login, profile, register, room, sync
- from synapse.server import HomeServer
- from synapse.types import JsonDict, RoomAlias, UserID, create_requester
- from synapse.util import Clock
- from synapse.util.stringutils import random_string
- from tests import unittest
- from tests.http.server._base import make_request_with_cancellation_test
- from tests.storage.test_stream import PaginationTestCase
- from tests.test_utils import make_awaitable
- from tests.test_utils.event_injection import create_event
- from tests.unittest import override_config
- PATH_PREFIX = b"/_matrix/client/api/v1"
- class RoomBase(unittest.HomeserverTestCase):
- rmcreator_id: Optional[str] = None
- servlets = [room.register_servlets, room.register_deprecated_servlets]
- def make_homeserver(self, reactor: MemoryReactor, clock: Clock) -> HomeServer:
- self.hs = self.setup_test_homeserver(
- "red",
- )
- self.hs.get_federation_handler = Mock() # type: ignore[assignment]
- self.hs.get_federation_handler.return_value.maybe_backfill = Mock(
- return_value=make_awaitable(None)
- )
- async def _insert_client_ip(*args: Any, **kwargs: Any) -> None:
- return None
- self.hs.get_datastores().main.insert_client_ip = _insert_client_ip # type: ignore[assignment]
- return self.hs
- class RoomPermissionsTestCase(RoomBase):
- """Tests room permissions."""
- user_id = "@sid1:red"
- rmcreator_id = "@notme:red"
- def prepare(self, reactor: MemoryReactor, clock: Clock, hs: HomeServer) -> None:
- self.helper.auth_user_id = self.rmcreator_id
- # create some rooms under the name rmcreator_id
- self.uncreated_rmid = "!aa:test"
- self.created_rmid = self.helper.create_room_as(
- self.rmcreator_id, is_public=False
- )
- self.created_public_rmid = self.helper.create_room_as(
- self.rmcreator_id, is_public=True
- )
- # send a message in one of the rooms
- self.created_rmid_msg_path = (
- "rooms/%s/send/m.room.message/a1" % (self.created_rmid)
- ).encode("ascii")
- channel = self.make_request(
- "PUT", self.created_rmid_msg_path, b'{"msgtype":"m.text","body":"test msg"}'
- )
- self.assertEqual(HTTPStatus.OK, channel.code, channel.result)
- # set topic for public room
- channel = self.make_request(
- "PUT",
- ("rooms/%s/state/m.room.topic" % self.created_public_rmid).encode("ascii"),
- b'{"topic":"Public Room Topic"}',
- )
- self.assertEqual(HTTPStatus.OK, channel.code, channel.result)
- # auth as user_id now
- self.helper.auth_user_id = self.user_id
- def test_can_do_action(self) -> None:
- msg_content = b'{"msgtype":"m.text","body":"hello"}'
- seq = iter(range(100))
- def send_msg_path() -> str:
- return "/rooms/%s/send/m.room.message/mid%s" % (
- self.created_rmid,
- str(next(seq)),
- )
- # send message in uncreated room, expect 403
- channel = self.make_request(
- "PUT",
- "/rooms/%s/send/m.room.message/mid2" % (self.uncreated_rmid,),
- msg_content,
- )
- self.assertEqual(HTTPStatus.FORBIDDEN, channel.code, msg=channel.result["body"])
- # send message in created room not joined (no state), expect 403
- channel = self.make_request("PUT", send_msg_path(), msg_content)
- self.assertEqual(HTTPStatus.FORBIDDEN, channel.code, msg=channel.result["body"])
- # send message in created room and invited, expect 403
- self.helper.invite(
- room=self.created_rmid, src=self.rmcreator_id, targ=self.user_id
- )
- channel = self.make_request("PUT", send_msg_path(), msg_content)
- self.assertEqual(HTTPStatus.FORBIDDEN, channel.code, msg=channel.result["body"])
- # send message in created room and joined, expect 200
- self.helper.join(room=self.created_rmid, user=self.user_id)
- channel = self.make_request("PUT", send_msg_path(), msg_content)
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- # send message in created room and left, expect 403
- self.helper.leave(room=self.created_rmid, user=self.user_id)
- channel = self.make_request("PUT", send_msg_path(), msg_content)
- self.assertEqual(HTTPStatus.FORBIDDEN, channel.code, msg=channel.result["body"])
- def test_topic_perms(self) -> None:
- topic_content = b'{"topic":"My Topic Name"}'
- topic_path = "/rooms/%s/state/m.room.topic" % self.created_rmid
- # set/get topic in uncreated room, expect 403
- channel = self.make_request(
- "PUT", "/rooms/%s/state/m.room.topic" % self.uncreated_rmid, topic_content
- )
- self.assertEqual(HTTPStatus.FORBIDDEN, channel.code, msg=channel.result["body"])
- channel = self.make_request(
- "GET", "/rooms/%s/state/m.room.topic" % self.uncreated_rmid
- )
- self.assertEqual(HTTPStatus.FORBIDDEN, channel.code, msg=channel.result["body"])
- # set/get topic in created PRIVATE room not joined, expect 403
- channel = self.make_request("PUT", topic_path, topic_content)
- self.assertEqual(HTTPStatus.FORBIDDEN, channel.code, msg=channel.result["body"])
- channel = self.make_request("GET", topic_path)
- self.assertEqual(HTTPStatus.FORBIDDEN, channel.code, msg=channel.result["body"])
- # set topic in created PRIVATE room and invited, expect 403
- self.helper.invite(
- room=self.created_rmid, src=self.rmcreator_id, targ=self.user_id
- )
- channel = self.make_request("PUT", topic_path, topic_content)
- self.assertEqual(HTTPStatus.FORBIDDEN, channel.code, msg=channel.result["body"])
- # get topic in created PRIVATE room and invited, expect 403
- channel = self.make_request("GET", topic_path)
- self.assertEqual(HTTPStatus.FORBIDDEN, channel.code, msg=channel.result["body"])
- # set/get topic in created PRIVATE room and joined, expect 200
- self.helper.join(room=self.created_rmid, user=self.user_id)
- # Only room ops can set topic by default
- self.helper.auth_user_id = self.rmcreator_id
- channel = self.make_request("PUT", topic_path, topic_content)
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- self.helper.auth_user_id = self.user_id
- channel = self.make_request("GET", topic_path)
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- self.assert_dict(json.loads(topic_content.decode("utf8")), channel.json_body)
- # set/get topic in created PRIVATE room and left, expect 403
- self.helper.leave(room=self.created_rmid, user=self.user_id)
- channel = self.make_request("PUT", topic_path, topic_content)
- self.assertEqual(HTTPStatus.FORBIDDEN, channel.code, msg=channel.result["body"])
- channel = self.make_request("GET", topic_path)
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- # get topic in PUBLIC room, not joined, expect 403
- channel = self.make_request(
- "GET", "/rooms/%s/state/m.room.topic" % self.created_public_rmid
- )
- self.assertEqual(HTTPStatus.FORBIDDEN, channel.code, msg=channel.result["body"])
- # set topic in PUBLIC room, not joined, expect 403
- channel = self.make_request(
- "PUT",
- "/rooms/%s/state/m.room.topic" % self.created_public_rmid,
- topic_content,
- )
- self.assertEqual(HTTPStatus.FORBIDDEN, channel.code, msg=channel.result["body"])
- def _test_get_membership(
- self, room: str, members: Iterable = frozenset(), expect_code: int = 200
- ) -> None:
- for member in members:
- path = "/rooms/%s/state/m.room.member/%s" % (room, member)
- channel = self.make_request("GET", path)
- self.assertEqual(expect_code, channel.code)
- def test_membership_basic_room_perms(self) -> None:
- # === room does not exist ===
- room = self.uncreated_rmid
- # get membership of self, get membership of other, uncreated room
- # expect all 403s
- self._test_get_membership(
- members=[self.user_id, self.rmcreator_id], room=room, expect_code=403
- )
- # trying to invite people to this room should 403
- self.helper.invite(
- room=room, src=self.user_id, targ=self.rmcreator_id, expect_code=403
- )
- # set [invite/join/left] of self, set [invite/join/left] of other,
- # expect all 404s because room doesn't exist on any server
- for usr in [self.user_id, self.rmcreator_id]:
- self.helper.join(room=room, user=usr, expect_code=404)
- self.helper.leave(room=room, user=usr, expect_code=404)
- def test_membership_private_room_perms(self) -> None:
- room = self.created_rmid
- # get membership of self, get membership of other, private room + invite
- # expect all 403s
- self.helper.invite(room=room, src=self.rmcreator_id, targ=self.user_id)
- self._test_get_membership(
- members=[self.user_id, self.rmcreator_id], room=room, expect_code=403
- )
- # get membership of self, get membership of other, private room + joined
- # expect all 200s
- self.helper.join(room=room, user=self.user_id)
- self._test_get_membership(
- members=[self.user_id, self.rmcreator_id], room=room, expect_code=200
- )
- # get membership of self, get membership of other, private room + left
- # expect all 200s
- self.helper.leave(room=room, user=self.user_id)
- self._test_get_membership(
- members=[self.user_id, self.rmcreator_id], room=room, expect_code=200
- )
- def test_membership_public_room_perms(self) -> None:
- room = self.created_public_rmid
- # get membership of self, get membership of other, public room + invite
- # expect 403
- self.helper.invite(room=room, src=self.rmcreator_id, targ=self.user_id)
- self._test_get_membership(
- members=[self.user_id, self.rmcreator_id], room=room, expect_code=403
- )
- # get membership of self, get membership of other, public room + joined
- # expect all 200s
- self.helper.join(room=room, user=self.user_id)
- self._test_get_membership(
- members=[self.user_id, self.rmcreator_id], room=room, expect_code=200
- )
- # get membership of self, get membership of other, public room + left
- # expect 200.
- self.helper.leave(room=room, user=self.user_id)
- self._test_get_membership(
- members=[self.user_id, self.rmcreator_id], room=room, expect_code=200
- )
- def test_invited_permissions(self) -> None:
- room = self.created_rmid
- self.helper.invite(room=room, src=self.rmcreator_id, targ=self.user_id)
- # set [invite/join/left] of other user, expect 403s
- self.helper.invite(
- room=room, src=self.user_id, targ=self.rmcreator_id, expect_code=403
- )
- self.helper.change_membership(
- room=room,
- src=self.user_id,
- targ=self.rmcreator_id,
- membership=Membership.JOIN,
- expect_code=HTTPStatus.FORBIDDEN,
- )
- self.helper.change_membership(
- room=room,
- src=self.user_id,
- targ=self.rmcreator_id,
- membership=Membership.LEAVE,
- expect_code=HTTPStatus.FORBIDDEN,
- )
- def test_joined_permissions(self) -> None:
- room = self.created_rmid
- self.helper.invite(room=room, src=self.rmcreator_id, targ=self.user_id)
- self.helper.join(room=room, user=self.user_id)
- # set invited of self, expect 403
- self.helper.invite(
- room=room, src=self.user_id, targ=self.user_id, expect_code=403
- )
- # set joined of self, expect 200 (NOOP)
- self.helper.join(room=room, user=self.user_id)
- other = "@burgundy:red"
- # set invited of other, expect 200
- self.helper.invite(room=room, src=self.user_id, targ=other, expect_code=200)
- # set joined of other, expect 403
- self.helper.change_membership(
- room=room,
- src=self.user_id,
- targ=other,
- membership=Membership.JOIN,
- expect_code=HTTPStatus.FORBIDDEN,
- )
- # set left of other, expect 403
- self.helper.change_membership(
- room=room,
- src=self.user_id,
- targ=other,
- membership=Membership.LEAVE,
- expect_code=HTTPStatus.FORBIDDEN,
- )
- # set left of self, expect 200
- self.helper.leave(room=room, user=self.user_id)
- def test_leave_permissions(self) -> None:
- room = self.created_rmid
- self.helper.invite(room=room, src=self.rmcreator_id, targ=self.user_id)
- self.helper.join(room=room, user=self.user_id)
- self.helper.leave(room=room, user=self.user_id)
- # set [invite/join/left] of self, set [invite/join/left] of other,
- # expect all 403s
- for usr in [self.user_id, self.rmcreator_id]:
- self.helper.change_membership(
- room=room,
- src=self.user_id,
- targ=usr,
- membership=Membership.INVITE,
- expect_code=HTTPStatus.FORBIDDEN,
- )
- self.helper.change_membership(
- room=room,
- src=self.user_id,
- targ=usr,
- membership=Membership.JOIN,
- expect_code=HTTPStatus.FORBIDDEN,
- )
- # It is always valid to LEAVE if you've already left (currently.)
- self.helper.change_membership(
- room=room,
- src=self.user_id,
- targ=self.rmcreator_id,
- membership=Membership.LEAVE,
- expect_code=HTTPStatus.FORBIDDEN,
- )
- # tests the "from banned" line from the table in https://spec.matrix.org/unstable/client-server-api/#mroommember
- def test_member_event_from_ban(self) -> None:
- room = self.created_rmid
- self.helper.invite(room=room, src=self.rmcreator_id, targ=self.user_id)
- self.helper.join(room=room, user=self.user_id)
- other = "@burgundy:red"
- # User cannot ban other since they do not have required power level
- self.helper.change_membership(
- room=room,
- src=self.user_id,
- targ=other,
- membership=Membership.BAN,
- expect_code=HTTPStatus.FORBIDDEN, # expect failure
- expect_errcode=Codes.FORBIDDEN,
- )
- # Admin bans other
- self.helper.change_membership(
- room=room,
- src=self.rmcreator_id,
- targ=other,
- membership=Membership.BAN,
- expect_code=HTTPStatus.OK,
- )
- # from ban to invite: Must never happen.
- self.helper.change_membership(
- room=room,
- src=self.rmcreator_id,
- targ=other,
- membership=Membership.INVITE,
- expect_code=HTTPStatus.FORBIDDEN, # expect failure
- expect_errcode=Codes.BAD_STATE,
- )
- # from ban to join: Must never happen.
- self.helper.change_membership(
- room=room,
- src=other,
- targ=other,
- membership=Membership.JOIN,
- expect_code=HTTPStatus.FORBIDDEN, # expect failure
- expect_errcode=Codes.BAD_STATE,
- )
- # from ban to ban: No change.
- self.helper.change_membership(
- room=room,
- src=self.rmcreator_id,
- targ=other,
- membership=Membership.BAN,
- expect_code=HTTPStatus.OK,
- )
- # from ban to knock: Must never happen.
- self.helper.change_membership(
- room=room,
- src=self.rmcreator_id,
- targ=other,
- membership=Membership.KNOCK,
- expect_code=HTTPStatus.FORBIDDEN, # expect failure
- expect_errcode=Codes.BAD_STATE,
- )
- # User cannot unban other since they do not have required power level
- self.helper.change_membership(
- room=room,
- src=self.user_id,
- targ=other,
- membership=Membership.LEAVE,
- expect_code=HTTPStatus.FORBIDDEN, # expect failure
- expect_errcode=Codes.FORBIDDEN,
- )
- # from ban to leave: User was unbanned.
- self.helper.change_membership(
- room=room,
- src=self.rmcreator_id,
- targ=other,
- membership=Membership.LEAVE,
- expect_code=HTTPStatus.OK,
- )
- class RoomStateTestCase(RoomBase):
- """Tests /rooms/$room_id/state."""
- user_id = "@sid1:red"
- def test_get_state_cancellation(self) -> None:
- """Test cancellation of a `/rooms/$room_id/state` request."""
- room_id = self.helper.create_room_as(self.user_id)
- channel = make_request_with_cancellation_test(
- "test_state_cancellation",
- self.reactor,
- self.site,
- "GET",
- "/rooms/%s/state" % room_id,
- )
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- self.assertCountEqual(
- [state_event["type"] for state_event in channel.json_list],
- {
- "m.room.create",
- "m.room.power_levels",
- "m.room.join_rules",
- "m.room.member",
- "m.room.history_visibility",
- },
- )
- def test_get_state_event_cancellation(self) -> None:
- """Test cancellation of a `/rooms/$room_id/state/$event_type` request."""
- room_id = self.helper.create_room_as(self.user_id)
- channel = make_request_with_cancellation_test(
- "test_state_cancellation",
- self.reactor,
- self.site,
- "GET",
- "/rooms/%s/state/m.room.member/%s" % (room_id, self.user_id),
- )
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- self.assertEqual(channel.json_body, {"membership": "join"})
- class RoomsMemberListTestCase(RoomBase):
- """Tests /rooms/$room_id/members/list REST events."""
- servlets = RoomBase.servlets + [sync.register_servlets]
- user_id = "@sid1:red"
- def test_get_member_list(self) -> None:
- room_id = self.helper.create_room_as(self.user_id)
- channel = self.make_request("GET", "/rooms/%s/members" % room_id)
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- def test_get_member_list_no_room(self) -> None:
- channel = self.make_request("GET", "/rooms/roomdoesnotexist/members")
- self.assertEqual(HTTPStatus.FORBIDDEN, channel.code, msg=channel.result["body"])
- def test_get_member_list_no_permission(self) -> None:
- room_id = self.helper.create_room_as("@some_other_guy:red")
- channel = self.make_request("GET", "/rooms/%s/members" % room_id)
- self.assertEqual(HTTPStatus.FORBIDDEN, channel.code, msg=channel.result["body"])
- def test_get_member_list_no_permission_with_at_token(self) -> None:
- """
- Tests that a stranger to the room cannot get the member list
- (in the case that they use an at token).
- """
- room_id = self.helper.create_room_as("@someone.else:red")
- # first sync to get an at token
- channel = self.make_request("GET", "/sync")
- self.assertEqual(HTTPStatus.OK, channel.code)
- sync_token = channel.json_body["next_batch"]
- # check that permission is denied for @sid1:red to get the
- # memberships of @someone.else:red's room.
- channel = self.make_request(
- "GET",
- f"/rooms/{room_id}/members?at={sync_token}",
- )
- self.assertEqual(HTTPStatus.FORBIDDEN, channel.code, msg=channel.result["body"])
- def test_get_member_list_no_permission_former_member(self) -> None:
- """
- Tests that a former member of the room can not get the member list.
- """
- # create a room, invite the user and the user joins
- room_id = self.helper.create_room_as("@alice:red")
- self.helper.invite(room_id, "@alice:red", self.user_id)
- self.helper.join(room_id, self.user_id)
- # check that the user can see the member list to start with
- channel = self.make_request("GET", "/rooms/%s/members" % room_id)
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- # ban the user
- self.helper.change_membership(room_id, "@alice:red", self.user_id, "ban")
- # check the user can no longer see the member list
- channel = self.make_request("GET", "/rooms/%s/members" % room_id)
- self.assertEqual(HTTPStatus.FORBIDDEN, channel.code, msg=channel.result["body"])
- def test_get_member_list_no_permission_former_member_with_at_token(self) -> None:
- """
- Tests that a former member of the room can not get the member list
- (in the case that they use an at token).
- """
- # create a room, invite the user and the user joins
- room_id = self.helper.create_room_as("@alice:red")
- self.helper.invite(room_id, "@alice:red", self.user_id)
- self.helper.join(room_id, self.user_id)
- # sync to get an at token
- channel = self.make_request("GET", "/sync")
- self.assertEqual(HTTPStatus.OK, channel.code)
- sync_token = channel.json_body["next_batch"]
- # check that the user can see the member list to start with
- channel = self.make_request(
- "GET", "/rooms/%s/members?at=%s" % (room_id, sync_token)
- )
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- # ban the user (Note: the user is actually allowed to see this event and
- # state so that they know they're banned!)
- self.helper.change_membership(room_id, "@alice:red", self.user_id, "ban")
- # invite a third user and let them join
- self.helper.invite(room_id, "@alice:red", "@bob:red")
- self.helper.join(room_id, "@bob:red")
- # now, with the original user, sync again to get a new at token
- channel = self.make_request("GET", "/sync")
- self.assertEqual(HTTPStatus.OK, channel.code)
- sync_token = channel.json_body["next_batch"]
- # check the user can no longer see the updated member list
- channel = self.make_request(
- "GET", "/rooms/%s/members?at=%s" % (room_id, sync_token)
- )
- self.assertEqual(HTTPStatus.FORBIDDEN, channel.code, msg=channel.result["body"])
- def test_get_member_list_mixed_memberships(self) -> None:
- room_creator = "@some_other_guy:red"
- room_id = self.helper.create_room_as(room_creator)
- room_path = "/rooms/%s/members" % room_id
- self.helper.invite(room=room_id, src=room_creator, targ=self.user_id)
- # can't see list if you're just invited.
- channel = self.make_request("GET", room_path)
- self.assertEqual(HTTPStatus.FORBIDDEN, channel.code, msg=channel.result["body"])
- self.helper.join(room=room_id, user=self.user_id)
- # can see list now joined
- channel = self.make_request("GET", room_path)
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- self.helper.leave(room=room_id, user=self.user_id)
- # can see old list once left
- channel = self.make_request("GET", room_path)
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- def test_get_member_list_cancellation(self) -> None:
- """Test cancellation of a `/rooms/$room_id/members` request."""
- room_id = self.helper.create_room_as(self.user_id)
- channel = make_request_with_cancellation_test(
- "test_get_member_list_cancellation",
- self.reactor,
- self.site,
- "GET",
- "/rooms/%s/members" % room_id,
- )
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- self.assertEqual(len(channel.json_body["chunk"]), 1)
- self.assertLessEqual(
- {
- "content": {"membership": "join"},
- "room_id": room_id,
- "sender": self.user_id,
- "state_key": self.user_id,
- "type": "m.room.member",
- "user_id": self.user_id,
- }.items(),
- channel.json_body["chunk"][0].items(),
- )
- def test_get_member_list_with_at_token_cancellation(self) -> None:
- """Test cancellation of a `/rooms/$room_id/members?at=<sync token>` request."""
- room_id = self.helper.create_room_as(self.user_id)
- # first sync to get an at token
- channel = self.make_request("GET", "/sync")
- self.assertEqual(HTTPStatus.OK, channel.code)
- sync_token = channel.json_body["next_batch"]
- channel = make_request_with_cancellation_test(
- "test_get_member_list_with_at_token_cancellation",
- self.reactor,
- self.site,
- "GET",
- "/rooms/%s/members?at=%s" % (room_id, sync_token),
- )
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- self.assertEqual(len(channel.json_body["chunk"]), 1)
- self.assertLessEqual(
- {
- "content": {"membership": "join"},
- "room_id": room_id,
- "sender": self.user_id,
- "state_key": self.user_id,
- "type": "m.room.member",
- "user_id": self.user_id,
- }.items(),
- channel.json_body["chunk"][0].items(),
- )
- class RoomsCreateTestCase(RoomBase):
- """Tests /rooms and /rooms/$room_id REST events."""
- user_id = "@sid1:red"
- def test_post_room_no_keys(self) -> None:
- # POST with no config keys, expect new room id
- channel = self.make_request("POST", "/createRoom", "{}")
- self.assertEqual(HTTPStatus.OK, channel.code, channel.result)
- self.assertTrue("room_id" in channel.json_body)
- assert channel.resource_usage is not None
- self.assertEqual(32, channel.resource_usage.db_txn_count)
- def test_post_room_initial_state(self) -> None:
- # POST with initial_state config key, expect new room id
- channel = self.make_request(
- "POST",
- "/createRoom",
- b'{"initial_state":[{"type": "m.bridge", "content": {}}]}',
- )
- self.assertEqual(HTTPStatus.OK, channel.code, channel.result)
- self.assertTrue("room_id" in channel.json_body)
- assert channel.resource_usage is not None
- self.assertEqual(34, channel.resource_usage.db_txn_count)
- def test_post_room_visibility_key(self) -> None:
- # POST with visibility config key, expect new room id
- channel = self.make_request("POST", "/createRoom", b'{"visibility":"private"}')
- self.assertEqual(HTTPStatus.OK, channel.code)
- self.assertTrue("room_id" in channel.json_body)
- def test_post_room_custom_key(self) -> None:
- # POST with custom config keys, expect new room id
- channel = self.make_request("POST", "/createRoom", b'{"custom":"stuff"}')
- self.assertEqual(HTTPStatus.OK, channel.code)
- self.assertTrue("room_id" in channel.json_body)
- def test_post_room_known_and_unknown_keys(self) -> None:
- # POST with custom + known config keys, expect new room id
- channel = self.make_request(
- "POST", "/createRoom", b'{"visibility":"private","custom":"things"}'
- )
- self.assertEqual(HTTPStatus.OK, channel.code)
- self.assertTrue("room_id" in channel.json_body)
- def test_post_room_invalid_content(self) -> None:
- # POST with invalid content / paths, expect 400
- channel = self.make_request("POST", "/createRoom", b'{"visibili')
- self.assertEqual(HTTPStatus.BAD_REQUEST, channel.code)
- channel = self.make_request("POST", "/createRoom", b'["hello"]')
- self.assertEqual(HTTPStatus.BAD_REQUEST, channel.code)
- def test_post_room_invitees_invalid_mxid(self) -> None:
- # POST with invalid invitee, see https://github.com/matrix-org/synapse/issues/4088
- # Note the trailing space in the MXID here!
- channel = self.make_request(
- "POST", "/createRoom", b'{"invite":["@alice:example.com "]}'
- )
- self.assertEqual(HTTPStatus.BAD_REQUEST, channel.code)
- @unittest.override_config({"rc_invites": {"per_room": {"burst_count": 3}}})
- def test_post_room_invitees_ratelimit(self) -> None:
- """Test that invites sent when creating a room are ratelimited by a RateLimiter,
- which ratelimits them correctly, including by not limiting when the requester is
- exempt from ratelimiting.
- """
- # Build the request's content. We use local MXIDs because invites over federation
- # are more difficult to mock.
- content = {
- "invite": [
- "@alice1:red",
- "@alice2:red",
- "@alice3:red",
- "@alice4:red",
- ]
- }
- # Test that the invites are correctly ratelimited.
- channel = self.make_request("POST", "/createRoom", content)
- self.assertEqual(HTTPStatus.BAD_REQUEST, channel.code)
- self.assertEqual(
- "Cannot invite so many users at once",
- channel.json_body["error"],
- )
- # Add the current user to the ratelimit overrides, allowing them no ratelimiting.
- self.get_success(
- self.hs.get_datastores().main.set_ratelimit_for_user(self.user_id, 0, 0)
- )
- # Test that the invites aren't ratelimited anymore.
- channel = self.make_request("POST", "/createRoom", content)
- self.assertEqual(HTTPStatus.OK, channel.code)
- def test_spam_checker_may_join_room_deprecated(self) -> None:
- """Tests that the user_may_join_room spam checker callback is correctly bypassed
- when creating a new room.
- In this test, we use the deprecated API in which callbacks return a bool.
- """
- async def user_may_join_room(
- mxid: str,
- room_id: str,
- is_invite: bool,
- ) -> bool:
- return False
- join_mock = Mock(side_effect=user_may_join_room)
- self.hs.get_module_api_callbacks().spam_checker._user_may_join_room_callbacks.append(
- join_mock
- )
- channel = self.make_request(
- "POST",
- "/createRoom",
- {},
- )
- self.assertEqual(channel.code, HTTPStatus.OK, channel.json_body)
- self.assertEqual(join_mock.call_count, 0)
- def test_spam_checker_may_join_room(self) -> None:
- """Tests that the user_may_join_room spam checker callback is correctly bypassed
- when creating a new room.
- In this test, we use the more recent API in which callbacks return a `Union[Codes, Literal["NOT_SPAM"]]`.
- """
- async def user_may_join_room_codes(
- mxid: str,
- room_id: str,
- is_invite: bool,
- ) -> Codes:
- return Codes.CONSENT_NOT_GIVEN
- join_mock = Mock(side_effect=user_may_join_room_codes)
- self.hs.get_module_api_callbacks().spam_checker._user_may_join_room_callbacks.append(
- join_mock
- )
- channel = self.make_request(
- "POST",
- "/createRoom",
- {},
- )
- self.assertEqual(channel.code, HTTPStatus.OK, channel.json_body)
- self.assertEqual(join_mock.call_count, 0)
- # Now change the return value of the callback to deny any join. Since we're
- # creating the room, despite the return value, we should be able to join.
- async def user_may_join_room_tuple(
- mxid: str,
- room_id: str,
- is_invite: bool,
- ) -> Tuple[Codes, dict]:
- return Codes.INCOMPATIBLE_ROOM_VERSION, {}
- join_mock.side_effect = user_may_join_room_tuple
- channel = self.make_request(
- "POST",
- "/createRoom",
- {},
- )
- self.assertEqual(channel.code, HTTPStatus.OK, channel.json_body)
- self.assertEqual(join_mock.call_count, 0)
- def _create_basic_room(self) -> Tuple[int, object]:
- """
- Tries to create a basic room and returns the response code.
- """
- channel = self.make_request(
- "POST",
- "/createRoom",
- {},
- )
- return channel.code, channel.json_body
- @override_config(
- {
- "rc_message": {"per_second": 0.2, "burst_count": 10},
- }
- )
- def test_room_creation_ratelimiting(self) -> None:
- """
- Regression test for #14312, where ratelimiting was made too strict.
- Clients should be able to create 10 rooms in a row
- without hitting rate limits, using default rate limit config.
- (We override rate limiting config back to its default value.)
- To ensure we don't make ratelimiting too generous accidentally,
- also check that we can't create an 11th room.
- """
- for _ in range(10):
- code, json_body = self._create_basic_room()
- self.assertEqual(code, HTTPStatus.OK, json_body)
- # The 6th room hits the rate limit.
- code, json_body = self._create_basic_room()
- self.assertEqual(code, HTTPStatus.TOO_MANY_REQUESTS, json_body)
- class RoomTopicTestCase(RoomBase):
- """Tests /rooms/$room_id/topic REST events."""
- user_id = "@sid1:red"
- def prepare(self, reactor: MemoryReactor, clock: Clock, hs: HomeServer) -> None:
- # create the room
- self.room_id = self.helper.create_room_as(self.user_id)
- self.path = "/rooms/%s/state/m.room.topic" % (self.room_id,)
- def test_invalid_puts(self) -> None:
- # missing keys or invalid json
- channel = self.make_request("PUT", self.path, "{}")
- self.assertEqual(
- HTTPStatus.BAD_REQUEST, channel.code, msg=channel.result["body"]
- )
- channel = self.make_request("PUT", self.path, '{"_name":"bo"}')
- self.assertEqual(
- HTTPStatus.BAD_REQUEST, channel.code, msg=channel.result["body"]
- )
- channel = self.make_request("PUT", self.path, '{"nao')
- self.assertEqual(
- HTTPStatus.BAD_REQUEST, channel.code, msg=channel.result["body"]
- )
- channel = self.make_request(
- "PUT", self.path, '[{"_name":"bo"},{"_name":"jill"}]'
- )
- self.assertEqual(
- HTTPStatus.BAD_REQUEST, channel.code, msg=channel.result["body"]
- )
- channel = self.make_request("PUT", self.path, "text only")
- self.assertEqual(
- HTTPStatus.BAD_REQUEST, channel.code, msg=channel.result["body"]
- )
- channel = self.make_request("PUT", self.path, "")
- self.assertEqual(
- HTTPStatus.BAD_REQUEST, channel.code, msg=channel.result["body"]
- )
- # valid key, wrong type
- content = '{"topic":["Topic name"]}'
- channel = self.make_request("PUT", self.path, content)
- self.assertEqual(
- HTTPStatus.BAD_REQUEST, channel.code, msg=channel.result["body"]
- )
- def test_rooms_topic(self) -> None:
- # nothing should be there
- channel = self.make_request("GET", self.path)
- self.assertEqual(HTTPStatus.NOT_FOUND, channel.code, msg=channel.result["body"])
- # valid put
- content = '{"topic":"Topic name"}'
- channel = self.make_request("PUT", self.path, content)
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- # valid get
- channel = self.make_request("GET", self.path)
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- self.assert_dict(json.loads(content), channel.json_body)
- def test_rooms_topic_with_extra_keys(self) -> None:
- # valid put with extra keys
- content = '{"topic":"Seasons","subtopic":"Summer"}'
- channel = self.make_request("PUT", self.path, content)
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- # valid get
- channel = self.make_request("GET", self.path)
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- self.assert_dict(json.loads(content), channel.json_body)
- class RoomMemberStateTestCase(RoomBase):
- """Tests /rooms/$room_id/members/$user_id/state REST events."""
- user_id = "@sid1:red"
- def prepare(self, reactor: MemoryReactor, clock: Clock, hs: HomeServer) -> None:
- self.room_id = self.helper.create_room_as(self.user_id)
- def test_invalid_puts(self) -> None:
- path = "/rooms/%s/state/m.room.member/%s" % (self.room_id, self.user_id)
- # missing keys or invalid json
- channel = self.make_request("PUT", path, "{}")
- self.assertEqual(
- HTTPStatus.BAD_REQUEST, channel.code, msg=channel.result["body"]
- )
- channel = self.make_request("PUT", path, '{"_name":"bo"}')
- self.assertEqual(
- HTTPStatus.BAD_REQUEST, channel.code, msg=channel.result["body"]
- )
- channel = self.make_request("PUT", path, '{"nao')
- self.assertEqual(
- HTTPStatus.BAD_REQUEST, channel.code, msg=channel.result["body"]
- )
- channel = self.make_request("PUT", path, b'[{"_name":"bo"},{"_name":"jill"}]')
- self.assertEqual(
- HTTPStatus.BAD_REQUEST, channel.code, msg=channel.result["body"]
- )
- channel = self.make_request("PUT", path, "text only")
- self.assertEqual(
- HTTPStatus.BAD_REQUEST, channel.code, msg=channel.result["body"]
- )
- channel = self.make_request("PUT", path, "")
- self.assertEqual(
- HTTPStatus.BAD_REQUEST, channel.code, msg=channel.result["body"]
- )
- # valid keys, wrong types
- content = '{"membership":["%s","%s","%s"]}' % (
- Membership.INVITE,
- Membership.JOIN,
- Membership.LEAVE,
- )
- channel = self.make_request("PUT", path, content.encode("ascii"))
- self.assertEqual(
- HTTPStatus.BAD_REQUEST, channel.code, msg=channel.result["body"]
- )
- def test_rooms_members_self(self) -> None:
- path = "/rooms/%s/state/m.room.member/%s" % (
- urlparse.quote(self.room_id),
- self.user_id,
- )
- # valid join message (NOOP since we made the room)
- content = '{"membership":"%s"}' % Membership.JOIN
- channel = self.make_request("PUT", path, content.encode("ascii"))
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- channel = self.make_request("GET", path, content=b"")
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- expected_response = {"membership": Membership.JOIN}
- self.assertEqual(expected_response, channel.json_body)
- def test_rooms_members_other(self) -> None:
- self.other_id = "@zzsid1:red"
- path = "/rooms/%s/state/m.room.member/%s" % (
- urlparse.quote(self.room_id),
- self.other_id,
- )
- # valid invite message
- content = '{"membership":"%s"}' % Membership.INVITE
- channel = self.make_request("PUT", path, content)
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- channel = self.make_request("GET", path, content=b"")
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- self.assertEqual(json.loads(content), channel.json_body)
- def test_rooms_members_other_custom_keys(self) -> None:
- self.other_id = "@zzsid1:red"
- path = "/rooms/%s/state/m.room.member/%s" % (
- urlparse.quote(self.room_id),
- self.other_id,
- )
- # valid invite message with custom key
- content = '{"membership":"%s","invite_text":"%s"}' % (
- Membership.INVITE,
- "Join us!",
- )
- channel = self.make_request("PUT", path, content)
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- channel = self.make_request("GET", path, content=b"")
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- self.assertEqual(json.loads(content), channel.json_body)
- class RoomInviteRatelimitTestCase(RoomBase):
- user_id = "@sid1:red"
- servlets = [
- admin.register_servlets,
- profile.register_servlets,
- room.register_servlets,
- ]
- @unittest.override_config(
- {"rc_invites": {"per_room": {"per_second": 0.5, "burst_count": 3}}}
- )
- def test_invites_by_rooms_ratelimit(self) -> None:
- """Tests that invites in a room are actually rate-limited."""
- room_id = self.helper.create_room_as(self.user_id)
- for i in range(3):
- self.helper.invite(room_id, self.user_id, "@user-%s:red" % (i,))
- self.helper.invite(room_id, self.user_id, "@user-4:red", expect_code=429)
- @unittest.override_config(
- {"rc_invites": {"per_user": {"per_second": 0.5, "burst_count": 3}}}
- )
- def test_invites_by_users_ratelimit(self) -> None:
- """Tests that invites to a specific user are actually rate-limited."""
- for _ in range(3):
- room_id = self.helper.create_room_as(self.user_id)
- self.helper.invite(room_id, self.user_id, "@other-users:red")
- room_id = self.helper.create_room_as(self.user_id)
- self.helper.invite(room_id, self.user_id, "@other-users:red", expect_code=429)
- class RoomJoinTestCase(RoomBase):
- servlets = [
- admin.register_servlets,
- login.register_servlets,
- room.register_servlets,
- ]
- def prepare(self, reactor: MemoryReactor, clock: Clock, hs: HomeServer) -> None:
- self.user1 = self.register_user("thomas", "hackme")
- self.tok1 = self.login("thomas", "hackme")
- self.user2 = self.register_user("teresa", "hackme")
- self.tok2 = self.login("teresa", "hackme")
- self.room1 = self.helper.create_room_as(room_creator=self.user1, tok=self.tok1)
- self.room2 = self.helper.create_room_as(room_creator=self.user1, tok=self.tok1)
- self.room3 = self.helper.create_room_as(room_creator=self.user1, tok=self.tok1)
- def test_spam_checker_may_join_room_deprecated(self) -> None:
- """Tests that the user_may_join_room spam checker callback is correctly called
- and blocks room joins when needed.
- This test uses the deprecated API, in which callbacks return booleans.
- """
- # Register a dummy callback. Make it allow all room joins for now.
- return_value = True
- async def user_may_join_room(
- userid: str,
- room_id: str,
- is_invited: bool,
- ) -> bool:
- return return_value
- # `spec` argument is needed for this function mock to have `__qualname__`, which
- # is needed for `Measure` metrics buried in SpamChecker.
- callback_mock = Mock(side_effect=user_may_join_room, spec=lambda *x: None)
- self.hs.get_module_api_callbacks().spam_checker._user_may_join_room_callbacks.append(
- callback_mock
- )
- # Join a first room, without being invited to it.
- self.helper.join(self.room1, self.user2, tok=self.tok2)
- # Check that the callback was called with the right arguments.
- expected_call_args = (
- (
- self.user2,
- self.room1,
- False,
- ),
- )
- self.assertEqual(
- callback_mock.call_args,
- expected_call_args,
- callback_mock.call_args,
- )
- # Join a second room, this time with an invite for it.
- self.helper.invite(self.room2, self.user1, self.user2, tok=self.tok1)
- self.helper.join(self.room2, self.user2, tok=self.tok2)
- # Check that the callback was called with the right arguments.
- expected_call_args = (
- (
- self.user2,
- self.room2,
- True,
- ),
- )
- self.assertEqual(
- callback_mock.call_args,
- expected_call_args,
- callback_mock.call_args,
- )
- # Now make the callback deny all room joins, and check that a join actually fails.
- return_value = False
- self.helper.join(
- self.room3, self.user2, expect_code=HTTPStatus.FORBIDDEN, tok=self.tok2
- )
- def test_spam_checker_may_join_room(self) -> None:
- """Tests that the user_may_join_room spam checker callback is correctly called
- and blocks room joins when needed.
- This test uses the latest API to this day, in which callbacks return `NOT_SPAM` or `Codes`.
- """
- # Register a dummy callback. Make it allow all room joins for now.
- return_value: Union[
- Literal["NOT_SPAM"], Tuple[Codes, dict], Codes
- ] = synapse.module_api.NOT_SPAM
- async def user_may_join_room(
- userid: str,
- room_id: str,
- is_invited: bool,
- ) -> Union[Literal["NOT_SPAM"], Tuple[Codes, dict], Codes]:
- return return_value
- # `spec` argument is needed for this function mock to have `__qualname__`, which
- # is needed for `Measure` metrics buried in SpamChecker.
- callback_mock = Mock(side_effect=user_may_join_room, spec=lambda *x: None)
- self.hs.get_module_api_callbacks().spam_checker._user_may_join_room_callbacks.append(
- callback_mock
- )
- # Join a first room, without being invited to it.
- self.helper.join(self.room1, self.user2, tok=self.tok2)
- # Check that the callback was called with the right arguments.
- expected_call_args = (
- (
- self.user2,
- self.room1,
- False,
- ),
- )
- self.assertEqual(
- callback_mock.call_args,
- expected_call_args,
- callback_mock.call_args,
- )
- # Join a second room, this time with an invite for it.
- self.helper.invite(self.room2, self.user1, self.user2, tok=self.tok1)
- self.helper.join(self.room2, self.user2, tok=self.tok2)
- # Check that the callback was called with the right arguments.
- expected_call_args = (
- (
- self.user2,
- self.room2,
- True,
- ),
- )
- self.assertEqual(
- callback_mock.call_args,
- expected_call_args,
- callback_mock.call_args,
- )
- # Now make the callback deny all room joins, and check that a join actually fails.
- # We pick an arbitrary Codes rather than the default `Codes.FORBIDDEN`.
- return_value = Codes.CONSENT_NOT_GIVEN
- self.helper.invite(self.room3, self.user1, self.user2, tok=self.tok1)
- self.helper.join(
- self.room3,
- self.user2,
- expect_code=HTTPStatus.FORBIDDEN,
- expect_errcode=return_value,
- tok=self.tok2,
- )
- # Now make the callback deny all room joins, and check that a join actually fails.
- # As above, with the experimental extension that lets us return dictionaries.
- return_value = (Codes.BAD_ALIAS, {"another_field": "12345"})
- self.helper.join(
- self.room3,
- self.user2,
- expect_code=HTTPStatus.FORBIDDEN,
- expect_errcode=return_value[0],
- tok=self.tok2,
- expect_additional_fields=return_value[1],
- )
- class RoomAppserviceTsParamTestCase(unittest.HomeserverTestCase):
- servlets = [
- room.register_servlets,
- synapse.rest.admin.register_servlets,
- register.register_servlets,
- ]
- def prepare(self, reactor: MemoryReactor, clock: Clock, hs: HomeServer) -> None:
- self.appservice_user, _ = self.register_appservice_user(
- "as_user_potato", self.appservice.token
- )
- # Create a room as the appservice user.
- args = {
- "access_token": self.appservice.token,
- "user_id": self.appservice_user,
- }
- channel = self.make_request(
- "POST",
- f"/_matrix/client/r0/createRoom?{urlparse.urlencode(args)}",
- content={"visibility": "public"},
- )
- assert channel.code == 200
- self.room = channel.json_body["room_id"]
- self.main_store = self.hs.get_datastores().main
- def make_homeserver(self, reactor: MemoryReactor, clock: Clock) -> HomeServer:
- config = self.default_config()
- self.appservice = ApplicationService(
- token="i_am_an_app_service",
- id="1234",
- namespaces={"users": [{"regex": r"@as_user.*", "exclusive": True}]},
- # Note: this user does not have to match the regex above
- sender="@as_main:test",
- )
- mock_load_appservices = Mock(return_value=[self.appservice])
- with patch(
- "synapse.storage.databases.main.appservice.load_appservices",
- mock_load_appservices,
- ):
- hs = self.setup_test_homeserver(config=config)
- return hs
- def test_send_event_ts(self) -> None:
- """Test sending a non-state event with a custom timestamp."""
- ts = 1
- url_params = {
- "user_id": self.appservice_user,
- "ts": ts,
- }
- channel = self.make_request(
- "PUT",
- path=f"/_matrix/client/r0/rooms/{self.room}/send/m.room.message/1234?"
- + urlparse.urlencode(url_params),
- content={"body": "test", "msgtype": "m.text"},
- access_token=self.appservice.token,
- )
- self.assertEqual(channel.code, 200, channel.json_body)
- event_id = channel.json_body["event_id"]
- # Ensure the event was persisted with the correct timestamp.
- res = self.get_success(self.main_store.get_event(event_id))
- self.assertEquals(ts, res.origin_server_ts)
- def test_send_state_event_ts(self) -> None:
- """Test sending a state event with a custom timestamp."""
- ts = 1
- url_params = {
- "user_id": self.appservice_user,
- "ts": ts,
- }
- channel = self.make_request(
- "PUT",
- path=f"/_matrix/client/r0/rooms/{self.room}/state/m.room.name?"
- + urlparse.urlencode(url_params),
- content={"name": "test"},
- access_token=self.appservice.token,
- )
- self.assertEqual(channel.code, 200, channel.json_body)
- event_id = channel.json_body["event_id"]
- # Ensure the event was persisted with the correct timestamp.
- res = self.get_success(self.main_store.get_event(event_id))
- self.assertEquals(ts, res.origin_server_ts)
- def test_send_membership_event_ts(self) -> None:
- """Test sending a membership event with a custom timestamp."""
- ts = 1
- url_params = {
- "user_id": self.appservice_user,
- "ts": ts,
- }
- channel = self.make_request(
- "PUT",
- path=f"/_matrix/client/r0/rooms/{self.room}/state/m.room.member/{self.appservice_user}?"
- + urlparse.urlencode(url_params),
- content={"membership": "join", "display_name": "test"},
- access_token=self.appservice.token,
- )
- self.assertEqual(channel.code, 200, channel.json_body)
- event_id = channel.json_body["event_id"]
- # Ensure the event was persisted with the correct timestamp.
- res = self.get_success(self.main_store.get_event(event_id))
- self.assertEquals(ts, res.origin_server_ts)
- class RoomJoinRatelimitTestCase(RoomBase):
- user_id = "@sid1:red"
- servlets = [
- admin.register_servlets,
- profile.register_servlets,
- room.register_servlets,
- ]
- def prepare(self, reactor: MemoryReactor, clock: Clock, hs: HomeServer) -> None:
- super().prepare(reactor, clock, hs)
- # profile changes expect that the user is actually registered
- user = UserID.from_string(self.user_id)
- self.register_user(user.localpart, "supersecretpassword")
- @unittest.override_config(
- {"rc_joins": {"local": {"per_second": 0.5, "burst_count": 3}}}
- )
- def test_join_local_ratelimit(self) -> None:
- """Tests that local joins are actually rate-limited."""
- # Create 4 rooms
- room_ids = [
- self.helper.create_room_as(self.user_id, is_public=True) for _ in range(4)
- ]
- joiner_user_id = self.register_user("joiner", "secret")
- # Now make a new user try to join some of them.
- # The user can join 3 rooms
- for room_id in room_ids[0:3]:
- self.helper.join(room_id, joiner_user_id)
- # But the user cannot join a 4th room
- self.helper.join(
- room_ids[3], joiner_user_id, expect_code=HTTPStatus.TOO_MANY_REQUESTS
- )
- @unittest.override_config(
- {"rc_joins": {"local": {"per_second": 0.5, "burst_count": 3}}}
- )
- def test_join_local_ratelimit_profile_change(self) -> None:
- """Tests that sending a profile update into all of the user's joined rooms isn't
- rate-limited by the rate-limiter on joins."""
- # Create and join as many rooms as the rate-limiting config allows in a second.
- room_ids = [
- self.helper.create_room_as(self.user_id),
- self.helper.create_room_as(self.user_id),
- self.helper.create_room_as(self.user_id),
- ]
- # Let some time for the rate-limiter to forget about our multi-join.
- self.reactor.advance(2)
- # Add one to make sure we're joined to more rooms than the config allows us to
- # join in a second.
- room_ids.append(self.helper.create_room_as(self.user_id))
- # Update the display name for the user.
- path = "/_matrix/client/r0/profile/%s/displayname" % self.user_id
- channel = self.make_request("PUT", path, {"displayname": "John Doe"})
- self.assertEqual(channel.code, HTTPStatus.OK, channel.json_body)
- # Check that all the rooms have been sent a profile update into.
- for room_id in room_ids:
- path = "/_matrix/client/r0/rooms/%s/state/m.room.member/%s" % (
- room_id,
- self.user_id,
- )
- channel = self.make_request("GET", path)
- self.assertEqual(channel.code, 200)
- self.assertIn("displayname", channel.json_body)
- self.assertEqual(channel.json_body["displayname"], "John Doe")
- @unittest.override_config(
- {"rc_joins": {"local": {"per_second": 0.5, "burst_count": 3}}}
- )
- def test_join_local_ratelimit_idempotent(self) -> None:
- """Tests that the room join endpoints remain idempotent despite rate-limiting
- on room joins."""
- room_id = self.helper.create_room_as(self.user_id)
- # Let's test both paths to be sure.
- paths_to_test = [
- "/_matrix/client/r0/rooms/%s/join",
- "/_matrix/client/r0/join/%s",
- ]
- for path in paths_to_test:
- # Make sure we send more requests than the rate-limiting config would allow
- # if all of these requests ended up joining the user to a room.
- for _ in range(4):
- channel = self.make_request("POST", path % room_id, {})
- self.assertEqual(channel.code, 200)
- @unittest.override_config(
- {
- "rc_joins": {"local": {"per_second": 0.5, "burst_count": 3}},
- "auto_join_rooms": ["#room:red", "#room2:red", "#room3:red", "#room4:red"],
- "autocreate_auto_join_rooms": True,
- },
- )
- def test_autojoin_rooms(self) -> None:
- user_id = self.register_user("testuser", "password")
- # Check that the new user successfully joined the four rooms
- rooms = self.get_success(
- self.hs.get_datastores().main.get_rooms_for_user(user_id)
- )
- self.assertEqual(len(rooms), 4)
- class RoomMessagesTestCase(RoomBase):
- """Tests /rooms/$room_id/messages/$user_id/$msg_id REST events."""
- user_id = "@sid1:red"
- def prepare(self, reactor: MemoryReactor, clock: Clock, hs: HomeServer) -> None:
- self.room_id = self.helper.create_room_as(self.user_id)
- def test_invalid_puts(self) -> None:
- path = "/rooms/%s/send/m.room.message/mid1" % (urlparse.quote(self.room_id))
- # missing keys or invalid json
- channel = self.make_request("PUT", path, b"{}")
- self.assertEqual(
- HTTPStatus.BAD_REQUEST, channel.code, msg=channel.result["body"]
- )
- channel = self.make_request("PUT", path, b'{"_name":"bo"}')
- self.assertEqual(
- HTTPStatus.BAD_REQUEST, channel.code, msg=channel.result["body"]
- )
- channel = self.make_request("PUT", path, b'{"nao')
- self.assertEqual(
- HTTPStatus.BAD_REQUEST, channel.code, msg=channel.result["body"]
- )
- channel = self.make_request("PUT", path, b'[{"_name":"bo"},{"_name":"jill"}]')
- self.assertEqual(
- HTTPStatus.BAD_REQUEST, channel.code, msg=channel.result["body"]
- )
- channel = self.make_request("PUT", path, b"text only")
- self.assertEqual(
- HTTPStatus.BAD_REQUEST, channel.code, msg=channel.result["body"]
- )
- channel = self.make_request("PUT", path, b"")
- self.assertEqual(
- HTTPStatus.BAD_REQUEST, channel.code, msg=channel.result["body"]
- )
- def test_rooms_messages_sent(self) -> None:
- path = "/rooms/%s/send/m.room.message/mid1" % (urlparse.quote(self.room_id))
- content = b'{"body":"test","msgtype":{"type":"a"}}'
- channel = self.make_request("PUT", path, content)
- self.assertEqual(
- HTTPStatus.BAD_REQUEST, channel.code, msg=channel.result["body"]
- )
- # custom message types
- content = b'{"body":"test","msgtype":"test.custom.text"}'
- channel = self.make_request("PUT", path, content)
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- # m.text message type
- path = "/rooms/%s/send/m.room.message/mid2" % (urlparse.quote(self.room_id))
- content = b'{"body":"test2","msgtype":"m.text"}'
- channel = self.make_request("PUT", path, content)
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- @parameterized.expand(
- [
- # Allow
- param(
- name="NOT_SPAM",
- value="NOT_SPAM",
- expected_code=HTTPStatus.OK,
- expected_fields={},
- ),
- param(
- name="False",
- value=False,
- expected_code=HTTPStatus.OK,
- expected_fields={},
- ),
- # Block
- param(
- name="scalene string",
- value="ANY OTHER STRING",
- expected_code=HTTPStatus.FORBIDDEN,
- expected_fields={"errcode": "M_FORBIDDEN"},
- ),
- param(
- name="True",
- value=True,
- expected_code=HTTPStatus.FORBIDDEN,
- expected_fields={"errcode": "M_FORBIDDEN"},
- ),
- param(
- name="Code",
- value=Codes.LIMIT_EXCEEDED,
- expected_code=HTTPStatus.FORBIDDEN,
- expected_fields={"errcode": "M_LIMIT_EXCEEDED"},
- ),
- param(
- name="Tuple",
- value=(Codes.SERVER_NOT_TRUSTED, {"additional_field": "12345"}),
- expected_code=HTTPStatus.FORBIDDEN,
- expected_fields={
- "errcode": "M_SERVER_NOT_TRUSTED",
- "additional_field": "12345",
- },
- ),
- ]
- )
- def test_spam_checker_check_event_for_spam(
- self,
- name: str,
- value: Union[str, bool, Codes, Tuple[Codes, JsonDict]],
- expected_code: int,
- expected_fields: dict,
- ) -> None:
- class SpamCheck:
- mock_return_value: Union[
- str, bool, Codes, Tuple[Codes, JsonDict], bool
- ] = "NOT_SPAM"
- mock_content: Optional[JsonDict] = None
- async def check_event_for_spam(
- self,
- event: synapse.events.EventBase,
- ) -> Union[str, Codes, Tuple[Codes, JsonDict], bool]:
- self.mock_content = event.content
- return self.mock_return_value
- spam_checker = SpamCheck()
- self.hs.get_module_api_callbacks().spam_checker._check_event_for_spam_callbacks.append(
- spam_checker.check_event_for_spam
- )
- # Inject `value` as mock_return_value
- spam_checker.mock_return_value = value
- path = "/rooms/%s/send/m.room.message/check_event_for_spam_%s" % (
- urlparse.quote(self.room_id),
- urlparse.quote(name),
- )
- body = "test-%s" % name
- content = '{"body":"%s","msgtype":"m.text"}' % body
- channel = self.make_request("PUT", path, content)
- # Check that the callback has witnessed the correct event.
- self.assertIsNotNone(spam_checker.mock_content)
- if (
- spam_checker.mock_content is not None
- ): # Checked just above, but mypy doesn't know about that.
- self.assertEqual(
- spam_checker.mock_content["body"], body, spam_checker.mock_content
- )
- # Check that we have the correct result.
- self.assertEqual(expected_code, channel.code, msg=channel.result["body"])
- for expected_key, expected_value in expected_fields.items():
- self.assertEqual(
- channel.json_body.get(expected_key, None),
- expected_value,
- "Field %s absent or invalid " % expected_key,
- )
- class RoomPowerLevelOverridesTestCase(RoomBase):
- """Tests that the power levels can be overridden with server config."""
- user_id = "@sid1:red"
- servlets = [
- admin.register_servlets,
- room.register_servlets,
- login.register_servlets,
- ]
- def prepare(self, reactor: MemoryReactor, clock: Clock, hs: HomeServer) -> None:
- self.admin_user_id = self.register_user("admin", "pass")
- self.admin_access_token = self.login("admin", "pass")
- def power_levels(self, room_id: str) -> Dict[str, Any]:
- return self.helper.get_state(
- room_id, "m.room.power_levels", self.admin_access_token
- )
- def test_default_power_levels_with_room_override(self) -> None:
- """
- Create a room, providing power level overrides.
- Confirm that the room's power levels reflect the overrides.
- See https://github.com/matrix-org/matrix-spec/issues/492
- - currently we overwrite each key of power_level_content_override
- completely.
- """
- room_id = self.helper.create_room_as(
- self.user_id,
- extra_content={
- "power_level_content_override": {"events": {"custom.event": 0}}
- },
- )
- self.assertEqual(
- {
- "custom.event": 0,
- },
- self.power_levels(room_id)["events"],
- )
- @unittest.override_config(
- {
- "default_power_level_content_override": {
- "public_chat": {"events": {"custom.event": 0}},
- }
- },
- )
- def test_power_levels_with_server_override(self) -> None:
- """
- With a server configured to modify the room-level defaults,
- Create a room, without providing any extra power level overrides.
- Confirm that the room's power levels reflect the server-level overrides.
- Similar to https://github.com/matrix-org/matrix-spec/issues/492,
- we overwrite each key of power_level_content_override completely.
- """
- room_id = self.helper.create_room_as(self.user_id)
- self.assertEqual(
- {
- "custom.event": 0,
- },
- self.power_levels(room_id)["events"],
- )
- @unittest.override_config(
- {
- "default_power_level_content_override": {
- "public_chat": {
- "events": {"server.event": 0},
- "ban": 13,
- },
- }
- },
- )
- def test_power_levels_with_server_and_room_overrides(self) -> None:
- """
- With a server configured to modify the room-level defaults,
- create a room, providing different overrides.
- Confirm that the room's power levels reflect both overrides, and
- choose the room overrides where they clash.
- """
- room_id = self.helper.create_room_as(
- self.user_id,
- extra_content={
- "power_level_content_override": {"events": {"room.event": 0}}
- },
- )
- # Room override wins over server config
- self.assertEqual(
- {"room.event": 0},
- self.power_levels(room_id)["events"],
- )
- # But where there is no room override, server config wins
- self.assertEqual(13, self.power_levels(room_id)["ban"])
- class RoomPowerLevelOverridesInPracticeTestCase(RoomBase):
- """
- Tests that we can really do various otherwise-prohibited actions
- based on overriding the power levels in config.
- """
- user_id = "@sid1:red"
- def test_creator_can_post_state_event(self) -> None:
- # Given I am the creator of a room
- room_id = self.helper.create_room_as(self.user_id)
- # When I send a state event
- path = "/rooms/{room_id}/state/custom.event/my_state_key".format(
- room_id=urlparse.quote(room_id),
- )
- channel = self.make_request("PUT", path, "{}")
- # Then I am allowed
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- def test_normal_user_can_not_post_state_event(self) -> None:
- # Given I am a normal member of a room
- room_id = self.helper.create_room_as("@some_other_guy:red")
- self.helper.join(room=room_id, user=self.user_id)
- # When I send a state event
- path = "/rooms/{room_id}/state/custom.event/my_state_key".format(
- room_id=urlparse.quote(room_id),
- )
- channel = self.make_request("PUT", path, "{}")
- # Then I am not allowed because state events require PL>=50
- self.assertEqual(HTTPStatus.FORBIDDEN, channel.code, msg=channel.result["body"])
- self.assertEqual(
- "You don't have permission to post that to the room. "
- "user_level (0) < send_level (50)",
- channel.json_body["error"],
- )
- @unittest.override_config(
- {
- "default_power_level_content_override": {
- "public_chat": {"events": {"custom.event": 0}},
- }
- },
- )
- def test_with_config_override_normal_user_can_post_state_event(self) -> None:
- # Given the server has config allowing normal users to post my event type,
- # and I am a normal member of a room
- room_id = self.helper.create_room_as("@some_other_guy:red")
- self.helper.join(room=room_id, user=self.user_id)
- # When I send a state event
- path = "/rooms/{room_id}/state/custom.event/my_state_key".format(
- room_id=urlparse.quote(room_id),
- )
- channel = self.make_request("PUT", path, "{}")
- # Then I am allowed
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.result["body"])
- @unittest.override_config(
- {
- "default_power_level_content_override": {
- "public_chat": {"events": {"custom.event": 0}},
- }
- },
- )
- def test_any_room_override_defeats_config_override(self) -> None:
- # Given the server has config allowing normal users to post my event type
- # And I am a normal member of a room
- # But the room was created with special permissions
- extra_content: Dict[str, Any] = {
- "power_level_content_override": {"events": {}},
- }
- room_id = self.helper.create_room_as(
- "@some_other_guy:red", extra_content=extra_content
- )
- self.helper.join(room=room_id, user=self.user_id)
- # When I send a state event
- path = "/rooms/{room_id}/state/custom.event/my_state_key".format(
- room_id=urlparse.quote(room_id),
- )
- channel = self.make_request("PUT", path, "{}")
- # Then I am not allowed
- self.assertEqual(HTTPStatus.FORBIDDEN, channel.code, msg=channel.result["body"])
- @unittest.override_config(
- {
- "default_power_level_content_override": {
- "public_chat": {"events": {"custom.event": 0}},
- }
- },
- )
- def test_specific_room_override_defeats_config_override(self) -> None:
- # Given the server has config allowing normal users to post my event type,
- # and I am a normal member of a room,
- # but the room was created with special permissions for this event type
- extra_content = {
- "power_level_content_override": {"events": {"custom.event": 1}},
- }
- room_id = self.helper.create_room_as(
- "@some_other_guy:red", extra_content=extra_content
- )
- self.helper.join(room=room_id, user=self.user_id)
- # When I send a state event
- path = "/rooms/{room_id}/state/custom.event/my_state_key".format(
- room_id=urlparse.quote(room_id),
- )
- channel = self.make_request("PUT", path, "{}")
- # Then I am not allowed
- self.assertEqual(HTTPStatus.FORBIDDEN, channel.code, msg=channel.result["body"])
- self.assertEqual(
- "You don't have permission to post that to the room. "
- + "user_level (0) < send_level (1)",
- channel.json_body["error"],
- )
- @unittest.override_config(
- {
- "default_power_level_content_override": {
- "public_chat": {"events": {"custom.event": 0}},
- "private_chat": None,
- "trusted_private_chat": None,
- }
- },
- )
- def test_config_override_applies_only_to_specific_preset(self) -> None:
- # Given the server has config for public_chats,
- # and I am a normal member of a private_chat room
- room_id = self.helper.create_room_as("@some_other_guy:red", is_public=False)
- self.helper.invite(room=room_id, src="@some_other_guy:red", targ=self.user_id)
- self.helper.join(room=room_id, user=self.user_id)
- # When I send a state event
- path = "/rooms/{room_id}/state/custom.event/my_state_key".format(
- room_id=urlparse.quote(room_id),
- )
- channel = self.make_request("PUT", path, "{}")
- # Then I am not allowed because the public_chat config does not
- # affect this room, because this room is a private_chat
- self.assertEqual(HTTPStatus.FORBIDDEN, channel.code, msg=channel.result["body"])
- self.assertEqual(
- "You don't have permission to post that to the room. "
- + "user_level (0) < send_level (50)",
- channel.json_body["error"],
- )
- @unittest.override_config(
- {
- "default_power_level_content_override": {
- "private_chat": {
- "events": {
- "m.room.avatar": 50,
- "m.room.canonical_alias": 50,
- "m.room.encryption": 999,
- "m.room.history_visibility": 100,
- "m.room.name": 50,
- "m.room.power_levels": 100,
- "m.room.server_acl": 100,
- "m.room.tombstone": 100,
- },
- "events_default": 0,
- },
- }
- },
- )
- def test_config_override_blocks_encrypted_room(self) -> None:
- # Given the server has config for private_chats,
- # When I attempt to create an encrypted private_chat room
- channel = self.make_request(
- "POST",
- "/createRoom",
- '{"creation_content": {"m.federate": false},"name": "Secret Private Room","preset": "private_chat","initial_state": [{"type": "m.room.encryption","state_key": "","content": {"algorithm": "m.megolm.v1.aes-sha2"}}]}',
- )
- # Then I am not allowed because the required power level is unattainable
- self.assertEqual(HTTPStatus.FORBIDDEN, channel.code, msg=channel.result["body"])
- self.assertEqual(
- "You cannot create an encrypted room. "
- + "user_level (100) < send_level (999)",
- channel.json_body["error"],
- )
- class RoomInitialSyncTestCase(RoomBase):
- """Tests /rooms/$room_id/initialSync."""
- user_id = "@sid1:red"
- def prepare(self, reactor: MemoryReactor, clock: Clock, hs: HomeServer) -> None:
- # create the room
- self.room_id = self.helper.create_room_as(self.user_id)
- def test_initial_sync(self) -> None:
- channel = self.make_request("GET", "/rooms/%s/initialSync" % self.room_id)
- self.assertEqual(HTTPStatus.OK, channel.code)
- self.assertEqual(self.room_id, channel.json_body["room_id"])
- self.assertEqual("join", channel.json_body["membership"])
- # Room state is easier to assert on if we unpack it into a dict
- state: JsonDict = {}
- for event in channel.json_body["state"]:
- if "state_key" not in event:
- continue
- t = event["type"]
- if t not in state:
- state[t] = []
- state[t].append(event)
- self.assertTrue("m.room.create" in state)
- self.assertTrue("messages" in channel.json_body)
- self.assertTrue("chunk" in channel.json_body["messages"])
- self.assertTrue("end" in channel.json_body["messages"])
- self.assertTrue("presence" in channel.json_body)
- presence_by_user = {
- e["content"]["user_id"]: e for e in channel.json_body["presence"]
- }
- self.assertTrue(self.user_id in presence_by_user)
- self.assertEqual(EduTypes.PRESENCE, presence_by_user[self.user_id]["type"])
- class RoomMessageListTestCase(RoomBase):
- """Tests /rooms/$room_id/messages REST events."""
- user_id = "@sid1:red"
- def prepare(self, reactor: MemoryReactor, clock: Clock, hs: HomeServer) -> None:
- self.room_id = self.helper.create_room_as(self.user_id)
- def test_topo_token_is_accepted(self) -> None:
- token = "t1-0_0_0_0_0_0_0_0_0_0"
- channel = self.make_request(
- "GET", "/rooms/%s/messages?access_token=x&from=%s" % (self.room_id, token)
- )
- self.assertEqual(HTTPStatus.OK, channel.code)
- self.assertTrue("start" in channel.json_body)
- self.assertEqual(token, channel.json_body["start"])
- self.assertTrue("chunk" in channel.json_body)
- self.assertTrue("end" in channel.json_body)
- def test_stream_token_is_accepted_for_fwd_pagianation(self) -> None:
- token = "s0_0_0_0_0_0_0_0_0_0"
- channel = self.make_request(
- "GET", "/rooms/%s/messages?access_token=x&from=%s" % (self.room_id, token)
- )
- self.assertEqual(HTTPStatus.OK, channel.code)
- self.assertTrue("start" in channel.json_body)
- self.assertEqual(token, channel.json_body["start"])
- self.assertTrue("chunk" in channel.json_body)
- self.assertTrue("end" in channel.json_body)
- def test_room_messages_purge(self) -> None:
- store = self.hs.get_datastores().main
- pagination_handler = self.hs.get_pagination_handler()
- # Send a first message in the room, which will be removed by the purge.
- first_event_id = self.helper.send(self.room_id, "message 1")["event_id"]
- first_token = self.get_success(
- store.get_topological_token_for_event(first_event_id)
- )
- first_token_str = self.get_success(first_token.to_string(store))
- # Send a second message in the room, which won't be removed, and which we'll
- # use as the marker to purge events before.
- second_event_id = self.helper.send(self.room_id, "message 2")["event_id"]
- second_token = self.get_success(
- store.get_topological_token_for_event(second_event_id)
- )
- second_token_str = self.get_success(second_token.to_string(store))
- # Send a third event in the room to ensure we don't fall under any edge case
- # due to our marker being the latest forward extremity in the room.
- self.helper.send(self.room_id, "message 3")
- # Check that we get the first and second message when querying /messages.
- channel = self.make_request(
- "GET",
- "/rooms/%s/messages?access_token=x&from=%s&dir=b&filter=%s"
- % (
- self.room_id,
- second_token_str,
- json.dumps({"types": [EventTypes.Message]}),
- ),
- )
- self.assertEqual(channel.code, HTTPStatus.OK, channel.json_body)
- chunk = channel.json_body["chunk"]
- self.assertEqual(len(chunk), 2, [event["content"] for event in chunk])
- # Purge every event before the second event.
- purge_id = random_string(16)
- pagination_handler._purges_by_id[purge_id] = PurgeStatus()
- self.get_success(
- pagination_handler._purge_history(
- purge_id=purge_id,
- room_id=self.room_id,
- token=second_token_str,
- delete_local_events=True,
- )
- )
- # Check that we only get the second message through /message now that the first
- # has been purged.
- channel = self.make_request(
- "GET",
- "/rooms/%s/messages?access_token=x&from=%s&dir=b&filter=%s"
- % (
- self.room_id,
- second_token_str,
- json.dumps({"types": [EventTypes.Message]}),
- ),
- )
- self.assertEqual(channel.code, HTTPStatus.OK, channel.json_body)
- chunk = channel.json_body["chunk"]
- self.assertEqual(len(chunk), 1, [event["content"] for event in chunk])
- # Check that we get no event, but also no error, when querying /messages with
- # the token that was pointing at the first event, because we don't have it
- # anymore.
- channel = self.make_request(
- "GET",
- "/rooms/%s/messages?access_token=x&from=%s&dir=b&filter=%s"
- % (
- self.room_id,
- first_token_str,
- json.dumps({"types": [EventTypes.Message]}),
- ),
- )
- self.assertEqual(channel.code, HTTPStatus.OK, channel.json_body)
- chunk = channel.json_body["chunk"]
- self.assertEqual(len(chunk), 0, [event["content"] for event in chunk])
- class RoomSearchTestCase(unittest.HomeserverTestCase):
- servlets = [
- synapse.rest.admin.register_servlets_for_client_rest_resource,
- room.register_servlets,
- login.register_servlets,
- ]
- user_id = True
- hijack_auth = False
- def prepare(self, reactor: MemoryReactor, clock: Clock, hs: HomeServer) -> None:
- # Register the user who does the searching
- self.user_id2 = self.register_user("user", "pass")
- self.access_token = self.login("user", "pass")
- # Register the user who sends the message
- self.other_user_id = self.register_user("otheruser", "pass")
- self.other_access_token = self.login("otheruser", "pass")
- # Create a room
- self.room = self.helper.create_room_as(self.user_id2, tok=self.access_token)
- # Invite the other person
- self.helper.invite(
- room=self.room,
- src=self.user_id2,
- tok=self.access_token,
- targ=self.other_user_id,
- )
- # The other user joins
- self.helper.join(
- room=self.room, user=self.other_user_id, tok=self.other_access_token
- )
- def test_finds_message(self) -> None:
- """
- The search functionality will search for content in messages if asked to
- do so.
- """
- # The other user sends some messages
- self.helper.send(self.room, body="Hi!", tok=self.other_access_token)
- self.helper.send(self.room, body="There!", tok=self.other_access_token)
- channel = self.make_request(
- "POST",
- "/search?access_token=%s" % (self.access_token,),
- {
- "search_categories": {
- "room_events": {"keys": ["content.body"], "search_term": "Hi"}
- }
- },
- )
- # Check we get the results we expect -- one search result, of the sent
- # messages
- self.assertEqual(channel.code, 200)
- results = channel.json_body["search_categories"]["room_events"]
- self.assertEqual(results["count"], 1)
- self.assertEqual(results["results"][0]["result"]["content"]["body"], "Hi!")
- # No context was requested, so we should get none.
- self.assertEqual(results["results"][0]["context"], {})
- def test_include_context(self) -> None:
- """
- When event_context includes include_profile, profile information will be
- included in the search response.
- """
- # The other user sends some messages
- self.helper.send(self.room, body="Hi!", tok=self.other_access_token)
- self.helper.send(self.room, body="There!", tok=self.other_access_token)
- channel = self.make_request(
- "POST",
- "/search?access_token=%s" % (self.access_token,),
- {
- "search_categories": {
- "room_events": {
- "keys": ["content.body"],
- "search_term": "Hi",
- "event_context": {"include_profile": True},
- }
- }
- },
- )
- # Check we get the results we expect -- one search result, of the sent
- # messages
- self.assertEqual(channel.code, 200)
- results = channel.json_body["search_categories"]["room_events"]
- self.assertEqual(results["count"], 1)
- self.assertEqual(results["results"][0]["result"]["content"]["body"], "Hi!")
- # We should get context info, like the two users, and the display names.
- context = results["results"][0]["context"]
- self.assertEqual(len(context["profile_info"].keys()), 2)
- self.assertEqual(
- context["profile_info"][self.other_user_id]["displayname"], "otheruser"
- )
- class PublicRoomsRestrictedTestCase(unittest.HomeserverTestCase):
- servlets = [
- synapse.rest.admin.register_servlets_for_client_rest_resource,
- room.register_servlets,
- login.register_servlets,
- ]
- def make_homeserver(self, reactor: MemoryReactor, clock: Clock) -> HomeServer:
- self.url = b"/_matrix/client/r0/publicRooms"
- config = self.default_config()
- config["allow_public_rooms_without_auth"] = False
- self.hs = self.setup_test_homeserver(config=config)
- return self.hs
- def test_restricted_no_auth(self) -> None:
- channel = self.make_request("GET", self.url)
- self.assertEqual(channel.code, HTTPStatus.UNAUTHORIZED, channel.result)
- def test_restricted_auth(self) -> None:
- self.register_user("user", "pass")
- tok = self.login("user", "pass")
- channel = self.make_request("GET", self.url, access_token=tok)
- self.assertEqual(channel.code, HTTPStatus.OK, channel.result)
- class PublicRoomsRoomTypeFilterTestCase(unittest.HomeserverTestCase):
- servlets = [
- synapse.rest.admin.register_servlets_for_client_rest_resource,
- room.register_servlets,
- login.register_servlets,
- ]
- def make_homeserver(self, reactor: MemoryReactor, clock: Clock) -> HomeServer:
- config = self.default_config()
- config["allow_public_rooms_without_auth"] = True
- self.hs = self.setup_test_homeserver(config=config)
- self.url = b"/_matrix/client/r0/publicRooms"
- return self.hs
- def prepare(self, reactor: MemoryReactor, clock: Clock, hs: HomeServer) -> None:
- user = self.register_user("alice", "pass")
- self.token = self.login(user, "pass")
- # Create a room
- self.helper.create_room_as(
- user,
- is_public=True,
- extra_content={"visibility": "public"},
- tok=self.token,
- )
- # Create a space
- self.helper.create_room_as(
- user,
- is_public=True,
- extra_content={
- "visibility": "public",
- "creation_content": {EventContentFields.ROOM_TYPE: RoomTypes.SPACE},
- },
- tok=self.token,
- )
- def make_public_rooms_request(
- self,
- room_types: Optional[List[Union[str, None]]],
- instance_id: Optional[str] = None,
- ) -> Tuple[List[Dict[str, Any]], int]:
- body: JsonDict = {"filter": {PublicRoomsFilterFields.ROOM_TYPES: room_types}}
- if instance_id:
- body["third_party_instance_id"] = "test|test"
- channel = self.make_request("POST", self.url, body, self.token)
- self.assertEqual(channel.code, 200)
- chunk = channel.json_body["chunk"]
- count = channel.json_body["total_room_count_estimate"]
- self.assertEqual(len(chunk), count)
- return chunk, count
- def test_returns_both_rooms_and_spaces_if_no_filter(self) -> None:
- chunk, count = self.make_public_rooms_request(None)
- self.assertEqual(count, 2)
- # Also check if there's no filter property at all in the body.
- channel = self.make_request("POST", self.url, {}, self.token)
- self.assertEqual(channel.code, 200)
- self.assertEqual(len(channel.json_body["chunk"]), 2)
- self.assertEqual(channel.json_body["total_room_count_estimate"], 2)
- chunk, count = self.make_public_rooms_request(None, "test|test")
- self.assertEqual(count, 0)
- def test_returns_only_rooms_based_on_filter(self) -> None:
- chunk, count = self.make_public_rooms_request([None])
- self.assertEqual(count, 1)
- self.assertEqual(chunk[0].get("room_type", None), None)
- chunk, count = self.make_public_rooms_request([None], "test|test")
- self.assertEqual(count, 0)
- def test_returns_only_space_based_on_filter(self) -> None:
- chunk, count = self.make_public_rooms_request(["m.space"])
- self.assertEqual(count, 1)
- self.assertEqual(chunk[0].get("room_type", None), "m.space")
- chunk, count = self.make_public_rooms_request(["m.space"], "test|test")
- self.assertEqual(count, 0)
- def test_returns_both_rooms_and_space_based_on_filter(self) -> None:
- chunk, count = self.make_public_rooms_request(["m.space", None])
- self.assertEqual(count, 2)
- chunk, count = self.make_public_rooms_request(["m.space", None], "test|test")
- self.assertEqual(count, 0)
- def test_returns_both_rooms_and_spaces_if_array_is_empty(self) -> None:
- chunk, count = self.make_public_rooms_request([])
- self.assertEqual(count, 2)
- chunk, count = self.make_public_rooms_request([], "test|test")
- self.assertEqual(count, 0)
- class PublicRoomsTestRemoteSearchFallbackTestCase(unittest.HomeserverTestCase):
- """Test that we correctly fallback to local filtering if a remote server
- doesn't support search.
- """
- servlets = [
- synapse.rest.admin.register_servlets_for_client_rest_resource,
- room.register_servlets,
- login.register_servlets,
- ]
- def make_homeserver(self, reactor: MemoryReactor, clock: Clock) -> HomeServer:
- return self.setup_test_homeserver(federation_client=Mock())
- def prepare(self, reactor: MemoryReactor, clock: Clock, hs: HomeServer) -> None:
- self.register_user("user", "pass")
- self.token = self.login("user", "pass")
- self.federation_client = hs.get_federation_client()
- def test_simple(self) -> None:
- "Simple test for searching rooms over federation"
- self.federation_client.get_public_rooms.return_value = make_awaitable({}) # type: ignore[attr-defined]
- search_filter = {PublicRoomsFilterFields.GENERIC_SEARCH_TERM: "foobar"}
- channel = self.make_request(
- "POST",
- b"/_matrix/client/r0/publicRooms?server=testserv",
- content={"filter": search_filter},
- access_token=self.token,
- )
- self.assertEqual(channel.code, HTTPStatus.OK, channel.result)
- self.federation_client.get_public_rooms.assert_called_once_with( # type: ignore[attr-defined]
- "testserv",
- limit=100,
- since_token=None,
- search_filter=search_filter,
- include_all_networks=False,
- third_party_instance_id=None,
- )
- def test_fallback(self) -> None:
- "Test that searching public rooms over federation falls back if it gets a 404"
- # The `get_public_rooms` should be called again if the first call fails
- # with a 404, when using search filters.
- self.federation_client.get_public_rooms.side_effect = ( # type: ignore[attr-defined]
- HttpResponseException(HTTPStatus.NOT_FOUND, "Not Found", b""),
- make_awaitable({}),
- )
- search_filter = {PublicRoomsFilterFields.GENERIC_SEARCH_TERM: "foobar"}
- channel = self.make_request(
- "POST",
- b"/_matrix/client/r0/publicRooms?server=testserv",
- content={"filter": search_filter},
- access_token=self.token,
- )
- self.assertEqual(channel.code, HTTPStatus.OK, channel.result)
- self.federation_client.get_public_rooms.assert_has_calls( # type: ignore[attr-defined]
- [
- call(
- "testserv",
- limit=100,
- since_token=None,
- search_filter=search_filter,
- include_all_networks=False,
- third_party_instance_id=None,
- ),
- call(
- "testserv",
- limit=None,
- since_token=None,
- search_filter=None,
- include_all_networks=False,
- third_party_instance_id=None,
- ),
- ]
- )
- class PerRoomProfilesForbiddenTestCase(unittest.HomeserverTestCase):
- servlets = [
- synapse.rest.admin.register_servlets_for_client_rest_resource,
- room.register_servlets,
- login.register_servlets,
- profile.register_servlets,
- ]
- def make_homeserver(self, reactor: MemoryReactor, clock: Clock) -> HomeServer:
- config = self.default_config()
- config["allow_per_room_profiles"] = False
- self.hs = self.setup_test_homeserver(config=config)
- return self.hs
- def prepare(self, reactor: MemoryReactor, clock: Clock, hs: HomeServer) -> None:
- self.user_id = self.register_user("test", "test")
- self.tok = self.login("test", "test")
- # Set a profile for the test user
- self.displayname = "test user"
- request_data = {"displayname": self.displayname}
- channel = self.make_request(
- "PUT",
- "/_matrix/client/r0/profile/%s/displayname" % (self.user_id,),
- request_data,
- access_token=self.tok,
- )
- self.assertEqual(channel.code, HTTPStatus.OK, channel.result)
- self.room_id = self.helper.create_room_as(self.user_id, tok=self.tok)
- def test_per_room_profile_forbidden(self) -> None:
- request_data = {"membership": "join", "displayname": "other test user"}
- channel = self.make_request(
- "PUT",
- "/_matrix/client/r0/rooms/%s/state/m.room.member/%s"
- % (self.room_id, self.user_id),
- request_data,
- access_token=self.tok,
- )
- self.assertEqual(channel.code, HTTPStatus.OK, channel.result)
- event_id = channel.json_body["event_id"]
- channel = self.make_request(
- "GET",
- "/_matrix/client/r0/rooms/%s/event/%s" % (self.room_id, event_id),
- access_token=self.tok,
- )
- self.assertEqual(channel.code, HTTPStatus.OK, channel.result)
- res_displayname = channel.json_body["content"]["displayname"]
- self.assertEqual(res_displayname, self.displayname, channel.result)
- class RoomMembershipReasonTestCase(unittest.HomeserverTestCase):
- """Tests that clients can add a "reason" field to membership events and
- that they get correctly added to the generated events and propagated.
- """
- servlets = [
- synapse.rest.admin.register_servlets_for_client_rest_resource,
- room.register_servlets,
- login.register_servlets,
- ]
- def prepare(self, reactor: MemoryReactor, clock: Clock, hs: HomeServer) -> None:
- self.creator = self.register_user("creator", "test")
- self.creator_tok = self.login("creator", "test")
- self.second_user_id = self.register_user("second", "test")
- self.second_tok = self.login("second", "test")
- self.room_id = self.helper.create_room_as(self.creator, tok=self.creator_tok)
- def test_join_reason(self) -> None:
- reason = "hello"
- channel = self.make_request(
- "POST",
- f"/_matrix/client/r0/rooms/{self.room_id}/join",
- content={"reason": reason},
- access_token=self.second_tok,
- )
- self.assertEqual(channel.code, HTTPStatus.OK, channel.result)
- self._check_for_reason(reason)
- def test_leave_reason(self) -> None:
- self.helper.join(self.room_id, user=self.second_user_id, tok=self.second_tok)
- reason = "hello"
- channel = self.make_request(
- "POST",
- f"/_matrix/client/r0/rooms/{self.room_id}/leave",
- content={"reason": reason},
- access_token=self.second_tok,
- )
- self.assertEqual(channel.code, HTTPStatus.OK, channel.result)
- self._check_for_reason(reason)
- def test_kick_reason(self) -> None:
- self.helper.join(self.room_id, user=self.second_user_id, tok=self.second_tok)
- reason = "hello"
- channel = self.make_request(
- "POST",
- f"/_matrix/client/r0/rooms/{self.room_id}/kick",
- content={"reason": reason, "user_id": self.second_user_id},
- access_token=self.second_tok,
- )
- self.assertEqual(channel.code, HTTPStatus.OK, channel.result)
- self._check_for_reason(reason)
- def test_ban_reason(self) -> None:
- self.helper.join(self.room_id, user=self.second_user_id, tok=self.second_tok)
- reason = "hello"
- channel = self.make_request(
- "POST",
- f"/_matrix/client/r0/rooms/{self.room_id}/ban",
- content={"reason": reason, "user_id": self.second_user_id},
- access_token=self.creator_tok,
- )
- self.assertEqual(channel.code, HTTPStatus.OK, channel.result)
- self._check_for_reason(reason)
- def test_unban_reason(self) -> None:
- reason = "hello"
- channel = self.make_request(
- "POST",
- f"/_matrix/client/r0/rooms/{self.room_id}/unban",
- content={"reason": reason, "user_id": self.second_user_id},
- access_token=self.creator_tok,
- )
- self.assertEqual(channel.code, HTTPStatus.OK, channel.result)
- self._check_for_reason(reason)
- def test_invite_reason(self) -> None:
- reason = "hello"
- channel = self.make_request(
- "POST",
- f"/_matrix/client/r0/rooms/{self.room_id}/invite",
- content={"reason": reason, "user_id": self.second_user_id},
- access_token=self.creator_tok,
- )
- self.assertEqual(channel.code, HTTPStatus.OK, channel.result)
- self._check_for_reason(reason)
- def test_reject_invite_reason(self) -> None:
- self.helper.invite(
- self.room_id,
- src=self.creator,
- targ=self.second_user_id,
- tok=self.creator_tok,
- )
- reason = "hello"
- channel = self.make_request(
- "POST",
- f"/_matrix/client/r0/rooms/{self.room_id}/leave",
- content={"reason": reason},
- access_token=self.second_tok,
- )
- self.assertEqual(channel.code, HTTPStatus.OK, channel.result)
- self._check_for_reason(reason)
- def _check_for_reason(self, reason: str) -> None:
- channel = self.make_request(
- "GET",
- "/_matrix/client/r0/rooms/{}/state/m.room.member/{}".format(
- self.room_id, self.second_user_id
- ),
- access_token=self.creator_tok,
- )
- self.assertEqual(channel.code, HTTPStatus.OK, channel.result)
- event_content = channel.json_body
- self.assertEqual(event_content.get("reason"), reason, channel.result)
- class LabelsTestCase(unittest.HomeserverTestCase):
- servlets = [
- synapse.rest.admin.register_servlets_for_client_rest_resource,
- room.register_servlets,
- login.register_servlets,
- profile.register_servlets,
- ]
- # Filter that should only catch messages with the label "#fun".
- FILTER_LABELS = {
- "types": [EventTypes.Message],
- "org.matrix.labels": ["#fun"],
- }
- # Filter that should only catch messages without the label "#fun".
- FILTER_NOT_LABELS = {
- "types": [EventTypes.Message],
- "org.matrix.not_labels": ["#fun"],
- }
- # Filter that should only catch messages with the label "#work" but without the label
- # "#notfun".
- FILTER_LABELS_NOT_LABELS = {
- "types": [EventTypes.Message],
- "org.matrix.labels": ["#work"],
- "org.matrix.not_labels": ["#notfun"],
- }
- def prepare(self, reactor: MemoryReactor, clock: Clock, hs: HomeServer) -> None:
- self.user_id = self.register_user("test", "test")
- self.tok = self.login("test", "test")
- self.room_id = self.helper.create_room_as(self.user_id, tok=self.tok)
- def test_context_filter_labels(self) -> None:
- """Test that we can filter by a label on a /context request."""
- event_id = self._send_labelled_messages_in_room()
- channel = self.make_request(
- "GET",
- "/rooms/%s/context/%s?filter=%s"
- % (self.room_id, event_id, json.dumps(self.FILTER_LABELS)),
- access_token=self.tok,
- )
- self.assertEqual(channel.code, HTTPStatus.OK, channel.result)
- events_before = channel.json_body["events_before"]
- self.assertEqual(
- len(events_before), 1, [event["content"] for event in events_before]
- )
- self.assertEqual(
- events_before[0]["content"]["body"], "with right label", events_before[0]
- )
- events_after = channel.json_body["events_before"]
- self.assertEqual(
- len(events_after), 1, [event["content"] for event in events_after]
- )
- self.assertEqual(
- events_after[0]["content"]["body"], "with right label", events_after[0]
- )
- def test_context_filter_not_labels(self) -> None:
- """Test that we can filter by the absence of a label on a /context request."""
- event_id = self._send_labelled_messages_in_room()
- channel = self.make_request(
- "GET",
- "/rooms/%s/context/%s?filter=%s"
- % (self.room_id, event_id, json.dumps(self.FILTER_NOT_LABELS)),
- access_token=self.tok,
- )
- self.assertEqual(channel.code, HTTPStatus.OK, channel.result)
- events_before = channel.json_body["events_before"]
- self.assertEqual(
- len(events_before), 1, [event["content"] for event in events_before]
- )
- self.assertEqual(
- events_before[0]["content"]["body"], "without label", events_before[0]
- )
- events_after = channel.json_body["events_after"]
- self.assertEqual(
- len(events_after), 2, [event["content"] for event in events_after]
- )
- self.assertEqual(
- events_after[0]["content"]["body"], "with wrong label", events_after[0]
- )
- self.assertEqual(
- events_after[1]["content"]["body"], "with two wrong labels", events_after[1]
- )
- def test_context_filter_labels_not_labels(self) -> None:
- """Test that we can filter by both a label and the absence of another label on a
- /context request.
- """
- event_id = self._send_labelled_messages_in_room()
- channel = self.make_request(
- "GET",
- "/rooms/%s/context/%s?filter=%s"
- % (self.room_id, event_id, json.dumps(self.FILTER_LABELS_NOT_LABELS)),
- access_token=self.tok,
- )
- self.assertEqual(channel.code, HTTPStatus.OK, channel.result)
- events_before = channel.json_body["events_before"]
- self.assertEqual(
- len(events_before), 0, [event["content"] for event in events_before]
- )
- events_after = channel.json_body["events_after"]
- self.assertEqual(
- len(events_after), 1, [event["content"] for event in events_after]
- )
- self.assertEqual(
- events_after[0]["content"]["body"], "with wrong label", events_after[0]
- )
- def test_messages_filter_labels(self) -> None:
- """Test that we can filter by a label on a /messages request."""
- self._send_labelled_messages_in_room()
- token = "s0_0_0_0_0_0_0_0_0_0"
- channel = self.make_request(
- "GET",
- "/rooms/%s/messages?access_token=%s&from=%s&filter=%s"
- % (self.room_id, self.tok, token, json.dumps(self.FILTER_LABELS)),
- )
- events = channel.json_body["chunk"]
- self.assertEqual(len(events), 2, [event["content"] for event in events])
- self.assertEqual(events[0]["content"]["body"], "with right label", events[0])
- self.assertEqual(events[1]["content"]["body"], "with right label", events[1])
- def test_messages_filter_not_labels(self) -> None:
- """Test that we can filter by the absence of a label on a /messages request."""
- self._send_labelled_messages_in_room()
- token = "s0_0_0_0_0_0_0_0_0_0"
- channel = self.make_request(
- "GET",
- "/rooms/%s/messages?access_token=%s&from=%s&filter=%s"
- % (self.room_id, self.tok, token, json.dumps(self.FILTER_NOT_LABELS)),
- )
- events = channel.json_body["chunk"]
- self.assertEqual(len(events), 4, [event["content"] for event in events])
- self.assertEqual(events[0]["content"]["body"], "without label", events[0])
- self.assertEqual(events[1]["content"]["body"], "without label", events[1])
- self.assertEqual(events[2]["content"]["body"], "with wrong label", events[2])
- self.assertEqual(
- events[3]["content"]["body"], "with two wrong labels", events[3]
- )
- def test_messages_filter_labels_not_labels(self) -> None:
- """Test that we can filter by both a label and the absence of another label on a
- /messages request.
- """
- self._send_labelled_messages_in_room()
- token = "s0_0_0_0_0_0_0_0_0_0"
- channel = self.make_request(
- "GET",
- "/rooms/%s/messages?access_token=%s&from=%s&filter=%s"
- % (
- self.room_id,
- self.tok,
- token,
- json.dumps(self.FILTER_LABELS_NOT_LABELS),
- ),
- )
- events = channel.json_body["chunk"]
- self.assertEqual(len(events), 1, [event["content"] for event in events])
- self.assertEqual(events[0]["content"]["body"], "with wrong label", events[0])
- def test_search_filter_labels(self) -> None:
- """Test that we can filter by a label on a /search request."""
- request_data = {
- "search_categories": {
- "room_events": {
- "search_term": "label",
- "filter": self.FILTER_LABELS,
- }
- }
- }
- self._send_labelled_messages_in_room()
- channel = self.make_request(
- "POST", "/search?access_token=%s" % self.tok, request_data
- )
- results = channel.json_body["search_categories"]["room_events"]["results"]
- self.assertEqual(
- len(results),
- 2,
- [result["result"]["content"] for result in results],
- )
- self.assertEqual(
- results[0]["result"]["content"]["body"],
- "with right label",
- results[0]["result"]["content"]["body"],
- )
- self.assertEqual(
- results[1]["result"]["content"]["body"],
- "with right label",
- results[1]["result"]["content"]["body"],
- )
- def test_search_filter_not_labels(self) -> None:
- """Test that we can filter by the absence of a label on a /search request."""
- request_data = {
- "search_categories": {
- "room_events": {
- "search_term": "label",
- "filter": self.FILTER_NOT_LABELS,
- }
- }
- }
- self._send_labelled_messages_in_room()
- channel = self.make_request(
- "POST", "/search?access_token=%s" % self.tok, request_data
- )
- results = channel.json_body["search_categories"]["room_events"]["results"]
- self.assertEqual(
- len(results),
- 4,
- [result["result"]["content"] for result in results],
- )
- self.assertEqual(
- results[0]["result"]["content"]["body"],
- "without label",
- results[0]["result"]["content"]["body"],
- )
- self.assertEqual(
- results[1]["result"]["content"]["body"],
- "without label",
- results[1]["result"]["content"]["body"],
- )
- self.assertEqual(
- results[2]["result"]["content"]["body"],
- "with wrong label",
- results[2]["result"]["content"]["body"],
- )
- self.assertEqual(
- results[3]["result"]["content"]["body"],
- "with two wrong labels",
- results[3]["result"]["content"]["body"],
- )
- def test_search_filter_labels_not_labels(self) -> None:
- """Test that we can filter by both a label and the absence of another label on a
- /search request.
- """
- request_data = {
- "search_categories": {
- "room_events": {
- "search_term": "label",
- "filter": self.FILTER_LABELS_NOT_LABELS,
- }
- }
- }
- self._send_labelled_messages_in_room()
- channel = self.make_request(
- "POST", "/search?access_token=%s" % self.tok, request_data
- )
- results = channel.json_body["search_categories"]["room_events"]["results"]
- self.assertEqual(
- len(results),
- 1,
- [result["result"]["content"] for result in results],
- )
- self.assertEqual(
- results[0]["result"]["content"]["body"],
- "with wrong label",
- results[0]["result"]["content"]["body"],
- )
- def _send_labelled_messages_in_room(self) -> str:
- """Sends several messages to a room with different labels (or without any) to test
- filtering by label.
- Returns:
- The ID of the event to use if we're testing filtering on /context.
- """
- self.helper.send_event(
- room_id=self.room_id,
- type=EventTypes.Message,
- content={
- "msgtype": "m.text",
- "body": "with right label",
- EventContentFields.LABELS: ["#fun"],
- },
- tok=self.tok,
- )
- self.helper.send_event(
- room_id=self.room_id,
- type=EventTypes.Message,
- content={"msgtype": "m.text", "body": "without label"},
- tok=self.tok,
- )
- res = self.helper.send_event(
- room_id=self.room_id,
- type=EventTypes.Message,
- content={"msgtype": "m.text", "body": "without label"},
- tok=self.tok,
- )
- # Return this event's ID when we test filtering in /context requests.
- event_id = res["event_id"]
- self.helper.send_event(
- room_id=self.room_id,
- type=EventTypes.Message,
- content={
- "msgtype": "m.text",
- "body": "with wrong label",
- EventContentFields.LABELS: ["#work"],
- },
- tok=self.tok,
- )
- self.helper.send_event(
- room_id=self.room_id,
- type=EventTypes.Message,
- content={
- "msgtype": "m.text",
- "body": "with two wrong labels",
- EventContentFields.LABELS: ["#work", "#notfun"],
- },
- tok=self.tok,
- )
- self.helper.send_event(
- room_id=self.room_id,
- type=EventTypes.Message,
- content={
- "msgtype": "m.text",
- "body": "with right label",
- EventContentFields.LABELS: ["#fun"],
- },
- tok=self.tok,
- )
- return event_id
- class RelationsTestCase(PaginationTestCase):
- def _filter_messages(self, filter: JsonDict) -> List[str]:
- """Make a request to /messages with a filter, returns the chunk of events."""
- from_token = self.get_success(
- self.from_token.to_string(self.hs.get_datastores().main)
- )
- channel = self.make_request(
- "GET",
- f"/rooms/{self.room_id}/messages?filter={json.dumps(filter)}&dir=f&from={from_token}",
- access_token=self.tok,
- )
- self.assertEqual(channel.code, HTTPStatus.OK, channel.result)
- return [ev["event_id"] for ev in channel.json_body["chunk"]]
- class ContextTestCase(unittest.HomeserverTestCase):
- servlets = [
- synapse.rest.admin.register_servlets_for_client_rest_resource,
- room.register_servlets,
- login.register_servlets,
- account.register_servlets,
- ]
- def prepare(self, reactor: MemoryReactor, clock: Clock, hs: HomeServer) -> None:
- self.user_id = self.register_user("user", "password")
- self.tok = self.login("user", "password")
- self.room_id = self.helper.create_room_as(
- self.user_id, tok=self.tok, is_public=False
- )
- self.other_user_id = self.register_user("user2", "password")
- self.other_tok = self.login("user2", "password")
- self.helper.invite(self.room_id, self.user_id, self.other_user_id, tok=self.tok)
- self.helper.join(self.room_id, self.other_user_id, tok=self.other_tok)
- def test_erased_sender(self) -> None:
- """Test that an erasure request results in the requester's events being hidden
- from any new member of the room.
- """
- # Send a bunch of events in the room.
- self.helper.send(self.room_id, "message 1", tok=self.tok)
- self.helper.send(self.room_id, "message 2", tok=self.tok)
- event_id = self.helper.send(self.room_id, "message 3", tok=self.tok)["event_id"]
- self.helper.send(self.room_id, "message 4", tok=self.tok)
- self.helper.send(self.room_id, "message 5", tok=self.tok)
- # Check that we can still see the messages before the erasure request.
- channel = self.make_request(
- "GET",
- '/rooms/%s/context/%s?filter={"types":["m.room.message"]}'
- % (self.room_id, event_id),
- access_token=self.tok,
- )
- self.assertEqual(channel.code, HTTPStatus.OK, channel.result)
- events_before = channel.json_body["events_before"]
- self.assertEqual(len(events_before), 2, events_before)
- self.assertEqual(
- events_before[0].get("content", {}).get("body"),
- "message 2",
- events_before[0],
- )
- self.assertEqual(
- events_before[1].get("content", {}).get("body"),
- "message 1",
- events_before[1],
- )
- self.assertEqual(
- channel.json_body["event"].get("content", {}).get("body"),
- "message 3",
- channel.json_body["event"],
- )
- events_after = channel.json_body["events_after"]
- self.assertEqual(len(events_after), 2, events_after)
- self.assertEqual(
- events_after[0].get("content", {}).get("body"),
- "message 4",
- events_after[0],
- )
- self.assertEqual(
- events_after[1].get("content", {}).get("body"),
- "message 5",
- events_after[1],
- )
- # Deactivate the first account and erase the user's data.
- deactivate_account_handler = self.hs.get_deactivate_account_handler()
- self.get_success(
- deactivate_account_handler.deactivate_account(
- self.user_id, True, create_requester(self.user_id)
- )
- )
- # Invite another user in the room. This is needed because messages will be
- # pruned only if the user wasn't a member of the room when the messages were
- # sent.
- invited_user_id = self.register_user("user3", "password")
- invited_tok = self.login("user3", "password")
- self.helper.invite(
- self.room_id, self.other_user_id, invited_user_id, tok=self.other_tok
- )
- self.helper.join(self.room_id, invited_user_id, tok=invited_tok)
- # Check that a user that joined the room after the erasure request can't see
- # the messages anymore.
- channel = self.make_request(
- "GET",
- '/rooms/%s/context/%s?filter={"types":["m.room.message"]}'
- % (self.room_id, event_id),
- access_token=invited_tok,
- )
- self.assertEqual(channel.code, HTTPStatus.OK, channel.result)
- events_before = channel.json_body["events_before"]
- self.assertEqual(len(events_before), 2, events_before)
- self.assertDictEqual(events_before[0].get("content"), {}, events_before[0])
- self.assertDictEqual(events_before[1].get("content"), {}, events_before[1])
- self.assertDictEqual(
- channel.json_body["event"].get("content"), {}, channel.json_body["event"]
- )
- events_after = channel.json_body["events_after"]
- self.assertEqual(len(events_after), 2, events_after)
- self.assertDictEqual(events_after[0].get("content"), {}, events_after[0])
- self.assertEqual(events_after[1].get("content"), {}, events_after[1])
- class RoomAliasListTestCase(unittest.HomeserverTestCase):
- servlets = [
- synapse.rest.admin.register_servlets_for_client_rest_resource,
- directory.register_servlets,
- login.register_servlets,
- room.register_servlets,
- ]
- def prepare(self, reactor: MemoryReactor, clock: Clock, hs: HomeServer) -> None:
- self.room_owner = self.register_user("room_owner", "test")
- self.room_owner_tok = self.login("room_owner", "test")
- self.room_id = self.helper.create_room_as(
- self.room_owner, tok=self.room_owner_tok
- )
- def test_no_aliases(self) -> None:
- res = self._get_aliases(self.room_owner_tok)
- self.assertEqual(res["aliases"], [])
- def test_not_in_room(self) -> None:
- self.register_user("user", "test")
- user_tok = self.login("user", "test")
- res = self._get_aliases(user_tok, expected_code=403)
- self.assertEqual(res["errcode"], "M_FORBIDDEN")
- def test_admin_user(self) -> None:
- alias1 = self._random_alias()
- self._set_alias_via_directory(alias1)
- self.register_user("user", "test", admin=True)
- user_tok = self.login("user", "test")
- res = self._get_aliases(user_tok)
- self.assertEqual(res["aliases"], [alias1])
- def test_with_aliases(self) -> None:
- alias1 = self._random_alias()
- alias2 = self._random_alias()
- self._set_alias_via_directory(alias1)
- self._set_alias_via_directory(alias2)
- res = self._get_aliases(self.room_owner_tok)
- self.assertEqual(set(res["aliases"]), {alias1, alias2})
- def test_peekable_room(self) -> None:
- alias1 = self._random_alias()
- self._set_alias_via_directory(alias1)
- self.helper.send_state(
- self.room_id,
- EventTypes.RoomHistoryVisibility,
- body={"history_visibility": "world_readable"},
- tok=self.room_owner_tok,
- )
- self.register_user("user", "test")
- user_tok = self.login("user", "test")
- res = self._get_aliases(user_tok)
- self.assertEqual(res["aliases"], [alias1])
- def _get_aliases(self, access_token: str, expected_code: int = 200) -> JsonDict:
- """Calls the endpoint under test. returns the json response object."""
- channel = self.make_request(
- "GET",
- "/_matrix/client/r0/rooms/%s/aliases" % (self.room_id,),
- access_token=access_token,
- )
- self.assertEqual(channel.code, expected_code, channel.result)
- res = channel.json_body
- self.assertIsInstance(res, dict)
- if expected_code == 200:
- self.assertIsInstance(res["aliases"], list)
- return res
- def _random_alias(self) -> str:
- return RoomAlias(random_string(5), self.hs.hostname).to_string()
- def _set_alias_via_directory(self, alias: str, expected_code: int = 200) -> None:
- url = "/_matrix/client/r0/directory/room/" + alias
- request_data = {"room_id": self.room_id}
- channel = self.make_request(
- "PUT", url, request_data, access_token=self.room_owner_tok
- )
- self.assertEqual(channel.code, expected_code, channel.result)
- class RoomCanonicalAliasTestCase(unittest.HomeserverTestCase):
- servlets = [
- synapse.rest.admin.register_servlets_for_client_rest_resource,
- directory.register_servlets,
- login.register_servlets,
- room.register_servlets,
- ]
- def prepare(self, reactor: MemoryReactor, clock: Clock, hs: HomeServer) -> None:
- self.room_owner = self.register_user("room_owner", "test")
- self.room_owner_tok = self.login("room_owner", "test")
- self.room_id = self.helper.create_room_as(
- self.room_owner, tok=self.room_owner_tok
- )
- self.alias = "#alias:test"
- self._set_alias_via_directory(self.alias)
- def _set_alias_via_directory(self, alias: str, expected_code: int = 200) -> None:
- url = "/_matrix/client/r0/directory/room/" + alias
- request_data = {"room_id": self.room_id}
- channel = self.make_request(
- "PUT", url, request_data, access_token=self.room_owner_tok
- )
- self.assertEqual(channel.code, expected_code, channel.result)
- def _get_canonical_alias(self, expected_code: int = 200) -> JsonDict:
- """Calls the endpoint under test. returns the json response object."""
- channel = self.make_request(
- "GET",
- "rooms/%s/state/m.room.canonical_alias" % (self.room_id,),
- access_token=self.room_owner_tok,
- )
- self.assertEqual(channel.code, expected_code, channel.result)
- res = channel.json_body
- self.assertIsInstance(res, dict)
- return res
- def _set_canonical_alias(
- self, content: JsonDict, expected_code: int = 200
- ) -> JsonDict:
- """Calls the endpoint under test. returns the json response object."""
- channel = self.make_request(
- "PUT",
- "rooms/%s/state/m.room.canonical_alias" % (self.room_id,),
- content,
- access_token=self.room_owner_tok,
- )
- self.assertEqual(channel.code, expected_code, channel.result)
- res = channel.json_body
- self.assertIsInstance(res, dict)
- return res
- def test_canonical_alias(self) -> None:
- """Test a basic alias message."""
- # There is no canonical alias to start with.
- self._get_canonical_alias(expected_code=404)
- # Create an alias.
- self._set_canonical_alias({"alias": self.alias})
- # Canonical alias now exists!
- res = self._get_canonical_alias()
- self.assertEqual(res, {"alias": self.alias})
- # Now remove the alias.
- self._set_canonical_alias({})
- # There is an alias event, but it is empty.
- res = self._get_canonical_alias()
- self.assertEqual(res, {})
- def test_alt_aliases(self) -> None:
- """Test a canonical alias message with alt_aliases."""
- # Create an alias.
- self._set_canonical_alias({"alt_aliases": [self.alias]})
- # Canonical alias now exists!
- res = self._get_canonical_alias()
- self.assertEqual(res, {"alt_aliases": [self.alias]})
- # Now remove the alt_aliases.
- self._set_canonical_alias({})
- # There is an alias event, but it is empty.
- res = self._get_canonical_alias()
- self.assertEqual(res, {})
- def test_alias_alt_aliases(self) -> None:
- """Test a canonical alias message with an alias and alt_aliases."""
- # Create an alias.
- self._set_canonical_alias({"alias": self.alias, "alt_aliases": [self.alias]})
- # Canonical alias now exists!
- res = self._get_canonical_alias()
- self.assertEqual(res, {"alias": self.alias, "alt_aliases": [self.alias]})
- # Now remove the alias and alt_aliases.
- self._set_canonical_alias({})
- # There is an alias event, but it is empty.
- res = self._get_canonical_alias()
- self.assertEqual(res, {})
- def test_partial_modify(self) -> None:
- """Test removing only the alt_aliases."""
- # Create an alias.
- self._set_canonical_alias({"alias": self.alias, "alt_aliases": [self.alias]})
- # Canonical alias now exists!
- res = self._get_canonical_alias()
- self.assertEqual(res, {"alias": self.alias, "alt_aliases": [self.alias]})
- # Now remove the alt_aliases.
- self._set_canonical_alias({"alias": self.alias})
- # There is an alias event, but it is empty.
- res = self._get_canonical_alias()
- self.assertEqual(res, {"alias": self.alias})
- def test_add_alias(self) -> None:
- """Test removing only the alt_aliases."""
- # Create an additional alias.
- second_alias = "#second:test"
- self._set_alias_via_directory(second_alias)
- # Add the canonical alias.
- self._set_canonical_alias({"alias": self.alias, "alt_aliases": [self.alias]})
- # Then add the second alias.
- self._set_canonical_alias(
- {"alias": self.alias, "alt_aliases": [self.alias, second_alias]}
- )
- # Canonical alias now exists!
- res = self._get_canonical_alias()
- self.assertEqual(
- res, {"alias": self.alias, "alt_aliases": [self.alias, second_alias]}
- )
- def test_bad_data(self) -> None:
- """Invalid data for alt_aliases should cause errors."""
- self._set_canonical_alias({"alt_aliases": "@bad:test"}, expected_code=400)
- self._set_canonical_alias({"alt_aliases": None}, expected_code=400)
- self._set_canonical_alias({"alt_aliases": 0}, expected_code=400)
- self._set_canonical_alias({"alt_aliases": 1}, expected_code=400)
- self._set_canonical_alias({"alt_aliases": False}, expected_code=400)
- self._set_canonical_alias({"alt_aliases": True}, expected_code=400)
- self._set_canonical_alias({"alt_aliases": {}}, expected_code=400)
- def test_bad_alias(self) -> None:
- """An alias which does not point to the room raises a SynapseError."""
- self._set_canonical_alias({"alias": "@unknown:test"}, expected_code=400)
- self._set_canonical_alias({"alt_aliases": ["@unknown:test"]}, expected_code=400)
- class ThreepidInviteTestCase(unittest.HomeserverTestCase):
- servlets = [
- admin.register_servlets,
- login.register_servlets,
- room.register_servlets,
- ]
- def prepare(self, reactor: MemoryReactor, clock: Clock, hs: HomeServer) -> None:
- self.user_id = self.register_user("thomas", "hackme")
- self.tok = self.login("thomas", "hackme")
- self.room_id = self.helper.create_room_as(self.user_id, tok=self.tok)
- def test_threepid_invite_spamcheck_deprecated(self) -> None:
- """
- Test allowing/blocking threepid invites with a spam-check module.
- In this test, we use the deprecated API in which callbacks return a bool.
- """
- # Mock a few functions to prevent the test from failing due to failing to talk to
- # a remote IS. We keep the mock for make_and_store_3pid_invite around so we
- # can check its call_count later on during the test.
- make_invite_mock = Mock(return_value=make_awaitable((Mock(event_id="abc"), 0)))
- self.hs.get_room_member_handler()._make_and_store_3pid_invite = make_invite_mock # type: ignore[assignment]
- self.hs.get_identity_handler().lookup_3pid = Mock( # type: ignore[assignment]
- return_value=make_awaitable(None),
- )
- # Add a mock to the spamchecker callbacks for user_may_send_3pid_invite. Make it
- # allow everything for now.
- # `spec` argument is needed for this function mock to have `__qualname__`, which
- # is needed for `Measure` metrics buried in SpamChecker.
- mock = Mock(return_value=make_awaitable(True), spec=lambda *x: None)
- self.hs.get_module_api_callbacks().spam_checker._user_may_send_3pid_invite_callbacks.append(
- mock
- )
- # Send a 3PID invite into the room and check that it succeeded.
- email_to_invite = "teresa@example.com"
- channel = self.make_request(
- method="POST",
- path="/rooms/" + self.room_id + "/invite",
- content={
- "id_server": "example.com",
- "id_access_token": "sometoken",
- "medium": "email",
- "address": email_to_invite,
- },
- access_token=self.tok,
- )
- self.assertEqual(channel.code, 200)
- # Check that the callback was called with the right params.
- mock.assert_called_with(self.user_id, "email", email_to_invite, self.room_id)
- # Check that the call to send the invite was made.
- make_invite_mock.assert_called_once()
- # Now change the return value of the callback to deny any invite and test that
- # we can't send the invite.
- mock.return_value = make_awaitable(False)
- channel = self.make_request(
- method="POST",
- path="/rooms/" + self.room_id + "/invite",
- content={
- "id_server": "example.com",
- "id_access_token": "sometoken",
- "medium": "email",
- "address": email_to_invite,
- },
- access_token=self.tok,
- )
- self.assertEqual(channel.code, 403)
- # Also check that it stopped before calling _make_and_store_3pid_invite.
- make_invite_mock.assert_called_once()
- def test_threepid_invite_spamcheck(self) -> None:
- """
- Test allowing/blocking threepid invites with a spam-check module.
- In this test, we use the more recent API in which callbacks return a `Union[Codes, Literal["NOT_SPAM"]]`.
- """
- # Mock a few functions to prevent the test from failing due to failing to talk to
- # a remote IS. We keep the mock for make_and_store_3pid_invite around so we
- # can check its call_count later on during the test.
- make_invite_mock = Mock(return_value=make_awaitable((Mock(event_id="abc"), 0)))
- self.hs.get_room_member_handler()._make_and_store_3pid_invite = make_invite_mock # type: ignore[assignment]
- self.hs.get_identity_handler().lookup_3pid = Mock( # type: ignore[assignment]
- return_value=make_awaitable(None),
- )
- # Add a mock to the spamchecker callbacks for user_may_send_3pid_invite. Make it
- # allow everything for now.
- # `spec` argument is needed for this function mock to have `__qualname__`, which
- # is needed for `Measure` metrics buried in SpamChecker.
- mock = Mock(
- return_value=make_awaitable(synapse.module_api.NOT_SPAM),
- spec=lambda *x: None,
- )
- self.hs.get_module_api_callbacks().spam_checker._user_may_send_3pid_invite_callbacks.append(
- mock
- )
- # Send a 3PID invite into the room and check that it succeeded.
- email_to_invite = "teresa@example.com"
- channel = self.make_request(
- method="POST",
- path="/rooms/" + self.room_id + "/invite",
- content={
- "id_server": "example.com",
- "id_access_token": "sometoken",
- "medium": "email",
- "address": email_to_invite,
- },
- access_token=self.tok,
- )
- self.assertEqual(channel.code, 200)
- # Check that the callback was called with the right params.
- mock.assert_called_with(self.user_id, "email", email_to_invite, self.room_id)
- # Check that the call to send the invite was made.
- make_invite_mock.assert_called_once()
- # Now change the return value of the callback to deny any invite and test that
- # we can't send the invite. We pick an arbitrary error code to be able to check
- # that the same code has been returned
- mock.return_value = make_awaitable(Codes.CONSENT_NOT_GIVEN)
- channel = self.make_request(
- method="POST",
- path="/rooms/" + self.room_id + "/invite",
- content={
- "id_server": "example.com",
- "id_access_token": "sometoken",
- "medium": "email",
- "address": email_to_invite,
- },
- access_token=self.tok,
- )
- self.assertEqual(channel.code, 403)
- self.assertEqual(channel.json_body["errcode"], Codes.CONSENT_NOT_GIVEN)
- # Also check that it stopped before calling _make_and_store_3pid_invite.
- make_invite_mock.assert_called_once()
- # Run variant with `Tuple[Codes, dict]`.
- mock.return_value = make_awaitable((Codes.EXPIRED_ACCOUNT, {"field": "value"}))
- channel = self.make_request(
- method="POST",
- path="/rooms/" + self.room_id + "/invite",
- content={
- "id_server": "example.com",
- "id_access_token": "sometoken",
- "medium": "email",
- "address": email_to_invite,
- },
- access_token=self.tok,
- )
- self.assertEqual(channel.code, 403)
- self.assertEqual(channel.json_body["errcode"], Codes.EXPIRED_ACCOUNT)
- self.assertEqual(channel.json_body["field"], "value")
- # Also check that it stopped before calling _make_and_store_3pid_invite.
- make_invite_mock.assert_called_once()
- def test_400_missing_param_without_id_access_token(self) -> None:
- """
- Test that a 3pid invite request returns 400 M_MISSING_PARAM
- if we do not include id_access_token.
- """
- channel = self.make_request(
- method="POST",
- path="/rooms/" + self.room_id + "/invite",
- content={
- "id_server": "example.com",
- "medium": "email",
- "address": "teresa@example.com",
- },
- access_token=self.tok,
- )
- self.assertEqual(channel.code, 400)
- self.assertEqual(channel.json_body["errcode"], "M_MISSING_PARAM")
- class TimestampLookupTestCase(unittest.HomeserverTestCase):
- servlets = [
- admin.register_servlets,
- room.register_servlets,
- login.register_servlets,
- ]
- def prepare(self, reactor: MemoryReactor, clock: Clock, hs: HomeServer) -> None:
- self._storage_controllers = self.hs.get_storage_controllers()
- self.room_owner = self.register_user("room_owner", "test")
- self.room_owner_tok = self.login("room_owner", "test")
- def _inject_outlier(self, room_id: str) -> EventBase:
- event, _context = self.get_success(
- create_event(
- self.hs,
- room_id=room_id,
- type="m.test",
- sender="@test_remote_user:remote",
- )
- )
- event.internal_metadata.outlier = True
- persistence = self._storage_controllers.persistence
- assert persistence is not None
- self.get_success(
- persistence.persist_event(
- event, EventContext.for_outlier(self._storage_controllers)
- )
- )
- return event
- def test_no_outliers(self) -> None:
- """
- Test to make sure `/timestamp_to_event` does not return `outlier` events.
- We're unable to determine whether an `outlier` is next to a gap so we
- don't know whether it's actually the closest event. Instead, let's just
- ignore `outliers` with this endpoint.
- This test is really seeing that we choose the non-`outlier` event behind the
- `outlier`. Since the gap checking logic considers the latest message in the room
- as *not* next to a gap, asking over federation does not come into play here.
- """
- room_id = self.helper.create_room_as(self.room_owner, tok=self.room_owner_tok)
- outlier_event = self._inject_outlier(room_id)
- channel = self.make_request(
- "GET",
- f"/_matrix/client/v1/rooms/{room_id}/timestamp_to_event?dir=b&ts={outlier_event.origin_server_ts}",
- access_token=self.room_owner_tok,
- )
- self.assertEqual(HTTPStatus.OK, channel.code, msg=channel.json_body)
- # Make sure the outlier event is not returned
- self.assertNotEqual(channel.json_body["event_id"], outlier_event.event_id)
|