123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321 |
- # Copyright 2020 The Matrix.org Foundation C.I.C.
- #
- # Licensed under the Apache License, Version 2.0 (the "License");
- # you may not use this file except in compliance with the License.
- # You may obtain a copy of the License at
- #
- # http://www.apache.org/licenses/LICENSE-2.0
- #
- # Unless required by applicable law or agreed to in writing, software
- # distributed under the License is distributed on an "AS IS" BASIS,
- # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- # See the License for the specific language governing permissions and
- # limitations under the License.
- from unittest.mock import Mock, patch
- from twisted.test.proto_helpers import MemoryReactor
- import synapse.rest.admin
- from synapse.api.constants import EventTypes
- from synapse.rest.client import (
- directory,
- login,
- profile,
- room,
- room_upgrade_rest_servlet,
- )
- from synapse.server import HomeServer
- from synapse.types import UserID
- from synapse.util import Clock
- from tests import unittest
- class _ShadowBannedBase(unittest.HomeserverTestCase):
- def prepare(self, reactor: MemoryReactor, clock: Clock, hs: HomeServer) -> None:
- # Create two users, one of which is shadow-banned.
- self.banned_user_id = self.register_user("banned", "test")
- self.banned_access_token = self.login("banned", "test")
- self.store = self.hs.get_datastores().main
- self.get_success(
- self.store.set_shadow_banned(UserID.from_string(self.banned_user_id), True)
- )
- self.other_user_id = self.register_user("otheruser", "pass")
- self.other_access_token = self.login("otheruser", "pass")
- # To avoid the tests timing out don't add a delay to "annoy the requester".
- @patch("random.randint", new=lambda a, b: 0)
- class RoomTestCase(_ShadowBannedBase):
- servlets = [
- synapse.rest.admin.register_servlets_for_client_rest_resource,
- directory.register_servlets,
- login.register_servlets,
- room.register_servlets,
- room_upgrade_rest_servlet.register_servlets,
- ]
- def test_invite(self) -> None:
- """Invites from shadow-banned users don't actually get sent."""
- # The create works fine.
- room_id = self.helper.create_room_as(
- self.banned_user_id, tok=self.banned_access_token
- )
- # Inviting the user completes successfully.
- self.helper.invite(
- room=room_id,
- src=self.banned_user_id,
- tok=self.banned_access_token,
- targ=self.other_user_id,
- )
- # But the user wasn't actually invited.
- invited_rooms = self.get_success(
- self.store.get_invited_rooms_for_local_user(self.other_user_id)
- )
- self.assertEqual(invited_rooms, [])
- def test_invite_3pid(self) -> None:
- """Ensure that a 3PID invite does not attempt to contact the identity server."""
- identity_handler = self.hs.get_identity_handler()
- identity_handler.lookup_3pid = Mock(
- side_effect=AssertionError("This should not get called")
- )
- # The create works fine.
- room_id = self.helper.create_room_as(
- self.banned_user_id, tok=self.banned_access_token
- )
- # Inviting the user completes successfully.
- channel = self.make_request(
- "POST",
- "/rooms/%s/invite" % (room_id,),
- {"id_server": "test", "medium": "email", "address": "test@test.test"},
- access_token=self.banned_access_token,
- )
- self.assertEqual(200, channel.code, channel.result)
- # This should have raised an error earlier, but double check this wasn't called.
- identity_handler.lookup_3pid.assert_not_called()
- def test_create_room(self) -> None:
- """Invitations during a room creation should be discarded, but the room still gets created."""
- # The room creation is successful.
- channel = self.make_request(
- "POST",
- "/_matrix/client/r0/createRoom",
- {"visibility": "public", "invite": [self.other_user_id]},
- access_token=self.banned_access_token,
- )
- self.assertEqual(200, channel.code, channel.result)
- room_id = channel.json_body["room_id"]
- # But the user wasn't actually invited.
- invited_rooms = self.get_success(
- self.store.get_invited_rooms_for_local_user(self.other_user_id)
- )
- self.assertEqual(invited_rooms, [])
- # Since a real room was created, the other user should be able to join it.
- self.helper.join(room_id, self.other_user_id, tok=self.other_access_token)
- # Both users should be in the room.
- users = self.get_success(self.store.get_users_in_room(room_id))
- self.assertCountEqual(users, ["@banned:test", "@otheruser:test"])
- def test_message(self) -> None:
- """Messages from shadow-banned users don't actually get sent."""
- room_id = self.helper.create_room_as(
- self.other_user_id, tok=self.other_access_token
- )
- # The user should be in the room.
- self.helper.join(room_id, self.banned_user_id, tok=self.banned_access_token)
- # Sending a message should complete successfully.
- result = self.helper.send_event(
- room_id=room_id,
- type=EventTypes.Message,
- content={"msgtype": "m.text", "body": "with right label"},
- tok=self.banned_access_token,
- )
- self.assertIn("event_id", result)
- event_id = result["event_id"]
- latest_events = self.get_success(
- self.store.get_latest_event_ids_in_room(room_id)
- )
- self.assertNotIn(event_id, latest_events)
- def test_upgrade(self) -> None:
- """A room upgrade should fail, but look like it succeeded."""
- # The create works fine.
- room_id = self.helper.create_room_as(
- self.banned_user_id, tok=self.banned_access_token
- )
- channel = self.make_request(
- "POST",
- "/_matrix/client/r0/rooms/%s/upgrade" % (room_id,),
- {"new_version": "6"},
- access_token=self.banned_access_token,
- )
- self.assertEqual(200, channel.code, channel.result)
- # A new room_id should be returned.
- self.assertIn("replacement_room", channel.json_body)
- new_room_id = channel.json_body["replacement_room"]
- # It doesn't really matter what API we use here, we just want to assert
- # that the room doesn't exist.
- summary = self.get_success(self.store.get_room_summary(new_room_id))
- # The summary should be empty since the room doesn't exist.
- self.assertEqual(summary, {})
- def test_typing(self) -> None:
- """Typing notifications should not be propagated into the room."""
- # The create works fine.
- room_id = self.helper.create_room_as(
- self.banned_user_id, tok=self.banned_access_token
- )
- channel = self.make_request(
- "PUT",
- "/rooms/%s/typing/%s" % (room_id, self.banned_user_id),
- {"typing": True, "timeout": 30000},
- access_token=self.banned_access_token,
- )
- self.assertEqual(200, channel.code)
- # There should be no typing events.
- event_source = self.hs.get_event_sources().sources.typing
- self.assertEqual(event_source.get_current_key(), 0)
- # The other user can join and send typing events.
- self.helper.join(room_id, self.other_user_id, tok=self.other_access_token)
- channel = self.make_request(
- "PUT",
- "/rooms/%s/typing/%s" % (room_id, self.other_user_id),
- {"typing": True, "timeout": 30000},
- access_token=self.other_access_token,
- )
- self.assertEqual(200, channel.code)
- # These appear in the room.
- self.assertEqual(event_source.get_current_key(), 1)
- events = self.get_success(
- event_source.get_new_events(
- user=UserID.from_string(self.other_user_id),
- from_key=0,
- limit=None,
- room_ids=[room_id],
- is_guest=False,
- )
- )
- self.assertEqual(
- events[0],
- [
- {
- "type": "m.typing",
- "room_id": room_id,
- "content": {"user_ids": [self.other_user_id]},
- }
- ],
- )
- # To avoid the tests timing out don't add a delay to "annoy the requester".
- @patch("random.randint", new=lambda a, b: 0)
- class ProfileTestCase(_ShadowBannedBase):
- servlets = [
- synapse.rest.admin.register_servlets_for_client_rest_resource,
- login.register_servlets,
- profile.register_servlets,
- room.register_servlets,
- ]
- def test_displayname(self) -> None:
- """Profile changes should succeed, but don't end up in a room."""
- original_display_name = "banned"
- new_display_name = "new name"
- # Join a room.
- room_id = self.helper.create_room_as(
- self.banned_user_id, tok=self.banned_access_token
- )
- # The update should succeed.
- channel = self.make_request(
- "PUT",
- "/_matrix/client/r0/profile/%s/displayname" % (self.banned_user_id,),
- {"displayname": new_display_name},
- access_token=self.banned_access_token,
- )
- self.assertEqual(200, channel.code, channel.result)
- self.assertEqual(channel.json_body, {})
- # The user's display name should be updated.
- channel = self.make_request(
- "GET", "/profile/%s/displayname" % (self.banned_user_id,)
- )
- self.assertEqual(channel.code, 200, channel.result)
- self.assertEqual(channel.json_body["displayname"], new_display_name)
- # But the display name in the room should not be.
- message_handler = self.hs.get_message_handler()
- event = self.get_success(
- message_handler.get_room_data(
- self.banned_user_id,
- room_id,
- "m.room.member",
- self.banned_user_id,
- )
- )
- self.assertEqual(
- event.content, {"membership": "join", "displayname": original_display_name}
- )
- def test_room_displayname(self) -> None:
- """Changes to state events for a room should be processed, but not end up in the room."""
- original_display_name = "banned"
- new_display_name = "new name"
- # Join a room.
- room_id = self.helper.create_room_as(
- self.banned_user_id, tok=self.banned_access_token
- )
- # The update should succeed.
- channel = self.make_request(
- "PUT",
- "/_matrix/client/r0/rooms/%s/state/m.room.member/%s"
- % (room_id, self.banned_user_id),
- {"membership": "join", "displayname": new_display_name},
- access_token=self.banned_access_token,
- )
- self.assertEqual(200, channel.code, channel.result)
- self.assertIn("event_id", channel.json_body)
- # The display name in the room should not be changed.
- message_handler = self.hs.get_message_handler()
- event = self.get_success(
- message_handler.get_room_data(
- self.banned_user_id,
- room_id,
- "m.room.member",
- self.banned_user_id,
- )
- )
- self.assertEqual(
- event.content, {"membership": "join", "displayname": original_display_name}
- )
|