refactor: Centralize server forbidden checks into moderation module

This moves all checks related to `forbidden_remote_server_names`, `forbidden_remote_room_directory_server_names` and `prevent_media_downloads_from` to a new `moderation` module. This is useful for implementing more complicated logic globally. Mostly the changes from #673, but is also relevant for #750
2025-08-07 15:20:55 +00:00 · 2025-04-19 23:02:43 +01:00 · 2025-04-19 23:02:43 +01:00 · 0eb9e4f3d2
commit 0eb9e4f3d2
parent e71138ab6f
18 changed files with 109 additions and 97 deletions
--- a/src/api/server/invite.rs
+++ b/src/api/server/invite.rs
@ -37,19 +37,14 @@ pub(crate) async fn create_invite_route(
 	}

 	if let Some(server) = body.room_id.server_name() {
-		if services
-			.config
-			.forbidden_remote_server_names
-			.is_match(server.host())
-		{
+		if services.moderation.is_remote_server_forbidden(server) {
 			return Err!(Request(Forbidden("Server is banned on this homeserver.")));
 		}
 	}

 	if services
-		.config
-		.forbidden_remote_server_names
-		.is_match(body.origin().host())
+		.moderation
+		.is_remote_server_forbidden(body.origin())
 	{
 		warn!(
 			"Received federated/remote invite from banned server {} for room ID {}. Rejecting.",