mirror of
https://forgejo.ellis.link/continuwuation/continuwuity.git
synced 2025-10-09 19:10:50 +00:00
13b7538785
[rendered msc here](https://github.com/Johennes/matrix-spec-proposals/blob/johannes/invite-filtering/proposals/4155-invite-filtering.md). Closes #836. Co-authored-by: nexy7574 <git@nexy7574.co.uk> Reviewed-on: https://forgejo.ellis.link/continuwuation/continuwuity/pulls/1013 Reviewed-by: nex <nex@noreply.forgejo.ellis.link> Co-authored-by: Ginger <ginger@gingershaped.computer> Co-committed-by: Ginger <ginger@gingershaped.computer>
251 lines
6.7 KiB
Rust
251 lines
6.7 KiB
Rust
use axum::extract::State;
|
|
use axum_client_ip::InsecureClientIp;
|
|
use conduwuit::{
|
|
Err, Result, debug_error, err, info,
|
|
matrix::{event::gen_event_id_canonical_json, pdu::PduBuilder},
|
|
};
|
|
use futures::FutureExt;
|
|
use ruma::{
|
|
OwnedServerName, RoomId, UserId,
|
|
api::{client::membership::invite_user, federation::membership::create_invite},
|
|
events::{
|
|
invite_permission_config::FilterLevel,
|
|
room::member::{MembershipState, RoomMemberEventContent},
|
|
},
|
|
};
|
|
use service::Services;
|
|
|
|
use super::banned_room_check;
|
|
use crate::Ruma;
|
|
|
|
/// # `POST /_matrix/client/r0/rooms/{roomId}/invite`
|
|
///
|
|
/// Tries to send an invite event into the room.
|
|
#[tracing::instrument(skip_all, fields(%client), name = "invite")]
|
|
pub(crate) async fn invite_user_route(
|
|
State(services): State<crate::State>,
|
|
InsecureClientIp(client): InsecureClientIp,
|
|
body: Ruma<invite_user::v3::Request>,
|
|
) -> Result<invite_user::v3::Response> {
|
|
let sender_user = body.sender_user();
|
|
if services.users.is_suspended(sender_user).await? {
|
|
return Err!(Request(UserSuspended("You cannot perform this action while suspended.")));
|
|
}
|
|
|
|
if !services.users.is_admin(sender_user).await && services.config.block_non_admin_invites {
|
|
debug_error!(
|
|
"User {sender_user} is not an admin and attempted to send an invite to room {}",
|
|
&body.room_id
|
|
);
|
|
return Err!(Request(Forbidden("Invites are not allowed on this server.")));
|
|
}
|
|
|
|
banned_room_check(
|
|
&services,
|
|
sender_user,
|
|
Some(&body.room_id),
|
|
body.room_id.server_name(),
|
|
client,
|
|
)
|
|
.await?;
|
|
|
|
match &body.recipient {
|
|
| invite_user::v3::InvitationRecipient::UserId { user_id: recipient_user } => {
|
|
let sender_filter_level = services
|
|
.users
|
|
.invite_filter_level(recipient_user, sender_user)
|
|
.await;
|
|
|
|
if !matches!(sender_filter_level, FilterLevel::Allow) {
|
|
// drop invites if the sender has the recipient filtered
|
|
return Ok(invite_user::v3::Response {});
|
|
}
|
|
|
|
if let Ok(target_user_membership) = services
|
|
.rooms
|
|
.state_accessor
|
|
.get_member(&body.room_id, recipient_user)
|
|
.await
|
|
{
|
|
if target_user_membership.membership == MembershipState::Ban {
|
|
return Err!(Request(Forbidden("User is banned from this room.")));
|
|
}
|
|
}
|
|
|
|
// check for blocked invites if the recipient is a local user.
|
|
if services.globals.user_is_local(recipient_user) {
|
|
let recipient_filter_level = services
|
|
.users
|
|
.invite_filter_level(sender_user, recipient_user)
|
|
.await;
|
|
|
|
// ignored invites aren't handled here
|
|
// since the recipient's membership should still be changed to `invite`.
|
|
// they're filtered out in the individual /sync handlers.
|
|
if matches!(recipient_filter_level, FilterLevel::Block) {
|
|
return Err!(Request(InviteBlocked(
|
|
"{recipient_user} has blocked invites from you."
|
|
)));
|
|
}
|
|
}
|
|
|
|
invite_helper(
|
|
&services,
|
|
sender_user,
|
|
recipient_user,
|
|
&body.room_id,
|
|
body.reason.clone(),
|
|
false,
|
|
)
|
|
.boxed()
|
|
.await?;
|
|
|
|
Ok(invite_user::v3::Response {})
|
|
},
|
|
| _ => {
|
|
Err!(Request(NotFound("User not found.")))
|
|
},
|
|
}
|
|
}
|
|
|
|
pub(crate) async fn invite_helper(
|
|
services: &Services,
|
|
sender_user: &UserId,
|
|
recipient_user: &UserId,
|
|
room_id: &RoomId,
|
|
reason: Option<String>,
|
|
is_direct: bool,
|
|
) -> Result {
|
|
if !services.users.is_admin(sender_user).await && services.config.block_non_admin_invites {
|
|
info!(
|
|
"User {sender_user} is not an admin and attempted to send an invite to room \
|
|
{room_id}"
|
|
);
|
|
return Err!(Request(Forbidden("Invites are not allowed on this server.")));
|
|
}
|
|
|
|
if !services.globals.user_is_local(recipient_user) {
|
|
let (pdu, pdu_json, invite_room_state) = {
|
|
let state_lock = services.rooms.state.mutex.lock(room_id).await;
|
|
|
|
let content = RoomMemberEventContent {
|
|
avatar_url: services.users.avatar_url(recipient_user).await.ok(),
|
|
is_direct: Some(is_direct),
|
|
reason,
|
|
..RoomMemberEventContent::new(MembershipState::Invite)
|
|
};
|
|
|
|
let (pdu, pdu_json) = services
|
|
.rooms
|
|
.timeline
|
|
.create_hash_and_sign_event(
|
|
PduBuilder::state(recipient_user.to_string(), &content),
|
|
sender_user,
|
|
Some(room_id),
|
|
&state_lock,
|
|
)
|
|
.await?;
|
|
|
|
let invite_room_state = services.rooms.state.summary_stripped(&pdu, room_id).await;
|
|
|
|
drop(state_lock);
|
|
|
|
(pdu, pdu_json, invite_room_state)
|
|
};
|
|
|
|
let room_version_id = services.rooms.state.get_room_version(room_id).await?;
|
|
|
|
let response = services
|
|
.sending
|
|
.send_federation_request(recipient_user.server_name(), create_invite::v2::Request {
|
|
room_id: room_id.to_owned(),
|
|
event_id: (*pdu.event_id).to_owned(),
|
|
room_version: room_version_id.clone(),
|
|
event: services
|
|
.sending
|
|
.convert_to_outgoing_federation_event(pdu_json.clone())
|
|
.await,
|
|
invite_room_state,
|
|
via: services
|
|
.rooms
|
|
.state_cache
|
|
.servers_route_via(room_id)
|
|
.await
|
|
.ok(),
|
|
})
|
|
.await?;
|
|
|
|
// We do not add the event_id field to the pdu here because of signature and
|
|
// hashes checks
|
|
let (event_id, value) = gen_event_id_canonical_json(&response.event, &room_version_id)
|
|
.map_err(|e| {
|
|
err!(Request(BadJson(warn!("Could not convert event to canonical JSON: {e}"))))
|
|
})?;
|
|
|
|
if pdu.event_id != event_id {
|
|
return Err!(Request(BadJson(warn!(
|
|
%pdu.event_id, %event_id,
|
|
"Server {} sent event with wrong event ID",
|
|
recipient_user.server_name()
|
|
))));
|
|
}
|
|
|
|
let origin: OwnedServerName = serde_json::from_value(serde_json::to_value(
|
|
value
|
|
.get("origin")
|
|
.ok_or_else(|| err!(Request(BadJson("Event missing origin field."))))?,
|
|
)?)
|
|
.map_err(|e| {
|
|
err!(Request(BadJson(warn!("Origin field in event is not a valid server name: {e}"))))
|
|
})?;
|
|
|
|
let pdu_id = services
|
|
.rooms
|
|
.event_handler
|
|
.handle_incoming_pdu(&origin, room_id, &event_id, value, true)
|
|
.boxed()
|
|
.await?
|
|
.ok_or_else(|| {
|
|
err!(Request(InvalidParam("Could not accept incoming PDU as timeline event.")))
|
|
})?;
|
|
|
|
return services.sending.send_pdu_room(room_id, &pdu_id).await;
|
|
}
|
|
|
|
if !services
|
|
.rooms
|
|
.state_cache
|
|
.is_joined(sender_user, room_id)
|
|
.await
|
|
{
|
|
return Err!(Request(Forbidden(
|
|
"You must be joined in the room you are trying to invite from."
|
|
)));
|
|
}
|
|
|
|
let state_lock = services.rooms.state.mutex.lock(room_id).await;
|
|
|
|
let content = RoomMemberEventContent {
|
|
displayname: services.users.displayname(recipient_user).await.ok(),
|
|
avatar_url: services.users.avatar_url(recipient_user).await.ok(),
|
|
blurhash: services.users.blurhash(recipient_user).await.ok(),
|
|
is_direct: Some(is_direct),
|
|
reason,
|
|
..RoomMemberEventContent::new(MembershipState::Invite)
|
|
};
|
|
|
|
services
|
|
.rooms
|
|
.timeline
|
|
.build_and_append_pdu(
|
|
PduBuilder::state(recipient_user.to_string(), &content),
|
|
sender_user,
|
|
Some(room_id),
|
|
&state_lock,
|
|
)
|
|
.await?;
|
|
|
|
drop(state_lock);
|
|
|
|
Ok(())
|
|
}
|