Merge pull request #369 from matrix-org/daniel/guestnonevents

illicitonion · illicitonion · commit fc27ca90066b · 2015-11-12T17:28:48.000Z
Return non-room events from guest /events calls
diff --git a/synapse/notifier.py b/synapse/notifier.py
@@ -14,6 +14,8 @@
 # limitations under the License.
 
 from twisted.internet import defer
+from synapse.api.constants import EventTypes
+from synapse.api.errors import AuthError
 
 from synapse.util.logutils import log_function
 from synapse.util.async import run_on_reactor, ObservableDeferred
@@ -346,9 +348,9 @@ def get_events_for(self, user, pagination_config, timeout,
 
         room_ids = []
         if is_guest:
-            # TODO(daniel): Deal with non-room events too
-            only_room_events = True
             if guest_room_id:
+                if not self._is_world_readable(guest_room_id):
+                    raise AuthError(403, "Guest access not allowed")
                 room_ids = [guest_room_id]
         else:
             rooms = yield self.store.get_rooms_for_user(user.to_string())
@@ -361,6 +363,7 @@ def check_for_updates(before_token, after_token):
 
             events = []
             end_token = from_token
+
             for name, source in self.event_sources.sources.items():
                 keyname = "%s_key" % name
                 before_id = getattr(before_token, keyname)
@@ -377,7 +380,7 @@ def check_for_updates(before_token, after_token):
                     room_ids=room_ids,
                 )
 
-                if is_guest:
+                if name == "room":
                     room_member_handler = self.hs.get_handlers().room_member_handler
                     new_events = yield room_member_handler._filter_events_for_client(
                         user.to_string(),
@@ -403,6 +406,17 @@ def check_for_updates(before_token, after_token):
 
         defer.returnValue(result)
 
+    @defer.inlineCallbacks
+    def _is_world_readable(self, room_id):
+        state = yield self.hs.get_state_handler().get_current_state(
+            room_id,
+            EventTypes.RoomHistoryVisibility
+        )
+        if state and "history_visibility" in state.content:
+            defer.returnValue(state.content["history_visibility"] == "world_readable")
+        else:
+            defer.returnValue(False)
+
     @log_function
     def remove_expired_streams(self):
         time_now_ms = self.clock.time_msec()
diff --git a/tests/rest/client/v1/test_presence.py b/tests/rest/client/v1/test_presence.py
@@ -321,6 +321,9 @@ def get_rooms_for_user(user):
         hs.handlers.room_member_handler.get_room_members = (
             lambda r: self.room_members if r == "a-room" else []
         )
+        hs.handlers.room_member_handler._filter_events_for_client = (
+            lambda user_id, events, **kwargs: events
+        )
 
         self.mock_datastore = hs.get_datastore()
         self.mock_datastore.get_app_service_by_token = Mock(return_value=None)

Original file line number	Diff line number	Diff line change
`@@ -321,6 +321,9 @@ def get_rooms_for_user(user):`
`321`	`321`	`hs.handlers.room_member_handler.get_room_members = (`
`322`	`322`	`lambda r: self.room_members if r == "a-room" else []`
`323`	`323`	`)`
	`324`	`+ hs.handlers.room_member_handler._filter_events_for_client = (`
	`325`	`+ lambda user_id, events, **kwargs: events`
	`326`	`+ )`
`324`	`327`
`325`	`328`	`self.mock_datastore = hs.get_datastore()`
`326`	`329`	`self.mock_datastore.get_app_service_by_token = Mock(return_value=None)`