Skip to content

MSC3911 AP5: Updating the room creation handler to recognize attaching media when restricted #96

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
jason-famedly merged 1 commit into from
Sep 5, 2025
Merged

MSC3911 AP5: Updating the room creation handler to recognize attaching media when restricted #96

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
54 changes: 54 additions & 0 deletions synapse/handlers/room.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -41,6 +41,7 @@
)

import attr
from matrix_common.types.mxc_uri import MXCUri

import synapse.events.snapshot
from synapse.api.constants import (
Expand Down Expand Up @@ -1498,6 +1499,58 @@ async def create_event(
event_dict.update(event_keys)
event_dict.update(kwargs)

mxc_restrictions = None
if (
self.config.experimental.msc3911_enabled
and etype == EventTypes.RoomAvatar
):
# this should be an mxc, but the spec does not specifically say it has to be
extracted_media_id: Optional[str] = content.get("url")
# It may be that "url" is set to either an empty string or None. Accept
# this gracefully, to account for backwards compatible behavior
if extracted_media_id:
try:
mxc_uri = MXCUri.from_str(extracted_media_id)
except ValueError:
raise SynapseError(
HTTPStatus.BAD_REQUEST,
f"Room avatar MXC Uri ('{extracted_media_id}') is malformed",
Codes.INVALID_PARAM,
)
# If there is a media item, check for existing restrictions
local_media_data = await self.store.get_local_media(
mxc_uri.media_id
)

# Non-existent media is to be handled by the download media endpoint
# so ignore it for now and allow proceeding. It will just not attach
# the media
if local_media_data is not None and local_media_data.restricted:
if not local_media_data.attachments:
if creator.user.to_string() != local_media_data.user_id:
# A different user created a room compared to who
# uploaded the media. Just like with the '/state/' and
# '/send/ endpoints, do not leak the metadata
raise SynapseError(
HTTPStatus.BAD_REQUEST,
f"The media requested for a room avatar is invalid as the media '{mxc_uri.media_id}' does not exist",
Codes.INVALID_PARAM,
)
# The media is not already attached to anything, proceed
mxc_restrictions = [
MXCUri(self.server_name, local_media_data.media_id)
]
else:
# This media is already attached. If it was a prior attempt
# to create a room, the atomic handling of the room creation
# means it will not be attached, so if this exists it
# succeeded somewhere else.
raise SynapseError(
HTTPStatus.BAD_REQUEST,
f"The media requested for a room avatar is invalid as the media '{mxc_uri.media_id}' does not exist",
Codes.INVALID_PARAM,
)

(
new_event,
new_unpersisted_context,
Expand All @@ -1510,6 +1563,7 @@ async def create_event(
# state_map since it is modified below.
state_map=dict(state_map),
for_batch=for_batch,
mxc_restriction_list_for_event=mxc_restrictions,
)

depth += 1
Expand Down
165 changes: 161 additions & 4 deletions tests/rest/client/test_rooms.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4525,8 +4525,8 @@ def prepare(
self.user = self.register_user("david", "password")
self.tok = self.login("david", "password")

self.other_user = self.register_user("mongo", "password")
self.other_tok = self.login("mongo", "password")
self.other_user = self.register_user("elliott", "password")
self.other_tok = self.login("elliott", "password")

def default_config(self) -> JsonDict:
config = super().default_config()
Expand Down Expand Up @@ -4833,8 +4833,8 @@ def prepare(
self.user = self.register_user("david", "password")
self.tok = self.login("david", "password")

self.other_user = self.register_user("mongo", "password")
self.other_tok = self.login("mongo", "password")
self.other_user = self.register_user("elliott", "password")
self.other_tok = self.login("elliott", "password")

def default_config(self) -> JsonDict:
config = super().default_config()
Expand Down Expand Up @@ -5108,3 +5108,160 @@ def test_idempotency_of_attaching_media_to_message_event(self) -> None:


# Sort if need to do annotations and reactions and other m.relates_to stuff here


class RoomsCreateMediaAttachmentTestCase(unittest.HomeserverTestCase):
servlets = [
admin.register_servlets,
login.register_servlets,
media.register_servlets,
room.register_servlets,
room.register_deprecated_servlets,
]

def prepare(
self, reactor: MemoryReactor, clock: Clock, homeserver: HomeServer
) -> None:
self.store = homeserver.get_datastores().main
self.server_name = self.hs.config.server.server_name
self.media_repo = self.hs.get_media_repository()

self.user = self.register_user("david", "password")
self.tok = self.login("david", "password")

self.other_user = self.register_user("elliott", "password")
self.other_tok = self.login("elliott", "password")

def default_config(self) -> JsonDict:
config = super().default_config()
config.setdefault("experimental_features", {})
config["experimental_features"].update({"msc3911_enabled": True})
return config

def create_media_and_set_restricted_flag(
self, user_id: Optional[str] = None
) -> MXCUri:
"""
Create media without using an endpoint, and set the restricted flag. This will
not add restrictions on its own, as that is the point of this test series
"""
# Allow for testing a different user doing the creation, so can test it errors
# when attaching
if user_id is None:
user_id = self.user
content = io.BytesIO(SMALL_PNG)
content_uri = self.get_success(
self.media_repo.create_or_update_content(
"image/png",
"test_png_upload",
content,
67,
UserID.from_string(user_id),
restricted=True,
)
)
return content_uri

def create_room_with_avatar(
self,
avatar_mxc: Optional[Union[MXCUri, str]] = None,
creating_user: Optional[str] = None,
tok: Optional[str] = None,
expected_code: int = HTTPStatus.OK,
) -> Optional[str]:
"""Create a room with the given avatar"""
initial_state_content = []
if avatar_mxc == "":
# Simulate that an empty string is passed
initial_state_content.append(
{
"content": {
"url": str(avatar_mxc),
},
"state_key": "",
"type": EventTypes.RoomAvatar,
}
)

elif avatar_mxc is not None:
initial_state_content.append(
{
"content": {
"info": {
"h": 1,
"w": 1,
"mimetype": "image/png",
"size": 67,
},
"url": str(avatar_mxc),
},
"state_key": "",
"type": EventTypes.RoomAvatar,
}
)
return self.helper.create_room_as(
creating_user or self.user,
extra_content={"initial_state": initial_state_content},
tok=tok or self.tok,
expect_code=expected_code,
)

def test_create_room_can_attach_media(self) -> None:
"""
Basic functionality test that restricted media being enabled sets a provide
room avatar as restricted
"""
test_mxc = self.create_media_and_set_restricted_flag()
room_id = self.create_room_with_avatar(avatar_mxc=test_mxc)
assert room_id is not None

def test_create_room_does_not_error_when_no_avatar(self) -> None:
"""
Test that creating a room with no room avatar does not break when msc3911 is
enabled. Basically making sure while the config is enabled that it doesn't break
"""
room_id = self.create_room_with_avatar(avatar_mxc=None)
assert room_id is not None

def test_create_room_does_not_error_avatar_initially_set_empty(self) -> None:
"""
Test that creating a room with a room avatar that contains an empty string for
the 'url' gracefully is ignored
"""
room_id = self.create_room_with_avatar(avatar_mxc="")
assert room_id is not None

def test_create_room_fails_with_invalid_request_wrong_user(self) -> None:
"""Test that a room creator must have uploaded the media"""
test_mxc = self.create_media_and_set_restricted_flag(self.other_user)
room_id = self.create_room_with_avatar(avatar_mxc=test_mxc, expected_code=400)
assert room_id is None

def test_create_room_fails_with_already_attached_media(self) -> None:
"""
Test that a creating a room with an avatar that is already attached somewhere
else fails
"""
test_mxc = self.create_media_and_set_restricted_flag()
self.get_success(
self.store.set_media_restricted_to_event_id(
test_mxc.server_name, test_mxc.media_id, "$junk_event_id"
)
)
room_id = self.create_room_with_avatar(avatar_mxc=test_mxc, expected_code=400)
assert room_id is None

def test_create_room_with_unknown_media_avatar_succeeds(self) -> None:
"""Test that room creation with unknown media as room avatar doesn't fail"""
test_mxc = MXCUri.from_str(f"mxc://somewhere.else/{time.time_ns()}")
room_id = self.create_room_with_avatar(
creating_user=self.other_user,
avatar_mxc=test_mxc,
tok=self.other_tok,
)
assert room_id is not None

def test_create_room_fails_with_malformed_room_avatar_url(self) -> None:
"""Test that a malformed room avatar url fails the room creation"""
room_id = self.create_room_with_avatar(avatar_mxc="junk", expected_code=400)
assert room_id is None
Loading