This repository has been archived by the owner on Apr 26, 2024. It is now read-only.
make_room_admin admin API should check if a user is in the room before sending a PL event on their behalf #9175
Labels
good first issue
Good for newcomers
S-Minor
Blocks non-critical functionality, workarounds exist.
T-Defect
Bugs, crashes, hangs, security vulnerabilities, or other reported issues.
z-bug
(Deprecated Label)
Comments
|
Hi! I would like to work on this issue. synapse/synapse/rest/admin/rooms.py Line 434 in a7882f9 Also, what error should I raise? synapse/synapse/rest/admin/rooms.py Lines 431 to 432 in a7882f9 I guess it should be similar to this with the error statement changed. Also, what should be the error statement raised. |
|
@y-pankaj That seems reasonable. I think we would want to only raise that error if none of the users in the power_level list are able to be used. |
anoadragon453
added
good first issue
4 tasks
|
I believe this is fixed by #9235. |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Currently it will indiscriminately pull the first user out of the power_level list that has a high enough PL, but it's possible for that user to not be in the room. Given we already pull the membership to check if the requester is in the room, we should check this too.
The text was updated successfully, but these errors were encountered: