2026-04-13 11:22:49 -04:00
|
|
|
use std::{borrow::ToOwned, pin::pin};
|
2026-01-05 03:36:44 +00:00
|
|
|
|
2024-07-16 08:05:25 +00:00
|
|
|
use axum::extract::State;
|
2026-04-07 18:18:00 +01:00
|
|
|
use conduwuit::{
|
2026-04-10 11:47:01 -04:00
|
|
|
Err, Error, Result, debug, debug_info, info, matrix::pdu::PartialPdu, utils, warn,
|
2026-04-07 18:18:00 +01:00
|
|
|
};
|
2025-04-04 03:30:13 +00:00
|
|
|
use conduwuit_service::Services;
|
2024-08-08 17:18:30 +00:00
|
|
|
use futures::StreamExt;
|
2024-06-05 04:32:58 +00:00
|
|
|
use ruma::{
|
2026-04-13 11:22:49 -04:00
|
|
|
OwnedUserId, RoomId, UserId,
|
|
|
|
|
api::{
|
|
|
|
|
error::{ErrorKind, IncompatibleRoomVersionErrorData},
|
|
|
|
|
federation::membership::prepare_join_event,
|
|
|
|
|
},
|
|
|
|
|
assign,
|
2024-06-05 04:32:58 +00:00
|
|
|
events::{
|
2025-02-23 01:17:45 -05:00
|
|
|
StateEventType,
|
2024-06-05 04:32:58 +00:00
|
|
|
room::{
|
|
|
|
|
join_rules::{AllowRule, JoinRule, RoomJoinRulesEventContent},
|
|
|
|
|
member::{MembershipState, RoomMemberEventContent},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
};
|
|
|
|
|
use serde_json::value::to_raw_value;
|
2026-02-13 07:01:14 +00:00
|
|
|
use service::rooms::state::RoomMutexGuard;
|
2026-02-13 05:59:07 +00:00
|
|
|
use tokio::join;
|
2024-06-05 04:32:58 +00:00
|
|
|
|
2025-04-04 03:30:13 +00:00
|
|
|
use crate::Ruma;
|
2024-06-05 04:32:58 +00:00
|
|
|
|
|
|
|
|
/// # `GET /_matrix/federation/v1/make_join/{roomId}/{userId}`
|
|
|
|
|
///
|
|
|
|
|
/// Creates a join template.
|
2026-01-04 03:04:37 +00:00
|
|
|
#[tracing::instrument(skip_all, fields(room_id = %body.room_id, user_id = %body.user_id, origin = %body.origin()), level = "info")]
|
2024-06-05 04:32:58 +00:00
|
|
|
pub(crate) async fn create_join_event_template_route(
|
2024-12-15 00:05:47 -05:00
|
|
|
State(services): State<crate::State>,
|
|
|
|
|
body: Ruma<prepare_join_event::v1::Request>,
|
2024-06-05 04:32:58 +00:00
|
|
|
) -> Result<prepare_join_event::v1::Response> {
|
2024-08-08 17:18:30 +00:00
|
|
|
if !services.rooms.metadata.exists(&body.room_id).await {
|
2024-12-07 01:07:01 -05:00
|
|
|
return Err!(Request(NotFound("Room is unknown to this server.")));
|
2024-06-05 04:32:58 +00:00
|
|
|
}
|
2026-01-27 03:16:49 +00:00
|
|
|
if !services
|
|
|
|
|
.rooms
|
|
|
|
|
.state_cache
|
|
|
|
|
.server_in_room(services.globals.server_name(), &body.room_id)
|
|
|
|
|
.await
|
|
|
|
|
{
|
2026-01-27 23:26:14 +00:00
|
|
|
info!(
|
2026-01-27 03:16:49 +00:00
|
|
|
origin = body.origin().as_str(),
|
2026-04-07 18:18:00 +01:00
|
|
|
room_id = %body.room_id,
|
2026-01-27 03:16:49 +00:00
|
|
|
"Refusing to serve make_join for room we aren't participating in"
|
|
|
|
|
);
|
|
|
|
|
return Err!(Request(NotFound("This server is not participating in that room.")));
|
|
|
|
|
}
|
2024-06-05 04:32:58 +00:00
|
|
|
|
2024-10-24 12:03:56 +00:00
|
|
|
if body.user_id.server_name() != body.origin() {
|
2024-12-07 01:07:01 -05:00
|
|
|
return Err!(Request(BadJson("Not allowed to join on behalf of another server/user.")));
|
2024-06-05 04:32:58 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// ACL check origin server
|
2024-07-16 08:05:25 +00:00
|
|
|
services
|
2024-06-05 04:32:58 +00:00
|
|
|
.rooms
|
|
|
|
|
.event_handler
|
2024-10-24 12:03:56 +00:00
|
|
|
.acl_check(body.origin(), &body.room_id)
|
2024-08-08 17:18:30 +00:00
|
|
|
.await?;
|
2024-06-05 04:32:58 +00:00
|
|
|
|
2024-07-16 08:05:25 +00:00
|
|
|
if services
|
2025-04-19 23:02:43 +01:00
|
|
|
.moderation
|
|
|
|
|
.is_remote_server_forbidden(body.origin())
|
2024-06-05 04:32:58 +00:00
|
|
|
{
|
|
|
|
|
warn!(
|
2024-12-15 00:05:47 -05:00
|
|
|
"Server {} for remote user {} tried joining room ID {} which has a server name that \
|
|
|
|
|
is globally forbidden. Rejecting.",
|
2024-10-24 12:03:56 +00:00
|
|
|
body.origin(),
|
|
|
|
|
&body.user_id,
|
|
|
|
|
&body.room_id,
|
2024-06-05 04:32:58 +00:00
|
|
|
);
|
2024-12-07 01:07:01 -05:00
|
|
|
return Err!(Request(Forbidden("Server is banned on this homeserver.")));
|
2024-06-05 04:32:58 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if let Some(server) = body.room_id.server_name() {
|
2025-04-19 23:02:43 +01:00
|
|
|
if services.moderation.is_remote_server_forbidden(server) {
|
2024-12-07 01:07:01 -05:00
|
|
|
return Err!(Request(Forbidden(warn!(
|
|
|
|
|
"Room ID server name {server} is banned on this homeserver."
|
|
|
|
|
))));
|
2024-06-05 04:32:58 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2026-04-13 11:22:49 -04:00
|
|
|
let room_version = services.rooms.state.get_room_version(&body.room_id).await?;
|
|
|
|
|
let room_version_rules = room_version.rules().unwrap();
|
|
|
|
|
if !body.ver.contains(&room_version) {
|
2024-11-10 21:20:38 -05:00
|
|
|
return Err(Error::BadRequest(
|
2026-04-13 11:22:49 -04:00
|
|
|
ErrorKind::IncompatibleRoomVersion(IncompatibleRoomVersionErrorData::new(
|
|
|
|
|
room_version,
|
|
|
|
|
)),
|
2024-11-10 21:20:38 -05:00
|
|
|
"Room version not supported.",
|
|
|
|
|
));
|
|
|
|
|
}
|
2024-07-02 15:32:40 -04:00
|
|
|
|
2026-04-13 11:22:49 -04:00
|
|
|
let state_lock = services.rooms.state.mutex.lock(body.room_id.as_str()).await;
|
2026-02-13 05:59:07 +00:00
|
|
|
let (is_invited, is_joined) = join!(
|
|
|
|
|
services
|
|
|
|
|
.rooms
|
|
|
|
|
.state_cache
|
|
|
|
|
.is_invited(&body.user_id, &body.room_id),
|
|
|
|
|
services
|
|
|
|
|
.rooms
|
|
|
|
|
.state_cache
|
|
|
|
|
.is_joined(&body.user_id, &body.room_id)
|
|
|
|
|
);
|
2024-12-07 01:07:01 -05:00
|
|
|
let join_authorized_via_users_server: Option<OwnedUserId> = {
|
2026-02-13 05:59:07 +00:00
|
|
|
if is_joined || is_invited {
|
|
|
|
|
// User is already joined or invited and consequently does not need an
|
|
|
|
|
// authorising user
|
|
|
|
|
None
|
2026-04-13 11:22:49 -04:00
|
|
|
} else if !room_version_rules.authorization.restricted_join_rule {
|
2026-02-13 05:59:07 +00:00
|
|
|
// room version does not support restricted join rules
|
2024-12-07 01:07:01 -05:00
|
|
|
None
|
2026-04-13 11:22:49 -04:00
|
|
|
} else if user_can_perform_restricted_join(&services, &body.user_id, &body.room_id)
|
|
|
|
|
.await?
|
2024-12-15 00:05:47 -05:00
|
|
|
{
|
2026-02-13 07:01:14 +00:00
|
|
|
Some(
|
|
|
|
|
select_authorising_user(&services, &body.room_id, &body.user_id, &state_lock)
|
|
|
|
|
.await?,
|
|
|
|
|
)
|
2024-06-05 04:32:58 +00:00
|
|
|
} else {
|
2024-12-07 01:07:01 -05:00
|
|
|
None
|
2024-06-05 04:32:58 +00:00
|
|
|
}
|
|
|
|
|
};
|
2026-01-05 12:41:12 +00:00
|
|
|
if services.antispam.check_all_joins() && join_authorized_via_users_server.is_none() {
|
2026-01-05 12:45:01 +00:00
|
|
|
if services
|
2026-01-05 12:40:38 +00:00
|
|
|
.antispam
|
|
|
|
|
.meowlnir_accept_make_join(body.room_id.clone(), body.user_id.clone())
|
|
|
|
|
.await
|
2026-01-05 12:45:01 +00:00
|
|
|
.is_err()
|
2026-01-05 12:40:38 +00:00
|
|
|
{
|
|
|
|
|
return Err!(Request(Forbidden("Antispam rejected join request.")));
|
|
|
|
|
}
|
|
|
|
|
}
|
2024-06-05 04:32:58 +00:00
|
|
|
|
2026-04-07 18:18:00 +01:00
|
|
|
let (pdu, _) = services
|
2024-08-08 17:18:30 +00:00
|
|
|
.rooms
|
|
|
|
|
.timeline
|
2026-04-07 18:18:00 +01:00
|
|
|
.create_event(
|
2026-04-13 11:22:49 -04:00
|
|
|
PartialPdu::state(
|
|
|
|
|
body.user_id.to_string(),
|
|
|
|
|
&assign!(RoomMemberEventContent::new(MembershipState::Join), {
|
|
|
|
|
join_authorized_via_users_server,
|
|
|
|
|
}),
|
|
|
|
|
),
|
2024-08-08 17:18:30 +00:00
|
|
|
&body.user_id,
|
2025-09-17 20:46:03 +00:00
|
|
|
Some(&body.room_id),
|
2024-08-08 17:18:30 +00:00
|
|
|
&state_lock,
|
|
|
|
|
)
|
|
|
|
|
.await?;
|
2024-06-05 04:32:58 +00:00
|
|
|
drop(state_lock);
|
2026-04-07 18:18:00 +01:00
|
|
|
let mut pdu_json = utils::to_canonical_object(&pdu)
|
|
|
|
|
.expect("Barebones PDU should be convertible to canonical JSON");
|
2026-02-13 05:59:07 +00:00
|
|
|
pdu_json.remove("event_id");
|
2024-06-05 04:32:58 +00:00
|
|
|
|
2026-04-13 11:22:49 -04:00
|
|
|
Ok(
|
|
|
|
|
assign!(prepare_join_event::v1::Response::new(to_raw_value(&pdu_json).expect("CanonicalJson can be serialized to JSON")), {
|
|
|
|
|
room_version: Some(room_version),
|
|
|
|
|
}),
|
|
|
|
|
)
|
2024-06-05 04:32:58 +00:00
|
|
|
}
|
2024-07-02 15:32:40 -04:00
|
|
|
|
2026-02-13 07:01:14 +00:00
|
|
|
/// Attempts to find a user who is able to issue an invite in the target room.
|
2026-04-13 11:22:49 -04:00
|
|
|
pub(crate) async fn select_authorising_user<'a>(
|
2026-02-13 07:01:14 +00:00
|
|
|
services: &Services,
|
2026-04-13 11:22:49 -04:00
|
|
|
room_id: &'a RoomId,
|
|
|
|
|
user_id: &'a UserId,
|
|
|
|
|
state_lock: &'a RoomMutexGuard,
|
2026-02-13 07:01:14 +00:00
|
|
|
) -> Result<OwnedUserId> {
|
2026-04-13 11:22:49 -04:00
|
|
|
let candidates = services.rooms.state_cache.local_users_in_room(room_id);
|
|
|
|
|
|
|
|
|
|
let mut candidates = pin!(candidates);
|
|
|
|
|
|
|
|
|
|
while let Some(candidate) = candidates.next().await {
|
|
|
|
|
if services
|
|
|
|
|
.rooms
|
|
|
|
|
.state_accessor
|
|
|
|
|
.user_can_invite(room_id, &candidate, user_id, state_lock)
|
|
|
|
|
.await
|
|
|
|
|
{
|
|
|
|
|
return Ok(candidate);
|
|
|
|
|
}
|
2026-02-13 07:01:14 +00:00
|
|
|
}
|
2026-04-13 11:22:49 -04:00
|
|
|
|
|
|
|
|
Err!(Request(UnableToGrantJoin(
|
|
|
|
|
"No user on this server is able to assist in joining."
|
|
|
|
|
)))
|
2026-02-13 07:01:14 +00:00
|
|
|
}
|
|
|
|
|
|
2024-07-02 15:32:40 -04:00
|
|
|
/// Checks whether the given user can join the given room via a restricted join.
|
2024-08-08 17:18:30 +00:00
|
|
|
pub(crate) async fn user_can_perform_restricted_join(
|
2024-12-15 00:05:47 -05:00
|
|
|
services: &Services,
|
|
|
|
|
user_id: &UserId,
|
|
|
|
|
room_id: &RoomId,
|
2024-07-02 15:32:40 -04:00
|
|
|
) -> Result<bool> {
|
2024-12-07 01:07:01 -05:00
|
|
|
let Ok(join_rules_event_content) = services
|
|
|
|
|
.rooms
|
|
|
|
|
.state_accessor
|
2024-12-15 00:05:47 -05:00
|
|
|
.room_state_get_content::<RoomJoinRulesEventContent>(
|
|
|
|
|
room_id,
|
|
|
|
|
&StateEventType::RoomJoinRules,
|
|
|
|
|
"",
|
|
|
|
|
)
|
2024-12-07 01:07:01 -05:00
|
|
|
.await
|
|
|
|
|
else {
|
2025-10-08 21:08:48 +01:00
|
|
|
// No join rules means there's nothing to authorise (defaults to invite)
|
2024-12-07 01:07:01 -05:00
|
|
|
return Ok(false);
|
|
|
|
|
};
|
|
|
|
|
|
2024-12-15 00:05:47 -05:00
|
|
|
let (JoinRule::Restricted(r) | JoinRule::KnockRestricted(r)) =
|
|
|
|
|
join_rules_event_content.join_rule
|
|
|
|
|
else {
|
2026-02-13 05:59:07 +00:00
|
|
|
// This is not a restricted room
|
2024-07-02 15:32:40 -04:00
|
|
|
return Ok(false);
|
|
|
|
|
};
|
|
|
|
|
|
2024-12-07 01:07:01 -05:00
|
|
|
if r.allow.is_empty() {
|
2026-02-13 05:59:07 +00:00
|
|
|
// This will never be authorisable, return forbidden.
|
|
|
|
|
return Err!(Request(Forbidden("You are not invited to this room.")));
|
2024-12-07 01:07:01 -05:00
|
|
|
}
|
|
|
|
|
|
2026-02-13 05:59:07 +00:00
|
|
|
let mut could_satisfy = true;
|
2026-01-05 03:36:44 +00:00
|
|
|
for allow_rule in &r.allow {
|
|
|
|
|
match allow_rule {
|
|
|
|
|
| AllowRule::RoomMembership(membership) => {
|
2026-02-13 05:59:07 +00:00
|
|
|
if !services
|
|
|
|
|
.rooms
|
|
|
|
|
.state_cache
|
|
|
|
|
.server_in_room(services.globals.server_name(), &membership.room_id)
|
|
|
|
|
.await
|
|
|
|
|
{
|
|
|
|
|
// Since we can't check this room, mark could_satisfy as false
|
|
|
|
|
// so that we can return M_UNABLE_TO_AUTHORIZE_JOIN later.
|
|
|
|
|
could_satisfy = false;
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
|
2026-01-05 03:36:44 +00:00
|
|
|
if services
|
|
|
|
|
.rooms
|
|
|
|
|
.state_cache
|
|
|
|
|
.is_joined(user_id, &membership.room_id)
|
|
|
|
|
.await
|
|
|
|
|
{
|
|
|
|
|
debug!(
|
|
|
|
|
"User {} is allowed to join room {} via membership in room {}",
|
|
|
|
|
user_id, room_id, membership.room_id
|
|
|
|
|
);
|
|
|
|
|
return Ok(true);
|
|
|
|
|
}
|
|
|
|
|
},
|
2026-04-13 16:32:45 -04:00
|
|
|
| other if other.as_str() == "fi.mau.spam_checker" =>
|
2026-01-05 11:34:15 +00:00
|
|
|
return match services
|
2026-01-05 03:36:44 +00:00
|
|
|
.antispam
|
|
|
|
|
.meowlnir_accept_make_join(room_id.to_owned(), user_id.to_owned())
|
|
|
|
|
.await
|
|
|
|
|
{
|
2026-01-05 11:34:15 +00:00
|
|
|
| Ok(()) => Ok(true),
|
2026-01-05 12:12:34 +00:00
|
|
|
| Err(_) => Err!(Request(Forbidden("Antispam rejected join request."))),
|
2026-01-05 11:34:15 +00:00
|
|
|
},
|
2026-01-05 03:36:44 +00:00
|
|
|
| _ => {
|
2026-02-13 05:59:07 +00:00
|
|
|
// We don't recognise this join rule, so we cannot satisfy the request.
|
|
|
|
|
could_satisfy = false;
|
2026-01-05 03:36:44 +00:00
|
|
|
debug_info!(
|
|
|
|
|
"Unsupported allow rule in restricted join for room {}: {:?}",
|
|
|
|
|
room_id,
|
|
|
|
|
allow_rule
|
|
|
|
|
);
|
|
|
|
|
},
|
|
|
|
|
}
|
2024-07-02 15:32:40 -04:00
|
|
|
}
|
2026-01-05 03:36:44 +00:00
|
|
|
|
2026-02-13 05:59:07 +00:00
|
|
|
if could_satisfy {
|
|
|
|
|
// We were able to check all the restrictions and can be certain that the
|
|
|
|
|
// prospective member is not permitted to join.
|
|
|
|
|
Err!(Request(Forbidden(
|
2026-02-14 23:25:17 +00:00
|
|
|
"You do not belong to any of the rooms or spaces required to join this room."
|
2026-02-13 05:59:07 +00:00
|
|
|
)))
|
|
|
|
|
} else {
|
|
|
|
|
// We were unable to check all the restrictions. This usually means we aren't in
|
|
|
|
|
// one of the rooms this one is restricted to, ergo can't check its state for
|
|
|
|
|
// the user's membership, and consequently the user *might* be able to join if
|
|
|
|
|
// they ask another server.
|
|
|
|
|
Err!(Request(UnableToAuthorizeJoin(
|
2026-02-14 23:25:17 +00:00
|
|
|
"You do not belong to any of the recognised rooms or spaces required to join this \
|
|
|
|
|
room, but this server is unable to verify every requirement. You may be able to \
|
|
|
|
|
join via another server."
|
2026-02-13 05:59:07 +00:00
|
|
|
)))
|
|
|
|
|
}
|
2024-07-02 15:32:40 -04:00
|
|
|
}
|
