Merge pull request #856 from matrix-org/erikj/fed_pub_rooms

Enable auth on /publicRoom endpoints
matrix-org · Jun 8, 2016 · 958c968 · 958c968
2 parents 746b2f5 + efeabd3
commit 958c968
Show file tree

Hide file tree

Showing 2 changed files with 7 additions and 5 deletions.
diff --git a/synapse/federation/transport/server.py b/synapse/federation/transport/server.py
@@ -532,11 +532,6 @@ def on_GET(self, request):
         data = yield self.room_list_handler.get_local_public_room_list()
         defer.returnValue((200, data))
 
-    # Avoid doing remote HS authorization checks which are done by default by
-    # BaseFederationServlet.
-    def _wrap(self, code):
-        return code
-
 
 SERVLET_CLASSES = (
     FederationSendServlet,

diff --git a/synapse/rest/client/v1/room.py b/synapse/rest/client/v1/room.py
@@ -279,6 +279,13 @@ class PublicRoomListRestServlet(ClientV1RestServlet):
 
     @defer.inlineCallbacks
     def on_GET(self, request):
+        try:
+            yield self.auth.get_user_by_req(request)
+        except AuthError:
+            # This endpoint isn't authed, but its useful to know who's hitting
+            # it if they *do* supply an access token
+            pass
+
         handler = self.hs.get_room_list_handler()
         data = yield handler.get_aggregated_public_room_list()