|
|
|
@ -22,26 +22,26 @@ description: |-
|
|
|
|
#. If the server name matches an entry in the ``allow`` list, allow.
|
|
|
|
#. If the server name matches an entry in the ``allow`` list, allow.
|
|
|
|
#. Otherwise, deny.
|
|
|
|
#. Otherwise, deny.
|
|
|
|
|
|
|
|
|
|
|
|
.. Note::
|
|
|
|
**Note:**
|
|
|
|
Server ACLs do not restrict the events relative to the room DAG via authorisation
|
|
|
|
Server ACLs do not restrict the events relative to the room DAG via authorisation
|
|
|
|
rules, but instead act purely at the network layer to determine which servers are
|
|
|
|
rules, but instead act purely at the network layer to determine which servers are
|
|
|
|
allowed to connect and interact with a given room.
|
|
|
|
allowed to connect and interact with a given room.
|
|
|
|
|
|
|
|
|
|
|
|
.. WARNING::
|
|
|
|
**Warning:**
|
|
|
|
Failing to provide an ``allow`` rule of some kind will prevent **all**
|
|
|
|
Failing to provide an ``allow`` rule of some kind will prevent **all**
|
|
|
|
servers from participating in the room, including the sender. This renders
|
|
|
|
servers from participating in the room, including the sender. This renders
|
|
|
|
the room unusable. A common allow rule is ``[ "*" ]`` which would still
|
|
|
|
the room unusable. A common allow rule is ``[ "*" ]`` which would still
|
|
|
|
permit the use of the ``deny`` list without losing the room.
|
|
|
|
permit the use of the ``deny`` list without losing the room.
|
|
|
|
|
|
|
|
|
|
|
|
.. WARNING::
|
|
|
|
**Warning:**
|
|
|
|
All compliant servers must implement server ACLs. However, legacy or noncompliant
|
|
|
|
All compliant servers must implement server ACLs. However, legacy or noncompliant
|
|
|
|
servers exist which do not uphold ACLs, and these MUST be manually appended to
|
|
|
|
servers exist which do not uphold ACLs, and these MUST be manually appended to
|
|
|
|
the denied hosts list when setting an ACL to prevent them from leaking events from
|
|
|
|
the denied hosts list when setting an ACL to prevent them from leaking events from
|
|
|
|
banned servers into a room. Currently, the only way to determine noncompliant hosts is
|
|
|
|
banned servers into a room. Currently, the only way to determine noncompliant hosts is
|
|
|
|
to check the ``prev_events`` of leaked events, therefore detecting servers which
|
|
|
|
to check the ``prev_events`` of leaked events, therefore detecting servers which
|
|
|
|
are not upholding the ACLs. Server versions can also be used to try to detect hosts that
|
|
|
|
are not upholding the ACLs. Server versions can also be used to try to detect hosts that
|
|
|
|
will not uphold the ACLs, although this is not comprehensive. Server ACLs were added
|
|
|
|
will not uphold the ACLs, although this is not comprehensive. Server ACLs were added
|
|
|
|
in Synapse v0.32.0, although other server implementations and versions exist in the world.
|
|
|
|
in Synapse v0.32.0, although other server implementations and versions exist in the world.
|
|
|
|
allOf:
|
|
|
|
allOf:
|
|
|
|
- $ref: core-event-schema/state_event.yaml
|
|
|
|
- $ref: core-event-schema/state_event.yaml
|
|
|
|
type: object
|
|
|
|
type: object
|
|
|
|
@ -55,7 +55,7 @@ properties:
|
|
|
|
deny. Defaults to true if missing or otherwise not a boolean.
|
|
|
|
deny. Defaults to true if missing or otherwise not a boolean.
|
|
|
|
|
|
|
|
|
|
|
|
This is strongly recommended to be set to ``false`` as servers running
|
|
|
|
This is strongly recommended to be set to ``false`` as servers running
|
|
|
|
with IP literal names are strongly discouraged in order to require
|
|
|
|
with IP literal names are strongly discouraged in order to require
|
|
|
|
legitimate homeservers to be backed by a valid registered domain name.
|
|
|
|
legitimate homeservers to be backed by a valid registered domain name.
|
|
|
|
allow:
|
|
|
|
allow:
|
|
|
|
type: array
|
|
|
|
type: array
|
|
|
|
|
Will
4 years ago