diff --git a/.circleci/config.yml b/.circleci/config.yml
index 3a0b6032..f79449f3 100644
--- a/.circleci/config.yml
+++ b/.circleci/config.yml
@@ -23,9 +23,29 @@ buildswaggerui: &buildswaggerui
wget https://raw.githubusercontent.com/matrix-org/matrix.org/master/scripts/swagger-ui.patch
patch api/client-server/index.html swagger-ui.patch
+checkexamples: &checkexamples
+ name: Check Event Examples
+ command: |
+ source /env/bin/activate
+ cd event-schemas
+ ./check_examples.py
+
+genmatrixassets: &genmatrixassets
+ name: Generate/Verify matrix.org assets
+ command: |
+ source /env/bin/activate
+ ./scripts/generate-matrix-org-assets
+
version: 2
jobs:
+ check-docs:
+ docker:
+ - image: uhoreg/matrix-doc-build
+ steps:
+ - checkout
+ - run: *checkexamples
+ - run: *genmatrixassets # We don't actually use the assets, but we do want to make sure they build
build-docs:
docker:
- image: uhoreg/matrix-doc-build
diff --git a/api/application-service/definitions/location.yaml b/api/application-service/definitions/location.yaml
index 4967ef61..5a0f92c8 100644
--- a/api/application-service/definitions/location.yaml
+++ b/api/application-service/definitions/location.yaml
@@ -19,12 +19,14 @@ properties:
protocol:
description: The protocol ID that the third party location is a part of.
type: string
- example: irc
+ example: "irc"
fields:
description: Information used to identify this third party location.
type: object
- example:
- "network": "freenode"
+ example: {
+ "network": "freenode",
"channel": "#matrix"
+ }
+required: ['alias', 'protocol', 'fields']
title: Location
type: object
\ No newline at end of file
diff --git a/api/application-service/definitions/protocol.yaml b/api/application-service/definitions/protocol.yaml
index 231e8288..851091d6 100644
--- a/api/application-service/definitions/protocol.yaml
+++ b/api/application-service/definitions/protocol.yaml
@@ -11,41 +11,60 @@
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
+title: Protocol
+type: object
properties:
user_fields:
- description: Fields used to identify a third party user.
+ description: |-
+ Fields which may be used to identify a third party user. These should be
+ ordered to suggest the way that entities may be grouped, where higher
+ groupings are ordered first. For example, the name of a network should be
+ searched before the nickname of a user.
type: array
items:
type: string
description: Field used to identify a third party user.
example: ["network", "nickname"]
location_fields:
- description: Fields used to identify a third party location.
+ description: |-
+ Fields which may be used to identify a third party location. These should be
+ ordered to suggest the way that entities may be grouped, where higher
+ groupings are ordered first. For example, the name of a network should be
+ searched before the name of a channel.
type: array
items:
type: string
description: Field used to identify a third party location.
example: ["network", "channel"]
icon:
- description: An icon representing the third party protocol.
+ description: A content URI representing an icon for the third party protocol.
type: string
example: "mxc://example.org/aBcDeFgH"
field_types:
title: Field Types
- description: All location or user fields should have an entry here.
+ description: |-
+ The type definitions for the fields defined in the ``user_fields`` and
+ ``location_fields``. Each entry in those arrays MUST have an entry here. The
+ ``string`` key for this object is field name itself.
+
+ May be an empty object if no fields are defined.
type: object
- properties:
- fieldname:
- title: Field Type
- description: Definition of valid values for a field.
- type: object
- properties:
- regexp:
- description: A regular expression for validation of a field's value.
- type: string
- placeholder:
- description: An placeholder serving as a valid example of the field value.
- type: string
+ additionalProperties:
+ title: Field Type
+ description: Definition of valid values for a field.
+ type: object
+ properties:
+ regexp:
+ description: |-
+ A regular expression for validation of a field's value. This may be relatively
+ coarse to verify the value as the application service providing this protocol
+ may apply additional validation or filtering.
+ type: string
+ placeholder:
+ description: An placeholder serving as a valid example of the field value.
+ type: string
+ required: ['regexp', 'placeholder']
+ required: ['fieldname']
example: {
"network": {
"regexp": "([a-z0-9]+\\.)*[a-z0-9]+",
@@ -63,17 +82,32 @@ properties:
instances:
description: |-
A list of objects representing independent instances of configuration.
- For instance multiple networks on IRC if multiple are bridged by the
- same bridge.
+ For example, multiple networks on IRC if multiple are provided by the
+ same application service.
type: array
items:
type: object
- example: {
- "desc": "Freenode",
- "icon": "mxc://example.org/JkLmNoPq",
- "fields": {
- "network": "freenode.net",
- }
- }
-title: Protocol
-type: object
\ No newline at end of file
+ title: Protocol Instance
+ properties:
+ desc:
+ type: string
+ description: A human-readable description for the protocol, such as the name.
+ example: "Freenode"
+ icon:
+ type: string
+ description: |-
+ An optional content URI representing the protocol. Overrides the one provided
+ at the higher level Protocol object.
+ example: "mxc://example.org/JkLmNoPq"
+ fields:
+ type: object
+ description: Preset values for ``fields`` the client may use to search by.
+ example: {
+ "network": "freenode"
+ }
+ network_id:
+ type: string
+ description: A unique identifier across all instances.
+ example: "freenode"
+ required: ['desc', 'fields', 'network_id']
+required: ['user_fields', 'location_fields', 'icon', 'field_types', 'instances']
diff --git a/api/application-service/definitions/protocol_metadata.yaml b/api/application-service/definitions/protocol_metadata.yaml
index 2b2c8f4e..e7bf45da 100644
--- a/api/application-service/definitions/protocol_metadata.yaml
+++ b/api/application-service/definitions/protocol_metadata.yaml
@@ -36,6 +36,7 @@ example: {
},
"instances": [
{
+ "network_id": "freenode",
"desc": "Freenode",
"icon": "mxc://example.org/JkLmNoPq",
"fields": {
@@ -59,6 +60,7 @@ example: {
},
"instances": [
{
+ "network_id": "gitter",
"desc": "Gitter",
"icon": "mxc://example.org/zXyWvUt",
"fields": {}
diff --git a/api/application-service/definitions/user.yaml b/api/application-service/definitions/user.yaml
index a7b2287e..258e7c13 100644
--- a/api/application-service/definitions/user.yaml
+++ b/api/application-service/definitions/user.yaml
@@ -21,11 +21,13 @@ properties:
protocol:
description: The protocol ID that the third party location is a part of.
type: string
- example: gitter
+ example: "gitter"
fields:
description: Information used to identify this third party location.
type: object
- example:
+ example: {
"user": "jim"
+ }
+required: ['userid', 'protocol', 'fields']
title: User
type: object
\ No newline at end of file
diff --git a/api/application-service/application_service.yaml b/api/application-service/protocols.yaml
similarity index 78%
rename from api/application-service/application_service.yaml
rename to api/application-service/protocols.yaml
index bc6e45d5..e6489cc5 100644
--- a/api/application-service/application_service.yaml
+++ b/api/application-service/protocols.yaml
@@ -1,4 +1,3 @@
-# Copyright 2016 OpenMarket Ltd
# Copyright 2018 New Vector Ltd
#
# Licensed under the Apache License, Version 2.0 (the "License");
@@ -26,76 +25,6 @@ consumes:
produces:
- application/json
paths:
- "/transactions/{txnId}":
- put:
- summary: Send some events to the application service.
- description: |-
- This API is called by the homeserver when it wants to push an event
- (or batch of events) to the application service.
-
- Note that the application service should distinguish state events
- from message events via the presence of a ``state_key``, rather than
- via the event type.
- operationId: sendTransaction
- parameters:
- - in: path
- name: txnId
- type: string
- description: |-
- The transaction ID for this set of events. Homeservers generate
- these IDs and they are used to ensure idempotency of requests.
- required: true
- x-example: "35"
- - in: body
- name: body
- description: A list of events.
- schema:
- type: object
- example: {
- "events": [
- {
- "age": 32,
- "content": {
- "body": "incoming message",
- "msgtype": "m.text"
- },
- "event_id": "$14328055551tzaee:localhost",
- "origin_server_ts": 1432804485886,
- "room_id": "!TmaZBKYIFrIPVGoUYp:localhost",
- "type": "m.room.message",
- "user_id": "@bob:localhost"
- },
- {
- "age": 1984,
- "content": {
- "body": "another incoming message",
- "msgtype": "m.text"
- },
- "event_id": "$1228055551ffsef:localhost",
- "origin_server_ts": 1432804485886,
- "room_id": "!TmaZBKYIFrIPVGoUYp:localhost",
- "type": "m.room.message",
- "user_id": "@bob:localhost"
- }
- ]
- }
- description: "Transaction informations"
- properties:
- events:
- type: array
- description: A list of events
- items:
- type: object
- title: Event
- required: ["events"]
- responses:
- 200:
- description: The transaction was processed successfully.
- examples:
- application/json: {
- }
- schema:
- type: object
"/_matrix/app/unstable/thirdparty/protocol/{protocol}":
get:
summary: Retrieve metadata about a specific protocol that the application service supports.
@@ -198,7 +127,7 @@ paths:
$ref: ../client-server/definitions/errors/error.yaml
"/_matrix/app/unstable/thirdparty/location/{protocol}":
get:
- summary: Retreive Matrix-side portal rooms leading to a third party location.
+ summary: Retrieve Matrix-side portal rooms leading to a third party location.
description: |-
Retrieve a list of Matrix portal rooms that lead to the matched third party location.
operationId: queryLocationByProtocol
@@ -251,7 +180,7 @@ paths:
get:
summary: Reverse-lookup third party locations given a Matrix room alias.
description: |-
- Retreive an array of third party network locations from a Matrix room
+ Retrieve an array of third party network locations from a Matrix room
alias.
operationId: queryLocationByAlias
parameters:
@@ -296,7 +225,7 @@ paths:
get:
summary: Reverse-lookup third party users given a Matrix User ID.
description: |-
- Retreive an array of third party users from a Matrix User ID.
+ Retrieve an array of third party users from a Matrix User ID.
operationId: queryUserByID
parameters:
- in: query
diff --git a/api/application-service/transactions.yaml b/api/application-service/transactions.yaml
new file mode 100644
index 00000000..8735cc8f
--- /dev/null
+++ b/api/application-service/transactions.yaml
@@ -0,0 +1,74 @@
+# Copyright 2016 OpenMarket Ltd
+# Copyright 2018 New Vector Ltd
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+swagger: '2.0'
+info:
+ title: "Matrix Application Service API"
+ version: "1.0.0"
+host: localhost:8008
+schemes:
+ - https
+ - http
+basePath: "/"
+produces:
+ - application/json
+paths:
+ "/transactions/{txnId}":
+ put:
+ summary: Send some events to the application service.
+ description: |-
+ This API is called by the homeserver when it wants to push an event
+ (or batch of events) to the application service.
+
+ Note that the application service should distinguish state events
+ from message events via the presence of a ``state_key``, rather than
+ via the event type.
+ operationId: sendTransaction
+ parameters:
+ - in: path
+ name: txnId
+ type: string
+ description: |-
+ The transaction ID for this set of events. Homeservers generate
+ these IDs and they are used to ensure idempotency of requests.
+ required: true
+ x-example: "35"
+ - in: body
+ name: body
+ description: A list of events.
+ schema:
+ type: object
+ example: {
+ "events": [
+ {"$ref": "../../event-schemas/examples/m.room.member"},
+ {"$ref": "../../event-schemas/examples/m.room.message#m.text"}
+ ]
+ }
+ description: Transaction information
+ properties:
+ events:
+ type: array
+ description: |-
+ A list of events, formatted as per the Client-Server API.
+ items:
+ type: object
+ title: Event
+ required: ["events"]
+ responses:
+ 200:
+ description: The transaction was processed successfully.
+ examples:
+ application/json: {}
+ schema:
+ type: object
diff --git a/api/client-server/appservice_room_directory.yaml b/api/client-server/appservice_room_directory.yaml
new file mode 100644
index 00000000..0225ecd8
--- /dev/null
+++ b/api/client-server/appservice_room_directory.yaml
@@ -0,0 +1,87 @@
+# Copyright 2018 New Vector Ltd
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+swagger: '2.0'
+info:
+ title: "Matrix Client-Server Application Service Room Directory API"
+ version: "1.0.0"
+host: localhost:8008
+schemes:
+ - https
+ - http
+basePath: /_matrix/client/%CLIENT_MAJOR_VERSION%
+consumes:
+ - application/json
+produces:
+ - application/json
+securityDefinitions:
+ # Note: this is the same access_token definition used elsewhere in the client
+ # server API, however this expects an access token for an application service.
+ $ref: definitions/security.yaml
+paths:
+ "/directory/list/appservice/{networkId}/{roomId}":
+ put:
+ summary: |-
+ Updates a room's visibility in the application service's room directory.
+ description: |-
+ Updates the visibility of a given room on the application service's room
+ directory.
+
+ This API is similar to the room directory visibility API used by clients
+ to update the homeserver's more general room directory.
+
+ This API requires the use of an application service access token (``as_token``)
+ instead of a typical client's access_token. This API cannot be invoked by
+ users who are not identified as application services.
+ operationId: updateAppserviceRoomDirectoryVsibility
+ parameters:
+ - in: path
+ type: string
+ name: networkId
+ description: |-
+ The protocol (network) ID to update the room list for. This would
+ have been provided by the application service as being listed as
+ a supported protocol.
+ required: true
+ x-example: "irc"
+ - in: path
+ type: string
+ name: roomId
+ description: The room ID to add to the directory.
+ required: true
+ x-example: "!somewhere:domain.com"
+ - in: body
+ name: body
+ schema:
+ type: object
+ properties:
+ visibility:
+ type: enum
+ enum: ["public", "private"]
+ description: |-
+ Whether the room should be visible (public) in the directory
+ or not (private).
+ example: "public"
+ required: ['visibility']
+ security:
+ # again, this is the appservice's token - not a typical client's
+ - accessToken: []
+ responses:
+ 200:
+ description: The room's directory visibility has been updated.
+ schema:
+ type: object
+ examples:
+ application/json: {}
+ tags:
+ - Application service room directory management
diff --git a/api/client-server/definitions/event_filter.yaml b/api/client-server/definitions/event_filter.yaml
index 1cae3ea9..8c96917f 100644
--- a/api/client-server/definitions/event_filter.yaml
+++ b/api/client-server/definitions/event_filter.yaml
@@ -11,7 +11,7 @@
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
-title: Filter
+title: EventFilter
properties:
limit:
description: The maximum number of events to return.
diff --git a/api/client-server/definitions/room_event_filter.yaml b/api/client-server/definitions/room_event_filter.yaml
index 7d9184b5..c36b3768 100644
--- a/api/client-server/definitions/room_event_filter.yaml
+++ b/api/client-server/definitions/room_event_filter.yaml
@@ -13,23 +13,23 @@
# limitations under the License.
allOf:
- $ref: event_filter.yaml
-title: RoomEventFilter
-properties:
- not_rooms:
- description: A list of room IDs to exclude. If this list is absent then no rooms
- are excluded. A matching room will be excluded even if it is listed in the ``'rooms'``
- filter.
- items:
- type: string
- type: array
- rooms:
- description: A list of room IDs to include. If this list is absent then all rooms
- are included.
- items:
- type: string
- type: array
- contains_url:
- type: boolean
- description: If ``true``, includes only events with a url key in their content. If
- ``false``, excludes those events.
-type: object
+- type: object
+ title: RoomEventFilter
+ properties:
+ not_rooms:
+ description: A list of room IDs to exclude. If this list is absent then no rooms
+ are excluded. A matching room will be excluded even if it is listed in the ``'rooms'``
+ filter.
+ items:
+ type: string
+ type: array
+ rooms:
+ description: A list of room IDs to include. If this list is absent then all rooms
+ are included.
+ items:
+ type: string
+ type: array
+ contains_url:
+ type: boolean
+ description: If ``true``, includes only events with a ``url`` key in their content. If
+ ``false``, excludes those events. Defaults to ``false``.
diff --git a/api/client-server/definitions/sync_filter.yaml b/api/client-server/definitions/sync_filter.yaml
index 69b245a3..33bead26 100644
--- a/api/client-server/definitions/sync_filter.yaml
+++ b/api/client-server/definitions/sync_filter.yaml
@@ -11,6 +11,8 @@
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
+type: object
+title: Filter
properties:
event_fields:
description: List of event fields to include. If this list is absent then all
@@ -40,6 +42,7 @@ properties:
room:
title: RoomFilter
description: Filters to be applied to room data.
+ type: object
properties:
not_rooms:
description: A list of room IDs to exclude. If this list is absent then no rooms
@@ -76,5 +79,3 @@ properties:
allOf:
- $ref: room_event_filter.yaml
description: The per user account data to include for rooms.
- type: object
-type: object
diff --git a/api/client-server/directory.yaml b/api/client-server/directory.yaml
index ee42cf84..78ddfa29 100644
--- a/api/client-server/directory.yaml
+++ b/api/client-server/directory.yaml
@@ -41,7 +41,7 @@ paths:
required: true
x-example: "#monkeys:matrix.org"
- in: body
- name: roomInfo
+ name: body
description: Information about this room alias.
required: true
schema:
@@ -50,24 +50,24 @@ paths:
room_id:
type: string
description: The room ID to set.
+ required: ['room_id']
example: {
- "room_id": "!abnjk1jdasj98:capuchins.com"
- }
+ "room_id": "!abnjk1jdasj98:capuchins.com"
+ }
responses:
200:
description: The mapping was created.
examples:
- application/json: {
- }
+ application/json: {}
schema:
type: object
409:
description: A room alias with that name already exists.
examples:
application/json: {
- "errcode": "M_UNKNOWN",
- "error": "Room alias #monkeys:matrix.org already exists."
- }
+ "errcode": "M_UNKNOWN",
+ "error": "Room alias #monkeys:matrix.org already exists."
+ }
schema:
"$ref": "definitions/errors/error.yaml"
tags:
diff --git a/api/client-server/filter.yaml b/api/client-server/filter.yaml
index b34da7b6..db215196 100644
--- a/api/client-server/filter.yaml
+++ b/api/client-server/filter.yaml
@@ -54,44 +54,45 @@ paths:
allOf:
- $ref: "definitions/sync_filter.yaml"
example: {
- "room": {
- "state": {
- "types": ["m.room.*"],
- "not_rooms": ["!726s6s6q:example.com"]
- },
- "timeline": {
- "limit": 10,
- "types": ["m.room.message"],
- "not_rooms": ["!726s6s6q:example.com"],
- "not_senders": ["@spam:example.com"]
- },
- "ephemeral": {
- "types": ["m.receipt", "m.typing"],
- "not_rooms": ["!726s6s6q:example.com"],
- "not_senders": ["@spam:example.com"]
- }
+ "room": {
+ "state": {
+ "types": ["m.room.*"],
+ "not_rooms": ["!726s6s6q:example.com"]
},
- "presence": {
- "types": ["m.presence"],
- "not_senders": ["@alice:example.com"]
+ "timeline": {
+ "limit": 10,
+ "types": ["m.room.message"],
+ "not_rooms": ["!726s6s6q:example.com"],
+ "not_senders": ["@spam:example.com"]
},
- "event_format": "client",
- "event_fields": ["type", "content", "sender"]
- }
+ "ephemeral": {
+ "types": ["m.receipt", "m.typing"],
+ "not_rooms": ["!726s6s6q:example.com"],
+ "not_senders": ["@spam:example.com"]
+ }
+ },
+ "presence": {
+ "types": ["m.presence"],
+ "not_senders": ["@alice:example.com"]
+ },
+ "event_format": "client",
+ "event_fields": ["type", "content", "sender"]
+ }
responses:
200:
description: The filter was created.
- examples:
- application/json: {
- "filter_id": "66696p746572"
- }
schema:
type: object
properties:
filter_id:
type: string
description: |-
- The ID of the filter that was created.
+ The ID of the filter that was created. Cannot start
+ with a ``{`` as this character is used to determine
+ if the filter provided is inline JSON or a previously
+ declared filter by homeservers on some APIs.
+ example: "66696p746572"
+ required: ['filter_id']
tags:
- Room participation
"/user/{userId}/filter/{filterId}":
diff --git a/api/client-server/list_public_rooms.yaml b/api/client-server/list_public_rooms.yaml
index 72a12060..d1abc68e 100644
--- a/api/client-server/list_public_rooms.yaml
+++ b/api/client-server/list_public_rooms.yaml
@@ -194,8 +194,26 @@ paths:
description: |-
A string to search for in the room metadata, e.g. name,
topic, canonical alias etc. (Optional).
+ include_all_networks:
+ type: boolean
+ description: |-
+ Whether or not to include all known networks/protocols from
+ application services on the homeserver. Defaults to false.
+ example: false
+ third_party_instance_id:
+ type: string
+ description: |-
+ The specific third party network/protocol to request from the
+ homeserver. Can only be used if ``include_all_networks`` is false.
+ example: "irc"
example: {
- "limit": 10, "filter": {"generic_search_term": "foo"}}
+ "limit": 10,
+ "filter": {
+ "generic_search_term": "foo"
+ },
+ "include_all_networks": false,
+ "third_party_instance_id": "irc"
+ }
responses:
200:
description: A list of the rooms on the server.
diff --git a/api/client-server/openid.yaml b/api/client-server/openid.yaml
index 4b89232e..cb982fb3 100644
--- a/api/client-server/openid.yaml
+++ b/api/client-server/openid.yaml
@@ -90,7 +90,7 @@ paths:
The homeserver domain the consumer should use when attempting to
verify the user's identity.
expires_in:
- type: int
+ type: integer
description: |-
The number of seconds before this token expires and a new one must
be generated.
diff --git a/api/client-server/pushrules.yaml b/api/client-server/pushrules.yaml
index ceb9954b..e23c9189 100644
--- a/api/client-server/pushrules.yaml
+++ b/api/client-server/pushrules.yaml
@@ -343,6 +343,8 @@ paths:
This endpoint allows the creation, modification and deletion of pushers
for this user ID. The behaviour of this endpoint varies depending on the
values in the JSON body.
+
+ When creating push rules, they MUST be enabled by default.
operationId: setPushRule
security:
- accessToken: []
@@ -424,7 +426,7 @@ paths:
required: ["actions"]
responses:
200:
- description: The pusher was set.
+ description: The push rule was created/updated.
examples:
application/json: {
}
diff --git a/api/client-server/search.yaml b/api/client-server/search.yaml
index e4118c32..6feb5778 100644
--- a/api/client-server/search.yaml
+++ b/api/client-server/search.yaml
@@ -41,7 +41,7 @@ paths:
type: string
description: |-
The point to return events from. If given, this should be a
- `next_batch` result from a previous call to this endpoint.
+ ``next_batch`` result from a previous call to this endpoint.
x-example: "YWxsCgpOb25lLDM1ODcwOA"
- in: body
name: body
@@ -95,6 +95,7 @@ paths:
# for now :/
description: |-
This takes a `filter`_.
+ $ref: "definitions/room_event_filter.yaml"
order_by:
title: "Ordering"
type: string
diff --git a/api/client-server/sync.yaml b/api/client-server/sync.yaml
index 4b44c20e..f1997b61 100644
--- a/api/client-server/sync.yaml
+++ b/api/client-server/sync.yaml
@@ -227,6 +227,14 @@ paths:
room up to the point when the user left.
allOf:
- $ref: "definitions/timeline_batch.yaml"
+ account_data:
+ title: Account Data
+ type: object
+ description: |-
+ The private data that this user has attached to
+ this room.
+ allOf:
+ - $ref: "definitions/event_batch.yaml"
presence:
title: Presence
type: object
diff --git a/api/client-server/third_party_lookup.yaml b/api/client-server/third_party_lookup.yaml
index cba9ce22..3d348df2 100644
--- a/api/client-server/third_party_lookup.yaml
+++ b/api/client-server/third_party_lookup.yaml
@@ -73,7 +73,7 @@ paths:
$ref: definitions/errors/error.yaml
"/thirdparty/location/{protocol}":
get:
- summary: Retreive Matrix-side portals rooms leading to a third party location.
+ summary: Retrieve Matrix-side portals rooms leading to a third party location.
description: |-
Requesting this endpoint with a valid protocol name results in a list
of successful mapping results in a JSON array. Each result contains
@@ -151,7 +151,7 @@ paths:
get:
summary: Reverse-lookup third party locations given a Matrix room alias.
description: |-
- Retreive an array of third party network locations from a Matrix room
+ Retrieve an array of third party network locations from a Matrix room
alias.
operationId: queryLocationByAlias
security:
@@ -181,7 +181,7 @@ paths:
get:
summary: Reverse-lookup third party users given a Matrix User ID.
description: |-
- Retreive an array of third party users from a Matrix User ID.
+ Retrieve an array of third party users from a Matrix User ID.
operationId: queryUserByID
security:
- accessToken: []
diff --git a/api/server-server/public_rooms.yaml b/api/server-server/public_rooms.yaml
index d162568f..b7691023 100644
--- a/api/server-server/public_rooms.yaml
+++ b/api/server-server/public_rooms.yaml
@@ -49,6 +49,20 @@ paths:
A pagination token from a previous call to this endpoint to fetch more
rooms.
x-example: "GetMoreRoomsTokenHere"
+ - in: query
+ name: include_all_networks
+ type: boolean
+ description: |-
+ Whether or not to include all networks/protocols defined by application
+ services on the homeserver. Defaults to false.
+ x-example: false
+ - in: query
+ name: third_party_instance_id
+ type: string
+ description: |-
+ The specific third party network/protocol to request from the homeserver.
+ Can only be used if ``include_all_networks`` is false.
+ x-example: "irc"
responses:
200:
description: The public room list for the homeserver.
diff --git a/changelogs/client_server/newsfragments/1550.feature b/changelogs/client_server/newsfragments/1550.feature
new file mode 100644
index 00000000..f04fa9ae
--- /dev/null
+++ b/changelogs/client_server/newsfragments/1550.feature
@@ -0,0 +1 @@
+Add server ACLs as an option for controlling federation in a room.
diff --git a/changelogs/client_server/newsfragments/1551.clarification b/changelogs/client_server/newsfragments/1551.clarification
new file mode 100644
index 00000000..06eac4da
--- /dev/null
+++ b/changelogs/client_server/newsfragments/1551.clarification
@@ -0,0 +1 @@
+Clarify that new push rules should be enabled by default, and that unrecognised conditions should not match.
diff --git a/changelogs/client_server/newsfragments/1551.feature b/changelogs/client_server/newsfragments/1551.feature
new file mode 100644
index 00000000..dfce0f0a
--- /dev/null
+++ b/changelogs/client_server/newsfragments/1551.feature
@@ -0,0 +1 @@
+Add new push rules for encrypted events and ``@room`` notifications.
diff --git a/changelogs/client_server/newsfragments/1554.feature b/changelogs/client_server/newsfragments/1554.feature
new file mode 100644
index 00000000..ec7ffe71
--- /dev/null
+++ b/changelogs/client_server/newsfragments/1554.feature
@@ -0,0 +1 @@
+Add third party network room directories, as provided by application services.
diff --git a/changelogs/client_server/newsfragments/1562.clarification b/changelogs/client_server/newsfragments/1562.clarification
new file mode 100644
index 00000000..c46e189d
--- /dev/null
+++ b/changelogs/client_server/newsfragments/1562.clarification
@@ -0,0 +1 @@
+Clarify the supported HTML features for room messages.
diff --git a/changelogs/client_server/newsfragments/1568.clarification b/changelogs/client_server/newsfragments/1568.clarification
new file mode 100644
index 00000000..4b7a6eaf
--- /dev/null
+++ b/changelogs/client_server/newsfragments/1568.clarification
@@ -0,0 +1 @@
+Move the ``invite_room_state`` definition under ``unsigned`` where it actually resides.
diff --git a/changelogs/client_server/newsfragments/1570.clarification b/changelogs/client_server/newsfragments/1570.clarification
new file mode 100644
index 00000000..dbf8a821
--- /dev/null
+++ b/changelogs/client_server/newsfragments/1570.clarification
@@ -0,0 +1 @@
+Clarify the object structures and defaults for Filters.
diff --git a/changelogs/client_server/newsfragments/1572.clarification b/changelogs/client_server/newsfragments/1572.clarification
new file mode 100644
index 00000000..7e84098f
--- /dev/null
+++ b/changelogs/client_server/newsfragments/1572.clarification
@@ -0,0 +1 @@
+Clarify that left rooms also have account data in ``/sync``.
diff --git a/changelogs/client_server/newsfragments/1574.clarification b/changelogs/client_server/newsfragments/1574.clarification
new file mode 100644
index 00000000..8d07ef56
--- /dev/null
+++ b/changelogs/client_server/newsfragments/1574.clarification
@@ -0,0 +1 @@
+Fix naming of the body field in ``PUT /directory/room``.
diff --git a/changelogs/client_server/newsfragments/1577.clarification b/changelogs/client_server/newsfragments/1577.clarification
new file mode 100644
index 00000000..aec3248f
--- /dev/null
+++ b/changelogs/client_server/newsfragments/1577.clarification
@@ -0,0 +1 @@
+Clarify the filter object schema used in room searching.
diff --git a/event-schemas/examples/m.room.member#invite_room_state b/event-schemas/examples/m.room.member#invite_room_state
index 54d71ca7..44f160c2 100644
--- a/event-schemas/examples/m.room.member#invite_room_state
+++ b/event-schemas/examples/m.room.member#invite_room_state
@@ -5,12 +5,21 @@
"avatar_url": "mxc://domain.com/SEsfnsuifSDFSSEF#auto",
"displayname": "Alice Margatroid"
},
- "invite_room_state": [
- {
- "type": "m.room.name",
- "state_key": "",
- "content": {
- "name": "Forest of Magic"
+ "unsigned": {
+ "invite_room_state": [
+ {
+ "type": "m.room.name",
+ "state_key": "",
+ "content": {
+ "name": "Forest of Magic"
+ }
+ },
+ {
+ "type": "m.room.join_rules",
+ "state_key": "",
+ "content": {
+ "join_rule": "invite"
+ }
}
},
{
diff --git a/event-schemas/examples/m.room.message#m.notice b/event-schemas/examples/m.room.message#m.notice
index 78e9dea6..d33751da 100644
--- a/event-schemas/examples/m.room.message#m.notice
+++ b/event-schemas/examples/m.room.message#m.notice
@@ -3,6 +3,8 @@
"type": "m.room.message",
"content": {
"body": "This is an example notice",
- "msgtype": "m.notice"
+ "msgtype": "m.notice",
+ "format": "org.matrix.custom.html",
+ "formatted_body": "This is an example notice"
}
}
diff --git a/event-schemas/examples/m.room.server_acl b/event-schemas/examples/m.room.server_acl
new file mode 100644
index 00000000..86da2093
--- /dev/null
+++ b/event-schemas/examples/m.room.server_acl
@@ -0,0 +1,14 @@
+{
+ "age": 242352,
+ "content": {
+ "allow_ip_literals": false,
+ "allow": ["*"],
+ "deny": ["*.evil.com", "evil.com"]
+ },
+ "state_key": "",
+ "origin_server_ts": 1431961217939,
+ "event_id": "$WLGTSEFSEF:localhost",
+ "type": "m.room.server_acl",
+ "room_id": "!Cuyf34gef24t:localhost",
+ "sender": "@example:localhost"
+}
diff --git a/event-schemas/schema/m.room.encrypted b/event-schemas/schema/m.room.encrypted
index 6825be1d..44b09c3f 100644
--- a/event-schemas/schema/m.room.encrypted
+++ b/event-schemas/schema/m.room.encrypted
@@ -13,8 +13,8 @@ properties:
algorithm:
type: string
enum:
- - m.olm.curve25519-aes-sha256
- - m.megolm.v1.aes-sha
+ - m.olm.v1.curve25519-aes-sha2
+ - m.megolm.v1.aes-sha2
description: |-
The encryption algorithm used to encrypt this event. The
value of this field determines which other properties will be
diff --git a/event-schemas/schema/m.room.member b/event-schemas/schema/m.room.member
index 4f4077a7..5fb5356d 100644
--- a/event-schemas/schema/m.room.member
+++ b/event-schemas/schema/m.room.member
@@ -18,7 +18,9 @@ description: |-
The ``third_party_invite`` property will be set if this invite is an ``invite`` event and is the successor of an ``m.room.third_party_invite`` event, and absent otherwise.
- This event may also include an ``invite_room_state`` key **outside the** ``content`` **key**. If present, this contains an array of ``StrippedState`` Events. These events provide information on a subset of state events such as the room name.
+ This event may also include an ``invite_room_state`` key inside the event's ``unsigned`` data.
+ If present, this contains an array of ``StrippedState`` Events. These events provide information
+ on a subset of state events such as the room name.
properties:
content:
properties:
@@ -71,32 +73,37 @@ properties:
- signed
title: Invite
type: object
+ unsigned:
+ type: object
+ title: UnsignedData
+ description: Contains optional extra information about the event.
+ properties:
+ invite_room_state:
+ description: 'A subset of the state of the room at the time of the invite, if ``membership`` is ``invite``. Note that this state is informational, and SHOULD NOT be trusted; once the client has joined the room, it SHOULD fetch the live state from the server and discard the invite_room_state. Also, clients must not rely on any particular state being present here; they SHOULD behave properly (with possibly a degraded but not a broken experience) in the absence of any particular events here. If they are set on the room, at least the state for ``m.room.avatar``, ``m.room.canonical_alias``, ``m.room.join_rules``, and ``m.room.name`` SHOULD be included.'
+ items:
+ description: 'A stripped down state event, with only the ``type``, ``state_key`` and ``content`` keys.'
+ properties:
+ content:
+ description: The ``content`` for the event.
+ title: EventContent
+ type: object
+ state_key:
+ description: The ``state_key`` for the event.
+ type: string
+ type:
+ description: The ``type`` for the event.
+ type: string
+ required:
+ - type
+ - state_key
+ - content
+ title: StrippedState
+ type: object
+ type: array
required:
- membership
title: EventContent
type: object
- invite_room_state:
- description: 'A subset of the state of the room at the time of the invite, if ``membership`` is ``invite``. Note that this state is informational, and SHOULD NOT be trusted; once the client has joined the room, it SHOULD fetch the live state from the server and discard the invite_room_state. Also, clients must not rely on any particular state being present here; they SHOULD behave properly (with possibly a degraded but not a broken experience) in the absence of any particular events here. If they are set on the room, at least the state for ``m.room.avatar``, ``m.room.canonical_alias``, ``m.room.join_rules``, and ``m.room.name`` SHOULD be included.'
- items:
- description: 'A stripped down state event, with only the ``type``, ``state_key`` and ``content`` keys.'
- properties:
- content:
- description: The ``content`` for the event.
- title: EventContent
- type: object
- state_key:
- description: The ``state_key`` for the event.
- type: string
- type:
- description: The ``type`` for the event.
- type: string
- required:
- - type
- - state_key
- - content
- title: StrippedState
- type: object
- type: array
state_key:
description: The ``user_id`` this membership event relates to.
type: string
diff --git a/event-schemas/schema/m.room.server_acl b/event-schemas/schema/m.room.server_acl
new file mode 100644
index 00000000..c6adaf05
--- /dev/null
+++ b/event-schemas/schema/m.room.server_acl
@@ -0,0 +1,88 @@
+---
+title: Server ACL
+description: |-
+ An event to indicate which servers are permitted to participate in the
+ room. Server ACLs may allow or deny groups of hosts. All servers participating
+ in the room, including those that are denied, are expected to uphold the
+ server ACL. Servers that do not uphold the ACLs MUST be added to the denied hosts
+ list in order for the ACLs to remain effective.
+
+ The ``allow`` and ``deny`` lists are lists of globs supporting ``?`` and ``*``
+ as wildcards. When comparing against the server ACLs, the suspect server's port
+ number must not be considered. Therefore ``evil.com``, ``evil.com:8448``, and
+ ``evil.com:1234`` would all match rules that apply to ``evil.com``, for example.
+
+ The ACLs are applied to servers when they make requests, and are applied in
+ the following order:
+
+ 1. If there is no ``m.room.server_acl`` event in the room state, allow.
+ #. If the server name is an IP address (v4 or v6) literal, and ``allow_ip_literals``
+ is present and ``false``, deny.
+ #. If the server name matches an entry in the ``deny`` list, deny.
+ #. If the server name matches an entry in the ``allow`` list, allow.
+ #. Otherwise, deny.
+
+ .. Note::
+ Server ACLs do not restrict the events relative to the room DAG via authorisation
+ rules, but instead act purely at the network layer to determine which servers are
+ allowed to connect and interact with a given room.
+
+ .. WARNING::
+ Failing to provide an ``allow`` rule of some kind will prevent **all**
+ servers from participating in the room, including the sender. This renders
+ the room unusable. A common allow rule is ``[ "*" ]`` which would still
+ permit the use of the ``deny`` list without losing the room.
+
+ .. WARNING::
+ All compliant servers must implement server ACLs. However, legacy or noncompliant
+ servers exist which do not uphold ACLs, and these MUST be manually appended to
+ the denied hosts list when setting an ACL to prevent them from leaking events from
+ banned servers into a room. Currently, the only way to determine noncompliant hosts is
+ to check the ``prev_events`` of leaked events, therefore detecting servers which
+ are not upholding the ACLs. Server versions can also be used to try to detect hosts that
+ will not uphold the ACLs, although this is not comprehensive. Server ACLs were added
+ in Synapse v0.32.0, although other server implementations and versions exist in the world.
+allOf:
+ - $ref: core-event-schema/state_event.yaml
+type: object
+properties:
+ content:
+ properties:
+ allow_ip_literals:
+ type: boolean
+ description: |-
+ True to allow server names that are IP address literals. False to
+ deny. Defaults to true if missing or otherwise not a boolean.
+
+ This is strongly recommended to be set to ``false`` as servers running
+ with IP literal names are strongly discouraged in order to require
+ legitimate homeservers to be backed by a valid registered domain name.
+ allow:
+ type: array
+ description: |-
+ The server names to allow in the room, excluding any port information.
+ Wildcards may be used to cover a wider range of hosts, where ``*``
+ matches zero or more characters and ``?`` matches exactly one character.
+
+ **This defaults to an empty list when not provided, effectively disallowing
+ every server.**
+ items:
+ type: string
+ deny:
+ type: array
+ description: |-
+ The server names to disallow in the room, excluding any port information.
+ Wildcards may be used to cover a wider range of hosts, where ``*``
+ matches zero or more characters and ``?`` matches exactly one character.
+
+ This defaults to an empty list when not provided.
+ items:
+ type: string
+ type: object
+ state_key:
+ description: A zero-length string.
+ pattern: '^$'
+ type: string
+ type:
+ enum: ['m.room.server_acl']
+ type: enum
diff --git a/scripts/templating/matrix_templates/units.py b/scripts/templating/matrix_templates/units.py
index 9a6f3569..feebd3f1 100644
--- a/scripts/templating/matrix_templates/units.py
+++ b/scripts/templating/matrix_templates/units.py
@@ -875,15 +875,6 @@ class MatrixUnits(Units):
Units.prop(json_schema, "properties/content")
)
- # This is horrible because we're special casing a key on m.room.member.
- # We need to do this because we want to document a non-content object.
- if schema["type"] == "m.room.member":
- invite_room_state = get_tables_for_schema(
- json_schema["properties"]["invite_room_state"]["items"],
- )
- schema["content_fields"].extend(invite_room_state)
-
-
# grab msgtype if it is the right kind of event
msgtype = Units.prop(
json_schema, "properties/content/properties/msgtype/enum"
diff --git a/specification/application_service_api.rst b/specification/application_service_api.rst
index 08e3b062..51280341 100644
--- a/specification/application_service_api.rst
+++ b/specification/application_service_api.rst
@@ -75,8 +75,7 @@ said to be interested in a given event if one of the application service's names
users is the target of the event, or is a joined member of the room where the event
occurred.
-An application
-service can also state whether they should be the only ones who
+An application service can also state whether they should be the only ones who
can manage a specified namespace. This is referred to as an "exclusive"
namespace. An exclusive namespace prevents humans and other application
services from creating/deleting entities in that namespace. Typically,
@@ -90,27 +89,29 @@ regular expressions and look like:
users:
- exclusive: true
- regex: @_irc.freenode.net_.*
+ regex: "@_irc.freenode.net_.*"
+Application services may define the following namespaces (with none being explicitly required):
-The registration is represented by a series of key-value pairs, which this
-specification will present as YAML. An example HS configuration required to pass
-traffic to the AS is:
++------------------+-----------------------------------------------------------+
+| Name | Description |
++==================+===========================================================+
+| users | Events which are sent from certain users. |
++------------------+-----------------------------------------------------------+
+| aliases | Events which are sent in rooms with certain room aliases. |
++------------------+-----------------------------------------------------------+
+| rooms | Events which are sent in rooms with certain room IDs. |
++------------------+-----------------------------------------------------------+
-.. code-block:: yaml
+Each individual namespace MUST declare the following fields:
- id:
- url:
- as_token:
- hs_token:
- sender_localpart:
- namespaces:
- users: # Namespaces of users which should be delegated to the AS
- - exclusive:
- regex:
- - ...
- aliases: [] # Namespaces of room aliases which should be delegated to the AS
- rooms: [] # Namespaces of room ids which should be delegated to the AS
++------------------+-----------------------------------------------------------------------------------------------------------------------------------+
+| Name | Description |
++==================+===================================================================================================================================+
+| exclusive | **Required** A true or false value stating whether this application service has exclusive access to events within this namespace. |
++------------------+-----------------------------------------------------------------------------------------------------------------------------------+
+| regex | **Required** A regular expression defining which values this namespace includes. |
++------------------+-----------------------------------------------------------------------------------------------------------------------------------+
Exclusive user and alias namespaces should begin with an underscore after the
sigil to avoid collisions with other users on the homeserver. Application
@@ -118,6 +119,48 @@ services should additionally attempt to identify the service they represent
in the reserved namespace. For example, ``@_irc_.*`` would be a good namespace
to register for an application service which deals with IRC.
+The registration is represented by a series of key-value pairs, which this
+specification will present as YAML. See below for the possible options along
+with their explanation:
+
++------------------+----------------------------------------------------------------------------------------------------------------------------------------------------+
+| Name | Description |
++==================+====================================================================================================================================================+
+| id | **Required.** A unique, user-defined ID of the application service which will never change. |
++------------------+----------------------------------------------------------------------------------------------------------------------------------------------------+
+| url | **Required.** The URL for the application service. May include a path after the domain name. Optionally set to ``null`` if no traffic is required. |
++------------------+----------------------------------------------------------------------------------------------------------------------------------------------------+
+| as_token | **Required.** A unique token for application services to use to authenticate requests to Homeservers. |
++------------------+----------------------------------------------------------------------------------------------------------------------------------------------------+
+| hs_token | **Required.** A unique token for Homeservers to use to authenticate requests to application services. |
++------------------+----------------------------------------------------------------------------------------------------------------------------------------------------+
+| sender_localpart | **Required.** The localpart of the user associated with the application service. |
++------------------+----------------------------------------------------------------------------------------------------------------------------------------------------+
+| namespaces | **Required.** A list of ``users``, ``aliases`` and ``rooms`` namespaces that the application service controls. |
++------------------+----------------------------------------------------------------------------------------------------------------------------------------------------+
+| rate_limited | Whether requests from masqueraded users are rate-limited. The sender is excluded. |
++------------------+----------------------------------------------------------------------------------------------------------------------------------------------------+
+| protocols | The external protocols which the application service provides (e.g. IRC). |
++------------------+----------------------------------------------------------------------------------------------------------------------------------------------------+
+
+An example registration file for an IRC-bridging application service is below:
+
+.. code-block:: yaml
+
+ id: "IRC Bridge"
+ url: "http://127.0.0.1:1234"
+ as_token: "30c05ae90a248a4188e620216fa72e349803310ec83e2a77b34fe90be6081f46"
+ hs_token: "312df522183efd404ec1cd22d2ffa4bbc76a8c1ccf541dd692eef281356bb74e"
+ sender_localpart: "_irc_bot" # Will result in @_irc_bot:domain.com
+ namespaces:
+ users:
+ - exclusive: true
+ regex: "@_irc_bridge_.*"
+ aliases:
+ - exclusive: false
+ regex: "#_irc_bridge_.*"
+ rooms: []
+
.. WARNING::
If the homeserver in question has multiple application services, each
``as_token`` and ``id`` MUST be unique per application service as these are
@@ -155,6 +198,8 @@ be made without blocking other aspects of the homeserver. Homeservers MUST NOT
alter (e.g. add more) events they were going to send within that transaction ID
on retries, as the AS may have already processed the events.
+{{transactions_as_http_api}}
+
Querying
++++++++
@@ -180,13 +225,25 @@ this request (e.g. to join a room alias).
{{query_room_as_http_api}}
-HTTP APIs
-+++++++++
+Third party networks
+++++++++++++++++++++
-This contains application service APIs which are used by the homeserver. All
-application services MUST implement these APIs. These APIs are defined below.
+Application services may declare which protocols they support via their registration
+configuration for the homeserver. These networks are generally for third party services
+such as IRC that the application service is managing. Application services may populate
+a Matrix room directory for their registered protocols, as defined in the Client-Server
+API Extensions.
-{{application_service_as_http_api}}
+Each protocol may have several "locations" (also known as "third party locations" or "3PLs").
+A location within a protocol is a place in the third party network, such as an IRC channel.
+Users of the third party network may also be represented by the application service.
+
+Locations and users can be searched by fields defined by the application service, such
+as by display name or other attribute. When clients request the homeserver to search
+in a particular "network" (protocol), the search fields will be passed along to the
+application service for filtering.
+
+{{protocols_as_http_api}}
.. _create the user: `sect:asapi-permissions`_
@@ -198,6 +255,9 @@ Application services can use a more powerful version of the
client-server API by identifying itself as an application service to the
homeserver.
+Endpoints defined in this section MUST be supported by homeservers in the
+client-server API as accessible only by application services.
+
Identity assertion
++++++++++++++++++
The client-server API infers the user ID from the ``access_token`` provided in
@@ -294,6 +354,15 @@ API MUST do so with a virtual user (provide a ``user_id`` via the query string).
is expected that the application service use the transactions pushed to it to
handle events rather than syncing with the user implied by ``sender_localpart``.
+Application service room directories
+++++++++++++++++++++++++++++++++++++
+
+Application services can maintain their own room directories for their defined
+third party protocols. These room directories may be accessed by clients through
+additional parameters on the ``/publicRooms`` client-server endpoint.
+
+{{appservice_room_directory_cs_http_api}}
+
Event fields
~~~~~~~~~~~~
diff --git a/specification/modules/instant_messaging.rst b/specification/modules/instant_messaging.rst
index ff87f74b..079a4801 100644
--- a/specification/modules/instant_messaging.rst
+++ b/specification/modules/instant_messaging.rst
@@ -56,6 +56,60 @@ of message being sent. Each type has their own required and optional keys, as
outlined below. If a client cannot display the given ``msgtype`` then it SHOULD
display the fallback plain text ``body`` key instead.
+Some message types support HTML in the event content that clients should prefer
+to display if available. Currently ``m.text``, ``m.emote``, and ``m.notice``
+support an additional ``format`` parameter of ``org.matrix.custom.html``. When
+this field is present, a ``formatted_body`` with the HTML must be provided. The
+plain text version of the HTML should be provided in the ``body``.
+
+Clients should limit the HTML they render to avoid Cross-Site Scripting, HTML
+injection, and similar attacks. The strongly suggested set of HTML tags to permit,
+denying the use and rendering of anything else, is: ``font``, ``del``, ``h1``,
+``h2``, ``h3``, ``h4``, ``h5``, ``h6``, ``blockquote``, ``p``, ``a``, ``ul``,
+``ol``, ``sup``, ``sub``, ``li``, ``b``, ``i``, ``u``, ``strong``, ``em``,
+``strike``, ``code``, ``hr``, ``br``, ``div``, ``table``, ``thead``, ``tbody``,
+``tr``, ``th``, ``td``, ``caption``, ``pre``, ``span``, ``img``.
+
+Not all attributes on those tags should be permitted as they may be avenues for
+other disruption attempts, such as adding ``onclick`` handlers or excessively
+large text. Clients should only permit the attributes listed for the tags below.
+Where ``data-mx-bg-color`` and ``data-mx-color`` are listed, clients should
+translate the value (a 6-character hex color code) to the appropriate CSS/attributes
+for the tag.
+
+
+:``font``:
+ ``data-mx-bg-color``, ``data-mx-color``
+
+:``span``:
+ ``data-mx-bg-color``, ``data-mx-color``
+
+:``a``:
+ ``name``, ``target``, ``href`` (provided the value is not relative and has a scheme
+ matching one of: ``https``, ``http``, ``ftp``, ``mailto``, ``magnet``)
+
+:``img``:
+ ``width``, ``height``, ``alt``, ``title``, ``src`` (provided it is a `Matrix Content (MXC) URI`_)
+
+:``ol``:
+ ``start``
+
+:``code``:
+ ``class`` (only classes which start with ``language-`` for syntax highlighting)
+
+
+Additionally, web clients should ensure that *all* ``a`` tags get a ``rel="noopener"``
+to prevent the target page from referencing the client's tab/window.
+
+Tags must not be nested more than 100 levels deep. Clients should only support the subset
+of tags they can render, falling back to other representations of the tags where possible.
+For example, a client may not be able to render tables correctly and instead could fall
+back to rendering tab-delimited text.
+
+.. Note::
+ A future iteration of the specification will support more powerful and extensible
+ message formatting options, such as the proposal `MSC1225 `_.
+
{{msgtype_events}}
@@ -297,3 +351,4 @@ Clients should sanitise **all displayed keys** for unsafe HTML to prevent Cross-
Scripting (XSS) attacks. This includes room names and topics.
.. _`E2E module`: `module:e2e`_
+.. _`Matrix Content (MXC) URI`: `module:content`_
\ No newline at end of file
diff --git a/specification/modules/push.rst b/specification/modules/push.rst
index e9ee8c90..1972fa17 100644
--- a/specification/modules/push.rst
+++ b/specification/modules/push.rst
@@ -124,7 +124,7 @@ There are different "kinds" of push rules and each rule has an associated
priority. Every push rule MUST have a ``kind`` and ``rule_id``. The ``rule_id``
is a unique string within the kind of rule and its' scope: ``rule_ids`` do not
need to be unique between rules of the same kind on different devices. Rules may
-have extra keys depending on the value of ``kind``.The different kinds of rule
+have extra keys depending on the value of ``kind``. The different kinds of rule
in descending order of priority are:
Override Rules ``override``
@@ -369,6 +369,41 @@ Definition:
}
+``.m.rule.roomnotif``
+`````````````````````
+Matches any message whose content is unencrypted and contains the
+text ``@room``, signifying the whole room should be notified of
+the event.
+
+Definition:
+
+.. code:: json
+
+ {
+ "rule_id": ".m.rule.roomnotif",
+ "default": true,
+ "enabled": true,
+ "conditions": [
+ {
+ "kind": "event_match",
+ "key": "content.body",
+ "pattern": "@room"
+ },
+ {
+ "kind": "sender_notification_permission",
+ "key": "room"
+ }
+ ],
+ "actions": [
+ "notify",
+ {
+ "set_tweak": "highlight",
+ "value": true
+ }
+ ]
+ }
+
+
Default Content Rules
^^^^^^^^^^^^^^^^^^^^^
@@ -428,7 +463,47 @@ Definition:
"value": false
}
]
- },
+ }
+
+``.m.rule.encrypted_room_one_to_one``
+`````````````````````````````````````
+Matches any encrypted event sent in a room with exactly two members.
+Unlike other push rules, this rule cannot be matched against the content
+of the event by nature of it being encrypted. This causes the rule to
+be an "all or nothing" match where it either matches *all* events that
+are encrypted (in 1:1 rooms) or none.
+
+Definition:
+
+.. code:: json
+
+ {
+ "rule_id": ".m.rule.encrypted_room_one_to_one",
+ "default": true,
+ "enabled": true,
+ "conditions": [
+ {
+ "kind": "room_member_count",
+ "is": "2"
+ }
+ ],
+ "actions": [
+ "notify",
+ {
+ "set_tweak": "sound",
+ "value": "default"
+ },
+ {
+ "set_tweak": "highlight",
+ "value": false
+ },
+ {
+ "kind": "event_match",
+ "key": "type",
+ "pattern": "m.room.encrypted"
+ }
+ ]
+ }
``.m.rule.room_one_to_one``
```````````````````````````
@@ -489,6 +564,37 @@ Definition:
]
}
+``.m.rule.encrypted``
+`````````````````````
+Matches all encrypted events. Unlike other push rules, this rule cannot
+be matched against the content of the event by nature of it being encrypted.
+This causes the rule to be an "all or nothing" match where it either
+matches *all* events that are encrypted (in 1:1 rooms) or none.
+
+Definition:
+
+.. code:: json
+
+ {
+ "rule_id": ".m.rule.encrypted",
+ "default": true,
+ "enabled": true,
+ "conditions": [
+ {
+ "kind": "event_match",
+ "key": "type",
+ "pattern": "m.room.encrypted"
+ }
+ ],
+ "actions": [
+ "notify",
+ {
+ "set_tweak": "highlight",
+ "value": false
+ }
+ ]
+ }
+
Conditions
++++++++++
@@ -523,6 +629,21 @@ rule determines its behaviour. The following conditions are defined:
count is strictly less than the given number and so forth. If no prefix is
present, this parameter defaults to ``==``.
+``sender_notification_permission``
+ This takes into account the current power levels in the room, ensuring the
+ sender of the event has high enough power to trigger the notification.
+
+ Parameters:
+
+ * ``key``: A string that determines the power level the sender must have to trigger
+ notifications of a given type, such as ``room``. Refer to the `m.room.power_levels`_
+ event schema for information about what the defaults are and how to interpret the event.
+ The ``key`` is used to look up the power level required to send a notification type
+ from the ``notifications`` object in the power level event content.
+
+Unrecognised conditions MUST NOT match any events, effectively making the push
+rule disabled.
+
Push Rules: API
~~~~~~~~~~~~~~~
diff --git a/specification/modules/server_acls.rst b/specification/modules/server_acls.rst
new file mode 100644
index 00000000..2b2d8f35
--- /dev/null
+++ b/specification/modules/server_acls.rst
@@ -0,0 +1,70 @@
+.. Copyright 2018 New Vector Ltd
+..
+.. Licensed under the Apache License, Version 2.0 (the "License");
+.. you may not use this file except in compliance with the License.
+.. You may obtain a copy of the License at
+..
+.. http://www.apache.org/licenses/LICENSE-2.0
+..
+.. Unless required by applicable law or agreed to in writing, software
+.. distributed under the License is distributed on an "AS IS" BASIS,
+.. WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+.. See the License for the specific language governing permissions and
+.. limitations under the License.
+
+Server Access Control Lists (ACLs) for rooms
+============================================
+
+.. _module:server-acls:
+
+In some scenarios room operators may wish to prevent a malicious or untrusted
+server from participating in their room. Sending an `m.room.server_acl`_ state
+event into a room is an effective way to prevent the server from participating
+in the room at the federation level.
+
+Server ACLs can also be used to make rooms only federate with a limited set of
+servers, or retroactively make the room no longer federate with any other server,
+similar to setting the ``m.federate`` value on the `m.room.create`_ event.
+
+{{m_room_server_acl_event}}
+
+.. Note::
+ Port numbers are not supported because it is unclear to parsers whether a
+ port number should be matched or an IP address literal. Additionally, it
+ is unlikely that one would trust a server running on a particular domain's
+ port but not a different port, especially considering the server host can
+ easily change ports.
+
+.. Note::
+ CIDR notation is not supported for IP addresses because Matrix does not
+ encourage the use of IPs for identifying servers. Instead, a blanket
+ ``allow_ip_literals`` is provided to cover banning them.
+
+Client behaviour
+----------------
+Clients are not expected to perform any additional duties beyond sending the
+event. Clients should describe changes to the server ACLs to the user in the
+user interface, such as in the timeline.
+
+Clients may wish to kick affected users from the room prior to denying a server
+access to the room to help prevent those servers from participating and to
+provide feedback to the users that they have been excluded from the room.
+
+Server behaviour
+----------------
+Servers MUST prevent blacklisted servers from sending events or participating
+in the room when an `m.room.server_acl`_ event is present in the room state.
+Which APIs are specifically affected are described in the Server-Server API
+specification.
+
+Servers should still send events to denied servers if they are still residents
+of the room.
+
+
+Security considerations
+-----------------------
+Server ACLs are only effective if every server in the room honours them. Servers
+that do not honour the ACLs may still permit events sent by denied servers into
+the room, leaking them to other servers in the room. To effectively enforce an
+ACL in a room, the servers that do not honour the ACLs should be denied in the
+room as well.
\ No newline at end of file
diff --git a/specification/server_server_api.rst b/specification/server_server_api.rst
index dbde8b10..439b35f9 100644
--- a/specification/server_server_api.rst
+++ b/specification/server_server_api.rst
@@ -929,6 +929,32 @@ described in the `Client-Server API`_, being sure to use the ``allow_remote``
parameter (set to ``false``).
+Server Access Control Lists (ACLs)
+----------------------------------
+
+Server ACLs and their purpose are described in the `Server ACLs`_ section of the
+Client-Server API.
+
+When a remote server makes a request, it MUST be verified to be allowed by the
+server ACLs. If the server is denied access to a room, the receiving server
+MUST reply with a 403 HTTP status code and an ``errcode`` of ``M_FORBIDDEN``.
+
+The following endpoint prefixes MUST be protected:
+
+* ``/_matrix/federation/v1/send`` (on a per-PDU basis)
+* ``/_matrix/federation/v1/make_join``
+* ``/_matrix/federation/v1/make_leave``
+* ``/_matrix/federation/v1/send_join``
+* ``/_matrix/federation/v1/send_leave``
+* ``/_matrix/federation/v1/invite``
+* ``/_matrix/federation/v1/state``
+* ``/_matrix/federation/v1/state_ids``
+* ``/_matrix/federation/v1/backfill``
+* ``/_matrix/federation/v1/event_auth``
+* ``/_matrix/federation/v1/query_auth``
+* ``/_matrix/federation/v1/get_missing_events``
+
+
Signing Events
--------------
diff --git a/specification/targets.yaml b/specification/targets.yaml
index 5480bbc5..acf4b6ac 100644
--- a/specification/targets.yaml
+++ b/specification/targets.yaml
@@ -67,6 +67,7 @@ groups: # reusable blobs of files when prefixed with 'group:'
- modules/report_content.rst
- modules/third_party_networks.rst
- modules/openid.rst
+ - modules/server_acls.rst
title_styles: ["=", "-", "~", "+", "^", "`", "@", ":"]