Add tests for MSC4155 (matrix-org#782)

Half-Shot · jevolk · commit d764e239b67e · 2025-07-17T10:15:48.000Z
diff --git a/tests/msc4155/invite_filter_test.go b/tests/msc4155/invite_filter_test.go
@@ -0,0 +1,248 @@
+package tests
+
+import (
+	"encoding/json"
+	"github.com/matrix-org/complement"
+	"github.com/matrix-org/complement/client"
+	"github.com/matrix-org/complement/ct"
+	"github.com/matrix-org/complement/helpers"
+	"github.com/matrix-org/complement/match"
+	"github.com/matrix-org/complement/must"
+	"github.com/matrix-org/gomatrixserverlib/spec"
+	"io"
+	"testing"
+)
+
+const hs1Name = "hs1"
+const hs2Name = "hs2"
+const inviteFilterAccountData = "org.matrix.msc4155.invite_permission_config"
+
+// As described in https://github.com/Johennes/matrix-spec-proposals/blob/johannes/invite-filtering/proposals/4155-invite-filtering.md#proposal
+type InviteFilterConfig struct {
+	AllowedUsers []string `json:"allowed_users,omitempty"`
+	IgnoredUsers []string `json:"ignored_users,omitempty"`
+	BlockedUsers []string `json:"blocked_users,omitempty"`
+	AllowedServers []string `json:"allowed_servers,omitempty"`
+	IgnoredServers []string `json:"ignored_servers,omitempty"`
+	BlockedServers []string `json:"blocked_servers,omitempty"`
+}
+
+func TestInviteFiltering(t *testing.T) {
+	deployment := complement.Deploy(t, 2)
+	defer deployment.Destroy(t)
+
+	// Invitee
+	evil_alice := deployment.Register(t, hs1Name, helpers.RegistrationOpts{})
+	
+	bob := deployment.Register(t, hs2Name, helpers.RegistrationOpts{})
+	evil_bob := deployment.Register(t, hs2Name, helpers.RegistrationOpts{})
+
+	t.Run("Can invite users normally without any rules", func(t *testing.T) {
+		// Use a fresh alice each time to ensure we don't have any test cross-contaimination.
+		alice := deployment.Register(t, hs1Name, helpers.RegistrationOpts{})
+		mustSetInviteConfig(t, alice, InviteFilterConfig{})
+		roomID := mustCreateRoomAndSync(t, bob)
+		bob.MustInviteRoom(t, roomID, alice.UserID)
+		alice.MustJoinRoom(t, roomID, []spec.ServerName{})
+		alice.MustSyncUntil(t, client.SyncReq{}, client.SyncJoinedTo(alice.UserID, roomID))
+		bob.MustSyncUntil(t, client.SyncReq{}, client.SyncJoinedTo(alice.UserID, roomID))
+	})
+	t.Run("Can block a single user", func(t *testing.T) {
+		alice := deployment.Register(t, hs1Name, helpers.RegistrationOpts{})
+		mustSetInviteConfig(t, alice, InviteFilterConfig{
+			BlockedUsers: []string{bob.UserID},
+		})
+		roomID := mustCreateRoomAndSync(t, bob)
+		mustInviteRoomAndFail(t, bob, roomID, alice.UserID)
+		mustHaveNoInviteInSyncResponse(t, alice)
+	})
+	t.Run("Can ignore a single user", func(t *testing.T) {
+		alice := deployment.Register(t, hs1Name, helpers.RegistrationOpts{})
+		mustSetInviteConfig(t, alice, InviteFilterConfig{
+			IgnoredUsers: []string{bob.UserID},
+		})
+		roomID := mustCreateRoomAndSync(t, bob)
+		// Note, this invite failed invisibly.
+		bob.MustInviteRoom(t, roomID, alice.UserID)
+		mustHaveNoInviteInSyncResponse(t, alice)
+	})
+	t.Run("Can block a whole server", func(t *testing.T) {
+		alice := deployment.Register(t, hs1Name, helpers.RegistrationOpts{})
+		mustSetInviteConfig(t, alice, InviteFilterConfig{
+			BlockedServers: []string{hs2Name},
+		})
+		roomIDA := mustCreateRoomAndSync(t, bob)
+		mustInviteRoomAndFail(t, bob, roomIDA, alice.UserID)
+		roomIDB := mustCreateRoomAndSync(t, evil_bob)
+		mustInviteRoomAndFail(t, evil_bob, roomIDB, alice.UserID)
+	})
+	t.Run("Can ignore a whole server", func(t *testing.T) {
+		alice := deployment.Register(t, hs1Name, helpers.RegistrationOpts{})
+		mustSetInviteConfig(t, alice, InviteFilterConfig{
+			IgnoredServers: []string{hs2Name},
+		})
+		roomIDA := mustCreateRoomAndSync(t, bob)
+		bob.MustInviteRoom(t, roomIDA, alice.UserID)
+		roomIDB := mustCreateRoomAndSync(t, evil_bob)
+		evil_bob.MustInviteRoom(t, roomIDB, alice.UserID)
+		mustHaveNoInviteInSyncResponse(t, alice)
+	})
+	t.Run("Can glob serveral servers", func(t *testing.T) {
+		alice := deployment.Register(t, hs1Name, helpers.RegistrationOpts{})
+		mustSetInviteConfig(t, alice, InviteFilterConfig{
+			BlockedServers: []string{"hs*"},
+		})
+		roomIDA := mustCreateRoomAndSync(t, bob)
+		mustInviteRoomAndFail(t, bob, roomIDA, alice.UserID)
+		roomIDB := mustCreateRoomAndSync(t, evil_bob)
+		mustInviteRoomAndFail(t, evil_bob, roomIDB, alice.UserID)
+		roomIDC := evil_alice.MustCreateRoom(t, map[string]interface{}{
+			"preset": "private_chat",
+		})
+		mustInviteRoomAndFail(t, evil_alice, roomIDC, alice.UserID)
+
+		mustHaveNoInviteInSyncResponse(t, alice)
+	})
+	t.Run("Can glob serveral users", func(t *testing.T) {
+		alice := deployment.Register(t, hs1Name, helpers.RegistrationOpts{})
+		mustSetInviteConfig(t, alice, InviteFilterConfig{
+			// Test glob behaviours
+			BlockedUsers: []string{
+				"@user-?*",
+			},
+		})
+		roomIDA := mustCreateRoomAndSync(t, bob)
+		mustInviteRoomAndFail(t, bob, roomIDA, alice.UserID)
+		roomIDB := mustCreateRoomAndSync(t, evil_bob)
+		mustInviteRoomAndFail(t, evil_bob, roomIDB, alice.UserID)
+		roomIDC := evil_alice.MustCreateRoom(t, map[string]interface{}{
+			"preset": "private_chat",
+		})
+		mustInviteRoomAndFail(t, evil_alice, roomIDC, alice.UserID)
+
+		mustHaveNoInviteInSyncResponse(t, alice)
+	})
+	t.Run("Can allow a user from a blocked server", func(t *testing.T) {
+		alice := deployment.Register(t, hs1Name, helpers.RegistrationOpts{})
+		mustSetInviteConfig(t, alice, InviteFilterConfig{
+			AllowedUsers: []string{bob.UserID},
+			BlockedServers: []string{hs2Name},
+		})
+
+		roomIDBlocked := mustCreateRoomAndSync(t, evil_bob)
+		mustInviteRoomAndFail(t, evil_bob, roomIDBlocked, alice.UserID)
+		mustHaveNoInviteInSyncResponse(t, alice)
+		roomIDAllowed := mustCreateRoomAndSync(t, bob)
+		bob.MustInviteRoom(t, roomIDAllowed, alice.UserID)
+		alice.MustSyncUntil(t, client.SyncReq{}, client.SyncInvitedTo(alice.UserID, roomIDAllowed))
+		alice.MustJoinRoom(t, roomIDAllowed, []spec.ServerName{})
+		alice.MustSyncUntil(t, client.SyncReq{}, client.SyncJoinedTo(alice.UserID, roomIDAllowed))
+		bob.MustSyncUntil(t, client.SyncReq{}, client.SyncJoinedTo(alice.UserID, roomIDAllowed))
+	})
+	t.Run("Can block a user from an allowed server", func(t *testing.T) {
+		alice := deployment.Register(t, hs1Name, helpers.RegistrationOpts{})
+		mustSetInviteConfig(t, alice, InviteFilterConfig{
+			BlockedUsers: []string{evil_bob.UserID},
+			AllowedServers: []string{hs2Name},
+		})
+
+		roomIDBlocked := mustCreateRoomAndSync(t, evil_bob)
+		mustInviteRoomAndFail(t, evil_bob, roomIDBlocked, alice.UserID)
+		mustHaveNoInviteInSyncResponse(t, alice)
+		roomIDAllowed := mustCreateRoomAndSync(t, bob)
+		bob.MustInviteRoom(t, roomIDAllowed, alice.UserID)
+		alice.MustSyncUntil(t, client.SyncReq{}, client.SyncInvitedTo(alice.UserID, roomIDAllowed))
+		alice.MustJoinRoom(t, roomIDAllowed, []spec.ServerName{})
+		alice.MustSyncUntil(t, client.SyncReq{}, client.SyncJoinedTo(alice.UserID, roomIDAllowed))
+		bob.MustSyncUntil(t, client.SyncReq{}, client.SyncJoinedTo(alice.UserID, roomIDAllowed))
+	})
+	t.Run("Will ignore null fields", func(t *testing.T) {
+		alice := deployment.Register(t, hs1Name, helpers.RegistrationOpts{})
+		alice.MustSetGlobalAccountData(t, inviteFilterAccountData, map[string]interface{}{
+			"allowed_users": nil,
+			"ignored_users": nil,
+			"blocked_users": nil,
+			"allowed_servers": nil,
+			"ignored_servers": nil,
+			"blocked_servers": nil,
+		})
+		roomIDAllowed := mustCreateRoomAndSync(t, bob)
+		bob.MustInviteRoom(t, roomIDAllowed, alice.UserID)
+		alice.MustSyncUntil(t, client.SyncReq{}, client.SyncInvitedTo(alice.UserID, roomIDAllowed))
+		alice.MustJoinRoom(t, roomIDAllowed, []spec.ServerName{})
+		alice.MustSyncUntil(t, client.SyncReq{}, client.SyncJoinedTo(alice.UserID, roomIDAllowed))
+		bob.MustSyncUntil(t, client.SyncReq{}, client.SyncJoinedTo(alice.UserID, roomIDAllowed))
+	})
+	t.Run("Will allow users when a user appears in multiple fields", func(t *testing.T) {
+		alice := deployment.Register(t, hs1Name, helpers.RegistrationOpts{})
+		mustSetInviteConfig(t, alice, InviteFilterConfig{
+			IgnoredUsers: []string{bob.UserID},
+			BlockedUsers: []string{evil_bob.UserID},
+			AllowedUsers: []string{bob.UserID, evil_bob.UserID},
+		})
+		roomIDBob := mustCreateRoomAndSync(t, bob)
+		bob.MustInviteRoom(t, roomIDBob, alice.UserID)
+		alice.MustSyncUntil(t, client.SyncReq{}, client.SyncInvitedTo(alice.UserID, roomIDBob))
+		alice.MustJoinRoom(t, roomIDBob, []spec.ServerName{})
+		alice.MustSyncUntil(t, client.SyncReq{}, client.SyncJoinedTo(alice.UserID, roomIDBob))
+		bob.MustSyncUntil(t, client.SyncReq{}, client.SyncJoinedTo(alice.UserID, roomIDBob))
+
+		roomIDEvilBob := mustCreateRoomAndSync(t, evil_bob)
+		evil_bob.MustInviteRoom(t, roomIDEvilBob, alice.UserID)
+		alice.MustSyncUntil(t, client.SyncReq{}, client.SyncInvitedTo(alice.UserID, roomIDEvilBob))
+		alice.MustJoinRoom(t, roomIDEvilBob, []spec.ServerName{})
+		alice.MustSyncUntil(t, client.SyncReq{}, client.SyncJoinedTo(alice.UserID, roomIDEvilBob))
+		evil_bob.MustSyncUntil(t, client.SyncReq{}, client.SyncJoinedTo(alice.UserID, roomIDEvilBob))
+	})
+	// TODO: Escaping a glob is not possible, so no tests exist for that.
+	// See https://github.com/matrix-org/matrix-spec/issues/2156
+}
+
+// Tests that a given invite filter config is properly set
+func mustSetInviteConfig(t *testing.T, c *client.CSAPI, cfg InviteFilterConfig) {
+	// This marshalling section transforms the InviteFilterConfig struct into JSON
+	// we can send to the server.
+	b, err := json.Marshal(&cfg)
+	if err != nil {
+		panic(err)
+	}
+	var m map[string]interface{}
+	err = json.Unmarshal(b, &m)
+	if err != nil {
+		panic(err)
+	}
+
+	c.MustSetGlobalAccountData(t, inviteFilterAccountData, m)
+}
+
+// Tests that a room is created and appears down the creators sync 
+func mustCreateRoomAndSync(t *testing.T, c *client.CSAPI) string {
+	t.Helper()
+	roomID := c.MustCreateRoom(t, map[string]interface{}{
+		"preset": "private_chat",
+	})
+	c.MustSyncUntil(t, client.SyncReq{}, client.SyncJoinedTo(c.UserID, roomID))
+	return roomID
+}
+
+// Test that requests to invite a given user fail with a 403 response
+func mustInviteRoomAndFail(t *testing.T, c *client.CSAPI,roomID string, userID string) {
+	t.Helper()
+	res := c.InviteRoom(t, roomID, userID)
+	if res.StatusCode == 403 {
+		return
+	}
+	defer res.Body.Close()
+	body, _ := io.ReadAll(res.Body)
+	ct.Fatalf(t, "CSAPI.Must: %s %s returned non-403 code: %s - body: %s", res.Request.Method, res.Request.URL.String(), res.Status, string(body))
+}
+
+// Test that no invites appear down sync
+func mustHaveNoInviteInSyncResponse(t *testing.T, c *client.CSAPI) {
+	initialSyncResponse, _ := c.MustSync(t, client.SyncReq{})
+	must.MatchGJSON(
+		t,
+		initialSyncResponse,
+		match.JSONKeyMissing("rooms.invite"),
+	)
+}
diff --git a/tests/msc4155/main_test.go b/tests/msc4155/main_test.go
@@ -0,0 +1,11 @@
+package tests
+
+import (
+	"testing"
+
+	"github.com/matrix-org/complement"
+)
+
+func TestMain(m *testing.M) {
+	complement.TestMain(m, "msc4155")
+}
