-
-
Notifications
You must be signed in to change notification settings - Fork 2.1k
allow_profile_lookup_over_federation=false prevents inviting users to rooms over federation #11397
Comments
At first glance, that sounds like it might be a client bug rather than a server-side bug. Maybe it has some logic for retrieving the profile information first, only later does it request the invite. |
I found a element-web issue for this: element-hq/element-web#17269 |
I reproduced the issue with the help of @reivilibre. I couldn't invite him with this setting turned on in Element Web. However I was able to invite him using Fractal. This means that the fault lies with Element Web, and not in Synapse. Thank you for finding the issue in the element-web repo. I'll add some more details there and then close this issue. |
On second thoughts, the spec only describes two return codes: 404 and 200. I wonder if we should change the 403 response to 404. |
I'm not sure I agree. The spec is probably a better venue to have this discussion, but clients benefit from knowing the difference between 'that user isn't found' and 'I can't tell you if that user exists'. So my personal opinion is that the spec needs an extra error code defining for this case. Not guaranteeing that 403 is the answer, but not saying it isn't. |
Consensus here is that we'd like to discuss this with the Spec Core Team. Options are:
|
(Expanding the Spec seems slightly preferable, as it retains precision and aligns with de facto behavior in the wild) |
Closing, as I believe this was resolved by matrix-org/matrix-spec-proposals#3550. |
A user which is on a server with
allow_profile_lookup_over_federation=false
can not be invited over federation to a room.On my homeserver I set
allow_profile_lookup_over_federation=false
. I then used https://app.element.io/ to login to matrix.org and created a room and tried to invite a user from my homeserver. Element responded with "You do not have permission to invite people to this room". When inviting a matrix.org user, the invite succeeded.After changing the setting to
allow_profile_lookup_over_federation: true
on my homeserver, the invite succeeded.The misleading error message may be related to: element-hq/element-web#19598
The text was updated successfully, but these errors were encountered: