This repository has been archived by the owner on Apr 26, 2024. It is now read-only.
Synapse accepts /forget without a request body but this is not meant to be allowed by the specification #16366
Labels
A-Spec-Compliance
places where synapse does not conform to the spec
O-Uncommon
Most users are unlikely to come across this or unexpected workflow
S-Tolerable
Minor significance, cosmetic issues, low or no impact to users.
T-Defect
Bugs, crashes, hangs, security vulnerabilities, or other reported issues.
Z-Future-Maintenance
Things that can't yet be done, but will need cleaning up in a couple of months/releases
Comments
reivilibre
added
A-Spec-Compliance
This was referenced Sep 22, 2023
clokep
added
S-Tolerable
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Like all PUT and POST requests other than the media ones (and
/logout...),/forgetis supposed to take a JSON body, e.g.{}if nothing special is required. Currently Synapse as at v1.92.3 does not require this.#16365 adds a warning against this.
We should see if any clients are hitting this and then a future version should cut this off completely.
The text was updated successfully, but these errors were encountered: