fix lockdown_public_room_directory bypass, add appservice exclusion

Signed-off-by: strawberry <strawberry@puppygock.gay>
2024-10-24 21:38:26 -04:00
parent 30e3e45f9f
commit 9761e2f10c
2 changed files with 33 additions and 2 deletions
--- a/src/api/client/directory.rs
+++ b/src/api/client/directory.rs
@@ -137,7 +137,10 @@ pub(crate) async fn set_room_visibility_route(

 	match &body.visibility {
 		room::Visibility::Public => {
-			if services.globals.config.lockdown_public_room_directory && !services.users.is_admin(sender_user)? {
+			if services.globals.config.lockdown_public_room_directory
+				&& !services.users.is_admin(sender_user)?
+				&& body.appservice_info.is_none()
+			{
 				info!(
 					"Non-admin user {sender_user} tried to publish {0} to the room directory while \
 					 \"lockdown_public_room_directory\" is enabled",