From cd78eed3f1f8fb90833778a13876d36087ee3cc3 Mon Sep 17 00:00:00 2001 From: Patrick Cloke Date: Thu, 17 Jun 2021 14:22:55 -0400 Subject: [PATCH] Add a note about ensuring each allowed room has at least one server in it. --- proposals/3083-restricted-rooms.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/proposals/3083-restricted-rooms.md b/proposals/3083-restricted-rooms.md index 936470b9..053adca8 100644 --- a/proposals/3083-restricted-rooms.md +++ b/proposals/3083-restricted-rooms.md @@ -80,6 +80,8 @@ It is possible for a homeserver receiving a `/make_join` / `/send_join` request to not know if the user is in a particular room (due to not participating in any of the necessary rooms). In this case the homeserver should reject the join, the requesting server may wish to attempt to join via another authorised homeserver. +If no authorised servers are in an allowed room its membership cannot be checked +(and this is a misconfiguration). Note that the authorised homeservers have significant power, as they are trusted to confirm that the `allow` rules were properly checked (since this cannot