Default room ACLs #775

Open
opened 2025-04-19 23:29:51 +00:00 by Jade · 3 comments
Owner

Add a configuration option to set a default ACL for rooms created on the homeserver.
This should come with a big warning to say that these ACs will not be automatically updated, and are not a substitution for moderation bots.

Add a configuration option to set a default ACL for rooms created on the homeserver. This should come with a big warning to say that these ACs will not be automatically updated, and are not a substitution for moderation bots.
Jade added the
Enhancement
Good first issue
Matrix/Administration
Priority
Low
labels 2025-04-19 23:29:51 +00:00
Owner

See also: #774 (comment)

See also: https://forgejo.ellis.link/continuwuation/continuwuity/pulls/774#issuecomment-15224
nex added this to the 0.6.0 milestone 2025-06-18 16:38:39 +00:00
Jade added the
Difficulty
Easy
label 2025-06-22 23:04:44 +00:00
Author
Owner

This issue has been posted to This Week in Rust's Call for Participation. If you're new to the project, check out the contributing guide. Welcome!

This issue has been posted to This Week in Rust's Call for Participation. If you're new to the project, check out the [contributing guide](https://continuwuity.org/contributing). Welcome!
Owner

Given the client can specify additional initial state events when creating a room, this could be as simple as appending/adding a default m.room.server_acl event.
There could be a config option such as default_acl_deny, which is just an array of patterns to exclude, and default_acl_allow which does the inverse. It's worth mentioning that deny overrides allow, so the two options should probably be mutually exclusive.

Given [the client can specify additional initial state events](https://spec.matrix.org/v1.14/client-server-api/#post_matrixclientv3createroom) when creating a room, this could be as simple as appending/adding a default `m.room.server_acl` event. There could be a config option such as `default_acl_deny`, which is just an array of patterns to exclude, and `default_acl_allow` which does the inverse. It's worth mentioning that **deny overrides allow**, so the two options should probably be mutually exclusive.
Sign in to join this conversation.
No milestone
No project
No assignees
2 participants
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: continuwuation/continuwuity#775
No description provided.