Allow URL-encoded user IDs on user admin api paths (#6825)

37008053 · Andrew Morgan · GitHub · b0d112e7 · 37008053 · 37008053
Unverified Commit 37008053 authored 5 years ago by Andrew Morgan Committed by GitHub 5 years ago
--- a/changelog.d/6825.bugfix
+++ b/changelog.d/6825.bugfix
+Allow URL-encoded User IDs on `/_synapse/admin/v2/users/<user_id>[/admin]` endpoints. Thanks to @NHAS for reporting.
\ No newline at end of file
--- a/synapse/rest/admin/users.py
+++ b/synapse/rest/admin/users.py
@@ -105,7 +105,7 @@ class UsersRestServletV2(RestServlet):


 class UserRestServletV2(RestServlet):
-    PATTERNS = (re.compile("^/_synapse/admin/v2/users/(?P<user_id>@[^/]+)$"),)
+    PATTERNS = (re.compile("^/_synapse/admin/v2/users/(?P<user_id>[^/]+)$"),)

    """Get request to list user details.
    This needs user to have administrator access in Synapse.
@@ -568,7 +568,7 @@ class UserAdminServlet(RestServlet):
                {}
    """

-    PATTERNS = (re.compile("^/_synapse/admin/v1/users/(?P<user_id>@[^/]*)/admin$"),)
+    PATTERNS = (re.compile("^/_synapse/admin/v1/users/(?P<user_id>[^/]*)/admin$"),)

    def __init__(self, hs):
        self.hs = hs