* add code to handle missing content-type header and a test to verify that it works

* add handling for missing content-type in the /upload endpoint as well

* slightly refactor test code to put private method in approriate place

* handle possible null value for content-type when pulling from the local db

* add changelog

* refactor test and add code to handle missing content-type in cached remote media

* requested changes

* Update changelog.d/11200.bugfix

Co-authored-by: Sean Quah <8349537+squahtx@users.noreply.github.com>

Co-authored-by: Sean Quah <8349537+squahtx@users.noreply.github.com>

* add use_float=true to ijson calls

* lints

* add changelog

* Update changelog.d/11217.bugfix

Co-authored-by: Sean Quah <8349537+squahtx@users.noreply.github.com>

Co-authored-by: Sean Quah <8349537+squahtx@users.noreply.github.com>

Make `check_event_allowed` module API callback not fail open (accept events) when an exception is raised (#11033)

Remove deprecated delete room admin API,
`POST /_synapse/admin/v1/rooms/<room_id>/delete`

Fixes https://github.com/matrix-org/synapse/issues/8308

* Docker image: avoid changing user during `generate`

The intention was always that the config files get written as the initial user
(normally root) - only the data directory needs to be writable by Synapse. This
got changed in https://github.com/matrix-org/synapse/pull/5970, but that seems
to have been a mistake.

* Avoid changing user if no explicit UID is given

* changelog

Fixes #11064

Signed-off-by: Aaron Raimist <aaron@raim.ist>

* Labeled a lot more code blocks with the appropriate type
* Fixed a couple of minor typos (missing/extraneous commas)

Signed-off-by: Sumner Evans <me@sumnerevans.com>

Co-authored-by: Andrew Morgan <1342360+anoadragon453@users.noreply.github.com>

#10969 was merged after 1.46.0rc1 was cut and will be included
in v1.47.0rc1 instead.

Signed-off-by: Rafael Goncalves <rafaelgoncalves@riseup.net>

Fetch verify key locally rather than trying to do so over federation if origin and host are the same. (#11129)

* add tests for fetching key locally

* add logic to check if origin server is same as host and fetch verify key locally rather than over federation

* add changelog

* slight refactor, add docstring, change changelog entry

* Make changelog entry one line

* remove verify_json_locally and push locality check to process_request, add function process_request_locally

* remove leftover code reference

* refactor to add common call to 'verify_json and associated handling code

* add type hint to process_json

* add some docstrings + very slight refactor

Co-authored-by: reivilibre <oliverw@matrix.org>

* Teach MyPy that the sentinel context is False

This means that if `ctx: LoggingContextOrSentinel`
then `bool(ctx)` narrows us to `ctx:LoggingContext`, which is a really
neat find!

* Annotate RequestMetrics

- Raise errors for sentry if we use the sentinel context
- Ensure we don't raise an error and carry on, but not recording stats
- Include stack trace in the error case to lower Sean's blood pressure

* Make mypy pass for synapse.http.request_metrics

* Make synapse.http.connectproxyclient pass mypy

Co-authored-by: reivilibre <oliverw@matrix.org>

Fixes a merge conflict with debian/changelog

Signed-off-by: Dan Callahan <danc@element.io>

Co-authored-by: Patrick Cloke <clokep@users.noreply.github.com>

This avoids filtering against fields which cannot exist on an
event source. E.g. presence updates don't have a room.

Fixes: #9346

Includes both the stable and unstable identifier to store-invite
calls to the identity server. In the future we should remove the
unstable identifier.

The DNS threadpool must be explicitly stopped, otherwise Synapse will
hang indefinitely when asked to shut down.

For some reason the query optimiser decided to seq scan both tables,
rather than index scanning `event_json`.

Co-authored-by: Andrew Morgan <1342360+anoadragon453@users.noreply.github.com>