fix: Invite users working again (#21)

* fix: make invite fully functional

* chore: fix tsc

* chore: remove forced type

Author: Marcos Spessatto Defendi

packages/core/src/events/m.room.guest_access.ts

@@ -11,7 +11,7 @@ export interface RoomGuestAccessEvent extends EventBase {
 	content: {
 		guest_access: "can_join" | "forbidden";
 	};
-	unsigned?: object;
+	unsigned?: Record<string, unknown>;
 }
 
 export const roomGuestAccessEvent = ({

packages/core/src/events/m.room.member-invite.spec.ts

@@ -5,13 +5,13 @@ import { generateKeyPairsFromString } from "../../../homeserver/src/keys";
 import { signEvent } from "../../../homeserver/src/signEvent";
 import { roomMemberEvent } from "./m.room.member";
 
-const finalEventId = "$GAcbc4lUMhfCAWFZxoVZ6Pmzhcea1zKoY92ji4LjMqk";
+const finalEventId = "$nzfaHPXjmyOQerkm4WOlFupYVq56ZDHqC42DlgPydaI";
 const finalEvent = {
 	auth_events: [
 		"$0AQU5dG_mtjH6qavAxYrQsDC0a_-6T3DHs1yoxf5fz4",
 		"$T20EETjD2OuaC1OVyg8iIbJGTNeGBsMiWoAagBOVRNE",
 		"$Uxo9MgF-4HQNEZdkkQDzgh9wlZ1yJbDXTMXCh6aZBi4",
-		"$tZRt2bwceX4sG913Ee67tJiwe-gk859kY2mCeYSncw8",
+		"$HistVisAuthEvent123456789012345678901234567890",
 	],
 	prev_events: ["$gdAY3-3DdjuG-uyFkDn8q5wPS4fbymH__fch9BQmOas"],
 	type: "m.room.member",
@@ -27,11 +27,11 @@ const finalEvent = {
 	state_key: "@asd6:rc1",
 	origin: "hs1",
 	origin_server_ts: 1733107418773,
-	hashes: { sha256: "669gCNgB3VnQWmH+vIg/9CwyC5wOQmGuA8+PiIhiT50" },
+	hashes: { sha256: "1tVvOpcM7iQz9kacDoUa8vhNMQVZZhA+5txzwsH8NR8" },
 	signatures: {
 		hs1: {
 			"ed25519:a_HDhg":
-				"ZGtHq5OuryBhQZOhZRAxGSej9BKU+5nDhzhQ9GfuUoAvP3InUch+Jznca3sblfy0LeZcdGJ866QpbH1eAGYsBQ",
+				"8/qPp2d0PTc4bVMNdbTl32OSFnNqXan9ACQr1QcDV3SgdsDnm+sZv2mXW8rdhIOLOohRG2cED0+1aNxV7VH2Cw",
 		},
 	},
 	unsigned: {
@@ -73,10 +73,11 @@ test("roomMemberInviteEvent", async () => {
 		ts: 1733107418773,
 		depth: 7,
 		auth_events: {
-			create: "$0AQU5dG_mtjH6qavAxYrQsDC0a_-6T3DHs1yoxf5fz4",
-			power_levels: "$T20EETjD2OuaC1OVyg8iIbJGTNeGBsMiWoAagBOVRNE",
-			join_rules: "$Uxo9MgF-4HQNEZdkkQDzgh9wlZ1yJbDXTMXCh6aZBi4",
-			history_visibility: "$tZRt2bwceX4sG913Ee67tJiwe-gk859kY2mCeYSncw8",
+			"m.room.create": "$0AQU5dG_mtjH6qavAxYrQsDC0a_-6T3DHs1yoxf5fz4",
+			"m.room.power_levels": "$T20EETjD2OuaC1OVyg8iIbJGTNeGBsMiWoAagBOVRNE",
+			"m.room.join_rules": "$Uxo9MgF-4HQNEZdkkQDzgh9wlZ1yJbDXTMXCh6aZBi4",
+			"m.room.member:@admin:hs1": "$tZRt2bwceX4sG913Ee67tJiwe-gk859kY2mCeYSncw8",
+			"m.room.history_visibility": "$HistVisAuthEvent123456789012345678901234567890",
 		},
 		prev_events: ["$gdAY3-3DdjuG-uyFkDn8q5wPS4fbymH__fch9BQmOas"],
 		content: {
@@ -112,11 +113,12 @@ test("roomMemberInviteEvent", async () => {
 		},
 	} as const);
 	const signed = await signEvent(memberEvent, signature, "hs1");
+
 	// @ts-ignore
 	expect(signed).toStrictEqual(finalEvent);
 	expect(signed).toHaveProperty(
 		"signatures.hs1.ed25519:a_HDhg",
-		"ZGtHq5OuryBhQZOhZRAxGSej9BKU+5nDhzhQ9GfuUoAvP3InUch+Jznca3sblfy0LeZcdGJ866QpbH1eAGYsBQ",
+		"8/qPp2d0PTc4bVMNdbTl32OSFnNqXan9ACQr1QcDV3SgdsDnm+sZv2mXW8rdhIOLOohRG2cED0+1aNxV7VH2Cw",
 	);
 
 	const memberEventId = generateId(signed);

packages/core/src/events/m.room.member.spec.ts

@@ -52,7 +52,7 @@ test("roomMemberEvent", async () => {
 		ts: 1733107418672,
 		depth: 2,
 		auth_events: {
-			create: createEventId,
+			"m.room.create": createEventId,
 		},
 		prev_events: [createEventId],
 	});

packages/core/src/events/m.room.member.ts

@@ -18,6 +18,15 @@ declare module "./eventBase" {
 	}
 }
 
+export type AuthEvents = {
+	"m.room.create": string;
+	"m.room.power_levels"?: string;
+	"m.room.join_rules"?: string;
+	"m.room.history_visibility"?: string;
+} & {
+	[K in `m.room.member:${string}`]?: string;
+}
+
 export const isRoomMemberEvent = (
 	event: EventBase,
 ): event is RoomMemberEvent => {
@@ -48,26 +57,29 @@ export interface RoomMemberEvent extends EventBase {
 		age_ts: number;
 		invite_room_state: (
 			| {
-					type: "m.room.join_rules";
-					state_key: "";
-					content: { join_rule: "invite" };
-					sender: string;
-			  }
+				type: "m.room.join_rules";
+				state_key: "";
+				content: { join_rule: "invite" };
+				sender: string;
+			}
 			| {
-					type: "m.room.create";
-					state_key: "";
-					content: { room_version: "10"; creator: string };
-					sender: string;
-			  }
+				type: "m.room.create";
+				state_key: "";
+				content: { room_version: "10"; creator: string };
+				sender: string;
+			}
 			| {
-					type: "m.room.member";
-					state_key: string;
-					content: { displayname: "admin"; membership: "join" };
-					sender: string;
-			  }
+				type: "m.room.member";
+				state_key: string;
+				content: { displayname: "admin"; membership: "join" };
+				sender: string;
+			}
 		)[];
 	};
 }
+const isTruthy = <T>(value: T | null | undefined | false | 0 | ''): value is T => {
+	return Boolean(value);
+};
 
 export const roomMemberEvent = ({
 	membership,
@@ -86,12 +98,7 @@ export const roomMemberEvent = ({
 	roomId: string;
 	sender: string;
 	state_key: string;
-	auth_events: {
-		create: string;
-		power_levels?: string;
-		join_rules?: string;
-		history_visibility?: string;
-	};
+	auth_events: AuthEvents;
 	prev_events: string[];
 	depth: number;
 	unsigned?: RoomMemberEvent["unsigned"];
@@ -103,11 +110,12 @@ export const roomMemberEvent = ({
 		roomId,
 		sender,
 		auth_events: [
-			auth_events.create,
-			auth_events.power_levels,
-			auth_events.join_rules,
-			auth_events.history_visibility,
-		].filter(Boolean) as string[],
+			auth_events["m.room.create"],
+			auth_events["m.room.power_levels"],
+			auth_events["m.room.join_rules"],
+			auth_events["m.room.history_visibility"],
+			auth_events[`m.room.member:${state_key}`],
+		].filter(isTruthy),
 		prev_events,
 		depth,
 		content: {

packages/homeserver/src/controllers/federation/profiles.controller.ts

@@ -1,9 +1,33 @@
-import { Body, Controller, Get, Param, Post, Query } from '@nestjs/common';
+import { Body, Controller, Get, Param, Post, Query, UsePipes } from '@nestjs/common';
 import { ProfilesService } from '../../services/profiles.service';
+import { z } from 'zod';
+import { ZodValidationPipe } from '../../validation/pipes/zod-validation.pipe';
 
+const MakeJoinQueryParamsSchema = z.object({
+    ver: z.array(z.string()).optional()
+});
+
+type MakeJoinQueryParamsDto = z.infer<typeof MakeJoinQueryParamsSchema>;
+type MakeJoinResponseDto = {
+    room_version: string;
+    event: {
+        content: {
+            membership: 'join';
+            join_authorised_via_users_server?: string;
+            [key: string]: any;
+        };
+        room_id: string;
+        sender: string;
+        state_key: string;
+        type: 'm.room.member';
+        origin_server_ts: number;
+        origin: string;
+        [key: string]: any;
+    };
+};
 @Controller('/_matrix/federation/v1')
 export class ProfilesController {
-    constructor(private readonly profilesService: ProfilesService) {}
+    constructor(private readonly profilesService: ProfilesService) { }
 
     @Get("/query/profile")
     async queryProfile(@Query() queryParams: { user_id: string }) {
@@ -24,9 +48,28 @@ export class ProfilesController {
     async makeJoin(
         @Param("roomId") roomId: string,
         @Param("userId") userId: string,
-        @Query() query: any
-    ) {
-        return this.profilesService.makeJoin(roomId, userId, query.ver);
+        @Query(new ZodValidationPipe(MakeJoinQueryParamsSchema)) query: MakeJoinQueryParamsDto,
+    ): Promise<MakeJoinResponseDto> {
+        const response = await this.profilesService.makeJoin(roomId, userId, query.ver);
+
+        return {
+            room_version: response.room_version,
+            event: {
+                ...response.event,
+                content: {
+                    ...response.event.content,
+                    membership: 'join',
+                    join_authorised_via_users_server: response.event.content.join_authorised_via_users_server,
+
+                },
+                room_id: response.event.room_id,
+                sender: response.event.sender,
+                state_key: response.event.state_key,
+                type: 'm.room.member',
+                origin_server_ts: response.event.origin_server_ts,
+                origin: response.event.origin,
+            }
+        }
     }
 
     @Post("/get_missing_events/:roomId")

packages/homeserver/src/controllers/federation/send-join.controller.ts

@@ -1,50 +1,104 @@
 import { Body, Controller, Param, Put } from '@nestjs/common';
 
-import type { EventBase } from "@hs/core/src/events/eventBase";
 import { isRoomMemberEvent } from "@hs/core/src/events/m.room.member";
-import type { HashedEvent } from "../../authentication";
 import { ConfigService } from '../../services/config.service';
 import { EventService } from '../../services/event.service';
-import type { SignedEvent } from "../../signJson";
+import { ZodValidationPipe } from '../../validation/pipes/zod-validation.pipe';
+import { z } from 'zod';
+import { ROOM_ID_REGEX, USERNAME_REGEX } from '../../utils/validation-regex';
+import type { EventBase } from '@hs/core/src/events/eventBase';
 
-@Controller('/_matrix/federation/v1')
+const SendJoinEventSchema = z.object({
+    type: z.literal('m.room.member'),
+    content: z.object({
+        membership: z.literal('join'),
+        displayname: z.string().nullable().optional(),
+        avatar_url: z.string().nullable().optional(),
+        join_authorised_via_users_server: z.string().nullable().optional(),
+        is_direct: z.boolean().nullable().optional(),
+    }).and(z.record(z.any())),
+    sender: z.string().regex(USERNAME_REGEX),
+    state_key: z.string().regex(USERNAME_REGEX),
+    room_id: z.string().regex(ROOM_ID_REGEX),
+    origin_server_ts: z.number().int().positive(),
+    depth: z.number().int().nonnegative(),
+    prev_events: z.array(z.string().or(z.tuple([z.string(), z.string()]))),
+    auth_events: z.array(z.string().or(z.tuple([z.string(), z.string()]))),
+    origin: z.string().nullable().optional(),
+    hashes: z.record(z.string()).nullable().optional(),
+    signatures: z.record(z.record(z.string())).nullable().optional(),
+    unsigned: z.record(z.any()).nullable().optional(),
+});
+
+type SendJoinEventDto = Omit<EventBase, 'type' | 'content'> & {
+    type: 'm.room.member';
+    content: {
+        membership: 'join';
+        displayname?: string;
+        avatar_url?: string;
+        join_authorised_via_users_server?: string;
+        is_direct?: boolean;
+    };
+};
+
+type SendJoinResponseDto = {
+    event: Record<string, any>;
+    state: Record<string, any>[];
+    auth_chain: Record<string, any>[];
+    members_omitted: boolean;
+    origin: string;
+};
+
+
+@Controller('/_matrix/federation/v2')
 export class SendJoinController {
     constructor(
         private readonly eventService: EventService,
         private readonly configService: ConfigService,
-    ) {}
+    ) { }
 
     @Put("/send_join/:roomId/:stateKey")
-    async sendJoin(@Param('roomId') roomId: string, @Param('stateKey') stateKey: string, @Body() body: unknown) {
-        const event = body as SignedEvent<HashedEvent<EventBase>>;
+    async sendJoin(
+        @Param('roomId') roomId: string,
+        @Param('stateKey') stateKey: string,
+        @Body(new ZodValidationPipe(SendJoinEventSchema)) body: SendJoinEventDto
+    ): Promise<SendJoinResponseDto> {
+        const event = body;
 
         const records = await this.eventService.findEvents({ "event.room_id": roomId }, { sort: { "event.depth": 1 } });
 
         const events = records.map((event) => event.event);
 
         const lastInviteEvent = records.find(
             (record) =>
-                isRoomMemberEvent(record.event as unknown as EventBase) &&
+                isRoomMemberEvent(record.event) &&
                 record.event.content.membership === "invite",
         );
 
+        const eventToSave = {
+            ...event,
+            origin: event.origin || this.configService.getServerConfig().name
+        };
+
         const result = {
             event: {
                 ...event,
-                unsigned: lastInviteEvent && {
+                unsigned: lastInviteEvent ? {
                     replaces_state: lastInviteEvent._id,
                     prev_content: lastInviteEvent.event.content,
                     prev_sender: lastInviteEvent.event.sender,
-                },
-            } as SignedEvent<HashedEvent<EventBase>>,
-            state: events,
-            auth_chain: events.filter((event) => event.depth && event.depth <= 4),
+                } : undefined,
+            },
+            state: events.map(event => ({ ...event })),
+            auth_chain: events
+                .filter((event) => event.depth && event.depth <= 4)
+                .map(event => ({ ...event })),
             members_omitted: false,
             origin: this.configService.getServerConfig().name,
-        } as const;
+        };
 
-        if (!(await this.eventService.findEvents({ _id: stateKey }))) {
-            await this.eventService.insertEvent(event as any);
+        if ((await this.eventService.findEvents({ _id: stateKey })).length === 0) {
+            await this.eventService.insertEvent(eventToSave, stateKey);
         }
 
         return result;

packages/homeserver/src/models/event.model.ts

@@ -3,20 +3,22 @@ export interface EventBase {
   room_id: string;
   type: string;
   sender: string;
-  content: any;
+  content?: Record<string, unknown>;
   origin_server_ts: number;
   origin: string;
   state_key?: string;
-  depth?: number;
-  prev_events?: string[];
-  auth_events?: string[];
+  depth: number;
+  prev_events: string[];
+  auth_events: string[];
   signatures?: Record<string, Record<string, string>>;
+  unsigned?: Record<string, unknown> | undefined;
 }
 
 export interface EventStore {
   _id: string;
   event: EventBase;
   staged?: boolean;
+  outlier?: boolean;
 }
 
 export interface StateEvent extends EventBase {

packages/homeserver/src/procedures/createRoom.ts

@@ -81,7 +81,7 @@ export const createRoom = async (
 		},
 		state_key: sender,
 		auth_events: {
-			create: createEvent._id,
+			"m.room.create": createEvent._id,
 		},
 		prev_events: [createEvent._id],
 	});