From c8d476a3cca2fe0850373c0276144eea65d0a219 Mon Sep 17 00:00:00 2001
From: Kegsay <kegan@matrix.org>
Date: Mon, 27 Jul 2020 09:20:09 +0100
Subject: Return HTTP errors when trying to kick invalid users (#1221)

Room integrity was never compromised as GMSL does auth checks,
but we would incorrectly 200 OK the request instead of 403ing.
---
 sytest-whitelist | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'sytest-whitelist')

diff --git a/sytest-whitelist b/sytest-whitelist
index 5bf6d68b..234eae39 100644
--- a/sytest-whitelist
+++ b/sytest-whitelist
@@ -413,3 +413,5 @@ A full_state incremental update returns only recent timeline
 A prev_batch token can be used in the v1 messages API
 We don't send redundant membership state across incremental syncs by default
 Typing notifications don't leak
+Users cannot kick users from a room they are not in
+Users cannot kick users who have already left a room
-- 
cgit v1.2.3