Fixed an issue where non-admins would attempt to update group configs

4 months ago · 8d2750bfed
parent ffd7bb2569
commit 8d2750bfed
3 changed files with 11 additions and 5 deletions
--- a/Session.xcodeproj/project.pbxproj
+++ b/Session.xcodeproj/project.pbxproj
@ -7873,7 +7873,7 @@
 				CLANG_WARN__ARC_BRIDGE_CAST_NONARC = YES;
 				CLANG_WARN__DUPLICATE_METHOD_MATCH = YES;
 				CODE_SIGN_IDENTITY = "iPhone Developer";
-				CURRENT_PROJECT_VERSION = 498;
+				CURRENT_PROJECT_VERSION = 499;
 				ENABLE_BITCODE = NO;
 				ENABLE_STRICT_OBJC_MSGSEND = YES;
 				ENABLE_TESTABILITY = YES;
@ -7949,7 +7949,7 @@
 				CLANG_WARN__ARC_BRIDGE_CAST_NONARC = YES;
 				CLANG_WARN__DUPLICATE_METHOD_MATCH = YES;
 				CODE_SIGN_IDENTITY = "iPhone Distribution";
-				CURRENT_PROJECT_VERSION = 498;
+				CURRENT_PROJECT_VERSION = 499;
 				ENABLE_BITCODE = NO;
 				ENABLE_MODULE_VERIFIER = YES;
 				ENABLE_STRICT_OBJC_MSGSEND = YES;
--- a/SessionMessagingKit/LibSession/Config
+++ b/SessionMessagingKit/LibSession/Config
@ -267,9 +267,11 @@ internal extension LibSession {
    ) throws -> [T] {
        guard let updatedGroups: [ClosedGroup] = updated as? [ClosedGroup] else { throw StorageError.generic }
        
-        // Exclude legacy groups as they aren't managed via LibSession
+        // Exclude legacy groups as they aren't managed via LibSession and groups where the current user isn't an
+        // admin (non-admins can't update `GroupInfo` anyway)
        let targetGroups: [ClosedGroup] = updatedGroups
            .filter { (try? SessionId(from: $0.id))?.prefix == .group }
+            .filter { isAdmin(groupSessionId: SessionId(.group, hex: $0.id), using: dependencies) }
        
        // If we only updated the current user contact then no need to continue
        guard !targetGroups.isEmpty else { return updated }
@ -310,9 +312,11 @@ internal extension LibSession {
    ) throws -> [T] {
        guard let updatedDisappearingConfigs: [DisappearingMessagesConfiguration] = updated as? [DisappearingMessagesConfiguration] else { throw StorageError.generic }
        
-        // Filter out any disappearing config changes not related to updated groups
+        // Filter out any disappearing config changes not related to updated groups and groups where
+        // the current user isn't an admin (non-admins can't update `GroupInfo` anyway)
        let targetUpdatedConfigs: [DisappearingMessagesConfiguration] = updatedDisappearingConfigs
            .filter { (try? SessionId.Prefix(from: $0.id)) == .group }
+            .filter { isAdmin(groupSessionId: SessionId(.group, hex: $0.id), using: dependencies) }
        
        guard !targetUpdatedConfigs.isEmpty else { return updated }
        
--- a/Handling/LibSession+GroupMembers.swift
+++ b/Handling/LibSession+GroupMembers.swift
@ -366,9 +366,11 @@ internal extension LibSession {
    ) throws -> [T] {
        guard let updatedMembers: [GroupMember] = updated as? [GroupMember] else { throw StorageError.generic }
        
-        // Exclude legacy groups as they aren't managed via SessionUtil
+        // Exclude legacy groups as they aren't managed via SessionUtil and groups where the current user
+        // isn't an admin (non-admins can't update `GroupMembers` anyway)
        let targetMembers: [GroupMember] = updatedMembers
            .filter { (try? SessionId(from: $0.groupId))?.prefix == .group }
+            .filter { isAdmin(groupSessionId: SessionId(.group, hex: $0.groupId), using: dependencies) }
        
        // If we only updated the current user contact then no need to continue
        guard