Apply ACLs per room ID for m.receipt EDUs

matrix-org · Nov 19, 2024 · 276fa60 · 276fa60
1 parent f5bb734
commit 276fa60
Showing 1 changed file with 12 additions and 12 deletions.
diff --git a/content/server-server-api.md b/content/server-server-api.md
@@ -1247,18 +1247,18 @@ The following endpoint prefixes MUST be protected:
 Additionally the [`/_matrix/federation/v1/send/{txnId}`](#put_matrixfederationv1sendtxnid)
 endpoint MUST be protected as follows:
 
--   ACLs MUST be applied on a per-PDU basis. If the `origin` server is
-    denied access to the room identified by `room_id`, the PDU MUST be
-    ignored with an appropriate error included in the response for the
-    respective event ID.
--   ACLs MUST be applied on a per-EDU basis to all EDUs that are local
-    to a specific room. This includes:
-
-    -   [Typing notifications (m.typing)](#typing-notifications)
-    -   [Receipts (m.receipt)](#receipts)
-
-    If the `origin` server is denied access to the room identified by
-    `room_id`, the EDU MUST be ignored.
+-   ACLs MUST be applied to all PDUs on a per-PDU basis. If the `origin`
+    server is denied access to the room identified by `room_id`, the PDU
+    MUST be ignored with an appropriate error included in the response
+    for the respective event ID.
+-   ACLs MUST be applied to all EDUs that are local to a specific room:
+
+    -   For [typing notifications (m.typing)](#typing-notifications), if
+        the `origin` server is denied access to the room identified by
+        `room_id`, the EDU MUST be ignored.
+    -   For [receipts (m.receipt)](#receipts), all receipts for a particular
+        room ID MUST be ignored if the `origin` server is denied access to
+        the room identified by that ID.
 
 ## Signing Events