Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Enabling E2E in direct message channel is possible only to other member #17014

Closed
Gummikavalier opened this issue Mar 25, 2020 · 3 comments · Fixed by #18943
Closed

Enabling E2E in direct message channel is possible only to other member #17014

Gummikavalier opened this issue Mar 25, 2020 · 3 comments · Fixed by #18943
Assignees
Milestone

Comments

@Gummikavalier
Copy link

Gummikavalier commented Mar 25, 2020

Description:

Enabling E2E-encryption requires edit-room permission that normally comes with the ownership of the private channel.

When the user establishes a direct room with other user, he does not always get the ownership for that channel. E2E is missing in the menu for the lack of edit-room privilege.

Steps to reproduce:

  1. Start a new direct message channel with other user
  2. Check three dot menu in the message pane top right.
  3. There is no E2E option to select.

Expected behavior:

There should be an E2E option in the direct messages channel for the both members of the channel.

Actual behavior:

When the user does not have ownership or edit-room permission on the direct channel:
Screenshot from 2020-03-25 19-43-57

When the user does have ownership or edit-room permission on the direct channel:
Screenshot from 2020-03-25 19-44-29

Server Setup Information:

  • Version of Rocket.Chat Server: 3.0.5
  • Operating System: CentOS7
  • Deployment Method: tar
  • Number of Running Instances: 20
  • DB Replicaset Oplog: enabled
  • NodeJS Version: v12.14.0
  • MongoDB Version: 3.6.17

Client Setup Information

  • Desktop App or Browser Version: Firefox
@Gummikavalier
Copy link
Author

Additional testing showed that neither participant in the direct room can enable E2E. Neither one is an owner (or admin) it seems.

There will be at least an option to enable E2E by default in the version 3.1.0:
#16928

@github-actions
Copy link
Contributor

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

@github-actions github-actions bot added the stat: stale Stale issues will be automatically closed if no activity label Jun 19, 2020
@Gummikavalier
Copy link
Author

Gummikavalier commented Jun 22, 2020

This issue is still valid in RC 3.3.3.

Current behauvior is bad because it completely prevents the use of encryption on direct channels for everybody else except for the admin accounts.

There is a global setting for admins to enable E2E for all direct channels, but since mobile clients don't support it yet, enabling it globally would make mobile clients unusable for direct communication.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging a pull request may close this issue.

3 participants