Browse Source
[Share 2.0] Also handle empty parameter in updateShare
* More sanity checks * More unit teststags/v9.0beta1
Roeland Jago Douma
8 years ago
2 changed files with 283 additions and 24 deletions
+ 45
- 24
apps/files_sharing/api/share20ocs.php
View File
| @@ -452,42 +452,63 @@ class Share20OCS { | |||
| } | |||
| if (!$this->canAccessShare($share)) { | |||
| return new \OC_OCS_Result(null, 404, "wrong share Id, share doesn't exist."); | |||
| return new \OC_OCS_Result(null, 404, 'wrong share Id, share doesn\'t exist.'); | |||
| } | |||
| $permissions = $this->request->getParam('permissions', null); | |||
| $password = $this->request->getParam('password', null); | |||
| $password = $this->request->getParam('password', ''); | |||
| $publicUpload = $this->request->getParam('publicUpload', null); | |||
| $expireDate = $this->request->getParam('expireDate', null); | |||
| $expireDate = $this->request->getParam('expireDate', ''); | |||
| /* | |||
| * expirationdate, password and publicUpload only make sense for link shares | |||
| */ | |||
| if ($share->getShareType() === \OCP\Share::SHARE_TYPE_LINK) { | |||
| if ($password === null && $publicUpload === null && $expireDate === null) { | |||
| return new \OC_OCS_Result(null, 400, 'Wrong or no update parameter given'); | |||
| } | |||
| if ($permissions === null && $password === null && $publicUpload === null && $expireDate === null) { | |||
| return new \OC_OCS_Result(null, 400, 'Wrong or no update parameter given'); | |||
| } | |||
| if ($expireDate === '') { | |||
| $share->setExpirationDate(null); | |||
| } else { | |||
| try { | |||
| $expireDate = $this->parseDate($expireDate); | |||
| } catch (\Exception $e) { | |||
| return new \OC_OCS_Result(null, 400, $e->getMessage()); | |||
| } | |||
| $share->setExpirationDate($expireDate); | |||
| } | |||
| if ($expireDate !== null) { | |||
| try { | |||
| $expireDate = $this->parseDate($expireDate); | |||
| } catch (\Exception $e) { | |||
| return new \OC_OCS_Result(null, 400, $e->getMessage()); | |||
| if ($password === '') { | |||
| $share->setPassword(null); | |||
| } else { | |||
| $share->setPassword($password); | |||
| } | |||
| $share->setExpirationDate($expireDate); | |||
| } | |||
| if ($permissions !== null) { | |||
| $permissions = (int)$permissions; | |||
| $share->setPermissions($permissions); | |||
| } | |||
| if ($publicUpload === 'true') { | |||
| if(!$this->shareManager->shareApiLinkAllowPublicUpload()) { | |||
| return new \OC_OCS_Result(null, 403, "public upload disabled by the administrator"); | |||
| } | |||
| if ($password !== null) { | |||
| $share->setPassword($password); | |||
| } | |||
| if (!($share->getPath() instanceof \OCP\Files\Folder)) { | |||
| return new \OC_OCS_Result(null, 400, "public upload is only possible for public shared folders"); | |||
| } | |||
| if ($publicUpload === 'true') { | |||
| $share->setPermissions(\OCP\Constants::PERMISSION_READ | \OCP\Constants::PERMISSION_CREATE | \OCP\Constants::PERMISSION_UPDATE); | |||
| } else if ($publicUpload === 'false') { | |||
| $share->setPermissions(\OCP\Constants::PERMISSION_READ); | |||
| $share->setPermissions(\OCP\Constants::PERMISSION_READ | \OCP\Constants::PERMISSION_CREATE | \OCP\Constants::PERMISSION_UPDATE); | |||
| } else if ($publicUpload === 'false') { | |||
| $share->setPermissions(\OCP\Constants::PERMISSION_READ); | |||
| } | |||
| } else { | |||
| if ($permissions === null) { | |||
| return new \OC_OCS_Result(null, 400, 'Wrong or no update parameter given'); | |||
| } else { | |||
| $permissions = (int)$permissions; | |||
| $share->setPermissions($permissions); | |||
| } | |||
| } | |||
| try { | |||
| $share = $this->shareManager->updateShare($share); | |||
| } catch (\Exception $e) { | |||
+ 238
- 0
apps/files_sharing/tests/api/share20ocstest.php
View File
| @@ -932,4 +932,242 @@ class Share20OCSTest extends \Test\TestCase { | |||
| $this->assertEquals($expected->getMeta(), $result->getMeta()); | |||
| $this->assertEquals($expected->getData(), $result->getData()); | |||
| } | |||
| public function testUpdateShareCantAccess() { | |||
| $share = \OC::$server->getShareManager()->newShare(); | |||
| $this->shareManager->method('getShareById')->with('ocinternal:42')->willReturn($share); | |||
| $expected = new \OC_OCS_Result(null, 404, 'wrong share Id, share doesn\'t exist.'); | |||
| $result = $this->ocs->updateShare(42); | |||
| $this->assertEquals($expected->getMeta(), $result->getMeta()); | |||
| $this->assertEquals($expected->getData(), $result->getData()); | |||
| } | |||
| public function testUpdateNoParametersLink() { | |||
| $share = \OC::$server->getShareManager()->newShare(); | |||
| $share->setPermissions(\OCP\Constants::PERMISSION_ALL) | |||
| ->setSharedBy($this->currentUser) | |||
| ->setShareType(\OCP\Share::SHARE_TYPE_LINK); | |||
| $this->shareManager->method('getShareById')->with('ocinternal:42')->willReturn($share); | |||
| $expected = new \OC_OCS_Result(null, 400, 'Wrong or no update parameter given'); | |||
| $result = $this->ocs->updateShare(42); | |||
| $this->assertEquals($expected->getMeta(), $result->getMeta()); | |||
| $this->assertEquals($expected->getData(), $result->getData()); | |||
| } | |||
| public function testUpdateNoParametersOther() { | |||
| $share = \OC::$server->getShareManager()->newShare(); | |||
| $share->setPermissions(\OCP\Constants::PERMISSION_ALL) | |||
| ->setSharedBy($this->currentUser) | |||
| ->setShareType(\OCP\Share::SHARE_TYPE_GROUP); | |||
| $this->shareManager->method('getShareById')->with('ocinternal:42')->willReturn($share); | |||
| $expected = new \OC_OCS_Result(null, 400, 'Wrong or no update parameter given'); | |||
| $result = $this->ocs->updateShare(42); | |||
| $this->assertEquals($expected->getMeta(), $result->getMeta()); | |||
| $this->assertEquals($expected->getData(), $result->getData()); | |||
| } | |||
| public function testUpdateLinkShareClear() { | |||
| $ocs = $this->mockFormatShare(); | |||
| $share = \OC::$server->getShareManager()->newShare(); | |||
| $share->setPermissions(\OCP\Constants::PERMISSION_ALL) | |||
| ->setSharedBy($this->currentUser) | |||
| ->setShareType(\OCP\Share::SHARE_TYPE_LINK) | |||
| ->setPassword('password') | |||
| ->setExpirationDate(new \DateTime()) | |||
| ->setPermissions(\OCP\Constants::PERMISSION_ALL); | |||
| $this->request | |||
| ->method('getParam') | |||
| ->will($this->returnValueMap([ | |||
| ['publicUpload', null, 'false'], | |||
| ['expireDate', '', ''], | |||
| ['password', '', ''], | |||
| ])); | |||
| $this->shareManager->method('getShareById')->with('ocinternal:42')->willReturn($share); | |||
| $this->shareManager->expects($this->once())->method('updateShare')->with( | |||
| $this->callback(function (IShare $share) { | |||
| return $share->getPermissions() === \OCP\Constants::PERMISSION_READ && | |||
| $share->getPassword() === null && | |||
| $share->getExpirationDate() === null; | |||
| }) | |||
| ); | |||
| $expected = new \OC_OCS_Result(null); | |||
| $result = $ocs->updateShare(42); | |||
| $this->assertEquals($expected->getMeta(), $result->getMeta()); | |||
| $this->assertEquals($expected->getData(), $result->getData()); | |||
| } | |||
| public function testUpdateLinkShareSet() { | |||
| $ocs = $this->mockFormatShare(); | |||
| $folder = $this->getMock('\OCP\Files\Folder'); | |||
| $share = \OC::$server->getShareManager()->newShare(); | |||
| $share->setPermissions(\OCP\Constants::PERMISSION_ALL) | |||
| ->setSharedBy($this->currentUser) | |||
| ->setShareType(\OCP\Share::SHARE_TYPE_LINK) | |||
| ->setPath($folder); | |||
| $this->request | |||
| ->method('getParam') | |||
| ->will($this->returnValueMap([ | |||
| ['publicUpload', null, 'true'], | |||
| ['expireDate', '', '2000-01-01'], | |||
| ['password', '', 'password'], | |||
| ])); | |||
| $this->shareManager->method('getShareById')->with('ocinternal:42')->willReturn($share); | |||
| $this->shareManager->method('shareApiLinkAllowPublicUpload')->willReturn(true); | |||
| $this->shareManager->expects($this->once())->method('updateShare')->with( | |||
| $this->callback(function (IShare $share) { | |||
| $date = new \DateTime('2000-01-01'); | |||
| $date->setTime(0,0,0); | |||
| return $share->getPermissions() === \OCP\Constants::PERMISSION_READ | \OCP\Constants::PERMISSION_CREATE && \OCP\Constants::PERMISSION_DELETE && | |||
| $share->getPassword() === 'password' && | |||
| $share->getExpirationDate() == $date; | |||
| }) | |||
| ); | |||
| $expected = new \OC_OCS_Result(null); | |||
| $result = $ocs->updateShare(42); | |||
| $this->assertEquals($expected->getMeta(), $result->getMeta()); | |||
| $this->assertEquals($expected->getData(), $result->getData()); | |||
| } | |||
| public function testUpdateLinkShareInvalidDate() { | |||
| $ocs = $this->mockFormatShare(); | |||
| $folder = $this->getMock('\OCP\Files\Folder'); | |||
| $share = \OC::$server->getShareManager()->newShare(); | |||
| $share->setPermissions(\OCP\Constants::PERMISSION_ALL) | |||
| ->setSharedBy($this->currentUser) | |||
| ->setShareType(\OCP\Share::SHARE_TYPE_LINK) | |||
| ->setPath($folder); | |||
| $this->request | |||
| ->method('getParam') | |||
| ->will($this->returnValueMap([ | |||
| ['publicUpload', null, 'true'], | |||
| ['expireDate', '', '2000-01-a'], | |||
| ['password', '', 'password'], | |||
| ])); | |||
| $this->shareManager->method('getShareById')->with('ocinternal:42')->willReturn($share); | |||
| $this->shareManager->method('shareApiLinkAllowPublicUpload')->willReturn(true); | |||
| $expected = new \OC_OCS_Result(null, 400, 'Invalid date. Format must be YYYY-MM-DD'); | |||
| $result = $ocs->updateShare(42); | |||
| $this->assertEquals($expected->getMeta(), $result->getMeta()); | |||
| $this->assertEquals($expected->getData(), $result->getData()); | |||
| } | |||
| public function testUpdateLinkSharePublicUploadNotAllowed() { | |||
| $ocs = $this->mockFormatShare(); | |||
| $folder = $this->getMock('\OCP\Files\Folder'); | |||
| $share = \OC::$server->getShareManager()->newShare(); | |||
| $share->setPermissions(\OCP\Constants::PERMISSION_ALL) | |||
| ->setSharedBy($this->currentUser) | |||
| ->setShareType(\OCP\Share::SHARE_TYPE_LINK) | |||
| ->setPath($folder); | |||
| $this->request | |||
| ->method('getParam') | |||
| ->will($this->returnValueMap([ | |||
| ['publicUpload', null, 'true'], | |||
| ['expireDate', '', ''], | |||
| ['password', '', 'password'], | |||
| ])); | |||
| $this->shareManager->method('getShareById')->with('ocinternal:42')->willReturn($share); | |||
| $this->shareManager->method('shareApiLinkAllowPublicUpload')->willReturn(false); | |||
| $expected = new \OC_OCS_Result(null, 403, 'public upload disabled by the administrator'); | |||
| $result = $ocs->updateShare(42); | |||
| $this->assertEquals($expected->getMeta(), $result->getMeta()); | |||
| $this->assertEquals($expected->getData(), $result->getData()); | |||
| } | |||
| public function testUpdateLinkSharePublicUploadOnFile() { | |||
| $ocs = $this->mockFormatShare(); | |||
| $file = $this->getMock('\OCP\Files\File'); | |||
| $share = \OC::$server->getShareManager()->newShare(); | |||
| $share->setPermissions(\OCP\Constants::PERMISSION_ALL) | |||
| ->setSharedBy($this->currentUser) | |||
| ->setShareType(\OCP\Share::SHARE_TYPE_LINK) | |||
| ->setPath($file); | |||
| $this->request | |||
| ->method('getParam') | |||
| ->will($this->returnValueMap([ | |||
| ['publicUpload', null, 'true'], | |||
| ['expireDate', '', ''], | |||
| ['password', '', 'password'], | |||
| ])); | |||
| $this->shareManager->method('getShareById')->with('ocinternal:42')->willReturn($share); | |||
| $this->shareManager->method('shareApiLinkAllowPublicUpload')->willReturn(true); | |||
| $expected = new \OC_OCS_Result(null, 400, 'public upload is only possible for public shared folders'); | |||
| $result = $ocs->updateShare(42); | |||
| $this->assertEquals($expected->getMeta(), $result->getMeta()); | |||
| $this->assertEquals($expected->getData(), $result->getData()); | |||
| } | |||
| public function testUpdateOtherPermissions() { | |||
| $ocs = $this->mockFormatShare(); | |||
| $file = $this->getMock('\OCP\Files\File'); | |||
| $share = \OC::$server->getShareManager()->newShare(); | |||
| $share->setPermissions(\OCP\Constants::PERMISSION_ALL) | |||
| ->setSharedBy($this->currentUser) | |||
| ->setShareType(\OCP\Share::SHARE_TYPE_USER) | |||
| ->setPath($file); | |||
| $this->request | |||
| ->method('getParam') | |||
| ->will($this->returnValueMap([ | |||
| ['permissions', null, '31'], | |||
| ])); | |||
| $this->shareManager->method('getShareById')->with('ocinternal:42')->willReturn($share); | |||
| $this->shareManager->method('shareApiLinkAllowPublicUpload')->willReturn(true); | |||
| $this->shareManager->expects($this->once())->method('updateShare')->with( | |||
| $this->callback(function (IShare $share) { | |||
| return $share->getPermissions() === \OCP\Constants::PERMISSION_ALL; | |||
| }) | |||
| ); | |||
| $expected = new \OC_OCS_Result(null); | |||
| $result = $ocs->updateShare(42); | |||
| $this->assertEquals($expected->getMeta(), $result->getMeta()); | |||
| $this->assertEquals($expected->getData(), $result->getData()); | |||
| } | |||
| } | |||
Loading…