diff options
| author | Vincent Petry <vincent@nextcloud.com> | 2022-06-13 16:38:34 +0200 |
|---|---|---|
| committer | Carl Schwan <carl@carlschwan.eu> | 2022-07-28 16:54:13 +0200 |
| commit | bbb5043c07923c8e73f687f42465d246292d207d (patch) | |
| tree | ffb7958d19cf344722ee3c8291833c55214bdf01 | |
| parent | 3cfb4cbf94be0f4da1fd7e84b0e37aeb623d9690 (diff) | |
| download | nextcloud-server-bbb5043c07923c8e73f687f42465d246292d207d.tar.gz nextcloud-server-bbb5043c07923c8e73f687f42465d246292d207d.zip | |
Inherit hide download from share attributes
When resharing by link, if the download permission was removed through
share attributes, convert it to the hide download flag.
Signed-off-by: Vincent Petry <vincent@nextcloud.com>
| -rw-r--r-- | apps/files_sharing/lib/Controller/ShareAPIController.php | 27 | ||||
| -rw-r--r-- | lib/private/Share20/DefaultShareProvider.php | 2 |
2 files changed, 29 insertions, 0 deletions
diff --git a/apps/files_sharing/lib/Controller/ShareAPIController.php b/apps/files_sharing/lib/Controller/ShareAPIController.php index 889428db99a..c6fd5e74a39 100644 --- a/apps/files_sharing/lib/Controller/ShareAPIController.php +++ b/apps/files_sharing/lib/Controller/ShareAPIController.php @@ -47,6 +47,7 @@ namespace OCA\Files_Sharing\Controller; use OC\Files\FileInfo; use OCA\Files_Sharing\Exceptions\SharingRightsException; use OCA\Files_Sharing\External\Storage; +use OCA\Files_Sharing\SharedStorage; use OCA\Files\Helper; use OCP\App\IAppManager; use OCP\AppFramework\Http\DataResponse; @@ -549,6 +550,14 @@ class ShareAPIController extends OCSController { throw new OCSNotFoundException($this->l->t('Public link sharing is disabled by the administrator')); } + if ($share->getNode()->getStorage()->instanceOfStorage(SharedStorage::class)) { + /** @var \OCA\Files_Sharing\SharedStorage $storage */ + $inheritedAttributes = $share->getNode()->getStorage()->getShare()->getAttributes(); + if ($inheritedAttributes !== null && $inheritedAttributes->getAttribute('permissions', 'download') === false) { + $share->setHideDownload(true); + } + } + if ($publicUpload === 'true') { // Check if public upload is allowed if (!$this->shareManager->shareApiLinkAllowPublicUpload()) { @@ -1125,6 +1134,24 @@ class ShareAPIController extends OCSController { $share->setHideDownload(false); } + $userFolder = $this->rootFolder->getUserFolder($this->currentUser); + // get the node with the point of view of the current user + $nodes = $userFolder->getById($share->getNode()->getId()); + if (count($nodes) > 0) { + $node = $nodes[0]; + $storage = $node->getStorage(); + if ($storage->instanceOfStorage(SharedStorage::class)) { + /** @var \OCA\Files_Sharing\SharedStorage $storage */ + $inheritedAttributes = $storage->getShare()->getAttributes(); + if ($inheritedAttributes !== null && $inheritedAttributes->getAttribute('permissions', 'download') === false) { + if ($hideDownload === 'false') { + throw new OCSBadRequestException($this->l->t('Cannot increate permissions')); + } + $share->setHideDownload(true); + } + } + } + $newPermissions = null; if ($publicUpload === 'true') { $newPermissions = Constants::PERMISSION_READ | Constants::PERMISSION_CREATE | Constants::PERMISSION_UPDATE | Constants::PERMISSION_DELETE; diff --git a/lib/private/Share20/DefaultShareProvider.php b/lib/private/Share20/DefaultShareProvider.php index af1e15d86c2..627284da4e8 100644 --- a/lib/private/Share20/DefaultShareProvider.php +++ b/lib/private/Share20/DefaultShareProvider.php @@ -175,6 +175,8 @@ class DefaultShareProvider implements IShareProvider { if (method_exists($share, 'getParent')) { $qb->setValue('parent', $qb->createNamedParameter($share->getParent())); } + + $qb->setValue('hide_download', $qb->createNamedParameter($share->getHideDownload() ? 1 : 0, IQueryBuilder::PARAM_INT)); } else { throw new \Exception('invalid share type!'); } |