diff options
author | Arthur Schiwon <blizzz@arthur-schiwon.de> | 2020-08-21 17:36:01 +0200 |
---|---|---|
committer | Arthur Schiwon <blizzz@arthur-schiwon.de> | 2020-08-24 13:44:01 +0200 |
commit | 28c0eea8cb0e1016e751a2e28d0b09006751c58b (patch) | |
tree | 949931eeadabd11039bb3e480eea4ef1b959bfea /apps/workflowengine/lib | |
parent | 9073a6937dc06fa4923a4c30aef6fde75d828ee0 (diff) | |
download | nextcloud-server-28c0eea8cb0e1016e751a2e28d0b09006751c58b.tar.gz nextcloud-server-28c0eea8cb0e1016e751a2e28d0b09006751c58b.zip |
fix possible leaking scope in Flow
- a configured flow can be brought into consideration, despite its event
was not fired
- it could either run through
- or run into a RuntimeException and killing processing of valid flows
Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
Diffstat (limited to 'apps/workflowengine/lib')
-rw-r--r-- | apps/workflowengine/lib/AppInfo/Application.php | 2 | ||||
-rw-r--r-- | apps/workflowengine/lib/Service/RuleMatcher.php | 14 |
2 files changed, 16 insertions, 0 deletions
diff --git a/apps/workflowengine/lib/AppInfo/Application.php b/apps/workflowengine/lib/AppInfo/Application.php index 8f762f0d707..3b253acbce1 100644 --- a/apps/workflowengine/lib/AppInfo/Application.php +++ b/apps/workflowengine/lib/AppInfo/Application.php @@ -65,6 +65,7 @@ class Application extends App implements IBootstrap { private function registerRuleListeners(IEventDispatcher $dispatcher, IServerContainer $container, ILogger $logger): void { + /** @var Manager $manager */ $manager = $container->query(Manager::class); $configuredEvents = $manager->getAllConfiguredEvents(); @@ -81,6 +82,7 @@ class Application extends App implements IBootstrap { /** @var IOperation $operation */ $operation = $container->query($operationClass); + $ruleMatcher->setEventName($eventName); $ruleMatcher->setEntity($entity); $ruleMatcher->setOperation($operation); diff --git a/apps/workflowengine/lib/Service/RuleMatcher.php b/apps/workflowengine/lib/Service/RuleMatcher.php index 05ea16d6816..0ae26627427 100644 --- a/apps/workflowengine/lib/Service/RuleMatcher.php +++ b/apps/workflowengine/lib/Service/RuleMatcher.php @@ -62,6 +62,8 @@ class RuleMatcher implements IRuleMatcher { protected $entity; /** @var Logger */ protected $logger; + /** @var string */ + protected $eventName; public function __construct( IUserSession $session, @@ -101,6 +103,13 @@ class RuleMatcher implements IRuleMatcher { $this->entity = $entity; } + public function setEventName(string $eventName): void { + if ($this->eventName !== null) { + throw new RuntimeException('This method must not be called more than once'); + } + $this->eventName = $eventName; + } + public function getEntity(): IEntity { if ($this->entity === null) { throw new \LogicException('Entity was not set yet'); @@ -155,6 +164,11 @@ class RuleMatcher implements IRuleMatcher { $matches = []; foreach ($operations as $operation) { + $configuredEvents = json_decode($operation['events'], true); + if ($this->eventName !== null && !in_array($this->eventName, $configuredEvents)) { + continue; + } + $checkIds = json_decode($operation['checks'], true); $checks = $this->manager->getChecks($checkIds); |