diff options
| author | Roeland Jago Douma <rullzer@users.noreply.github.com> | 2019-08-08 13:26:37 +0300 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2019-08-08 13:26:37 +0300 |
| commit | faf6af1d242b163535d5d35b85d12934b7aa59f4 (patch) | |
| tree | 17a2e8e6b46a6fb899b2e68a9277864d7e7c2506 | |
| parent | 013349c7cb58b51c722e9d688144299bb53b9069 (diff) | |
| parent | 17545d651b7aeef08bf45971c4345c6c869a212c (diff) | |
Merge pull request #16224 from nextcloud/backport/15769/stable15
[stable15] dont use part files for dav writes when the target folder doesn't have create permissions
| -rw-r--r-- | apps/dav/lib/Connector/Sabre/File.php | 9 | ||||
| -rw-r--r-- | apps/dav/tests/unit/Connector/Sabre/FileTest.php | 54 |
2 files changed, 53 insertions, 10 deletions
diff --git a/apps/dav/lib/Connector/Sabre/File.php b/apps/dav/lib/Connector/Sabre/File.php index 3c42f66a04a..9815059c59f 100644 --- a/apps/dav/lib/Connector/Sabre/File.php +++ b/apps/dav/lib/Connector/Sabre/File.php @@ -147,7 +147,12 @@ class File extends Node implements IFile { if ($needsPartFile) { // mark file as partial while uploading (ignored by the scanner) $partFilePath = $this->getPartFileBasePath($this->path) . '.ocTransferId' . rand() . '.part'; - } else { + + if (!$view->isCreatable($partFilePath) && $view->isUpdatable($this->path)) { + $needsPartFile = false; + } + } + if (!$needsPartFile) { // upload file directly as the final path $partFilePath = $this->path; @@ -178,7 +183,7 @@ class File extends Node implements IFile { } $isEOF = false; - $wrappedData = CallbackWrapper::wrap($data, null, null, null, null, function($stream) use (&$isEOF) { + $wrappedData = CallbackWrapper::wrap($data, null, null, null, null, function ($stream) use (&$isEOF) { $isEOF = feof($stream); }); diff --git a/apps/dav/tests/unit/Connector/Sabre/FileTest.php b/apps/dav/tests/unit/Connector/Sabre/FileTest.php index edb61edc6ed..3e3e80f7525 100644 --- a/apps/dav/tests/unit/Connector/Sabre/FileTest.php +++ b/apps/dav/tests/unit/Connector/Sabre/FileTest.php @@ -28,13 +28,20 @@ namespace OCA\DAV\Tests\unit\Connector\Sabre; use OC\Files\Storage\Local; +use OC\Files\Storage\Temporary; +use OC\Files\Storage\Wrapper\PermissionsMask; use OC\Files\View; +use OCA\DAV\Connector\Sabre\File; +use OCP\Constants; use OCP\Files\ForbiddenException; use OCP\Files\Storage; use OCP\IConfig; use Test\HookHelper; use OC\Files\Filesystem; use OCP\Lock\ILockingProvider; +use Test\TestCase; +use Test\Traits\MountProviderTrait; +use Test\Traits\UserTrait; /** * Class File @@ -43,7 +50,9 @@ use OCP\Lock\ILockingProvider; * * @package OCA\DAV\Tests\unit\Connector\Sabre */ -class FileTest extends \Test\TestCase { +class FileTest extends TestCase { + use MountProviderTrait; + use UserTrait; /** * @var string @@ -61,9 +70,8 @@ class FileTest extends \Test\TestCase { \OC_Hook::clear(); - $this->user = $this->getUniqueID('user_'); - $userManager = \OC::$server->getUserManager(); - $userManager->createUser($this->user, 'pass'); + $this->user = 'test_user'; + $this->createUser($this->user, 'pass'); $this->loginAsUser($this->user); @@ -79,15 +87,14 @@ class FileTest extends \Test\TestCase { } /** - * @return \PHPUnit_Framework_MockObject_MockObject | Storage + * @return \PHPUnit_Framework_MockObject_MockObject|Storage */ private function getMockStorage() { $storage = $this->getMockBuilder(Storage::class) ->disableOriginalConstructor() ->getMock(); - $storage->expects($this->any()) - ->method('getId') - ->will($this->returnValue('home::someuser')); + $storage->method('getId') + ->willReturn('home::someuser'); return $storage; } @@ -1163,4 +1170,35 @@ class FileTest extends \Test\TestCase { $file->get(); } + + public function testSimplePutNoCreatePermissions() { + $this->logout(); + + $storage = new Temporary([]); + $storage->file_put_contents('file.txt', 'old content'); + $noCreateStorage = new PermissionsMask([ + 'storage'=> $storage, + 'mask' => Constants::PERMISSION_ALL - Constants::PERMISSION_CREATE + ]); + + $this->registerMount($this->user, $noCreateStorage, '/' . $this->user . '/files/root'); + + $this->loginAsUser($this->user); + + $view = new View('/' . $this->user . '/files'); + + $info = $view->getFileInfo('root/file.txt'); + + $file = new File($view, $info); + + // beforeMethod locks + $view->lockFile('root/file.txt', ILockingProvider::LOCK_SHARED); + + $file->put($this->getStream('new content')); + + // afterMethod unlocks + $view->unlockFile('root/file.txt', ILockingProvider::LOCK_SHARED); + + $this->assertEquals('new content', $view->file_get_contents('root/file.txt')); + } } |