Skip to content

Commit

Permalink
saving with extra permissions
Browse files Browse the repository at this point in the history
  • Loading branch information
@LinneyS
LinneyS committed Jun 14, 2022
1 parent cd4793f commit 1468eff
Show file tree
Hide file tree
Showing 2 changed files with 30 additions and 13 deletions.
35 changes: 23 additions & 12 deletions controller/callbackcontroller.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -466,11 +466,6 @@ public function track($doc, $users, $key, $status, $url, $token, $history, $chan
$user = $this->userManager->get($userId);
if (!empty($user)) {
\OC_User::setUserId($userId);
\OC_Util::setupFS($userId);

if ($userId === $hashData->userId) {
$filePath = $hashData->filePath;
}
} else {
if (empty($shareToken)) {
$this->logger->error("Track without token: $fileId status $status", ["app" => $this->appName]);
Expand All @@ -480,20 +475,36 @@ public function track($doc, $users, $key, $status, $url, $token, $history, $chan
$this->logger->debug("Track $fileId by token for $userId", ["app" => $this->appName]);
}

// owner of file from the callback link
$ownerId = $hashData->ownerId;
$owner = $this->userManager->get($ownerId);

if (!empty($owner)) {
$userId = $ownerId;
} else {
$callbackUserId = $hashData->userId;
$callbackUser = $this->userManager->get($callbackUserId);

if (!empty($callbackUser)) {
// author of the callback link
$userId = $callbackUserId;

// path for author of the callback link
$filePath = $hashData->filePath;
}
}

if (!empty($userId)) {
\OC_Util::setupFS($userId);
}

list ($file, $error) = empty($shareToken) ? $this->getFile($userId, $fileId, $filePath) : $this->getFileByToken($fileId, $shareToken);

if (isset($error)) {
$this->logger->error("track error $fileId " . json_encode($error->getData()), ["app" => $this->appName]);
return $error;
}

if (empty($user)) {
$owner = $file->getFileInfo()->getOwner();
if ($owner !== null) {
\OC_Util::setupFS($owner->getUID());
}
}

$url = $this->config->ReplaceDocumentServerUrlToInternal($url);

$prevVersion = $file->getFileInfo()->getMtime();
Expand Down
8 changes: 7 additions & 1 deletion controller/editorapicontroller.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -391,7 +391,13 @@ public function config($fileId, $filePath = null, $shareToken = null, $directTok
&& (empty($shareToken) || ($share->getPermissions() & Constants::PERMISSION_UPDATE) === Constants::PERMISSION_UPDATE);
$params["document"]["permissions"]["edit"] = $editable;
if (($editable || $restrictedEditing) && ($canEdit || $canFillForms)) {
$hashCallback = $this->crypt->GetHash(["userId" => $userId, "fileId" => $file->getId(), "filePath" => $filePath, "shareToken" => $shareToken, "action" => "track"]);
$ownerId = null;
$owner = $file->getOwner();
if (!empty($owner)) {
$ownerId = $owner->getUID();
}

$hashCallback = $this->crypt->GetHash(["userId" => $userId, "ownerId" => $ownerId, "fileId" => $file->getId(), "filePath" => $filePath, "shareToken" => $shareToken, "action" => "track"]);
$callback = $this->urlGenerator->linkToRouteAbsolute($this->appName . ".callback.track", ["doc" => $hashCallback]);

if (!empty($this->config->GetStorageUrl())) {
Expand Down

0 comments on commit 1468eff

Please sign in to comment.