Enhance privacy of contactsmenu fixes #5107 #5585
Conversation
Codecov Report
@@ Coverage Diff @@
## master #5585 +/- ##
=============================================
- Coverage 53.44% 37.01% -16.43%
- Complexity 22542 22552 +10
=============================================
Files 1408 1408
Lines 87206 87233 +27
Branches 1328 1328
=============================================
- Hits 46604 32291 -14313
- Misses 40602 54942 +14340
|
juliusknorr
added
3. to review
| * 1. filter the current user | ||
| * 2. if the `shareapi_exclude_groups` config option is enabled and the | ||
| * current user is in an excluded group it will filter all local users. | ||
| * 3. if the ``shareapi_only_share_with_group_members config option is |
There was a problem hiding this comment.
Should be
`shareapi_only_share_with_group_members`
I guess
| * @return array the filtered contacts | ||
| */ | ||
| private function filterContacts(IUser $self, Array $entries) { | ||
| $excludedGroups = $this->config->getAppValue('core', 'shareapi_exclude_groups', 'no') === 'yes' ? true : false; |
There was a problem hiding this comment.
? true : false is not necessary, the === check will already result in a boolean value.
| $excludedGroups = $this->config->getAppValue('core', 'shareapi_exclude_groups', 'no') === 'yes' ? true : false; | ||
|
|
||
| $skipLocal = false; // whether to filter out local users | ||
| $ownGroupsOnly = $this->config->getAppValue('core', 'shareapi_only_share_with_group_members', 'no') === 'yes' ? true : false; // whether to filter out all users which doesn't have the same group as the current user |
LEDfan
force-pushed
the
contacts_menu_privacy
branch
from
f10cd5b
to
6b79567
Compare
|
milestone nextcloud 13?? i would definitely call this serious privacy problem a regression that has to be fixed with the next maintenance release. |
| * enabled it will filter all users which doens't have a common group | ||
| * with the current user. | ||
| * @param IUser $self | ||
| * @param $entries Entry[] |
There was a problem hiding this comment.
should be @param Entry[] $entries
| * @param $entries Entry[] | ||
| * @return array the filtered contacts | ||
| */ | ||
| private function filterContacts(IUser $self, Array $entries) { |
| * with the current user. | ||
| * @param IUser $self | ||
| * @param $entries Entry[] | ||
| * @return array the filtered contacts |
| private function filterContacts(IUser $self, Array $entries) { | ||
| $excludedGroups = $this->config->getAppValue('core', 'shareapi_exclude_groups', 'no') === 'yes'; | ||
|
|
||
| $skipLocal = false; // whether to filter out local users |
There was a problem hiding this comment.
move inline comments to a new line please
| } | ||
|
|
||
| public function testGetContactsOnlyIfInTheSameGroup() { | ||
| $this->config->expects($this->at(0)) ->method('getAppValue') |
There was a problem hiding this comment.
great to have this tested 👍
|
@ChristophWurst I addressed your issues, thanks for testing. @rotanid I do agree with you. |
|
i think this should be backported |
|
I just realized that the An alternative way could be to move the filtering to the What do you think? |
LEDfan
force-pushed
the
contacts_menu_privacy
branch
from
60b961f
to
3253e11
Compare
|
@ChristophWurst I fixed a bug and also updated the findOne method because that wasn't filtered already. |
|
@MorrisJobke @LukasReschke @blizzz @rullzer @schiessle @nickvergessen @georgehrke Excuse me for pinging you all 😄 , but can someone please review this? There are many people asking for this. Also please point out your opinion about #5585 (comment) and #5107 (comment) Thanks! |
|
I'll review this and additionally revert 56a9084 in here and add the handling here itself. |
- Groups, which are excluded from sharing should not see local users at all - If sharing is restricted to users own groups, he should only see contacts from his groups: Signed-off-by: Tobia De Koninck <[email protected]>
Signed-off-by: Tobia De Koninck <[email protected]>
Signed-off-by: Tobia De Koninck <[email protected]>
Signed-off-by: Tobia De Koninck <[email protected]>
Signed-off-by: Tobia De Koninck <[email protected]>
…ption + fix findOne Signed-off-by: Tobia De Koninck <[email protected]>
LukasReschke
force-pushed
the
contacts_menu_privacy
branch
from
3253e11
to
5896176
Compare
|
Rebased upon master. |
…letion is disabled" This reverts commit 56a9084.
This adjusts the contacts menu to also support searching by email address which is relevant in scenarios where no UID is known such as LDAP, etc. Furthermore, if `shareapi_allow_share_dialog_user_enumeration` is disabled only results are shown that match the full user ID or email address. Signed-off-by: Lukas Reschke <[email protected]>
|
I added 5896176...705432c, in particular:
Note that the search is on "UID" and "EMAIL". So "FN" is not searched. |
|
@LukasReschke thanks for taking care of this!
Is there a reason for? E.g. on LDAP you as user would know the FN but not the UID? |
Mainly because we have a business requirement requiring this behaviour: Filtering via UID / EMAIL should be possible but for whatever reason filtering to FN shouldn't be possible. cc @oparoz Or would filtering for complete FN here also be acceptable? Your call 😉 |
|
Backport at #6554 |
This filter outs all contacts which shouldn't be visible according to the rules in #5107.