Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(ProvisioningApi): only return verified additional mails per user #44341

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

fix(ProvisioningApi): only return verified additional mails per user #44341

wants to merge 1 commit into from
+71 −0

Conversation

blizzz
Copy link
Member

@blizzz blizzz commented Mar 19, 2024

Summary

…it would not per se be bad to return all of them, however the meta data about the verified state is missing. Since the information may go out to connected clients, those may have wrong trust the returned email addresses.

Email verification still works with this change.

Checklist

@blizzz blizzz added this to the Nextcloud 29 milestone Mar 19, 2024
@blizzz blizzz requested review from nickvergessen, Pytal, a team, ArtificialOwl, icewind1991 and sorbaugh and removed request for a team March 19, 2024 20:50
@blizzz blizzz added 2. developing Work in progress and removed 3. to review Waiting for reviews labels Mar 20, 2024
@Altahrim Altahrim mentioned this pull request Mar 20, 2024
Merged
@Altahrim Altahrim mentioned this pull request Mar 25, 2024
Merged
@skjnldsv skjnldsv mentioned this pull request Mar 28, 2024
Merged
81 tasks
@skjnldsv skjnldsv modified the milestones: Nextcloud 29, Nextcloud 30 Mar 28, 2024
@blizzz
Copy link
Member Author

blizzz commented Apr 7, 2024

Integration tests fail, for no email verification was done there. That might be tricky. There is no way to modify it from outside, without exposing anything, so not the way to go. Maybe utilizing FakeSMTPHelper in the integration tests could help, did not have time for a closer look there yet (free time activity…).

@nickvergessen
Copy link
Member

There is no way to modify it from outside, without exposing anything, so not the way to go.

Can add any code directly to the apps/testing app.

@blizzz
fix(ProvisioningApi): only return verified additional mails per user
35a0ee2 
It would not per se be bad to return all of them, however the meta data
about the verified state is missing. Since the information may go out to
connected clients, those may have wrong trust the returned email
addresses.

Email verification still works with this change.

Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
@blizzz blizzz force-pushed the fix/noid/return-verified-email branch from 266a79a to 35a0ee2 Compare June 23, 2024 20:05
github-advanced-security[bot]
github-advanced-security bot found potential problems Jun 23, 2024
View reviewed changes
apps/testing/lib/Controller/MailVerificationTestController.php

class MailVerificationTestController extends OCSController {
public function __construct(
$appName,

Check notice

Code scanning / Psalm

MissingParamType Note test

Parameter $appName has no provided type
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
$appName,
string $appName,

apps/testing/lib/Controller/MailVerificationTestController.php

public function verify(string $userId, string $email): DataResponse {
$user = $this->userManager->get($userId);
$userAccount = $this->accountManager->getAccount($user);

Check notice

Code scanning / Psalm

PossiblyNullArgument Note test

Argument 1 of OCP\Accounts\IAccountManager::getAccount cannot be null, possibly null value provided
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
$userAccount = $this->accountManager->getAccount($user);
if ($user === null) {
throw new InvalidArgumentException('User not available.');
}
$userAccount = $this->accountManager->getAccount($user);

nickvergessen
nickvergessen reviewed Jun 24, 2024
View reviewed changes
apps/testing/lib/Controller/MailVerificationTestController.php
@@ -0,0 +1,35 @@
<?php
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Needs SPDX headers

This was referenced Jul 30, 2024
Merged
Merged
This was referenced Aug 5, 2024
Merged
Merged
@skjnldsv skjnldsv mentioned this pull request Aug 13, 2024
Merged
@skjnldsv skjnldsv modified the milestones: Nextcloud 30, Nextcloud 31 Aug 14, 2024
susnux
susnux reviewed Sep 6, 2024
View reviewed changes
apps/testing/lib/Controller/MailVerificationTestController.php

class MailVerificationTestController extends OCSController {
public function __construct(
$appName,
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
$appName,
string $appName,

apps/testing/lib/Controller/MailVerificationTestController.php

public function verify(string $userId, string $email): DataResponse {
$user = $this->userManager->get($userId);
$userAccount = $this->accountManager->getAccount($user);
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
$userAccount = $this->accountManager->getAccount($user);
if ($user === null) {
throw new InvalidArgumentException('User not available.');
}
$userAccount = $this->accountManager->getAccount($user);

apps/testing/lib/Controller/MailVerificationTestController.php
@@ -0,0 +1,35 @@
<?php

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
declare(strict_types=1);
/**
* SPDX-FileCopyrightText: 2024 Nextcloud GmbH and Nextcloud contributors
* SPDX-License-Identifier: AGPL-3.0-or-later
*/

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@susnux susnux susnux left review comments

@nickvergessen nickvergessen nickvergessen approved these changes

@Pytal Pytal Pytal approved these changes

@ArtificialOwl ArtificialOwl Awaiting requested review from ArtificialOwl ArtificialOwl was automatically assigned from nextcloud/server-backend

@icewind1991 icewind1991 Awaiting requested review from icewind1991 icewind1991 was automatically assigned from nextcloud/server-backend

@sorbaugh sorbaugh Awaiting requested review from sorbaugh sorbaugh was automatically assigned from nextcloud/server-backend

Assignees
No one assigned
Labels
2. developing Work in progress bug feature: emails
Projects
None yet
Milestone
Nextcloud 31
Development

Successfully merging this pull request may close these issues.
5 participants
@blizzz @nickvergessen @susnux @Pytal @skjnldsv