Page MenuHomePhabricator
Differential D10131

Give files uploaded to objects a very restrictive view policy
ClosedPublic
Actions

Authored by epriestley on Aug 2 2014, 8:22 PM.
Tags
None
Referenced Files
F19634036: D10131.id.diff
Thu, Feb 5, 7:42 AM
F19611920: D10131.id.diff
Tue, Feb 3, 6:38 PM
F19524564: D10131.id24358.diff
Sun, Jan 18, 2:12 AM
F19070308: D10131.diff
Nov 30 2025, 4:12 PM
F18850345: D10131.diff
Oct 30 2025, 3:59 PM
F18823772: D10131.id.diff
Oct 23 2025, 1:18 PM
F18790684: D10131.id.diff
Oct 15 2025, 5:12 PM
F18756405: D10131.id24368.diff
Oct 5 2025, 11:20 AM
View All Files
Subscribers
epriestley
kravitz

Details

Reviewers
btrahan
Maniphest Tasks
T4589: Fully implement granular file permissions and upload defaults
Commits
Restricted Diffusion Commit
rP9181929ebc2f: Give files uploaded to objects a very restrictive view policy
Summary

Fixes T4589. This implements much better policy behavior for files that aligns with user expectations.

Currently, all files have permissive visibility.

The new behavior is:

  • Files uploaded via drag-and-drop to the home page or file upload page get permissive visibility, for ease of quickly sharing things like screenshots.
  • Files uploaded via the manual file upload control get permissive visibility by default, but the user can select the policy they want at upload time in an explicit/obvious way.
  • Files uploaded via drag-and-drop anywhere else (e.g., comments or Pholio) get restricted visibility (only the uploader).
    • When the user applies a transaction to the object which uses the file, we attach the file to the object and punch a hole through the policies: if you can see the object, you can see the file.
    • This rule requires things to use ApplicationTransactions, which is why this took so long to fix.
    • The "attach stuff to the object" code has been in place for a long time and works correctly.

I'll land D8498 after this lands, too.

Test Plan
  • Uploaded via global homepage upload and file drag-and-drop upload, saw permissive visibility.
  • Uploaded via comment area, saw restricted visibility.
  • After commenting, verified links were established and the file became visible to users who could see the attached object.
  • Verified Pholio (which is a bit of a special case) correctly attaches images.

Diff Detail

Repository
rP Phabricator
Lint
Lint Skipped
Unit
Tests Skipped

Event Timeline

epriestley updated this revision to Diff 24358.Aug 2 2014, 8:22 PM
epriestley retitled this revision from to Give files uploaded to objects a very restrictive view policy.
epriestley updated this object.
epriestley edited the test plan for this revision. (Show Details)
epriestley added a reviewer: btrahan.
epriestley added a task: T4589: Fully implement granular file permissions and upload defaults.
Herald added a subscriber: epriestley. · View Herald TranscriptAug 2 2014, 8:22 PM
Harbormaster completed remote builds in B2013: Diff 24358.Aug 2 2014, 8:23 PM
btrahan accepted this revision.Aug 2 2014, 9:14 PM
btrahan edited edge metadata.

This is awesome. =D

Do you think we need a User Guide: Policy or something at some point? I think this makes intuitive sense while also striking me as something that should be written down somewhere.

This revision is now accepted and ready to land.Aug 2 2014, 9:14 PM
epriestley added a comment.Aug 2 2014, 9:36 PM

Yeah, that makes sense -- filed T5779.

epriestley closed this revision.Aug 2 2014, 9:46 PM
epriestley updated this revision to Diff 24368.

Closed by commit rP9181929ebc2f (authored by @epriestley).

kravitz added a subscriber: kravitz.Sep 25 2014, 3:42 AM
bluehawk mentioned this in T6189: Ponder file upload permissions are too restrictive.Sep 25 2014, 4:19 PM

Revision Contents
Changeset List

PathSize
resources/
celerity/
42 lines
src/
applications/
files/
controller/
14 lines
view/
1 line
webroot/
rsrc/
js/
core/
12 lines
3 lines

Diff 24368

View Options

resources/celerity/map.php

Loading...
View Options

src/applications/files/controller/PhabricatorFileDropUploadController.php

Loading...
View Options

src/applications/files/view/PhabricatorGlobalUploadTargetView.php

Loading...
View Options

webroot/rsrc/js/core/DragAndDropFileUpload.js

Loading...
View Options

webroot/rsrc/js/core/behavior-global-drag-and-drop.js

Loading...
Phabricator · Built by Phacility