Page MenuHomePhabricator
Differential D10131

Give files uploaded to objects a very restrictive view policy
ClosedPublic
Actions

Authored by epriestley on Aug 2 2014, 8:22 PM.
Tags
None
Referenced Files
F18724417: D10131.id24368.diff
Tue, Sep 30, 3:40 AM
F18621715: D10131.id24368.diff
Mon, Sep 15, 9:15 AM
F18601028: D10131.diff
Sat, Sep 13, 11:20 AM
F18596530: D10131.diff
Sat, Sep 13, 12:56 AM
F18503904: D10131.id.diff
Thu, Sep 4, 11:28 PM
F18495607: D10131.diff
Thu, Sep 4, 4:33 PM
F18105784: D10131.id24368.diff
Aug 10 2025, 7:36 PM
F18065237: D10131.id24368.diff
Aug 4 2025, 2:04 PM
View All Files
Subscribers
epriestley
kravitz

Details

Reviewers
btrahan
Maniphest Tasks
T4589: Fully implement granular file permissions and upload defaults
Commits
Restricted Diffusion Commit
rP9181929ebc2f: Give files uploaded to objects a very restrictive view policy
Summary

Fixes T4589. This implements much better policy behavior for files that aligns with user expectations.

Currently, all files have permissive visibility.

The new behavior is:

  • Files uploaded via drag-and-drop to the home page or file upload page get permissive visibility, for ease of quickly sharing things like screenshots.
  • Files uploaded via the manual file upload control get permissive visibility by default, but the user can select the policy they want at upload time in an explicit/obvious way.
  • Files uploaded via drag-and-drop anywhere else (e.g., comments or Pholio) get restricted visibility (only the uploader).
    • When the user applies a transaction to the object which uses the file, we attach the file to the object and punch a hole through the policies: if you can see the object, you can see the file.
    • This rule requires things to use ApplicationTransactions, which is why this took so long to fix.
    • The "attach stuff to the object" code has been in place for a long time and works correctly.

I'll land D8498 after this lands, too.

Test Plan
  • Uploaded via global homepage upload and file drag-and-drop upload, saw permissive visibility.
  • Uploaded via comment area, saw restricted visibility.
  • After commenting, verified links were established and the file became visible to users who could see the attached object.
  • Verified Pholio (which is a bit of a special case) correctly attaches images.

Diff Detail

Repository
rP Phabricator
Lint
Lint Skipped
Unit
Tests Skipped

Event Timeline

epriestley updated this revision to Diff 24358.Aug 2 2014, 8:22 PM
epriestley retitled this revision from to Give files uploaded to objects a very restrictive view policy.
epriestley updated this object.
epriestley edited the test plan for this revision. (Show Details)
epriestley added a reviewer: btrahan.
epriestley added a task: T4589: Fully implement granular file permissions and upload defaults.
Herald added a subscriber: epriestley. · View Herald TranscriptAug 2 2014, 8:22 PM
Harbormaster completed remote builds in B2013: Diff 24358.Aug 2 2014, 8:23 PM
btrahan accepted this revision.Aug 2 2014, 9:14 PM
btrahan edited edge metadata.

This is awesome. =D

Do you think we need a User Guide: Policy or something at some point? I think this makes intuitive sense while also striking me as something that should be written down somewhere.

This revision is now accepted and ready to land.Aug 2 2014, 9:14 PM
epriestley added a comment.Aug 2 2014, 9:36 PM

Yeah, that makes sense -- filed T5779.

epriestley closed this revision.Aug 2 2014, 9:46 PM
epriestley updated this revision to Diff 24368.

Closed by commit rP9181929ebc2f (authored by @epriestley).

kravitz added a subscriber: kravitz.Sep 25 2014, 3:42 AM
bluehawk mentioned this in T6189: Ponder file upload permissions are too restrictive.Sep 25 2014, 4:19 PM

Revision Contents
Changeset List

PathSize
resources/
celerity/
42 lines
src/
applications/
files/
controller/
14 lines
view/
1 line
webroot/
rsrc/
js/
core/
12 lines
3 lines

Diff 24368

View Options

resources/celerity/map.php

Loading...
View Options

src/applications/files/controller/PhabricatorFileDropUploadController.php

Loading...
View Options

src/applications/files/view/PhabricatorGlobalUploadTargetView.php

Loading...
View Options

webroot/rsrc/js/core/DragAndDropFileUpload.js

Loading...
View Options

webroot/rsrc/js/core/behavior-global-drag-and-drop.js

Loading...
Phabricator · Built by Phacility