Page MenuHomePhabricator

Policy - make ManiphestTaskQuery verify project visibility first thing
ClosedPublic

Authored by btrahan on Feb 3 2015, 9:14 PM.
Tags
None
Referenced Files
Unknown Object (File)
Sat, Jan 18, 7:00 AM
Unknown Object (File)
Fri, Jan 17, 3:39 PM
Unknown Object (File)
Dec 12 2024, 10:46 AM
Unknown Object (File)
Nov 30 2024, 11:11 AM
Unknown Object (File)
Nov 28 2024, 11:10 AM
Unknown Object (File)
Nov 27 2024, 11:36 AM
Unknown Object (File)
Oct 22 2024, 3:23 PM
Unknown Object (File)
Oct 20 2024, 4:43 AM
Subscribers

Details

Summary

Fixes T7094 (last of many revisions). Its important to do this filtering ASAP so that users can't deduce the identify of an unknown / invisible project.

Test Plan

executed a query for tasks in project foo using user bar. using user foo, lock user bar out of project foo. reissued the query and saw "no data" as well as "restricted project" in the project typeahead.

Diff Detail

Repository
rP Phabricator
Branch
T7094_17
Lint
Lint Passed
Unit
No Test Coverage
Build Status
Buildable 4304
Build 4317: [Placeholder Plan] Wait for 30 Seconds

Event Timeline

btrahan retitled this revision from to Policy - make ManiphestTaskQuery verify project visibility first thing.
btrahan updated this object.
btrahan edited the test plan for this revision. (Show Details)
btrahan added a reviewer: epriestley.
src/applications/maniphest/query/ManiphestTaskQuery.php
270

this is probably not necessary, it just seemed nice to normalize the array indices again

epriestley edited edge metadata.

I think this logic could move to willExecute(), which would mean fewer queries in the event that we need to page several times.

This revision is now accepted and ready to land.Feb 3 2015, 9:38 PM

I think this logic could move to willExecute(), which would mean fewer queries in the event that we need to page several times.

The PhabricatorEmptyQueryException doesn't get caught if you throw it from willExecute. I figure two options

  • no change
  • move code to willExecute, but rather than throw set member variable "projectPolicyCheckFailed". loadPage() then throws the EmptyQueryException if this variable is set

I'll submit the latter for review in a second.

I guess option (3) would be to try/catch for "EmptyQuery" earlier. That also seems reasonable to me, but is a more invasive change.

...haha, I didn't specify that option 'cuz it looks scary. :/

This revision was automatically updated to reflect the committed changes.

Yeah, let's go with this and maybe I'll do (3) the next time we hit this. We do have test coverage and stuff so in theory it shouldn't be tooooo terrible, but it doesn't seem worth it to muck around there if we're only getting a tiny cleanup here.