fix(calendar): Fix getting the permissions of the user #49731
Conversation
nickvergessen
requested review from
st3iny,
SebastianKrupinski and
tcitworld
as code owners
nickvergessen
added
bug
3. to review
nickvergessen
requested review from
kesselb,
st3iny,
miaulalala and
SebastianKrupinski
and removed request for
st3iny,
tcitworld and
SebastianKrupinski
nickvergessen
added
the
pending documentation
lib/public/Calendar/ICalendar.php
Outdated
| */ | ||
| public function getPermissions(): int; | ||
| public function getPermissions(?string $principal = null): int; |
There was a problem hiding this comment.
Do we want to open this box? I assume getkey, getUri, getDisplayName and getDiplayColor will have the same problem, as the values may be different for the sharer and the sharees? 🙊
There was a problem hiding this comment.
- Well, we somewhat need it for Ability to quickly schedule a meeting spreed#6292 aka Schedule meetings inside Talk calendar#6516 otherwise we can not filter the calendars to only show the ones that the user can actually create events in.
- And if the others are affected as well, yes we somewhat need to fix them as well.
- The URI and name is already overwritten, so the knowledge for whom we get the calendars should be there?
There was a problem hiding this comment.
I get that we need to fix it. I'm just wondering if we should take a different approach. If you got the calendar objects through \OCP\Calendar\IManager::getCalendarsForPrincipal I'd expect the permissions to already be specific to the principal passed there, and not having the need to specify the principal another time later on.
There was a problem hiding this comment.
You could add a new method on the IManager that only returns writable calendars, and filter directly in this method.
There was a problem hiding this comment.
If you got the calendar objects through
\OCP\Calendar\IManager::getCalendarsForPrincipalI'd expect the permissions to already be specific to the principal passed there
Also makes sense. Should we add a new method which does that, or add a new method which has the current (unexpected) behaviour, or not have the old behaviour anymore at all.
There was a problem hiding this comment.
You could add a new method on the IManager that only returns writable calendars, and filter directly in this method.
If getPermissions is correct this should not be needed anymore as the OCP consumer can easily filter.
There was a problem hiding this comment.
So, fixed the permissions. ✅
For the color and the name, I would do a DB query in CalendarProvider::getCalendars against the oc_properties table, in lack of another good abstraction (I tried OCA\DAV\DAV\CustomPropertiesBackend but that requires a PropFind object, which is failing to generate in OCS requests with Could not resolve Sabre\DAV\ICollection! Class can not be instantiated).
Or does someone have better ideas that can be implemented until end of the week?
There was a problem hiding this comment.
If you get the calendars via the IManager, isn't that (color, displayName) already contained within the calendarInfo?
There was a problem hiding this comment.
Color and name need properties lookup. Let's tackle that separately when we need it.
Signed-off-by: Joas Schilling <[email protected]>
nickvergessen
force-pushed
the
bugfix/noid/allow-to-get-permissions-of-a-principal
branch
from
be795ab to
4fd84e4
Compare
nickvergessen
changed the title
Checklist