ahtlon/deck
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity

fix: Only query boards not marked for deletion unless we want to undo

Browse Source 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
This commit is contained in:
Julius Härtl
2023-11-17 10:29:41 +01:00
parent 66e33773e5
commit 09a2f0ea5e
6 changed files with 34 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
lib/Collaboration/Resources/ResourceProvider.php
View File

@@ -111,7 +111,7 @@ class ResourceProvider implements IProvider {
private function getBoard(IResource $resource) { private function getBoard(IResource $resource) {
try { try {
return $this->boardMapper->find($resource->getId(), false, true); return $this->boardMapper->find((int)$resource->getId(), false, true);
} catch (DoesNotExistException $e) { } catch (DoesNotExistException $e) {
} catch (MultipleObjectsReturnedException $e) { } catch (MultipleObjectsReturnedException $e) {
return null; return null;

4
lib/Db/BoardMapper.php
View File

@@ -80,12 +80,14 @@ class BoardMapper extends QBMapper implements IPermissionMapper {
* @throws \OCP\AppFramework\Db\MultipleObjectsReturnedException * @throws \OCP\AppFramework\Db\MultipleObjectsReturnedException
* @throws DoesNotExistException * @throws DoesNotExistException
*/ */
public function find($id, $withLabels = false, $withAcl = false): Board { public function find(int $id, bool $withLabels = false, bool $withAcl = false, bool $allowDeleted = false): Board {
if (!isset($this->boardCache[$id])) { if (!isset($this->boardCache[$id])) {
$qb = $this->db->getQueryBuilder(); $qb = $this->db->getQueryBuilder();
$deletedWhere = $allowDeleted ? $qb->expr()->gte('deleted_at', $qb->createNamedParameter(0, IQueryBuilder::PARAM_INT)) : $qb->expr()->eq('deleted_at', $qb->createNamedParameter(0, IQueryBuilder::PARAM_INT));
$qb->select('*') $qb->select('*')
->from('deck_boards') ->from('deck_boards')
->where($qb->expr()->eq('id', $qb->createNamedParameter($id, IQueryBuilder::PARAM_INT))) ->where($qb->expr()->eq('id', $qb->createNamedParameter($id, IQueryBuilder::PARAM_INT)))
->andWhere($deletedWhere)
->orderBy('id'); ->orderBy('id');
$this->boardCache[$id] = $this->findEntity($qb); $this->boardCache[$id] = $this->findEntity($qb);
} }

10
lib/Service/BoardService.php
View File

@@ -171,7 +171,7 @@ class BoardService {
* @throws \OCP\AppFramework\Db\MultipleObjectsReturnedException * @throws \OCP\AppFramework\Db\MultipleObjectsReturnedException
* @throws BadRequestException * @throws BadRequestException
*/ */
public function find(int $boardId, bool $fullDetails = true): Board { public function find(int $boardId, bool $fullDetails = true, bool $allowDeleted = false): Board {
$this->boardServiceValidator->check(compact('boardId')); $this->boardServiceValidator->check(compact('boardId'));
if (isset($this->boardsCacheFull[$boardId]) && $fullDetails) { if (isset($this->boardsCacheFull[$boardId]) && $fullDetails) {
@@ -184,7 +184,7 @@ class BoardService {
$this->permissionService->checkPermission($this->boardMapper, $boardId, Acl::PERMISSION_READ); $this->permissionService->checkPermission($this->boardMapper, $boardId, Acl::PERMISSION_READ);
/** @var Board $board */ /** @var Board $board */
$board = $this->boardMapper->find($boardId, true, true); $board = $this->boardMapper->find($boardId, true, true, $allowDeleted);
[$board] = $this->enrichBoards([$board], $fullDetails); [$board] = $this->enrichBoards([$board], $fullDetails);
return $board; return $board;
} }
@@ -329,7 +329,7 @@ class BoardService {
$this->boardServiceValidator->check(compact('id')); $this->boardServiceValidator->check(compact('id'));
$this->permissionService->checkPermission($this->boardMapper, $id, Acl::PERMISSION_MANAGE); $this->permissionService->checkPermission($this->boardMapper, $id, Acl::PERMISSION_MANAGE);
$board = $this->find($id); $board = $this->find($id, allowDeleted: true);
$board->setDeletedAt(0); $board->setDeletedAt(0);
$board = $this->boardMapper->update($board); $board = $this->boardMapper->update($board);
$this->activityManager->triggerEvent(ActivityManager::DECK_OBJECT_BOARD, $board, ActivityManager::SUBJECT_BOARD_RESTORE); $this->activityManager->triggerEvent(ActivityManager::DECK_OBJECT_BOARD, $board, ActivityManager::SUBJECT_BOARD_RESTORE);
@@ -350,7 +350,7 @@ class BoardService {
$this->boardServiceValidator->check(compact('id')); $this->boardServiceValidator->check(compact('id'));
$this->permissionService->checkPermission($this->boardMapper, $id, Acl::PERMISSION_MANAGE); $this->permissionService->checkPermission($this->boardMapper, $id, Acl::PERMISSION_MANAGE);
$board = $this->find($id); $board = $this->find($id, allowDeleted: true);
$delete = $this->boardMapper->delete($board); $delete = $this->boardMapper->delete($board);
return $delete; return $delete;
@@ -637,7 +637,7 @@ class BoardService {
} }
$this->permissionService->checkPermission($this->boardMapper, $id, Acl::PERMISSION_READ); $this->permissionService->checkPermission($this->boardMapper, $id, Acl::PERMISSION_READ);
$board = $this->boardMapper->find($id); $board = $this->boardMapper->find((int)$id);
$this->enrichWithCards($board); $this->enrichWithCards($board);
$this->enrichWithLabels($board); $this->enrichWithLabels($board);

8
lib/Service/CardService.php
View File

@@ -304,6 +304,14 @@ class CardService {
if ($archived !== null && $card->getArchived() && $archived === true) { if ($archived !== null && $card->getArchived() && $archived === true) {
throw new StatusException('Operation not allowed. This card is archived.'); throw new StatusException('Operation not allowed. This card is archived.');
} }
if ($card->getDeletedAt() !== 0) {
if ($deletedAt === null) {
// Only allow operations when restoring the card
throw new StatusException('Operation not allowed. This card was deleted.');
}
}
$changes = new ChangeSet($card); $changes = new ChangeSet($card);
if ($card->getLastEditor() !== $this->currentUser && $card->getLastEditor() !== null) { if ($card->getLastEditor() !== $this->currentUser && $card->getLastEditor() !== null) {
$this->activityManager->triggerEvent( $this->activityManager->triggerEvent(

8
lib/Service/PermissionService.php
View File

@@ -187,11 +187,11 @@ class PermissionService {
* @throws MultipleObjectsReturnedException * @throws MultipleObjectsReturnedException
* @throws DoesNotExistException * @throws DoesNotExistException
*/ */
private function getBoard($boardId): Board { private function getBoard(int $boardId): Board {
if (!isset($this->boardCache[$boardId])) { if (!isset($this->boardCache[(string)$boardId])) {
$this->boardCache[$boardId] = $this->boardMapper->find($boardId, false, true); $this->boardCache[(string)$boardId] = $this->boardMapper->find($boardId, false, true);
} }
return $this->boardCache[$boardId]; return $this->boardCache[(string)$boardId];
} }
/** /**

16
tests/unit/Activity/ActivityManagerTest.php
View File

@@ -131,6 +131,7 @@ class ActivityManagerTest extends TestCase {
public function testCreateEvent() { public function testCreateEvent() {
$board = new Board(); $board = new Board();
$board->setId(123);
$board->setTitle(''); $board->setTitle('');
$this->boardMapper->expects(self::once()) $this->boardMapper->expects(self::once())
->method('find') ->method('find')
@@ -148,6 +149,7 @@ class ActivityManagerTest extends TestCase {
public function testCreateEventDescription() { public function testCreateEventDescription() {
$board = new Board(); $board = new Board();
$board->setId(123);
$board->setTitle(''); $board->setTitle('');
$this->boardMapper->expects(self::once()) $this->boardMapper->expects(self::once())
->method('find') ->method('find')
@@ -162,7 +164,9 @@ class ActivityManagerTest extends TestCase {
->method('find') ->method('find')
->willReturn($card); ->willReturn($card);
$stack = Stack::fromRow([]); $stack = Stack::fromRow([
'boardId' => 123,
]);
$this->stackMapper->expects(self::any()) $this->stackMapper->expects(self::any())
->method('find') ->method('find')
->willReturn($stack); ->willReturn($stack);
@@ -192,6 +196,7 @@ class ActivityManagerTest extends TestCase {
public function testCreateEventLongDescription() { public function testCreateEventLongDescription() {
$board = new Board(); $board = new Board();
$board->setId(123);
$board->setTitle(''); $board->setTitle('');
$this->boardMapper->expects(self::once()) $this->boardMapper->expects(self::once())
->method('find') ->method('find')
@@ -205,7 +210,9 @@ class ActivityManagerTest extends TestCase {
->method('find') ->method('find')
->willReturn($card); ->willReturn($card);
$stack = new Stack(); $stack = Stack::fromRow([
'boardId' => 123,
]);
$this->stackMapper->expects(self::any()) $this->stackMapper->expects(self::any())
->method('find') ->method('find')
->willReturn($stack); ->willReturn($stack);
@@ -235,6 +242,7 @@ class ActivityManagerTest extends TestCase {
public function testCreateEventLabel() { public function testCreateEventLabel() {
$board = Board::fromRow([ $board = Board::fromRow([
'id' => 123,
'title' => 'My board' 'title' => 'My board'
]); ]);
$this->boardMapper->expects(self::once()) $this->boardMapper->expects(self::once())
@@ -249,7 +257,9 @@ class ActivityManagerTest extends TestCase {
->method('find') ->method('find')
->willReturn($card); ->willReturn($card);
$stack = Stack::fromParams([]); $stack = Stack::fromRow([
'boardId' => 123,
]);
$this->stackMapper->expects(self::any()) $this->stackMapper->expects(self::any())
->method('find') ->method('find')
->willReturn($stack); ->willReturn($stack);