Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add publicstorage middleware #2656

Open
butonic opened this issue Mar 21, 2022 · 0 comments
Open

Add publicstorage middleware #2656

butonic opened this issue Mar 21, 2022 · 0 comments
Labels
bug Something isn't working

Comments

@butonic
Copy link
Contributor

butonic commented Mar 21, 2022

With #2646 listing a folder by id will show the permissions of the owner. While the public scope can prevent writes when tha public link is read only, there is currently no way to reduce the permissions to reflect the link permissions.

The publicstorageprovider does roduce permissions correctly when accessing files with a reference that uses the token as the root and a relative path.

When using an id based reference the request is routed to the real storage provider, not the publicstorageprovider.

As a consequence we need a middleware for nomal storage spaces (or in the gateway) that reduces permissions when a public scope is in the context.
@butonic butonic added the bug Something isn't working label Mar 21, 2022
@butonic butonic mentioned this issue Mar 21, 2022
Merged
4 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@butonic