Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Prevent panic on /remote.php/dav/files/ #1320

Merged
merged 13 commits into from
Nov 25, 2020
Merged

Prevent panic on /remote.php/dav/files/ #1320

Changes from 3 commits
Commits
Show all changes
13 commits
Select commit Hold shift + click to select a range
23783b1
avoid panic on /remote.php/dav/files/
refs Nov 13, 2020
370830e
Merge branch 'master' into dav-files-unimplemented
refs Nov 24, 2020
24bf5c4
contain changes only to ocdav.go
refs Nov 24, 2020
b8222bd
enhance xml error response
refs Nov 24, 2020
f02d7ab
fix linter
refs Nov 24, 2020
b6a59b9
adjust expected scenario
refs Nov 24, 2020
f972f66
add changelog
refs Nov 24, 2020
5c0cef9
error check write operation
refs Nov 24, 2020
3cf4e25
Merge branch 'master' into dav-files-unimplemented
refs Nov 24, 2020
392ea67
undo [tests-only]
refs Nov 24, 2020
c777d6f
move block from propfind -> dav
refs Nov 24, 2020
251c49f
remove expected to fail scenario
refs Nov 24, 2020
0f5f818
delete apiShareWebdavOperations-propfind.feature
refs Nov 25, 2020
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
8 changes: 8 additions & 0 deletions internal/http/services/owncloud/ocdav/propfind.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -55,6 +55,14 @@ func (s *svc) handlePropfind(w http.ResponseWriter, r *http.Request, ns string)
if depth == "" {
depth = "1"
}

// if there is no file in the request url we assume the request url is: "/remote.php/dav/files"
// https://github.com/owncloud/core/blob/18475dac812064b21dabcc50f25ef3ffe55691a5/tests/acceptance/features/apiWebdavOperations/propfind.feature
if r.URL.Path == "/" {
log.Debug().Str("path", r.URL.Path).Msg("method not allowed")
w.WriteHeader(http.StatusMethodNotAllowed)
}

// see https://tools.ietf.org/html/rfc4918#section-10.2
if depth != "0" && depth != "1" && depth != "infinity" {
log.Error().Msgf("invalid Depth header value %s", depth)
Expand Down