From 1d1d5e1e7c72572901e1cff346531b4d6605615d Mon Sep 17 00:00:00 2001 From: Arthur Schiwon Date: Wed, 20 Dec 2023 16:56:16 +0100 Subject: [PATCH] fix(LDAP): ensure stored groups are formatted as simple list With array_unique it is possible that the keys are not in sequential order but have gaps. json_encode then would store them as associative array, which later on json_decode would result in a stdClass by default. This is unexpected and would also contradict the return type hint. Signed-off-by: Arthur Schiwon --- apps/user_ldap/lib/Group_LDAP.php | 4 ++-- apps/user_ldap/tests/Group_LDAPTest.php | 27 +++++++++++++++++++++++++ 2 files changed, 29 insertions(+), 2 deletions(-) diff --git a/apps/user_ldap/lib/Group_LDAP.php b/apps/user_ldap/lib/Group_LDAP.php index 77e103144e948..d8af9da3a6d9a 100644 --- a/apps/user_ldap/lib/Group_LDAP.php +++ b/apps/user_ldap/lib/Group_LDAP.php @@ -681,7 +681,7 @@ private function isUserOnLDAP(string $uid): bool { protected function getCachedGroupsForUserId(string $uid): array { $groupStr = $this->config->getUserValue($uid, 'user_ldap', 'cached-group-memberships-' . $this->access->connection->getConfigPrefix(), '[]'); - return json_decode($groupStr) ?? []; + return json_decode($groupStr, true) ?? []; } /** @@ -834,7 +834,7 @@ public function getUserGroups($uid): array { return $groups; } - $groups = array_unique($groups, SORT_LOCALE_STRING); + $groups = array_values(array_unique($groups, SORT_LOCALE_STRING)); $this->access->connection->writeToCache($cacheKey, $groups); $groupStr = \json_encode($groups); diff --git a/apps/user_ldap/tests/Group_LDAPTest.php b/apps/user_ldap/tests/Group_LDAPTest.php index 8d6c4539cec80..e2698696bb04e 100644 --- a/apps/user_ldap/tests/Group_LDAPTest.php +++ b/apps/user_ldap/tests/Group_LDAPTest.php @@ -901,6 +901,33 @@ public function testGetUserGroupsOfflineUser() { $this->assertTrue(in_array('groupF', $returnedGroups)); } + /** + * regression tests against a case where a json object was stored instead of expected list + * @see https://github.com/nextcloud/server/issues/42374 + */ + public function testGetUserGroupsOfflineUserUnexpectedJson() { + $this->enableGroups(); + + $offlineUser = $this->createMock(OfflineUser::class); + + $this->config->expects($this->any()) + ->method('getUserValue') + ->with('userX', 'user_ldap', 'cached-group-memberships-', $this->anything()) + // results in a json object: {"0":"groupB","2":"groupF"} + ->willReturn(\json_encode([0 => 'groupB', 2 => 'groupF'])); + + $this->access->userManager->expects($this->any()) + ->method('get') + ->with('userX') + ->willReturn($offlineUser); + + $this->initBackend(); + $returnedGroups = $this->groupBackend->getUserGroups('userX'); + $this->assertCount(2, $returnedGroups); + $this->assertTrue(in_array('groupB', $returnedGroups)); + $this->assertTrue(in_array('groupF', $returnedGroups)); + } + public function testGetUserGroupsUnrecognizedOfflineUser() { $this->enableGroups(); $dn = 'cn=userX,dc=foobar';