mirrors/puter
1
0
Fork 0
mirror of https://github.com/HeyPuter/puter synced 2024-11-14 22:06:00 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix: fix issues with apps in /share endpoint

Browse Source
This commit is contained in:
KernelDeimos 2024-06-24 16:59:28 -04:00 committed by Eric Dubé
parent 46eb4ed2b9
commit 0cf90ee39a
2 changed files with 126 additions and 60 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
doc/devmeta/track-comments.md
View File

@ -46,3 +46,8 @@ Comments beginning with `// track:`. See
then the null check should result in a early return of null; then the null check should result in a early return of null;
this code with the track comment may have additional logic this code with the track comment may have additional logic
for the null/undefined case. for the null/undefined case.
- `track: manual safe object`
This code manually creates a new "client-safe" version of
some object that's in scope. This could be either to pass
onto the browser or to pass to something like the
notification service.

79
packages/backend/src/routers/share.js
View File

@ -235,6 +235,7 @@ const v0_2 = async (req, res) => {
recipients_work.clear_invalid(); recipients_work.clear_invalid();
// Check: users specified by username exist
for ( const item of recipients_work.list() ) { for ( const item of recipients_work.list() ) {
if ( item.type !== 'username' ) continue; if ( item.type !== 'username' ) continue;
@ -270,6 +271,8 @@ const v0_2 = async (req, res) => {
} }
shares_work.lockin(); shares_work.lockin();
// Check: all share items are a type-tagged-object
// with one of these types: fs-share, app-share.
for ( const item of shares_work.list() ) { for ( const item of shares_work.list() ) {
const { i } = item; const { i } = item;
let { value } = item; let { value } = item;
@ -286,13 +289,25 @@ const v0_2 = async (req, res) => {
const allowed_things = ['fs-share', 'app-share']; const allowed_things = ['fs-share', 'app-share'];
if ( ! allowed_things.includes(thing.$) ) { if ( ! allowed_things.includes(thing.$) ) {
item.invalid = true;
result.shares[i] =
APIError.create('disallowed_thing', null, { APIError.create('disallowed_thing', null, {
thing: thing.$, thing: thing.$,
accepted: allowed_things, accepted: allowed_things,
}) });
continue;
} }
if ( thing.$ === 'fs-share' ) { item.thing = thing;
}
shares_work.clear_invalid();
// Process: create $share-intent:file for file items
for ( const item of shares_work.list() ) {
const { thing } = item;
if ( thing.$ !== 'fs-share' ) continue;
item.type = 'fs'; item.type = 'fs';
const errors = []; const errors = [];
if ( ! thing.path ) { if ( ! thing.path ) {
@ -316,13 +331,22 @@ const v0_2 = async (req, res) => {
} }
item.path = thing.path; item.path = thing.path;
item.permission = PermissionUtil.join('fs', thing.path, access); item.share_intent = {
$: 'share-intent:file',
permissions: [PermissionUtil.join('fs', thing.path, access)],
};
} }
if ( thing.$ === 'app-share' ) { shares_work.clear_invalid();
// Process: create $share-intent:app for app items
for ( const item of shares_work.list() ) {
const { thing } = item;
if ( thing.$ !== 'app-share' ) continue;
item.type = 'app'; item.type = 'app';
const errors = []; const errors = [];
if ( ! thing.uid && thing.name ) { if ( ! thing.uid && ! thing.name ) {
errors.push('`uid` or `name` is required'); errors.push('`uid` or `name` is required');
} }
@ -336,9 +360,21 @@ const v0_2 = async (req, res) => {
continue; continue;
} }
item.permission = PermissionUtil.join('app', thing.path, 'access'); const app_selector = thing.uid
? `uid#${thing.uid}` : thing.name;
item.share_intent = {
$: 'share-intent:app',
permissions: [
PermissionUtil.join('app', app_selector, 'access')
]
}
continue; continue;
} }
// Process: conditionally add permission for subdomain
for ( const item of shares_work.list() ) {
// NEXT
} }
shares_work.clear_invalid(); shares_work.clear_invalid();
@ -374,6 +410,13 @@ const v0_2 = async (req, res) => {
shares_work.clear_invalid(); shares_work.clear_invalid();
for ( const item of shares_work.list() ) {
if ( item.type !== 'app' ) continue;
const app = await get_app({});
}
shares_work.clear_invalid();
// Mark files as successful; further errors will be // Mark files as successful; further errors will be
// reported on recipients instead. // reported on recipients instead.
for ( const item of shares_work.list() ) { for ( const item of shares_work.list() ) {
@ -408,12 +451,15 @@ const v0_2 = async (req, res) => {
const username = recipient_item.user.username; const username = recipient_item.user.username;
for ( const share_item of shares_work.list() ) { for ( const share_item of shares_work.list() ) {
const permissions = share_item.share_intent.permissions;
for ( const perm of permissions ) {
await svc_permission.grant_user_user_permission( await svc_permission.grant_user_user_permission(
actor, actor,
username, username,
share_item.permission, perm,
); );
} }
}
// TODO: Need to re-work this for multiple files // TODO: Need to re-work this for multiple files
/* /*
@ -433,13 +479,28 @@ const v0_2 = async (req, res) => {
*/ */
const files = []; { const files = []; {
for ( const path_item of shares_work.list() ) { for ( const item of shares_work.list() ) {
if ( item.type !== 'file' ) continue;
files.push( files.push(
await path_item.node.getSafeEntry(), await item.node.getSafeEntry(),
); );
} }
} }
const apps = []; {
for ( const item of shares_work.list() ) {
if ( item.type !== 'app' ) continue;
// TODO: is there a general way to create a
// client-safe app right now without
// going through entity storage?
// track: manual safe object
apps.push(item.name
? item.name : await get_app({
uid: item.uid,
}));
}
}
svc_notification.notify(UsernameNotifSelector(username), { svc_notification.notify(UsernameNotifSelector(username), {
source: 'sharing', source: 'sharing',
icon: 'shared.svg', icon: 'shared.svg',