Skip to content

Commit 1cb1dcf

Browse files
CarlSchwanbackportbot[bot]
CarlSchwan
authored and
backportbot[bot]
committed
refactor(workflowengine): Check if class is correct
Signed-off-by: Carl Schwan <[email protected]> [skip ci]
1 parent ea1b5fe commit 1cb1dcf

File tree

2 files changed

+56
-22
lines changed

2 files changed

+56
-22
lines changed

apps/workflowengine/lib/Manager.php

Lines changed: 19 additions & 12 deletions
Original file line numberDiff line numberDiff line change
@@ -424,10 +424,6 @@ protected function validateEvents(string $entity, array $events, IOperation $ope
424424
throw new \UnexpectedValueException($this->l->t('Entity %s does not exist', [$entity]));
425425
}
426426

427-
if (!$instance instanceof IEntity) {
428-
throw new \UnexpectedValueException($this->l->t('Entity %s is invalid', [$entity]));
429-
}
430-
431427
if (empty($events)) {
432428
if (!$operation instanceof IComplexOperation) {
433429
throw new \UnexpectedValueException($this->l->t('No events are chosen.'));
@@ -458,17 +454,23 @@ protected function validateEvents(string $entity, array $events, IOperation $ope
458454
* @throws \UnexpectedValueException
459455
*/
460456
public function validateOperation($class, $name, array $checks, $operation, ScopeContext $scope, string $entity, array $events) {
457+
if (strlen($operation) > IManager::MAX_OPERATION_VALUE_BYTES) {
458+
throw new \UnexpectedValueException($this->l->t('The provided operation data is too long'));
459+
}
460+
461+
/** @psalm-suppress TaintedCallable newInstance is not called */
462+
$reflection = new \ReflectionClass($class);
463+
if ($class !== IOperation::class && !in_array(IOperation::class, $reflection->getInterfaceNames())) {
464+
throw new \UnexpectedValueException($this->l->t('Operation %s is invalid', [$class]) . join(', ', $reflection->getInterfaceNames()));
465+
}
466+
461467
try {
462468
/** @var IOperation $instance */
463469
$instance = $this->container->query($class);
464470
} catch (QueryException $e) {
465471
throw new \UnexpectedValueException($this->l->t('Operation %s does not exist', [$class]));
466472
}
467473

468-
if (!($instance instanceof IOperation)) {
469-
throw new \UnexpectedValueException($this->l->t('Operation %s is invalid', [$class]));
470-
}
471-
472474
if (!$instance->isAvailableForScope($scope->getScope())) {
473475
throw new \UnexpectedValueException($this->l->t('Operation %s is invalid', [$class]));
474476
}
@@ -490,17 +492,22 @@ public function validateOperation($class, $name, array $checks, $operation, Scop
490492
throw new \UnexpectedValueException($this->l->t('Invalid check provided'));
491493
}
492494

495+
if (strlen((string)$check['value']) > IManager::MAX_CHECK_VALUE_BYTES) {
496+
throw new \UnexpectedValueException($this->l->t('The provided check value is too long'));
497+
}
498+
499+
$reflection = new \ReflectionClass($check['class']);
500+
if ($check['class'] !== ICheck::class && !in_array(ICheck::class, $reflection->getInterfaceNames())) {
501+
throw new \UnexpectedValueException($this->l->t('Check %s is invalid', [$class]));
502+
}
503+
493504
try {
494505
/** @var ICheck $instance */
495506
$instance = $this->container->query($check['class']);
496507
} catch (QueryException $e) {
497508
throw new \UnexpectedValueException($this->l->t('Check %s does not exist', [$class]));
498509
}
499510

500-
if (!($instance instanceof ICheck)) {
501-
throw new \UnexpectedValueException($this->l->t('Check %s is invalid', [$class]));
502-
}
503-
504511
if (!empty($instance->supportedEntities())
505512
&& !in_array($entity, $instance->supportedEntities())
506513
) {

apps/workflowengine/tests/ManagerTest.php

Lines changed: 37 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -12,6 +12,7 @@
1212
use OCA\WorkflowEngine\Helper\ScopeContext;
1313
use OCA\WorkflowEngine\Manager;
1414
use OCP\AppFramework\QueryException;
15+
use OCP\EventDispatcher\Event;
1516
use OCP\EventDispatcher\IEventDispatcher;
1617
use OCP\Files\Events\Node\NodeCreatedEvent;
1718
use OCP\Files\IRootFolder;
@@ -32,10 +33,41 @@
3233
use OCP\WorkflowEngine\IEntityEvent;
3334
use OCP\WorkflowEngine\IManager;
3435
use OCP\WorkflowEngine\IOperation;
36+
use OCP\WorkflowEngine\IRuleMatcher;
3537
use PHPUnit\Framework\MockObject\MockObject;
3638
use Psr\Log\LoggerInterface;
3739
use Test\TestCase;
3840

41+
class TestAdminOp implements IOperation {
42+
public function getDisplayName(): string {
43+
return 'Admin';
44+
}
45+
46+
public function getDescription(): string {
47+
return '';
48+
}
49+
50+
public function getIcon(): string {
51+
return '';
52+
}
53+
54+
public function isAvailableForScope(int $scope): bool {
55+
return true;
56+
}
57+
58+
public function validateOperation(string $name, array $checks, string $operation): void {
59+
}
60+
61+
public function onEvent(string $eventName, Event $event, IRuleMatcher $ruleMatcher): void {
62+
}
63+
}
64+
65+
class TestUserOp extends TestAdminOp {
66+
public function getDisplayName(): string {
67+
return 'User';
68+
}
69+
}
70+
3971
/**
4072
* Class ManagerTest
4173
*
@@ -400,19 +432,19 @@ public function testUpdateOperation() {
400432
$opId1 = $this->invokePrivate(
401433
$this->manager,
402434
'insertOperation',
403-
['OCA\WFE\TestAdminOp', 'Test01', [11, 22], 'foo', $entity, []]
435+
[TestAdminOp::class, 'Test01', [11, 22], 'foo', $entity, []]
404436
);
405437
$this->invokePrivate($this->manager, 'addScope', [$opId1, $adminScope]);
406438

407439
$opId2 = $this->invokePrivate(
408440
$this->manager,
409441
'insertOperation',
410-
['OCA\WFE\TestUserOp', 'Test02', [33, 22], 'bar', $entity, []]
442+
[TestUserOp::class, 'Test02', [33, 22], 'bar', $entity, []]
411443
);
412444
$this->invokePrivate($this->manager, 'addScope', [$opId2, $userScope]);
413445

414-
$check1 = ['class' => 'OCA\WFE\C22', 'operator' => 'eq', 'value' => 'asdf'];
415-
$check2 = ['class' => 'OCA\WFE\C33', 'operator' => 'eq', 'value' => 23456];
446+
$check1 = ['class' => ICheck::class, 'operator' => 'eq', 'value' => 'asdf'];
447+
$check2 = ['class' => ICheck::class, 'operator' => 'eq', 'value' => 23456];
416448

417449
/** @noinspection PhpUnhandledExceptionInspection */
418450
$op = $this->manager->updateOperation($opId1, 'Test01a', [$check1, $check2], 'foohur', $adminScope, $entity, ['\OCP\Files::postDelete']);
@@ -675,11 +707,6 @@ public function testValidateOperationDataLengthError() {
675707
->method('getScope')
676708
->willReturn(IManager::SCOPE_ADMIN);
677709

678-
$operationMock->expects($this->once())
679-
->method('isAvailableForScope')
680-
->with(IManager::SCOPE_ADMIN)
681-
->willReturn(true);
682-
683710
$operationMock->expects($this->never())
684711
->method('validateOperation');
685712

@@ -727,7 +754,7 @@ public function testValidateOperationScopeNotAvailable() {
727754
'operator' => 'is',
728755
'value' => 'barfoo',
729756
];
730-
$operationData = str_pad('', IManager::MAX_OPERATION_VALUE_BYTES + 1, 'FooBar');
757+
$operationData = str_pad('', IManager::MAX_OPERATION_VALUE_BYTES - 1, 'FooBar');
731758

732759
$operationMock = $this->createMock(IOperation::class);
733760
$entityMock = $this->createMock(IEntity::class);

0 commit comments

Comments
 (0)